Lesson 20: Summarizing Cloud and Datacenter Architecture

Question 1

Define Scalability

Answer 1

The costs involved in supplying a cloud service to more users are linear; If need of the service doubles so will the price.

Question 2

How can an organization achieve scalability?

Answer 2

Achieved by provisioning more nodes (horizontal/scaling out) or by provisioning more resources to each node (vertical/scaling up).

Question 3

Define Elasticity

Answer 3

A computing environment or system that can instantly react to both increasing and decreasing demands in workload.

Question 4

How can elasticity save cost from a cloud provider?

Answer 4

The system being able to self provision resources allows for cost of service to be lower when the demand for resources is low.

Question 5

How do cloud providers achieve scalability and elasticity?

Answer 5

Provisioning and deprovisioning resources automatically using resource pooling and virtualization.

Question 6

Define resource pooling

Answer 6

The hardware making up the cloud provider’s datacenter is not dedicated or reserved to a single customer account allowing he provider to provision more CPU, memory, disk, or network resource using management software.

Question 7

List the current cloud deployment models

Answer 7

1. Public
2. Hybrid
3. Hosted Private
4. Private
5. Community

Question 8

Define a public could deployment

Answer 8

A service offered over the Internet by cloud service providers (CSPs) offering subscriptions or pay-as-you-go financing.

Question 9

Define a hosted private cloud deployment

Answer 9

Hosted by a third party for the exclusive use of the organization.

Question 10

Define a private cloud deployment

Answer 10

Cloud infrastructure that is completely private to and owned by the organization.

Question 11

Define a community cloud deployment

Answer 11

Aeveral organizations share the costs of either a hosted private or fully private cloud.

Question 12

Define a hybrid cloud envrionment

Answer 12

A cloud computing solution that implements two of the other cloud deployment models.

Question 13

What are the current cloud service models?

Answer 13

1. Infrastructure as a Service (IaaS)
2. Software as a Service (SaaS)
3. Platform as a Service (PaaS)
4. Desktop as a Service (DaaS)

Question 14

Define Infrastructure as a Service (IaaS)

Answer 14

Cloud service model that provisions virtual machines and network infrastructure.

Question 15

Define Software as a Service (SaaS)

Answer 15

Cloud service model that provisions fully developed application services to users.

Question 16

What are examples of Software as a Service (SaaS)?

Answer 16

Salesforce, RingCentral, Office 365

Question 17

Define Platform as a Service (PaaS)

Answer 17

Provides resources from IaaS and SaaS; Cloud service model deploying infrastructure and application services allowing further development of the resources by the tenant

Question 18

List examples of Platform as a Service (PaaS)

Answer 18

Microsoft Azure SQL Database; Oracle Cloud Database; Google App Engine™

Question 19

Define Desktop as a Service (DaaS)

Answer 19

Cloud service model that provisions desktop OS and applications software.

Question 20

Define virtual desktop infrastructure (VDI)

Answer 20

The byproduct of Desktop as a Service (DaaS); Cloud provisioned desktop OS and applications software.

Question 21

Define cloud connectivity

Answer 21

The mechanism by which clients connect to the cloud service.

Question 22

Define infrastructure as code (IaC)

Answer 22

Provisioning architecture in which deployment of resources is performed by scripted automation.

Question 23

What is the main goal of Infrastructure as Code (Iac)?

Answer 23

To eliminate snowflake systems.

Question 24

Define a snowflake system

Answer 24

A configuration or build that is different from any other.

Question 25

What are are issues that can arise from a snowflake system in an environment?

Answer 25

Leads to security issues, such as patches that have not been installed, and stability issues, such as scripts that fail to run because of some small configuration difference.

Question 26

What is infrastructure as code (IaC) defined as?

Answer 26

Automation

Question 27

Define automation

Answer 27

Using scripts/code and APIs to provision and deprovision systems without manual intervention or to complete a task without intervention.

Question 28

What are the two main types of automation tools?

Answer 28

1. Imperative tools
2. Declarative tools

Question 29

Define declarative automation

Answer 29

Defining an end-state, and the automation platform does the work of reconciling the input/goal, current status, and what needs be done to achieve the input/goal.

Question 30

Define imperative automaiton

Answer 30

A series of actions are executed in a specific order to achieve an outcome.

Question 31

Define orchestration

Answer 31

Automation of multiple coordinated steps in a deployment process; also known as imperative automation

Question 32

How can imperative automation also be defined as?

Answer 32

Orchestration

Question 33

Define a cloud responsibility matrix and its purpose to a tenant

Answer 33

Documentation listing which security and management tasks are the responsibility of the cloud provider and which are the responsibility of the cloud consumer.

Question 34

Define colocation

Answer 34

An organization hosting servers or services at a datacenter or 3rd party.

Question 35

Define a hypervisor

Answer 35

Software or firmware that creates and manages virtual machines on the host hardware.

Question 36

What are the two types of hypervisors?

Answer 36

Type 1 and Type 2

Question 36

List a examples of type 2 hypervisors

Answer 36

VMware workstation Oracle virtual box

Question 36

Define a type 2 hypervisor

Answer 36

Host-based, running as software on the OS to utilize the hosts physical hardware to create virtual machines

Question 36

Define a type 1 hypervisor

Answer 36

Bare metal virtual platform; installed directly into the host to manage hardware resources without the need for a host OS

Question 37

List examples of a type 1 hypervisor

Answer 37

Hyper-v, VMware EXSI Server

Question 37

Define an internal virtual switch

Answer 37

Isolates the virtual machines but allows network switching between the Hyper-V host and the virtual machines.

Question 37

What are the 3 types of virtual switches that can be created in hyper-v?

