Escolar Documentos
Profissional Documentos
Cultura Documentos
Fromananotoagigaperspective
SridharIyer
IITBombay
www.it.iitb.ac.in/~sri
WhatareEnterpriseNetworks?
Convergence2005 IITBombay 2
WhatareEnterpriseNetworks?
Supportthousandsofusersacrossacompanys
diversegeographicallocations
Mayinvolvehundredsofservers
Eachlocationmaylooklikeasimplesystem,
butthecomplexityincreasesasthesesystems
arelinkedtogether
IstheInternetanEnterpriseNetwork?
Convergence2005 IITBombay 3
EnterpriseNetworks:Onedefinition
Large
105edgedevices,103networkdevices
Geographicallydistributed
Multiplecontinents,102countries
Tightlycontrolled
ITdepartmenthas(nearly)completecontrolover
userdesktopsandnetworkconnectedequipment
Convergence2005 IITBombay 4
WhystudyEnterpriseNetworks?
Thereisalotofmoneyinthisarea
EnterpriseITspendingisexpectedtoincreasesteadily
InStat/MDRestimatesthatenterprisefirmswillspendnearly$256
billiononITproducts,servicesandpersonnel,by2006.
Gartnerforecaststhatglobalenterprisenetworksgrowthat7.6
percentcompoundannualgrowthrate(CAGR)from20042008.
(3.9percentCAGRforserver/clientplatforms)
Therearemanychallengingproblemshere!
Sizing,resourcemanagement,securityandmanymore
ThefocusofthiseventConvergence.
AmazonSearch:
booksforEnterpriseNetworks
results:638booksinMarch2005.
Convergence2005 IITBombay 5
Whereisthemoney?
increasingconnectivity
requirements(remote
access/VPNsolutions)
aggregationofcorporate
informationandresources
expandeduseofservices
(mobileclientdevices)
NewapplicationsandIT
enabledservices
healthcare,legal,
financial,ecommerce
Securitysolutions
Convergence2005 IITBombay 6
DrivingforceConvergence
Notaboutgadgetsoraccesstechnologies
Theseareactuallyincreasingindiversity
Butaboutservicesandapplications
ThequestforAnytime,Anywhere,Anyformaccessto
anyintranet/extranetapplication
Enterprisesneedtocopewithdemandfornew
servicesandapplications
Supportedbycomputingandcommunicationsfabrics
Weneedtounderstandtheissuesinvolved
Agoodwaytobegin:Fromthenanotothegigaview
Convergence2005 IITBombay 7
Ananolevelview
Asinglemachineinan
organization
Smallestcomponent
Ex:AstudentinKReSIT
Hardware:Desktop/Laptop
Software:Applicationpkgs
TypicalITspending
AroundRs.50,000/
Upgradeevery2years?
Internetaccess?
Convergence2005 IITBombay 8
Behindthescenes
Convergence2005 IITBombay 9
Issuesatthenanolevel
Applicationrelated
Softwareversionincompatibilities
Thisprogramwasworkingfineyesterday.
Performance
Thisiswaytooslow.Ineedafastermachine.
Networkrelated
Security
Itlookslikethereisavirusonmymachine.
Administration
IcannotrememberwhichgatewayIamsupposedtouse.
Onesolutionstrategy
Rudimentarysystemadministration;Moveuponelevel
Convergence2005 IITBombay 10
Amicrolevelview
Asinglesubnet(dept)inan
organization
Decentralizedresource
sharing(printers,filesetc)
Ex:AlabinKReSIT
Hardware:Switches,cables
Software:Security,Mgmt
TypicalITspending
Approx10sofmachines AroundRs.500,000/
12switches,1000mcabling (excludingdesktops)
Convergence2005 IITBombay 11
Convergence2005 IITBombay 12
Issuesatthemicrolevel
Applicationrelated
ResourceSharing
Somebodyhaschangedthesettingonthisprinter.
ScalabilityandPerformance
Thisistooslowduringtheday.Illtryitatnight.
Networkrelated
Security
Somebodyseemstohavebrokenintomymachine.
