dubrovnik, croatia, south east europe 20-22 may, 2013 ... · introducing one platform kit - onepk...
Post on 06-Oct-2020
4 Views
Preview:
TRANSCRIPT
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Connect 1 1 © 2012 Cisco and/or its affiliates. All rights reserved.
Programmability of Cisco DC Infrastructure
Ulrich Hamm
Sascha Merg
Dubrovnik, Croatia, South East Europe
20-22 May, 2013
Agenda
Cisco ONE onePK Introduction
UCS Programming
Demo
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 3
Preserve What’s Working Evolve for Emerging
Requirements
Evolution of the Intelligent Network
Evolve the Network for the Next Wave of Application
Requirements
• Resiliency
• Scale and Security
• Rich feature-set
• Operational
Simplicity
• Programmability
• Application aware +
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 4
Approach 1 Approach 2 Approach 3
Implementing Customer Use Cases
Apps
Controller
OpenFlow
Device
Device w/
OpenFlow
Device
Apps Apps
APIs
Network Network
Cisco Approach: Flexibility to Choose—The Power of “AND”
Physical
and
Virtual
Virtual Overlays
Other
Agents
Tightly-coupled HW & SW Loosely-coupled HW & SW Logical/overlay Networks
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 5
a
Announcing : Cisco Open Network Environment
Industry’s Most Comprehensive Networking Portfolio
Hardware + Software Physical + Virtual Network + Compute
Network
Platform
APIs
Controllers
and Agents
Virtual
Overlays
Applications
www.cisco.com/go/one
onePK
SDN:
Controller SW
OpenFlow on C3K
N1KV
Enhancements
for Open Clouds
Evolving How We Interact With The Network Operating System
IOS
Events
App
EEM
(TCL) Actions
Routing
Data Plane
Policy
Interface
Monitoring
Discov
ery
CLI
AAA
SNMP
HTML
XML
Syslog
Span
Netflow
CDP
Routing Protocols
New Paradigm Traditional
Approach
Evolving How We Interact With The Network Operating System
App
C
Java
IOS
Events
App
EEM
(TCL) Actions
Routing
Data Plane
Policy
Interface
Monitoring
Discov
ery
CLI
AAA
SNMP
HTML
XML
Syslog
Span
Netflow
CDP
Routing Protocols
An
yth
ing
yo
u c
an
th
ink o
f
Introducing One Platform Kit - onePK
Any
Cisco
Router
or
Switch
Applications
That YOU
Create
onePK
Flexible development environment to:
• Innovate
• Extend
• Automate
• Customize
• Enhance
• Modify
onePK Architecture
C, JAVA Program
onePK API Presentation
onePK API Infrastructure
IOS / XE
(Catalyst, ISR,
ASR1K)
NXOS
(Nexus Platforms)
IOS XR
(ASR 9K, CRS)
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 10
onePK Application Hosting Options
Container
Network OS
onePK Apps
Process Hosting
Container
onePK Apps
Network OS
Bla
de
Blade Hosting
onePK
Apps
Exte
rnal
Serv
er
Network OS
End-Point Hosting
Write Once, Run Anywhere
onePK APIs are Grouped in Service Sets
Base Service Set Description
Data Path Provides packet delivery service to application: Copy, Punt, Inject
Policy
Provides filtering (NBAR, ACL), classification (Class-maps, Policy-maps),
actions (Marking, Policing, Queuing, Copy, Punt) and applying policies to
interfaces on network elements
Routing Read RIB routes, add/remove routes, receive RIB notifications
Element Get element properties, CPU/memory statistics, network interfaces, element
and interface events
Discovery L3 topology and local service discovery
Utility Syslog events notification, Path tracing capabilities (ingress/egress and
interface stats, next-hop info, etc.)
Developer Debug capability, CLI extension which allows application to extend/integrate
application’s CLIs with network element
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 12
Getting Properties and Statistics E
lem
ent System
Interfaces
Discovery
Routing
QoS
Security
CPU, Memory, Platform, Serial #, Versions,
Uptime, Location, OIR, CLI Changes
Port, Slot, BW, MTU, TX/RX, BPS, PPS,
Errors, Other Stats, Config, Link Changes
CDP, Topology Graph, Edges, Nodes,
Topology Changes
Ap
plic
atio
n
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 13
Setting Properties and Statistics E
lem
ent System
Interfaces
Discovery
Ap
plic
atio
n
Location
IP address, MTU, Clear Stats, Shut/No
Shut
Filters
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 14
Example: Simplified Management
NX3K
CRS
9K
1K
ISR
1. Network begins with
mismatched parameters on
either side of link (e.g. MTU)
2. Application checks parameters
on either side and identifies
mismatches (red lines)
3. Application sets parameters to
match (lines turn green)
4. Application registers for
events related to parameters
change.
5. Users logs into console and
manually changes parameter.
Topology indicates change.
