Cisco Nexus 1000V InterCloud based Hybrid Cloud Architectures and Approaches
|
|
- Phebe Williams
- 5 years ago
- Views:
Transcription
1
2 Cisco Nexus 1000V InterCloud based Hybrid Cloud Architectures and Approaches Kapil Bakshi Solutions Architect
3 Session Details - Session Title: Cisco Nexus 1000V InterCloud-based Hybrid Cloud Architectures and Approaches Abstract: This is an introductory session, based on details of Cisco Nexus 1000V InterCloud and related L3-L7 Virtual Network Services technologies. The session provides an overview of the architecture, implementation and use cases for a secure hybrid cloud with enterprise workloads and network services. Customer and Partners are looking for approaches and technologies to securely extend their data center workloads to public clouds. That too, while maintaining their current operational consistency and paradigms in their current data centers. Service Providers are also looking ways to expand their cloud services and on board workloads. This session will review architecture for secure hybrid cloud where enterprises and SPs can extend their network and network virtual services in a secure fashion to public clouds. For more in-depth information about using Cloud automation to enable Nexus 1000v InterCloud enhanced functionality, see session BRKVIR For more in-depth information about Nexus 1000V InterCloud Use Cases, see session BRKVIR
4 Agenda for the session! 4
5 The Real Agenda! Introduction Hybrid Cloud & Virtual Networking Concepts Cisco N1KV InterCloud Architectural Details Cisco N1KV InterCloud Use Cases Introducing Cisco InterCloud Discussion/Q & A 5
6 Hybrid Cloud & Challenges Security: Workload security, Connection security Enterprise Data Center Public Cloud Connectivity between on-premises and cloud workloads Manageability and policy inconsistency Cloud Control, Visibility and Flexibility 6
7 Securely Extend Environment into Provider Cloud Enterprise Apps and Network Services on the Public Cloud Centralized Migration and Management Reconfigure Application Firewalls Use Cloud Provisioning Routing V M V M Program Unique APIs V M V M Convert Image Format L2 Services Onboard New Monitoring Insert Custom Tools Identify New Security Nexus 1000V InterCloud Validate Operations Enterprise Cloud Recreate Services Translate Policies Provider Cloud ENTERPRISE VISIBILITY & CONTROL ENTERPRISE CHOICE ENTERPRISE SECURITY PROVIDER RESOURCES PROVIDER EASE OF BUSINESS PROVIDER VALUE 7
8 Secure Hybrid Cloud Framework Multi-Hypervisor, Multi-Service, Multi-Cloud UCS Director Cisco IAC Openstack Cisco Prime Network Services Controller Private Cloud Enterprise Data Center Portal & Orchestration Network Controller Public & SP Cloud Portal & Orchestration Cloud APIs Cisco ASA1kv VSG vnam vwaas Netscarler 1kv L4 L7 Network Services Workload s Workload s Virtual L4 L7 Network Services Cloud Services Router CSR1000V Cisco N1kv InterCloud L3 capabilities Service Chaining Virtual Layer 2 (Secure Extension) Virtual L3 capabilities Service Chaining vsphere, HyperV, K, Xen Hypervisor(s) Physical Compute, DC Network and Storage Hypervisor(s) Physical Compute, DC Network and Storage
9 Virtual Networking Concepts
10 Back Plane L2 Connectivity L3 Connectivity Nexus 1000v Architecture Physical, Virtual and InterCloud Network Admin Modular Switch Virtual Appliance VSM1 VSM2 Supervisor-1 Supervisor-2 Linecard-1 Linecard-2 Linecard-N VSM: Virtual Supervisor Module VEM: Virtual Ethernet Module Server Admin VEM-1 Hypervisor Hypervisor Hypervisor VEM-2 VEM-N 10
11 Virtual Services in Cloud Cisco Virtual Security Gateway (VSG) Secures inter- traffic within a tenant Cisco Cloud Services Router (CSR) 1000v Virtual L3 router for Cloud deployment Context aware Security context aware rules L3 Routing IOS-XE based Zone based Controls Establish zones of trust Infra Agnostic Hypervisor, L2 Dynamic, Agile Policies follow vmotion APIs REST APIs Support Scale and Intelligence Scale-out (with vpath service chaining) Use Case InterCloud and Standalone 11
12 Secure Hybrid Cloud Architecture
13 Nexus 1000V InterCloud Components Cisco Prime Network Services Controller for InterCloud Deployed as a Virtual Machine and provides a single pane of glass to manage enterprise and cloud data centers InterCloud VSM Nexus 1000V Virtual Supervisor Module provides the controlplane to manage port-profiles for s in the InterCloud infrastructure InterCloud Extender Virtual Machine in enterprise data center to provide secure connectivity to the InterCloud Switch in provider cloud. InterCloud Extender is registered as a module on the InterCloud VSM InterCloud Switch Virtual Machine in provider data center, has secure connectivity to the InterCloud Extender in enterprise cloud and secure connectivity to the Virtual Machines in the provider cloud. InterCloud Switch is registered as a module on the InterCloud VSM. Cloud Virtual Machines Virtual Machines in provider data center to run customer workloads, run a modified OS to include InterCloud Drivers 13
14 Cisco Prime Network Services Controller for InterCloud Single point of Management for InterCloud ENTERPRISE CLOUD PROVIDER CLOUD DB Cisco Prime Network Services Controller ware vcenter APP N1KV InterCloud VPC Provider APIs Web Cisco Prime Network Controller InterCloud Interfaces Cisco Prime Network Controller InterCloud Orchestration Register with Cloud Providers Interface with Management Tools Create Switching End points Clone/Move s in VPC with secure wrapper GUI -Easy-To-Use Web Interface Support for 3 rd party integration 14
15 Cisco Prime Network Services Controller - UI 15
16 InterCloud Virtual Switching Components Switch extended from enterprise to cloud ENTERPRISE CLOUD PROVIDER CLOUD DB APP VPC Web IC VSM InterCloud Extender N1KV InterCloud InterCloud Switch ware vcenter InterCloud Extender N1KV InterCloud InterCloud Switch InterCloud Link (x16) VSM, InterCloud Extender, InterCloud Switch Secure L2 extension Secure virtual switch in cloud 16
17 Nexus 1000V InterCloud Deployment Enterprise Data Center IC VSM Virtual Machine Manager Enterprise Switch Cisco Prime NSC InterCloud Extender Enterprise Virtual Switch I n t e r n e t Cloud Data Center Cloud API Interface Cloud s InterCloud Switch Secure Tunnels DTLS Encap
18 InterCloud Extender and InterCloud Switch Interfaces Mgmt Data Trunk Internal Enterprise Trunk INTERCLOUD EXTENDER VEM Internal Tunnel Trunk Tunnel Public IP INTERCLOUD SWITCH Internal Tunnel Trunk VEM Mgmt Cloud VLANs Management Interface Used for communication with InterCloud VSM and PNSC. Can also be used as secure tunnel endpoint. Tunnel interface Can be used for secure tunnel to InterCloud Switch. Trunk interface Enterprise trunk allowing all VLANs that are being extended. Management Interface Used for communication with InterCloud VSM and InterCloud Extender. Public interface Provider interface with public IP. Used to communicate with PNSC and tunnel endpoint. Cloud interfaces Access Tunnels to Cloud s on VLANs extended from the enterprise.
