双活数据中心与灾备解决方案-技术部分教学教材.ppt

上传人:豆**** 文档编号:60911395 上传时间:2022-11-19 格式:PPT 页数:94 大小:7.83MB
返回 下载 相关 举报
双活数据中心与灾备解决方案-技术部分教学教材.ppt_第1页
第1页 / 共94页
双活数据中心与灾备解决方案-技术部分教学教材.ppt_第2页
第2页 / 共94页
点击查看更多>>
资源描述

《双活数据中心与灾备解决方案-技术部分教学教材.ppt》由会员分享,可在线阅读,更多相关《双活数据中心与灾备解决方案-技术部分教学教材.ppt(94页珍藏版)》请在taowenge.com淘文阁网|工程机械CAD图纸|机械工程制图|CAD装配图下载|SolidWorks_CaTia_CAD_UG_PROE_设计图分享下载上搜索。

1、双活数据中心与灾备解决双活数据中心与灾备解决方案方案-技术部分技术部分议程程1同城双活技术方案2异地灾备技术方案2基于虚基于虚拟拟化技化技术术的的业务连续业务连续性解决方案概性解决方案概览览资源池源池本地站点灾备站点基于虚拟化层的异步复制基于虚拟化层的异步复制基于硬件设备的同异步复制基于硬件设备的同异步复制自动化应用切换管理自动化应用切换管理城域集群城域集群应用感知的高可用性应用感知的高可用性关键应用零停机保护关键应用零停机保护在线迁移虚拟机,动态调配计算与存储资源在线迁移虚拟机,动态调配计算与存储资源VMotion and Storage VMotion高效的数据备份与恢复高效的数据备份与恢

2、复可通过运行计划与脚本实现自动化操作可通过运行计划与脚本实现自动化操作资源池源池Dev/TestDev/TestDev/Test灾灾难恢复恢复本地高可用本地高可用数据保数据保护方案特点 与应用程序和操作系统无关与硬件设备无关 完善的保护 简单,经济3议程程1同城双活技术方案2异地灾备技术方案4双活数据中心在各个双活数据中心在各个级别级别上全面保障可用性上全面保障可用性vMotion&DRSHA&FT服务器Storage vMotion,Storage DRS存储VMFSVMFS硬件热添加多网卡绑定存储多路径组件数据Data ReplicationMetro Cluster站点5双活数据中心双活

3、数据中心总总体架构体架构双活存储集群站点A站点B延伸的vSphere集群 200 km行为与单个vSphere相同延伸距离最大200KM,通常小于50KM通过VMware HA与vMotion实现自动的DR保护需要双活存储集群,如EMC的vPlex,NetApp的MetroCluster等6计计算算资资源源设计设计Making an Application Service Highly AvailablevSphereHAvSphereAppHA8VMwarevFabrictcServervSphere App HAPolicy-basedProtectoff-the-shelfapps9Fa

4、ult Tolerance vs.High AvailabilityFaulttoleranceAbilitytorecoverfromcomponentlossExample:HarddrivefailureHighavailabilityUptimepercentageinoneyearDowntimeinoneyear993.65days99.98.76hours99.9952minutes99.999“fivenines”5minutesX10支持多支持多vCPU的容的容错错技技术术InstantaneousFailover4vCPU4vCPUPrimarySecondaryFastC

5、heckpointingFTsupportforupto4vCPUsProtectionforhighperformance,multi-vCPUVMsNew,morescalabletechnology:fastcheck-pointingtokeepprimaryandsecondaryinsyncOverviewProtectmission-critical,high-performanceapplicationsregardlessofOSContinuousavailability:zerodowntime,zerodatalossforinfrastructurefailuresF

6、ullyautomatedresponseBenefits11Targetingcross-continentaldistancesupto100msRTTsMaintainstandardvMotionguaranteesLeaderinVMflexibility功能功能简介介PermanentmigrationsbetweendatacentersDisasteravoidance(DA)DR/DAtestingMulti-siteloadbalancingFollowthesunBenefits长长距离距离vMotionvSphere6.0支持跨三层网络和跨vCenterServer的v

7、Motions12vCenter AvailabilityRunvCenterServerapplicationinaVMRunvCenterServerdatabaseinaVMRunbothinsameVM?ProtectwithvSphereHAvCenterandDBVMrestartprioritysettoHighEnableguestOSandAppmonitoringAppHAcanprotectSQLServerdatabaseBackupvCenterServerVManddatabaseImage-levelbackupforvCenterServerVMApp-leve

