cisco sd-access building the routed underlay · cisco sd-access building the routed underlay rahul...
TRANSCRIPT
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Cisco Spark
Questions? Use Cisco Spark to communicate with the speaker after the session
1. Find this session in the Cisco Live Mobile App
2. Click “Join the Discussion”
3. Install Spark or go directly to the space
4. Enter messages/questions in the space
How
cs.co/ciscolivebot#BRKCRS-2816
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Cisco’s Intent-based Networking
Intent Context
Security
Learning
Network Infrastructure
DNA Center
AnalyticsPolicy Automation
Switching Routers Wireless
Powered by Intent.Informed by Context.
The Network. Intuitive.
4BRKCRS-2816
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Automated Network Fabric
Single Fabric for Wired & Wireless with Workflow-based Automation
Insights & Telemetry
Analytics and insights into user and application behavior
Identity-based Policy & Segmentation
Decoupled security policy definition from VLAN and IP Address
Software-Defined AccessNetworking at the Speed of Software!
DNA Center
AnalyticsPolicy Automation
IoT Network Employee Network
SDA-ExtensionUser Mobility
Policy stays with user
5BRKCRS-2816
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Tuesday (Jan 30) Wednesday (Jan 31) Thursday (Feb 01) Friday (Feb 02)08:00-11:00 11:00-13:00 13:00-15:00 15:00-18:00 08:00-11:00 11:00-13:00 13:00-15:00 15:00-18:00 08:00-11:00 11:00-13:00 13:00-15:00 15:00-18:00 08:00-11:00 11:00-13:00 13:00-15:00 15:00-18:00
Software Defined Access Cisco Live Barcelona - Session Map
BRKCRS-2810Solution Overview
BRKCRS-2815Design & Scale
BRKCRS-2811External Connect
BRKEWN-2020Wireless Overview
BRKCRS-3811Policy Management
BRKDCN-2489DC Integration
LTRCRS-2810 (1)Hands-On Lab
BRKCRS-2814Assurance
You Are Here
Missed One? Sessions are available online @ CiscoLive.com
BRKEWN-2021SDA Wireless Setup
BRKCRS-2816Routed Underlay
LTRCRS-2810 (2)Hands-On Lab
BRKCRS-2812Migration
Agenda
Underlay Automation OverviewWhat is Underlay Automation?
Network PlanningWhat design and planning required?
Underlay Network DesignHow to design and build sites?
Underlay Network Provisioning How discover device and complete automation?
Take-AwayNext Step for Overlay Automation
1
2
3
4
5
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 8
Underlay AutomationSoftware Defined Access
What this session will cover: This session introduces the zero-configuration Underlay Automation to enable new SD-
Access solution. The simplified procedure builds the solid error-free underlay network
foundation to seamlessly start building an SD-Access overlay networks.
This session divides in four simple steps to successfully complete step-by-step Underlay
Automation – Plan | Design | Discover | Provision. This Underlay Automation capability
helps accelerating building SD-Access overlay networks without traditional network planning
and implementation process.
Objectives of this session:The audience will understand the overall Underlay Automation solution, and the parts that
work together to create the solution. The audience should be able to follow describe
procedure for their Day-0 or Day-2 network automation.
Session Overview and Objectives
BRKCRS-2816
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 10
What is Underlay Network?Traditional Networks
Core
Access
Dist
Core
Traditional LAN and WLAN network infrastructure and designs
Variable network size – Three-Tier or Collapsed models
Traditional network designs – Multilayer or Routed Access providing reachability
BRKCRS-2816
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 11
What is Underlay Automation Automating Traditional Networks
Core
Access
Dist
Core
Ease of new LAN network deployments for Campus or Branch networks
Complete network automation to accelerate building SDA overlay networks
Flexible software design to on-board new switch during network expansion
BRKCRS-2816
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 12
Underlay Automation OverviewSimplified Procedure
✅
✅
✅
✅
Verify Network Design
Verify System support
Prepare IP Services
Plan
BRKCRS-2816
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 12
Underlay Automation OverviewSimplified Procedure
Design
Sites across geographic
Global network services
Design IP Address Pools
✅
✅
✅
✅
Verify Network Design
Verify System support
Prepare IP Services
Plan
BRKCRS-2816
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 12
Underlay Automation OverviewSimplified Procedure
Design
Sites across geographic
Global network services
Design IP Address Pools
Discover
Discover Network devices
Physical Topology
Network Readiness
✅
✅
✅
✅
Verify Network Design
Verify System support
Prepare IP Services
Plan
BRKCRS-2816
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 12
Underlay Automation OverviewSimplified Procedure
Design
Sites across geographic
Global network services
Design IP Address Pools
Discover
Discover Network devices
Physical Topology
Network Readiness
Provision
Dynamic discovery & automation
Optimized routing design
Resilient underlay settings
✅
✅
✅
✅
Verify Network Design
Verify System support
Prepare IP Services
Plan
SDA Ready Network
4 Step Process
BRKCRS-2816
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 14
Plan – Understanding Device Roles
Core
Cisco DNA Center
Seed Device
Intermediate system(s) between Core and new network block
Key system to discover, automate and on-board new Catalyst switches in network
BRKCRS-2816
ProvisionDiscoverDesignPlan
SeedSeed
Seed
Underlay Automation Block
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 14
Plan – Understanding Device Roles
Core
Cisco DNA Center
PnP Agent
PnP-AgentPnP Agent
PnP AgentPnP AgentPnP Agent
Seed Device
Intermediate system(s) between Core and new network block
