490 likes | 877 Views
Maximizing the Agility of your Virtualized Infrastructure. Presented by Kirk Bauer Field Systems Engineer, F5. Common Virtualization Challenges & How F5 can help. Common Virtualization Drivers & Barriers. Drivers CIO Objectives. Cost Savings IT Agility / Speed IT Efficiency.
E N D
Maximizing the Agility of your Virtualized Infrastructure Presented byKirk Bauer Field Systems Engineer, F5
Common Virtualization Drivers & Barriers Drivers CIO Objectives • Cost Savings • IT Agility / Speed • IT Efficiency
Common Virtualization Drivers & Barriers Drivers CIO Objectives Barriers Real World Challenges • Cost Savings • IT Agility / Speed • IT Efficiency • Performance • Availability • Management • Integration IMPACT to the Business
Common Virtualization Drivers & Barriers Drivers CIO Objectives Barriers Real World Challenges • Cost Savings • IT Agility / Speed • IT Efficiency • Performance • Availability • Management • Integration IMPACT to the Business • Risks • Missed ROI/Savings • Missed Agility/Speed • SLA impact • Over Budget
DRS & BIG-IP…do I need both? • VMware Distributed Resource Scheduler (DRS) and L7 Application Delivery solve different problems • DRS: “How do I use my RAM & CPU across the cluster most effectively?” • L7 Application Delivery: “How do I distribute my traffic most effectively?” • NIC / vSwitch saturation • Bandwidth utilization • Latency • Number of Connections • Application availability • DRS manages different VM workloads across a cluster, whereas L7 Application Delivery manages application traffic across application instances • DRS is local to a cluster whereas L7 app delivery extends beyond clusters (cloudbursting, DR)
LTM and VMware Fault Tolerance • FT is intended to provide high availability of an app within the same vSphere/Site. • Primary VM has a secondary VM in lockstep that records the exact same transactions, taking it’s queues from the primary. • If primary VM or host fails, secondary VM takes over instantly. • Zero downtime of the VM – it’s as if it never failed. • While a valuable feature, it does not overlap much with F5 LTM • FT is unrelated to failover between vSpheres or sites. • FT is unrelated to traffic load balancing, server offload, traffic optimization and acceleration, intelligent traffic management (e.g. iRules), global traffic management, etc.
Common Practical Issues • How can I provision more seamlessly? • How can I make application performance better? • How can I automate more administrative tasks? • How can I simplify network configuration for VMs? • How can take full advantage of vMotion?
F5 & VMware • F5 & VMware are active partners • Interoperability & Performance Testing • vSphere, vCenter, AppSpeed, SRM, View, etc. • Joint Deployment Guides • Future joint development plans in progress • Dedicated alliance teams
Use of Server Offload Yields Higher VM Density SSL TCP Opt. Caching Compression Before After http://www.techvalidate.com/product-research/f5-big-ip/facts/975-FFD-F8D
F5 Has Been Improving Enterprise App Performance & Availability for 10 years • Network Functions are as critical to virtual as physical apps • Load balancing • Traffic Management • Traffic Optimization • Acceleration • Security
Example: Reduced CPU Utilization on SAP Portal 68% 38% Joint testing conducted at SAP Co-Innovation Lab
POC: Exchange 2007 on vSphere 4 • Exchange 2007 Enterprise Edition • Windows Server 2008 Enterprise x64 Edition • HUB and CAS server in VMs • 4,000 mailboxes • Testing consisted of two phases: • 1. Storage I/O stress testing using Microsoft Exchange Server Jetstress Tool • 2. Mailbox simulation using Microsoft Exchange Load Generator (LoadGen) Tool in two scenarios: • Without LTM offload • With LTM offload • LTM offloaded approximately 40% of the load from the application server CPUs. • 39.4% reduction in CPU load • Reciprocal ~60% increase in VM Density
Case Study:First American Traditionally, each of First American’s business units had its own IT shop. But recently, the company created a cohesive IT operation capable of providing a standard services catalog, SLAs, and disaster recovery guarantees for all business units. Fronting its massive virtual infrastructure with the BIG-IP solutions and using caching and compression to minimize server workloads has enabled First American to optimize its operation. F5 and VMware have allowed their IT operation to be far more nimble, efficient, and cost-effective in meeting business needs. “During a recent unplanned outage, we were able to seamlessly redirect folks from one data center to another without a service interruption. F5 provides two fairly large services—content delivery and disaster recovery—we didn’t find that with any other company. Jake Seitz, Enterprise Architect • BIG-IP LTM , GTM, FirePass SSL VPN, iRules & Virtualization Benefits: • Reduced business critical application log in time by nearly 50% • Streamlined IT operations – single interface used across multiple solutions • Improved application performance and user experience twofold • iRules enabled IT to optimize application delivery to each mobile device • Caching and compression optimized their virtual infrastructure increasing capacity by 20% Customer Overview: The First American Corporation, a Fortune 500 company, supplies businesses and consumers with online information in five primary industry segments, including title insurance and services, specialty insurance, and data and analytics. Vertical: Finance Location: Santa Ana, California Partner: VMware • Case study: http://www.f5.com/pdf/case-studies/first-american-cs.pdf • Press Release: http://www.f5.com/news-press-events/press/2009/20090831.html
