ALB

OR

A P

ort

ug

al

ALBORA SOLUCIONES

Albora PortugalRui Lopes, System Engineer

Datacenter de Nova Geração

ALB

OR

A P

ort

ug

al

Agenda

1. Evolução do Datacenter

2. Virtualização enquanto habilitador de datacenter de nova geração

Citrix XenServer - Servidores

Datacore SanMelody – Storage

Marathon everRun vm – cluster & failover

3. Objectivos para o novo Datacenter

Elasticidade e Mobilidade

Alta Disponibilidade & Continuidade de negócio

Provisão e Operação Automatizada

4. Aspectos de segurança

ALB

OR

A P

ort

ug

al

Under utilized hardware

Increasing costs of ownership

Difficult management

Barriers to expansion

Phase 1 – Recognize

Dynamic Workload Delivery

Automation / Policy

Chargeback / Utility

Pervasive Virtualization

Phase 4 – Dynamic Datacenter

Some tier 1 applications

High Availability

Disaster Recovery

Mobility

Phase 3 – Agility

Test/Dev

Encapsulation

Consolidation

“Craplications”

Phase 2 – Consolidate

Evolução do Datacenter

ALB

OR

A P

ort

ug

al

Datacenter 2.0

• Virtual Infrastructure• Citrix XenServer• Citrix Provisioning Server

• Storage Virtualization• Datacore SANMelody

• Business Continuity & DR• Marathon everRUN• Datacore SANMelody

NextGEN DATACENTER

everRun

XenPool

A

SAN

PVS C

everRun

XenPool

A

SAN

PVSC

PRIMARY SITE

BACKUP/ DR SITE

IP

iSCSI/FC

IDE,SCSI, SATA,SAS,FC, iSCSI, etc

Citrix XenServerCitrix XenServer

Virtualização de servidoresVirtualização de servidores

ALB

OR

A P

ort

ug

al

Citrix

IBM

Intel

HPHP

SunSun

• Native 64-bit hypervisor

• Runs on bare metal

• Widely-deployed at tens of thousands of sites

• Optimized for hardware-assisted & paravirtualization

• Highly secure Xen open security framework

• Small exposure footprint

• Lightweight and efficient

• Native 64-bit hypervisor

• Runs on bare metal

• Widely-deployed at tens of thousands of sites

• Optimized for hardware-assisted & paravirtualization

• Highly secure Xen open security framework

• Small exposure footprint

• Lightweight and efficient

Citrix

O que é o XEN?

ALB

OR

A P

ort

ug

al

• Live Migration / Motion

• Dynamic Resource Pooling

• Automated Host Level HA

• Fault Tolerance

• Storage support for DR

• Distributed management

Fiabilidade empresarial

ALB

OR

A P

ort

ug

al

Suporte para VM’s Guest

• Windows

– Windows Server 2008 64-bit & 32-bit– Windows Server 2003 32-bit SP0, SP1, SP2, R2; 64-bit SP2– Windows Small Business Server 2003 32-bit SP0, SP1, SP2, R2 – Windows XP 32-bit SP 2, SP3– Windows 2000 32-bit SP 4 – Windows Vista 32-bit SP 1

• Linux

– Red Hat Enterprise Linux 32-bit 3.5, 3.6, 3.7, 4.1, 4.2, 4.3, 4.4, 4.5, 4.7, 5.0, 5.1, 5.2; 64-bit 5.0, 5.1, 5.2

– Novell SUSE Linux Enterprise Server 32-bit 9 SP2, SP3, SP4; 10 SP1; 64-bit 10 SP1, SP2– CentOS 32-bit 4.1, 4.2, 4.3, 4.4, 4.5, 5.0, 5.1 , 5.2; 64-bit 5.0, 5.1, 5.2– Oracle Enterprise Linux 64-bit & 32-bit 5.0, 5.1– Debian sarge (3.1), etch (4.0)

