Cisco VXI Architecture

Cisco VXI Architecture
Datacenter PVT June, 2012
2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
IDC, 2011
Hypervisor Market Share

(2010 Revenue)
0.2% 0.7% 1.7% 0.7% 2.9% 12.2% VMware Microsoft Parallels Citrix Oracle 81.6% Other Non-x86 (IBM & HP)
units
Microsoft is the second largest player in the server virtualization space with ~25% share of the hypervisor unit shipments.
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2
All Workloads
68%
VDI
54%
16%
20%
14%
25%
2%
N/A
Ref: http://www.channelregister.co.uk/2011/11/03/v_index_server_virtualization_q3_2011/
Cisco Confidential
Will Switch? Why?
Hypervisor Cost / Licensing Model

Ref: http://www.channelregister.co.uk/2011/11/03/v_index_server_virtualization_q3_2011/
38% 59%
General
Version Edition Pricing Market Position Virtualization ($) vSphere 5 Enterprise Plus Leader (P1) Ent+: $3,495/socket/enables 96GB vRAM (NEW!) + S&S: $734 (B) or $874 (Prod), vSphere Desktop: $65/active desktop Hyper-V R2 SP1 DataCenter Leader (P2/3) XenServer 6 Platinum Edition Leader (P2/3) RHEV 2.2 Premium Follower OVM 3.0 Follower
DataCenter: $2,999/socket
$5000/server+$3000 (support)
$799/socket
$599/socket Oracle VM Management No Yes (Oracle VM Management) No Yes SSL Migration Yes Yes
$4,995(S) + $1,049 (B) or SMSE: $1569/host) or $1,249 (P), $1,495(Fnd) SMSD: $1310 + $545(B) or $645(P) SMSD/CPU (2 CPU min) Free (XenCenter) Guest OS Licensing Not included yes - unlimited (Windows) No Management Central Management Yes (vCenter Server + Yes Yes (XenCenter), vCenter appliance (SCVMM/SMSE/SMSD) SCVMM (new) NEW) Virtual and Physical No Yes Limited VM Mobility Live Migration of VMs Yes vMotion and Metro Yes Live Migration (1) Yes XenMotion (1) vMotion Migration Compatibility Yes (EVC) Yes (Processor Yes (Heterogeneous Compatibility) Pools) Automated Live Yes (DRS) - Storage SemiYes (WB) - CPU, Mem, Migration (NEW), CPU, Mem, Integr.(CPU,Mem,3rd D, N party) Power Management Yes (DPM) Limited Yes Storage Migration Yes (Storage vMotion / Limited (Partially Live) No (offline only) DRS-automated - NEW) HA/DR Integrated HA (Restart Yes (VMware HA) - incl Yes Yes vm) Storage heartbeat Site Failover No (SRM fee-based Add- Yes (Basic, MS Site Integrated Disaster On) Recovery), Opalis Recovery (no storage array control) Hypervisor Upgrades Yes (Update Manager) - Yes Limited (rolling upgrade enhanced wizard - new) Updates and Backup VM Snapshot Yes Yes yes VM Templates Yes Yes Yes (templ + PVS) Deployment Host Profiles Yes (Host Profiles) No No enhanced for Auto 2010 Cisco and/or its affiliates. All rights reserved. Deploy - NEW
Management ($)
Free No Yes (RHEV-M)
No Yes Live Migration Yes Yes
Yes Yes Yes Yes
Yes No Yes Yes
Yes (Satellite) Yes Yes No
Unknown Yes Yes No

Cisco Confidential 5
Hyper-V
Cisco Confidential
Cisco Confidential
Why desktop virtualization?

