cisco confidential1 application centric infrastructure gustavo santana ccie# 8806 (dc,san,r&sw)...
TRANSCRIPT
Cisco Confidential 1
APPLICATION CENTRIC INFRASTRUCTURE
Gustavo Santana
CCIE# 8806 (DC,SAN,R&Sw)
Data Center TSA
Cisco Confidential 2
SDN Hype
Cisco Confidential 3
Software Defined Networking (SDN) is an approach to building computer networks that
separates and abstracts elements of these systems
What is SDN?(per Wikipedia definition)
Cisco Confidential 4
“A platform for developing new control planes”
“An open solution for VM mobility in the Data-Center”
“An open solution for customized flow forwarding control in and between Data Centers”
“A means to do traffic engineering
without MPLS”
“A solution to build a very large scale layer-2 network”
“A way to build my own security/encryption solution”
“A way to reduce theCAPEX of my network
and leverage commodityswitches”
“A way to optimize broadcast TV delivery by optimizing cache placement and
cache selection”“A means to scale my fixed/mobile gateways and
optimize their placement”
“A solution to build virtual topologies
with optimum multicast forwarding
behavior”
“A way to optimize link utilization in my network enhanced, application driven routing”
“A means to get assuredquality of experience for
my cloud service offerings”
“A way to distribute policy/intent, e.g. for DDoS prevention, in the network”
“A way to configure my entire network as a whole rather than individual
devices”
“A solution to get a global view of the network – topology and state”
“Develop solutions at software speeds: I don’t want to work with my network vendor or go
through lengthy standardization.”
Common ConceptsDiverse Drivers
Different Execution Paths
Cisco Confidential 5
SDN Flavor 1:
Centralized Intelligence
Cisco Confidential 6
Network Device(router, switch, ...)
Control Plane(IOS)
Data Plane(ASIC)
Cisco Confidential 7
SDN Controller (software)
Programming(ex.: OpenFlow)
Applications
Examples: Wireless Controllers, Performance Routing (PfR), ...
Cisco Confidential 8
Cisco Confidential 9
SDN Flavor 2:
Virtual Overlays
Cisco Confidential 10
IP Network
LAXJFK
Air Traffic Control
Packets
Examples: MPLS, IPSec, OTV, ...
Cisco Confidential 11
Virtualized Server
Virtualized Server
Virtualized Server
Software
Software
SoftwareVM
VM
VM
VMVM VM
VM
VM
VM
Examples: VXLAN, NVGRE, ...
Cisco Confidential 12
Virtual Network
Physical Network
Internet / WAN
MANAGING TWO NETWORKS...
...creates complexity
Cisco Confidential 13
WHY SDN?
SIMPLICITY
SPEED
PROGRAMMABILITY
Cisco Confidential 14
A NEW NETWORK MODEL IS CERTAINLY REQUIRED
TRADITIONALNETWORK MODEL
TODAY’S SDN DATACENTER MODEL
FUTURE OPEN MODEL
Needs Agility and Time to Applications
Lacks Scale, Visibility, Security
More Complexity
Disjointed Overlay and Underlay
Open Source, Open APIs
Physical and Virtual
Policy and Automation
Software-BasedNetwork Virtualization
Application CentricInfrastructure
Network of Boxes
Cisco Confidential 15
WHY INNOVATE IN HARDWARE TOO?A
dopt
ion
True virtualization and abstraction requires hardware innovation
Server Virtualization
Network Virtualization
Intel/AMD Virtualization Support
ACI-Enabled Hardware
Cisco Confidential 16
ACI BUILDING BLOCKS
APPLICATION-CENTRIC INFRASTRUCTURE
APPLICATION POLICY INFRASTRUCTURE
CONTROLLER
APIC
OPEN STANDARDS OPEN SOURCE
NEXUS 9000 SERIES
INDUSTRY LEADINGECOSYSTEM
Cisco Confidential 17
WHAT IS NETWORK CONTROL?
A B
YES You can talk about this:{ subject*, L4 Ports, … }
End point A can talk to end point B
C D
NO You can’t
End point C can’t talk to end point D
the rest is path optimization
Cisco Confidential 18
THE ACI FABRIC
Draw a software boundary around collection of switches to make a system
Policies Who can talk to whom What about Topology control
API
Performed by embedded policy enforcement agents (PEs)
Cisco Confidential 19
Cisco Confidential 20
MULTI-HYPERVISOR-READY FABRIC
Network Admin
Application Admin
PHYSICALSERVER
VLANVXLAN
VLANNVGRE
VLANVXLAN
VLAN
ESX Hyper-V KVM
Hypervisor Management
ACI FabricAPIC
Cisco Confidential 21
SPOTLIGHT ON THREE GAME-CHANGING DIFFERENTIATORS
APPLICATION-CENTRIC POLICY MODEL
PHYSICAL + VIRTUAL OPEN AND SECURE
• Operationally Simple• Lowest TCO• Zero-touch provisioning
• Health Metrics• Visibility / Telemetry• Troubleshooting
• Open APIs / Open Source• Advanced Security• 3rd Party Integration
1 2 3
Cisco Confidential 22
www.cisco.com/go/aci
Cisco Confidential 23
NEXUS 9000 INNOVATIONS
NEXUS 9500PRICE POWER EFFICIENCYPROGRAMMABILITYPORT DENSITYPERFORMANCE
PRICECOST STRUCTURE for 1G to 1/10GT and 10G to 40G migration 50% less ASICS
PERFORMANCE INDUSTRY LEADING PRICE / LINE CARD BANDWITH1.92 Tbps per slot100G ready
PORT DENSITY20% HIGHER Non-blocking Density
PROGRAMMABILITYJSON/XML APILinux Container for customer apps
POWER EFFICIENCYSTATE OF THE ART BACKPLANE FREE DESIGN15% greater power and cooling efficiency
MERCHANT+ ASIC APPROACHInnovation in Cisco ASICs