8、lbackupusingagentfordatabasebackup13网网络资络资源源设计设计双活数据中心网双活数据中心网络络架构架构物理二物理二层(裸光裸光纤)逻辑二二层层叠网叠网络/VPN 二层分段VMVMVM二层分段VMVMVM二层网络扩展的二层网络(二层内容在数据中心互连链路上传递)站点A站点B二层网络15NSX vSphere Multi-Site Use CasesNSX for vSphere supports 3 different Multi-Site Deployment Models1.VXLANwithStretchedClusters(vSphereMetroSto

9、rageCluster)2.VXLANwithSeparateClusters3.L2VPNAll solutions provide L2 extension over an L3 network,enabling workload&IP mobility without the need to stretch VLANsLocal egress is supported,however it does add complexityThe appropriate deployment model will depend on customer requirements and their e

10、nvironmentNSX利用利用层层叠网叠网络实现络实现双活数据中心双活数据中心双活存储双活存储vSphere城域存储集群城域存储集群数据存数据存储1数据存数据存储2vCenterServer三层网络站点站点A站点站点BVM1VM2VM3逻辑交交换机机A172.16.10.0/24VM4VM5逻辑交交换机机B172.16.20.0/24分布式逻辑路由器分布式逻辑路由器站点站点A边界网关边界网关上联网络上联网络A站点站点B边界网关边界网关上联网络上联网络B17VMware NSX Multi-Site Single VC,Stretched ClusterSolution DetailRequ

11、iresasupportedvSphereMetroStorageClusterconfigurationInavMSCdeployment,storageisActive/Activeandspansbothsites.ExamplesofActive/Activestorageare:EMCVPLEX,NetAppMetroCluster(seeVMwareHCLformoreinformation)StretchedclusterssupportLivevMotionofworkloadsUseL3forallVMkernelnetworks:Management,vMotion,IPS

12、torageAllmanagementcomponentssuchasvCenterServer,NSXManagerandControllersarelocatedinSiteALatencyandbandwidthrequirementsaredictatedbyvMSCstoragevendor,eg10msRTTforVPLEXwhichalsoalignswithvMotionusingEnterprisePlusvMSCenablesdisasteravoidanceandbasicDisasterRecovery(withouttheorchestrationortestingc

13、apabilitiesofSRM)LossofeitherNSXComponentsortheDatacenterInterconnectwillresultsinafallbacktodataplanebasedlearningusingexistingnetworkstate.ThereforethereisnooutagetodataforwardingandwithoutvCenterServer,therearenoVMprovisioningormigrationoperationsNSXandvMSCarecomplimentarytechnologiesthatfitaswee

14、tspotforNSX(SinglevCenterServer)VMware NSX Multi-Site Single VC,Stretched ClusterSite ASite BStretched Workload ClusterSite ASite BStretched Edge ClusterCluster ConfigurationvMSC enables stretched clusters across two physical sitesIn an NSX deployment Management,Edge and Workload clusters are all st

15、retchedUnder normal conditions all Management Components run in a Site A and are protected by vSphere HAThey are automatically restarted at Site B in the event of a site outage.The management network is not stretched and must be enabled on Site B as part of the recovery run bookDependent on design,N

16、SX Edge Services Gateways are either active in both sites or a single site and can also leverage HAVMs in the Workload Clusters are automatically recoveredSite ASite BvCenterServerStretched Management Cluster19VMware NSX Multi-Site Single VC,Stretched ClusterIn a vMSC environment,DRS is used to bala

17、nce resource utilization,provide site affinity,improved availability and ensure optimal traffic flowUse Should rules,rather than Must as this allows vSphere HA to take precedenceExample DRS Groups,Rules and Settings for NSX Edges:VMware NSX Multi-Site Single VC,Stretched ClusterNSX Configuration(Opt

18、ion 1-Preferred)Transport Zone spans both Sites and VXLAN Logical Switches provide L2 connectivity to VMsDistributed Logical Routing is used for all VMs to provide consistent default gateway vMACLocal Egress is provided by using separate Uplink LIFs and Edge GWs per site.Hosts on Site A have DLR def

19、ault gateway configured via Site A Edge GW using net-vdr CLI.While Site B DLR default gateway is via Site B Edge GWCaveat:Dynamic Routing cannot be enabled on DLR,or a static route set via NSX ManagerNSX Edge Gateways will have a static route for any networks directly connected to DLR.Consistent IPa

