innovations at the branch - cisco...source: telegeography mpls vpn pricing for san francisco as of...
TRANSCRIPT
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1
Innovations at the BranchDeliver an Optimal Application Experience from Anywhere
Udom LimmeechokchaiSystems Engineer Manager
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2
Emerging Branch DemandsThe Application Landscape Is Changing
Applications are Moving to the Data Center and Cloud
Internet Edge Is Moving to the Branch
Branch
CloudCloudCloud
Data Centers
CloudCloud
of CIOs Expect to Operate via the Cloud by 2015
MobilityMobility
More Mobile Data Traffic by 2015
High BW AppsHigh BW Apps
Of Mobile Traffic will be Video
Pressures on the WAN
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3
The Branch Conundrum
BUDGET
USER SUFFERING
WANDemands
Rethink your Branch-WAN Strategy Rethink your Branch-WAN Strategy
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4
Introducing Cisco Intelligent WAN (IWAN) Uncompromised Experience Over Any Connection
TransportIndependent
Intelligent Path Control
Secure Connectivity
ApplicationOptimization
Internet
Branch
WAAS PfR
3G/4G-LTE
Provider FlexibilityLower Cost
Dynamic Path SelectionHigh Quality Experience
Direct, Scalable SecurityProtect Resources
App AccelerationMinimize Downtime
AVC
MPLS Data Center
Network IT Complexity with Overlay Appliances
Firewall Internet
Internal Resources
Corporate Network
AccessRouterWAAS
Application Visibility and Control
Firewall and VPN WAN Path
Control
Branch
AccessRouter
Firewall Internet
Internal Resources
Corporate Network
Application Visibility and Control
Firewall and VPN WAN Path
Control
Cisco’s Approach:One Network wi th Uni f ied Serv ices
WAAS
Branch
L2-L3Transport
L4-L7Application
Services
Routing Redefined
Cisco’s Approach:One Network wi th Uni f ied Serv ices
Control
Optimization
Security
Visibility
RoutingSimplifyApplication
Delivery
O n e N e t w o r k
U N I F I E DS E R V I C E S
Cisco Application ExperienceOptimal Application Experience with IT Simplicity
Cloud
Data CenterBranch
Application-Centric Networking
ISR-AX
CSR1000V
ASR1000-AX
VisualizeNetwork-wide
visibility & control
OptimizeBetter Performance
for Users
SecureConsistent end-to-end
Security
Optimal Application Experience with IT Simplicity
50–70% bandwidth reduction
2x VDI Sessions
Faster document processing
Probe-less deployment
Wired/Wireless view of 1000+ apps
Rapid root cause analysis
Simplified and scalable VPN
Comprehensive threat defense
Cloud Web Security
LOWER TCO
Network-WideVisibility and Control
VisualizeBusiness Applications
Run Better
Optimize SecureAny-to-Any
Security
Identify and Monitor 1000+ Applications NativelyAX comes with Integrated Application Visibility and Control (AVC)
L7 Classification Performance Collection
• Integrated DPI engine (NBAR2) recognizes 1000+ applications
• In-service application signature update
• Collect traffic statistics and 50+ performance metrics
• Export information using open export protocols such as netflow-v9 and IPFIX
TopTalkers
Bandwidth
Latency
Netflow-v9IPFIX
CapacityPlanning
Monitoring and Troubleshooting
Maximize Application PerformanceControl Application Bandwidth Usage and Selects Optimal Path
Appl ica t ion-aware QoS• Identify 1000+ applications using NBAR2 and
control bandwidth with Cisco industry leading QoS
• Limit unwanted traffic and prioritize critical applications
In te l l igent Path Se lec t ion• Deliver critical applications over the path
which can meet application performance requirement using PfR
• Automatic load share to maximize bandwidth use on available links
WAN 1
WAN 2
Stop Bittorrent and Netflix. Prioritize Salesforce.com, Oracle
BackupBackup
File Services (5MB File)
100 20 30 40 50 60 70 80 90 100 110 120 130 140 150Time in Seconds
First Optimized with WAASFile Drag and Drop Over native WAN
Second Pass Optimized with WAAS
Email (5MB Attachment)
100 20 30 40 50 60 70 80 90 100 110 120 130 140 150Time in Seconds
First Optimized with WAASSend and Receive Email over native WAN
Second Pass Optimized with WAAS
VDI (Citrix)
20 4 6 8 10 12 14 16 18 20 22 24 26 28 30Time in Seconds
Launch Citrix XenDesktop with WAASLaunch Citrix XenDesktop Over Native Citrix ICA/SSL
Site Navigation Over Native Citrix ICA/SSLSite Navigation with WAAS
20 4 6 8 10 12 14 16 18 20 22 24 26 28 30Time in Seconds
First Optimized with WAASSharepoint File Download over Native WAN
Second Pass Optimized with WAAS
Optimize and Enhance Thousands of ApplicationsAX includes with Cisco WAAS WAN Optimization
24xFaster
17xFaster
30xFaster
3-8xFaster
(5MB Document)
Cisco 4451-X ISRPurpose Built Application Delivery Platform
ROUTING REDEFINED WITH ISR-AX
SecurityRouting
VisibilityControl
Optimization
Cisco ISR 4451-X
WORLD CLASS ARCHITECTURE
FUTURE PROOFED FOR SERVICES
PAY AS YOU GROW
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
Cisco ASR1000-AX
Extending Appl icat ion Exper ience to the WAN
• Cisco Application Visibility and Control (AVC)- Application-based optimal path selection - Quality of Service (QoS)- Application usage statistics- Application performance statistics- Probe-less visibility to over 1,200 applications
• WAN optimization• Cisco AppNav managing and optimizing WAAS resources• Cisco Virtual Wide Area Application Services (vWAAS) License (optional)
• Security (optional)• IP Security (IPsec), and multiple Secure Cisco VPN protocols• Firewall
Available on Cisco ASR 1001 (5G) and ASR 1002-X (5G, 10G, 20G and 36G)Upgrade PIDs also available
Cisco Branch Platform Portfolio
Forw
ardi
ng P
erfo
rman
ce w
ith
Ser
vice
s
75Mb
350Mb
500Mb
1Gb
2Gb
5Gb
10Gb
3900(E)(3RU, 100M–350M)
2900(2RU, 35M–75M)
ASR1002-X(5G–36G)
ASR1001(2.5G–5G)
ISR 4451-X (2 RU, 1G–2G)
F o r w a r d i n g w i t h S e r v i c e s
Inte
rfa
ce D
en
sity
2Gbps500Mbps350Mbps250Mbps100Mbps75Mbps50Mbps25Mbps 35Mbps
Integrated Services Router Portfolio
800 Series
1900 Series
2901
2911
2921
2951
3900 Series3900E Series
4451-X
UC UCS-E Cloud Connectors
Switching/WLAN
WAN Optimization
AVCISR/ASR WAN PathControl
3G/4G
O P T I O N A L S E RV I C E SNETWORKING SERVICES REQUIRED
?? ?
