1278-ucs software release 1.4
TRANSCRIPT
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 1
UCS Product ManagementSAVBU
December 2010
Unified Computing System Software Release 1.4 (Balboa)
An Overview
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 2
UCS Software Release 1.4 (Codename: Balboa) Feature Summary
Compute• Support for new UCS B230 Blade Server• UCS C-Series server integration into UCS Manager• Multi-chassis power capping for UCS B-Series
Ethernet and Fibre Channel• Full vNIC failover w/o NIC teaming/bonding with
FabricFailover/FabricSync• SPAN support on UCS 6100• Higher VLAN scalability 1024• Higher logical port scalability 8000• Higher virtual interface Scalability 2000• PVLAN support• FC trunking and port channel (in NPV mode)• Direct connect Ethernet Appliance• Limited Direct Connect FC Storage
Authentication & Security• Simpler integration with MSFT Active Directory• Multiple simultaneous authentication systems• Multi-user KVM enhancements
Stateless Computing• Scheduling of service profile changes
• CIMC IP address abstraction• Service profile “pre-flight” checks
Management & Monitoring• SNMP GET support for ALL UCS components• Syslog enhancements• UCS 6100 licensing enforcement/warnings• Usability enhancements
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 3
UCS Software Release 1.4
Compute Authentication & Security
Ethernet Stateless Computing
Fibre Channel Management & Monitoring
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 4
UCS Manager 1.4 supports UCS B230 M1Industry leading compute density in half-blade form factor
2 Intel Xeon 7500 or 6500 (Nehalem EX)
32 DIMM Slots; up to 512 GB Memory
Dual Port Converged I/O Adapter; 20 MB/s
Two Optional SSD
OPTIMIZED FOR
Single instance and transaction—intensive database
Desktop virtualization (VDI)
Financial Services and SPs
BENEFITS
Lower operating and licensing expenses
Higher density
Reduced foot-print
High Density Compute: 16 cores per blade
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 5
C-Series servers connectivityManagement connectivity through FEX to FI
Data connectivity directly to Fabric Interconnect
Stateless computingService profiles extended to C-series
Migration among compatible B & C series servers
All UCSM management servicesAutomated discovery
Fault and monitoring
Firmware updates
UCS Manager C-Series Integration
Unified Management across entire UCS portfolio
Advanced capabilities extended to rack servers
Customer benefits
Feature details UCS 6100 UCS 6100
Nexus 2248Nexus 2248
UCSManager
Data Connection
Mgmt Connection
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 6
UCSM C-Series Integration in UCS 1.4 Device support and scaling
Server Support• C200, C210, C250
• C460 support will follow-on in a later release
Adapter support• Cisco UCS P81E Virtual Interface Card
• Emulex OneConnect Universal Converged Network Adapter
• QLogic QLE8152 Dual Port 10 Gb Ethernet to PCIe Converged Network Adapter
• Broadcom NetXtreme II 57711 Dual Port 10 Gb Ethernet PCIe Adapter Card
• Intel 82599 (Niantic) Dual port 10Gb Ethernet Adapter
• Homogenous adapter support only upto 4 adapters; No mix n’ match adapters in this release
• For UCS P81E upto *2* adapters per C-series server with 112* interfaces (*under verification)
Number of C-Series servers supported per UCSM:Upto the maximum number of available server ports in the fabric interconnect
C-Series only and mixed B- & C-series configuration will be supported
LOM Ports on the server can be used only as management ports
PCIe cards other than the ones listed above are not supported
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 7
Group Level Power cap• Set a single cap for multiple chassis that share a power
feed
• Automatic static distribution of power to chassis in group
Dynamic Intra-chassis power redistribution• Blade power allocation based on priority and blade
configuration
• High power blades can borrow power from low power blades
• No performance impact under normal operation
Service Profile Priorities• Customer control of application performance
• Ensures high priority workloads get more power when group/chassis cap is reached
UCS Chassis and Multi-Chassis Power Cap
Eliminate power capacity wastage in Data Center
Cap multiple chassis from a single interface
Customer benefits
Feature detailsPower capacity savings
with Chassis Power Capping
Power allocated with power capping
Power allocated without power capping(faceplate)
Actual chassis power draw
TimeP
ower
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 8
Unbundling of UCS software bundles
Server and adapter packs aimed at new server and adapter hardware
Off-cycle introduction of server and adapter packs in-sync with hardware releases
Next major software releases will incorporate previous modular server and adapter packs
Enables faster introduction of new server and adapters without waiting for next major SW release
UCS Software BundlingInfrastructure & Server Bundles
HW support decoupled from major SW releases
Quicker adoption of new server & adapter types
Customer benefits
Feature details
• Adapter FW
• Catalog File
• UCSM Mgmt Extn.
Infrastructure Bundle:
• UCSM
• Fabric Interconnect (NX-OS)
• Fabric Extender (IOM) Firmware
• Chassis Mgmt. Controller
Server Bundle:
• CIMC
• BIOS
• RAID Controller FW
• Catalog File
• UCSM Mgmt Extn.
UCSManager
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 9
UCS Software BundlingWhat bundles do you need?
