Cloud and the Datacenter

Question 1

Virtual Network Devices

Answer 1

o Major shift in the way data centers are designed, fielded, and operated
▪ Virtualization is everywhere
● Virtual Servers
● Virtual Routers
● Virtual Firewalls
● Virtual Switches
● Virtual Desktops
● VoIP
● Cloud Computing
● Software-Defined Networking

Question 2

Virtual Servers

Answer 2

Allows multiple virtual instances to exist on a single physical server
Considerable cost savings for an IT budget
▪ Allows for consolidation of physical servers
▪ Multiple NICs increase bandwidth available

Question 3

Hypervisor

Answer 3

Specialized software that enables virtualization to occur
▪ Hypervisor is the software that emulates the physical hardware
▪ Also called a Virtual Machine Monitor (VMM)
▪ Examples
● VMWare ESXi
● Microsoft Hyper-V
● Virtual Box
● VMWare Workstation

Question 4

Virtualized Storage Solutions
▪ Network Attached Storage (NAS)

Answer 4

Disk storage is delivered as a service over TCP/IP

Question 5

Storage Area Network (SAN)

Answer 5

Specialized LAN designed for data transfer/storage
● Transfers data at block level with special protoco

Question 6

Fibre Channel (FC)

Answer 6

Special purpose hardware providing 1-16 Gbps

Question 7

Fibre Channel over Ethernet (FCoE)

Answer 7

o Removes need for specialized hardware
o Runs over your Ethernet networks

Question 8

iSCSI (IP Small Computer System Interface)

Answer 8

o Lower cost, built using Ethernet switches (<10 Gbps)
o Relies on configuration allowing jumbo frames over the
network

Question 9

Infiniband (Virtualized Storage)

Answer 9

Switched fabric topology for high-performance computing
▪ Very high throughput (>600 Gbps) with very low latency (0.5 µsec)
▪ Direct or switched connection between servers and storage systems

Question 10

Virtual Firewalls and Routers

Answer 10

▪ To fully virtualize your network, you will need a firewall and router
▪ Manufacturer’s offer virtualized versions of their most popular devices
▪ Virtualized routers and firewalls provide the same features as their
physical counterparts

Question 11

Virtual Switches

Answer 11

▪ Overcomes the problem of
all virtual servers being on
one broadcast domain
▪ Layer 2 control provides
VLANs and trunking
▪ Provides Quality of Service
and security

Question 12

Virtual Desktops

Answer 12

User’s desktop computer is run in browser
▪ Used from web, laptop, tablet, or phone
▪ Easier to secure and upgrade for the admins

Question 13

Software-Defined Networking (SDN)

Answer 13

▪ Provides the administrator with an easy-to-use front end to configure
physical and virtual devices throughout the network
▪ All the configurations are automatically done
▪ Provides administrator and overview of the entire network

Question 14

Voice over IP (VoIP)

Answer 14

Digitizes voice traffic so that it can be treated like other data on the
network
▪ Uses the SIP (Session Initiation Protocol) to setup, maintain, and tear
down calls
▪ VoIP can save a company money and provide enhanced services over a
traditional PBX solution

Question 15

VoIP Topology

Answer 15

User’s desktop computer is run in browser

Question 16

Virtual Private Branch Exchange (PBX) and VoIP

Answer 16

Ability to outsource your telephone system
▪ Utilizes VoIP to send all data to provider, then provider connects it to
telephone system

Question 17

Cloud Computing
▪ Private Cloud

Answer 17

Systems and users only have access with other devices inside the
same private cloud or system

Question 18

Public Cloud

Answer 18

● Systems and users interact with devices on public networks, such
as the Internet and other clouds

Question 19

Hybrid Cloud

Answer 19

● Combination of private and public

Question 20

Community Cloud

Answer 20

Collaborative effort where infrastructure is shared between
several organizations from a specific community with common
concerns

Question 21

Models of Cloud Computing

Answer 21

Network as a Service (NaaS)
▪ Infrastructure as a Service (Iass)
▪ Software as a Service (SaaS)
▪ Platform as a Service (PaaS)

Question 22

Network as a Service (NaaS)

Answer 22

Allows outsourcing of the of a network to a service provider
▪ Hosted off-site at the service provider’s data center and the customer is
billed for usage
▪ Charged by hours, processing power, or bandwidth used like utility
services
▪ Amazon’s VPC or Route 53 offerings

Question 23

Infrastructure as a Service (IaaS)

Answer 23

▪ Allows outsourcing of the infrastructure of the servers or desktops to a
service provider
▪ Hosted off-site at the service provider’s data center and the customer is
billed for usage
▪ Charged by hours, processing power, or bandwidth used like utility
services
▪ Examples
● Amazon Web Services (AWS)
● Microsoft’s Azure

Question 24

Software as a Service (SaaS)

