Společnost Brocade je známa zejména ze světa SAN (Storage Area Network), ale mimo to vyrábí špičková zařízení (switche, routery, load balancery,…) pro LAN/WAN/WIFI a doručování aplikací, které vynikají oproti konkurenci zejména vysokým výkonem a propustností. Seznámíme vás s produkty pro lokální a konvergované sítě vašich datových center určených pro virtuální serverovou i desktopovou virtualizaci. Łukasz Kozłowski (Brocade) / Jaroslav Prodělal (OldanyGroup)
24. ICX 6430 & 6450 Product Overview
Enterprise-Class Stackable Switching at an Entry
Level Price • Cost-effective Ethernet Stacking
• 40G of stacking bandwidth with 10G ports (full duplex)
• Hitless stacking controller failover
24/48 x 10/100/1G
with PoE+ • 384 ports per stack (ICX 6450)
2xRJ45 Console,
OOB • Flexible Model Configurations
• Dual-purpose uplink/stacking ports
• 24/48 x 10/100/1G + 4x1G SFP uplinks/stacking
• 24/48 x 10/100/1G + 4x1G/10G SFP+ uplinks/stacking
• PoE/PoE+ and non-PoE models
• Includes fanless model: ICX6430-24
• Advanced Features
• RPS/EPS – redundant power and extended PoE
power
• Encryption via MACSEC 802.1ae (HW ready)
ICX 6430 ICX 6450 • Energy Efficient Ethernet (EEE) (HW ready)
4 x 1G SFP 4 x 10G SFP+
• sFlow for granular traffic accounting (ICX 6450)
Uplink/Stacking Uplink/Stacking
(4 unit stack) (8 unit stack)
• L2 and Basic L3 Features
• Common CLI and feature parity with FWS
• Base software includes IPv4 static routing (ICX6450)
• Premium license for L3 – OSPF, RIP, VRRP 24
25. ICX 6430 and 6450 Comparison
Key Differences
ICX 6430 ICX 6450
4 x 1G SFP 4 x 1/10G SFP+
4G Stacking BW (full duplex) 40G Stacking BW (full duplex)
4 units per stack 8 units per stack
192 ports per stack 384 ports per stack
Max 24 PoE+ Ports (w/ EPS1500) Max 48 PoE+ Ports (w/ EPS1500)
L2 only L2 and Basic L3 via license
No sFlow sFlow network monitoring
No MACsec MACsec HW-ready
EEE HW-ready EEE HW-ready
8K MAC addresses 16K MAC address
4 QoS queues 8 QoS queues
25
26. Entry-Level Cost-Effective Stacking
• Stacking using 1G / 10G uplink/stacking ports
• ICX6450: 8 units/stack; ICX6430: 4 units/stack
• Stack with low-cost Direct-Attached Copper (Twinax)
cables (not included with the switch)
• Stacking cable length: 1 m, 3 m and 5 m
• Mix stacking not supported between 6430 and 6450; 6610
and 6430/6450 (HyperEdge roadmap)
• Stacking between ICX6430 24- and 48-port models is not
supported
• Horizontal stacking supported with fiber optics for longer
distance stacking
10G 10G
26
27. ICX 6450 Switch 10G Port License
ICX6450-2X10G-POD-LIC
• Default uplink/stacking port configuration (out of the box)
• 2 x 10G SFP+ ports enabled
• 2 x 1G SFP ports enabled
• Optional license required to upgrade 2 x 1G ports to
2 x 10G speed
• ICX6450-2X10G-POD-LIC: List Price $1000
• Buy only what you need, don’t need POD license for all
switches within the stack
27
28. External Power Supply
ICX6400-EPS1500
• Provides redundant system power and PoE/PoE+ power extension
• External RPS and can add to the PoE/PoE+ power budget of the switch
• 19 inch rack mountable and 1U high
• 3 DC cables and rackmount kit are included
• EPS1500 requires 20 Amp AC power cord (included)
• Connects up to 3 switches
• ICX6450-48P has 2 EPS connectors to get full PoE+ on all 48-ports
• No RPS support for ICX6430 -24 fanless model (for classrooms, open offices)
ICX6450-48P
ICX6400-EPS1500 ICX6400-EPS1500
28
29. Brocade Assurance Limited Lifetime Warranty
and Phone Support
Brocade Juniper Cisco HP Procurve
HW Warranty NBD Adv HW Replacement NBD Adv HW (30 days) NBD Adv HW NBD Adv HW
Excludes: Optics 5 yrs Fan & PS 5 yrs: Fan & PS
SW Policy SW maintenance Updates - NEW! SW Updates SW Updates SW Updates
8x5, 90 days - FCX, ICX 6610 NEW! 24x7, 90 days 8x5, 90 days 8x5 Basic Support,
Remote Support 8x5, 90 days - SX from 1 yr, 24x7 Lifetime
8x5, 3 years ICX 6400 NEW!
