Download Architecting Shared Server Hosting With

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
page
8
page
9
page
10
page
11
page
12
page
13
page
14
page
15
page
16
page
17
page
18
page
19
page
20
page
21
page
22
page
23
page
24
page
25
page
26
page
27
page
28
page
29
Document related concepts

Dynamic Host Configuration Protocol wikipedia , lookup

Distributed operating system wikipedia , lookup

Server Message Block wikipedia , lookup

Cracking of wireless networks wikipedia , lookup

Lag wikipedia , lookup

Zero-configuration networking wikipedia , lookup

Computer cluster wikipedia , lookup

Remote Desktop Services wikipedia , lookup

Transcript 
Architecting a Multi-host
Environment With
Exchange 2000
Andres Sanabria
Network Specialist
Microsoft Corporation
What Is An ASP

Defining Characteristics:

Applications-centric





Deploy, host, manage and rent
Applications license ownership
One-to-many
Delivers on contract
Centrally managed
Topics






Hosting scenarios and models
Active Directory™ design
Messaging configuration
Scalability and reliability
Clients
Management
Hosting Scenarios And Models

Centralized (shared server hosting)




De-centralized




All software components, hardware live
at ASP data center
ISP-like configuration
Vast scale services (messaging, conf, wireless)
Co-located and/or off-site CPE
Remotely managed by MSP
Tied into ASP directory in some cases
Fully distributed (dedicated server hosting)



Complete data/config isolation
Management, monitoring and recovering
Highest SLA, costs
Active Directory Design

Customer Requirements






Single point of management for any
resource (applications, users, email,..etc)
Totally secure and isolated environment
Share the same infrastructure for
multiple companies
Delegate Configuration to ASP personnel
Delegate user mgmt to customer
Automate most of my work


Scripts, schedule task, application
Increase the availability
Active Directory Design
Name Space Partition
 Organization Unit - OU Model
Each OU will host a Company
 Administrative containers
 Unit of delegate administration
User Principal Name- UPN Model
 (Same as pre-Windows 2000) =
OU name //Usability
Set security ACL in groups created in the OU
 AllUsers@customer1 , AdminOu@customer1
Remove Authenticate Users





Single forest


Keep it simple, “Less Is Better”
Security – top design priority
Active Directory Design
WTS Exchange 2000
Managed PC
Other ISV Apps
Wireless
Unified Messaging
Conferencing
Instant Messaging
Messaging
Office Online
Other TS Apps
Active Directory Design
Active Directory –
Shared Hosting Architecture
Benefits of a single platform (Windows 2000)
and integration of products
Active Directory Design


Configure the AD to be GC
to improve performance
At least one GC per geographical
location



Replicated to two servers for Redundancy
Build in a “Round Robin” type
of solution
Easy to integrated via ADSI,
or LDAP call
Messaging Configuration

Recipient Policies

Automatically create SMTP address
base on rules



Users/LogonName ends with <OU Name>
= @<SMTP Address>
Groups/DisplayName end with <OU
Name> = @<SMTP Address>
Multiple SMTP Address per user
Messaging Configuration

Global address List and Offline Address list




Security



Support Multiple GAL and ADL
Have a common place for all the user to look up
other users
Users/e-mail ends with <OU Name>
AllUsers@customer1 ,
 Allow = read, execute, read permissions, list
content, read properties, open address list
AdminOu@customer1
 Full administrative privilege
For MAPI users
Messaging Configuration

Outlook Web Access

Limiting MAPI/RPC lookup via AD


msExchQueryBaseDN
Using ADSIEdit.exe


ou=<ou name>, dc=<domain_name>,
dc=<root_domain>
Ex


ou=Customer1, dc=myAsp, dc= com
Per user

Scriptable via ADSI
Messaging Configuration

External DNS

Primary zones per customer




For redundancy and replication
EX.

Customer1.com
@ MX 10
MAIL
www

pointing to the Virtual IP address
for the OWA
for the SMTP address
Integrated to the AD


IN A
WWW
MX
mail.Customer1.com.
A
208.217.184.2
A
208.217.184.3
;SMTP
;OWA
AD and FE server will resolve the mailbox location
and alias for the user
Scalability And Reliability

Exchange 5.5



Designed for enterprises and SMORGs
Thousand users
MCIS


Designed for hosted configurations
Million Users




High-performance POP/IMAP/NNTP services
Chat Server
Provisioning built-in
Scales to the masses
Scalability And Reliability


Scalability and reliability through
partitioning and redundancy
Partition separate servers for:




Protocols
Storage
Directory
Add redundancy with:


Clustering
Load Balancing
Scalability And Reliability

Scaling Vertical
Version
Processor
RAM
Windows 2000 Server
4 Way SMP
4 GB RAM
Windows 2000 Advance
Server
Windows 2000 Data center
8 way SMP
8 GB RAM
32 way SMP
64 GB RAM

