HP networking aneb pojďme vytvářet spolehlivé, chytré a výkonné sítě s doživotní zárukou a jednotným managementem
Daniel Fertšák Solution architect
[email protected] ©2011 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice
Agenda
•
HP Networking – úvod
•
Virtualizace LAN pomocí IRF – popis a nasazení
•
WLAN architektura
•
IMC nástroj pro management sítí
Trendy v dnešních sítích ?
3
•
Závislost služeb na síti
•
Narůstající nároky aplikací
•
Virtualizace
•
Přílišná složitost
•
Stárnutí infrastruktury
•
Správa, TCO
Méně jak 30% IT rozpočtu směřuje do oblasti inovací
HP FlexNetwork architecture
Od datového centra, přes campus k pobočkám a správě FlexFabric
FlexCampus
FlexBranch
Výkonné a spolehlivé datove centrum
Drátové a bezdrátové technologie pod jednou střechou
Síťové prostředky s aplikacemi na pobočkách
Otevřená
Škálovatelná
Bezpečná
Akceschopná
Konzistentní
HPN portfolio ADVANCED
ESSENTIAL
Modular Switches
Modular Switches
HP A12500 HP A10500 HP A9500 HP A7500
HP E8200 HP E5400 HP E4200
Top of Rack Switches
Fixed Port Switches
HP A6120
HP E6600XG HP 6200yl HP E3800 HP E3500yl HP E2910al HP E25x0G HP E3500 HP E26x0 HP E25x0
Fixed Port Switches
WLAN
HP A5800 HP A5500 HP A5120 HP A36x0 HP A3100
HP E-MSM7xx Controllers HP E-MSM4xx Access Points HP E-MSM3xx Access Points HP E-M110 Access Point HP E-MSM317 Access Point
HP A5810 HP A5820 HP A5830 Server Blade Switch
Routers HP A8800 HP A6600 HP A-MSR 50 HP A-MSR 30 HP A-MSR 20 HP A-MSR 900
Unified Communications HP UC Applications HP 41xx IP Phones
WLAN HP A-WX5004 Controller HP A-WA2xxx Access Points HP A3000 Wireless Switches HP A9000 Access Points HP A8760 Access Point HP A7760 Access Point Management IMC NNMi NA
Management PCM/PCM+ IDM NIM TMS zl Module
VALUE Web Managed Switches HP V19x0 HP V1810 HP V1700
Unmanaged Switches HP V14x0 WLAN HP M200 AP
SECURITY IPS HP S6100N HP S5100N HP S2500N HP S1400N HP S660N HP S330 HP S110 HP S10 HP Core Controller Management SMS HP SMS Controller
Advanced: For customers with large/complex deployments seeking advanced, full featured networking technology to drive competitive advantage with lower cost of ownership. Essential: For customers seeking essential proven technology that’s affordable and easy to use while providing scalability for future needs.
Value: For value-conscious customers seeking reliable and easy-to-use connectivity solutions.
Topologie enterprise sitě
a nemohlo by to být jednoduší? Internet SP1
SP2 VPN
REMOTE
Internet Access
WAN Access DMZ CORE
Management Distribution
ACCESS Campus
Data Center
Design s využitim IRF Core/Distribution Access
Management pohled
Active/Active
Scalable Server Bandwidth
All links are active.
+ Simplified/virtualized L2/L3 design and operations with a single IP and configuration file. No need for STP neither for VRRP. No MSTP design and operations headache. Switching and routing functions get virtualized as well as service modules. + Allows multiple active paths for scalable performance + Near instantaneous network recovery ensures business continuity and superior user experience
IRF – flexibilita, výkon, jednoduchost Technologie virtualizace sítě Wiring closet or ToR
Horizontální stacking přes rozvaděče nebo racky
Ideální do campusu i datového centra … lokálně i přes geografické oblasti
Až 9 zařízení
Podporuje i 70 km
up to 9 in an IRF stack
- Od datového centra přes páteř a agregaci až k přístupové vrstvě - Patrové rozvaděče, top of rack, core switche
- Kompletní virtualizace (virtuální chassis) na L2 i L3, méně konfiguračních souborů a protokolů - Přes lokální kabely i optikou přes rozdílné lokality - Rapid failover, ISSU, MAD, ...