Administration
Hey,thereisanIPaddressconflict.
Onesolutionstrategy
RudimentaryITadministration;Moveuponelevel
Convergence2005 IITBombay 13
Amillilevelview
Asingleentityinan
largeorganization
100sofusers
Ex:KReSITinIITBombay
Centralizedmodelfordata
storage,security,running
applicationsandnetwork
administration
Hardware:Routers,Servers
Software:Applications,Mgmt
TypicalITspending
Approx100sofmachines
1020switches,23routers Rs.50,00,000/fornetwork
45servers Rs.3,00,00,000/servers
Annualmaintenancecost!
Convergence2005 IITBombay 14
Convergence2005 IITBombay 15
Issuesatthemillilevel
Applicationrelated
Sizing
HowmanyserversdoIneedandofwhatperformance?
Deployment
HowshouldIdeploymyapplicationsandothersystems?
Networkrelated
Sizing
HowmuchbandwidthdoIneedtokeepusershappy?
Security
MACflooding;ARPspoofing;DenialofService
Administration
DHCP;Firewalls;Proxyservers;Logging
Thecosttomanagestorageistypicallytwicethecostoftheactual
storagesystem.
Convergence2005 IITBombay 16
ITmanager,
administrator,
alreadyhasto
dealwithterrific
complexity.
Theworst
possiblesituation
tobeinis:trying
toidentify,root
cause,and
resolveproblems
insuchcomplex
setups.
Convergence2005 IITBombay 17
Atypicalenterpriselevelview
Asingleorganization
1000sofusers
Ex:IITBombay
Multipleduplicateservers
andmorecomplexnetwork
Hardware:Routers,Servers
Software:ERP,CRM,security,
accountingandothersystems
TypicalITspending
Requirementsareever
Approx10soflocations
increasing
Approx1000sofmachines
Boundedonlybybudget
100sofswitches,10sofrouters
constraints!
Convergence2005 IITBombay 18
Convergence2005 IITBombay 19
Issuesatthetypicallevel
Applicationrelated
Interfaces
HowmanyinterfacesshouldIprovideforaserviceaccess?
LAN,WAN,web,handhelddevices
Monitoring
HowshouldIensureapplicationqualityofservice?
Minimizedowntime,Autoalertsforoverload
Networkrelated
Sizing:HowmuchInternetbandwidthdoIneed?
Wireless:HowshouldIhandlewirelessdevices?
Security:HowshouldIsetupfirewalls,proxiesandDMZ?
Administration:Whataremyauthentication/accesspolicies?
Convergence2005 IITBombay 20
Convergence2005 IITBombay 21
TieredViewofanEnterprise
SW Load Balancer
Web App Process
Server Server Server
Message & Event Bus
Application tier
Balancer
OS
Storage
Load
HW
DNS DB
Server OS
HW
Compute tier
I nternet
Switch Extranet
Firewall
Access Network
Router
Network tier
Convergence2005 IITBombay 22
Source:UmeshBellur,IITBombay
Akilolevelview
Anationalnetworkfora
singleorganization
Ex:LIC,NSDL
Needtoleaselinesor
useroutingservices
providedbyISPs.
CreationofaWideArea
NetworkBackbone
Approx100soflocations TypicalITspending
Approx10000sofmachines Variesfromtensto
1000sofswitches,100sofrouters hundredsofcrores
Convergence2005 IITBombay 23
Complexheterogeneousinfrastructures
Directory
andSecurity Existing
Dozensof Services Applications
systemsand andData
applications
Business
Data
Data
Web Server
DNS
Server
Web
Application Thousandsof
Server
Server tuning
parameters
StorageArea
Network
Hundredsof
components BPsand
Data External
Services
Convergence2005 IITBombay 24
Issuesatthekilolevel
Applicationrelated
Placement
Whataretheoptimallocationsformyvariousapplications?
Tuning
HowshouldItunemyapplicationsforoptimalperformance?
Scalability
HowshouldIscalemyapplicationsforincreasingusage?
Networkrelated
Sizing:HowshouldIprovisionmyWAN/Internetconnectivity?