1 2
MTU 1500
MTU 1518
MTU 1518
MTU 1600
MTU 1600
MTU 1500
MTU 1500
MTU 1000
4
5
3
Problem: Misconfigurations cause network outages, degrade performance,
impact SLAs.
Value proposition: Get, set, and detect configuration changes via cross-platform
API
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 15
Example: Custom Encryption
Problem: Customers want custom encryption on specific traffic types
Value proposition: Punt traffic of interest, encrypt, and re-inject.
onePK
application
onePK
application
1. Policy APIs on ingress router
are set to punt telnet and
syslog to app
2. App encrypts punted traffic
and re-injects into data path.
3. Policy APIs on egress router
punt telnet and syslog to app
4. App decrypts punted traffic
and re-injects into data path.
5. Traffic that does not match
policy passes through
unencrypted.
Unsecure
Network
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 16
Example: Custom Encryption
Problem: Customers want custom encryption on specific traffic types
Value proposition: Punt traffic of interest, encrypt, and re-inject.
onePK
application
onePK
application
telnet
encrypt
encrypt
telnet telnet
1 1. Policy APIs on ingress router
are set to punt telnet and
syslog to app
2. App encrypts punted traffic
and re-injects into data path.
3. Policy APIs on egress router
punt telnet and syslog to app
4. App decrypts punted traffic
and re-injects into data path.
5. Traffic that does not match
policy passes through
unencrypted.
2
3
4
Unsecure
Network
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 17
Example: Custom Encryption
Problem: Customers want custom encryption on specific traffic types
Value proposition: Punt traffic of interest, encrypt, and re-inject.
onePK
application
onePK
application
1. Policy APIs on ingress router
are set to punt telnet and
syslog to app
2. App encrypts punted traffic
and re-injects into data path.
3. Policy APIs on egress router
punt telnet and syslog to app
4. App decrypts punted traffic
and re-injects into data path.
5. Traffic that does not match
policy passes through
unencrypted.
http http
http
Unsecure
Network 5
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 18
Programming UCS
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 19
Cisco Unified Computing System Cisco UCS™ Manager (Read / Write Configuration Interfaces)
UCS Manager GUI and CLI
Cisco UCS Fabric Interconnects (Read Only / Cut Through Interfaces)
SNMP, Syslog, SMTP, SMASH CLP, CIM XML, Smart Call Home
20, 40, 48, and 96 ports
Cisco UCS I/O modules
Cisco UCS Blade Server Chassis
Cisco UCS Blade and Rack
Servers (Cut through Interfaces to CIMC)
Cisco UCS I/O Adapters
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 20
Programmatic Infrastructure • Comprehensive XML API, standards-based interfaces
• Bi-Directional access to physical & logical internals
XML API
Direct UCS CLI UCS GUI 3rd Party Customer
Self Serve portals
Management Tools
Auditing Tools
System Status
Physical Inventory
Logical Inventory
• Broad 3rd party integration support
• Faster custom integration for customer use cases
• Consistent data and views across ALL interfaces
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 21
UCS XML API Overview
• Communicates over HTTP / HTTPS
• XML Based, Transactional
• XML Transactions are Order Agnostic
• Standard Request / Response cycle
• Role Based Authentication
• Object Model Hierarchy
• Built-in Object Browser
• Published XML Schema
• Java Doc Style documentation
• High Availability
• Event Stream
UCS XML API Features
XML API
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 22
Interfaces for 3rd Party Integration
STANDARD Interfaces
UCS Full featured Interface
UCSM CLI
UCS XML API
Remote KVM
IPMI
SMASH CLP Syslog
CIM XML
Serial Over LAN
SNMP
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 23
XML API - Access to all UCS Components Our GUI is a JAVA based Management Console; the Console is build on our comprehensive XML API
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 24
XML API - Access to all UCS Components
The Command Line Interface (UCSM CLI) is based on same API
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 25
What toolkits are available?