Key system to discover, automate and on-board new Catalyst switches in network
PnP-Agent Device
Catalyst switch with factory-default settings and waiting at startup-wizard state
Interconnect between Seed and another PnP-Agent device in the network
BRKCRS-2816
ProvisionDiscoverDesignPlan
SeedSeed
Seed
Underlay Automation Block
SeedSeed
Core
Cisco DNA Center
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 15
Plan – Underlay Automation Boundary
Core
Cisco DNA Center
Layer 3
Layer 2
Underlay Automation Boundary
Underlay Automation Boundary
Maximum Automation boundary limited to 2 hop count from Seed Device
Supporting common hierarchical and structured Enterprise network designs
BRKCRS-2816
ProvisionDiscoverDesignPlan
2 Tier – Collapsed Core Design
Seed
PnP Agent
3 Tier – Campus Design
Seed
PnP Agent
PnP Agent
Extended Campus Design
Seed
PnP Agent
PnP Agent
PnP Agent
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 16
Plan – Network Support
Core
Cisco DNA Center
Access
Dist
Core
Layer 3
Layer 2
PnP AgentPnP Agent
PnP AgentPnP AgentPnP Agent
Seed Seed
PnP AgentPnP AgentPnP Agent
Seed Seed
2 Tier – Collapsed Core Design
Underlay Automation Boundary
3 Tier – Campus Design
Underlay Network Discovery
Dynamic and on-demand network discovery process
Seed system programmed to on-board new Catalyst switches with zero configurations
Flexible Discovery Support
Flexible Multi-tier network topologies support – Two or Three-Tier Designs
Day-2 Underlay Automation support for new systems in P2P topologies
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 17
Plan – Catalyst Switch Role Support
Core
Cisco DNA Center
Access
Dist
Core
PnP AgentPnP Agent
PnP AgentPnP AgentPnP Agent
Seed Seed
PnP AgentPnP AgentPnP Agent
Seed Seed
2 Tier – Collapsed Core Design 3 Tier – Campus Design
BRKCRS-2816
ProvisionDiscoverDesignPlan
Layer Role Supported Switch
Distribution Seed Catalyst 9500 | 3850-XS | 6800
Access PnP Agent Catalyst 9400 | 9300 | 4500E | 3850 | 3650
Layer Role Supported Switch
Core Seed Catalyst 9500 | 3850-XS | 6800
Distribution PnP Agent Catalyst 9000 | 3850-XS | 4500E | 3850 | 3650
Access PnP Agent Catalyst 9400 | 9300 | 4500E | 3850 | 3650
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Core
18
Plan – IP Address Plan
10.128.0.0/16 IS-IS Routing Domain
PnP AgentPnP Agent
PnP AgentPnP AgentPnP Agent
Seed Seed
S1(config)# interface Loopback 0
S1(config-if)# ip address <ip> <mask>
!
Seed-1
S1(config)# interface Loopback 0
S1(config-if)# ip address <ip> <mask>
!
Seed-2
IP Address Plan
Plan and identify Network Address range for Underlay Automation network
Manually configure IP subnet on inter-seed switch interfaces from Underlay network address range if there is interconnection
Interface Address Plan
Leverage existing Loopback interface or create new if required
Loopback IP could be outside of domain Network address range, but must be reachable to DNA-C
Seed devices must not use LAN Automation address pool
BRKCRS-2816
Cisco DNA Center
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 19
Plan – Seed Switch IP Routing Configurations
IP Routing ConfigurationOptional if IS-IS routing protocol in Core
Else, manually create IS-IS routing instance without area tag and mutually redistribute between routing domains. No additional IS-IS routing configurations required.
Summarize Network range to Core
OSPF EIGRP
BRKCRS-2816
Core
Cisco DNA Center
ProvisionDiscoverDesignPlan
10.128.0.0/16 IS-IS Routing Domain
PnP AgentPnP Agent
PnP AgentPnP AgentPnP Agent
Seed Seed
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 19
Plan – Seed Switch IP Routing Configurations
S1(config)# router isis
S1(config-router)# redistribute ospf <id> metric <count>
!
S1(config)# router ospf <id>
S1(config-router)# redistribute connected route-map <name>
S1(config-router)# summary-address 10.128.0.0 255.255.0.0
Seed-1 OSPF
S2(config)# router isis
S2(config-router)# redistribute ospf <id> metric <count>
!
S2(config)# router ospf <id>
S2(config-router)# redistribute connected route-map <name>
S2(config-router)# summary-address 10.128.0.0 255.255.0.0
Seed-2 OSPF
IP Routing ConfigurationOptional if IS-IS routing protocol in Core
Else, manually create IS-IS routing instance without area tag and mutually redistribute between routing domains. No additional IS-IS routing configurations required.
Summarize Network range to Core
OSPF EIGRP
BRKCRS-2816
Core
Cisco DNA Center
ProvisionDiscoverDesignPlan
10.128.0.0/16 IS-IS Routing Domain
PnP AgentPnP Agent
PnP AgentPnP AgentPnP Agent
Seed Seed
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 19
Plan – Seed Switch IP Routing Configurations
S1(config)# router isis
S1(config-router)# redistribute ospf <id> metric <count>
!
S1(config)# router ospf <id>
S1(config-router)# redistribute connected route-map <name>
S1(config-router)# summary-address 10.128.0.0 255.255.0.0
Seed-1 OSPF
S2(config)# router isis
S2(config-router)# redistribute ospf <id> metric <count>
!
S2(config)# router ospf <id>
S2(config-router)# redistribute connected route-map <name>
S2(config-router)# summary-address 10.128.0.0 255.255.0.0
Seed-2 OSPF
S1(config)# router isis
S1(config-router)# redistribute eigrp <id> metric <count>
!
S1(config)# interface <id>
S1(config-if)# description CONNECTED TO CORE
S1(config-if)# ip summary-address eigrp <AS> 10.128.0.0 255.255.0.0
EIGRP
S2(config)# router isis
S2(config-router)# redistribute eigrp <id> metric <count>
!
S2(config)# interface <id>
S2(config-if)# description CONNECTED TO CORE
S2(config-if)# ip summary-address eigrp <AS> 10.128.0.0 255.255.0.0
EIGRP
IP Routing ConfigurationOptional if IS-IS routing protocol in Core
Else, manually create IS-IS routing instance without area tag and mutually redistribute between routing domains. No additional IS-IS routing configurations required.
