H3C's Network Solutions for Internet/IT Networks' Evolving Needs
27-08-20181. Network Solutions for Micro Internet Data Center
At Internet startups, server and employee numbers are initially limited, and data centers and Open Access Network (OAN) are relatively simple.
● There are less than 50 servers, configured with two data center level switches for high speed switching. IRF2 is deployed to simplify management, and improve reliability and bandwidth utilization. Data center uplinks are usually statically routed to a large carrier.
● H3C UIS R100/R390 series rack servers are used. To improve the utilization rate of server hardware, the H3C CAS CVK virtualization platform can be deployed alongside these.
● The OAN network generally uses campus network switches, with IRF2 virtualization technology to improve reliability, and facilitate network management. Optional wireless solutions can be applied to achieve mobile office and terminal access.
● irewall is deployed at the data center gateway to ensure business security, and between the data center and OA network to segregate internal traffic. Ethernet Access Direct (EAD) solutions can provide secure access to complex and varied OAN terminals.
● H3C's iMC provides unified network management and automatic configuration, reducing the complexity of these tasks.
H3C's patented IFR2 (second generation Intelligent Resilient Framework) technology is applicable to all the networking devices. Unlike traditional MSTP and VRRP technology, IRF2 technology can achieve dual-active uplinks from servers to access switches, and from access switches to core switches, doubling the efficiency of network operation; can reduce network failure convergence times from dozens of seconds to milliseconds; and offer N:1 virtualization functionality, which can reduce management, operation, and maintenance workloads by more than 50%.
Figure 1 Network Solution for Micro Data Center
The recommended configuration is as follows:
Firewall-OUT | SecPath F10X0 series (throughput from 1.5 Gbps to 10 Gbps) |
DC-Core | S5560S-EI, S5800, S6800 |
OA-Core | S5130S-PWR |
WLAN AC & AP | WA4300-ACN FAT AP |
Server | UIS R170/R190/R390 dual-channel rack-mounted |
Virtualization Platform | H3C CAS CVK |
vSwtich | H3C vSwitch |
2. Network Solution for Small Internet Data Center
As Internet companies' business grows, when server and staff numbers increase to about 200, the ability of the DC outlet to access multi carriers needs to be considered.
● The data center core is initially configured with two data center level switches for high speed switching. IRF2 can be deployed to simplify management, improve reliability and bandwidth utilization. The DC core switches of the original sub network can then be downgraded to access switches, and load balancing devices added to the data center outlet to provide link load balancing access to multiple carriers.
● H3C UIS R100/R390 series rack servers are used. To improve server hardware utilization rates, the H3C CAS CVK virtualization platform can deployed alongside these.
● The OA network can continue to use campus network switches, with IRF2 virtualization technology applied to multiple devices to improve reliability, and to facilitate network management. Optional wireless solutions can be applied to achieve mobile office and terminal access.
● Firewall should be deployed at the data center gateway to ensure business security, and between the data center and OAN to segregate internal traffic. EAD solutions can provide secure access for complex and varied OAN terminals.
● H3C's iMC provides unified network management and automatic configuration, reducing the complexity of these tasks.
Figure 2 Network Solution to Small Data Center
The recommended configuration is as follows:
LB | Secpath L1000 series |
Firewall-OUT | Secpath F10X0 series (throughput from 1.5Gbps to 10Gbps) |
DC-Core | S6800/S9800/S10500 series |
DC-Access | S5120-HI/S5560-EI/S6300 |
OA-Core | S5560-EI/S7500E |
OA-Access | S5130-PWR |
WLAN AC & AP | WX3000H WLAN AC, WA4300-ACN WLAN AP |
Server | UIS R170/R190/R390 dual-channel rack-mounted |
Virtualization Platform | H3C CAS CVK |
vSwtich | H3C vSwitch |
3. Network Solution to Middle-sized Internet Data Center
As businesses grow further, when server and staff numbers increase to about 1000, the increased scale of the data center and OAN make it necessary to consider construction and synchronization of multiple data centers.
● The data center core is initially configured with two data center level switches for high speed switching. IRF2 can be deployed to simplify management, improve reliability and bandwidth utilization. The DC core switches of the original sub-network can then be downgraded to access switches, and routers connected on dedicated lines for interconnection with remote data center/CDN server rooms. To improve reliability, IPSec VPN/GRE applied at the outlet can establish a synchronization channel for backing up data at other data centers.
● H3C UIS R100/R390 series rack servers are used. To improve server hardware utilization rates, the H3C CAS CVK virtualization platform can deployed alongside these.
● The OA network can continue to use campus network switches, with IRF2 virtualization technology applied to multiple devices to improve reliability, and to facilitate network management. Optional wireless solution can be applied to achieve mobile office and terminal access. For varied OAN terminals, EAD solutions can be applied to deliver secure access.
● H3C's iMC provides unified network management and automatic configuration, reducing the complexity of these tasks. Netconf and Autoconfig can be applied to network devices to improve management and deployment efficiency.
