VMware Cloud on AWS網絡架構深入探討_第1頁
VMware Cloud on AWS網絡架構深入探討_第2頁
VMware Cloud on AWS網絡架構深入探討_第3頁
VMware Cloud on AWS網絡架構深入探討_第4頁
VMware Cloud on AWS網絡架構深入探討_第5頁
已閱讀5頁,還剩22頁未讀 繼續免費閱讀

下載本文檔

版權說明:本文檔由用戶提供并上傳,收益歸屬內容提供方,若內容存在侵權,請進行舉報或認領

文檔簡介

VMwareCloudonAWS網絡架構深入探討技術創新,變革未來VMware

Cloud

on

AWS:

Jointly

Engineered

Cloud

ServiceVMwareSDDCrunning

onAWSbare

metalDelivered,operated,

supportedby

VMwareOn-demandcapacityand

flexibleconsumptionFulloperational

consistencywithon-premises

SDDCSeamlesslarge-scaleworkloadportabilityandhybrid

operationsGlobalAWSfootprint,

reach,availabilityDirectaccesstonativeAWS

servicesAWSGlobal

InfrastructureCustomer

dataCenter

vSphere

vSANNSXvSphere-basedenvironmentAWS

servicesvRealizeSuite,3rdpartyISV

ecosystemvCenter vCenterVMwareCloudTMon

AWSPoweredbyVMwareCloud

FoundationLarge-scaleapplication

migrationS3 Lambda

RedshiftELB CodeBuild

KMS…2Use-casesAligning

intended

use

to

long

term

cloud

strategyDatacenter

extensionFootprintexpansion

/On-demand

capacityTest/DevVirtualDesktops

/Published

AppsExpandMaintainDisaster

recoveryNew

DRReplaceexisting

DRComplement

existingDRPrimarySecondaryNext-generation

appsApplication

modernizationNewapplication

build-outHybrid

applicationsCloud

migrationsApplication

specificBCA|Virtual

DesktopsDatacenter

wideInfrastructure

refreshConsolidateMigrate3AvailableinAWSRegions

Worldwide*

StretchedclusternotsupportedAvailable

RegionsUSWest(Oregon)USEast(N.

Virginia)USWest(N.

California)*USEast(Ohio)GovCloudUS-WestCanada

(Central)*SouthAmerica(Sao

Paulo)Europe

(London)Europe(Frankfurt)Europe(Ireland)Europe(Paris)Europe(Stockholm)AsiaPacific

(Sydney)AsiaPacific

(Tokyo)AsiaPacific

(Singapore)AsiaPacific(Seoul)AsiaPacific

(Mumbai)Planned

RegionsEurope(Milan)GovCloud

(US-East)SOC2Type

2New!Q3

2022Hong

KongRegion4NetworkingInsidethe

SDDC6Networking

Inside

the

Software

Defined

Data

Center

(SDDC)Providenumerous

connectivityoptionsintothe

SDDCProvidesscalableandeasytoconsumenetworkinginside

theSDDCPoweredbyVMware

NSX-TSimplified

InterfaceAPIaccess

available6+yearsofSDN

experienceKeyfeaturesfrom

on-premisesbroughttothe

cloudNetworkingSecurity6NetworkingInsidethe

SDDCSDDCInternet

GatewayInternetManagementGatewayComputeGatewayEdgeVMware-managed

NetworksNetworksNetworksVMVMManagementVMManagementVMVMVMESXiESXiESXiESXiEdgeAllconnectivity

toworkloadsflowsthroughthe

EdgeActive/Stanprovide

HigAvailabilityConfigured

fordby

toh(HA)ManagementGatewayManagementtrafficforvCenter,NSX,ESXihosts,

etc.Compute

Gatewayworkloadtraffic,includingnetworkto

network79VMwareCloud

VPCCustomer

VPCENI@25GbpsAZ1AZ2CustomerData

Center

Internet vSphere

EnvironmentESXiCompute

vSphereStoragevSANNetworkNSXvCenterAWSregion

AAWSregion

BAWS

DirectConnectS3inregion

AS3Public

end-point10AWSTGW

introRegionVPCsareinthesameRegion

butcanbeindifferent

accountsTransit

Gateway

basisVPC/16VPC/16VPC/16TGWVPCAttachment

1VPCAttachment

2VPCAttachment

3Corporate

datacenter/16VPN(2

tunnels)Direct

ConnectGatewayDestinationTarget/16localothertgw-12345678CIDRAttachmentResource

type10.x.0.0/16tgw-attach-xVPC/162

attachmentsVPN/

DXVPCroute

tableLearned

routes10Regionalconstructhighlyavailable

andscalable1000’sofVPCs

from

multiple

accountsFlexibleroutingusing

ENIsinsubnets

(10000static

routes)Multipleroutingdomains(orroute

tables–max

20)TGWRouting

ConceptRegionVPCVPCVPCTGWVPCRouting

DomainRouting

DomainVPNDXGW11DirectConnect

(DX)1314DedicatednetworkconnectiontoAWS

backboneVariousspeedsof1or

10Gbps(orlessviaAWSpartners)New100Gbps

sinceFeb15th,2021inspecific

locationsConsistentperformanceatreduceddata

chargesPhysicalandlogicalconnectivityviaaDX

locationAWSDirect

ConnectDX

locationAWSrouterCustomerrouterCrossconnectLAG:LinkAggregation

GroupUpto4

InterfacesAWS

CloudCorpData

Center/0CustomerrouterService

ProviderMPLS15Private

VIFUsedtoconnecttoVPCusingprivateIP

addressesCanbedirectlyattachedtoVGW(supportedon

VMC)or

via

Direct

Connect

gateway

(not

supported

on

VMC)Default

MTU1500.Supportsjumboframes9001

bytesPublic

VIFUsed

to

connect

to

ALL

AWS

public

services

using

public

IP

addressesTransitVIF

(new)UsedtoconnecttoTGWsviaDirectConnect

gatewayDefault

MTU1500

andjumboframes8500

bytesALLVIFsareinfact820.1qVLANs

withBGPpeeringDirectConnectVirtualInterfaces(VIF)