Summarize Network range to Core
OSPF EIGRP
BRKCRS-2816
Core
Cisco DNA Center
ProvisionDiscoverDesignPlan
10.128.0.0/16 IS-IS Routing Domain
PnP AgentPnP Agent
PnP AgentPnP AgentPnP Agent
Seed Seed
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 20
Plan – DNA-C IP Routing Configurations
DNA-C IP Routing ConfigurationDNA-C must have end-to-end IP reachability
In Single-Home design the DNA-C performs host function with Default Gateway providing IP routing.
In Multi-Home design, the DNA-C must have static route to LAN Automation network(s) via secondary interface.
BRKCRS-2816
ProvisionDiscoverDesignPlan
10.128.0.0/16 IS-IS Routing Domain
PnP AgentPnP Agent
PnP AgentPnP AgentPnP Agent
Seed Seed
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 20
Plan – DNA-C IP Routing Configurations
DNA-C IP Routing ConfigurationDNA-C must have end-to-end IP reachability
In Single-Home design the DNA-C performs host function with Default Gateway providing IP routing.
In Multi-Home design, the DNA-C must have static route to LAN Automation network(s) via secondary interface.
BRKCRS-2816
ProvisionDiscoverDesignPlan
10.128.0.0/16 IS-IS Routing Domain
PnP AgentPnP Agent
PnP AgentPnP AgentPnP Agent
Seed Seed
Eth-0 Management Interface :
IP Address : <IP_Address>
Netmask : <Mask>
Gateway : <Default_Gateway>
DNA-C
Core
Cisco DNA Center
Single-Home
Eth-0
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 20
Plan – DNA-C IP Routing Configurations
DNA-C IP Routing ConfigurationDNA-C must have end-to-end IP reachability
In Single-Home design the DNA-C performs host function with Default Gateway providing IP routing.
In Multi-Home design, the DNA-C must have static route to LAN Automation network(s) via secondary interface.
BRKCRS-2816
DNA-C
Eth-0 Management Interface :
IP Address : <IP_Address_1>
Netmask : <Mask>
Gateway : <Default_Gateway>
ProvisionDiscoverDesignPlan
10.128.0.0/16 IS-IS Routing Domain
PnP AgentPnP Agent
PnP AgentPnP AgentPnP Agent
Seed Seed
Eth-0 Management Interface :
IP Address : <IP_Address>
Netmask : <Mask>
Gateway : <Default_Gateway>
DNA-C
Core
Cisco DNA Center
Single-Home
Eth-0
Multi-Home
Core
Cisco DNA Center
Eth-0
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 20
Plan – DNA-C IP Routing Configurations
DNA-C IP Routing ConfigurationDNA-C must have end-to-end IP reachability
In Single-Home design the DNA-C performs host function with Default Gateway providing IP routing.
In Multi-Home design, the DNA-C must have static route to LAN Automation network(s) via secondary interface.
BRKCRS-2816
DNA-C
Eth-0 Management Interface :
IP Address : <IP_Address_1>
Netmask : <Mask>
Gateway : <Default_Gateway>
ProvisionDiscoverDesignPlan
10.128.0.0/16 IS-IS Routing Domain
PnP AgentPnP Agent
PnP AgentPnP AgentPnP Agent
Seed Seed
Eth-0 Management Interface :
IP Address : <IP_Address>
Netmask : <Mask>
Gateway : <Default_Gateway>
DNA-C
Core
Cisco DNA Center
Single-Home
Eth-0
Eth-1 Interface :
IP Address : <IP_Address_2>
Netmask : <Mask>
Gateway : <Skip>
Static Route : <LAN_Automation-Net>/<mask>/GW
Eth-1
Multi-Home
Core
Cisco DNA Center
Eth-0
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 21
Plan – Endpoint Connections
BRKCRS-2816
ProvisionDiscoverDesignPlan
Core
10.128.0.0/16
PnP AgentPnP Agent
PnP AgentPnP AgentPnP Agent
Seed Seed
Endpoint Integration
The PnP Agent may contend for DHCP address with attached Endpoints
Underlay automation process may fail if the LAN Pool is consumed by the Endpoints connected to PnP Agents
Recommended to connect Endpoints post successful Underlay Automation procedure
Cisco DNA Center
Temp DHCP Server
Layer 2 Domain
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 21
Plan – Endpoint Connections
BRKCRS-2816
ProvisionDiscoverDesignPlan
Core
10.128.0.0/16
PnP AgentPnP Agent
PnP AgentPnP AgentPnP Agent
Seed Seed
Endpoint Integration
The PnP Agent may contend for DHCP address with attached Endpoints
Underlay automation process may fail if the LAN Pool is consumed by the Endpoints connected to PnP Agents
Recommended to connect Endpoints post successful Underlay Automation procedure
Cisco DNA Center
Before Underlay Automation
Not Recommended
Temp DHCP Server
Layer 2 Domain
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 21
Plan – Endpoint Connections
BRKCRS-2816
ProvisionDiscoverDesignPlan
Core
10.128.0.0/16 IS-IS Routing Domain
Seed Seed
Endpoint Integration
The PnP Agent may contend for DHCP address with attached Endpoints
Underlay automation process may fail if the LAN Pool is consumed by the Endpoints connected to PnP Agents
Recommended to connect Endpoints post successful Underlay Automation procedure
Cisco DNA Center
After Underlay Automation
Recommended
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 22
Plan – Seed Switch Feature Validation
✅ Verify no conflicting Spanning-Tree CLI is not present, i.e. ”spanning-tree portfast default”
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 22
Plan – Seed Switch Feature Validation
✅ Verify no conflicting Spanning-Tree CLI is not present, i.e. ”spanning-tree portfast default”
BRKCRS-2816
✅ Verify Seed device do not have any network address belonging to LAN Automation IP Pool
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 22
Plan – Seed Switch Feature Validation
✅ Verify no conflicting Spanning-Tree CLI is not present, i.e. ”spanning-tree portfast default”
BRKCRS-2816
✅ Verify Seed device do not have any network address belonging to LAN Automation IP Pool
ProvisionDiscoverDesignPlan
✅ Pre-configure IS-IS routing without Area Tag. Mutual route-redistribution. No additional IS-IS
routing configuration implemented.