• HW Lifetime Warranty – No Change, all hardware covered except
pluggable optics
• SW Lifetime Updates – Includes patch releases and maintenance updates (except
for ADV images)
• Phone Support – Included with campus products, duration varied by product
• FSX, FCX, ICX6610 - 90 days 8x5 support
• ICX 6430/6450 - 3 years 8x5 support
• Optional remote support available for 24 x 7 TAC support and on-site support
• Warranty and support applicable for campus products sold worldwide
29
Give a real world case: how do you do it now. Slide 2A transformation is taking place in enterprise data centers that is driving significant change to how data center networks are designed and built. Two principle business objectives are driving this transformation: (click):Greater business agility. Enable the business to respond faster to market opportunities and changes in business needs or conditions.Greater cost efficiency. Ensure $$ are spent in the most efficient manner and delivering the greatest overall return on investment (not necessarily lowest cost). In the data center this spans infrastructure, staffing, space, and energy costs. To achieve these objectives, enterprise IT organizations are:(click) Making extensive use of virtualization technology, especially for server deployments Assessing how to transition from a traditional application deployment model where infrastructure – compute, storage, and networking - is procured “by the project” for business units (e.g. finance department) and implemented over a period of months, to a model that is more strategic to the business. (click) Where infrastructure resources are delivered as services to any application on demand, utilizing a common pool that can be rapidly allocated (hours or days) and charged back to business units based on usage. A model often referred to in the Data Center as the Private Cloud. What many enterprise customers are recognizing, however, is that conventional Ethernet networks limit their ability to scale virtualization and are not built to provide a dynamic “Cloud” infrastructure. As a result, Data Center networks are evolving over the next 3-5 years in very significant ways.I’ll walk you through at a high level how we see this Data Center transformation taking shape and how the network will evolve to achieve greater business agility and cost efficiency.(click) Here we see a conventional Data Center network architecture with the classic LAN access, aggregation, and core tiers. (Note to presenter: if asked why the SAN is depicted differently, simply answer a Fibre Channel SAN utilizes a fabric vs. tiered architecture. No need to add more at this stage in the discussion - the audience is LAN focused).(click) A key item to note is that this hierarchical design is rooted in connecting a conventional client-server environment, that assumed one application per physical server and traffic running predominantly north to south from the Data Center to the Campus or WAN. This type of environment can tolerate oversubscription in the switching components because on average, each server connection utilizes a relatively small portion of network bandwidth. To help ensure application availability, network resiliency is delivered through redundant switching components and network connections. Server virtualization and the distribution of application components across virtual machines changes the dynamics of network traffic and coupled with the high growth in application data and rich media, introduce challenges that limit scalability: As more virtual machines (VMs) are added per physical server, the traffic load per server increases accordingly, straining access and aggregation layer connections and impacting application service levels in the event of network congestion.The cost and time savings of server virtualization allow more applications to be deployed, but may also require a re-design of the network to support traffic growth.More applications, bigger and broader server clusters, and the growth in data volume all lead to greater server-to-server traffic and more East – West traffic flows that the network must support. Note that Virtual machine mobility is only supported at Layer 2 and is therefore limited to the size of the Layer 2 network. However network traffic and Spanning Tree Protocol (resulting in only one active path between switches) makes building large Layer 2 networks problematic. And the increasing complexity and inability to fully utilize the entire network also creates cost inefficiencies.
Slide 3 (click) Network architects are now looking for ways to build more powerful, flatter networks that can support higher traffic loads and increasing East-West traffic in virtualized environments, while avoiding network congestion. Collapsing network layers also reduces complexity, which lowers overhead costs and reduces risk. This flatter design, however, requires high density, high bandwidth, and low latency network components that deliver full wire-speed connectivity. Yet Layer 2 network challenges still remain. Spanning Tree Protocol brings traffic to a halt during tree convergence, allows only one active path between switches, and requires switch reconfiguration when changing inter-switch connections. VM mobility also remains restricted. Thus the ability to scale virtualization – and achieve greater agility and cost efficiency - is still limited.