Řešení pro malou firmu - redundantní HP MSR 20-10
3G internet
Internet
H3C MSR 20-21 PWR
SYS
ESM
IRF Stack HP 5500 24SFP
1Gb/s
100Mb/s
HP 3100 EI
10
HP CONFIDENTIAL—For HP and Channel Partners Internal Use Only
1Gb/s
100Mb/s
HP 5500 24SFP 100Mb/s
HP 3100 EI
5/31/2012
HP 3100 EI
Řešení pro střední firmu s vizí budoucího rozvoje HP MSR30-40
Internet #2
Internet #1
~100-240V 50/60Hz;3.5A
H3C MSR 30-40 ON
OFF
CONSOLE PWR
1 DO NOT REMOVE DURING LED FLASHING AUX
0 CF
HP E5406 ProCurve zl Switch5406zl Switch J9533A J8699A PoE
ProCurve Networking Use zl Modules only
Reset
CF CARD
A
B
1
C
D
I
J
2
E
F
K
L
PoE
Test
Clear
USB0
HP E5406 ProCurve zl Switch5406zl Switch J9533A J8699A PoE
Status
HP E5400Switch zl Switch ProCurve 5400zl ManagementModule Module Management J8726A J8726A
HP Innovation
Power
Mgmt Flash
Temp
Chas DIMM
Fan
3
4
1
2
Internal Power
G H
Act
Modules
PoE Pwr
FDx
PoE
Spd
Usr
Console
LED Mode
ProCurve Networking
Status
HP E5400Switch zl Switch ProCurve 5400zl ManagementModule Module Management J8726A J8726A
HP Innovation Use zl Modules only
Power
Auxiliary Port
Fault
Reset
A
B
1
C
D
I
J
2
E
F
K
L
PoE
Test
Clear
Mgmt Flash
Temp
Chas DIMM
Fan
3
4
1
2
Internal Power
G H
Act
Modules
PoE Pwr
FDx
PoE
Spd
Usr
Console
LED Mode
Auxiliary Port
Fault 11
33
55
77
99
11 11
13 13
15 15
17 17
19 19
21 21
23 23
11
ProCurve HP 24p Gig-T Gig-T PoE+ v2 zl Mod zl Module J9534A J8702A
33
55
77
99
11 11
1313
1515
1717
1919
2121
B
2
4
6
8
10
12
14
16
18
PoE-Integrated 10/100/1000Base-T Ports (1-24) - Ports are are IEEE Auto MDI/MDI-X PoE+ Integrated 10/100/1000Base-T Ports (1-24) - Ports Auto-MDIX
20
22
24
zl
Module
ProCurve HP 24p Gig-T Gig-T/SFP+ zl Mod zlv2 Module J9536A J8702A
23
2
4
6
8
10
12
1414
1616
1818
PoE-Integrated 10/100/1000Base-T Ports (1-24) - Ports are IEEE Auto MDI/MDI-X PoE+ Integrated 10/100/1000Base-T Ports (1-20) - Ports are Auto-MDIX
2020
2222
11
Locator Use only supported transceivers
24
zl zl
Module
33
55
77
99
11 11
13 13
15 15
17 17
19 19
21 21
23 23
A
ProCurve HP 24p Gig-T Gig-T PoE+ v2 zl Mod zl Module J9534A J8702A
2
4
6
8
10
12
14
16
18
PoE-Integrated 10/100/1000Base-T Ports (1-24) - Ports are are IEEE Auto MDI/MDI-X PoE+ Integrated 10/100/1000Base-T Ports (1-24) - Ports Auto-MDIX
20
22
24
zl
Module
ProCurve HP 24p Gig-T Gig-T/SFP+ zl Mod zlv2 Module J9536A J8702A
C
D
C
D
E
F
E
F
HP 5406zl
11
33
55
77
99
11 11
1313
1515
1717
1919
2121
2
4
6
8
10
12
1414
1616
1818
2020
2222
B
23 1-GbE/10-GbE SFP+ Ports
A
1-GbE/10-GbE SFP+ Ports
Locator
SYS
PoE-Integrated 10/100/1000Base-T Ports (1-24) - Ports are IEEE Auto MDI/MDI-X PoE+ Integrated 10/100/1000Base-T Ports (1-20) - Ports are Auto-MDIX
Use only supported transceivers
24
zl zl
Module
HP 5406zl
1GE
10GE HP 5120 EI
11
HP 5120 EI
HP CONFIDENTIAL—For HP and Channel Partners Internal Use Only
HP 5120 EI
5/31/2012
HP 5120 EI
Řešení pro enterprise – wirespeed 10 GbE páteř HP 6604
Internet #2
Internet #1
IRF HP 10508
HP 10508
10GE
HP 5120 EI
12
IRF
HP 5120 EI
HP CONFIDENTIAL—For HP and Channel Partners Internal Use Only
10GE HP 5120 EI
5/31/2012
HP 5120 EI
Redundatní 10GE připojení serverů v datovém centru
10GbE
10GbE
10GbE
HP 5920AF
13
HP CONFIDENTIAL—For HP and Channel Partners Internal Use Only
HP 5920AF
5/31/2012