?
?
InternetCorporateNetwork
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18
Today’s Backhaul Approach is ExpensiveInefficient Traffic Management over a Premium Connection
WAN/MPLS
BEFOREInternet
Data CentersBranch
Backhaul Challenge:Growing WAN traffic from cloud services and internet connectivity
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19
The Upgrade that Pays for ItselfOptimize Your WAN Investment with IWAN
WAN/MPLS
AFTERInternet
Direct Internet Access (DIA) from Branch; Lower latency, lower cost
Data CentersBranch
Internet VPN Used to Connect Branch to HQDIA Benefit:
Efficient access to SaaSand offload guest traffic
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20
Quick Payoff for Infrastructure InvestmentCan Shift Funds from Connectivity to Enabling New Services
EXAMPLE:San Francisco MPLS VPN vs Dual Business Internet ($ per month)
Source: Telegeography MPLS VPN pricing for San Francisco as of March 2013; Comcast Web site; Verizon Web siteAssumes average Router upgrade is $3000; installation is $1000 and Support is $300CoS2 refers to VPN services providing real-time data and middle priority
$665 savings/month x 12 months x 100 sites
80
274
140
611
1.5 Mbps 10 Mbps
$220
MPLS VPN CoS2 $885
Direct Internet Access
Combined for Ent SLA
-75%
$800K Annual Savings
186% ROI
Payoff in 6 Months
https://cisco.impliedlogic.com/models/iwan
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21
What Can IWAN Enable?
High BW Apps
• Links overwhelmed
• Security and policy
• Backhaul to DC
• More BW for less
• Visibility and control
• Threat defense
• DIA: no backhaul
SaaS Roll-Out
Business Challenges
How IWAN Helps
Mobility/Guest
• App latency
• Backhaul to DC
• DIA: low latency
• Quick link turn-up
• Visibility and control
• Time-consuming and costly to add BW
• More BW for less
• Quick link turn-up
• DIA for right-traffic, right-link
OpEx Savings
• High recurring charges
• Inflexible SLAs
• Low-cost Internet links without compromise
• Provider flexibility for faster service rollout
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22
Cisco IWAN Deployment ModelsDual MPLS Hybrid Dual Internet
Highest Service Level (SLA) SAAS not immediate requirement Availability over cost
Consistent VPN Overlay enables Security across TransitionConsistent VPN Overlay enables Security across Transition
Enable SaaS and/or high BW apps Balanced Service Level (SLA) Up to 99.999% Reliability
Best price/performance IT Managed Service Levels Up to 99.999% Reliability
Public Public Enterprise
Internet MPLS Internet Internet
Internet
MPLSMPLS
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 23
Building Highly Available WANs with Cisco IWANRedundancy and Path Availability Matter
* Typical MPLS and Business Grade Broadband Availability SLAs and Downtime per Year.
Single RouterSingle Path
Single RouterDual Paths
Dual RoutersDual Paths
Downtime per Year4 Hours23 Minutes
Downtime per Year24 Minutes
Downtime per Year5 Minutes
Downtime per Year8 Hours46 Minutes
99.998%0:24 / yr
MPLS or Internet
MPLS or Internet
ISR G2
99.999%0:05 / yr
MPLS or Internet
MPLS or Internet
ISR G2ISR G2
Internet
99.90%8:46 / yr *
ISR G2
MPLS
99.95%4:23 / yr *
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24
Why Cisco IWAN
Integrated Platform
for IT Simplicity
Granular Control Everywhere
Proven Security at Scale
Unmatched Context-based
RoutingQuick ROI
Faster than Alternatives
Overlay Appliances
Up to 72% in Savings
The Alternative:
App Visibility & Control
IP Sec VPN
WAN Opt. Firewall
WAN Path SelectionRouter
• Any to Any Security
• Protect All Branch Resources
• Secure Direct Internet Access
• Network-Aware
• App-Aware
• Endpoint-Aware• Savings enables
Business Innovation
Many pay off in
6-12 months
• Branch ISR-AX
• DC ASR1K-AX
• Cloud CSR1000V
Thank You