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 22
Plan – Seed Switch Feature Validation
✅ Verify no conflicting Spanning-Tree CLI is not present, i.e. ”spanning-tree portfast default”
✅ Verify SSH configuration terminal access is present. Telnet is unsupported
BRKCRS-2816
✅ Verify Seed device do not have any network address belonging to LAN Automation IP Pool
ProvisionDiscoverDesignPlan
✅ Pre-configure IS-IS routing without Area Tag. Mutual route-redistribution. No additional IS-IS
routing configuration implemented.
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 24
Design – Overview
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 25
Design – Overview
Network Hierarchy
Geographic Network Configuration
Network Hierarchy – Site | Bldg | Floor
Add Floor Plan
Global Network Services Configuration
System Management Services
Network Address Plan
Network Settings
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 26
Design – Create Global Network Regions
Add Regions or Sites1
Add Regions or Sites
Add Area - can be Region across Global
Area is optional. Sites is mandatory.
Manual or Bulk configuration thru CSV
1
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 26
Design – Create Global Network Regions
Add Regions or Sites1
Add Network Hierarchy2
Add Regions or Sites
Add Area - can be Region across Global
Area is optional. Sites is mandatory.
Manual or Bulk configuration thru CSV
1 Add Network Hierarchy
Add Sites including Buildings & Floors
Auto geo-location based on Address
Manual or Bulk configuration thru CSV
2
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 26
Design – Create Global Network Regions
Add Regions or Sites
Add Area - can be Region across Global
Area is optional. Sites is mandatory.
Manual or Bulk configuration thru CSV
1 Add Network Hierarchy
Add Sites including Buildings & Floors
Auto geo-location based on Address
Manual or Bulk configuration thru CSV
2
30
50
10
5
25
32
28
24
34
44 20
11
19
30
50
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 29
Design – Global Network Settings
Global Network Services
Consistent configuration compliance with global services
Configure services required globally inherited
Not actual GUI
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 29
Design – Global Network Settings
Global Network Services
Consistent configuration compliance with global services
Configure services required globally inherited
Area Network Services
Assign Per-Area or Regional services
Override service inheritance from parent
All device under Area inherits services
Not actual GUI
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 31
Design – Configure Global Network Services
Network Services Configurations
Add all required network services
Multiple servers can be added for load sharing and redundancy
Configuration Compliance
Provision step configures systems
Updates can re-provisioned for Day-2 operation
Add and Configure Server Address1
Save Configuration2
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 32
Design – Configure Global Device Credentials
CLI Credential Configurations
Common login credentials for all devices under selected hierarchy
Multiple local login accounts can be created and automated
SNMP Credentials
Automate SNMP community configuration.
Multiple SNMP community possible. Only one active
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 32
Design – Configure Global Device Credentials
CLI Credential Configurations
Common login credentials for all devices under selected hierarchy
Multiple local login accounts can be created and automated
SNMP Credentials
Automate SNMP community configuration.
Multiple SNMP community possible. Only one active
BRKCRS-2816
ProvisionDiscoverDesignPlan
Configure and Select Credentials 1
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 32
Design – Configure Global Device Credentials
CLI Credential Configurations
Common login credentials for all devices under selected hierarchy
Multiple local login accounts can be created and automated
SNMP Credentials
Automate SNMP community configuration.
Multiple SNMP community possible. Only one active
BRKCRS-2816
ProvisionDiscoverDesignPlan
Configure and Select Credentials 1
Configure and Select SNMP2
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 32
Design – Configure Global Device Credentials
CLI Credential Configurations
Common login credentials for all devices under selected hierarchy
Multiple local login accounts can be created and automated
SNMP Credentials
Automate SNMP community configuration.
Multiple SNMP community possible. Only one active
Save Configuration3
BRKCRS-2816
ProvisionDiscoverDesignPlan
Configure and Select Credentials 1
Configure and Select SNMP2
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 33
Design – Global Network Range
10.0.0.0/8
Global Network Range
Design Global Network Range
Structured Enterprise IP network design
Planned and divided regionally for optimal network communications
Not actual GUI
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 33
Design – Global Network Range
10.0.0.0/8
Global Network Range
/16
/16
/19
/21
/21/21
/21
/19
/19
/19
/19
/19
/21
/21
/16
/16/21
Design Global Network Range
Structured Enterprise IP network design
Planned and divided regionally for optimal network communications
Design Area IP Pool
Subset of Global range assigned to Area, Site for multi-function distribution purpose.
Reserve IP Pool from Area to automate network intent for various operations
Not actual GUI
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 34
Design – Configure Global Network Range
Global Network Range
Structured Enterprise IP network design
Planned and divided regionally for optimal network communications
Global IP Pool
IP address repository for multi-function distribution purpose to Area, Site etc.
Reserve IP Pool from Area to automate network intent for various operations
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 34
Design – Configure Global Network Range
Global Network Range
Structured Enterprise IP network design
Planned and divided regionally for optimal network communications
Global IP Pool
IP address repository for multi-function distribution purpose to Area, Site etc.
Reserve IP Pool from Area to automate network intent for various operations
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 34
Design – Configure Global Network Range
Global Network Range
Structured Enterprise IP network design
Planned and divided regionally for optimal network communications
Global IP Pool
IP address repository for multi-function distribution purpose to Area, Site etc.
