The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
This chapter contains the following sections:
Hybrid cloud is an interaction between private and public clouds where private clouds extends to public clouds and utilizes public cloud resources in a secure and scalable way. Cisco Nexus 1000V InterCloud provides the architectural foundation for secure hybrid clouds, allowing enterprises to easily and securely connect the enterprise data center to the public cloud. With a hybrid cloud, enterprises can combine the benefits of public and private clouds. Cisco Nexus 1000V InterCloud provides the following benefits:
Cisco Nexus 1000V InterCloud is a hybrid cloud solution deployed as virtual machines in the enterprise data center and in the public cloud. In the Cisco Nexus 1000V InterCloud solution, one or more Virtual Ethernet Module (VEM) is deployed in the cloud as an extension of a Cisco Nexus 1000V. Cisco Nexus 1000V InterCloud solution consists of the following components:
Cisco Prime Network Services Controller provides a single pane of management across enterprise data centers and public clouds.
The Cisco Nexus 1000V InterCloud allows you to construct various network topologies for the InterCloud based on the optimal network requirements of applications workloads.
InterCloud Extender is a virtual machine running in the enterprise datacenter. It is responsible for establishing a secure tunnel for interconnecting the InterCloud components in the cloud with enterprise networks. The main functions of the InterCloud Extender includes:
InterCloud Switch is a virtual machine running in the cloud. It is responsible for establishing secure tunnels for connecting VMs in the cloud to the enterprise VMs and other VMs in the cloud. The main functions of the InterCloud Switch includes:
The Cisco Nexus 1000V VEM is embedded in the InterCloud Switch and is responsible for the following:
InterCloud Agent (ICA) provides the compute environment and network overlay to the enterprise virtual machines in the cloud. It secures the guest VM in the cloud and abstracts the cloud infrastructure. It is deployed in the provider cloud as a secure tunnel driver running within cloud VM's operating system. It also redirects network traffic to the secure overlay network.
Cisco Nexus 1000V VSM is the virtual switch that provides highly secure Layer 2 connectivity between the enterprise data center and the public cloud.
InterCloud links are secure connections between an enterprise and a public cloud. It includes the InterCloud Extender in the enterprise and the InterCloud Switch in the public cloud. A secure Layer 2 tunnel connects the InterCloud Extender and the InterCloud Switch, thereby extending the enterprise network into the cloud.
The InterCloud Extender, Intercloud Switch with the embedded VEM, and each of the VMs in the cloud are all connected through secure tunnels. The VMs in the cloud communicate with each other and with the components located in the enterprise data center through secure tunnels.
Cisco Nexus 1000V InterCloud provides the infrastructure for enterprises to extend their enterprise data center and private clouds into public clouds by providing an overlay infrastructure in the cloud. This allows the enterprise to manage the cloud extensions as if it is part of its own environment.
Note |
In this release, Cisco Nexus 1000V InterCloud supports Amazon Web Services (AWS) as the public cloud and VMware ESX 5.0/5.1 as the hypervisor in the enterprise. |
Cisco Nexus 1000V InterCloud solution uses the secure Layer 2 extension, compute overlay, and Cisco Prime Network Services Controller to provide the required infrastructure.
Cisco Nexus 1000V InterCloud solution enables the enterprises to extend their network securely into the cloud by retaining the network attributes of the VM when it is migrated to the cloud. This is achieved by providing a highly secure Layer 2 connectivity between the enterprise data center and the cloud. In the enterprise, the InterCloud Extender interfaces with enterprise network and receives the bridged traffic. A secure tunnel is formed between the InterCloud Extender in the enterprise and the InterCloud Switch in the cloud. All the communication between the enterprise and cloud is transmitted through this secure tunnel.
InterCloud Agent (ICA) is a virtualization environment that makes the VMs transparent to the cloud infrastructure. It secures the VM in the public cloud by ensuring that only the enterprise network components can communicate with the VM. It filters all other traffic by establishing a secure tunnel with the InterCloud Switch. All the communication between the VMs is transmitted using this tunnel. It abstracts the cloud infrastructure and enterprise VLANs to VMs in the cloud.
The Cisco Nexus 1000V InterCloud solution maintains the separation of duties between network administrators and compute administrators when the infrastructure is extended to Cloud. The Cisco Nexus 1000V VSM manages the VEM in the cloud and acts as the point of control for network administrators and the VEM provides the data-plane functionality. Each VM interface is treated as a port by the VEM and all the traffic from the VMs are sent to the VEM for processing thus enabling the network administrators to apply network policies in the VEM.
Network administrators can define the network policies for the VMs in the Cloud. Network administrator can define the policies and server administrator can associate them to the VMs. When a VM is migrated, the policy will move along with the VM.
The compute administrator can use the Cisco Prime Network Services Controller for compute management. Cisco Prime Network Services Controller interacts with the cloud provider for managing the resources in the cloud by using the management APIs of the cloud. It also acts as an interface to the hypervisor to get the information about locally running VMs and the defined templates.