HP 5900AF 10GE ToR switch pro DC Konvergence dat, výpočetních prostředků a storage
48x 1G/10GBaseX SFP+
4 * 40GbE QSFP
•
Vysoká hustota 10G portů (až 60 na 1U)
•
40 GE porty, konverze 40GE na 4x10 GE
•
předo-zadní chlazení, zado-přední chlazení
•
IRF technologie pro virtualizaci prvků
•
Funkční výbava L2/L3 a IPv4/IPv6 dual stack
•
DCB podpora pro konvergované řešení
•
Připraveno na TRILL, VEPA, FCoE
HP 5920 10GE ToR switch pro DC Konvergence dat, výpočetních prostředků a storage
1
1
2
3 3
FRONT TO BACK
24x 10G SFP + portů
•
IRF technologie pro virtualizaci prvků (max. 4)
•
480Gbps switch capability, 357.12 Mpps forwarding throughput.
•
deep packet buffering (3.6 GB) + 9 MB interní buffer
•
předo-zadní chlazení, zado-přední chlazení
•
cut-throw a nízká latence
2 1
3
•
3
BACK TO FRONT
1
2
2
Comware verze 7 – nový software
16
For HP Internal and Partner Use Only | NDA until August 29
•
kompletně nový kód - linux based
•
aktuálně pro DC a metro ethernet
•
vylepšená izolace procesů/úloh
•
feature set - fáze I/II
•
identické CLI jako CMW5
•
Single box hitless upgrade
•
přepínače s cmw7 5900/5920
HP 5800AF 1GE ToR switch pro DC Řada 58xx optimalizovaná pro datová centra
TOP OF RACK
END OF ROW
•
48x1GE 6x10G SFP+ portů
•
Modely s předo-zadním chlazením
•
Redundantí duální napájení
•
Modely s MPLS/VPLS
•
Podpora IRF (max. 9), mix IRF s 5820AF
HP 5500-HI pro přístupovou i agregační vrstvu •
1GE wirespeed L3 přepínač, 24/48 portů
•
2 přední10GE SFP+ porty, 4xSFP, OOB mgmt
•
2 rošiřující sloty (max. 58x1GE, 6x10GE)
•
Duální napájení, EEE (IEEE 802.3az)
•
RIP, OSFP, ISIS, BGP, MPLS, VPLS, IRF (max.9)
•
Dual boot-rom, Dual core
•
In hardware OAM, CFD
•
doživotní záruka
HP 3600v2 & 3100v2 – 100 Mb refresh
•
3100 v2
•
hardware refresh – upgrade CPU a RAM
•
comware verze 5
•
dvě verze firmware SI/EI
•
verze bez ventilátorů
•
3100 – Layer 2, 3600 Layer 3
•
Vylepšení: IRF, SFLOW, Egress ACL, PoE+ PVSTP+, PVLAN, IPv6, SAVI
•
•
3600 v2
doživotní záruka
Vlajková loď – HP 10500 s CLOS architekturou
•
10508
•
10504
•
128 wire speed 10 GbE, 160G per slot
•
IRF dává 240 10G portů v jednom systému
•
Latence 3 mikrosekundy
•
40 GbE, 100 GbE ready
•
4 chassis v IRF
•
Nové line karty: 4x40GE, 48x10GE
•
Nové sw. fabriky B,D (320/480G per slot)
WLANs: frequency spectrum of operation •
Unlicensed bands
2.4 GHz
83.5 MHz
675 MHz
2,4 GHz
5 GHz
2.4835 GHz
802.11b/g (54 Mb/s) 802.11n
5.15 GHz
5.825 GHz
802.11a 802.11n (300 Mb/s)
Beamforming
22
Local Mesh •
Local Mesh extends wireless to areas where Ethernet is not available Inside hotels, factories, hospitals, outdoor campus, LAN bridge between buildings – Self-healing links, self-optimizing links, multiple egress gateways – Multiple configuration options for wireless access and backhaul –
Extension of wireless coverage through local mesh Wireless Links
Wireless Links
Connecting wired networks over local mesh Wireless Links
Wireless Infrastructure Models (1) Controller-based WLAN Architecture
Autonomous Architecture MSM Controller PoE Switch
Core or Aggregation Switch
Access Switch
Access Points
Access Points
24
Wireless Infrastructure Models (2) Centralized Access Control MSM Controller Corporate Network
Distributed Forwarding MSM Controller
Access Points
Access Switch
Access Switch
Access Points