Reserve IP Pool from Area to automate network intent for various operations
Assign unique IP Pool Name1
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 34
Design – Configure Global Network Range
Global Network Range
Structured Enterprise IP network design
Planned and divided regionally for optimal network communications
Global IP Pool
IP address repository for multi-function distribution purpose to Area, Site etc.
Reserve IP Pool from Area to automate network intent for various operations
Assign unique IP Pool Name1
Network Range for specific Area 2
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 34
Design – Configure Global Network Range
Global Network Range
Structured Enterprise IP network design
Planned and divided regionally for optimal network communications
Global IP Pool
IP address repository for multi-function distribution purpose to Area, Site etc.
Reserve IP Pool from Area to automate network intent for various operations
Assign unique IP Pool Name1
Network Range for specific Area 2
Classful Network Mask 3
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 34
Design – Configure Global Network Range
Global Network Range
Structured Enterprise IP network design
Planned and divided regionally for optimal network communications
Global IP Pool
IP address repository for multi-function distribution purpose to Area, Site etc.
Reserve IP Pool from Area to automate network intent for various operations
Assign unique IP Pool Name1
Network Range for specific Area 2
Classful Network Mask 3
Gateway IP Address 4
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 34
Design – Configure Global Network Range
Global Network Range
Structured Enterprise IP network design
Planned and divided regionally for optimal network communications
Global IP Pool
IP address repository for multi-function distribution purpose to Area, Site etc.
Reserve IP Pool from Area to automate network intent for various operations
Assign unique IP Pool Name1
Network Range for specific Area 2
Classful Network Mask 3
Gateway IP Address 4
Save to create new entry5
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 35
Design – Configure LAN Pool at Site
Reserve LAN IP Pool
Configure Pool Name and Type = LAN
One Fabric Domain = One LAN Pool
Select Parent Pool to reserve Network Address Range
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 35
Design – Configure LAN Pool at Site
Reserve LAN IP Pool
Configure Pool Name and Type = LAN
One Fabric Domain = One LAN Pool
Select Parent Pool to reserve Network Address Range
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 35
Design – Configure LAN Pool at Site
Reserve LAN IP Pool
Configure Pool Name and Type = LAN
One Fabric Domain = One LAN Pool
Select Parent Pool to reserve Network Address Range
LAN IP Assignments
Supported Netmask Range – 8 – 24
Dynamic IP address assignment from the LAN pool
Add more as network grow
Assign unique LAN Pool Name1
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 35
Design – Configure LAN Pool at Site
Reserve LAN IP Pool
Configure Pool Name and Type = LAN
One Fabric Domain = One LAN Pool
Select Parent Pool to reserve Network Address Range
LAN IP Assignments
Supported Netmask Range – 8 – 24
Dynamic IP address assignment from the LAN pool
Add more as network grow
Assign unique LAN Pool Name1
Select LAN from menu 2
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 35
Design – Configure LAN Pool at Site
Reserve LAN IP Pool
Configure Pool Name and Type = LAN
One Fabric Domain = One LAN Pool
Select Parent Pool to reserve Network Address Range
LAN IP Assignments
Supported Netmask Range – 8 – 24
Dynamic IP address assignment from the LAN pool
Add more as network grow
Assign unique LAN Pool Name1
Select LAN from menu 2
Select Area Network Range 3
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 35
Design – Configure LAN Pool at Site
Reserve LAN IP Pool
Configure Pool Name and Type = LAN
One Fabric Domain = One LAN Pool
Select Parent Pool to reserve Network Address Range
LAN IP Assignments
Supported Netmask Range – 8 – 24
Dynamic IP address assignment from the LAN pool
Add more as network grow
Assign unique LAN Pool Name1
Select LAN from menu 2
Select Area Network Range 3
Assign LAN Pool Address and Mask 4
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 35
Design – Configure LAN Pool at Site
Reserve LAN IP Pool
Configure Pool Name and Type = LAN
One Fabric Domain = One LAN Pool
Select Parent Pool to reserve Network Address Range
LAN IP Assignments
Supported Netmask Range – 8 – 24
Dynamic IP address assignment from the LAN pool
Add more as network grow
Assign unique LAN Pool Name1
Select LAN from menu 2
Select Area Network Range 3
Assign LAN Pool Address and Mask 4
Reserve to create new entry5
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 36
Design – Configuration Summary
Build Network Hierarchy based on geographic locations
Configure Network Services – Global | Area | Site level
Configure Network Address Range – Global | Area | Site level
Configure LAN IP Pool from Parent – Global | Area | Site level
Step-1
Step-2
Step-3
Step-4
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 38
Discovery – Overview
Core
Cisco DNA Center
Access
Dist
Core
Layer 3
Layer 2
PnP AgentPnP Agent
PnP AgentPnP AgentPnP Agent
Seed Seed
PnP AgentPnP AgentPnP Agent
Seed Seed
2 Tier – Collapsed Core Design
Underlay Automation Boundary
3 Tier – Campus Design
Underlay Network Discovery
Dynamic and on-demand network discovery process
Seed system programmed to on-board new Catalyst switches with zeroconf
Flexible Discovery Support
Flexible network topologies with Dual or Single Seed system
Day-2 Underlay Automation support for new systems
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 39
Discovery – Seed System Discovery
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 40
Discovery – Seed System Discovery
Seed System Discovery
Initial automation-step to add Seed system in DNA-C inventory
Assign Seed system Loopback IP range to initiate SNMP-based discovery
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 40
Discovery – Seed System Discovery
Seed System Discovery
Initial automation-step to add Seed system in DNA-C inventory
Assign Seed system Loopback IP range to initiate SNMP-based discovery
Assign Discovery Profile Name1
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 40
Discovery – Seed System Discovery
Seed System Discovery
Initial automation-step to add Seed system in DNA-C inventory
Assign Seed system Loopback IP range to initiate SNMP-based discovery
Assign Discovery Profile Name1
Seed-1-Loopback IP Seed-2-Loopback IP
Assign Seed System IP Range2
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 40
Discovery – Seed System Discovery
Seed System Discovery
Initial automation-step to add Seed system in DNA-C inventory
Assign Seed system Loopback IP range to initiate SNMP-based discovery
