行业研究公司研究宏观策略财报招股书会议纪要海南封关低空经济 DeepSeek AIGC 大模型

普适数据中心架构（PDx™）：数字办公场所蓝图

信息技术2022-12-02里瑞通x***

AI智能总结

现代数字工作场所架构解决方案

当前远程工作架构已无法满足现代数字工作场所的需求，主要问题包括：

性能瓶颈：传统集中式IT架构导致延迟敏感型应用性能下降，数据密集型工作流程受阻
安全挑战：集中式安全堆栈灵活性不足，数据存储和应用程序托管存在性能问题
体验问题：用户通过互联网路由导致体验下降，安全策略无法有效覆盖所有访问点

解决方案架构

提出"三中心"架构优化数字工作场所体验：

1. 网络中心（Network Hub）

部署位置：在枢纽节点部署，连接云服务商和互联网接入点
核心功能：
- 多ISP和互联网交换冗余接入
- 企业安全堆栈部署在边界
- 支持IoT、VPN等远程接入服务
- 关键应用服务本地化部署
- 安全连接云生态系统
性能提升：降低延迟，提升带宽效率，实现高性能多云连接

2. 数据中心（Data Hub）

部署位置：靠近控制中心，通过Campus/Metro连接
核心功能：
- 企业数据集中交换与分析
- 数据湖（原始数据）与数据仓库（处理数据）分离存储
- 高性能计算GPU农场就近部署
- 严格访问控制与日志记录
合规性：支持区域数据湖和分布式数据仓库，保障数据主权

3. 控制中心（Control Hub）

部署位置：连接网络中心，支持多种连接方式（服务交换、MPLS等）
核心功能：
- 安全策略分布式执行
- 威胁情报集中管理
- 遗留应用集中托管
- 资源编排与管理系统
安全强化：减少IT漏洞点，实现入出口策略控制

核心优势

性能优化：通过本地化部署减少网络瓶颈，提升应用响应速度
安全增强：零信任模型实现分布式安全管控，消除单点故障
成本效益：按需部署基础设施，提升带宽利用率
全球覆盖：支持多区域部署，实现无缝全球体验

技术实现

网络层：多运营商冗余、MPLS/SDN技术、运营商以太网
数据层：混合云架构、数据湖仓一体、GPU计算集群
安全层：分布式SIEM、动态访问控制、加密传输

研究结论

通过部署网络、数据和控制三中心架构，企业可构建：

分布式IT基础设施：打破数据地心引力，支持分布式工作流
统一管理平台：实现全球一致的安全策略和性能标准
弹性扩展能力：满足业务规模变化和多云环境需求

该架构是Pervasive Datacenter Architecture（PDx™）的一部分，提供标准化实施模式，加速全球数字业务部署。

INTRODUCTION Many of today’s remote worker architectures are not suited to the modern digital workplace. Having been deployed as an extension of the classic centralizedIT infrastructure stack, they are not optimized for latency-sensitive and data-intensive modern application workflows. Furthermore, the inflexible nature of acentralized security stack, and the performance challenges of centralized data repositories and application hosting have a negative impact on the quality ofexperience. The modern digital workplace experience is designed for ubiquitous, performant, and always-on secure access to data and applications. Users unpredictability routed acrossInternet negatively impacts customer/employee experience3 Capacity is hosted at points ofpresence and interconnected to cloudsto create elasticity1 Increased usage results in computebound performance bottlenecks1 Users, things, networks and capacity areintegrated within proximity of centers of dataexchange to optimize workflow & experience3 Backhauls the user to centralizedsystems, resulting in network boundperformance bottlenecks2 Traffic is consolidated at points ofpresence and interconnected to localservices optimized for latency, throughputand ubiquity2 Centralized security enforcement viabackhaul doesn’t address vulnerabilitypoints or improve security posture4 Security controls are hosted and intercon-nected at points of presence to enable policyenforcement at ingress/egress points4 SOLUTION STEP 3 IMPLEMENT HYBRID IT CONTROLS STEP 1 REWIRE THE NETWORK STEP 2 OPTIMIZE DATA EXCHANGE Performant Quality of Experience Zero Trust Security Model ACTION: IMPLEMENT NETWORK HUB ACTION: IMPLEMENT CONTROL HUB ACTION: IMPLEMENT DATA HUB Deploy network hubs to optimize traffic flows, host capacityand connect to clouds and service providers at points ofpresence. Deploy control hubs to distribute security policy enforce-ment and inspection. Deploy data hubs at points of presence to leverage centersof data exchange. +Host IT and security controls and enable policy enforcement at dataingress/egress points to maintain data compliance and sovereignty+Deploy tailored infrastructure footprints to accommodate specialpurpose security, telemetry and logging infrastructure configurations+Operate deployments as one seamless, secure global data centerinfrastructure +Solve global coverage, capacity and connectivity needs+Deploy tailored infrastructure matched to business need irrespectiveof size, scale or configuration+Operate deployments as a seamless extension of global infrastructurewith consistent experience, security and resiliency +Interconnect ecosystems of networks, clouds and partners+Secure multi-cloud access with direct interconnection (physicaland virtual)+Segment, tailor and provision interconnection matched to businessneeds in terms of type, speed, destination, participant or time of day OUTCOME+Reduce IT vulnerability points and improve security posture OUTCOME+Implement distributed data staging and aggregation OUTCOME+Reduce latency and increase throughput +Deploy telemetry and apply policy at points of ingress/egress+Reduce operational complexity and simplify infrastructure management +Deploy regional data lakes and distributed data warehouses+Maintain compliance and sovereignty +Increase bandwidth per employee cost-effectively+Enable performant multi-cloud connectivity SOLUTION STEP 1 REWIRE THE NETWORK ACTION: IMPLEMENT NETWORK HUB Deploy network hubs to optimize traffic flows, host capacityand connect to clouds and service providers at points ofpresence. 1.Multiple ISPs and Internet Exchanges are connected toedge routers to provide redundant Internet access to thecustomers’ environment.2.Enterprise security stack is deployed to border between theenterprise network and Internet resources.3.IoT, VPN, and Client VPN devices are deployed behind theenterprise security stack to provide gateway services toremote devices, users, and partners.4.Network Core layer provides enterprise routing andsegmentation. Highly scalable data center routing andswitching platform ties all enterprise resources together.5.Tie remote locations and users to the enterprise usingreliable and cost effective network solutions such as broad-band internet, Cellular (4G or 5G), or other WAN technologies. 6.Leverage services, such as carrier ethernet to tie remotelocations as well as headquarter locations to the NetworkHub. Leverage services such as carrier ethernet to tieremote locations as well as headquarter locations to theNetwork Hub. Leverage MPLS network where required or aspart of the migration strategy to a modern SDN architecture.7. Critical applications services can be located inside of theNetwork Hub to reduce latency and provide a distributedarchitecture for these services.8.Securely interconnect to cloud ecosystem, including leadingIAAS, PAAS and SAAS providers. Build hybrid and multi-cloud deployments. Provide cloud services with enterprisesecu

点击免费查看完整报告