Access Points
Authentication Traffic User Traffic 25
MSM Controller Corporate Network
Corporate Network
Access Switch
Distributed Forwarding with Centralized Authentication
E Series Wireless LAN Portfolio Wireless Application
HP ProCurve Manager Plus + HP Mobility Manager
MSM760 Mobility Controller
MSM710 Mobility Controller
Wireless Access Point MSM430 N Dual Radio
Multiservice Controller Module
Multiservice Controllers
Wireless Controller
Sensor APs
Indoor APs
MSM310 A/B/G Single Radio
MSM466/460 N Dual Radio – 3 MSM320 Spatial Streams A/B/G Dual Radio
MSM720 Mobility Controller
MSM410 N Single Radio
MSM325 A/B/G Dual Radio
MSM765zl Mobility Controller
Outdoor APs
MSM335 A/B/G Triple Radio MSM466-R A/B/G/N Du al Radio NEMA 4x rated
MSM422 A/B/G & N Dual Radio
Special Purpose AP
MSM415 A/B/G & N Dual radio Dedicated Sensor
MSM317 Access Device
MSM720 Wireless Controller Delivering the best ease of use, flexibility & lowest TCO for10-40 AP configurations • •
Network capacity starts at 10 APs and is upgradeable to 40 APs complimenting MSM710 (up to 10 APs) and MSM760/765 (40 to 200 APs) High performance, scalable MSM controller offers flexible physical configuration options − − −
• • •
Supports an optional Premium Mobility Package Supports 2520-8G chassis mounting options Two models (WW and TAA versions) − −
•
27
4 RJ45 Gigabit ports (non-PoE) and 2 dual personality G ports fully under software control RJ-45 Console port IEEE 802.3ad Link Aggregation Control Protocol (LACP) support
HP MSM720 Access Controller HP MSM720 Premium Mobility Controller
Lifetime warranty on hardware ©2011 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice
Packaging: Advanced Features by Platform Capability
MSM710/720/760 Access Controller
MSM710 Mobility Controller or Mobility Services Upgrade
MSM720/60 Premium Mobility Controller or Premium Mobility Upgrade
MSM765 Premium Mobility Controller
Notes
Roaming
√
√
√
Supports data and voice clients.
WPA2 Opportunistic Key caching
√
√
√
Opportunistic key caching enables seamless roaming in WPA2-Enterprise deployments
Layer 3 Mobility
√
√
√
Enables seamless L3 roaming via Mobility Traffic Manager (MTM) or subnet-based roaming.
√
For high availability support
√
√
Maximum of two (2) MSM720 with a single point of management for up to 40 APs/team in an N+1 configuration. Maximum of five (5) MSM76x with a single point of management for up to 800 APs/team in an N+1 configuration; Team must consist of same type of controller – i.e., all MSM760s or all MSM765s)
64
64
Enhanced scalability for MSM720/76x controllers
Layer 2 Mobility
√
Resiliency and Scalability
√
N+1 Resiliency
Controller Teaming
VSCs Supported Concurrent Guest Access Users
28
16
16
100 (MSM710) 250 (MSM720) 2000 (MSM76x)
Limits are unrelated to AP licensing (v5.7 and later)
Scalability: Virtual Controller Failover (MSM76x) Virtual Controller Team Manager
800 active APs (maximum allowed) equally configured across all controllers
Member
Member
L2 Network Member
Member
©2011 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice
MSM760 160 AP License MSM760 160 AP License MSM760 160 AP License MSM760 160 AP License MSM760 160 AP License
Scalability: Virtual Controller Failover (MSM76x) Virtual Controller Team Manager