Assign Discovery Profile Name1
Retain Global Settings unless unique3
Seed-1-Loopback IP Seed-2-Loopback IP
Assign Seed System IP Range2
Save Configuration4
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 41
Discovery – Seed System Discovery
Verify successful discovery1
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 42
Discovery – Seed System Inventory
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 43
Discovery – Seed System Inventory
Seed System Discovery
Seed device automatically added in Inventory. Discovers system information
Prepares for Underlay network infrastructure discovery and automation
BRKCRS-2816
✅
✅
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 44
Discovery – Configuration Summary
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 44
Discovery – Configuration Summary
Build Discovery Profile
Assign Primary and Secondary Seed System IP address to discover
Retain remaining parameters unless unique value
Step-1
Step-2
Step-3
Step-4
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 46
Provision – Underlay Automation
Underlay Provision
DNA-C Provision supports Underlay and Overlay network automation
All systems under Seed are dynamically discovered and programmed using PnP function
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 47
Provision – Add Seed Systems to Site
Underlay Provision
After successful Step-2 discovery the Seed systems are automatically added in Provision table
Add Seed systems to a Building of an Site where deployed for logical grouping
BRKCRS-2816
Add Seed system to Site1
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 47
Provision – Add Seed Systems to Site
Underlay Provision
After successful Step-2 discovery the Seed systems are automatically added in Provision table
Add Seed systems to a Building of an Site where deployed for logical grouping
BRKCRS-2816
Add Seed system to Site1
Update Software if needed2
Upgrade Software
Upgrade Cisco IOS software on Seed device(s) if new version required
Optional step to proceed further on Underlay Automation
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 48
Provision – Device Inventory Views
✅
✅
BRKCRS-2816
✅
✅
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 48
Provision – Device Inventory Views
Change Topology View 1
Underlay Provision
Device Inventory provides two views providing unique functions – Table and Topology
Table view provides device inventory and states
Topology view provides Provision function
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 49
Provision – Initiate Discovery Process
Select Seed Systems
Click each discovered seed system and select ”Discover and Provision”
Both systems are programmed with all required parameters to successfully discover and automate all systems
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 49
Provision – Initiate Discovery Process
Select Seed Systems
Click each discovered seed system and select ”Discover and Provision”
Both systems are programmed with all required parameters to successfully discover and automate all systems
BRKCRS-2816
Select Primary Seed-1 System1
S1 S2
Select Secondary Seed-2 System2
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 50
Provision – Start Automation
Start Automation Process
Primary Seed is temporarily programmed with DHCP and options. Automatic failover to Secondary if Primary fails during automation.
Selected Ports are automated to discover direct and in-direct attached PnP-Agent switches
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 50
Provision – Start Automation
Start Automation Process
Primary Seed is temporarily programmed with DHCP and options. Automatic failover to Secondary if Primary fails during automation.
Selected Ports are automated to discover direct and in-direct attached PnP-Agent switches
BRKCRS-2816
Click LAN Automation1
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 50
Provision – Start Automation
Select Site2
Start Automation Process
Primary Seed is temporarily programmed with DHCP and options. Automatic failover to Secondary if Primary fails during automation.
Selected Ports are automated to discover direct and in-direct attached PnP-Agent switches
BRKCRS-2816
Click LAN Automation1
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 50
Provision – Start Automation
Select Site2
Select Seed Devices3
Start Automation Process
Primary Seed is temporarily programmed with DHCP and options. Automatic failover to Secondary if Primary fails during automation.
Selected Ports are automated to discover direct and in-direct attached PnP-Agent switches
BRKCRS-2816
Click LAN Automation1
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 50
Provision – Start Automation
Select Site2
Select Site LAN IP Pool 4
Select Seed Devices3
Start Automation Process
Primary Seed is temporarily programmed with DHCP and options. Automatic failover to Secondary if Primary fails during automation.
Selected Ports are automated to discover direct and in-direct attached PnP-Agent switches
BRKCRS-2816
Click LAN Automation1
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 50
Provision – Start Automation
Select Site2
Optional. Configure Name Prefix5
Select Site LAN IP Pool 4
Select Seed Devices3
Start Automation Process
Primary Seed is temporarily programmed with DHCP and options. Automatic failover to Secondary if Primary fails during automation.
Selected Ports are automated to discover direct and in-direct attached PnP-Agent switches
BRKCRS-2816
Click LAN Automation1
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 50
Provision – Start Automation
Select Site2
Optional. Configure Name Prefix5
Select Site LAN IP Pool 4
Select Underlay Network Interface6
Select Seed Devices3
Start Automation Process
Primary Seed is temporarily programmed with DHCP and options. Automatic failover to Secondary if Primary fails during automation.
Selected Ports are automated to discover direct and in-direct attached PnP-Agent switches
BRKCRS-2816
Click LAN Automation1
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 50
Provision – Start Automation
Select Site2
Optional. Configure Name Prefix5
Select Site LAN IP Pool 4
Select Underlay Network Interface6
Select Seed Devices3
Start Automation Process
Primary Seed is temporarily programmed with DHCP and options. Automatic failover to Secondary if Primary fails during automation.
Selected Ports are automated to discover direct and in-direct attached PnP-Agent switches
BRKCRS-2816
Start Underlay Discovery7
Click LAN Automation1
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 50
Provision – Start Automation
Select Site2
Optional. Configure Name Prefix5
Select Site LAN IP Pool 4
Select Underlay Network Interface6
Select Seed Devices3
Start Automation Process
Primary Seed is temporarily programmed with DHCP and options. Automatic failover to Secondary if Primary fails during automation.