If your environment has•Fabric Interconnect and B-Series Chassis only:
Infrastructure Bundle
B-Series Blade Server Bundle
•C-Series servers as well:
+ C-Series Rack-Mount Server Bundle
•Off-cycle addition of memory DIMMsor hard drives
+ Capability CatalogThe Capability Catalog will be cumulatively bundled into every Infrastructure Bundle.
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 10
UCS Software Release 1.4
Compute Authentication & Security
Ethernet Stateless Computing
Fibre Channel Management & Monitoring
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 11
AD user groups looked up by UCSM
UCSM role assignment to AD groups
Users’ role membership based on AD group membership
Single place control of user privileges by changing user AD group membership
UCS Manager Active Directory (LDAP) Groups Integration
Unified user privilege control within AD
Easier alignment for security and server admin
Customer benefits
Feature details
Privileges
UserUser Groups
Server Admin
Network Admin
Roles
UCSM
Active Directory
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 12
UCS ManagerActive Directory (LDAP) Groups Integration
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 13
Concurrent multi-scheme authentication• LDAP (Active Directory)
• TACACS+
• RADIUS
Authentication with multiple AD domains• Multiple AD domains segmentation by region,
organization etc. can be input into UCSM
• UCSM communicates with multiple AD domain controllers to authenticate a user
UCS Manager Multi Scheme Authentication
Integration into mixed authentication environs.
Support for segmented authentication
Customer benefits
Feature details
UCSM
TACACS+
Radius
LDAP(Active
Directory)
LDAP(Active
Directory)
Radius
TACACS+
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 14
UCS Manager Multi Auth Domain Setup
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 15
UCS ManagerMulti Auth Login Screen & API
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 16
First user KVM ownership• First KVM user gets RW privileges to session
• First user grants permission for other sessions
• Second KVM session is read-only by default
KVM admin control• KVM forced termination by UCS admin user
UCS ManagerMulti-User KVM Security Enhancements
Secure KVM use in multi-user environments
Granular control of KVM access
Customer benefits
Feature details
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 17
UCS Software Release 1.4
Compute Authentication & Security
Ethernet Stateless Computing
Fibre Channel Management & Monitoring
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 18
Maintenance policiesNew policy contains schedule when SP can be changed
Policy can be mapped to one or more SPs
Schedule disruptions
Resource reservationSP acquires required resources prior to deployment
Resources are held until deployment
Eliminates future resource contention
UCS ManagerService Profile Deployment Scheduling
Service Profile disruptions in maint. windows
Plan ahead design changes for service profiles
Customer benefits
Feature details
UCSManager
Service Profile: CRM-App1
Network: Sales-VLANNetwork QoS: HighMAC: 08:00:69:02:01:FC-EWWN: 5080020000075740-3BIOS: Version 1.03Boot Order: SAN, LAN
AppOS
Firmware
Network
Service Profile: CRM-App1
Network: Sales-VLANNetwork QoS: HighMAC: 08:00:69:02:01:FC-EWWN: 5080020000075740-3BIOS: Version 1.03Boot Order: SAN, LAN
AppOS
Firmware
Network
Design
Deploy
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 19
Maintenance Policies are part of Service Profiles
UCS ManagerService Profile Deployment Scheduling
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 20
Current IP address assignment continues
New , second IP address for CIMC
Second IP address associated with Service Profile
Upon SP deployment CIMC can be accessed through both IP addresses
When SP moves, second IP address moves to new server
UCS ManagerCIMC IP address in Service Profile
“Follow the server” KVM access
Fully self contained server identification
Customer benefits
Feature details
Physical Server 1
Native CIMC IP 1
10.21.32.44
Physical Server 2
Native CIMC IP 2
10.21.32.45
Service Profile
SP CIMC IP 1
10.21.20.21
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 21
“Pre-flight” check on the compatibility of a Service Profile with a server
Service Profile migrations more consistentSP remembers the HW it was associated to
If new HW has meaningful differences warning
Differences do exist at OS layerWindows, Linux, Vmware behave differently
Migration Validation for Service Profiles
Increased infrastructure availability for OS/app
Increased utilization due to HW repurposing
Customer benefits
Feature details
Service Profile: CRM-App1
Network: Sales-VLANNetwork QoS: HighMAC: 08:00:69:02:01:FC-EWWN: 5080020000075740-3BIOS: Version 1.03Boot Order: SAN, LAN
AppOS
Firmware
Network
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 22
UCS Software Release 1.4
Compute Authentication & Security
Ethernet Stateless Computing
Fibre Channel Management & Monitoring
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 23
Release 1.3 provided SNMP trap support earlier
Access to full information model of UCS:
Access same information as XML API• Fabric interconnects & Fabric extenders
• Chassis
• Blades (B-Series)
• Rack servers (C-Series)
58 new MIBs to be posted on Cisco.com
Any additions/changes to model, automatically results in regeneration of MIBs
SNMP access is read-only, no SNMP SET support planned
UCS ManagerSNMP GET support
Easy integration to 3rd party mgmt tools
SNMP based corelation for trap information
Customer benefits
Feature details
UCSManager
Blade Servers
Chassis