Slide 4 (click) Speaker: People are asking for a solution and vendors are providing Ethernet FabricsA recent and very significant architectural breakthrough for Ethernet addresses these challenges and can change the way Data Center LANs are designed. It is called an Ethernet Fabric.Imagine a large, flat Layer 2 network with high wire-speed performance, high network resiliency, and all paths between switches fully active – there is no Spanning Tree Protocol. The topology of the network is flexible and can change as the environment grows. And if appropriate to the application, IP and storage traffic can be “converged” over a common network connection. Ethernet Fabricenables intelligent and seamless VM mobility across your server environment and greatly simplifies network administration as all switches in the fabric are managed as a single entity or individually as needed.A large, flat, fully utilized Layer 2 network providing high bandwidth and wide virtual machine mobility, enables IT organizations to significantly scale virtualization and rewrite IT policies and processes and begin to deliver services via the Private Cloud. (Note: if audience asks if this is what Cisco and Juniper are beginning to talk about, a simple answer is:Cisco’s early “Fabric Path” feature and Juniper’s “Stratus” initiative are squarely centered on delivering an Ethernet Fabric. So yes, this is the future. PL Comment: Note to speaker - Leave the response at that. Do not go into the differences between Brocade, Cisco, and Juniper. Those differences will come out throughout this presentation and plant the seed in the audience mind on how Ethernet fabrics work. If/When they go back to Cisco and Juniper and ask about things like simplified management or distributed intelligence, neither will be able to provide and Brocade will come out on top. As noted, we are now at the forefront of this evolutionary stage and innovation in LAN architecture. We also see it broadening as IT organizations look to further increase business agility and cost efficiency by extending the Private Cloud (click).
Key PointsThree-tier Ethernet networks have been successfully deployed in data center environments for the past few decades.Now, a new type of data center network architecture is emerging called Ethernet Fabrics.VCS is the leading Ethernet Fabric technology.
Key PointsBrocade Virtual Cluster Switching (VCS) is a revolutionary layer 2 Ethernet technology that raises network utilization, maximizes application availability, increases scalability, and drastically simplifies the network architecture in next-generation virtualized data centers.VCS is comprises of three main pillars of innovation; Ethernet Fabric, Distributed Intelligence, and Logical Chassis. The VCS architecture is designed to incorporate a set of Dynamic Services for the highest level of functionality and investment protection, making it a core building block for virtualizing the data center network.Ethernet FabricBrocade pioneered the development, architecture, and deployment of network fabric technology in the data center. Brocade’s SAN fabric technology is successfully proven in over 90% of the Global 1000 data centers. Now Brocade is bringing the same level of innovation to the data center LAN, combining Ethernet and Brocade fabric technology.STP is not necessary because the Ethernet fabric appears as a single logical switch to connected servers, devices, and the rest of the network. The Ethernet fabric is an advanced multi-path network utilizing an emerging standard called TRILL (Transparent Interconnect of Lots of Links). Unlike STP, with TRILL, all paths in the network are active and traffic is distributed across those equal cost paths automatically. In this optimized environment, traffic automatically takes the shortest path for minimum latency without any manual configuration.Events like added, removed, or failed links are not disruptive to the Ethernet fabric and do not require all traffic in the fabric to stop. If a single link fails, traffic is automatically rerouted to other available paths in under a second. Single component failures do not require the entire fabric topology to reconverge, ensuring all traffic is not affected by an isolated issue. The fabric is lossless and low latency.The Ethernet fabric is designed to include advanced Ethernet technology for higher utilization, greater performance, and to be network convergence ready. With Data Center Bridging (DCB) capabilities built-in, the Ethernet fabric is lossless, making it ideal for FCoE and iSCSI storage traffic and will enable LAN and SAN convergence for Tier 2 and 3 applications. Distributed IntelligenceWith VCS, all configuration and end device information is automatically distributed to each member switch in the fabric. The Ethernet fabric is self forming. When two VCS-enabled switches are connected, the fabric is automatically created and the switches learn the common fabric configuration.The Ethernet fabric does not dictate any specific topology, so it does not restrict over-subscription ratios. This allows the architect to create a topology that best meets application requirements.The fabric is aware of all members, devices, and VMs. When a server connects to the fabric for the first time, all switches in the fabric