the new ip시대에 따른 가상 adc(vadc)로의 진화(brocade 이학수 부장)

새로운 IP에 따른ADC시장의 변화와국내사례파악

시대별 IT 환경의변화네트워크관점에서바라보는 IT 환경

© 2015 BROCADE COMMUNICATIONS SYSTEMS, INC. 2

• Mainframe 시대• 단일시스템을통한자료가공

및처리• 네트워크불필요• 백업을위한테잎/디스크사용

1st Platform

• Client-Server 시대• 네트워크를이용해서로간

연결(connectivity)을제공• 네트워크방식에따라

구분되는서비스

2nd Platform

• 새로운방식의연결을만드는새로운네트워크필요

• 네트워크기반의서비스가아닌서비스기반의네트워크필요

3rd Platform - ?

SOCIAL CLOUD

MOBILE BIG DATA

안정성 / 지속성 속도 / 용량 개방성 / 확장성 / 연동성

네트워크의변화


SOCIAL CLOUD MOBILE BIG DATA

새로운서비스에맞는새로운형태의네트워크필요

3rd platform 에적합한네트워크필요

The New IP3rd Platform 에적합한네트워크


SDN

FabricNFV

“The New IP”” 3rd 플랫폼을위한네트워크

© 2014 BROCADE COMMUNICATIONS SYSTEMS, INC. CONFIDENTIAL—FOR 5

SDN and NFV

DC Consolidation

Cloud Multitenancy

Virtualization

Explosive Data

Source: IDC, Market Analysis Perspective: Worldwide Datacenter Networks, 2012.

Virtualization

DC 통합 클라우드 멀티테넌시

Data Center Trends

© 2014 BROCADE COMMUNICATIONS SYSTEMS, INC. CONFIDENTIAL—FOR 6

Applications

ComputingHardware

Storage

OperatingSystems

NetworkInfrastructur

e

Networking is NextIT 환경에서의가상화흐름 – Network 가상화

Virtualization and Cloud:차세대데이터센터로의진화

2011 2016

54%

Physical Compute

29%Physical Compute

46%Virtual Compute

71%

Virtual Compute

Virtualization

72%

Private Cloud

My on-premisesdata center

Apps In The Cloud

$54.5B

19% CAGR*

My SP hosted or managed

$131B

17% CAGR*

Public Cloud

My cloudservice provider

*Gartner, 2013, “Public Cloud Forecast 2011-2017

** Gartner, 2013, “Private Cloud Matures, Hybrid cloud is Next”

Cloud

cloud

Changing Application Architectures

기존구성 (Client-Server) • ADC 는 App 서버와최대한가까운곳에위치

• 수동환경

• 하나의서비스세트로동작ADC Web

Tier

App

Tier

DB

Tier

App Traffic

• App 을분산해위치가능

• 각 Object 의재사용및확장용이

• ADC 는각서비스와같은서버또는근처서버에설치

• 동적환경에적합

• 분산서비스세트에적합

현재의 DC 구조 (Active-Active DC 환경)

Data Center 2Data Center 1Cloud Service

Application Objects

App Traffic

물리서버에서 VM 환경으로의변화는서비스적용시간을대폭단축

Present

$3002 분

Enterprise storage

VLAN networks

Firewall, ADC

IDC, Security, Monitoring

Availability

$1,8005 Days,

2 Minutes

Past

$10,00010 주

Legacy ADC Ops Challenge

가상데이터센터모델

Decreasing Operational Timeframes

Changing App Data Flows

Cloud-Aware Data Centers

ADCBottlenecks

•Static

•Proprietary

•Hard to scale

•Slow to deploy

•Complex

•Costly

Today’s ADC Architectures

가상데이터센터환경의병목지점

• 가상화의장점을그대로수용

‒구성의유연성, 민첩성, 탄력성증가

‒장애시복구시간감소

‒서비스를위해소요되는시간대폭감소

• Traffic 흐름의효율성

‒ Server 내* 트래픽흐름에최적화

• 가상화환경의 ADC 솔루션에최적화

* 일반적인가상화환경에서의트래픽 : 외부네트워크/ADC 스위치를통해 L3/L4 통신

Benefit of Brocade vADC

가상화환경에서의 vADC 장점

Performance

Web Accelerator

Cost Savings

Services Controller

Security & Protection

Web Application Firewall

Efficiency & Control

Traffic Manager

Load Balancer 에서 ADC 까지…

Services Controller 구조

• Deployment

• Inventory

• Licensing

• Metering

Services Controller

Linux Containers (LXCs)

Traffic Manager micro instances

. . .256

Host Platform (physical or virtual) Multiple ADC Host

PlatformsLinux Containers

. . .256

Host Platform (physical or virtual)

혁신적인구조 : 제어부와데이터플레인을분리

Cloud 서비스를위한최적의서비스제공 – Bandwidth license 를나누어가입자별로 TM 서비스제공

Services Controller 주요기능들


InventoryInstance management (active / inactive)