MicrosoftVirtualization

ValidationProgram

MicrosoftVirtualization

ValidationProgram

MicrosoftVirtualization

ValidationProgram

ALB

OR

A P

ort

ug

al

• Included at no cost

• Runs on any PC

• No single point of failure

• Real time replication

• Performance monitoring

• VM searching/tagging

• Installs in minutes

Bare Metal Hardware

Xen Hypervisor

XenTool Stack

Device Drivers

Bare Metal Hardware

Xen Hypervisor

XenTool Stack

Device Drivers

Bare Metal Hardware

Xen Hypervisor

XenTool Stack

Device Drivers

XenCenter - Consola de gestão

ALB

OR

A P

ort

ug

al

• Download Citrix Xenserver 5.0 (versão gratuita)http://deliver.citrix.com/go/citrix/wbFreeXenServer

• Como fazer? Demonstrações video onlinehttp://citrix.com/English/ps2/products/demo.asp?contentid=683148

• Documentação Xenserverhttp://support.citrix.com/product/xens/v5.0/#tab-doc

• Forums de suportehttp://forums.citrix.com/category.jspa?categoryID=101

Saber Mais: Virtualização Servidores

Datacore SANMelodyDatacore SANMelody

Virtualização de StorageVirtualização de Storage

ALB

OR

A P

ort

ug

alDataCore Software

Fibre-Channel or Ethernet NICs

(Host connection)

X86 Server

Disks & JBOD / SATA

RAID Drive Controllers

Powered by DataCore™Storage Server

Latest Components, Latest Speeds,

Individually Upgraded, Software Maintenance only

datacore

ALB

OR

A P

ort

ug

al

datacore

IT 2.0 Datacenter

ALB

OR

A P

ort

ug

alVirtualização e Optimização de Storage

• Hardware IndependentLicenced capacity on Custom ServerSupport for Virtual MachinesiSCSI or Fiber Channel

• Increased Perfomance & AvailabilityAuto Thin ProvisioningI/O Performance AccelerationData Migration (SAN Motion)

• Business ContinuitySnapshotContinuous Data Protection & Recoveery (Traveller)Auto-Failover - Synchronous Mirroring (HA)Asynchronous IP Mirroring (DR)

datacore

ALB

OR

A P

ort

ug

al

• Download Trial Datacore SanMelodyhttp://www.datacore.com/products/prod_SANmelody.asp

• Como fazer? Demonstrações e videos onlinehttp://www.datacore.com/videos/http://www.datacore.com/videos/citrix-iforum-demo.wmv

• SANMelody Highlightshttp://www.datacore.com/products/prod_SANmel_suppserv.asp

• Webinarshttps://datacore.ilinc.com/perl/ilinc/lms/event.pl

Saber Mais: Virtualização Storage

Marathon everRun vmMarathon everRun vm

cluster & failovercluster & failover

ALB

OR

A P

ort

ug

al

everRun VMUnique Architecture – VM Fault-Tolerance in Software

•Installs directly onto a pair of Citrix XenServer hosts –Thin software layer between hypervisor and VM environment

•Auto-creates and maintains identical PVM on alternate host–“Active” VM is paired with a “Ready” VM–Assured recovery if Active VM host fails

•PVM’s I/O resources are transparently paired–Aggregated across both XenServer hosts–Fully redundant networking & storage–“ComputeThru” device failures

•Availability Manager attaches to each PVM–Mini Linux VM, manages I/O redirection–Automated error detection, fault handling

ALB

OR

A P

ort

ug

al

Oracle

everRun VM Key Benefits

•Available•Zero downtime due to subsystem failures•Patented “ComputeThru” technology ensures transparent fail-out of devices•No complex failover management or testing•No false failovers•Mirrored storage for zero data loss

•Affordable•Allows consolidation of multiple business-critical applications•Priced for broad adoption•No shared-disk subsystem or SAN required

•Automated•Easy to install, operate and maintain•“Point and click” operation•Automated fault handling and policy management•Active redundancy provides assured recovery on host failure•No scripting or custom coding

Exchange

SQL

ALB

OR

A P

ort

ug

al

• Download versão trialhttps://mtextranet.marathontechnologies.com/webreq/webreq.asp?req=dh

• Demonstrações video onlinehttp://www.marathontechnologies.com/everRun_product_demos.html

• “Life on Clusters vs Life on Marathon”http://www.marathontechnologies.com/jp/media/homeflash.swf

• HA, DR & data protection resource centerhttp://www.marathontechnologies.com/resource_center.html

Saber Mais: Cluster & Failover

nextGen DC:nextGen DC:

