Cisco Virtualization Experience Infrastructure...Cisco Virtualization Experience Infrastructure...

© 2010 Cisco and/or its affiliates. All rights reserved. 1

Cisco Virtualization Experience Infrastructure

Višnja Milovanović, Systems Engineer

Cisco Public© 2010 Cisco and/or its affiliates. All rights reserved. 2

• Capital Expenditures (CAPEX)

Lengthened desktop hardware refresh cycles

Reduced desktop hardware capital expenses

Reduced desktop software license

• Operational Expenditures (OPEX)

Reduced desktop software maintenance and operational expenses

Lower desktop power consumption

Self-service desktop fault resolution

• Capabilities

Disaster Recovery (DR)

Improved desktop and data security/protection

Improved user mobility

• Externalization

Increased numbers of contractor, outsourcer, or partner desktops to support

© 2010 Cisco and/or its affiliates. All rights reserved. 3Cisco Public

Virtualization-Aware

Borderless Network

Virtualized Data Center Virtualized

Collaborative WorkspaceMS

Office

Desktop Virtualization Software

Microsoft OS

WAAS

Nexus

ACE

Hypervisor

Cisco CollaborationApplications

Virtual Quad

VirtualUnified CM

Branch

ISR

WAAS

CDN

Access

Switching

w/PoE

SiSi

Cius Business Tablets

Cisco Virtualization Experience Clients

Cisco Clients

Thin Client Ecosystem


Quality of user experience

• Display protocol not designed for Rich media streaming, voice/video, remote access often less than optimal

Performance: Voice/Video cannot be prioritized by QoS

Jitter: Voice traffic must go round trip

• Bandwidth: Each “new” copy streamed for each additional DV

client = branch WAN bandwidth overruns

• Current display protocols are opaque to network services

VirtualizedData Center

Virtualization Aware Network

Virtualized Collaboration Workplace

Display Protocol


• Robust and Scalable Environment for Desktop Virtualization

• VXI enabled data center address the following challenges when deploying Desktop Virtualization:

Scalability

Manageability

Security

Availability

Cisco ASA

Cisco ACE

Cisco NAM

DC Core

DC

Aggregation

DC Access

Cisco UCS

and N1k

Storage

Cisco N5K

Cisco MDS

Cisco N7K


Cisco VXI CVD on Design Zone http://www.cisco.com/en/US/netsol/ns742/networking_solutions_program_category_home.html

Housing the Hosted

Virtual Desktops

WAAS

Management

NFS Storage

Outside VDC connects to edge

Routers

WAAS CM (WAE-574)

WAAS CM (WAE-574)

• Cisco VXI Validated Design

http://www.cisco.com/en/US/netsol/ns742/networking_solutions_program_category_home.html

© 2010 Cisco and/or its affiliates. All rights reserved. 8

UCS Manager construct pools, Templates and policies allows rapid server provisioning Various user type can be mapped to specific server pools based on user profiles Various policies like boot from SAN, makes provisioning OS simpler UCSM allows QoS policies to be set right from the server adapter

Unique benefits due to key UCS technologies

UCS

Service

Profiles

UCS

Extended

Memory

Virtual

Interface

Card

Unified

Fabric

(FCoE)

Windows 7 has a large memory footprint; scaling Win 7 requires large memory Larger memory footprint desktops makes B250-M2 ideal for VDI deployment UCS extended memory technology makes it possible for high bandwidth (1333MHz)

memory access even with four times more DIMM slots on a two socket architecture

Cisco VIC simplifies network management in the hypervisor Using VN-Link in hardware the number of network management points can be reduced

by an order of magnitude Provides low latency and high bandwidth for applications

Unified Fabric with high I/O bandwidth helps in scaling data intensive work loads Wire once infrastructure for bandwidth and not for connectivity Eliminates multiple adapters, cables and switches to scale the infrastructure, reduces

power in the Data Center


• Using available templates to create new Service Profiles


• Numbers fluctuate based on worker profile

=Cisco UCS B250 with 192GB memory


• Fourteen ESX Hosts – Physical CPU (Total) %Core Utilization Time

Processor patterns consistent as environment scaled

1540 hosted virtual desktops


• Personal Computer is disaggregated

• Keyboard, Video, and Mouse stay with user

• Compute and storage move to the data center

• Network availability is required for all application access

• Network performance is critical to user experience

Broker

ComputeStorage

Keyboard, Video, Mouse

Network

ThinClient


• Cisco Application Control Engine (ACE) to accelerate and scale connection broker

• Offloading SSL processing from the connection broker

ACE Load

Balancer

Mobile

Teleworker

Connection Broker Serverfarm

Virtual IP

Thick client

Thin Client

Endpoint (LAN user)


