Vblock Solution for Trusted Multi-Tenancy: Design Guide - VCE
Vblock Solution for Trusted Multi-Tenancy: Design Guide - VCE
Vblock Solution for Trusted Multi-Tenancy: Design Guide - VCE
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Virtual access layer/v Sw itch<br />
Cisco Nexus 1000V distributed virtual switch acts as the virtual network access layer <strong>for</strong> the virtual<br />
machines. Edge LAN policies such as quality of service marking and vNIC ACLs are implemented at<br />
this layer in Nexus 1000V port-profiles.<br />
The following table describes the virtual access layer.<br />
Component<br />
One data center<br />
VMware ESXi serv ers<br />
Tenant<br />
Description<br />
One primary Nexus 1000V Virtual Superv isor Module (VSM)<br />
One secondary Nexus 1000V Virtual Superv isor Module<br />
Each running an instance of the Nexus 1000V Virtual Ethernet Module (VEM)<br />
<strong>Multi</strong>ple v irtual machines, which hav e diff erent applications such as Web<br />
serv er, database, and so f orth, <strong>for</strong> each tenant<br />
Storage and SA N layer<br />
The trusted multi-tenancy design framework is based on the use of storage arrays supporting fibre<br />
channel connectivity. The storage arrays connect through MDS SAN switches to the UCS 6120<br />
switches in the access layer. Several layers of security (including zoning, access controls at the guest<br />
operating system and ESXi level, and logical unit number (LUN) masking within the VNX) tightly<br />
control access to data on the storage system.<br />
Compute layer<br />
The following table provides an example of the components of a multi-tenant environment virtual<br />
compute farm.<br />
Note: A <strong>Vblock</strong> System may have more resources than what is described in the f ollowing table.<br />
Component<br />
Description<br />
Three UCS 5108 chassis • 11 UCS B200 servers (dual quad-core Intel Xeon X5570 CPU at<br />
2.93 GHZ and 96 GB RAM)<br />
• Four UCS B440 serv ers (f our Intel Xeon 7500 series processors<br />
and 32 dual in-line memory module slots with 256 GB memory)<br />
• Ten GbE Cisco VIC conv erged network adapters (CNA)<br />
organized into a VMware ESXi cluster<br />
15 serv ers (4 clusters) • Each serv er has two CNAs and are dual-attached to the UCS<br />
6100 f abric interconnect<br />
• The CNAs provide:<br />
- LAN and SAN connectivity to the serv ers, which run<br />
VMware ESXi 5.0 hypervisor<br />
- LAN and SAN services to the hypervisor<br />
© 2013 <strong>VCE</strong> Company, LLC. All Rights Reserved.<br />
22