思科雲解決方案 曾雄鉅|台灣思科產品技術經理 · cisco cloudcenter istio...
TRANSCRIPT
思科雲解決方案
曾雄鉅|台灣思科產品技術經理
SaaS
Azure
COMPLEXITY
Edge
Kinetic
IBM
Cisco
Webex
Campus Branch Data Center
Today’s multicloud
Hybrid Cloud
Cloud
SaaS
Private
SaaS
SaaS
Oracle
SaaS
AWSAWS
Colocation
Private
Hybrid Cloud
評估或使用公共雲
85%
採用混合雲戰略
87%
計畫使用多雲
94%
Among cloud users
It’s a multicloud world
Source: Cisco Global Cloud Index, Feb-18
創新 速度
Why multicloud?
Cloud as an agent of change
加速創新
強化本地環境
採用公有雲
Cloud
Native AppsApplication Modernization
橫跨你的環境
SaaS
SaaSOracle SaaS
SaaS SaaS
IBM
Colocation
Private
Sensors
Kinetic
CiscoWebEx
Hybrid Clouds
AWS Azure
GoogleCloud
EdgeCampus Branch Data Center
Private
Networking ManagementSecurity AnalyticsMulticloud
Software
Cloud-NativeOn-Premises
Bringing the cloud experience on-premises
Cisco Integrated System for Microsoft Azure Stack
• Azure Services: 一次性開發可佈署到公有雲環境和私有雲環境
• 全思科的技術提供性能和維運優勢
• 邊緣和不連網的解決方案;多樣化的調節環境
Microsoft’s Hybrid Cloud PlatformDevelopers
IT
“Microsoft and Cisco are proven innovators and trusted technology partners, giving customers the confidence that their IT environments can be supported and secure.” Mike Neil
Corporate Vice PresidentEnterprise Cloud Group
Microsoft Corporation
Azure Stack on Cisco UCS M5 – Hybrid Storage
FI 6332 (40G)
vPC 0 vPC 1
UCS 6332 FI32 x 40 Gbe Ports
1RU
UCS C240 M4L2-Socket
12LFF/SFF Drives 2x40Gbe Ports
2RU
4 to15 Nodes Per Cluster
1 to 2 clusters
Nexus 9332PQ32 x 40 Gbe Ports
1RU EoR Switch
vPC 0 vPC 1
UCS 6332 FI32 x 40 Gbe Ports
1RU
UCS C240 M4L2-Socket
12LFF/SFF Drives 2x40Gbe Ports
2RU
4 to15 Nodes Per Cluster
1 to 2 clusters
Nexus 9332PQ32 x 40 Gbe Ports
1RU EoR Switch
FI 6332 (40G)
Cisco Automation Scripts
On-site Installation Services
Cisco Support Services
• Service Profile Template Driven
• Automated system setup
• Reduces set up from hours to minutes
• Leveraging Cisco best practices
• Download and setup of Azure Stack
• Integration into environment including Active
Directory, Azure Services billing to Microsoft
• Cisco/Microsoft is your single call for any
issue
FI 6332 (40G)
C240 M5L
vPC 0 vPC 1
UCS 6332 FI32 x 40 Gbe Ports
1RU
UCS C240 M4L2-Socket
12LFF/SFF Drives 2x40Gbe Ports
2RU
4 to15 Nodes Per Cluster
1 to 2 clusters
Nexus 9332PQ32 x 40 Gbe Ports
1RU EoR Switch
FEX vPC 0 vPC 1
UCS 6332 FI32 x 40 Gbe Ports
1RU
UCS C240 M4L2-Socket
12LFF/SFF Drives 2x40Gbe Ports
2RU
4 to15 Nodes Per Cluster
1 to 2 clusters
Nexus 9332PQ32 x 40 Gbe Ports
1RU EoR Switch
FEX
9336C-FX29336C-FX2
Rack Layout: 16 NodeNexus 9336C-FX2
Nexus 9336C-FX2
++++16 Nodes is supported
Unlocking the power of data at the edge
Enterprise and Telco Edge
Content Delivery
Edge Computing
Enterprise and Telco Edge
• Cisco HyperFlex Hybrid
• Cisco HyperFlex Edge
Edge Computing and IoT
• Cisco HyperFlex Edge
• Cisco UCS C-Series
• Cisco Kinetic
Content Delivery
• Cisco UCS S3260 Storage Server
Kinetic
It’s all aboutthe applications
Workloads that manage themselves
Decision Automation Anywhere
Capacity
• AppDynamics• Cisco HyperFlex• Cisco UCS Manager• Cisco UCS Director• Cisco Tetration• Cisco ACI• Cisco CloudCenter• …
Cisco
Applications
Compute Public Cloud
Databases
Storage
Cisco Workload Optimization
Keeping up with the pace of business
Defines Application Deployment and Management Requirements
Cloud Agnostic
Portable
Five Key Components
Application topology
Infrastructure resources
Deployable Artifacts
Orchestration
Policies
Application Profile
JSON and XML file
Graphical Modeler
“One Click” Deploy
Application Profile- Represented as Cube
nginx_...
apache_...
mysql_...