Security:HowdoIcopewithmysecurityvulnerabilities?
Backup:Whataremystandbyandfailovermechanisms?
Administration:WhataremypoliciesforVPNandothers?
Convergence2005 IITBombay 25
eBusinessFunctionalArchitecture
Financials HRD
Supplier
P
CRM
Customer O B2B
R External
Network Gateway Partner
T Service
A Network
Apps
L Business
Partner
Billing
Customers ERP
Example:Amazon
Convergence2005 IITBombay 26
Source:UmeshBellur,IITBombay
OneSolutionArchitecture
UserTier MiddleTiers
WebTier
Web,http,XML
Web J2EEOR
ServerFarm CORBA
Containers,
Voice RMI Workflow
Messaging Expert
WAP
CORBA systems
Front eCommerce
End HTTP Portal
Integration XML BusinessLogic
BackOffice
Other
Systems
Convergence2005 IITBombay 27
Source:UmeshBellur,IITBombay
SolutionArchitecture(contd.)
DataTier
Application
Distributed complexity
Databases, OnlineData overshadows
SQLvia Warehousing Backup thenetwork
JDBCor Services
ODBC Data
Storage Applicationmay
Logicand beunavailable
Reporting despitenetwork
andbandwidth
availability
B2B
Partner
Gateways, Needtoarchitect
Networkor
RMI Payment systemsfor
serversetc. Internet
Messaging greaterreliability,
(EDI,Web
CORBA faulttolerance,
Services,XML
Supplier scalabilityetc.
OverHTTPetc.)
Integration
Convergence2005 IITBombay 28
Source:UmeshBellur,IITBombay
Amegalevelview
local
Aninternationalnetwork
ISP Tier 3 local
local ISP local forasingleorganization
ISP ISP Ex:Intel
ISP
Tier-2 ISP Tier-2 ISP Needtocoordinatewith
internationalbandwidth
Tier 1 ISP providers
NAP
Apacketmayhaveto
Tier 1 ISP Tier 1 ISP Tier-2 ISP passthroughmany
Tier-2 ISP Tier-2 ISP
local networks!
ISP
tier-2 ISP is customer of tier-1
local local local
ISP ISP ISP provider
Approx10sofcountries
1000soflocations
TypicalITspending?
Convergence2005 IITBombay 29
Issuesatthemegalevel
Applicationrelated
Aggregation
Centralizedv/sdistributedschemesforaggregationatthe
variousdatacentersandapplications.
Replication
Replicationandcachingmechanismsforfasteraccess.
Robustness
Ensuringapplicationavailabilitydespitevariousfailures.
Networkrelated
SLA:ServiceLevelAgreementswithbandwidthproviders.
Administration:Earlyfaultdiagnosisandwarningsystems.
Security:Thisproblemonlygetsworse!
Convergence2005 IITBombay 30
Security:Speedofnetworkattacks
Global
Impact
ScopeofDamage
Regional NextGen
Networks Infrastructure
Hacking,Flash
Multiple Threats,
3rdGen MassiveWorm
Networks MultiServer
DoS,DDoS, DrivenDDoS,
Individual
2ndGen BlendedThreat Negative
MacroViruses, payload
Networks (Worm+Virus+
Trojans,Email,
Trojan),Turbo Viruses,
SingleServer
Worms, Wormsand
Individual 1stGen DoS,Limited
Widespread Trojans
Computer BootViruses Targeted
System
Hacking
Hacking
100soforganizations InternetofThings
100sofcountries
Millionsandbillionsofdevices
Convergence2005 IITBombay 33
Forrester Research, 2001
TheEPCmodel:InternetofThings
Convergence2005 IITBombay 34
Source:www.epcglobalinc.org
Enterprisenetworks:Thecompletepicture
NetworkingandApplications
ConnectivityandServices
Maintenance
Scalabilityandrobustness
Faulttolerance
Loadbalancing
Integrationacrosssystems
Security
Convergence2005 IITBombay 35
ThankYou
EnjoyandLearninConvergence2005
Convergence2005 IITBombay 36