19 Cloud Interfaces IC User Space Processes TCP/IP Stack Applications Applications Cloud VEM Ports Overlay Access Port (Private IP) Provider Interface vnic.. Overlay Interfaces InterCloud Agent Provider Ports Cloud Port (Provider public IP) Provider Network Switch Private IP Used for communication with InterCloud Switch and other cloud s Provider Public IP Used for communication with Cisco Prime Network Controller for InterCloud
20 Cisco N1Kv InterCloud Network Deployment Walkthrough Assumptions - ICX Tunnel Interface as Tunnel Originator with NAT/PAT for ICX Tunnel and PNSC - Enterprise Management Network extended for InterCloud Switch Management ware vcenter 12.x (Private) (Multiple Data VLANs Private IPs) PNSC Internal DC Domain Enterprise Datacenter VSG Trunk VSM ICX DMZ FW Mgmt Out Of Band Management Domain Tunnel 11.x (Private) Internet domain 168.X (Public) Router/Firewall (NAT/PAT) Secure Tunnel I n t e r n e t Public IP 10.X (Provider Public) Management VLAN Tunnel VLAN Data VLANS Cloud Datacenter CMgmt VEM ICS (Multiple Data VLANs Private IPs)
21 Nexus1000V InterCloud Security ENTERPRISE CLOUDS PROVIDER CLOUDS Cisco PNSC IC VSM M InterCloud Extender S2S Data Tunnel InterCloud Switch Access Data Tunnel with ICA Other Tenants Security in an InterCloud VPC 1. Secure Layer-2 Extension 2. Secure Cloud communication 3. InterCloud Agent to protect traffic 4. Enterprise controls/manages Keys and certificates Establish Trust Establish Secure Tunnels Comm. Securely
22 Security Considerations: Summary Data in Transit between Enterprise DC and Public SP Cloud Key Management & Algorithm Data Encryption and Hashing Inter Security in the Public SP Cloud InterCloud Agent Key Management & Algorithm Data Encryption and Hashing Layer 3 Security via CSR 1000v Layer 4 7 Security via VSG Encryption algorithm AES-128-GCM, AES-128-CBC, AES-256-GCM (Suite B), AES-256-CBC Hashing algorithm SHA-1, SHA-256, SHA-384 All data in motion is cryptographically isolated and encrypted Enterprise to Cloud & to within Cloud Enterprise owns the keys V M V M V M Enterprise Cloud V M vpath Centralized Migration and Management Onboard New Monitoring Program Unique APIs vpath Insert Custom Tools Recreate Services Reconfigure Application Identify New Security Convert Image Format Nexus 1000V InterCloud Provider Cloud Translate Policies Firewalls Use Cloud Provisioning Routing L2 Services Validate Operations 22
23 Virtual Network Services with Nexus 1000V InterCloud ENTERPRISE CLOUD Cisco Prime Network Services Controller PROVIDER CLOUDS VSG L2 Virtual Private Cloud Nexus1000V vpath VSG N1KV InterCloud InterCloud Switch vpath Security Profile to Port Profile in IC VSM 23
24 Nexus 1000V InterCloud + CSR 1000V PNSC Enterprise DC Public Cloud VSG Virtual Services vpath Nexus HW Switches vpath Nexus 1000V vpath InterCloud Switch Outside InterCloud Network ASR 1k/9k UCS/Servers InterCloud extends, secures and isolates L2 subnets into public clouds. CSR 1000V CSR as Gateway for InterCloud Network CSR provides access into the secure InterCloud network, via PNSC: VPN VPN 1. Inbound NAT/FW GW from Internet to Cloud Apps 2. Outbound direct Internet access for cloud applications (e.g SW updates functions) 3. Routing and FW services within InterCloud network Subnets 4. VPN for branch and remote users Remote/Branch Office ISR Mobile Worker 24
25 Cisco Prime Network Services Controller + Intelligent Automation for Cloud (IAC) User requests cloud services via end-user portal Cisco Intelligent Automation for Cloud Cisco Cloud Portal Cisco Process Orchestrator Orchestrator manages workflow across multiple cloud environments (Integration via Northbound API) (Workloads moved via InterCloud) Private Cloud Cisco Prime Network Services Controller (MANAGEMENT LAYER) Policy manager Resource manager Service registry Manager Cloud Provider Manager Nexus 1000V (Platform layer) N1KV Switching Firewall, Routing Crypto Secure Public Cloud Tenant B
26 Additional Considerations Application Requirements - Operating System, Storage, Latency, Image Size, Relationships/Dependencies Service Provider Connectivity Internet/Extranet bandwidth, latency, and availability Security Requirements - Data at rest Service Level Agreements Regulatory Considerations 26
27 Installation Workflow Step 1 Step 2 Step 3 Step 4 Install PNSC Register with M (vcenter) Install InterCloud VSM Register IC VSM with PNSC PNSC is format Download the vcenter plugin Install the IC VSM ova Via PNSC GUI Existing VNMC can be upgraded Add Register the Plug in vcenter Add vcenter as M in PNSC Note: vcenter, vsphere and Enterprise VSM and VEMs are assumed to be already installed InterCloud VSM only installed as a. N1110 under consideration. Simple install No Installer app No adding VEMs No vcenter reg A basic version of VSM ware vcenter Cisco Prime Network Services Controller 4 VSM