Cost Savings
Accelerating deployment of new desktops Ease of migration (e.g. Windows 7) PC refreshment every 2 years vs Zero/thin-client consistency Resource utilization (HDD, Memory, CPU, application licensing catalogue)
End-point Security
More control to files and sensitive information
Matching employee needs

Customize resource provisioning based on user needs
Productivity
Now an end-point can be useful for contractors, employees or management without office-locks, providing mobility and cloud services
Green
Less power consumption, emissions and noise
Cisco Confidential
Virtual Desktop Streaming O/S Desktop

App App Guest App Guest OS Main OS Server
Synchronized Desktop Apps Apps Apps OS AppsOS OS OS
Hosted Virtual Desktop

Apps OS Apps OS Apps OS
Hypervisor Display Data
Application Streaming Application

App
Terminal Services
OS App App OS OS Display Data
Server OS
Presentation Server
Client Hosted Computing

Server Hosted Computing

Keyboard, Video, Mouse
Thin Client
Broker Compute Storage Network
Large OS Many local applications Vulnerable Personal Computer is disaggregated Constant patching Keyboard, Video, and Mouse stay with user Data backup Complex management Compute and storage move to the data center Software distribution Network availability is required for all application access delivery challenges Skilled local support Network performance is critical to user experience staff required
Non-Persistent or Pooled Generic virtual desktop assigned to users on a per session first come first server basis and then returned to the pool (possibly with profile removed) or destroyed Persistent or Assigned
Permanently assigned to a user statically or by first to connect Pool of Virtual Desktops Users and Machines Entitle Group Assign Groups
to Desktop
Pool
Entitle User to Desktop
Assign Individual Template
Cisco Confidential
11
Remote Connections Directed by Broker
Agent
Agent
Agent
Agent
Agent
Agent
Agent
Agent
ESX VM VM VM VM VM VM VM VM Service Guest #1 Guest #2 Guest #3 Guest #4 Guest #5 Guest #6 Guest #7 Guest #N Console
VMTools VMTools VMTools VMTools VMTools VMTools VMTools VMTools
VMware ESX Host VMKernel (ESXi Console)

Cisco Nexus 1000v or Virtual Switch SCSI Fibre Channel VMKernel iSCSI SCSI , iSCSI, FC SAN VMFS Block Data Store

VM Network
Service Console
NFS NAS File

LAN
VC Mgmt
IP Data Networks
Virtual Machine (VM) Small Computer System Interface (SCSI) Storage Area Network (SAN) Virtual Machine File System (VMFS)
Fibre Channel (FC) Network File System (NFS) Network Attached Storage (NAS) Virtual Center (VC)
Cisco Confidential
12
12
Display Connection #1
Display Connection #N
Empty Windows Virtual Desktop #1
Agent
Empty Windows Virtual Desktop #N
Agent
VMTools
VMTools
Windows OS
Windows OS
Cisco UCS with Hypervisor
Desktop
Application Streaming Server
Profile
Data
Profile decoupled from desktop OS using
tools like AppSense Desktop provisioned with minimal or fixed set of applications installed
Applications reside on File (VMware) or
Streaming Server (Citrix) Administrator manages one master copy of an application that is streamed at run time
Cisco Confidential
13
13
= Cisco Products
Virtualized Data Center

Applications/Desktop OS
Cisco Collaboration Applications
Virtualization-Aware Borderless Network

Cisco Identity Services Engine
Virtualized Collaborative Workspace

Cisco Virtualization Experience Clients
AnyConnect Cisco VXC 6215 Thin Client
MS Office
Desktop Virtualization Software
Hypervisor
CDN
Cisco VXC 4000 PC Client
WAAS
Quad
AnyConnect
WAAS
Cisco VXC 22xx & 21xx Zero Client Cius Business Tablet
UCS
Nexus 1000v Unified
ASA PoE ACE Compute Storage Routing
Virtual Security Gateway
CM
Si
Switching
End-to-End Management and Optimization
Cisco Confidential
14
Call Center or Clerical
Professional
Design Professional
Administrative
Rich Media
Graphics or Custom
Remote/Task Worker
Thin Clients
Knowledge Worker
Power User
Capable Clients
User Zero Thin Hybrid Task Task/Know ledge Knowledge
Hardware Chip Limited Capable (possible media offload)
OS Firmware Hardened Hardened General (Linux or Windows Embedde d) Open General (Windows , Linux, Mac)
Software None Display Display Rich Media Web
Execution All remote All remote Client/Ser ver remote Rich media local Mostly local Some remote
Storage None None Transient Encrypted
Security Low risk Low risk Medium risk
Life (Yrs) 7-10 5-7 5-7
Thick
Knowledge or Power
High End
Unlimited
Persistent
High risk
3-5
1. 2.
3. 4.
Status-quo - Use whatever desktop/notebook/etc you already have PC refresh - buy new desktop/notebook hardware with HVD and application virtualization rollout Recycle PC - Convert old PC hardware to a homebrew thin-client New thin/zero clients - New purchases
Cisco Confidential
16
16
VXC 2100 Series