learn about that server. This allows for fabric switches to be added or removed and for physical or virtual servers to be relocated, without the fabric needing to be manually reconfigured.Unlike switch stacking technologies, the Ethernet fabric is masterless. This means that no single switch stores configuration information or controls fabric operations.Distributed Intelligence supports a more virtualized access layer. Instead of distributed software switch functionality to exist in the virtualization hypervisor, access layer switching is done in the switch hardware, improving performance, ensuring consistent and correct security policies, and simplifying network operations and management. Automatic Migration of Port Profiles (AMPP) supports VM migrations to another physical server, ensuring that the source and destination network ports will have the same configuration for the VM. This is key technology that helps enable Brocade Virtual Access Layer (VAL) capabilities.Logical ChassisAll switches in an Ethernet fabric are managed as if they were a single Logical Chassis. To the rest of the network, the fabric looks no different than any other layer 2 switch. The network just sees the fabric as a single switch, no matter if the fabric contains a little as 48 ports, or thousands of ports.The Ethernet fabric is designed to scale over 1000 ports per Logical Chassis. Consequently, VCS removes the need for separate aggregation switches because the fabric is self-aggregating. This enables the network architecture to be flattened, dramatically reducing cost and management complexity.Each physical switch in the fabric is managed as if it were a port module in a chassis. This allows for fabric scalability without manual configuration. When you add a port module to a chassis, you do not have to configure that module, and a switch can be added to the Ethernet fabric just as easily.The logical chassis functionality drastically reduces management of small-form-factor edge switches. Instead of managing each top-of-rack switch or switches in blade server chassis individually, they are managed as one Logical Chassis.Dynamic ServicesDynamic Services extends the capabilities of VCS for maximum investment protection and to incrementally incorporate new network services. A Dynamic Service behaves like a special service module in a modular chassis.Examples of these services are fabric extension over distance, native Fibre Channel connectivity, Layer 4-7 services such as Brocade’s Application Resource Broker, and enhanced security services such as firewalls and data encryption.Switches with these unique capabilities can be added to the Ethernet fabric, adding a network service layer available across the entire fabric.
Key PointsDistributed Fabric Services is like a shared database across all members in the Ethernet fabric.The Ethernet Fabric is masterless. Full fabric reconvergence is never required.Virtual Ethernet Port Aggregator (VEPA)
Let’s start with the Brocade Ethernet Fabric, in a private cloud with five VDX switches. You can create a port profile on any switch in the fabric. When you do, the profile is automatically shared throughout the fabric. In essence, the cloud has become a big virtual switch. Now, we’re going to bring up a new webserver, a virtual machine with the MAC address of 0000.0000.0000.0000. You will see that the “WebServer” port profile has been applied to this new VM. In this table, MAC address has also been propagated to all switches in the fabric so they all know what port that VM currently resides on. I will show you that it has access to the applicable VLANs and devices in this VLAN. I can ping devices in my VLAN and Now we’re going to show VM migration. We’re going to spin off three more virtual machines.
Key PointsThe Ethernet fabric is managed as if it were a single logical chassis.Scaling the fabric is like adding a new port module in a chassis like MLX or DCX.The VCS technology will allow Ethernet fabrics to scale greater than 1000 usable ports.
Role-based wired/wireless firewall (Layer 2-7) with stateful inspection for wired and wireless traffic; active firewall sessions—50,000 per controller and 600,000 per cluster; protects against IP spoofing and ARP cache poisoning With ADSEC License:RFS6000 – 512RFS7000 – 1024 The RFS4000, since it has ADSEC license as part of the image- always allows 256 tunnels.
The product family also includes the first true data center wide management platform calledBrocade Network Advisor. This platform is designed as both a best-in-class element management platform for Ethernet, Fibre Channel, and converged products, and it also supports a set of open, publically available APIs to allow integration with existing external tools. We are doing deeper integration with many of our partners, including IBM, DELL, and EMC as well as creating plug-ins for VMware and Microsoft Hyper-v. Between the integration efforts underway and the available APIs, I think we have coverage for about 90% of the tools that our customers are using today.Note: let people know that DCB replaces CEE.
Welcome and personal introductionThis presentation is designed to provide an insightful view of the industry…along with a detailed outline of the Brocade vision and our innovative technology to achieve that vision