28 Components Deployment (via PNSC) Step 1 Step 2 Step 3 Step 4 Create a Cloud Provider Manage IC components Images Configure InterCloud VSM Extend the Network to Cloud IC Link is setup Pick the Cloud Provider Provider Credentials Upload the ICX, ISW and ICA images to PNSC ICX ova format ISW AMI format ICA OS based Note: ICX and ISW are Modules in IC VSM ICX as s in Enterprise VSM ICS as a on Public Cloud Provider Configure Port Profiles in IC VSM Copy Port Profile from Enterprise VSM Create a VPC Create a IC link (upto 16 per VPC) Configure ICX and ICS Setup tunnel Sec for ICX to ICS and ICS to. Encrpytion and Hash. ICX, ISW deployment is automated by PNSC ISW is programmatically via AWS APIs 28
29 Deployment Workflow Migrate a 1 to Provider 2 Cloud Select the Enterprise Host and to migrate Select a IC-Link Select the properties Migrate to Provide Cloud PNSC migrates behinds the scene Create a in Provider Cloud Upload an AMI, ISO, OVA for template Select a IC-Link Select the properties Migrate to Provide Cloud PNSC migrates behinds the scene Single creation PNSC. Key Observations Single creation by PNSC Leverage a Cloud Management Tools to create a several at a time Cold Migration On-boarding(currently) Existing s in Cloud 29
30 Nexus 1000V InterCloud Deployment Pre-requisites Enterprise Virtual Machine Manager: ware vcenter version 5.0 or 5.1 Cloud Provider: Amazon Web Services An AWS account is required to register the provider with Nexus 1000V InterCloud Internet Router/Firewall must allow outbound/inbound traffic originating from enterprise network to the range of AWS IP addresses for the following protocols and ports: Public IP address ranges by Regions: Protocol: UDP & TCP Ports: o 80 HTTP access from PNSC for AWS calls and communicating with InterCloud s in provider cloud o 443 HTTPS access from PNSC for AWS calls and communicating with InterCloud s in provider cloud o 22 SSH from PNSC to InterCloud s in provider cloud o UDP 6644 DTLS data tunnel o TCP 6644 DTLS control tunnel
31 Hybrid Cloud Use Cases
32 InterCloud enables Hybrid Cloud Use Cases Dev/Test Shadow IT Applications Capacity Augmentation Disaster Recovery Private Cloud Dev/Test Production WAN Common Peak Workloads VPC/Publi c Cloud End users can dev/test applications in the public cloud With, workloads can be promoted eg from Test in the public cloud to Production in the private cloud Users continue to use public clouds for quick access Helps IT to control the applications: IT enforces policies and governance to resources Extra capacity can be dynamically deployed for seasonal demands Seamless management of multi-tier applications in different clouds, Enterprises can use public cloud as backup DR site DR solution at a reduced cost
33 Hybrid Cloud for Service Providers Map Use Cases to Service Offerings Dev/Test Production Capacity Augementation DevTest Shadow IT DR/BC USE CASES IaaS/Bursting IaaS/DevOps SERVICE OFFERINGS IT optimization services DR as a Service 33
34 Announcing Cisco InterCloud!
35 Cisco InterCloud Solution Overview Enterprise DC or Cloud Provider Clouds vsphere InterCloud InterCloud Provider Enablement Platform Cloud Providers & Cisco Powered Services Hyper-V End User & IT Admin Portals Openstack/K Secure Fabric Network, Compute & Storage Azure APIs CloudStack/Xen EC2 APIs 35
36 InterCloud Solution Highlights Cloud admin provisions hybrid cloud, network connectivity and services End user requests applications/compute services via Cisco s self-service portal InterCloud Director Service Provider portal End-user portal Admin portal InterCloud Fabric Hybrid cloud provisioning with policies Cloud APIs Cloud APIs Public Providers with open APIs (AWS, Azure) Providers with InterCloud Enablement platform Private Cloud HYBRID CLOUD Public Cloud
37 Cisco InterCloud Components Cloud management REST Open source/ 3rd party management tools InterCloud Director Leverage functionality from UCSD SP portal/ cloud management (Integration via Northbound API) InterCloud Fabric VSM PNSC InterCloud Cloud APIs InterCloud Enablement platform jcloud APIs Openstack Scripts vcloud InterCloud Extender Layer 2 InterCloud Switch vfirewall vrouter
38 Cisco InterCloud Fabric Hybrid cloud connectivity and network services InterCloud Fabric VSM PNSC InterCloud InterCloud Extender InterCloud Switch Layer 2 VSG CSR Private Cloud HYBRID CLOUD Public Cloud Hybrid cloud connectivity with L2 connectivity End to end security Network services such as firewall, virtual router
39 InterCloud Director High-Level Architecture Application Owners Self Service Console OS & Deployment IT Admins Admin Console Policy Manager IT Operations Dashboard Open API for Integration UCS Director extension Resource Pools InterCloud Director functionality as an extension of UCSD Single Console for Private and Public Cloud End-User Portal for consumption Hybrid Cloud Operation IT Admin Portal for Policy Governance Private cloud Manager (vcenter, SCM, OpenStack) InterCloud Fabric Private Cloud (Vmware, Hyper-V, OpenSource) Hybrid cloud network Public Cloud (Amazon, Azure, IEP