Form Factor Availability Platform HVD Protocol Support UC Protocol Support (add on) Backpack Integrated Shipping Zero Client 2111 PCoIP 2112 HDX,RDP N/A CUPC, Connect IP Phone 8961, 9951, 9971 IP Phone 9971, 9951
VXC 2200 Series

Tower Standalone Shipping Zero Client 2211 PCoIP 2212 HDX,RDP N/A CUPC, Connect N/A, can be used with IP Phone N/A, can be used with IP Video Phone Single or Dual, 1920x1200 PoE Via IP Phone
VXC 4000*
PC Software Q4 CY 2011 Win7, XP Citrix XenDekstop, VMware View Software Appliance CUPC, CUCILync Yes No
VXC 6215*
Tower Standalone Q4 CY 2011 Linux HDX, RDP, PCoIP
HDX, RDP (Q4CY11) PCoIP (Q1CY12)
Cisco Cius
Enterprise Tablet Shipping Android (x86) Citrix XenDekstop, VMware View N/A Native Yes Yes
UC Client Support*
Voice Video
CUPC, CUCILync Yes Yes
Monitor Support PoE Encoding & Decoding
Single or Dual, 1920x1200 PoE Via IP Phone
Varies based on underlying HW N/A Audio only. Video on the roadmap.
Single:2560x1600 Dual:1920x1200 No Standard Video HD Capable*
Single Mirror, 1024x600 (on the roadmap for dual monitor support)
PoE HD Capable (720p)
Application
VMware View PCoIP 4172 UDP

Client-slide hardware often used for optimal experience Server side hardware available MMR with Win7 desktops not supported TCP 4172 used for control
Microsoft RDS RDP 3389

TCP
Citrix XenDesktop
ICA/HDX 2598/1494
Underlying Protocols
Deployment Considerations
No Client-side hardware dependency Remote FX requires H/W assist (server GPU) Standards-based encryption model
No client-side or server-side hardware dependency Announced hardware specification for 3rd parties Standards-based as well as proprietary encryption models
Cisco Confidential
18
Branch Office
Video Source Branch Router
T1
Data Center
Routing Protocol
Protocols in the virtual desktop environment appear monochrome to QoS Lack of flow differentiation prevents prioritization within a display protocol stream
Display Protocol
Video
Video stream competes with other flows in class (e.g.: P2P)

Phase one
CUCM
Display protocol UC signaling UC media
IP WAN
UC media separation
UC media handled in desktop phones Signaling and media kept separate from display protocol QoS can be used on media Path is optimized
Cisco Confidential
20
Multimedia redirection (MMR) - Provides a greatly enhanced user
experience for media such as video streaming

The multimedia redirection (MMR) feature delivers the multimedia
stream directly to the client using a RDP virtual channel. This enables full fidelity playback
View Client and View Client with Local Mode support MMR on the
following operating systems:

Windows XP Windows XP Embedded Windows Vista
MMR supports the following media formats: AC3, MP3, MPEG1, MPEG2, MPEG4part2, WMA, WMV 7/8/9
Make sure that the MMR port is added as an exception to your firewall
software. The default port is 9427
Cisco Confidential
21
Data Redundancy Elimination (DRE) eliminates redundancy within or
between flows
LZ compression eliminates redundancy within flows TCP Flow Optimization (TFO) fills the pipe over high latency links Transport Data De-duplication No byte pattern crosses the network
twice
Origin Connection Origin Connection
WAN
Optimized Connection
DRE CACHE
DRE CACHE
LZ
LZ
Decode
Window Scaling Large Initial Windows Congestion Mgmt Improved Retransmit Packet Aggregation
Encode
Protocol
Vendor
Transport
Bandwidth without WAAS (Approx) 384 Kbps 120 Kbps
Bandwidth with WAAS (Approx) 96 Kbps 60 Kbps
Remote Desktop Protocol (RDP) Independent Computing Architecture (ICA) PC over IP (PCoIP)
Microsoft Citrix
TCP 3389 TCP 2598 CGP TCP 1494 ICA Media UDP 50002/4172 Control TCP 50002/4172 TCP 42966 Media - UDP >32768 Control TCP 7007
Teradici / VMware
192 Kbps
192 Kbps
Remote Graphics System (RGS) Appliance Link Protocol (ALP)
HP Oracle
1 Mbps 400+ Kbps
TBD 400+ Kbps
Cisco Confidential
23
Rich Media Streaming w/ MMR (Direct Connect)

BW Optimization for VIEW MMR Traffic
50 45 40 35 30 25 20 15 10 5 0
Overall BW Consump.: 1.75 MB (After WAAS Optimization) Overall BW Consump.: 20 MB
0:50 0:53 0:56 0:59 1:02 1:05 1:08 1:11 1:14 1:17 1:20 1:23 1:26 1:29 1:32
Original (MB)
PCoIP Session
Optimized (MB)
Ratio = 20 MB: 1.75 MB BW Capacity = 11x
RDP Session
Solutions Setup
2 Concurrent View Clients Display Protocol: RDP and PCoIP View Deployment Mode: Direct Connection BW/Latency: T1/80 ms Play Time: 5-6 Minutes of Repeat Tracks Audio: Format: MP3 Bitrate/Size: 192 Kbps/8.3 MB Video: Format: WMV v.9 Bitrate: 1527 Kbps and 1772 Kbps Size: 18.8 MB and 62.4 MB WAAS Applied Policies: TFO, DRE, LZ WAAS Classification Map: - MMR TCP Port 9427 - USB TCP Port 32111 Overall Compression: 79.8%
Cisco Confidential
24
Cisco Virtual Security Gateway

Server 1
Virtual Service Node #1
Server 2
VM #3 VM #4
Server N
VM #5 VM #6 VM #7 VM #8
VM #1
VM #2
Service Data Path (SDP)
Nexus 1000V VEMs

VMW ESX VMW ESX VMW ESX
Nexus 1000V VSM Virtual Center
Virtual Network Manager (VNM)
VC: Server policies VSM: Networking policies VNM: Security policies

Desktop Density and Scalability

Great virtual desktop density with linear performance scalability
Rapid Provisioning of Desktops

Service profile templates for rapid provisioning of desktop pools
Networking Visibility and Security to the Desktops

Nexus 1000V with VSG and VM-FEX provide VM level controls
Tier-0 Storage on Server

IOPS and storage optimizations
Application Performance Optimizations

VM-FEX delivering deterministic performance
Prioritization of Desktop Pools / Workloads

UCS QoS and bandwidth controls deliver prioritization to desktop pools
Cisco Confidential
26
Application virtualization decouples
application from OS (i.e. ThinApp, AppV, Provisioning Server, etc.)

Hypervisor decouples OS from compute
APP
AppVirt
APP
AppVirt
APP
AppVirt
APP
AppVirt
hardware
UCS Service Profile decouple server
OS
OS
from BIOS
Nexus Port Profile decouples cabling
Hypervisor Server BIOS (UCS Service Profile) Port Profile