Case Study:Transplace “We're always trying to improve our services for our customers. BIG-IP, as part of our virtualized environment, plays a big role in that. It’s the cornerstone of TMS, and every other application that is critical to our infrastructure.” Scott Engle Director of IT Infrastructure In 2006, Transplace redesigned its IT infrastructure to lower costs, increase efficiency, and improve the customer experience. Its environment is now highly virtualized with technology from VMware, and takes advantage of BIG-IP LTM devices to provide high availability and top performance for enterprise applications, including its revenue-generating Transportation Management Services (TMS) SaaS platform. • BIG-IP LTM , WebAccelerator, and iRules Benefits: • Intelligent traffic management that efficiently distributes traffic across virtual machines to optimize server utilization • Higher availability for Transplace’s TMS platform • Higher availability for business-critical enterprise applications • Increase in revenue generation • Reduced data center footprint Customer Overview: Transplace is a third-party logistics provider that helps companies lower logistics and supply chain costs by taking advantage of its large base of shipments, logistics technology, and operating experience. • Case study: http://www.f5.com/pdf/case-studies/transplace-cs.pdf Vertical: Shipping and Logistics Location: Frisco, TX Partner: VMware
Automating the Network Changes BIG-IP LTM & VMware vCenter integrated for automatic provisioning of local VMs on demand • Respond instantly to changes in traffic volume • Provision to mean rather than peak • Reduce manual labor • BIG-IP GTM & VMware SRM integrated to enable failover between sites • GTM makes traffic follow SRM • Automatic • Zero Application Downtime
Illustration: LTM & vCenter Integration Demand ↑ ↑ ↑ Web Clients Web Clients Monitoring & Management Frontends Virtualization Detection BIG-IP LTM iControl Automation VM Provision FrontEnd FrontEnd FrontEnd vCenter + AppSpeed (optional) F5 Provision AppServers Virtualization BIG-IP LTM iControl Demand ↓ ↓ ↓ Detection App. Server App. Server App. Server Storage Virtualization Automation F5 Deprovision VM Deprovision
Illustration: GTM & SRM Integration SRM Failover Ongoing Replication Site 1 Site 2 • GTM Health checks reveal unhealthy site 1. GTM self-executes a redirection to site 2. • SRM instructs GTM via iControl to failover to site 2
WAN Acceleration for VMwarevMotion, Storage vMotion & View • Overcome latency, packet loss and low bandwidth • BIG-IP iSessions™ • Free feature of LTM, no additional boxes required • Compression, Optimization • WAN Optimization Module • Add-on Module for LTM • Accelerates VMware View remote desktop traffic on average 12:1 • Can accelerate vMotion up to 25:1 • Improved user experience over any link • Acceptable connections over weak links • Compression, Optimization, De-duplication
Escaping Boundaries Between DCsNew Use Cases for Well Established Functionality • Disaster Avoidance • Capacity Expansion • Migrate Apps between DCs • Migrate Apps between Clouds • Follow the sun/moon iSession tunnel
How it works – the fundamental steps • Storage vMotion to Site 2 • vMotion to Site 2 • LTM routes incoming connections for existing sessions to Site 2 VM • GTM routes new connections to Site 2 • Register host and VM in vCenter Site 2 (optional)
Acceleration & Encryption • F5 testing results of common bandwidth/latency combinations • iSessions™ or WAN Optimization Module™ • SSL encryption • Acceleration • TCP Optimization • Byte-level deduplication • Dynamic compression • Able to successfully vMotion in conditions where previously failed
On-Demand Scalability in the Cloud Scale-up by simply plugging in a new blade. Zero configuration On-Demand Scaleability Internal Cloud External Cloud On-Premise Servers LAN
Dynamic & Intelligent Traffic Management between Cloud & DC Dynamically load balance between data centers based on application availability, time of day, etc. Take into account all tiers of the application Branch Office FirePass Remote User Internet or WAN BIG-IP Link Controller Enterprise Manager DMZ Firewalls BIG-IP SAM BIG-IP Global Traffic Manager BIG-IP Link Controller Enterprise Manager DMZ BIG-IP Local Traffic Manager FirePass Firewalls BIG-IP Global Traffic Manager BIG-IP Local Traffic Manager Blade Servers Database Servers Blade Servers HQ Site 1 Database Site 2 Servers
LTM Offload from View Manager Servers View Manager load grows over time But LTM can improve View Manager Server Efficiency, Resulting in fewer servers needed and better performance
LTM Acceleration of RDP Traffic LTM can also accelerate RDP traffic up to 12:1 using its WAN Optimization Module Encrypted, Accelerated, Deduplicated Tunnel
Automatically creates all necessary objectsClick on any to customizeIf no customization needed, you’re done!