40 InterCloud Enablement Platform Enables Cloud Provider Integration Virtual Appliance Deployed and Managed by Cloud Provider Acts as a Proxy between Cisco InterCloud and Provider Infrastructure Requires Access to Provider Infrastructure; Applicable only for provider with no Publicly available API Published by Provider or via InterCloud Enablement Platform and Consumed by Cisco InterCloud Stack Base Set General : Image Management : Life Cycle : Storage Management : Security : Advanced Set Advanced Workload Protection Enhanced Crypto Performance Bare metal workload placement Application Aware Policy Management Account Login, Location/Partitioning Import/Export, Upload of image, Create/Delete Template from image Create(from template), Retrieve, Update, Delete, Start, Stop, Reboot Create/Delete volume and Attach/Detach volume to Security Group
41 Cisco InterCloud Deployment Models For Cloud Providers Enterprise cloud InterCloud Director Enterprise cloud InterCloud Director Provider Cloud InterCloud Enablement Plat Service Provider Portal API M(Openstack/vCl oud/ Script based) - Enables new business model - Choice of SP infrastructure- vcloud, - Openstack Value based Margins - Differentiate Cloud services For Enterprises consuming Hybrid Cloud Services Enterprise cloud Enterprise cloud InterCloud Enterprise cloud Director Public cloud Amazon/Azure SP with InterCloud Enablement platform - IT enabled and managed - Choice of hypervisors - Choice of Cloud Providers - End-to-end workload security - Policy based workload governance - Unified management of workload - Consistent operations model
42 Evolving Nexus 1000V InterCloud to Cisco InterCloud Product Capabilities Providers Benefits Nexus 1000V InterCloud Cisco InterCloud InterCloud Secure Fabric InterCloud Secure Fabric InterCloud Director InterCloud Provider Enablement Platform Amazon Azure Validate secure fabric technology Validate with heterogeneous cloud infrastructure (physical/virtual network and compute) Enable any provider via InterCloud Provider Enablement Platform Extend business customer DC environment to public cloud Enhance end-to-end and workload security Consistent policy and unified management Bi-directional workload mobility Provider on-boarding 42
43 Call to Action Attend BRKVIR-3033 Advanced Cisco InterCloud Best Practices (Fri, 9AM) Attend Deploying, Implementing and troubleshooting Cloud Service Router (CSR 1000v) (Fri 9AM) Visit the Cisco Campus at the World of Solutions to experience demos/solutions in action Get hands-on experience with the following Walk-in Labs Meet the Engineer Discuss your project s challenges at the Technical Solutions Clinics Attend one of the Lunch Time Table Topics, held in the main Catering Hall Recommended Reading: For reading material and further resources for this session, please visit CL365 -Visit us online after the event for updated PDFs and on-demand session videos. 43
44 Complete Your Online Session Evaluation Complete your online session evaluation Complete four session evaluations and the overall conference evaluation to receive your Cisco Live T-shirt 2014 Cisco and/or its affiliates. All rights reserved. 44
45 GRAZIE! 45
46
Hybrid Clouds: Integrating the Enterprise Data Center and the Public Cloud
Hybrid Clouds: Integrating the Enterprise Data Center and the Public Cloud Usha Ramachandran, Technical Marketing Engineer Session Abstract In this session, participants will learn how to create hybrid
More informationCisco Nexus 1000V InterCloud
Deployment Guide Cisco Nexus 1000V InterCloud Deployment Guide (Draft) June 2013 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 1 of 49 Contents
More informationDeploying Cloud Network Services Prime Network Services Controller (formerly VNMC)
Deploying Cloud Network Services Prime Network Services Controller (formerly VNMC) Dedi Shindler - Sr. Manager Product Management Cloud System Management Technology Group Cisco Agenda Trends Influencing
More informationCisco Virtual Networking Solution Nexus 1000v and Virtual Services. Abhishek Mande Engineer
Cisco Virtual Networking Solution Nexus 1000v and Virtual Services Abhishek Mande Engineer mailme@cisco.com Agenda Application requirements in virtualized DC The Anatomy of Nexus 1000V Virtual Services
More informationVirtual Tech Update Intercloud Fabric. Michael Petersen Systems Engineer, Cisco Denmark
Virtual Tech Update Intercloud Fabric Michael Petersen Systems Engineer, Cisco Denmark michaep2@cisco.com Agenda Introduction Intercloud and Intercloud Fabric Intercloud Fabric - New Features Intercloud
More informationCisco Enterprise Cloud Suite Overview Cisco and/or its affiliates. All rights reserved.
