planning and designing virtual uc solutions on ucs platform
DESCRIPTION
Cisco VXI is a comprehensive, end-to-end virtualization system. VXI facilitates rapid deployment of desktops, and improves control and security by improving visibility at the VM level. The VXI system also offers the industry's lowest total cost of ownership. VXI integrates rich media and network services to improve performance and application response. The VXI modular, eco-system-based architecture preserves customer flexibility, and ensure long-term alignment with the industry. The VXI system comprises mandatory and optional components from both Cisco and third-party technology partners. Mandatory components are those that provide the basic foundation for a virtualized desktop deployment A VXI configuration includes these components: • Compute (Cisco) • Hypervisor (Technology Partner) • VDI Desktop Software (Technology Partner) • Storage (Technology Partner) • Endpoints • Networking (Cisco) • Applications (Cisco) This session will provide in-depth design considerations and guidelines for deploying an end to end Virtual eXperience Infrastructure (VXI). It is designed to offer technical information to the networking professional planning to deploy a VXI system.TRANSCRIPT
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 1
VXI – End-to-end Virtualization
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 2 Cisco Confidential
"The worldwide hosted virtual desktop (HVD) market will accelerate through 2013 to reach 49 million units, up from more than 500,000 units in 2009, according to Gartner Inc.
Worldwide HVD revenue will grow from about $1.3 billion to $1.5 billion in 2009, which is less than 1 percent of the worldwide professional PC market, to $65.7 billion in 2013, which will be equal to more than 40 percent of the worldwide professional PC market.”
- Gartner, Inc. http://www.gartner.com/it/page.jsp?id=920814
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 3
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 4
The New VDI Experience
Securely, Reliably, Seamlessly
VXI Architecture
Any Content
Anytime Anywhere
Any Application
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 5
Overview Business Drivers
Capital Expenditures (CAPEX) Lengthened desktop hardware refresh cycles Reduced desktop hardware capital expenses Reduced desktop software licenses
Operational Expenditures (OPEX) Reduced desktop software maintenance and operational expenses Lower desktop power consumption Moves, Adds, and Changes (MAC) Productivity
Capabilities Disaster Recovery (DR) Improved desktop and data security/protection Flexibility - Improved user mobility and faster time to market
Externalization Increased numbers of contractor, outsourcer, or partner desktops to support
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 6 Cisco Confidential
Deliver a superior collaboration and rich media user experience with best in class ROI in a fully integrated, open and validated desktop virtualization solution
IT Standardization Rich Media Experience
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 7
Terminal Services Application Streaming
Virtual Desktop Streaming Remote Virtual Desktop
Server Hosted Computing Client Hosted Computing
O/S
Des
ktop
A
pplic
atio
n
Presentation Server
Display Data
OS
App App
Server
App OS
App
Main OS
Guest OS
Guest App
Hypervisor
Apps OS
Apps OS
Apps OS
App
Server
Synchronized Desktop
OS
OS
Apps OS
Apps OS Apps
OS Apps
OS
Overview Virtual Desktop Models
Display Data
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 8
Overview The Network is the Desktop
Personal Computer is disaggregated Keyboard, Video, and Mouse stay with user Compute and storage move to the data center Network availability is required for all application access Network performance is critical to user experience
Broker
Compute Storage
Keyboard, Video, Mouse
Network
Thin Client
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 9 Cisco Confidential
ICA/HDX • Citrix Proprietary – Supports many advanced features • 32 virtual channels • TCP transport • If the latency is greater than 30ms, Flash content is rendered on the server • Encryption and compression on by default
PCoIP/Teradici • VMware software and hardware – Highly efficient • Adaptive - compensates latency and bandwidth variations • Supports 4 monitors and resolution upto 2560 x 1600 • 128-bit AES (On by default) • UDP Transport – Most Security servers support TCP only
RDP • Protocol by Microsoft • Citrix/VMware VDI deployment support • TCP transport and AES support
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 10
Overview What Do End Users Need?