Fabric Interconnects
Fabric Extender
Rack Servers
SN
MP
Tra
ps
and
GE
Ts
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 24
UCS Manager integration• Licenses can now be assigned / revoked from UCS Manager
Ports are licensed by count• User does not need to re-assign a port license to use different
physical ports on the UCS 6100 Series fabric interconnects
• Only fixed ports need to be licensed (in other words, expansion module ports do not require a license)
• Same 8/16 freely-licensed ports included with UCS6120XP / 6140XP
• Ports must be licensed whether configured as 1GE or 10GE Grace period
• Each port that is activated but for which there is no available license count will start on a 120-day grace period
• Status of ports on grace period / days remaining visible in UCS Manager
• If ports are used in grace period, WARNING level alerts are generated
• Note: Upon expiration, UCS Manager will generate CRITICAL level alerts but will not shutdown active ports
UCS ManagerLicensing Enhancements
Licensing now integrated and accessible directly from UCS Manager
Easy “check-in/check-out” of licenses (for example, for device replacement)
Customer benefits
Feature details
> show license usageSwitch A:Feature Status Expires Count Used Switch File IdETH_PORT_ACTIVATION_PKG ok never 8 8 FLC12110018 20080612113521765 1
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 25
UCS ManagerCustom Naming
Sort
Filter
Display
Users will be able to enter custom labels for Service Profiles, Chassis, Servers.Labels can be free form text and can be displayed, sorted and filtered
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 26
UCS ManagerFirmware DescriptionsAdditional information including model name for easier selection of firmware
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 27
UCS ManagerUsability – Firmware uploadSupport for direct upload from client running UCSM GUI
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 28
UCS ManagerSyslog CategorizationNew categorization to differentiate components & additional filtering capabilities
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 29
UCS Manager Resources
UCS Manager Product Page on Cisco.comhttp://www.cisco.com/en/US/products/ps10281/index.html
UCS Manager Whitepapershttp://www.cisco.com/en/US/products/ps10281/prod_white_papers_list.html
Cisco Developer Network for UCS Managerhttp://developer.cisco.com/web/cdc/tech/unifiedcomputing
UCS Platform Emulator (UCSPE) downloadhttp://developer.cisco.com/web/unifiedcomputing/ucsemulatordownload
UCS Manager Software Downloadshttp://tools.cisco.com/support/downloads/go/Redirect.x?mdfid=282567938
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 30
Q & A
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 31
UCS Software Release 1.4
Compute Authentication & Security
Ethernet Stateless Computing
Fibre Channel Management & Monitoring
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 32
UCS Software Release 1.4 (Codename: Balboa) Feature Summary
Compute• Support for new UCS B230 Blade Server• UCS C-Series server integration into UCS Manager• Multi-chassis power capping for UCS B-Series
Ethernet and Fibre Channel• Direct connect Ethernet Appliance• SPAN support on UCS 6100• PVLAN Isolated access support• Full vNIC failover w/o NIC teaming/bonding with
FabricFailover/FabricSync• Higher VLAN scalability 1024• Higher logical port scalability 6000• Higher virtual interface Scalability 2000• Fabric Extender Transceiver Support• Management Interface monitoring and failover• FC trunking and port channel (in NPV mode)• Limited Direct Connect FC Storage
Authentication & Security• Simpler integration with MSFT Active Directory• Multiple simultaneous authentication systems• Multi-user KVM enhancements
Stateless Computing• Scheduling of service profile changes
• CIMC IP address abstraction• Service profile “pre-flight” checks
Management & Monitoring• SNMP GET support for ALL UCS components• Syslog enhancements• UCS 6100 licensing enforcement/warnings• Usability enhancements
© 2010 Cisco and/or its affiliates. All rights reserved. Public 33
UCS Manager 1.3(1) ReleaseExistingConnectivity Types
Eth Uplink
Server
SAN
FC Uplink Eth Uplink FC Uplink
Server
Uplinks FC/Eth
Upstream Links connecting to LAN
and SAN
Server Ports
Downstream links connecting to
servers though IOM
LAN
IP Storage FC Storage
© 2010 Cisco and/or its affiliates. All rights reserved. Public 34
Appliance
SAN
FC Target
Eth Monitor
LANIP Storage FC/FCOE Storage
FC Monitor
UCS Manager 1.4(1) Release New Connectivity Options
New connectivity choices are Appliance, Monitoring (FC and Eth) and Storage target ( FC and FCOE )
© 2010 Cisco and/or its affiliates. All rights reserved. Public 35
UCS Manager 1.4(1) Release Appliance Direct Connection “End Host”
In-direct Connection
UCS simplifies appliance connectivity
Direct Connection
UCS 6100 A UCS 6100 B
UCS 6100 BUCS 6100 A
IP Storage IP Storage
End Host ModeLAN
Several switches/hops
Inter switch bandwidth consumption
Simplified connectivityOptimized uplink bandwidthutilization
© 2010 Cisco and/or its affiliates. All rights reserved. Public 36
UCS 6100 Switching Modes
The external LAN sees the UCS
6100 as an end-host with multiple
adapters. No Spanning Tree protocol on
uplink ports.
Active/Active use of uplinks by
pinning
All uplink ports should be
connected to the same Layer 2 network
More scalable than switch mode
since the control plane is not stressed as
an Layer 2 switch.
The UCS 6100 acts like a
traditional Ethernet switch with support
for Spanning Tree protocol on the uplink
ports
Some uplinks connected to the
external switches may be blocked by STP.