Cisco Enterprise Cloud Suite Overview 2015 Cisco and/or its affiliates. All rights reserved. 1 CECS Components End User Service Catalog SERVICE PORTAL Orchestration and Management UCS Director Application
More informationMAKE THE MOST OUT OF HYBRID CLOUD THE CISCO INTERCLOUD FABRIC
MAKE THE MOST OUT OF HYBRID CLOUD THE CISCO INTERCLOUD FABRIC Luís Coelho lcoelho@cisco.com ConsulAng Systems Engineer SP DC/Cloud SP Architectures Emerging Markets Cisco NaAve Cloud ApplicaAons Big Data
More informationCloud Technologies Public and Private Cloud Interconnection
Cloud Technologies Public and Private Cloud Interconnection Danut Agache - Technical Manager, CCIE #14573 Bogdan Nita - Data Center Architectures Consultant AGENDA About Us Cloud Technologies - Public
More informationVirtual Security Gateway Overview
This chapter contains the following sections: Information About the Cisco Virtual Security Gateway, page 1 Cisco Virtual Security Gateway Configuration for the Network, page 10 Feature History for Overview,
More informationSecuring Containers Using a PNSC and a Cisco VSG
Securing Containers Using a PNSC and a Cisco VSG This chapter contains the following sections: About Prime Network Service Controllers, page 1 Integrating a VSG into an Application Container, page 4 About
More informationCisco Cloud Services Router 1000V with Cisco IOS XE Software Release 3.13
Q&A Cisco Cloud Services Router 1000V with Cisco IOS XE Software Release 3.13 Q. What is the Cisco Cloud Services Router 1000V? A. The Cisco Cloud Services Router 1000V (CSR 1000V) is a router in virtual
More informationCisco Application Centric Infrastructure Roadshow. Wednesday, 2. April 14
Cisco Application Centric Infrastructure Roadshow Wednesday, 2. April 14 Cisco ACI Roadshow - Agenda Business and IT trends Cisco Open Network Environment (ONE) Lunch Cisco Application Centric Infrastructure
More informationIntroducing Cisco Cloud Administration CLDADM v1.0; 5 Days; Instructor-led
Introducing Cisco Cloud Administration CLDADM v1.0; 5 Days; Instructor-led Course Description Introducing Cisco Cloud Administration (CLDADM) is a new 5-day ILT course designed to help students prepare
More informationData Center and Cloud Automation
Data Center and Cloud Automation Tanja Hess Systems Engineer September, 2014 AGENDA Challenges and Opportunities Manual vs. Automated IT Operations What problem are we trying to solve and how do we solve
More informationCisco Virtual Application Container Services 2.0 Lab v1
Cisco Virtual Application Container Services 2.0 Lab v1 Last Updated: 02-SEP-2015 About This Solution Cisco Virtual Application Container Services (VACS) enables simplified deployment of Secure Application
More informationVirtuální firewall v ukázkách a příkladech
Praha, hotel Clarion 10. 11. dubna 2013 Virtuální firewall v ukázkách a příkladech T-SEC3 / L2 Tomáš Michaeli Cisco 2013 2011 Cisco and/or its affiliates. All rights reserved. Cisco Connect 1 Agenda VXLAN
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
LHC2103BU NSX and VMware Cloud on AWS: Deep Dive Ray Budavari, Senior Staff Technical Product Manager NSX @rbudavari #VMworld #LHC2103BU Disclaimer This presentation may contain product features that are
More informationSecuring VMware NSX MAY 2014
Securing VMware NSX MAY 2014 Securing VMware NSX Table of Contents Executive Summary... 2 NSX Traffic [Control, Management, and Data]... 3 NSX Manager:... 5 NSX Controllers:... 8 NSX Edge Gateway:... 9
More informationNexus 1000V in Context of SDN. Martin Divis, CSE,
Nexus 1000V in Context of SDN Martin Divis, CSE, mdivis@cisco.com Why Cisco Nexus 1000V Losing the Edge Server Admin Host Host Host Host Server Admin manages virtual switching! vswitch vswitch vswitch
More informationCisco Nexus 1000V Switch for Microsoft Hyper-V
Q&A Cisco Nexus 1000V Switch for Microsoft Hyper-V Overview Q. What are Cisco Nexus 1000V Switches? A. Cisco Nexus 1000V Switches provide a comprehensive and extensible architectural platform for virtual
More informationIntercloud Fabric. Session ID 18PT. Michael Petersen, CCIE #39836 Systems Engineer, Cisco Danmark
Fabric Session ID 18PT Michael Petersen, CCIE #39836 Systems Engineer, Cisco Danmark Agenda Why Hybrid? What are the Challenges? and Cisco Fabric Solution and Architecture Overview Cisco ONE Summary, Q&A
More informationCisco Designing the Cisco Cloud (CLDDES) Download Full version :
Cisco 300-465 Designing the Cisco Cloud (CLDDES) Download Full version : http://killexams.com/pass4sure/exam-detail/300-465 out from the VM. F. Operates by allocating disk storage space in a flexible manner
More informationOrchestrating the Cloud Infrastructure using Cisco Intelligent Automation for Cloud
Orchestrating the Cloud Infrastructure using Cisco Intelligent Automation for Cloud 2 Orchestrate the Cloud Infrastructure Business Drivers for Cloud Long Provisioning Times for New Services o o o Lack
More informationSecuring Containers Using a PNSC and a Cisco VSG
Securing Containers Using a PNSC and a Cisco VSG This chapter contains the following sections: About Prime Network Service Controllers, page 1 Integrating a VSG into an Application Container, page 3 About
More informationCisco Virtual Security Gateway (VSG) Mohammad Salaheldin
Cisco Virtual Security Gateway (VSG) Mohammad Salaheldin Virtual Security Gateway (VSG) Overview VSG Packet Flow VSG Policy Model Use Case Example ASA on 1000V Summary 2011 Cisco and/or its affiliates.
More informationCisco Cloud Architecture with Microsoft Cloud Platform Peter Lackey Technical Solutions Architect PSOSPG-1002
Cisco Cloud Architecture with Microsoft Cloud Platform Peter Lackey Technical Solutions Architect PSOSPG-1002 Agenda Joint Cisco and Microsoft Integration Efforts Introduction to CCA-MCP What is a Pattern?