Answer 24

▪ User interacts with a web-based application
▪ Details of how it works are hidden from users
▪ Examples:
● Google Docs
● Office 365

Question 25

Platform as a Service (PaaS)

Answer 25

Provides a development platform for companies that are developing applications without the need for infrastructure ▪ Dion Training uses PaaS for our courses ▪ Examples: ▪ Pivotal ● OpenShift ● Apprenda

Question 26

Desktop as a Service (DaaS)

Answer 26

Provides a desktop environment that is accessible through the Internet in the form of a cloud desktop or virtual desktop environment ● Virtual Desktop Infrastructure (VDI)

Question 27

Cloud Concepts o Elasticity

Answer 27

Attempts to match the resources allocated with the actual amount of resources needed at any given point in time ▪ Elasticity is focused on meeting the sudden increases and decreases in the workload

Question 28

o Scalability

Answer 28

Handles the growing workload required to maintain good performance and efficiency for a given software or application ● Elasticity o Short-term addition or subtraction of resources ● Scalability o Long-term planning and adoption

Question 29

Vertical Scaling (Scaling Up)

Answer 29

▪ Increasing the power of the existing resources in the working environment

Question 30

Horizontal Scaling (Scaling Out)

Answer 30

▪ Adding additional resources to help handle the extra load being experienced ● Vertical- Scalability ● Horizontal- Elasticity ▪ Scaling out provides more redundancy and results in less downtime

Question 31

Multitenancy

Answer 31

Multitenancy ▪ Allowing customers to share computing resources in a public or private cloud ● Better storage/access ● Better use of resources ● Lower overall cost ▪ Multitenancy might cause your data to be hosted on the same physical server as another organization’s data ● When an organization crashes a physical server, all of the organizations hosted on that same server are affected ● An organization failing to secure its virtual environments hosted on a shared server poses a security risk for the other organizations hosting on that same server Set up virtual servers in the cloud with proper failover, redundancy, and elasticity ● Complex passwords ● Strong authentication ● Strong encryption ● Strong policies

Question 32

Virtual Machine (VM) Escape

Answer 32

Occurs when an attacker breaks out of one of the isolated VMs and begins to directly interact with the underlying hypervisor ▪ Host virtual servers on the same physical server as other VMs in the same network

Question 33

Infrastructure as Code (IAC)

Answer 33

Enables managing and provisioning of infrastructure through code instead of through manual processes ▪ Virtual machines ▪ Virtual devices ▪ Scripted automation and orchestration ● Orchestration o Process of arranging or coordinating the installation and configuration of multiple systems ▪ Lower costs ▪ Speed up deployments ▪ Increase security ● Snowflake Systems o Any system that is different from the standard configuration template used within your organization’s IaC architecture o Keeping things consistent and using carefully-developed and tested scripts

Question 34

Connectivity Options o Virtual Private Network (VPN)

Answer 34

▪ Establishes a secure connection between on-premises network, remote offices, client devices, and provider’s global network ● Amazon Web Services- Direct Connect Gateway ● Microsoft Azure- Azure Private Link

Question 35

Private-Direct Connection

Answer 35

▪ Extends preexisting, on-premise data center into the provider’s network to directly connect to your virtual private cloud network

Question 36

Datacenter Architecture o Datacenter

Answer 36

Any facility that businesses and other organizations use to organize, process, store, and disseminate large amounts of data o Types ▪ Three-tiered hierarchy ▪ Software-defined networking ▪ Spine and leaf architecture ▪ Traffic flows ▪ On-premise versus hosted datacenters

Question 37

Datacenter benefits

Answer 37

Performance ▪ Management ▪ Scalability ▪ Redundancy

Question 38

Software-Defined Networking (SDN)

Answer 38

Enables the network to be intelligently and centrally controlled, or programmed, using software applications ▪ Application Layer ● Focuses on the communication resource requests or information about the network as a whole ▪ Control Layer ● Uses the information from the applications and decides how to route a data packet on the network ▪ Infrastructure Layer ● Contains the network devices that receive information about where to move the data and then performs those movements ● Provides a layer of abstraction between the devices and the control and data flow that happen on the network ▪ Management Plane ● Used to monitor traffic conditions and the status of the network

Question 39

Architectures ▪ Spine and Leaf Architecture

Answer 39

● An alternative type of network architecture that focuses on the communication within the datacenter itself Spine and leaf architecture can give faster speeds and lower latency ● This architecture can be used in combination with the standard three-tiered hierarchy ● North-South o Traffic that enters or leaves the data center from a system physically residing outside the datacenter o Northbound is data leaving the datacenter o Southbound is data entering the datacenter ● East-West o Refers to data flow within a datacenter ● On-premise o A traditional, private data infrastructure usually located in the same building as the main offices ● Co-located o A datacenter environment owned by another company ● Cloud-based o Migrating company data out of own server and datacenters and into a cloud service provider’s servers and datacenters