Selected Ports are automated to discover direct and in-direct attached PnP-Agent switches
BRKCRS-2816
Start Underlay Discovery7
Click LAN Automation1
ProvisionDiscoverDesignPlan
See Notes for more details
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 51
Provision – Stop Automation
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 51
Provision – Stop Automation
BRKCRS-2816
Check Discovery Status1
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 51
Provision – Stop Automation
BRKCRS-2816
✅
✅
⚠
️
⚠
️
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 51
Provision – Stop Automation
BRKCRS-2816
✅
✅
✅
✅
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 51
Provision – Stop Automation
BRKCRS-2816
✅
✅
✅
✅
Stop Automation Process
All discovered and automated Switches must reach to Completed status. Process time may vary on network size
Stop the automation. This action completes process and transitions all switches to final state
Stop Underlay Automation2
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 51
Provision – Stop Automation
BRKCRS-2816
✅
✅
✅
✅
Stop Automation Process
All discovered and automated Switches must reach to Completed status. Process time may vary on network size
Stop the automation. This action completes process and transitions all switches to final state
Stop Underlay Automation2
ProvisionDiscoverDesignPlan
See Notes for more details
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 52
Provision – Global Network Services
BRKCRS-2816
✅
✅
✅
✅
✅
✅
✅
✅
✅
✅
✅
✅
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 52
Provision – Global Network Services
Global Service Provision
Provision all Global or Area configured services to newly discovered switches
The services configuration are supported over non-Mgmt Core network infrastructure
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 53
Provision – Global Network Services
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 54
Provision – Global Network Services
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 54
Provision – Global Network Services
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 55
Provision – Global Network Services
BRKCRS-2816
✅
✅
✅
✅
✅
✅
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 55
Provision – Global Network Services
Global Service Provision
Provision all Global or Area configured services to newly discovered switches
The services configuration are supported over non-Mgmt Core network infrastructure
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 56
Provision – Define System Roles
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 57
Provision – Define System Roles
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 57
Provision – Define System Roles
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 57
Provision – Define System Roles
BRKCRS-2816
System Role
Administrator must select each switch and define its network role – Access | Distribution | Core
DNA-C auto-arranges topology view based on user selection
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 58
Provision – Define System Roles
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 58
Provision – Define System Roles
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 58
Provision – Define System Roles
BRKCRS-2816
System Role
Administrator must select each switch and define its network role – Access | Distribution | Core
DNA-C auto-arranges topology view based on user selection
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 59
Provision – Validate Configuration
BRKCRS-2816
Underlay Automation Configurations
DNA-C automates broad set of network configuration on Seed and PnP Agent Switches
All systems are programmed with variety of technologies and best practices for reliable underlay network infrastructure
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 59
Provision – Validate Configuration
BRKCRS-2816
Underlay Automation Configurations
DNA-C automates broad set of network configuration on Seed and PnP Agent Switches
All systems are programmed with variety of technologies and best practices for reliable underlay network infrastructure
ProvisionDiscoverDesignPlan
Underlay Automation
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 59
Provision – Validate Configuration
BRKCRS-2816
Underlay Automation Configurations
DNA-C automates broad set of network configuration on Seed and PnP Agent Switches
All systems are programmed with variety of technologies and best practices for reliable underlay network infrastructure
ProvisionDiscoverDesignPlan
Point-to-Point Interface configurations
Loopback Interface configurations
Underlay Automation
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 59
Provision – Validate Configuration
BRKCRS-2816
Underlay Automation Configurations
DNA-C automates broad set of network configuration on Seed and PnP Agent Switches
All systems are programmed with variety of technologies and best practices for reliable underlay network infrastructure
ProvisionDiscoverDesignPlan
Point-to-Point Interface configurations
Loopback Interface configurations
IS-IS Routing Protocol
BFD, IP Dampening, High Availability
Underlay Automation
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 59
Provision – Validate Configuration
BRKCRS-2816
Underlay Automation Configurations
DNA-C automates broad set of network configuration on Seed and PnP Agent Switches
All systems are programmed with variety of technologies and best practices for reliable underlay network infrastructure
ProvisionDiscoverDesignPlan
Point-to-Point Interface configurations
Loopback Interface configurations
IS-IS Routing Protocol
BFD, IP Dampening, High Availability
IP Routing Security, Device Security
AAA, 802.1X, IP Device Tracking
Underlay Automation
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 59
Provision – Validate Configuration
BRKCRS-2816
Underlay Automation Configurations
DNA-C automates broad set of network configuration on Seed and PnP Agent Switches
All systems are programmed with variety of technologies and best practices for reliable underlay network infrastructure
ProvisionDiscoverDesignPlan
Point-to-Point Interface configurations
Loopback Interface configurations
IS-IS Routing Protocol
BFD, IP Dampening, High Availability
IP Routing Security, Device Security
AAA, 802.1X, IP Device Tracking
SNMP Traps, Syslog, Radius
SSH, HTTP and OOB Access
Management
Underlay Automation
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 59
Provision – Validate Configuration
BRKCRS-2816
Microsoft Word
Document
Underlay Automation Configurations
DNA-C automates broad set of network configuration on Seed and PnP Agent Switches
All systems are programmed with variety of technologies and best practices for reliable underlay network infrastructure
ProvisionDiscoverDesignPlan
Click to verify configurations
Point-to-Point Interface configurations
Loopback Interface configurations
IS-IS Routing Protocol
BFD, IP Dampening, High Availability
IP Routing Security, Device Security
AAA, 802.1X, IP Device Tracking
SNMP Traps, Syslog, Radius
SSH, HTTP and OOB Access
Management
Underlay Automation
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 60
Provision – SD-Access Ready!
BRKCRS-2816
💡Resynchronize Device Inventory if partial topology discovered
SD-Access Ready
DNA-C auto-arranges topology view based on user selection.