Thin Clients Capable Clients
Administrative Rich Media Graphics or Custom
Call Center or Clerical Professional Design Professional
Remote/Task Worker Knowledge Worker Power User
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 11
Overview Horizontal and Vertical Market
Call centers, Red badge employees, Off shore development, Extranet access, Mergers and Acquisitions, High cost of real estate, Building moves, Windows 7 migrations
Government Education Finance
Banking Retail Healthcare
Regulated Industries Task Workers
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 12
Overview Virtual Desktop Components (~$1000)
Clients (~$250) Software (~$250)
Broker with display protocol Virtualization (OS, application, profile) Microsoft Client Access License
Compute (~$250) Storage (~$250)
Virtual machine User data User profile storage
Broker UCS Storage
VMFS via DAS, FC, NFS, iSCSI RDP
Clients
ICA/HDX
Network
RDP
PCoIP
ICA/HDX
User Data CIFS
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 13
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 14
Flexibility / Business Continuity Total Cost of Ownership Data Security
Desktop Virtualization Drivers
What We’ve Heard From Customers…
Fragmented Solution Set Maintaining High Quality for Video, Voice
Experience
Desktop Virtualization Challenges
Return on Investment
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 15 Cisco Confidential
Protocols in the virtual desktop environment appear “monochrome” to QoS
Lack of flow differentiation prevents prioritization within a display protocol stream
Video stream competes with other flows in class – (e.g.: CIFS, SAMBA or NFS, )
T1
Branch Router
Data Center
Routing Protocol Updates
Display Protocol
CIFS
Text
Branch Office
Video Source
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 16 Cisco Confidential
The Hair pinning Problem
End-users see pixelization as media is rendered from the data center
T1
Increasing bandwidth might not help
Video processed on HVD causing bandwidth and server compute overload
Branch Router
Branch Office
Data Center
Video Source
Campus
End-users experience no pixelization on LAN
Each “new” copy streamed for each additional DV client resulting in branch WAN bandwidth overruns
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 17 Cisco Confidential
• Hairpin Effect – causing undesirable results
• Monolithic data flows • Voice/Video in the display protocol Media
flow goes all the way back to data center and back
• Heavy processing on virtual desktop in data center
• Bandwidth explosion • Display protocol and possible endpoint
become unstable
Virtual Desktop
Virtual Desktop
CUCM WAN
Thin Client
Display Protocol
Thin Client
Display Protocol
Data Center
Signalling (SIP)
Signalling (SIP)
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 18
Live Streaming Video - Traditional
Unified Communications PC has local browser with media player
Borderless Network CDS and/or multicast split video resulting in one stream for many users on the WAN Bandwidth/experience is native 100/300/700 kbps QoS protects business applications and other traffic
Data Center Encoder sources a single stream to CDS which unicasts or multicasts to scale
WAN / PSTN
DME
CDE CDE
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 19
Live Streaming Video With VDI Unified Communications
Zero/thin client with display protocol client only needs capacity to decode
Borderless Network CDS and multicast cannot split video in a display protocol resulting in one stream per user on the WAN Bandwidth/experience varies depending on display protocol & streaming format No QoS so entire experience suffers if congestion
Data Center Stream sourced from encoder Servers are loaded by transcoding and/or transrating Server farm is loaded by all streams
WAN / PSTN
Broker Broker
Storage Storage
CDS CDS
DMS
UCS UCS
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 20
WAAS
ISR
Cisco WAN
Virtualization-Aware Borderless Network
CDN
End-to-End Security, Management and Automation
Cisco VXI Virtualized End-to-End System
Compute UCS
MS Office
Desktop Virtualization Software
Virtualized Data Center
WAAS
Nexus
Microsoft OS
ACE
Hypervisor
Virtual Unified CM
Virtual Quad
Cisco Collaboration Applications
Cius Business Tablets
Virtualized Collaborative Workspace
Cisco Desktop Virtualization Endpoints
vWAAS
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 21
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 22 Cisco Confidential
Supported setup for Cisco VXI Phase Two • Unified Communications using desk
phone control which allows • RTP (UC media “voice/video”) to flow
outside the display protocol • Signaling of CUPC back to CUCM is
outside the display protocol • QoS can be used on media • Path is optimized • Location Awareness and 911, Codex
selection, CAC, SRST Reference, Time Zone, Dial-Plan
Virtual Desktop
Virtual Desktop
CUCM WAN
Zero Client
Display Protocol
Zero Client
Display Protocol
Data Center
Signalling (CTI)
Signalling (CTI)