More informationFast IT - Policy Driven Infrastructure for the Intercloud World
Fast IT - Policy Driven Infrastructure for the Intercloud World Paul Horrocks Technical Solution Architect Agenda What is Fast IT? What is Policy? How Cisco delivers Fast IT The foundation for Fast IT
More informationBorderless Networks. Tom Schepers, Director Systems Engineering
Borderless Networks Tom Schepers, Director Systems Engineering Agenda Introducing Enterprise Network Architecture Unified Access Cloud Intelligent Network & Unified Services Enterprise Networks in Action
More informationSoftware Defined Networks For Service Providers. A Practical Approach
BRKSPG-3683 Software Defined Networks For Providers. A Practical Approach Michael O Gorman Chief Architect Office C97-693316-00 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
More informationVMware Cloud on AWS Operations Guide. 18 July 2018 VMware Cloud on AWS
VMware Cloud on AWS Operations Guide 18 July 2018 VMware Cloud on AWS You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/ If you have comments about
More informationEvolution of Data Center Security Automated Security for Today s Dynamic Data Centers
Evolution of Data Center Security Automated Security for Today s Dynamic Data Centers Speaker: Mun Hossain Director of Product Management - Security Business Group Cisco Twitter: @CiscoDCSecurity 2 Any
More informationOrdering and deleting Single-node Trial for VMware vcenter Server on IBM Cloud instances
Ordering and deleting Single-node Trial for VMware vcenter Server on IBM Cloud instances The Single-node Trial for VMware vcenter Server on IBM Cloud is a single-tenant hosted private cloud that delivers
More informationAutomation of Application Centric Infrastructure (ACI) with Cisco UCS Director
Automation of Application Centric Infrastructure (ACI) with Cisco UCS Director Raju Penmetsa @RajuPenmetsa1 Data Center Group Agenda IT Complexity Solution for ACI Automation Cisco UCS Director Application
More informationCisco Solution for Private Cloud
Dubrovnik, Croatia, South East Europe 20-22 May, 2013 Cisco Solution for Private Cloud Sascha Merg Technical Solutions Architect 2011 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect
More informationCisco Virtual Security Gateway Deployment Guide VSG 1.4
Deployment Guide Cisco Virtual Security Gateway Deployment Guide VSG 1.4 Deployment Guide 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 1 of 33
More informationCisco CloudCenter Solution with VMware
Cisco CloudCenter Solution with Extend, any application, and any cloud The Cisco CloudCenter hybrid cloud management platform securely provisions infrastructure resources and deploys application components
More informationNetwork Services in Virtualized Data Center
Network Services in Virtualized Data Center Tomáš Michaeli Consulting Systems Engineer, DCV Central / Czech republic 21 Mar 2012 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 1 Almost
More informationAdvanced CSR Lab with High Availability and Transit VPC
Advanced CSR Lab with High Availability and Transit VPC Fan Yang, Cisco, Engineer, Technical Marketing Nikolai Pitaev, Cisco, Engineer, Technical Marketing LTRVIR-3004 Agenda Slides (30 Min.): CSR 1000V
More informationVMware Hybrid Cloud Solution
VMware Hybrid Cloud Solution Simplifying and Accelerating Your Multi-Cloud Strategy Bunyamin Ozyasar System Engineer Manager 2017 VMware Inc. All rights reserved. Today s Agenda 1 2 3 VMware SDDC Approach
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
LHC2384BU VMware Cloud on AWS A Technical Deep Dive Ray Budavari @rbudavari Frank Denneman - @frankdenneman #VMworld #LHC2384BU Disclaimer This presentation may contain product features that are currently
More informationHypervisors networking: best practices for interconnecting with Cisco switches
Hypervisors networking: best practices for interconnecting with Cisco switches Ramses Smeyers Customer Support Engineer Agenda What is this session about? Networking virtualization concepts Hypervisor
More informationIntegration of Hypervisors and L4-7 Services into an ACI Fabric. Azeem Suleman, Principal Engineer, Insieme Business Unit
Integration of Hypervisors and L4-7 Services into an ACI Fabric Azeem Suleman, Principal Engineer, Insieme Business Unit Agenda Introduction to ACI Review of ACI Policy Model Hypervisor Integration Layer
More informationANIKET DAPTARI & RANJINI RAJENDRAN CONTRAIL TEAM
ROLE OF NETWORK VIRTUALIZATION AND SOFTWARE DEFINED SECURITY IN MULTICLOUD ANIKET DAPTARI & RANJINI RAJENDRAN CONTRAIL TEAM This statement of direction sets forth Juniper Networks current intention and
More informationCisco UCS Director and ACI Advanced Deployment Lab
Cisco UCS Director and ACI Advanced Deployment Lab Michael Zimmerman, TME Vishal Mehta, TME Agenda Introduction Cisco UCS Director ACI Integration and Key Concepts Cisco UCS Director Application Container
More informationCisco Unified Data Center Strategy
Cisco Unified Data Center Strategy How can IT enable new business? Holger Müller Technical Solutions Architect, Cisco September 2014 My business is rapidly changing and I need the IT and new technologies
More informationDeploying the Cisco ASA 1000V
CHAPTER 2 This chapter includes the following sections: Information About the ASA 1000V Deployment, page 2-1 Downloading the ASA 1000V OVA File, page 2-7 Deploying the ASA 1000V Using the VMware vsphere
More informationSecuring VMware NSX-T J U N E 2018
Securing VMware NSX-T J U N E 2018 Securing VMware NSX Table of Contents Executive Summary...2 NSX-T Traffic [Control, Management, and Data]...3 NSX Manager:...7 NSX Controllers:...9 NSX Edge:...10 NSX-T
More informationModelos de Negócio na Era das Clouds. André Rodrigues, Cloud Systems Engineer
Modelos de Negócio na Era das Clouds André Rodrigues, Cloud Systems Engineer Agenda Software and Cloud Changed the World Cisco s Cloud Vision&Strategy 5 Phase Cloud Plan Before Now From idea to production:
More informationEBOOK: VMware Cloud on AWS: Optimized for the Next-Generation Hybrid Cloud
EBOOK: VMware Cloud on AWS: Optimized for the Next-Generation Hybrid Cloud Contents Introduction... 3 What is VMware Cloud on AWS?... 5 Customer Benefits of Adopting VMware Cloud on AWS... 6 VMware Cloud
More informationCloud Security Best Practices
Cloud Security Best Practices Cohesive Networks - your applications secured Our family of security and connectivity solutions, VNS3, protects cloud-based applications from exploitation by hackers, criminal
More informationConfiguring Administrative Operations
This section includes the following topics: Administrative Operation Conventions, page 1 Managing Backup Operations, page 1 Restoring a Backup Configuration, page 6 Managing Export Operations, page 10
More informationDC: Le Converged Infrastructure per Software Defined e Cloud Cisco NetApp - Softway. Luigi MARCOCCHIA SOFTWAY