Summary: F5 and VMware Agility & Manageability Global Traffic Management iRules Intelligence iControl Integration VIPRION scale-on-demand VMware View Deployment Wizard For more information go to www.f5.com/vmware Performance & Availability Caching SSL Offload Compression De-duplication TCP Optimization Rate Shaping Security Advanced Load Balancing Advanced Persistence
F5 and VMware can enable a secure, live migration …of a virtualized application and its storage …from one siteto another …without downtime and without user disruption.
Initial Environment BIG-IP Global Traffic Manager BIG-IP Local Traffic Manager BIG-IP Local Traffic Manager vCenter A vCenter B
Step 1: F5 BIG-IP Local Traffic Manager Opens WAN Optimization Tunnel BIG-IP Global Traffic Manager 1 BIG-IP Local Traffic Manager BIG-IP Local Traffic Manager • Compressed • De-Duplicated • Encrypted vCenter A vCenter B
Step 2: Storage vMotion Executed Across WAN Optimized Tunnel BIG-IP Global Traffic Manager BIG-IP Local Traffic Manager BIG-IP Local Traffic Manager vCenter A vCenter B This step can be avoided if storage is already being synchronously replicated between sites 2
Step 2: Pending App vMotion, transactions rely on VM in Site A, but Storage in Site B BIG-IP Global Traffic Manager BIG-IP Local Traffic Manager BIG-IP Local Traffic Manager vCenter A vCenter B vCenter A still managing VM
Step 3: Application vMotion Executed Over WAN Optimized Tunnel BIG-IP Global Traffic Manager BIG-IP Local Traffic Manager BIG-IP Local Traffic Manager vCenter A vCenter B 3
Step 4: vCenter Instructs F5 BIG-IP Global Traffic Manager to Cut Over to Site-B BIG-IP Global Traffic Manager 4 BIG-IP Local Traffic Manager BIG-IP Local Traffic Manager vCenter A vCenter B
F5 BIG-IP Global Traffic Manager Routes All NEW Application Connections/Sessions Directly to Site B. BIG-IP Global Traffic Manager BIG-IP Local Traffic Manager BIG-IP Local Traffic Manager vCenter A vCenter B
F5 BIG-IP Local Traffic Manager in Site A Redirects EXISTING Sessions Temporarily to Site B Until Clients Register DNS Change BIG-IP Global Traffic Manager BIG-IP Local Traffic Manager BIG-IP Local Traffic Manager vCenter A vCenter B
Eventually, ALL Connections Go Directly to Site B. The Process Can Be Reversed When Necessary. BIG-IP Global Traffic Manager BIG-IP Local Traffic Manager BIG-IP Local Traffic Manager vCenter A vCenter B Successful Application Migration Complete
Option:Have Original IP Space (Site A) Reclaimed and Re-Used for Other Applications BIG-IP Local Traffic Manager vCenter A
Practical Limitations • Attention must be paid to: • WAN characteristics • Latency • Packet Loss • Rate-of-Change to VM and Storage (typically depends on application characteristics) • Ratio of RoC-to-WAN performance must not be so high as to prevent successful vMotion or Storage vMotion.