Network (LAN/SAN)
from server
Cisco Confidential
27
Blade14
Server CPU
Server Memory
Desktop Configuration
Per Blade
Per Chassis
Per Domain 20 Chassis 20,480 25,600 24,000 26,560 8,800 28,000 29,440
B200-M1 B200-M1 B200-M1 B250-M1 B250-M2 B230-M2 B200-M3
Xeon5570 2.93 GHz Xeon5570 2.93 GHz Xeon5570 2.93 GHz Xeon5570 2.93 GHz Xeon5600 3.33 GHz Xeon2870 2.40 GHz Dual E5-2690 / 8 Core CPU
48 GB 96 GB 96 GB 192 GB 192 GB 512 GB 384 GB
WinXP 512 MB WinXP 512 MB
128 160
1,024 1,280 1,200 1,328 440 1,400 1,472
WinXP 1024 MB 150 WinXP 1024 MB 332 Win7-32 1.5 GB Win7-64 2.0 GB Win7 110 175 184
CPU
Sample Calculation ~5% processor on 2 GHz core consumes 100 MHz per desktop 100 desktops require 10 GHz Add 10% to 25% overhead for virtualization, display protocol, and buffer for spike 100 desktops achieved with 12.5 Ghz via 4 cores at >=3.125 GHz per core Planning Windows XP 150-250 MHz Windows 7 400-600 MHz
Memory
Minimal
Storage
Capacity
Base OS, App, Data, Profile size plus suspend/resume, page files, etc.
Linked v full clone (50%)
oversubscription
Windows XP - 4 KB page sharing Windows 7 - 1 MB page sharing Planning Windows XP - 5121024 MB Windows 7-32 bit 1-1.5 GB Windows 7-64 bit 2-3 GB
IOPS (4096 Bytes/IOP)

4096 Bytes/IOP 15K RPM drive 180-200 IOPS SSD drive 2,000s IOPS Reads versus writes Boot/login storms, AntiVirus, Peaks Intellicache, VMW CBRC, Atlantis
Planning
Windows XP 10-15 IOPS Windows 7 15-25 IOPS
Cisco Confidential
29
Single VM Latency
180 160 Average Latency/VM (usecs) 140 250 300
Multi VM Latency
100
75 200 Std Dev 30

30
120
usecs 100 80 60 40 20 0
128 256 1 2 4 8 16 32 64
150
50
50%
Performance 67% Latency
100 25 50
1024
2048
4096
8192
16384
32768
512
Deterministic
0 Delivery
0 12 VM 24 VM 36 VM 48 VM
Message Size (bytes)
Cisco VM-FEX
Hypervisor vSwitch
Avg Latency Cisco VM-FEX Avg Latency Hypervisor vSwitch Std Dev Cisco VM-FEX Std Dev Hypervisor vSwitch
Cisco Confidential
Client LAN Features

Port Security prevents CAM attacks, DHCP Starvation attacks and spanning tree loop mitigation DHCP Snooping prevents Rogue DHCP Server attacks Dynamic ARP Inspection prevents current ARP attacks IP Source Guard prevents IP/MAC Spoofing and a wide variety of TCP/UDP splicing and DoS attacks
Virtual Ethernet Module (VEM)

Networking capabilities at the hypervisor level L2 switching, CDP, Netflow, ACLs, QoS, SNMP, SPAN, etc
Local Switching
Port Profile to simplify Network Policy
Virtual Supervisor Module (VSM)

Mgmt, monitoring and config of VEM instances Sees each VEM as a virtual chassis module Configuration done through port-profiles Tight integration with Virtual Center Runs on dedicated appliance or virtual machine
Virtual Chassis Concept

Redundant Supervisors (VSMs) Currently up to 128 VEM instances (128 ESX hosts) Presents a network view of the virtual access layer
Virtual Network Management Center (VNMC)

Tenant: Coke Tenant: Pepsi
Zone: Research Zone: Marketing
Zone A: vApp
Zone B: vApp
vPath Nexus 1000V
vSphere Specify zoning policy with appropriate granularity Tenant, VDC, vApp
Storage: First what about capacity?