DC: Le Converged Infrastructure per Software Defined e Cloud Cisco NetApp - Softway Luigi MARCOCCHIA SOFTWAY Today s Businesses Require Greater Agility Focus on increasing speed of business Customers expect
More informationCreating Application Containers
This chapter contains the following sections: General Application Container Creation Process, page 1 Creating Application Container Policies, page 2 About Application Container Templates, page 5 Creating
More informationTaming the Multi-Cloud With Simplicity and Openness. Minh Dang Cisco Systems Vietnam 2018 January
Taming the Multi-Cloud With Simplicity and Openness Minh Dang Cisco Systems Vietnam 2018 January Multi-Cloud Challenge Growth in Applications and Infrastructure Many Operating Env COST Data Center Many
More informationVMware Cloud on AWS. A Closer Look. Frank Denneman Senior Staff Architect Cloud Platform BU
VMware Cloud on AWS A Closer Look Frank Denneman Senior Staff Architect Cloud Platform BU Speed is the New Currency Cloud Computing We are in the 3 rd fundamental structural transition in the history of
More informationCisco CloudCenter Solution with Cisco ACI: Common Use Cases
Cisco CloudCenter Solution with Cisco ACI: Common Use Cases Cisco ACI increases network security, automates communication policies based on business-relevant application requirements, and decreases developer
More informationCisco Virtual Networking Solution for OpenStack
Data Sheet Cisco Virtual Networking Solution for OpenStack Product Overview Extend enterprise-class networking features to OpenStack cloud environments. A reliable virtual network infrastructure that provides
More information21CTL Disaster Recovery, Workload Mobility and Infrastructure as a Service Proposal. By Adeyemi Ademola E. Cloud Engineer
21CTL Disaster Recovery, Workload Mobility and Infrastructure as a Service Proposal By Adeyemi Ademola E. Cloud Engineer 1 Contents Introduction... 5 1.2 Document Purpose and Scope...5 Service Definition...
More informationVMware Cloud on AWS Networking and Security. 5 September 2018 VMware Cloud on AWS
VMware Cloud on AWS Networking and Security 5 September 2018 VMware Cloud on AWS You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/ If you have
More informationNTT Com Press Conference March 1, 2016 #enterprisecloud
NTT Com Press Conference March 1, 2016 #enterprisecloud 1 Significant Enhancement of Enterprise Cloud - Realizing Digital Transformation - NTT Communications March 1, 2016 2 NTT Communications Initiatives
More informationCustomer Onboarding with VMware NSX L2VPN Service for VMware Cloud Providers
VMware vcloud Network VMware vcloud Architecture Toolkit for Service Providers Customer Onboarding with VMware NSX L2VPN Service for VMware Cloud Providers Version 2.8 August 2017 Harold Simon 2017 VMware,
More informationCompute - 36 PCPUs (72 vcpus) - Intel Xeon E5 2686 v4 (Broadwell) - 512GB RAM - 8 x 2TB NVMe local SSD - Dedicated Host vsphere Features - vsphere HA - vmotion - DRS - Elastic DRS Storage - ESXi boot-from-ebs
More informationVMWARE SOLUTIONS AND THE DATACENTER. Fredric Linder
VMWARE SOLUTIONS AND THE DATACENTER Fredric Linder MORE THAN VSPHERE vsphere vcenter Core vcenter Operations Suite vcenter Operations Management Vmware Cloud vcloud Director Chargeback VMware IT Business
More informationSegmentation. Threat Defense. Visibility
Segmentation Threat Defense Visibility Establish boundaries: network, compute, virtual Enforce policy by functions, devices, organizations, compliance Control and prevent unauthorized access to networks,
More informationPrivate Cloud Public Cloud Edge. Consistent Infrastructure & Consistent Operations
Hybrid Cloud Native Public Cloud Private Cloud Public Cloud Edge Consistent Infrastructure & Consistent Operations VMs and Containers Management and Automation Cloud Ops DevOps Existing Apps Cost Management
More informationMonitoring Hybrid Cloud Applications in VMware vcloud Air
Monitoring Hybrid Cloud Applications in ware vcloud Air ware vcenter Hyperic and ware vcenter Operations Manager Installation and Administration Guide for Hybrid Cloud Monitoring TECHNICAL WHITE PAPER
More informationbelieve in more SDN for Datacenter A Simple Approach
believe in more SDN for Datacenter A Simple Approach 1 Agenda ACI Overview Fabric Policy Constructs Hypervisor Support A migra>on scenario One management umbrella: UCS Director Q&A 2 Applica,on Language
More informationDevNet Technical Breakout: Introduction to ACI Programming and APIs.
DevNet Technical Breakout: Introduction to ACI Programming and APIs. Michael Cohen Agenda Introduction to ACI ACI Policy ACI APIs REST API Python API L4-7 Scripting Opflex 3 Application Centric Infrastructure
More informationIntuit Application Centric ACI Deployment Case Study
Intuit Application Centric ACI Deployment Case Study Joon Cho, Principal Network Engineer, Intuit Lawrence Zhu, Solutions Architect, Cisco Agenda Introduction Architecture / Principle Design Rollout Key
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
MMC1532BE Using VMware NSX Cloud for Enhanced Networking and Security for AWS Native Workloads Percy Wadia Amol Tipnis VMworld 2017 Content: Not for publication #VMworld #MMC1532BE Disclaimer This presentation
More informationTable of Contents HOL-PRT-1305
Table of Contents Lab Overview... 2 - Abstract... 3 Overview of Cisco Nexus 1000V series Enhanced-VXLAN... 5 vcloud Director Networking and Cisco Nexus 1000V... 7 Solution Architecture... 9 Verify Cisco
More informationCisco HyperFlex Systems
White Paper Cisco HyperFlex Systems Install and Manage Cisco HyperFlex Systems in a Cisco ACI Environment Original Update: January 2017 Updated: March 2018 Note: This document contains material and data
More informationCustomer s journey into the private cloud with Cisco Enterprise Cloud Suite
Customer s journey into the private cloud with Cisco Enterprise Cloud Suite Peter Charpentier, Senior Solution Architect, Cisco AS Cisco Spark How Questions? Use Cisco Spark to communicate with the speaker
More informationData Center Virtualization Setting the Foundation. Ed Bugnion VP/CTO, Cisco Server, Access and Virtualization Technology Group
Data Center Virtualization Setting the Foundation Ed Bugnion VP/CTO, Cisco Server, Access and Virtualization Technology Group I Fought the Law, and the Law Won Sonny Curtis and the Crickets Moore s Law
More informationvshield Administration Guide
vshield Manager 5.1 vshield App 5.1 vshield Edge 5.1 vshield Endpoint 5.1 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
NET1949BU Seamless Network Connectivity for Virtual and Bare-metal s with NSX Suresh Thiru Sridhar Subramanian VMworld 2017 Content: Not for publication VMworld 2017 - NET1949BU Disclaimer This presentation
More informationSECURING THE MULTICLOUD
SECURING THE MULTICLOUD Bahul Harikumar and Ali Bidabadi Juniper Networks This statement of direction sets forth Juniper Networks current intention and is subject to change at any time without notice.