types16A

Private

VIF

link

with

BGP

between

the

VPC

and

the

DX

location

router

(or

on-prem)VPCCIDRwillbe

advertised.Anyon-prem

networkswillbelearnedMax

100

BGP

prefixes

from

on-prem

(BGPsession

will

go

down

if

you

advertise

more

than

100

routes)Howto

Connect?CorpData

Center/16AWSrouterCustomerrouterCrossconnectCustomerrouterAWS

CloudVPC/16Private

VIFwith

BGPDestinationTarget/16local/0vgw-12345678

100BGP100

BGPBGP:

/16

/16

DX

locationService

ProviderMPLS17DirectConnectGateway

(DXGW)LEGENDonnext

slides

VGW

association

TGW

associationPublicVIFPrivate

VIFTransit

VIFGlobalConstructindependentof

RegionsUpto10VGWsassociationstoa1Private

VIFBGPsessionterminateson

DXGWDirectConnectGateway–

PrivateVIFCorpData

Center/16DX

locationAWSrouterCustomerrouterCrossconnectCustomerrouterAWS

CloudVPC/16VPC/16VPC/16Private

VIFwith

BGPMultiple

accounts

supported

for

Region

A

and

BVGW

associationService

ProviderMPLSAllowedRegion

AAccount

1Region

BAccount

2DX

GatewayNot17AllowedDX

GatewayUp

to

3

TGWs

associations

per

DX

GatewayUp

to

20

prefixes

from

TGW

to

DXGWUpto100prefixesfrom

on-premTGW

can

connect

to

1000s

of

VPCs

(think

aboutsummarization)DirectConnectGateway–

TransitVIFCorpData

Center/16DX

locationCustomerrouterAWSrouter CrossconnectCustomerrouterAWS

CloudVPC/16VPC/16VPC/16Region

ARegion

B20

BGP20

BGPTGWTGWNotAllowed

100BGPTransit

VIFwith

BGPTGW

associationService

ProviderMPLSAllowed18CGWMGWEdgeSDDC

1NSX</>vCenterDesign

Validity

Multiple

Public

and/or

Private

VIFs

?CorpData

Center/16CustomerrouterAWSrouter CrossconnectCustomerrouterAWS

CloudVPC/16VPC/16Region

APrivate

VIFsPublic

VIFDX

locationService

ProviderMPLSAllowed19DXlocationandAWSdeploymentregionare

linkedDesign

Validity

Private

VIF

and

DXGW

mix

?CorpData

Center/16DX

locationAWSrouterCustomerrouterCrossconnectCustomerrouterVPC/16AWS

CloudRegion

AVPC/16Region

BPrivate

VIFPrivate

VIFVGW

associationsDX

GatewayService

ProviderMPLSNotAllowedAllowedCGWMGWEdgeSDDC

1NSX</>vCenter20BGPsession

ScalabilityDX

locationAWSrouterCustomerrouterCrossconnectVPCPrivate

VIF1BGP

1

VPC1PrivateVIF

1VGW

1

VPCTGWVPCVPCTransit

VIF1TransitVIF

1

DXGW1DXGW

3

TGWs1TGW

1000sof

VPCs1BGP

1000s

VPCsDXGWVPCVPC1BGP

10

VPCs1PrivateVIF

1

DXGW1DXGW

10VPCsDXGWPrivate

VIF2123VMwareTransit

Connect-VMwareManaged

TGWVMwareManagedTGWinVMwareCloudon

AWSVMwareManaged

TGWIt’s

aVMware

owned

TGW

connecting

multipleSDDCsand

VPCs(belongstotheORGshadow

Account)23SDDCs

must

be

in

the

same

region

(TGW

dictates)SDDCsmusthavenonoverlappingManagement

networksSDDCsshouldhavenono

溫馨提示

  • 1. 本站所有資源如無特殊說明,都需要本地電腦安裝OFFICE2007和PDF閱讀器。圖紙軟件為CAD,CAXA,PROE,UG,SolidWorks等.壓縮文件請下載最新的WinRAR軟件解壓。
  • 2. 本站的文檔不包含任何第三方提供的附件圖紙等,如果需要附件,請聯系上傳者。文件的所有權益歸上傳用戶所有。
  • 3. 本站RAR壓縮包中若帶圖紙,網頁內容里面會有圖紙預覽,若沒有圖紙預覽就沒有圖紙。
  • 4. 未經權益所有人同意不得將文件中的內容挪作商業或盈利用途。
  • 5. 人人文庫網僅提供信息存儲空間,僅對用戶上傳內容的表現方式做保護處理,對用戶上傳分享的文檔內容本身不做任何修改或編輯,并不能對任何下載內容負責。
  • 6. 下載文件中如有侵權或不適當內容,請與我們聯系,我們立即糾正。
  • 7. 本站不保證下載資源的準確性、安全性和完整性, 同時也不承擔用戶因使用這些下載資源對自己和他人造成任何形式的傷害或損失。

評論

0/150

提交評論