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 26
Web based developer
community
Downloads: UCS Platform Emulator (UCSPE)
goUCS Automation Tool
XML API, Perl, PowerShell code
samples
Microsoft – PowerShell library,
SCOM MP
HP Software – HPOM, HPOO
integration modules
Documentation: Programming & developer guides
White papers
Reference guides (XML model,
Faults)
Collaboration: Blogs
Peer to peer forums
Videos
Access to Cisco subject matter
experts
Cisco Developer Network
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 27
UCS Platform Emulator (UCSPE)
• Full featured emulator for the UCS Manager
• Installs as a Virtual Machine
• Provides complete support for all XML API calls
• Object Browser to peruse the UCSM model
• Import & replicate existing live UCS Manager physical inventory
• Share saved physical inventories among UCS Platform Emulators
• Drag-n-drop hardware builder to create custom physical inventory
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 28
UCS Manager: Know XML, no problem
With goUCS: No XML, no problem
Convert UCS Manager actions into automation scripts
1
2
3
Perform single action on UCS Manager and capture it
Create script in goUCS framework with variable substitutions
Re-run script over and over against single or multiple UCSMs
What’s new with goUCS v2.0
Linux & Mac OS X Support
HTTPS Communication Support
Tagged Based User Arguments
Performance Enhancements
goUCS Automation Toolkit
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 30
As integrated and composable as BASH/KSH
As programmatic as Perl/Python/Ruby
As production oriented as AS400 CL/VMS DCL
As accessible as file systems
PowerShell Mission
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 31
Cisco UCS PowerTool Supported Objects and Assets
• Service Profiles
Policies (Firmware, Boot Order, vNIC / vHBA config, Storage, IPMI, SoL, BIOS)
Pools (WWN, UUID, MAC)
Configuration Faults
Launch UCS KVM for SP
• Servers
Hardware - CPU, Memory, Adaptors, CIMC)
Power Operations
Power / cooling / network /environmental statistical data
Hardware Faults
• Chassis
Hardware – Power Supply / Fan Modules / IO Modules
Power / cooling / network / environmental statistical data
Config and Hardware Faults
• Fabric Interconnect
Hardware – Power Supply / Fan Modules / Network Expansion Modules
Power / cooling / network/ environmental statistical data
Network Elements (VLAN, VSAN, QoS, Port Profiles)
• Configuration Operations
Pools (WWN, UUID, MAC, IP)
Policy creation, manipulation, deletion, and consumption
vNIC / vHBA Templates
Service profile template creation, cloning, deletion, and consumption
Simplistic service profile creation (with a limited scope of what is available to configure)
Expert SP creation (use variabilized XML w/ config file)
Compare Managed Objects across orgs and/or domains
Sync Managed Objects across orgs and/or domains
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 32
Root
sys org-root
UCS XML Hierarchy Overview
switch-A chassis-1
fabric
ls-bob
org-prod
blade-1 slot-2
ether fc
port-5 port-1
adaptor-1
eth0
computeboard
fc0 temp stats
power stats
macPool
mac pool
block
lsPower lsBinding
boot policy
bios policy
LAN cloud
SAN cloud
bob vsan10
Legend
equipment network logical
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 33
Root
sys org-root
UCS XML Hierarchy Overview
switch-A chassis-1
fabric
ls-bob
org-prod
blade-1 slot-2
ether fc
port-5 port-1 eth0
computeboard
fc0 temp stats
power stats
macPool
mac pool
block
lsPower lsBinding
boot policy
bios policy
LAN cloud
SAN cloud
vlan10 vsan10
Legend
equipment network logical
Get-UcsChassis -Id 1 | Get-UcsBlade -SlotId 1 | Get-UcsAdaptorUnit -Id 1 | Get-UcsAdaptorHostEthIf
adaptor-1
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 34
Root
sys org-root
UCS XML Hierarchy Overview
switch-A chassis-1
fabric
ls-bob
org-prod
blade-1 slot-2
ether fc
port-5 port-1
adaptor-1
eth0
computeboard
fc0 temp stats
power stats
macPool
mac pool
block
lsPower lsBinding
boot policy
bios policy
LAN cloud
SAN cloud
vlan10 vsan10
Legend
equipment network logical
Get-UcsChassis -Id 1 | Get-UcsBlade -SlotId 1 | Get-UcsComputeBoard | Get-UcsComputeMbTempStats
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 35
Root
sys org-root
UCS XML Hierarchy Overview
switch-A chassis-1
fabric
ls-bob
org-prod
blade-1 slot-2
ether fc
port-5 port-1
adaptor-1
eth0
computeboard
fc0 temp stats
power stats
macPool
mac pool
block
lsPower lsBinding
boot policy
bios policy
LAN cloud
SAN cloud
bob vsan10
Legend
equipment network logical
Get-UcsLanCloud | Add-UcsVlan -name bob -id 222
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 36
Root
sys org-root
UCS XML Hierarchy Overview
switch-A chassis-1
fabric
ls-bob
org-prod
blade-1 slot-2
ether fc
port-5 port-1
adaptor-1
eth0
computeboard
fc0 temp stats
power stats
bob123
mac pool block
lsPower lsBinding
boot policy
bios policy
LAN cloud
SAN cloud
bob vsan10
Legend
equipment network logical
Get-UcsOrg -name root | Add-UcsMacPool -Name bob123 | Add-UcsMacMemberBlock –From 20:00:00:11:22:00 -To 20:00:00:11:22:10
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 37
Root
sys org-root
UCS XML Hierarchy Overview
switch-A chassis-1
fabric
ls-bob
org-prod
blade-1 slot-2
ether fc
port-5 port-1
adaptor-1
eth0
computeboard
fc0 temp stats
power stats
macPool
mac pool
block
lsPower lsBinding
boot policy
bios policy
LAN cloud
SAN cloud
bob vsan10
Legend
equipment network logical
Associate-UcsServiceProfile -ServiceProfile (Get-UcsOrg -name root/prod | Get-UcsServiceProfile –name bob) -Blade (Get-UcsBlade -Chassis 1 -SlotId 1)
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 38
Demo
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 39
Thank you.
top related