Figure 3 Network Solution for Middle-sized Internet Data Center
The recommended configuration is as follows:
LB | Secpath L1000/L5000 series |
Router | SR6600-X/SR8800-X/CR16000+Firewall module |
DC-Core | S9810/S10500/S12500X-AF series |
DC-Access | S5120-HI/S5560-EI/S6300/S6800 series |
OA-Core | S7500E/S10500 |
OA-Access | S5130-PWR |
WLAN AC & AP | WX5000 WLAN AC, WA4300-CAN WLAN AP |
Server | UIS R170/R190/R390 dual-channel rack-mounted |
Virtualization Platform | H3C CAS CVK |
vSwtich | H3C vSwitch |
4. Network Solution for Large or Super Large Internet Data Center
When server numbers increase to around 5,000, and staff to around 2,000, the increased scale of the data center and OAN imply that the modeling, standardization and automation of the data center must be considered to accelerate network construction, and satisfy the business's increasing needs for flexibility. Details are shown in the diagram below.
● Four high-performance DC-level servers configured in the DC core for high speed switching form a Performance Optimized Datacenter (POD). Internal to the POD is a two-layer network, which can support virtual machine migration.
● H3C UIS R100/R390 series rack servers are used. To improve server hardware utilization rates, the H3C CAS CVK virtualization platform can deployed alongside these.
● The OA network can continue to use campus network switches, with IRF2 virtualization technology applied to multiple devices to improve reliability, and to facilitate network management. Optional wireless solution can be applied to achieve mobile office and terminal access. For varied OAN terminals, EAD solutions can be applied to achieve secure access.
● H3C's iMC provides unified network management and automatic configuration, reducing the complexity of these tasks. Netconf and Autoconfig can be applied to network devices to improve management and deployment efficiency.
Figure 4 Network Solution to Large or Super Large Internet Data Center
The recommended configuration is as follows:
LB | Secpath L5000 |
Router | SR6600-X/SR8800-X/CR16000+Firewall module |
DC-Core | S9810/ S12500X-AF series |
DC-Agg | S9800/S6800 series |
DC-Access | S5120-HI/S5560-EI/S6300/S6800 series |
OA-Core | S7500E/S10500 |
OA-Agg | S5560-EI/S7500E |
OA-Access | S5130-PWR |
WLAN AC & AP | WX5000 WLAN AC, WA4300-ACN WLAN AP |
Server | UIS R170/R190/R390 dual-channel rack-mounted |
Virtualization Platform | H3C CAS CVK |
vSwtich | H3C vSwitch |
5. Network Solution for Cloud Data Center
With the rapid development of mobile Internet technology and business, Internet enterprises have begun large scale deployment of cloud computing, virtualization, big data and other technologies, imposing new requirements upon network platforms.
- "Large two-layer" networks are required to cope with the flexible migration of virtual machines
- Networks must cope with cloud computing platforms' business needs for automated deployment and end-to-end delivery
- Networks must satisify cloud computing environment's requirements for flexible deployment and resource allocation
- Networks in cloud computing environments must enable multi-tenant isolation
The challenges cloud computing, virtualization, and big data technologies create, are not simply ones related to network deployment, but involve more the creation of networks driven by and capable of changing alongside business needs, and supporting users' business goals. SDN's (Software Defined Networking) innovative network architecture separates the control and data levels of network devices via Openflow and other standardization technologies, thereby enabling flexible, centralized and fine-grained control of network traffic, and permitting flexible construction of business-driven networks capable of meeting user needs for centralized O&M management, flexible deployment, resource polling management, massive tenant specification, tenant security isolation, network security and reliability.
The network architecture for the cloud computing era can be summarized as follows:
● CVF controller maintains centralized management and control of the entire network. The upstream interface uses a RESTful API to connect with the cloud management platform, while the downstream interface maintains centralized control of network devices using Openflow, Netconf, OVS-DB and other protocols.
● VXLAN IP Gateway: interconnects between the VXLAN Overlay network and the traditional network.
● VXLAN Gateway: provides access for virtual machines and servers to the VXLAN network.
● Service node: a security service pool composed of NFV devices such as vFW and vLB supports flexible addition of security services for tenants using service chain technology.
[] Server and virtualization platform: H3C UIS R100/R390 series rack servers are used. To improve server hardware utilization rates, the H3C CAS CVK virtualization platform can deployed alongside these.
● switching: H3C S1020V is used as the VXLAN Gateway. In this case, the upper Leaf switch does not have to support the VXLAN Gateway feature.
Figure 5 Network Solution to Could Data Center
The recommended configuration is as follows:
SDN Controller | H3C VCF Controller Cluster |
VXLAN IP Gateway | S9800/S12500X-AF/VSR |
VXLAN Gateway | S6800/H3C vSwitch |
Traditional Leaf Switch | S5560-EI |
NFV | H3C vFW, vLB, vSR |
Router | SR6600-X/SR8800-X/CR16000 |
Server | UIS R170/R190/R390 dual-channel rack-mounted |
You can find excellent H3C partners, or you can become one of them to build a
partnership with H3C and share success together.