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 23
Cisco Unified Personal Communicator
Supports products from top virtualization industry leaders
Hosted virtual desktop VMware View 4.6 Citrix XenDesktop 5.0
CUPC 8.0 or later
Cisco VXI uses Desk phone control mode
Softphone not supported and can cause undesirable results
Server S/W
OS
App
Desktop Virtualization S/W
Office CUPC
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 24
Cisco VXI Interactive Voice/Video
Unified Communications Hardphone control for VXC Softphone in Cius Survivable Remote Site Telephony (SRST) supported Use local services (gateways, call control, vmail, etc.) MMR for Streaming video delivery
Borderless Network Use local internet access Use CDS/ACNS/WAAS to cache, split, and/or multicast streaming media (MMR required) Provide QoS for rich media
Data Center No voice/video hairpinning Offload server CPU Offload server bandwidth
WAN / PSTN
CUCM CUCM
UCS UCS
Broker Broker
Storage Storage
WAAS WAAS
DMS
CDS CDS
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 25
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 26 Cisco Confidential
Zero clients are the simplest devices
They have embedded operating systems that are not exposed to the user
Zero clients have reduced local capabilities and depend heavily on the resources available within the virtual desktop
This class of devices is typically slated toward the task worker since it provides no enhancements for media streaming
Because there is no exposed OS, there is no virus infection, making them a very secure endpoint
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 27 Cisco Confidential
Introducing the Cisco VXC 2100 and 2200 Support for PCoIP and ICA/RDP display protocols Cisco VXC 2100 is a compact device that integrates with the Cisco Unified IP Phone 8961 and 9900 Cisco VXC 2200 is a standalone unit Both units support PoE (Power over Ethernet)
Cisco VXC 2200 Cisco VXC 2100
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 28
VXC endpoints don’t have native telephony capabilities today. Hardphone control is used to integrate telephony: Example: in a video call the video will not be displayed on the monitor connected to VXC
VXI specific feature support MMR : Supported in VXC 2x12 (Citrix) – RDP only Smartcard : Supported in VXC 2x12 (Citrix) USB Redirection: Supported on all VXC endpoints Native Dot1x: Supported in VXC 2x12 (Citrix) only. Dot1x supplicants can’t be installed separately on any VXC
VXC 2x11 (VMware) supports PCoIP in hardware using Terradici chipset
Virtual Experience Client Manager (VXC Manager) can be used for enforcing peripheral policies, pushing configurations (DHCP etc) and firmware upgrades.
VXC endpoints demystified
Detailed Specs available at www.cisco.com/go/vxc
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 29 Cisco Confidential
Thin client devices usually contain more local capabilities and often have a customizable local embedded operating system (usually Linux or Windows)
This class of endpoint provides greater flexibility
They are generally customized by the system administrators and then locked down
Thin clients are typically used by power users who need access not only to browsers, email clients and office automation tools, but also additional features such as streaming audio and video
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 30 Cisco Confidential
CIUS supports simultaneous voice/video telephony and desktop virtualization – Integrated Cisco Softphone
Supports external display in “mirror mode” – Users can’t see phone control and virtual desktop at the same time
Base supports POE (Requires 30 W)
1024 x 600
1024 x 600 scaled up to display size
Dedicated chip to improve external display quality
Display Port
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 31
Software Thick Desktop Display Protocol Clients
Thick client devices refer to standard PC or Laptops running a standard OS but have similar software as the thin client installed as an application
Thick client devices allow users to work offline and are often the choice of the “Road Warrior” user
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 32
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 33
New Innovations Architecture for Agile Delivery of the Borderless Experience Borderless Networks
Infrastructure
Borderless Endpoint and User Services
Mobility Workplace Experience
Video
Securely, Reliably, Seamlessly: Cisco® AnyConnect
Borderless Network Services Borderless
Management and Policy
Mobility: Motion
Green: Cisco EnergyWise
Security: Video: Medianet
Application Performance
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 34 Cisco Confidential
Optimization of virtual desktop protocols – e.g RDP Protocol - latency mitigation - reduction of bandwidth, - optimization for MMR and USB Redirect for rich media and USB peripherals (Printing)
End-users experiences no pixelization
T1
Branch Router
Branch Office
Virtualized Data Center
Video Source