Only PVST+ is supported
Mac-add learning is enabled on
uplink/server interfaces
End Host Mode Switch Mode
© 2010 Cisco and/or its affiliates. All rights reserved. Public 37
UCS Manager 1.4(1) Release Appliance Direct Connection “End Host”
UCS B-Series
Switch Mode
Ethernet Appliance
UCS B-Series
End Host Mode
Ethernet Appliance
UCS 1.4 (Balboa)Today, UCS 1.3 (Aptos+)
Appliance port uplink Port
UCS 6100UCS 6100
Ethernet appliance support enhanced to include “End Host” mode
Fabric Interconnect mode - Switch modePort type – Uplink onlyCan’t define VLANs on uplink to appliance (VLAN filtering)Advanced feature such as QOS not available
Fabric Interconnect mode - End-host modePort type - ApplianceVLAN filtering availableAdvanced features such as QOS available
Trunk 10,100,101 Trunk 10,100 or Access 100
UCS 1.4 (Balboa) onwards “End host” mode is recommended
© 2010 Cisco and/or its affiliates. All rights reserved. Public 39
UCS Manager 1.4(1) Release Supported Ports and Configuration
Any fixed 10G or 1GAny expansion port
UCS 6100
Ethernet Appliance
Port-Channel Single port
Non-vPC port-channel and singe port configurations are supported
UCS 6100
UCS B-Series
NIC teaming or port-channeling is required on the appliance to have resilient connectivity
Expansion Ports
Fixed Ports
© 2010 Cisco and/or its affiliates. All rights reserved. Public 40
UCS Manager 1.4(1) ReleaseUCSM Appliance port - Visual
QOS settings
Specify VLANs
Configure static MAC
© 2010 Cisco and/or its affiliates. All rights reserved. Public 41
UCS Software Release 1.4 (Codename: Balboa) Feature Summary
Compute• Support for new UCS B230 Blade Server
• UCS C-Series server integration into UCS Manager
• Multi-chassis power capping for UCS B-Series
Ethernet and Fibre Channel• Direct connect Ethernet Appliance
• SPAN support on UCS 6100
• PVLAN Isolated access support
• Full vNIC failover w/o NIC teaming/bonding with FabricFailover/FabricSync
• Higher VLAN scalability 1024
• Higher logical port scalability 6000
• Higher virtual interface Scalability 2000
• Fabric Extender Transceiver Support
• Management Interface moniroting and failover
• FC trunking and port channel (in NPV mode)
• Limited Direct Connect FC Storage
Authentication & Security• Simpler integration with MSFT Active Directory
• Multiple simultaneous authentication systems
• Multi-user KVM enhancements
Stateless Computing• Scheduling of service profile changes
• CIMC IP address abstraction
• Service profile “pre-flight” checks
Management & Monitoring• SNMP GET support for ALL UCS components
• Syslog enhancements
• UCS 6100 licensing enforcement/warnings
• Usability enhancements
© 2010 Cisco and/or its affiliates. All rights reserved. Public 42
Today
UCS 6100
LAN LAN SAN
SAN
Eth Analyzer
FCAnalyzer
vHBAvNIC 1
Port 0
UCS server A
Requires a dedicated FC analyzer
Need separate analyzers for FC and Eth
Requires specialized in-line TAP, expensive
Ability to monitor FC and Eth traffic using a Eth analyzer
Single analyzer to monitor FC and Eth
Eliminates expensive FC analyzer
Unified Monitoring
UCS 6100
vHBAvNIC 1
Port 0
UCS server A
Eth Analyzer
Monitor FC and Ethernet traffic with a single analyzer
UCS Manager 1.4(1) Release Unified Monitoring
© 2010 Cisco and/or its affiliates. All rights reserved. Public 43
Complex connectivity Inability to monitor specific VM traffic Lack of visibility (bulk capture)
Simple connectivity Ability to monitor specific VM traffic Granular visibility
vNIC level monitoring and troubleshooting capability
Traditional SPAN
Monitor vNIC 2, saw only vNIC 2
VM-FEX mode
UCS 6100
vNIC3vNIC2
VM VM
Needs only vNIC 2 but saw vNIC 1 &
3
M81KR VIC
Eth Analyzer
vNIC Level Monitoring
Nexus 5000
vNIC1
VM
Port 0
UCS 6100
vNIC3vNIC2
VM VM
M81KR VIC
vNIC1
VM
Port 0
Eth1/1
Eth Analyzer
UCS Manager 1.4(1) Release vNIC and vHBA Level Monitoring
© 2010 Cisco and/or its affiliates. All rights reserved. Public 44
A total of 4 local SPAN sessions per UCS system, 2 on each UCS 6100
Cluster Link
Troubleshooting
Tool
Eth Network Analyzer
Troubleshooting
Tool
FibreChannelAnalyzer
UCS 6100 A UCS 6100 BUn-used licensed port
Configure identical monitoring sessions in both fabrics for failover and load-balanced traffic flows.
vHBA is available to be monitored in both FC and Eth monitoring configurations Monitoring session of a VM using PTS not persistent after a vMotion (VIF is changed) Future
enhancement.