20、ddressing will simplify routing by allowing a supernet to be usedDFW provides vNIC policy enforcement independent of the VMs locationVM1VM2VM3Web Logical Switch172.16.10.0/24Site ASite BDistributed Logical RouterVM4VM5App Logical Switch172.16.20.0/24Site A NSX Edge GW192.168.10.1Site B NSX Edge GW19

21、2.168.20.1Uplink Net A 192.168.10.0/29Uplink A LIF 192.168.10.2Uplink Net B 192.168.20.0/29Uplink B LIF 192.168.20.2VM6VM7DB Logical Switch172.16.30.0/24Internal LIFs.1VMware NSX Multi-Site Single VC,Stretched ClusterNSX Configuration(Option 2)As per Option 1 Transport Zone spans both Sites and VXLA

22、N Logical Switches provide L2 connectivity for VMsNSX Edge Gateways are deployed per site with the same internal IP addressNSX DFW L2 Ethernet Rules are defined to block ARP to the remote GW using MAC Sets,which provides Local Egress as only the site local Edge GW is learnt.Future enhancement planne

23、d to enable ESXi host object for DFW*Caveats:Traffic flow between application tiers may be asymmetric if they are split across sites and DRS rules arent used Does not leverage Distributed Logical Routing and is limited to 10 vNICs per EdgevMotion will result in network interruption as VM ARP cache e

24、ntry for site specific GW needs to time outCan be used if Option 1 isnt a fit(eg,require Dynamic Routing or vSphere 5.1 support)Site ASite BVM1VM2VM3VM3Site A NSX Edge GW192.168.10.1Site B NSX Edge GW192.168.10.1Logical Switch192.168.10.0/24VMware NSX Multi-Site Single VC,Separate Clusters(2)Datasto

25、re 1Datastore 2vCenterServerL3NetworkSite ASite BVM1VM2VM3Logical Switch A172.16.10.0/24VM4VM5Logical Switch B172.16.20.0/24Distributed Logical RouterSite A NSX Edge GWUplink Net ASite B NSX Edge GWUplink Net BStorage vMotion Required for VM Mobility23VMware NSX Multi-Site Single VC,Separate Cluster

26、sSolution DetailSeparatevSphereClustersareusedateachsite,thereforeDRSrules&groupsarenotrequiredStorageislocaltoasiteEnhancedvMotion(simultaneousvMotionandsvMotion)canprovidelivevMotionwithoutsharedstorageUseL3forallVMkernelnetworks:Management,vMotion,IPStorageAllmanagementcomponentssuchasvCenterServ

27、er,NSXManagerandControllersarelocatedinSiteASupportedlatencyrequirementforEnhancedvMotionis100msRTT(vSphere6).vMotionrequires250MbpsofbandwidthperconcurrentvMotionThissolutionprovidesDisasterAvoidancewherelivevMotionissupported,byenablingworkloadstobemovedproactivelybetweensitesDoesnotprovideautomat

28、edDisasterRecoveryVMware NSX Multi-Site Single VC,Separate ClustersManagement ClusterSite AvCenterServerCluster ConfigurationClusters do not span beyond a physical siteAll Management Components run in Site A,and will not be automatically recovered in the event of a site outage.Storage replication to

29、 a standby Cluster in Site B and a manual recovery process could be implementedSeparate Edge and Workloads Clusters are used per siteNSX Edge Services Gateways are active in a single site,with HA is local to the siteWorkloads are active across both sites and can optionally support live vMotionDRS af

30、finity rules for workloads are not requiredEdge Cluster ASite ASite BEdge Cluster BWorkload Cluster ASite ASite BWorkload Cluster B25VMware NSX Multi-Site Single VC,Separate ClustersNSX ConfigurationOption 1 with Distributed Logical Routing is unchanged from Stretched Cluster configuration and is st

31、ill recommendedFor option 2,as vCenter objects are not shared we can leverage NSX DFW L2 Ethernet Rules with a scope of the Datacenter to provide Local Egress.as only the site local Edge GW is learnt.No enhancements requiredSame caveats with Option 2 for Stretched Clusters also applySite ASite BVM1V

32、M2VM3VM3Site A NSX Edge GW192.168.10.1Site B NSX Edge GW192.168.10.1Logical Switch192.168.10.0/24To Local Egress/Ingress or not to.As a first step,ask the customer if they have stateful services for traffic entering and exiting the Datacenter?This is generally the case and if so they will require a