Branch WAE Data Center WAE
WAN Acceleration for Display Protocol
Edge Router
End-users see pixelization as media is rendered from the data center
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 35 Cisco Confidential
Watching Video with RDP is unacceptable without WAAS, due to bandwidth explosion. WAAS provides 91% compression ratio
There is no benefit to WAN Optimization with PCoIP PCoIP is an encrypted protocol over UDP
WAAS improves Citrix ICA “XenDesktop 4.0” with a compression ratio of 55%
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 36 Cisco Confidential
When an endpoint sends a document to a printer, the request actually takes place within the data center where the virtual desktop and print server are located
The print data going to the network printer travels outside the desktop display protocol and can be optimized with WAAS
Branch Office
Branch WAE Data Center WAE
WAN Acceleration for Display Protocol
Edge Router HVD
Display Protocol
Print Server Network Printer
Print Job
WAN Acceleration for Print Job
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 37
Cisco WAAS Mobile
Cisco WAAS Mobile is used to optimize View Client connections for mobile and/or remote workers that do not have access to the WAE-based solution
WAAS Mobile can optimize View flows that use traditional VPN or the View SS role
Internet/ WAN
Mobile Worker with WAAS Mobile Client
Small Office Worker with WAAS Mobile Client
WAAS Mobile Server
View Connection Servers
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 38
New Innovations Architecture for Agile Delivery of the Borderless Experience Borderless Networks
Infrastructure
Borderless Endpoint and User Services
Mobility Workplace Experience
Video
Securely, Reliably, Seamlessly: Cisco® AnyConnect
Borderless Network Services Borderless
Management and Policy
Mobility: Motion
Green: Cisco EnergyWise
Security: Video: Medianet
Application Performance
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 39
Clientless VPN Access
IPsec VPN Tunneling
SSL VPN Tunneling
DTLS (voice/video) Tunneling
Mobile Access
Cisco Secure Remote Access Widest Range of Connectivity Options
Powered by the Cisco ASA
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 40
Anyconnect 3.0 supported platforms
Thick endpoints: Windows, Mac and Linux
Apple iOS 4 Including iPhone
Support planned for additional enterprise mobility platforms
Cisco VXC endpoints not supported today
iPad and CIUS support Anyconnect 2.5 only
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 41
VSG
N1K
Core CUCM/CUPC
WAAS
DC Network
Branch One
Branch Two
WAAS Express
Network Data Center
ISR-G2
McAfee MOVE-AV Virus scan
DMVPN in VXI
WAAS SRE
Branch Access
Display/Call Control Traffic
Voice/Video Call Traffic
DM
VP
N
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 42
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 43
Unified Computing System Key Innovations applied to Desktop Virtualization
TECHNOLOGY INNOVATION
SYSTEMS EXCELLENCE
Rapid Deployment
Workload Mobility
Optimized Scaling
Simplified Operations
Unified IT Workflows
Lower TCO
Unified Fabric
Unified Management Service Profile HW Abstraction
Virtual Interfaces
Extended Memory
SYSTEMS EXCELLENCE
BUSINESS VALUE
SOLUTION DIFFERENTIATION
TECHNOLOGY INNOVATION
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 44
Optimizing Memory for Desktop Virtualization
Xeon 5600 Xeon 5600
Xeon 5600 Xeon 5600
Classic
Cisco UCS With Extended Memory
12 DIMMs Max 96GB Higher Performance
18 DIMMs Max 144GB Lower Performance
Or
48 DIMMs Max 384GB
Higher Performance
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 45 Cisco Confidential
Numbers fluctuate based on worker profile
= Cisco UCS B250 with 192GB memory
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 46 Cisco Confidential
Cisco VXI CVD on Design Zone http://www.cisco.com/en/US/netsol/ns742/networking_solutions_program_category_home.html
Housing the Hosted Virtual Desktops
WAAS Management
Outside VDC connects to edge Routers
Cisco VXI Validated Design
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 47 Cisco Confidential
Cisco Application Control Engine (ACE) to accelerate and scale connection broker
Offloading SSL processing from the connection broker
One Armed mode suggested when not using SSL offloading
Cisco ACE supports virtual contexts
ACE Load Balancer
Mobile Teleworker
Connec&on Broker Serverfarm
Virtual IP
Thick client
Thin Client
Endpoint (LAN user)
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public BRKVIR-2002 48
WAAS
ISR
Cisco WAN
Virtualization-Aware Borderless Network
CDN
End-to-End Security, Management and Automation
Cisco VXI Virtualized End-to-End System
Compute UCS
MS Office
Desktop Virtualization Software
Virtualized Data Center
WAAS
Nexus
Microsoft OS
ACE
Hypervisor
Virtual Unified CM
Virtual Quad
Cisco Collaboration Applications
Cius Business Tablets
Virtualized Collaborative Workspace
Cisco Desktop Virtualization Endpoints
vWAAS
Thank you.
#CNSF2011