Elasticidade e AgilidadeElasticidade e Agilidade

ALB

OR

A P

ort

ug

al

Elasticidade e Agilidade

Objectivos

Consolidação de servidores

Melhor aproveitamento da infrastrutura física

Rápida provisão de recursos

Capacidade de resposta dinâmica em função da carga

Operação sustentável (gestão & patching)

Citrix XenServer

Citrix Provisioning Server

ALB

OR

A P

ort

ug

al

VM guest storage

Bare Metal Hardware

Xen Hypervisor

XenTool Stack

Device Drivers

Bare Metal Hardware

Xen Hypervisor

XenTool Stack

Device Drivers

Bare Metal Hardware

Xen Hypervisor

XenTool Stack

Device Drivers

Operação ininterrupta - XenMotion

ALB

OR

A P

ort

ug

al

Silo One

Silo Two

Silo Three

Image repository holds Virtual Hard Disks

Servers are configured for network boot. No local storage required

A

C

B

Citrix Provisioning Server

Dynamic Workload StreamingCitrix Provisioning Server

ALB

OR

A P

ort

ug

al

Silo One

Silo Two

Virtual Hard Disks are streamed from image repository

Boot hundreds of VMs/servers from 1 image

Citrix Provisioning Server

A

C

B

Silo Three

“Any Workload, Any Server, Any Time”

XenServer /Hyper-V

ALB

OR

A P

ort

ug

al

XenServer /Hyper-V

XenServer /Hyper-V

Primary Data Center Backup Data Center

Provisioning Server Storage Provisioning Server Storage

1Backup servers host real workloads

Storage Replication

2 Server Failure3 Site Failure

XenServer /Hyper-V

VIDEOVIDEO

Manage Disaster Recovery

nextGen DC:nextGen DC:

Alta Disponibilidade e Alta Disponibilidade e RecuperaçãoRecuperação

ALB

OR

A P

ort

ug

al

Alta Disponibilidade e Recuperação

Objectivos

Protecção de activos críticos ao negócio

Aumentar resiliência da infrastrutura

Implementação de plano de DR

Capacidade para recuperar em cenário de desastre

RTO & RPO aceitáveis

Citrix XenServer

Marathon everRun

Datacore SanMelody

ALB

OR

A P

ort

ug

al

XenServer - High Availability

• Automatically restart VMs upon host server failure• Easily administered within XenCenter• Reports failover capacity

ALB

OR

A P

ort

ug

al

XenServer - High Availability

Shared Storage

VIDEOVIDEO

ALB

OR

A P

ort

ug

al

XenHost2XenHost1

LAN

x86-Based Serverx86-Based Server

XenServer Ent

SQL1

XenServer Ent

CRM1

AD2everRun everRun

XCH1 DNS1

Availability Link

XCH1

CRM1

Xen + Marathon = Tolerância a falhas

ALB

OR

A P

ort

ug

al

Simplifying Disaster Recovery

Shared Storage Shared Storage

Production Site DR Site

Automated backup of VM metadata to SR

Replication of SR includes Virtual Disks and VM metadata

Attach replicated SR

Restore of VM metadata will recreate VMs

1

2

3

41

2

3

4

VIDEO @ 7’30’’VIDEO @ 7’30’’

nextGen DC:nextGen DC:

Provisão e Operação Provisão e Operação AutomatizadaAutomatizada

ALB

OR

A P

ort

ug

al

Provisão e Operação Automatizada

Objectivos

Alta disponibilidade aplicacional

Provisão automática em função de condições no momento

Melhor Performance aplicacional

Gestão global de tráfego e carga

Citrix XenServer

Citrix Workflow Studio

Citrix Netscaler

ALB

OR

A P

ort

ug

al

The Citrix Delivery Center in Action

Monitor Decide Act

Citrix NetScaler

Citrix Workflow Studio Citrix XenServer

Pool A

Pool B

Resposta em cenário de pico de trafego

Netscaler : balanceamento e monitorização contínua de serviçosWorkflow : Atingido o nivel de tráfego pré-definido. Aumentar capacidade!Workflow : Provisionar de mais capacidade no Xen & NetscalerXenServer : Arrancar máquina inactiva | Netscaler : aumentar service groupNetscaler : Tráfego em níveis normais. Repor infrastrutura