All systems are programmed and ready to build an overlay networks
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 61
Provision – Configuration Summary
Add Seed systems to Site
Start Underlay Network discovery and automation
Stop Underlay Network discovery and automation
Provision Global Network services
Designate System role to build structure network topology
Step-1
Step-2
Step-3
Step-4
Step-5
BRKCRS-2816
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Access Network Expansion
Seed
62BRKCRS-2816
Core
Cisco DNA Center
Access Network Expansion
Automate from Parent Seed device as Access network expands.
Transparent process with existing switches sharing same or different LAN Pool
PnP AgentPnP Agent
Provision – Network Expansion
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Access Network Expansion
Seed
62BRKCRS-2816
Core
Cisco DNA Center
Access Network Expansion
Automate from Parent Seed device as Access network expands.
Transparent process with existing switches sharing same or different LAN Pool
PnP AgentPnP Agent
Provision – Network Expansion
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Access Network Expansion
Seed
62BRKCRS-2816
Core
Cisco DNA Center
Access Network Expansion
Automate from Parent Seed device as Access network expands.
Transparent process with existing switches sharing same or different LAN Pool
PnP AgentPnP Agent PnP Agent
Provision – Network Expansion
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Access Network Expansion
Seed
62BRKCRS-2816
Core
Cisco DNA Center
Access Network Expansion
Automate from Parent Seed device as Access network expands.
Transparent process with existing switches sharing same or different LAN Pool
PnP AgentPnP Agent PnP Agent
Provision – Network Expansion
ProvisionDiscoverDesignPlan
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
PnP Agent
PnP Agent
Access Network Expansion
Seed
62BRKCRS-2816
Core
Cisco DNA Center
Access Network Expansion
Automate from Parent Seed device as Access network expands.
Transparent process with existing switches sharing same or different LAN Pool
Distribution Network Expansion
Seed
PnP AgentPnP Agent PnP Agent
Provision – Network Expansion
ProvisionDiscoverDesignPlan
Distribution Network Expansion
Automate new network block from Parent Seed device. Reuse or create new LAN Pool.
Use Distribution as Seed if Access expands
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
PnP Agent
PnP Agent
Access Network Expansion
Seed
62BRKCRS-2816
Core
Cisco DNA Center
Access Network Expansion
Automate from Parent Seed device as Access network expands.
Transparent process with existing switches sharing same or different LAN Pool
Distribution Network Expansion
Seed
PnP AgentPnP Agent PnP Agent
PnP Agent
PnP Agent
PnP Agent
PnP Agent
Provision – Network Expansion
ProvisionDiscoverDesignPlan
Distribution Network Expansion
Automate new network block from Parent Seed device. Reuse or create new LAN Pool.
Use Distribution as Seed if Access expands
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
PnP Agent
PnP Agent
Access Network Expansion
Seed
62BRKCRS-2816
Core
Cisco DNA Center
Access Network Expansion
Automate from Parent Seed device as Access network expands.
Transparent process with existing switches sharing same or different LAN Pool
Distribution Network Expansion
Seed
PnP AgentPnP Agent PnP Agent
PnP Agent
PnP Agent
PnP Agent
PnP Agent
Provision – Network Expansion
ProvisionDiscoverDesignPlan
Distribution Network Expansion
Automate new network block from Parent Seed device. Reuse or create new LAN Pool.
Use Distribution as Seed if Access expands
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 64
Key Takeaway
30
50
10
5
25
32
28
24
34
44 20
11
19
30
50
✅ Accelerate SD-Access deployment with Zero configuration Underlay Automation
Underlay networks are optimized, resilient with integrated Cisco Best Practices
Four simplified steps to rapidly automate large network infrastructure
Automate Global or Area local system and network services for consistency
Flexible Automated solution for Day-0 or Day-2 network deployments
✅
✅
✅
✅
BRKCRS-2816
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 65
SD-Access SupportFabric ready platforms for your digital ready network
BRKCRS-2816
ASR-1000-X
ASR-1000-HX
ISR 4430
ISR 4450
WirelessRoutingSwitching
AIR-CT5520
AIR-CT8540
Wave 2 APs (1800,2800,3800)
Wave 1 APs* (1700,2700,3700)
Catalyst 9400
Catalyst 9300
Catalyst 9500
Catalyst 4500E Catalyst 6800 Nexus 7700
Catalyst 3650 and 3850
AIR-CT3504
ISRv/CSRv
* with Caveats
Extended
CDB
3560-CX
NEW
NEW
NEW
NEW
NEW
IE (2K/3K/4K/5K)
NEW
NEW
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 66
What to Do Next?
Get SD-Access Capable Devices
with DNA Advantage OS License
Get DNA Center Appliances
with DNA Center Software
Cisco Services can help you
to Test - Migrate - Deploy
Refresh your
Hardware & Software
Deploy the
DNA Center
SD-Access
Capable
Engage with
Cisco Services
DNA
Center
Cisco
Services
Advisory
Implementation
Technical
Optimization Training
Managed
BRKCRS-2816
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
The First Step… #NewEra
#CiscoDNA#NetworkIntuitive
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Cisco Spark
Questions? Use Cisco Spark to communicate with the speaker after the session
1. Find this session in the Cisco Live Mobile App
2. Click “Join the Discussion”
3. Install Spark or go directly to the space
4. Enter messages/questions in the space
How
cs.co/ciscolivebot#BRKCRS-2816
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
• Please complete your Online Session Evaluations after each session
• Complete 4 Session Evaluations & the Overall Conference Evaluation (available from Thursday) to receive your Cisco Live T-shirt
• All surveys can be completed via the Cisco Live Mobile App or the Communication Stations
Don’t forget: Cisco Live sessions will be available for viewing on-demand after the event at www.ciscolive.com/global/on-demand-library/.
Complete Your Online Session Evaluation
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Continue Your Education
• Demos in the Cisco campus
• Walk-in Self-Paced Labs
• Tech Circle
• Meet the Engineer 1:1 meetings
• Related sessions
73BRKCRS-2816