LicensingFlexible on-demand provisioning of ADC instances

“Micro” ADCsScaling, multi-tenancy, isolation, elasticity, no VM overhead

Metering Billing / chargeback, monitoring and reporting

Deployment Service Implementation roll-out

Traditional Data Centers often have poor

utilization and low flexibility

Consolidate servers into a virtual environment to save infrastructure costs and improve utilization

SteelApp increases deployment flexibility

SteelApp auto-scaling helps cloud apps take advantage of hybrid cloud environments

ADC-as-a-Service: Usage-based licensing model

Victoria’s Secret: Dynamic Content Delivery

EMC: 80% cost savings

Key Benefits:Innovative licensing modelsFlexible deployment in cloudsIntegrate cloud provisioning tools

80%

Hybrid Cloud Deployment

1. $path = http.getpath();

2. if( string.startswith( $path, "/products" ) ){

3. http.redirect( "/services.html" );

4. }

Aptimize Accelerator Advanced Users Guide

Copyright © 2010 Aptimize Ltd of 57

6. Getting the site as fast as possible Making any website fast is a matter of few simple rules:

1. Reduce the time it takes for the server to respond to a request 2. Reduce the number of objects being loaded by HTML pages 3. Reduce the size of everything sent from the server 4. Cache everything as much as possible to speed up repeat views 5. Load things in parallel to prevent gaps in downloading content

The Aptimize Accelerator product family helps you apply these 4 rules to any website quickly and without changes to the website code or content. The recommended technique is to start with the accelerator in safe mode, and then (assuming in safe mode that everything looks ok) incrementally turning features on as described below.

Reading waterfall charts The waterfall chart is one of the most useful ways of seeing the loading behavior of the site, and determining where your effort should be focused. Below is a waterfall chart generated by AOL page test for the sample SharePoint site referred to above:

Analysis of this chart and the related table shows that there is room for improvement – the chart x-axis measures load time in seconds, while the y-axis shows the objects that the browser loaded to display the page that was requested.

Powerful Tools, Easy to Manage

• 64-bit software binary• Linux 또는 Solaris 용• Maximum flexibility for

enterprise architects• H/W 기반의 ADC 대체

• Pre-packaged for leading cloud providers

• Closer integration with named CSPs and CSFs

• AMIs for Amazon• VHD for Azure

• Pre-packaged VA• Range of Hypervisors• VMware, Hyper-V,

Oracle VM, 등지원• Hypervisor-specific

features

• Linux Containers• High-density deployment• Micro in footprint only• Best for LB/SSL features• Services Controller 사용시적용가능

PureSoftware

VirtualAppliance

CloudPackaging

MicroADC

Deployment Options

고객사례#1

• 배경‒ 가상화(MS Hyper-v) 환경

• 당면과제‒ HTTPS 서비스시 안정적인 서비스제공 필요

‒ 이미지가 많은웹 트래픽 처리를위한 고성능 장비가필요

‒ 사용자 환경에따른 로드밸런싱 정책필요

• 해결방안‒ SSL Offload 기능으로 서버 부하 절감 및사용자 응답시간 단축

‒ Traffic Script 로 모바일 기기만특정 서버로 로드밸런싱적용


고객사례#1


BackBoneSwitch

TrafficManager

WebTrafficManager

Web

• 모바일기기만특정 서버로접속

• SSL Offload 로사용자응답시간단축

고객사례#1


• 모바일기기만특정 서버로접속 • SSL Offload 로사용자응답시간단축

고객사례#2

• 배경‒ 가상화(Vmware Vsphere) 환경

• 당면과제‒ 계열사가 하드웨어네트워크 시스템 유지보수

‒ 서비스 변경및 요청에 따른 즉각적인대응 필요

• 해결방안‒ S/W 기반의 Traffic Manager로 계열사에 요청없이 즉각적인 대응 가능


고객사례#2


• 로그인시클라이언트 IP주소확인필요

• 스팸서버 IP주소만 허용Servefarm

SwitchDMZ

SwitchDB

Switch

TrafficManager

WebMail TrafficManager

WebMail

고객사례#2


• 서버에서 Source NAT로 인해 모든클라이언트가TM의 IP주소로 변경됨

‒ 메일서버로들어오는 트래픽에 대해스팸서버를 거친트래픽이구분 불가

‒ 웹서비스시클라이언트 IP 주소확인이 안되서로그인이 안됨

고객사례#2


• TM에서 Mail 서비스요청시 스팸 서버 IP주소만 허용

• TM에서 서비스 요청시 HTTP 헤더에클라이언트 IP 주소 삽입

• Cache Hit율이 79%이고, 그만큼 서버의 부하가줄어듬

the new ip시대에 따른 가상 adc(vadc)로의 진화(brocade 이학수 부장)

Technology