Things to remember :
UCS Manager 1.4(1) Release Summary
© 2010 Cisco and/or its affiliates. All rights reserved. Public 45
UCS Manager 1.4(1) ReleaseUCSM Monitoring- Visual
SPAN destination can be any unused licensed port
© 2010 Cisco and/or its affiliates. All rights reserved. Public 46
UCS Manager 1.4(1) ReleaseUCSM Monitoring- Visual
Support for various Eth and FC monitoring sources
© 2010 Cisco and/or its affiliates. All rights reserved. Public 47
UCS Software Release 1.4 (Codename: Balboa) Feature Summary
Compute• Support for new UCS B230 Blade Server
• UCS C-Series server integration into UCS Manager
• Multi-chassis power capping for UCS B-Series
Ethernet and Fibre Channel• Direct connect Ethernet Appliance
• SPAN support on UCS 6100
• PVLAN Isolated access support
• Full vNIC failover w/o NIC teaming/bonding with FabricFailover/FabricSync
• Higher VLAN scalability 1024
• Higher logical port scalability 6000
• Higher virtual interface Scalability 2000
• Fabric Extender Transceiver Support
• Management Interface moniroting and failover
• FC trunking and port channel (in NPV mode)
• Limited Direct Connect FC Storage
Authentication & Security• Simpler integration with MSFT Active Directory
• Multiple simultaneous authentication systems
• Multi-user KVM enhancements
Stateless Computing• Scheduling of service profile changes
• CIMC IP address abstraction
• Service profile “pre-flight” checks
Management & Monitoring• SNMP GET support for ALL UCS components
• Syslog enhancements
• UCS 6100 licensing enforcement/warnings
• Usability enhancements
© 2010 Cisco and/or its affiliates. All rights reserved. Public 48
L2 separation with VLANs
A vlan or more per tenant/application/function
VLAN scalability on various platforms is a
deciding factor of NW scaleUCS 6100
vNIC 1 vNIC 2vNIC 1
Port 1Port 0 Port 1Port 0
UCS 6100
VM VM
Tenant A Tenant B Tenant C
Bare metal
No of VLANs used = 3
VLAN AVLAN BVLAN C
VLAN Deployment
UCS Manager 1.3(1) ReleaseVLAN based Layer-2 separation
© 2010 Cisco and/or its affiliates. All rights reserved. Public 49
L2 Separation with Isolated PVLAN
Single isolated VLAN for all tenants/apps
Provides same level of isolation as with VLAN
VLAN limits is no longer scalability limiting
factor
Useful for Bronze tier separation
UCS 6100
vNIC 1 vNIC 2vNIC 1
Port 1Port 0 Port 1Port 0
UCS 6100
VM VM
Tenant A Tenant B Tenant C
Bare metal
No of VLANs used = 1
Isolated VLAN A
Single Isolated PVLAN to provide v NIC level layer 2 separation
M81KR VIC
PVLAN Deployment
UCS Manager 1.4(1) ReleasePVLAN based Layer-2 separation
© 2010 Cisco and/or its affiliates. All rights reserved. Public 50
Only PVLAN Isolated access is supported
One Isolated per primary
Can not carry PVLAN and regular VLANs on the same vNIC
Community PVLAN is not supported
Promiscuous port is not supported
UCS Manager 1.4(1) ReleasePVLAN on the UCS design consideration
© 2010 Cisco and/or its affiliates. All rights reserved. Public 51
Today
Promiscuous on the Nexus 1000v.
UCS 6100 UCS 6100
VM1 VM2
Cat6500 – L3
vNICvNIC
VM3
vNICs are promiscuous trunks, terminate PVLAN on the Nexus 1000v . Only supported config with UCS
No special PVLAN configuration is required, UCS treats primary VLAN like any regular VLAN.
Point to N1kv documentation
Nexus 1000v
Promiscuous Port
UCS Manager 1.4(1) ReleasePVLAN with Nexus 1000v
© 2010 Cisco and/or its affiliates. All rights reserved. Public 52
Adapter
UCS 1.4 (Balboa)
Promiscuous outside of the Nexus 1000v
UCS 6100 UCS 6100
VM1 VM2
Cat6500 – L3
vNICvNIC
VM3
Nexus 1000v
BackupPromiscuous Port
Trunk carrying regular VLANs: service console, vMotion and control
Requires minimum of 2 vNICs, one vNIC for isolated VLAN and one vNIC for carrying regular VLANs for service console, vMotion and control.Recommendation: Fabric failover is recomended for HA assuming 2 vNIC configuration
Isolated PVLAN
For more details check PVLAN tech note -
Enable PVLAN Isolated Access
UCS Manager 1.4(1) ReleasePVLAN with Nexus 1000v
© 2010 Cisco and/or its affiliates. All rights reserved. Public 53
UCS 1.4 (Balboa)
Isolated PVLAN shared between Nexus 1000v and Bare metal
UCS 6100 UCS 6100
VM1 VM2
Cat6500 – L3
vNICvNIC
VM3 Bare metalBare metal
vNIC vNIC
Nexus 1000v
BackupPromiscuous Port
Choose a vNIC for isolated pvlan on Bare metal and Nexus 1000vAssign VLAN 101
Uplink portAll vlans are allowed
trunkswitchport mode trunkswitchport trunk allowed vlan 100,101
Isolated VLAN 101Adapter Adapter
Adapter
UCS Manager 1.4(1) ReleasePVLAN with Nexus 1000v
© 2010 Cisco and/or its affiliates. All rights reserved. Public 54
One Isolated PVLAN is supported with Menlo adapter
VIC (PALO) is recommended for traffic load-sharing and HA
VMware DVS does not support native VLAN on the trunk hence Isolated PVLAN on the UCS does not work with VmwareDVS.