33、solution to provide Local Ingress for their applications.Eg,NATGSLBAnycastLISP,RHIetcIf they can address this,then a Multi-Site NSX solution providing Local Egress is a good fitIf they do not,other questions to ask are:Do they have high bandwidth between sites?and is reducing operational complexity

34、a goal?AnactiveNSXEdgeGatewayatonesite,withfailovertothesecondarysitemaymeetthecustomersrequirementsandismuchsimplerthanprovidingLocalEgress&IngressVMware NSX Multi-Site L2 VPN(3)Datastore 1Datastore 2vCenterServerSite A orOn PremSite B orOff PremVM1VM2Network A 172.16.10.0/24Site A NSX Edge GWSite

35、A Uplink NetworkvCenterServerVM3VM4Network B172.16.10.0/24Site B NSX Edge GWSite B Uplink NetworkSSLSSLL3Network28存存储资储资源源设计设计存存储储需求需求Site ASite BDarkFiber =200 kmMetro ClusterAggrXPlex0AggrYPlex1AggrYPlex0DWDMDWDMAggrXPlex1时延要求:vSphere要求RTT100ms存储同步复制要求RTT5ms30Metro Storage的两种的两种实现方式:方式:Uniform与与No

36、n-Uniform31vSphere Metro Storage Cluster工作原理工作原理vSphereHAClusterStretched across campus or metro areavMSCCertifiedStorageMetro ClusterPlex1APPOSAPPOSAPPOSAPPOSAPPOSAPPOSPlex1APPOSAPPOSAPPOSAPPOSAPPOSAPPOSArray basedsynchronousreplicationPlex0Plex032vSphere Metro Storage Cluster工作原理工作原理Standard vMoti

37、on of Virtual MachinesvMotionvMSCCertifiedStorageMetro ClusterPlex1APPOSAPPOSAPPOSAPPOSAPPOSAPPOSPlex1APPOSAPPOSAPPOSAPPOSAPPOSAPPOSArray basedsynchronousreplicationPlex0vSphereHAClusterPlex033vSphere Metro Storage Cluster工作原理工作原理vSphereHAClusterStorage takeovervMSCCertifiedStorageMetro ClusterPlex1

38、APPOSAPPOSAPPOSAPPOSAPPOSAPPOSPlex1APPOSAPPOSAPPOSAPPOSAPPOSAPPOSPlex1Plex0Plex0Plex0APPOSAPPOSAPPOSAPPOSAPPOSAPPOSSite shutdownfor maintenance34vSphere Metro Storage Cluster工作原理工作原理vSphereHAClustervMSCCertifiedStorageMetro ClusterPlex1APPOSAPPOSAPPOSAPPOSAPPOSAPPOSPlex1APPOSAPPOSAPPOSAPPOSAPPOSAPPO

39、SPlex0Plex0APPOSAPPOSAPPOSAPPOSAPPOSAPPOSPlex1Plex0AutomaticresyncMaintenance performed,site restored35vSphere Metro Storage Cluster工作原理工作原理vSphereHAClustervMSCCertifiedStorageNetApp MetroClusterPlex1APPOSAPPOSAPPOSAPPOSAPPOSAPPOSPlex1APPOSAPPOSAPPOSAPPOSAPPOSAPPOSPlex0Plex0APPOSAPPOSAPPOSAPPOSAPPOS

40、APPOSPlex1Plex0Standard vMotionto return VMsAccess returned36存存储设备选储设备选型型兼容性网站:http:/ VPLEX for Stretched Metro ClustersRoadmapSite A(Active)Site B(Active)10ms,IPorFCEstablishedVPLEXActive-ActiveSolutionInstantvMotionacrossdistanceVMwareHAautomaticallyrestartsVMsateithersiteforsystemorsitefailureBal

41、anceworkloadsacrossbothsiteswithVMwareDRSSupportsVMwareFToutoftheboxAdditionalflexibilityofVPLEXMetroDoesntRequireFCCross-ConnectChooseIPorFCConnectivitybetweensitesThirdSiteIPconnectivitytoWitnessVMNoSPOFIfyouloseaDirector,nolossofaccessatanysiteVPLEXVPLEXDualSiteDRSDualSiteHAInstantvMotionSite C(O