ALB

OR

A P

ort

ug

al

Distribuição de tráfego : Disponibilidade Global

www.citrix.com

www.citrix.com

www.citrix.com

www.citrix.com

Operação Normal : Netscaler GSLB direcciona clientes para melhor site baseado em proximidadeFalha Europa : Netscaler GSLB direcciona clientes para melhor site baseado em disponibilidade

ALB

OR

A P

ort

ug

al

Saber Mais: Orquestração do Datacenter & Gestão de Tráfego

• Download Workflow Studio (gratuito):https://www.citrix.com/English/ss/downloads/results.asp?

productID=1297816

• Comunidade de Desenvolvimento - CDNhttp://community.citrix.com/cdn/wf/multimedia/http://community.citrix.com/cdn/wf

• Documentação Workflow Studiohttp://support.citrix.com/product/wfs/v1.0/

• Forums de suporte Workflow Studiohttp://forums.citrix.com/category.jspa?categoryID=164

nextGen DC:nextGen DC:

SegurançaSegurança

ALB

OR

A P

ort

ug

al

Aspectos de segurança

Objectivos

Protecção de activos críticos ao negócio

Acesso Granular em função do utilizador e condições de acesso

Citrix Access Gateway

Sonicwall e-Class

Sonicwall e-mail security

Sonicwall content filtering

Sophos Entreprise

ALB

OR

A P

ort

ug

al

What is Citrix SmartAccess™?

What is the result of the connection?

Who is connecting? What resources can be accessed?

Endpoint AnalysisAuthentication Policy

Session and Authorization Policy

Session Policy

Web Interface XenApp

VPN Access

XenDesktop

Clientless Access

Web and File Server Access

Network Level Access

Outlook Web Access

XenApp XenDesktop

Resources

Which User What Device

What Location

What Authentication

ALB

OR

A P

ort

ug

al

Reduced Access

Full Access

Global Access

+ +

+

All Applications & Virtual ChannelsFull Network Access

Reduced Applications & Virtual ChannelsRestricted network Access

SnR Security Remediation

Web Site

Denied Access

Clientless Portal and Email Access

Restricted Access

+

+

+

+

ALB

OR

A P

ort

ug

al

Aplicacoes 2.0

APLICAÇÕES

DATACENTER

• Web Aplication Optimization• Citrix Netscaler

• Wan Acceleration• Citrix Wanscaler• Citrix Branch Repeater

• Web Services• Ventus Proxy

BRANCH OFFICE

BranchRepeater

WanScaler

WebServiceClient

WAN optimization + Network servrices(DHCP, AD, FS, DNS, …)

NetScaler

WebUsers

SLB, Comp, SSL & TCP Offload, CacheDoS Protection, ACL, Content Filtering

CIFS, MAPI, ICA; FTP, [tcp]SOAP, XML

REMOTE USER

ALB

OR

A P

ort

ug

al

Escritorio 2.0

POSTO DE TRABALHO• Virtual Desktop Infrastructure

• Citrix XENDesktop• Citrix XenApp• Citrix XenServer• Citrix Provisioning Server

• Secure Remote Access• Citrix Access Gateway EE

• User Workstation•Wyse X series (laptops)•Wyse V series (desktop)

• Printing optimization• ThinPrint .print

•Network Access• Aruba Mobility Controllers 802.11n

• Network Security• Sonicwall E-Class UTM

“Thin office”

ipsec

SSL

DMZ

DATACENTER

WLAN

XenDesktopXenApp

CITRIX AGEE

PrintServerWebApp

RoadWarrior

3G

ALB

OR

A P

ort

ug

al

Seguranca 2.0

SEGURANÇA• EndPoint Security

• Sophos Endpoint Security (AV, PF, HIPS)

• Network Security• SonicWall UTM• Sophos Network Access Control• Aruba Mobility Controllers

• Service Protection• Sonicwall Email Security• Sonicwall Content Filtering• Sonicwall CDP• Citrix WebAplication FW

• Remote Access• Aventail SSL-VPN

DATACENTER

WLAN

DMZ

CFM

Email SecuritySSL-VPNCitrix WAF

WEB

CDP

REMOTE USER

FW+ IPS, GAV,AntiSpyware, …

ALB

OR

A P

ort

ug

al

OBRIGADO!

Rui Lopesrlopes@ingrammicro.pt91 414 3083Junho 2009