UCS Manager 1.4(1) ReleasePVLAN on theUCS summary
© 2010 Cisco and/or its affiliates. All rights reserved. Public 55
Private VLAN on The UCSConfiguration and Management
Primary and Secondary VLANs and their mapping using UCSM
UCS Manager 1.4(1) ReleasePVLAN using the UCSM - Visual
© 2010 Cisco and/or its affiliates. All rights reserved. Public 56
UCS Software Release 1.4 (Codename: Balboa) Feature Summary
Compute• Support for new UCS B230 Blade Server
• UCS C-Series server integration into UCS Manager
• Multi-chassis power capping for UCS B-Series
Ethernet and Fibre Channel• Direct connect Ethernet Appliance
• SPAN support on UCS 6100
• PVLAN Isolated access support
• Full vNIC failover w/o NIC teaming/bonding with FabricFailover/FabricSync
• Higher VLAN scalability 1024
• Higher logical port scalability 6000
• Higher virtual interface Scalability 2000
• Fabric Extender Transceiver Support
• Management Interface moniroting and failover
• FC trunking and port channel (in NPV mode)
• Limited Direct Connect FC Storage
Authentication & Security• Simpler integration with MSFT Active Directory
• Multiple simultaneous authentication systems
• Multi-user KVM enhancements
Stateless Computing• Scheduling of service profile changes
• CIMC IP address abstraction
• Service profile “pre-flight” checks
Management & Monitoring• SNMP GET support for ALL UCS components
• Syslog enhancements
• UCS 6100 licensing enforcement/warnings
• Usability enhancements
© 2010 Cisco and/or its affiliates. All rights reserved. Public 57
Chassis backplane (or Fabric) provides redundant path for each vNIC
HW based active/standby failover mechanism for Eth traffic
Host OS un-aware of failure and recovery Unlike OS NIC Teaming, redundancy
provided with single interface After failover:
Transmit GARP Multicast Group reRegistration
Enable fabric failover in vNIC creation
FabricFailover
UCS Manager 1.3(1) Release or earlierFabric based NIC teaming
© 2010 Cisco and/or its affiliates. All rights reserved. Public 58
UCS Server
Eth 0 Eth 1
Return traffic for MAC
MAC A
MAC C Ten 1/1
Ten 1/1 Ten 1/2
MAC C Ten 1/2
Animated Slide
MAC B
MAC C
Fabric failover load-balances traffic on per vNIC basis
Palo provides up to 58 vNICs Each vNIC maps to one of the fabric for
active data path When active path fails, failover to
standby fabric. 6100 updates path changes to
upstream switches via gARP of vNIC MAC upon active link failure
gARPMAC C
UCS 6100 UCS 6100
FabricFailover
UCS Manager 1.3(1) Release or earlierFabricFailoveron UCS
© 2010 Cisco and/or its affiliates. All rights reserved. Public 59
UCS Server
Eth 0 Eth 1
Return traffic for MAC
MAC A
MAC C Ten 1/1
Ten 1/1 Ten 1/2
MAC C Ten 1/2
Animated Slide
MAC B
MAC D
gARPMAC D
UCS 6100 UCS 6100
Keeps mac address table synchronized between FI’s6100 updates path changes to upstream switches via gARP not only vNICMACs but also VMMACs behind a vSwitchupon active link failureAlways enabled
VM
MAC C
FabricSyncNEW
UCS Manager 1.4(1) Release FabricFailoverand Sync on UCS
© 2010 Cisco and/or its affiliates. All rights reserved. Public 60
VM
Server
Switch 1 Can only connect a single NIC to a virtual switch in
Hyper-V
Single point of failure
Hyper VvSwitch
No redundancy for Hyper-V Link
UCS Manager 1.3(1) Release or earlierHyper-V Network Link Redundancy
© 2010 Cisco and/or its affiliates. All rights reserved. Public 61
Server
Hyper-V does not support NIC teaming or bonding
Requires 3rd party intermediate NIC teaming driver
software to provide network link HA
Officially not supported by Microsoft technical
support
– Source Microsoft support website http://support.microsoft.com/kb/968703 date 09/22/10“Since Network Adapter Teaming is only provided by Hardware Vendors, Microsoft does not provide any support for this technology thru Microsoft Product Support Services. As a result, Microsoft may ask that you temporarily disable or remove Network Adapter Teaming software when troubleshooting issues where the teaming software is suspect.”