800 active APs (maximum allowed) equally configured across all controllers
Member
Failure
40 APs MSM760 failover to 160 AP License this controller 40 APs MSM760 failover to 160 AP License this controller
L2 Network Member
Member
160 APs failover without rebooting.
©2011 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice
40 APs MSM760 failover to 160 AP License this controller
40 APs MSM760 failover to 160 AP License this controller
802.11n Access Point Positioning Feature
MSM466-R
MSM466
MSM460
MSM430
MSM410
Dual 802.11n radios
Yes
Yes
Yes
Yes
No
IEEE 802.3af PoE
Yes
Yes
Yes
Yes
Yes
High-performance Dual core processors
Yes
Yes
Yes
Yes
No
Number of transmitters/ receivers
3x3
3x3
3x3
3x3
3x3
Number of spatial streams
3
3
3
2
2
Max performance
450 Mbps/radio
450 Mbps/radio
450 Mbps/radio
300 Mbps/radio
300 Mbps/radio
External
External
Internal
Internal
Internal
Concurrent 5GHz support
Yes
Yes
No
No
No
Lifetime warranty
1 year
Yes
Yes
Yes
Yes
$1999.00
$999.00
$999.00
$699.00
$499.00
Antenna
List price
31
MSM466-R Delivering the highest performing dual radio 802.11n outdoor AP •
MSM466-R AP feature set – – – –
•
Powered by 802.3af or 802.3at PoE* AP, Mesh and Monitor (packet capture) modes Six N Type Connectors Flexible pole and wall mounting options
Environmental design features – –
IP67 and NEMA 4X rated, providing protection against water intrusion and salt fog damage Waterproof •
Ethernet PoE connector kit
•
Reset to Factory button
•
LEDs for visual indication of unit health –
Power, LAN, Radio 1, Radio 2
–
- 40°C* to 55°C operating temperature
–
Embedded heater
* Operation under -20°C requires 802.3at PoE
32
Centrální správa HP iMC automatizuje síť a udržuje ji v dobré kondici •
Zálohování a audit konfigurací
•
Vizualizace sítě i vlastního datového centra
•
Vyhledávání serverů a zařízení
•
Monitoring výkonu
•
Správa sítí ve VMware, Hyper-V i Virtual Connect
•
Možnost vzdáleného přístupu z Android či iPad
33
iMC a portfolio modulů HP Intelligent Management Center framework FCAPS Model IMC Platform Features Add-On Modules
Fault
Alarms
Syslog & Trap Manager
Service Operation Mgmt
Configuration
Intelligent Configuration Center
IPSec VPN Manager
MPLS VPN Manager
Wireless Services Manager
QoS/SL A Manager
Accounting
VLAN & ACL Manager
Network Assets
User Behavior Analysis
Desktop Asset Mgmt
Performance
Performance Mgmt
Network Traffic Analyzer
Virtual Network Mgmt
Security
Security Control Center
User Access Manager
Endpoint Admissio n Defense
Výzkum společnost Gartner o dual-vendor strategii •
http://h17007.www1.hp.com/vanity/debunking.htm
•
Introducing a second vendor into the network infrastructure will have no long-term impact on operational costs for organizations following best practices.
•
Introducing a second networking vendor will reduce total cost of ownership (TCO) for most organizations by at least 15% to 25% over a five-year time frame.
•
We did not encounter one example where operational cost savings would offset the equipment cost premium that Cisco generally charges.
•
Most organizations that introduced a second vendor report a lasting decrease in network complexity, compared with an all-Cisco network.
•
Network operations teams that are already using some form of multivendor management tools for fault alerting, configuration management or performance management are wellpositioned to take advantage of the second-vendor opportunity
35
HP a podpora multi-vendor zákazníků •
Standardy a testování interoperability
•
Proof of concept se začleněním do stávající sítě
•
Integrační dokumenty – modelové příklady, srovnání konfiguračních kroků a konkrétních příkazů
•
Školení interoperability zaměřené na konfiguraci HP/Cisco prostředí
•
iMC management sítě s podporou 220 výrobců
•
Orchestrační nástroje pro celé IT s multi-vendor podporou
•
Akcelerované vzdělávací programy pro Cisco certifikované techniky
HP NETWORKING •
Široké portfolio produktů (SMB i Enterprise)
•
Nižší TCO (záruky, spotřeba, licence, správa, otevřenost, ...)
•
Pokročilá inovativní architektura (IRF, distribuovaný forwarding)
•
Jednotný management HP i Cisco sítě (iMC)