Scaling Horizontal
Version
Net Load Bal
Cluster serv
Windows 2000 Server
N/A
N/A
Windows 2000 Advance
Server
Windows 2000 Data center
Up to 32 nodes
2 node
Up to 32 nodes
4 Node Cluster
Scalability And Reliability

Network Load Balancing



TCP/IP Load Balancing
32 nodes could be view as a single server
Great for front-end servers



Used by TCP/UDP Protocols, app.
HTTP, IMAP, POP3, smtp
dynamically adjusts, distributing requests
Scalability And Reliability
FE/BE Configurations

Front-end servers are important for hosting
configurations






Provides unified namespace across the farm
Offloads SSL processing from back-ends
Provides an additional security layer
Allows for seamless server consolidation
Allows seamless distribution of user data across
multiple servers without having to re-authenticate
IMAP/POP/HTTP/WebDAV
Scalability And Reliability

Cluster Server





Application . state full, back-end servers
Fail Over in the case that the application fail
Fail Back when the server is back on line
Active || Passive application
Exchange is a Cluster aware application


A resource group is an atomic unit of fail over/
fail back


Resource.dll: Exchange wrote its own // EXCHRES.DLL
Exchange Virtual Server
Let the back end do the heavy lifting



Processing
Accessing storage
Security
Failover/User Experience
EVS2
EVS1
X
EVS1
HTTP,POP,
IMAP,MAPI
Scalability And Reliability
Partition separate servers
Router /DNS
service
resolver
Protocol
Protocol
Protocol
Protocol
Protocol
Windows
2000
Directory
Store
Store
Cluster A
Store
Store
Cluster B
Scalability And Reliability
Storage
Machine
A
Machine
B
Shared Storage
Local Attach Storage
Supported
Scalability And Reliability
Storage

2 Node Cluster

1 Server Running



2 Servers Running





Nodes = 6 storage
18 Storage
3 Servers Running





Nodes = 15
storages
60 storage
2 Servers Running

Nodes = 10 storage
30 storage
1 Server Running

4 Server Cluster
Nodes = 10 Storage
20 Storage
3 Node Cluster


Nodes = 10
storages
40 storages
1 Server Running


Nodes = 5 Storage
20 storages
Always plan for 20 Storages at most per single server
Scalability And Reliability


Scalability is priority one for most
hosting scenarios
Current scenarios:




1 million user test
FE/BE scalability
SAN testing
Large scalability labs in
Bldg 43 + MPSC
Client Scenarios
PC - Desktop
PC - Laptop
Windows Terminal
Win CE - Palm PC
Win CE – HH Pro
Smart Phones
Cellular Phones
Digital tablets
Client
OWA
Authentication Protocol
Basic
Basic + SSL
NTLM
Digest
http
https
Advantages




Basic& Digest
browser independent
HTML 3.2+
No client updates
With SSL entire
session is encrypted
O2K
NT
Basic
MAPI
POP3
IMAP4
Rich functionality
large installed base
OE
Basic
Basic over
SSL
NT
POP3
IMAP4
LDAP
large installed base
little overhead, good
performance
POP3I
MAP4
Basic
POP3
IMAP4
Light and good to just
connect
Disadvantages
No offline
capabilities
 Secure
connection
requires SSL
 SSL slows down
performance
MAPI clients only
connect to the
backend
VPN required for
MAPI
Network Traffic load
SSL slows down
performance
NT requires VPN

Lack of features
Management

Remote Management




Windows Terminal Server
MMC
Lights Out Operation
Automatic tasks




CDO / CDO EXM
ADSI
OLE DB
Objects :



Interfaces, methods, properties
Dual interfaced
C++, Visual Basic, VB Scripting Edition, Jscript
Call To Action



Follow the next session
Check the Architecture White Paper
Use the “Deployment guide”


Saturday we will build the ASP
environment
Send feedback and comments to

[email protected]
Related documents
IST346: Services - Syracuse University
IST346: Services - Syracuse University
Network Services
Network Services
Components of an operating system
Components of an operating system
1 Distributed Systems What are distributed systems? How would you
1 Distributed Systems What are distributed systems? How would you
Email Slides - University of San Francisco
Email Slides - University of San Francisco
PowerPoint 프레젠테이션 - POSTECH CSE DPNM
PowerPoint 프레젠테이션 - POSTECH CSE DPNM
Southeastern Michigan State Employees Federal Credit Union
Southeastern Michigan State Employees Federal Credit Union
FoxFiles: Getting Started What is FoxFiles?
FoxFiles: Getting Started What is FoxFiles?
Distributed Network Architecture
Distributed Network Architecture
CSS 5xx: Advanced Database Management
CSS 5xx: Advanced Database Management