VM
Switch 1
Hyper VvSwitch
Switch 2
Virtual Machines LAN NIC team adapter
LAN Primary NIC LAN Secondary NIC
Server
Hyper-V Link redundancy with NIC teaming
UCS Manager 1.3(1) Release or earlierHyper-V Network Link Redundancy
© 2010 Cisco and/or its affiliates. All rights reserved. Public 62
VM
Hyper VvSwitch
Eth 0
Fabric failover provides hardware based
redundancy and failover
Microsoft fully supports fabric failover based
configuration
Eliminates need for un-supported software
teaming drivers
Predictable and faster failover (confirm)
FabricFailover with FabricSync enhances Hyper-V Link redundancy
Redundant path
Eth 1
UCS Server
UCS 6100 UCS 6100
UCS Manager 1.3(1) Release or earlierEnhancedHyper-V Network Link Redundancy
© 2010 Cisco and/or its affiliates. All rights reserved. Public 65
UCS Software Release 1.4 (Codename: Balboa) Feature Summary
Compute• Support for new UCS B230 Blade Server
• UCS C-Series server integration into UCS Manager
• Multi-chassis power capping for UCS B-Series
Ethernet and Fibre Channel• Direct connect Ethernet Appliance
• SPAN support on UCS 6100
• PVLAN Isolated access support
• Full vNIC failover w/o NIC teaming/bonding with FabricFailover/FabricSync
• Higher VLAN scalability 1024
• Higher logical port scalability 6000
• Higher virtual interface Scalability 2000
• Fabric Extender Transceiver Support
• Management Interface monitoring and failover
• FC trunking and port channel (in NPV mode)
• Limited Direct Connect FC Storage
Authentication & Security• Simpler integration with MSFT Active Directory
• Multiple simultaneous authentication systems
• Multi-user KVM enhancements
Stateless Computing• Scheduling of service profile changes
• CIMC IP address abstraction
• Service profile “pre-flight” checks
Management & Monitoring• SNMP GET support for ALL UCS components
• Syslog enhancements
• UCS 6100 licensing enforcement/warnings
• Usability enhancements
© 2010 Cisco and/or its affiliates. All rights reserved. Public 66
UCS Manager 1.4(1) Release Management Interface Failover
Cluster Link
MGMT
6100-A Primary 6100-B Secondary
1.3(1) or earlier :VIP does not failover to UCS 6100 secondaryRecover access by manual failover using CLI of the UCS 6100
secondaryKVM/IPMI/SSH IP does not failover
© 2010 Cisco and/or its affiliates. All rights reserved. Public 67
UCS Manager 1.4(1) Release Management Interface Failover
Cluster Link
MGMT
6100-A Primary 6100-B Secondary
1.4(1) :VIP failover to UCS 6100 secondary upon active MGMT port failureKVM/IPMI/SSH IP fails over to the available fabric Failover delay is 90 sec to limit CPU churn due to continues interface flapsManaging instance is not state full. Re-login is required for VIP and
KVM/IPMI/SSH IP.
© 2010 Cisco and/or its affiliates. All rights reserved. Public 68
UCS Manager 1.4(1) Release Management Interface Failover
© 2010 Cisco and/or its affiliates. All rights reserved. Public 69
UCS Software Release 1.4 (Codename: Balboa) Feature Summary
Compute• Support for new UCS B230 Blade Server
• UCS C-Series server integration into UCS Manager
• Multi-chassis power capping for UCS B-Series
Ethernet and Fibre Channel• Direct connect Ethernet Appliance
• SPAN support on UCS 6100
• PVLAN Isolated access support
• Full vNIC failover w/o NIC teaming/bonding with FabricFailover/FabricSync
• Higher VLAN scalability 1024
• Higher logical port scalability 6000
• Higher virtual interface Scalability 2000
• Fabric Extender Transceiver Support
• Management Interface moniroting and failover
• FC trunking and port channel (in NPV mode)
• Limited Direct Connect FC Storage
Authentication & Security• Simpler integration with MSFT Active Directory
• Multiple simultaneous authentication systems
• Multi-user KVM enhancements
Stateless Computing• Scheduling of service profile changes
• CIMC IP address abstraction
• Service profile “pre-flight” checks
Management & Monitoring• SNMP GET support for ALL UCS components
• Syslog enhancements
• UCS 6100 licensing enforcement/warnings
• Usability enhancements
© 2010 Cisco and/or its affiliates. All rights reserved. Public 70
Feature Name UCS 1.3 (Aptos+)June 2010 UCS 1.4 (Balboa)
VLANs per FI 512 1024
STP logical ports 3800 6000
VIFs 1000 2000
Number of Chassis 14 20
UCS Manager 1.4(1) Release Increased Scalability
UCS 1.4 Software (Balboa) Increases overall scalability of the UCS system, following table provides comparison between UCS 1.3 and UCS 1.4 Software
© 2010 Cisco and/or its affiliates. All rights reserved. Public 71
Increasing Chassis support
UCS 1.3 Software 14 Chassis
UCS 1.4 Software20 Chassis
© 2010 Cisco and/or its affiliates. All rights reserved. Public 79
Fabric Extender Transceiver (FET) is supported inUCS 1.4. Software Working with TMG group to offer in UCS SKU.
Support PVLAN Isolated access only, understand the customer requirements as some customer currently may be using community for cluster traffic and VMware VDS
Recommend VIC (PALO) for scalable PVLAN implementation
Recommend FabricFailover for Hyper-V based deployments.