Answer 37

1. External
2. Internal
3. Private

Question 37

Define an external virtual switch

Answer 37

Linked to the physical NIC of the Hyper-V host and allows access to the
LAN network.

Question 37

How is the MAC address for a virtual NIC (vNIC) configured?

Answer 37

In the hypervisor settings for the specific VM.

Question 37

Define a private virtual switch

Answer 37

Creates a switch that is usable only by the VMs. They cannot use the switch to communicate with the host.

Question 38

Define Network Function Virtualization (NFV)

Answer 38

Provisioning virtual network appliances, such as switches, routers, and firewalls, via VMs and containers.

Question 39

What are the 3 domains of Network Function Virtualization (NFV)?

Answer 39

1. Virtual Network Function (VNF)
2. NFV infrastructure
3. Management and orchestration (MANO)

Question 40

Define Virtual Network Function (VNF)

Answer 40

VNF replaces network hardware with software that virtualize network services.

Question 41

What are examples of Virtual Network Functions (VNFs)

Answer 41

Routers, directory services, firewalls, load balancers.

Question 42

Define NFV infrastructure

Answer 42

Consists of the infrastructure components on a platform to support the hypervisor and its VMs.

Question 43

What are examples of the components in NFV infrastructure?

Answer 43

CPU, storage, NIC/cabling, RAM

Question 44

Define Management and orchestration (MANO)

Answer 44

Framework for the management and orchestration of all resources in a virtualized data center including compute, networking, storage, and virtual machine (VM) resources.

Question 45

Define a storage area network (SAN)

Answer 45

Network dedicated to provisioning storage resources, typically consisting of storage devices and servers connected to switches via host bus adapters.

Question 46

What is the best practice topology of a storage area network (SAN)

Answer 46

Isolated from the main network; Only accessed by servers not clients machines.

Question 47

What is the typical use case for a storage area network (SAN)

Answer 47

SAN clients are servers running databases or applications that require access to shared storage.

Question 48

Define Fibre Channel

Answer 48

High speed network communications protocol used to implement SANs

Question 49

Define an initiator in a SAN

Answer 49

A client device of the SAN, such as a file or database server installed with a fibre channel host bus adapter (HBA).

Question 49

Define an FC switch in a SAN

Answer 49

Interconnects initiators and targets and should be configured as a mesh topology for fault tolerance.

Question 49

Define a target in a SAN

Answer 49

The network port for a storage device in a SAN (single drive, RAID array, tape drives)

Question 50

What is used to identify initiators and targets in a SAN?

Answer 50

Identified by 64-bit WorldWide Names (WWN).

Question 51

Define east-west traffic

Answer 51

Design paradigm accounting for the fact that data center traffic between servers is greater than that passing in and out (north-south).

Question 51

Define Internet Small Computer System Interface (iSCSI)

Answer 51

IP tunneling protocol that enables the transfer of SCSI data over an IP-based network to create a SAN without the use of fibre channel, fibre switches, fiber links, or, FCoE.

Question 52

Define north-south traffic

Answer 52

Desgin paradigm representing traffic from clients outside a data center or cooperate office; Traffic from the client to the server passes “north” from the client’s switch to the router and then back “south” to the server’s switch.

Question 53

Define an overlay network

Answer 53

Virtual network of nodes and logical links built on top of an existing network to enable new services or functions without needing to reconfigure an entire network design.

Question 54

Define Software defined networking (SDN)

Answer 54

APIs and scripts along with compatible hardware/virtual appliances allowing for programmable network appliances and systems.

Question 55

What are the 3 layers of Software defined networking (SDN)?

Answer 55

1. Application Layer
2. Control Layer
3. Infrastructure Layer

Question 56

Define the function of the application layer in Software defined networking (SDN)

Answer 56

Defines policies such as segmentation, ACLs, and traffic prioritization and policing/shaping to determine where traffic should go and how it should go to its destination.

Question 57

Define the function of the infrastructure layer in Software defined networking (SDN)

Answer 57

Devices (physical or virtual) that handle the actual forwarding (switching and routing) of traffic and imposition of ACLs and other policy configurations for security.

Question 58

Define the function of the control layer in Software defined networking (SDN)

Answer 58

Contains the SDN controller that manages northbound API communications to the application layer and southbound API communications to the infrastructure layer.

Question 59

Describe a spine and leaf topology

Answer 59

Topology comprising of a top tier of aggregation/distribution switches forming a backbone that connects a leaf tier of top-of-rack switches which connect to servers.

Question 60

Define the spine layer in a spine and leaf topology

Answer 60

Comprises a backbone of top-tier switches; The spine switches are not linked to one another.

Question 61

Define the leaf layer in a spine and leaf topology

Answer 61

Contains access switches that are connected to each spine switch in a full mesh topology; The access switches never have direct connections to one another.

Question 62

How does a spine and leaf topology decrease latency?

Answer 62

Since there are no direct connections between spine switches in the backbone or between leaf switches, the network is loop free and each server is only ever a single hop from the backbone making routes faster.

Question 63

Since spine and leaf topology is considered a mesh topology, how is traffic distributed to the leaf layer?

Answer 63

Servers are connected to multiple leaf switches for multipath redundancy, using a first hop gateway protocol to determine the active path.

Question 64

Since spine and leaf topology is considered a mesh topology, how is traffic distributed to the spine layer?

Answer 64

Each leaf switch runs a protocol called Equal Cost Multipathing (ECMP) to distribute traffic between the links to the spine switches.

Question 65

Define a top-of-rack (ToR) switch

Answer 65

High-performance switch model designed to implement the leaf tier in a spine and leaf topology.

Question 66

Define Multiprotocol Label Switching (MPLS)

Answer 66

Network protocol used by service providers to implement private WAN links and virtual private networks with traffic engineering (congestion control), Class of Service, and Quality of Service.