Cisco Confidential 1

APPLICATION CENTRIC INFRASTRUCTURE

Gustavo Santana

CCIE# 8806 (DC,SAN,R&Sw)

Data Center TSA

Cisco Confidential 2

SDN Hype

Cisco Confidential 3

Software Defined Networking (SDN) is an approach to building computer networks that

separates and abstracts elements of these systems

What is SDN?(per Wikipedia definition)

Cisco Confidential 4

“A platform for developing new control planes”

“An open solution for VM mobility in the Data-Center”

“An open solution for customized flow forwarding control in and between Data Centers”

“A means to do traffic engineering

without MPLS”

“A solution to build a very large scale layer-2 network”

“A way to build my own security/encryption solution”

“A way to reduce theCAPEX of my network

and leverage commodityswitches”

“A way to optimize broadcast TV delivery by optimizing cache placement and

cache selection”“A means to scale my fixed/mobile gateways and

optimize their placement”

“A solution to build virtual topologies

with optimum multicast forwarding

behavior”

“A way to optimize link utilization in my network enhanced, application driven routing”

“A means to get assuredquality of experience for

my cloud service offerings”

“A way to distribute policy/intent, e.g. for DDoS prevention, in the network”

“A way to configure my entire network as a whole rather than individual

devices”

“A solution to get a global view of the network – topology and state”

“Develop solutions at software speeds: I don’t want to work with my network vendor or go

through lengthy standardization.”

Common ConceptsDiverse Drivers

Different Execution Paths

Cisco Confidential 5

SDN Flavor 1:

Centralized Intelligence

Cisco Confidential 6

Network Device(router, switch, ...)

Control Plane(IOS)

Data Plane(ASIC)

Cisco Confidential 7

SDN Controller (software)

Programming(ex.: OpenFlow)

Applications

Examples: Wireless Controllers, Performance Routing (PfR), ...

Cisco Confidential 8

Cisco Confidential 9

SDN Flavor 2:

Virtual Overlays

Cisco Confidential 10

IP Network

LAXJFK

Air Traffic Control

Packets

Examples: MPLS, IPSec, OTV, ...

Cisco Confidential 11

Virtualized Server

Virtualized Server

Virtualized Server

Software

Software

SoftwareVM

VM

VM

VMVM VM

VM

VM

VM

Examples: VXLAN, NVGRE, ...

Cisco Confidential 12

Virtual Network

Physical Network

Internet / WAN

MANAGING TWO NETWORKS...

...creates complexity

Cisco Confidential 13

WHY SDN?

SIMPLICITY

SPEED

PROGRAMMABILITY

Cisco Confidential 14

A NEW NETWORK MODEL IS CERTAINLY REQUIRED

TRADITIONALNETWORK MODEL

TODAY’S SDN DATACENTER MODEL

FUTURE OPEN MODEL

Needs Agility and Time to Applications

Lacks Scale, Visibility, Security

More Complexity

Disjointed Overlay and Underlay

Open Source, Open APIs

Physical and Virtual

Policy and Automation

Software-BasedNetwork Virtualization

Application CentricInfrastructure

Network of Boxes

Cisco Confidential 15

WHY INNOVATE IN HARDWARE TOO?A

dopt

ion

True virtualization and abstraction requires hardware innovation

Server Virtualization

Network Virtualization

Intel/AMD Virtualization Support

ACI-Enabled Hardware

Cisco Confidential 16

ACI BUILDING BLOCKS

APPLICATION-CENTRIC INFRASTRUCTURE

APPLICATION POLICY INFRASTRUCTURE

CONTROLLER

APIC

OPEN STANDARDS OPEN SOURCE

NEXUS 9000 SERIES

INDUSTRY LEADINGECOSYSTEM

Cisco Confidential 17

WHAT IS NETWORK CONTROL?

A B

YES You can talk about this:{ subject*, L4 Ports, … }

End point A can talk to end point B

C D

NO You can’t

End point C can’t talk to end point D

the rest is path optimization

Cisco Confidential 18

THE ACI FABRIC

Draw a software boundary around collection of switches to make a system

Policies Who can talk to whom What about Topology control

API

Performed by embedded policy enforcement agents (PEs)

Cisco Confidential 19

Cisco Confidential 20

MULTI-HYPERVISOR-READY FABRIC

Network Admin

Application Admin

PHYSICALSERVER

VLANVXLAN

VLANNVGRE

VLANVXLAN

VLAN

ESX Hyper-V KVM

Hypervisor Management

ACI FabricAPIC

Cisco Confidential 21

SPOTLIGHT ON THREE GAME-CHANGING DIFFERENTIATORS

APPLICATION-CENTRIC POLICY MODEL

PHYSICAL + VIRTUAL OPEN AND SECURE

• Operationally Simple• Lowest TCO• Zero-touch provisioning

• Health Metrics• Visibility / Telemetry• Troubleshooting

• Open APIs / Open Source• Advanced Security• 3rd Party Integration

1 2 3

Cisco Confidential 22

www.cisco.com/go/aci

Cisco Confidential 23

NEXUS 9000 INNOVATIONS

NEXUS 9500PRICE POWER EFFICIENCYPROGRAMMABILITYPORT DENSITYPERFORMANCE

PRICECOST STRUCTURE for 1G to 1/10GT and 10G to 40G migration 50% less ASICS

PERFORMANCE INDUSTRY LEADING PRICE / LINE CARD BANDWITH1.92 Tbps per slot100G ready

PORT DENSITY20% HIGHER Non-blocking Density

PROGRAMMABILITYJSON/XML APILinux Container for customer apps

POWER EFFICIENCYSTATE OF THE ART BACKPLANE FREE DESIGN15% greater power and cooling efficiency

MERCHANT+ ASIC APPROACHInnovation in Cisco ASICs