1000 users, 10GB per desktop = 10TB right? Wrong
Operating System
View Composer = savings capacity requirements for OS storage
60:1 savings (non-persistent) 2:1 - 5:1 savings (persistent)
Applications
Thin App = 50:1 savings for app storage
Assuming only 50% of apps can be virtualized
User Storage
Dedupe/Compress + Archive = savings on user data storage
4:1 savings (being conservative)
Cisco Confidential
33
The Case for Enterprise Flash Drives

The Challenge
Architecting a View Environment to size for BOTH capacity and performance at scale when leveraging Linked Clone or Snapshot Technology
The Analysis
1000 x 10GB boot images = 1TB2TB

>80% capacity savings
Drive Type 7.2k SATA 10k FC/SAS
Sustained IOPS 80 130
# of drives 125 76
8-10 iops per user 10,000 iops
15k FC/SAS
180
2000
56
5
The Result
EFD
at scale, data reduction technologies + EFD saves you $$$
How do you leverage EFD most efficiently?

View 4.5 + FAST = Lower Cost + Better Experience

Lower Cost + User Experience
Without FAST
App server 1 of 5 I/Os from Cache
With FAST Cache

App server 9 of 10 I/Os from Cache
FAST Cache + FAST Tiering

App server 9 of 10 I/Os from FLASH
Controller
Controller
Controller
DRAM Cache
DRAM Cache
DRAM Cache
FLASH 4 of 5 I/Os from disk HDD HDD 1 of 10 I/Os from disk FLASH
FLASH 1 of 10 I/Os from disk HDD
Cisco Confidential
35
Thank you.

Cisco VXI Architecture

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Cisco VXI Architecture

Uploaded by

Copyright:

Available Formats

Cisco VXI Architecture

Datacenter PVT June, 2012

2010 Cisco and/or its affiliates. All rights reserved.

Hypervisor Market Share

2010 Cisco and/or its affiliates. All rights reserved.

Will Switch? Why?

Hypervisor Cost / Licensing Model

Free No Yes (RHEV-M)

No Yes Live Migration Yes Yes

Yes Yes Yes Yes

Yes No Yes Yes

Yes (Satellite) Yes Yes No

Unknown Yes Yes No

2010 Cisco and/or its affiliates. All rights reserved.

2010 Cisco and/or its affiliates. All rights reserved.

Why desktop virtualization?

Matching employee needs

2010 Cisco and/or its affiliates. All rights reserved.

Virtual Desktop Streaming O/S Desktop

Hosted Virtual Desktop

Hypervisor Display Data

Application Streaming Application

OS App App OS OS Display Data

Client Hosted Computing

Server Hosted Computing

Keyboard, Video, Mouse

Broker Compute Storage Network

2010 Cisco and/or its affiliates. All rights reserved.

Entitle User to Desktop

Assign Individual Template

2010 Cisco and/or its affiliates. All rights reserved.

Remote Connections Directed by Broker

VMware ESX Host VMKernel (ESXi Console)

NFS NAS File

2010 Cisco and/or its affiliates. All rights reserved.

Empty Windows Virtual Desktop #1

Empty Windows Virtual Desktop #N

Cisco UCS with Hypervisor

Application Streaming Server

Profile decoupled from desktop OS using

Applications reside on File (VMware) or

Virtualized Data Center

Virtualization-Aware Borderless Network

Virtualized Collaborative Workspace

Desktop Virtualization Software

ASA PoE ACE Compute Storage Routing

Virtual Security Gateway

End-to-End Management and Optimization

2010 Cisco and/or its affiliates. All rights reserved.

Call Center or Clerical

User Zero Thin Hybrid Task Task/Know ledge Knowledge

Hardware Chip Limited Capable (possible media offload)

Software None Display Display Rich Media Web

Storage None None Transient Encrypted

Security Low risk Low risk Medium risk

Life (Yrs) 7-10 5-7 5-7

2010 Cisco and/or its affiliates. All rights reserved.

VXC 2100 Series

VXC 2200 Series

CUPC, CUCILync Yes Yes

Monitor Support PoE Encoding & Decoding

Single or Dual, 1920x1200 PoE Via IP Phone

Varies based on underlying HW N/A Audio only. Video on the roadmap.

Single:2560x1600 Dual:1920x1200 No Standard Video HD Capable*