Optimization of virtual desktop protocols – e.g RDP

Protocol

- latency mitigation

- reduction of bandwidth,

- optimization for MMR and USB Redirect for rich media

and USB peripherals (Printing)

End-users experiences no pixelization

T1

Branch Router

Branch Office

Virtualized

Data Center

Video Source

Branch WAE Data Center WAE

WAN Acceleration for Display Protocol

Edge Router

End-users see pixelization as media is rendered from the data center


• WAAS providing 72% optimization for Wyse-MMR while providing 47% optimization for USB-Redirection


• WAAS providing 26% optimization (TFO, LZ and DRE) for the first print request

• WAAS providing 55% optimization for the second print request


• Introducing the Cisco VXC 2100 and 2200

Support for PCoIP and ICA/RDP display protocols

Cisco VXC 2100 is a compact device that integrates with the Cisco Unified IP Phone 8900 and 9900

Cisco VXC 2200 is a standalone unit

Both units support PoE (Power over Ethernet)

Cisco VXC 2200 Cisco VXC 2100


• Supported setup for Cisco VXI Phase Two

• Unified Communications using desk phone control which allows

• RTP (UC media “voice/video”) to flow outside the display protocol

• Signaling of CUPC back to CUCM is still inside the display protocol

• QoS can be used on media

• Path is optimized

• Location Awareness and 911, Codex selection, CAC, SRST Reference, Time Zone, Dial-Plan

Virtual Desktop

Virtual Desktop

CUCM WAN

Zero

Client

Display Protocol

Zero

Client

Display Protocol

Media Flow

Data Center

UC Signalling

UC Signalling

Signalling

(CTI)

Signalling

(CTI)


Phone Integrated Stand Alone

Model VXC-2111 VXC-2211

Software PCoIP, RDP 6.x

I/O 4 x USB1.1

2 x DVI-I (1920x1200)

1 x Analog Audio

4 x USB1.1

2 x DVI-I (1920x1200)

1 x RJ45, 1 x Analog Audio

Network 89XX/99XX Phone

Phone Ethernet (No WiFi)

Ethernet (No WiFi)

Power Over Ethernet 802.3AT supports Phone

with No Camera

All other configurations

require a Power Cube

1 Display – 802.3AF

2 Displays – 802.3AT

Optional Power Cube


• Supports external USB mouse & keyboard

• Supports external display in “mirror mode”

• Base supports POE

1024 x 600

1024 x 600 scaled up

to display size

Dedicated chip to

improve external

display quality

Display

Port


• Cisco VXI Configured Branch

Branch One

WAAS SRE

Branch Two Cisco VXC 2100

Branch Three

Combination of Cisco Endpoints

Dynamic VPN

Datacenter

WAAS

Express

WAAS

WAE

Cisco VXC 2200

Branch Services

Power over Ethernet

Wan Optimization “Print, MMR, Data

Voice and Data QoS

Dynamic VPN Between Branch

Cisco ACE

WAAS DC

Cisco UCS

HVD

Branch Components

Cisco ISR G2

SRE 900 SM

Cisco VXE 2100 and 2200 Endpoints

Cisco Cius


• Deployment Models using AnyConnect Mobile Client

• Someone who can connect to their virtual desktop from any endpoint

• Mobile teleworkers are typically in unsecure network locations

• Advantages of Cisco VXI allows mobile teleworkers to connect securely using Cisco AnyConnect Client

• Data is still secure, even if the endpoint is stolen, damaged or lost

WAN

Connection

Broker

Hosted

Virtual

Desktop

Cisco ASA

VPN Tunnel

Mobile Teleworker

Endpoint


• Cisco VSG (Virtual Security Gateway) protects the virtual environment within the data center

• Cisco ASA 5500 Appliances (ASA) secure the data center to defend against threats and unauthorized access

• Cisco AnyConnect Secure Mobility Solution (AnyConnect) establishes trusted access between the client and the data center

• Cisco ScanSafe offers Cloud Security (SaaS) with Secure Split tunneling

• Cisco N1000v preventing DHCP Snooping, Dynamic ARP Inspection (DAI) and IP Source Guard (IPSG)

• Cisco switching providing Radius authentication using 802.1x


• One of the leading banks in Europe

• More then 100.000 employees globally

• Consolidating global data centers

• Vblock architecture - Virtual Computing Environment (Vmware, Cisco, EMC)

• VDI project for 25.000 users (currently in production with 13.000)

• Migrating core business applications to Vblock architecture

Thank you.

Cisco Virtualization Experience Infrastructure...Cisco Virtualization Experience Infrastructure...

Documents

Transcript of Cisco Virtualization Experience Infrastructure...Cisco Virtualization Experience Infrastructure...