2CPU
4GBMemory
20GBStorage
Containers
Recipes
Scripts
Jar
War
Binaries
Orchestrator
Cloud specific
Multi-tenant
Dedicated or Shared
Launches VMs
and mounts
storage to each
Installs agent
in each VM
ARTIFACT
REPOSITORY
Applies Security
policies to
configure port
settings and
firewall rules
Links to artifact
repository
AGENT
AGENT
AGENT
Manager sends
Profile to
Orchestrator
Monitor and
trigger run-time
policies
Provisions
infrastructure
and services-
network, storage,
compute
Deploy and orchestrate
components and services
Private
Cloud
Data
Center
Public
Cloud
ORCHESTRATOR
ORCHESTRATOR
ORCHESTRATORPROFILEMANAGER
Hybrid Cloud for your Multicloud
Across your initiatives
採用公有雲
強化本地環境
網路
分析
管理
安全
Cloud Native Apps
Application Modernization
A multicloud approach keeps things simple
強化本地環境 採用公有雲
Cloud
Native AppsApplication Modernization
我需要使用雲服務
我需要保護我的多雲世界
我需要連接到多雲世界
我需要幫助來計畫、建造和
加速
From one app/cloud to multiple apps/cloudsCisco Multicloud Portfolio
Multicloud
Portfolio
Cloud
Connect
Cloud
Protect
Cloud
Advisory
Cloud
Consume
設計、計畫、加速、降低您的多雲遷移風險
在多雲和容器環境中部署、監控和優化應用程式
安全地將您的私人網路絡擴展到公共雲中, 並確保應用程式體驗
保護多雲身份、直接到雲連接、資料和應用程式 (包括 saas)
Cloud
Consume
Cloud
Protect
Cloud
Connect
Cloud
Advisory
Multicloud
Portfolio
Advisory Services
• Cloud Migration
• Cloud Connect
• Cloud Protect
• Cloud Consume
(Delivered by AS/Cisco Partners)
• CloudCenter
• AppDynamics
• Container Platform
Cloud
Consume
Cloud
Advisory
• CSR 1000v
• vEdge + Umbrella*
• Meraki vMX
• Umbrella
• AMP for Endpoints
• Meraki Systems
Manager
• Cloudlock
• Tetration SaaS
• Stealthwatch Cloud
Cloud
Connect
Cloud
Protect
Start with the essential solutions and servicesCisco Multicloud Portfolio
Extending policy into the multicloud
ACI Anywhere for Multicloud
Roles driving change
Cisco Container Platform
32
Hybrid Cloud OptimizedE.g: Google, …
Flexible Deployment ModelVM | Bare metal HX, ACI | Public cloud
IntegratedNetworking | Management | Security | Analytics
Native Kubernetes (100% Upstream)Direct updates and best practices from open source
community
Turnkey Solution
For Production-Grade Container
Environments
Easy to acquire, deploy & manage | Open & consistent | Extensible platform | World-class advisory & support
Cisco Container Platform
K8s master 1 K8s master n
K8s Node K8s Node K8s Node
Persistent Storage
Overlay Network
SecureCommunication Load
Balancer
Storage
External Communication
Kubernetes
External Network
Highly automated, curated
Runs on 100% upstream Kubernetes
Seamless container networking
Built In security and load balancing (L4/L7)
Enterprise-grade persistent storage
Integrated monitoring and logging
Technical Differentiators
IaaS
Kubernetes Lifecycle Management Kubernetes AuthN and AuthZ
• Deploy Kubernetes clusters on HyperFlex IaaS (VMware)
• Container Networking (Contiv / ACI)
• Persistent storage (Flex Driver)
• Layer-4 and Layer-7 load balancing
• High availability
• Authentication with Active Directory
• Role based access control
• Communication between containers and external VMs / BMs
• UI – Kubernetes, API
• Security (policies, encryption)
• Add / remove Kubernetes nodes
• Lifecycle management (OS updates, Kubernetes upgrades)
• Monitoring (Prometheus)
• Logging (EFK)
Cisco Container Platform Feature Set
Kubernetes-as-a-Service
Setup ManageConsume
Cisco Hybrid Cloud Platform for Google Cloud
On-premises environment
Google Kubernetes Engine
Existing servicesapps | data
Cisco Hybrid Cloud Platform for Google Cloud
Cisco HyperFlex
Cisco Nexus9K / ACI
Cisco CSR1000v
Cisco Stealthwatch Cloud
Cisco Container Platform
Consistent environment
Google Apigee
Cisco CloudCenter
Istio
BigQueryCloud SQLPub/SubBig TableCloud StorageCloud Spanner
Open Service Broker
On-premises Environment
Cisco Nexus9K / ACI
Cisco HyperFlex / UCS
VPC
EC2 / EBS
Elastic Container Registry
Identity and Access Management (IAM)
Cisco CloudCenter
Stealthwatch Cloud
AppDynamics
Optional Mandatory
Cisco CSR1000v
Cisco Container Platform
Amazon EKS
Legend:
Production-grade consistent environment
Cisco Hybrid Solution for Kubernetes on AWS
From one app/cloud to multiple apps/cloudsCisco Multicloud Portfolio
Multicloud
Portfolio
Cloud
Connect
Cloud
Protect
Cloud
Advisory
Cloud
Consume
設計、計畫、加速、降低您的多雲遷移風險
在多雲和容器環境中部署、監控和優化應用程式
安全地將您的私人網路絡擴展到公共雲中, 並確保應用程式體驗
保護多雲身份、直接到雲連接、資料和應用程式 (包括 saas)
Cloud
Consume
Cloud
Protect
Cloud
Connect
Cloud
Advisory
Multicloud
Portfolio
Advisory Services
• Cloud Migration
• Cloud Connect
• Cloud Protect
• Cloud Consume
(Delivered by AS/Cisco Partners)
• CloudCenter
• AppDynamics
• Container Platform
Cloud
Consume
Cloud
Advisory
• CSR 1000v
• vEdge + Umbrella*
• Meraki vMX
• Umbrella
• AMP for Endpoints
• Meraki Systems
Manager
• Cloudlock
• Tetration SaaS
• Stealthwatch Cloud
Cloud
Connect
Cloud
Protect
Start with the essential solutions and servicesCisco Multicloud Portfolio
Thank You.