42、ptional Witness)VPLEXDistributedVirtualVolumes38Stretched Storage with IBM SAN Volume ControllerSinglesystemimageacrosstwositesprovidessinglepaneofglassmanagementforday-to-daystoragemanagementactivitySimplifymanagementofyourenvironmentatsametimeasdeployingactive-activestorageBaseduponarichandmaturep

43、latformProvideReal-timeCompression,EasyTier,Non-disruptivemigrations,Longdistancereplication40,000enginesinstalledworldwide,11yearsfieldexperience250+storagedevicessupportedtoprovideback-endcapacityRetainyourexistinginvestmentinstoragedevicesKeepflexibilityforthefutureActivequorumdeviceenablesautoma

44、ticfailoverNoexternalmanagementsoftwarePreventssplit-brainSupportsrecoveryincaseoffullunplannedsitefailurescenariosQuorumStoragePool1StoragePool2Site 1Site 1Site 2Site 2Site 3SVCStretchedCluster39来自存来自存储储厂商的参考指南厂商的参考指南ImplementingVMwarevSphereMetroStorageClusterwithHPLeftHandMulti-Sitestoragehttp:/

45、for Metro Cluster 2015Q3(计划划)SiteAFault Domain AFault Domain BFault Domain CVirtual SAN ClusterSiteCSIteBvmdkwitnessvmdkvmdkwitnessvmdk从机架感知升级到站点感知:1,迷你容错站点专用于witness2,优先从本地站点读取数据以提升性能41议程程1同城双活技术方案2异地灾备技术方案42RTO,RPO,and MTD RecoveryTimeObjective(RTO)HowlongitshouldtaketorecoverRecoveryPointObjectiv

46、e(RPO)AmountofdatalossthatcanbeincurredMaximumTolerableDowntime(MTD)DowntimethatcanoccurbeforesignificantlossisincurredExamples:Financial,reputation43The Three Building Blocks For Disaster RecoveryvSphereVirtual SANEcosystemVDP AdvancedvSphere ReplicationSite Recovery ManagerVMwareArray-basedBackup

47、copiesExternal StorageStorageComputeBackupandRecoveryReplicationDROrchestration44异地异地(同城同城)灾灾备备解决方案解决方案总总体架构体架构45异地异地(同城同城)灾灾备备解决方案解决方案多种映射关系多种映射关系主备式切换双活切换双向切换双活数据中心ProductionRecoveryProductionRecoveryProductionProduction最常见的场景花销较大灾备架构主要用于测试,开发和培训等非生产应用有效降低开销两个站点均有生产应用每个站点为对方提供容灾支持两个站点的应用可以跨站点自由移动计

48、划内事件零停机限制在城域范围内Site1Site2Production46网网络资络资源源设计设计“Protected”Site“Recovery”SiteStorageStorageVMFS/NFSVMFS/NFSStorageVMFS/NFSVMFS/NFSSRM with NSX for vSphereFirewallRules&SecurityGroups48SRM with NSX for vSphereWhat has been validatedSRMcanmapVMsfromoneVXLANLogicalSwitchonthePrimarySitetoadifferentLog

49、icalSwitchontheRecoverySiteTheseLogicalSwitchescanbeconnectedtopre-createdNSXDistributedLogicalRoutersorNSXEdgeServicesGWsPlaceholderVMscanbeaddedtoSecurityGroupsandinaDRevent,whentheseVMsbecomeactivetheyareprotectedbyDFWDynamicRoutingcanbeusedtoadvertisenetworksontheprimarysite.Usingmetric/weightth

50、esenetworkscanbere-advertisedontherecoverysiteifthereisasitefailoverThismapsverycloselytothevCACdeploymentmodelforpre-creatednetworkswhichisusedforproductionworkloads.Test/Devworkloadsusingon-demandnetworkingdonottypicallyrequireDRCurrently being testedAutomatesynchronizationofNSXDistributedFirewall

展开阅读全文
相关资源
相关搜索

当前位置:首页 > 教育专区 > 小学资料

本站为文档C TO C交易模式,本站只提供存储空间、用户上传的文档直接被用户下载,本站只是中间服务平台,本站所有文档下载所得的收益归上传人(含作者)所有。本站仅对用户上传内容的表现方式做保护处理,对上载内容本身不做任何修改或编辑。若文档所含内容侵犯了您的版权或隐私,请立即通知淘文阁网,我们立即给予删除!客服QQ:136780468 微信:18945177775 电话:18904686070

工信部备案号:黑ICP备15003705号© 2020-2023 www.taowenge.com 淘文阁