devnet-1150under the hood: cisco intercloud services

Under the Hood: Cisco Intercloud Services

David Cheperdak

DEVNET-1150

© 2015 Cisco and/or its affiliates. All rights reserved. Cisco PublicPresentation ID

Intercloud: Under the Hood

2

© 2015 Cisco and/or its affiliates. All rights reserved. Cisco PublicPresentation ID 3

• A Vehicle Analogy: Introduction

• Your Controls: Control and Abstraction

• The Dashboard: Visibility and Operation

• Built Tough: Availability and Resiliency

• Horsepower and Torque: Scale and Capacity

• Vehicle Security: Security and Tenancy

• Industry Standards: Interoperability and Intercloud

Agenda


A Vehicle Analogy: Introduction

4

Intercloud is the vehicle to embody and fulfill enterprise need for a

next generation computingplatform


A Vehicle Analogy: Concepts

5

• A vehicle abstracts complexity away from the driver to shift focus from operations to results

• Vehicles are evolving and becoming extensions of productivity to support a mobile culture

• Vehicle automation improves safety, performance, efficiency, security and visibility

• Vehicle intelligence opens the door to AI

• Vehicles are going green to conserve energy and embrace renewable technologies


A Vehicle Analogy: Relation

6

• Intercloud abstracts complexity, of billing, SLA’s, automation, autoscaling, performance, connectivity, multi-hybrid-cloud so your business can focus on delivering business value

• Intercloud is a global hyperscale Cloud platform that enables your business to have agility, global connectivity, policy, governance, as your data flows across the world

• Intercloud supports extensive automated systems to ensure resiliency, performance, efficiency, security and visibility of your platform

• Intercloud is the platform for innovation, IoT, IoE, intelligence, metrics, analytics, big data at your finger tips

• Intercloud innovation is continually looking at data center enhancements to reduce OPEX while optimizing for scale you can leverage


Your Controls: Control and Abstraction


Your Controls: Overview

8

• Portals• Interactive management interfaces to enable sophisticated control over technical, IT,

operations, DevOps and business workflows

• Marketplaces• Dynamic technology marketplaces to buy, license, deploy technology for your business• Develop your services and apps

• Open APIs• Embrace open and standard APIs to automate, manage, integrate and federate

• Services and Agents• Leverage a plethora of services and agents to automate, accelerate and bring value to

your business


Your Controls: Details

9

• Portals• Horizon and Horizon extensions• Metrics, monitoring and analytics dashboards• Integration with your existing views and operational models

• Marketplaces• Marketplace federation and environment integration• NFV

• Open APIs• OpenStack APIs, IEEE standards, API aggregation and integration frameworks

• Services and Agents• Core services such as LBaaS, Big Data, Controllers, Automation Engines, SDLC,

DevOps, Configuration Management and Logic Engines


Your Controls: Portals


Your Controls: APIs

>>> from keystoneclient.auth.identity import v2 >>> from keystoneclient import session >>> from novaclient import client >>> auth = v2.Password(auth_url=AUTH_URL, username=USERNAME, password=PASSWORD, tenant_name=PROJECT_ID) >>> sess = session.Session(auth=auth) >>> nova = client.Client(VERSION, session=sess)


The Dashboard: Visibility and Operation


The Dashboard: Overview

13

• Logging

• Utilization

• Metrics

• Time Series

• Big Data

• Anomaly Detection

• Introspection

• Cost


The Dashboard: Basic Architecture


The Dashboard: Operational Intelligence


The Dashboard: Single Pane of Glass


Built Tough: Availability and Resiliency


Your Controls: Overview

18

• Resiliency Models

• Active/Active

• Replication

• NFV/Service Chaining

• Network Topologies

• Service Intelligence

• Regions/Availability Zones

• OpenStack Hardening


Built Tough: OpenStack Resiliency Models


Built Tough: UCS Platform


Built Tough: ASR Series


Built Tough: Network Resiliency


Built Tough: Intercloud


Horsepower and Torque: Scale and Capacity


Horsepower and Torque: Overview

25

• Intercloud Hyperscale Capacity

• Optimized Infrastructure

• State of the Art Cisco Hardware

• Tuning and Optimization

• Horizontal Scalability

• Constant Capacity Upgrades and Enhancements

• New Global Datacenters and Providers


Horsepower and Torque: UCS C Series and Beyond


Horsepower and Torque: A Scale out ModelIncreasing Capacity of our Datacenters

Increase Server Density

Increase Rack Density


Horsepower and Torque: ACI


Horsepower and Torque: IntercloudAn Increasing Global Intercloud Footprint


Vehicle Security: Security and Tenancy


Vehicle Security: Overview

31

• Security is Cisco Native• Access Control• Firewalls• VPN• Web Security • Next Generation Intrusion Prevention Systems• Advanced Malware Protection• Policy and Governance


Vehicle Security: Hardening OpenStack• KVM and Emulation

• SELinux

• Networking Security

• OpenStack• Configuration• APIs

• Secrets Management and PKI

• Secure Messaging

• Storage

• Operating Systems


Vehicle Security: Network and Tenancy• Extend OpenStack models to provide secure tenancy leveraging Cisco

Networking technology

• Leverage network isolation technology and tenancy models per project

• Design and implement multi-Cloud/Intercloud networking models

• Provide granular ACLs leveraging firewall rule and OpenStack Security Groups

• Provide active monitoring, inspection and auditing of operational environments

• Embrace OpenStack community to ensure support for technologies


Industry Standards: Interoperability and Intercloud


Industry Standards: Overview

35

• Active Participating in Standards bodies IEEE, IETF, etc.

• OpenStack APIs• Active contribution to the OpenStack community with commits and new projects

• Incubating and Integrating• Integrating new technologies, vendors, API layers and orchestration frameworks

• Open Ecosystem• Minimizing lock-in and the barrier to entry

• The Tools• To integrate, build and onboard


Concept Car: Intercloud and Beyond


• Introduction

• Control and Abstraction

• Visibility and Operation

• Availability and Resiliency

• Scale and Capacity

• Interoperability and Intercloud

• Security and Tenancy

• Vision and Next Steps

Agenda

devnet-1150under the hood: cisco intercloud services

Technology

platform intercloud

vehicle analogy

business value intercloud

introduction intercloud

world intercloud

intercloud agenda

capacity vehicle security

vehicle abstracts complexity