Cisco Cisco UCS Director 4.0 White Paper
© 2015 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Page 11
Application Infrastructure on Demand with Cisco UCS Director and Cisco Application Centric Infrastructure
March 2015
• The web EPG is allowed to communicate to the middle-tier application server
EPG through the application contract
• The application server EPG is allowed to communicate with the back-end
database EPG through the SQL contract.
Next, you can define any network services that need to be inserted between layers
to provide service quality and security. Cisco ACI service insertion allows virtual
and physical security and load-balancing devices to be inserted between layers
to implement the contracts defined by the network container. Figure 4 shows the
network profile with a load balancer and firewall appliance inserted into the network
stack.
to provide service quality and security. Cisco ACI service insertion allows virtual
and physical security and load-balancing devices to be inserted between layers
to implement the contracts defined by the network container. Figure 4 shows the
network profile with a load balancer and firewall appliance inserted into the network
stack.
Define Resources
With a network profile defined, you can now use Cisco UCS Director to specify
the quantity, capacity, and quality of physical and virtual computing and storage
resources for each EPG. This specification includes the number of servers or virtual
machines in each network layer. Physical servers and virtual machines are treated
equally. These choices interact with Cisco UCS Director resource groups so that the
quality of the application infrastructure is automatically mapped to the application
requirements dictated here.
With a network profile defined, you can now use Cisco UCS Director to specify
the quantity, capacity, and quality of physical and virtual computing and storage
resources for each EPG. This specification includes the number of servers or virtual
machines in each network layer. Physical servers and virtual machines are treated
equally. These choices interact with Cisco UCS Director resource groups so that the
quality of the application infrastructure is automatically mapped to the application
requirements dictated here.
In Figure 5, four virtual machines are used to populate the web EPG, two virtual
machines are used to populate the application server EPG, and two physical servers
are used to populate the database EPG.
machines are used to populate the application server EPG, and two physical servers
are used to populate the database EPG.
Public
Internet
Web Contract
Web
EPG
Storage
EPG
Database
EPG
App
Server
EPG
App Contract
SQL Contract
St
orage Contract
ACL
Allow 22,
80, 443
from *
QoS
Class 5
Marking Gold
Redirect Load Balancer
Copy to None
Redirect Load Balancer
Copy to None
ACL
Allow 22,
8080,
from Web Servers
QoS
Class 5
Marking Gold
Redirect Firewall
Copy to None
Redirect Firewall
Copy to None
ACL
Allow 1443
from App Servers
QoS
Class 5
Marking Gold
Redirect None
Copy to None
Redirect None
Copy to None
Load
Balancer
Firewall
Figure 4. Network Profiles Can Specify Services to Be Inserted Between Network Layers