Summary
© 2010 Cisco and/or its affiliates. All rights reserved. Public 80
UCS Networking Resources
PVLAN Tech notehttp://developer.cisco.com/web/cdc/tech/unifiedcomputing
SPAN Tech notehttp://developer.cisco.com/web/unifiedcomputing/ucsemulatordownload
© 2010 Cisco and/or its affiliates. All rights reserved. Public 81
Q & A
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 82
UCS Software Release 1.4
Compute Authentication & Security
Ethernet Stateless Computing
Fibre Channel Management & Monitoring
© 2010 Cisco and/or its affiliates. All rights reserved. Public 83
Agenda
Storage Connectivity for UCS Today
Limitations
New Topologies and Features in UCS 1.4 Software (Balboa)
Use cases for Direct Connect Storage
© 2010 Cisco and/or its affiliates. All rights reserved. Public 84
Storage Connectivity with UCS 1.3(1)
SAN SwitchLAN Switch
LANCLOUD
FC STORAGE
NAS STORAGE
NPV/End Host ModeEnd Host Mode
NAS STORAGE
Switch Mode
© 2010 Cisco and/or its affiliates. All rights reserved. Public 85
Limitations with UCS Release 1.3(1)
FC StorageNo storage connectivity directly to Fabric Interconnects
Need upstream SAN switches
No FC Port Channels
No VSANTrunking
NAS StorageDirect connection of NAS appliance requires Fabric Interconnects to be in switch mode (STP)
© 2010 Cisco and/or its affiliates. All rights reserved. Public 86
Exec Summary: UCS 1.4 Storage Features
New Direct Connect Topologies introducedBoth FC and NAS
Allows lower cost point for small UCS Pod like deployments
FC Port Channeling and VSAN TrunkingMore flexibility in engineering FC traffic
© 2010 Cisco and/or its affiliates. All rights reserved. Public 87
Support for NetApp and EMC direct connect storage
Zoning configuration not supported, but zoning may be inherited from upstream switch
LUN security through LUN masking in the array
Ethernet and FC switching modes are independent
Support to connect FC and FCoE storage to 6100
Fewer hops and reduced latency to access the storage
End to end FCoE topologies possible
Customer benefits
Feature details
UCS B-Series
UCS 6100 UCS 6100
FCoE Storage FC Storage
Enable Direct Connection of FC Storage
FC Target Ports
© 2010 Cisco and/or its affiliates. All rights reserved. Public 88
Hybrid Topology with direct-attach and SAN
UCS B-Series
UCS 6100 UCS 6100
FCoE StorageFC Storage
Fibre Channel
Ethernet
Unified I/O
FCoE
Core
Fabric A Fabric B
SAN Fabric Storage Arrays
SAN A SAN B
Direct Attach
Security via zoneset merge and/orLUN Masking on the Array Controller
© 2010 Cisco and/or its affiliates. All rights reserved. Public 89
Support for NAS (Ethernet appliance) in End Host (general best practice) without putting 6100 in switch mode
New NAS port type to support this functionality
Support for advanced features like VLAN Filtering and QoS
NAS appliance connected to Fabric Interconnects in “END HOST” Mode
Eliminates additional access-layer switches
Customer benefits
Feature details
UCS B-Series
Switch Mode
NAS Appliance
UCS B-Series
End Host
NAS Appliance
UCS 1.4
Current
Appliance Port
Uplink Port
Enable Direct Connection of NAS Appliances
© 2010 Cisco and/or its affiliates. All rights reserved. Public 90
fNICs (of vHBAs) can be on different VSANs
All VSANs will be trunked on every uplink FC port
Scalability: Max of 32 VSANs per UCS system
FC trunking supported in FC end host and switch mode
Provide isolation to SAN traffic over the same physical FC link
Help consolidate FC infrastructure
Customer benefits
Feature details
VSAN A
VSAN B
VSAN C
VSAN D
FC Port Trunking
SAN A SAN B
© 2010 Cisco and/or its affiliates. All rights reserved. Public 91
Up to 16 FC ports can be aggregated together for a single port channel
Different combination of FC ports from different expansion modules on the FI can be placed on the same port channel
VSANs can be trunked over the port channel
VSAN trunking and port channel supported for both NPV and switch mode FI operation
Aggregate and maximize available bandwidth while maintaining isolation
Increases resiliency and guard against port failures
Customer benefits
Feature detailsvFCs
VSAN A
VSAN B
VSAN C
VSAN D
ISL / Port Channel
FC Port Channels
SAN BSAN A
© 2010 Cisco and/or its affiliates. All rights reserved. Public 92
Direct Connect Storage - Use Cases
Commercial segment
Test/dev environments
Flat scale-out architectures for cloud-type deployments
Architectures migrating from FC to FCoE storage
© 2010 Cisco and/or its affiliates. All rights reserved. Public 93
Storage Vendor Support
UCS 1.4 Direct Connect will be EMC and NetApp only for all topologies (FC, FCoE, NAS)
Support for more vendors based on business cases
Please consult the URLs below early in the sales cyclePalo and Storage Current State of Qualification
http://www.cisco.com/en/US/prod/ps10265/at_work_promo.html#~si,
General HCL for UCS
http://www.cisco.com/en/US/products/ps10477/prod_technical_reference_list.html
© 2010 Cisco and/or its affiliates. All rights reserved. Public 94
Q & A
© 2010 Cisco Systems, Inc. All rights reserved. PublicRel v1.4 (Balboa) 95