Managed devices (server machines and network devices) are connected using the public LAN.
Managed devices (server machines and storage units) are connected using the iSCSI LAN.
Design of an iSCSI LAN is required to connect the iSCSI-enabled storage devices and servers to which physical L-Servers will be deployed.
When designing a public LAN, the following information needs to be defined beforehand:
The number of required devices (servers and network devices)
Define the required devices based on the designed virtual system.
The number of required devices should be estimated based on the following information:
Performance requirements assumed during designing of the virtual system
The number of planned tenants defined during designing of the admin LAN
Specifications of devices to be used
Specifications (including supported functions) required for the devices
The number of VLAN IDs for use on the public LAN
As the upper limit of the number of VLAN IDs varies depending on the device, when using devices that connect with both the admin and public LANs, ensure that the number does not exceed the maximum.
The VLAN ID range for use on the public LAN
As the available VLAN ID range varies depending on the device, when using the devices that connect with both the admin and public LANs, ensure that ranges do not overlap.
The IP address range of the public LAN
Design the address architecture to be allocated to the virtual system, and decide the required IP address range.
When Automatically Configuring and Operating Network Devices Using User Customization Mode
When deploying a firewall
When using the address translation function, define the virtual IP address.
When deploying a server load balancer
Define the virtual IP address for the server load balancer
When Automatically Configuring and Operating Network Devices Using Simple Configuration Mode
When deploying a firewall
Define the virtual IP addresses used for the address translation functions of firewalls.
When managing the virtual IP addresses, and allocating them automatically, define the global IP addresses for each tenant to allocate to the address set resources so that the virtual IP addresses (public addresses) used are not shared between tenants.
When deploying a server load balancer
The virtual IP addresses used for the server load balancing functions are automatically allocated from the IP addresses allocated to the network resources used for the public networks of server load balancing targets.
The IP address on the public LAN, designed and defined by the infrastructure administrator, is used by the virtual system configured for the tenant.
Therefore, the infrastructure administrator must notify the tenant administrator of the IP address on the public LAN allocated to a tenant.
Whether to configure communication route redundancy
Whether to configure communication route redundancy should be decided based on the designed virtual system.
The LAN ports or NICs to use
Define one of the following:
For network devices, LAN ports other than the ones assigned to the admin LAN.
For servers, NIC ports other than the ones assigned to the admin LAN.
When planning to use a rack mount server or tower server as a physical L-Server, define the following information:
The NIC number of the rack mount server or tower server
Check the alignment sequence and number of NICs on the back of the rack mount or tower servers, and then choose the numbers of NICs to be specified when creating a physical L-Server, by consecutive numbers starting with 1 (such as 1, 2,...).
As the admin LAN uses small NIC numbers ("1" for non-redundant admin LANs or "1-2" for redundant LANs), ensure NICs with larger numbers are used.
Information
For blade servers, depending on the model of LAN switch blade used in the same chassis, certain network interfaces may not be available.
In this case, add expansion NICs and a LAN switch blade, or share the NIC used for the admin LAN.
All network interfaces shared between the admin LAN and the public LAN for managed servers should be configured with tagged VLAN IDs.
The NICs that are unavailable depend on the combination of the mounted LAN switch blade and blade server. For details, refer to the manual of the LAN switch blade and blade server.
When designing an iSCSI LAN, the following information needs to be defined beforehand:
The NIC on the server used for an iSCSI LAN
Both single and multi-path configurations are available.
The network address and a VLAN ID for use on the iSCSI LAN for each tenant
Whether to connect external switches between ETERNUS storage and LAN switch blades, or NetApp storage and LAN switch blades
Whether to use multi-tenant functions on ETERNUS storage or NetApp storage
The IQN to be used for the NIC of the server
The Network address to be used for the port of the storage
The IQN set for storage (The IQN used for the NIC on the server side is used.)
Whether to use authentication for iSCSI communication (When using authentication, authentication information)
Determine the physical network configuration by defining devices necessary for the public LAN and iSCSI LAN that meet the requirements for the designed virtual system.
A sample image of virtual systems and the corresponding physical network configuration is shown below:
Figure 9.7 Sample Image of Virtual Systems and the Corresponding Physical Network Configuration
* Note: Some types of network devices have both firewall functions and server load balancer functions. (In this case, there is no access switch between the firewall and server load balancer.)
By defining how many virtual systems should be configured for each tenant and how many tenants are to be prepared, the required number of devices can be determined, making the overall configuration clear.
An example of the overall configuration of the physical system is shown below:
Figure 9.8 Example of Overall Physical Network Configuration
*1: Some types of network devices have both firewall functions and server load balancer functions. (In this case, there is no access switch between the firewall and server load balancer.)
*2: L2 switches or Ethernet fabric switches.