More informationUnity EdgeConnect SP SD-WAN Solution
As cloud-based application adoption continues to accelerate, geographically distributed enterprises increasingly view the wide area network (WAN) as critical to connecting users to applications. As enterprise
More informationSteelConnect. The Future of Networking is here. It s Application-Defined for the Cloud Era. SD-WAN Cloud Networks Branch LAN/WLAN
Data Sheet SteelConnect The Future of Networking is here. It s Application-Defined for the Cloud Era. SD-WAN Cloud Networks Branch LAN/WLAN The Business Challenge Delivery of applications is becoming more
More informationThe Virtualisation Security Journey: Beyond Endpoint Security with VMware and Symantec
The Virtualisation Security Journey: Beyond Endpoint Security with VMware and Symantec James Edwards Product Marketing Manager Dan Watson Senior Systems Engineer Disclaimer This session may contain product
More informationDEFINING SECURITY FOR TODAY S CLOUD ENVIRONMENTS. Security Without Compromise
DEFINING SECURITY FOR TODAY S CLOUD ENVIRONMENTS Security Without Compromise CONTENTS INTRODUCTION 1 SECTION 1: STRETCHING BEYOND STATIC SECURITY 2 SECTION 2: NEW DEFENSES FOR CLOUD ENVIRONMENTS 5 SECTION
More informationService Oriented Virtual DC Design
Dubrovnik, Croatia, South East Europe 20-22 May, 2013 Service Oriented Virtual DC Design Višnja Milovanović Consulting Systems Engineer Data Center & Virtualization 2011 2012 Cisco and/or its affiliates.
More informationCisco SD-WAN and DNA-C
Cisco SD-WAN and DNA-C SD-WAN Cisco SD-WAN Intent-based networking for the branch and WAN 4x Improved application experience Better user experience Deploy applications in minutes on any platform with consistent
More informationvshield Quick Start Guide
vshield Manager 4.1.0 Update 1 vshield Zones 4.1.0 Update 1 vshield Edge 1.0.0 Update 1 vshield App 1.0.0 Update 1 vshield Endpoint 1.0.0 Update 1 This document supports the version of each product listed
More informationHuawei CloudFabric and VMware Collaboration Innovation Solution in Data Centers
Huawei CloudFabric and ware Collaboration Innovation Solution in Data Centers ware Data Center and Cloud Computing Solution Components Extend virtual computing to all applications Transform storage networks
More informationPSOACI Tetration Overview. Mike Herbert
Tetration Overview Mike Herbert Cisco Spark How Questions? Use Cisco Spark to communicate with the speaker after the session 1. Find this session in the Cisco Live Mobile App 2. Click Join the Discussion
More informationEnterprise. Nexus 1000V. L2/L3 Fabric WAN/PE. Customer VRF. MPLS Backbone. Service Provider Data Center-1 Customer VRF WAN/PE OTV OTV.
2 CHAPTER Cisco's Disaster Recovery as a Service (DRaaS) architecture supports virtual data centers that consist of a collection of geographically-dispersed data center locations. Since data centers are
More information[MS10992]: Integrating On-Premises Core Infrastructure with Microsoft Azure
[MS10992]: Integrating On-Premises Core Infrastructure with Microsoft Azure Length : 3 Days Audience(s) : IT Professionals Level : 300 Technology : Azure Delivery Method : Instructor-led (Classroom) Course
More informationIntelligent WAN: Leveraging the Internet Secure WAN Transport and Internet Access
Now a part of Cisco We bought Viptela Intelligent WAN: Leveraging the Internet Secure WAN Transport and Internet Access Branch Hybrid WAN Transport IPsec Secure MPLS (IP-VPN) Private Cloud Virtual Private
More informationBuilding a Video Optimized Private Cloud Platform on Cisco Infrastructure Rohit Agarwalla, Technical
Building a Video Optimized Private Cloud Platform on Cisco Infrastructure Rohit Agarwalla, Technical Leader roagarwa@cisco.com, @rohitagarwalla DEVNET-1106 Agenda Cisco Media Blueprint Media Workflows
More informationVMware Cloud Provider Platform
VMware Cloud Provider Platform Enabling your journey to multicloud Winston Benjamin Systems Engineer Cloud Provider Program Disclaimer This presentation may contain product features that are currently
More informationCreating Application Containers
This chapter contains the following sections: General Application Container Creation Process, page 1 Creating Application Container Policies, page 3 About Application Container Templates, page 5 Creating
More informationCisco Prime Data Center Network Manager Release 7.1
Product Bulletin Cisco Prime Data Center Network Manager Release 7.1 PB733518 Cisco Prime Data Center Network Manager (DCNM) software is an advanced network management system (NMS) for storage, LAN, and
More informationVMware vcloud Networking and Security Overview
VMware vcloud Networking and Security Overview Efficient, Agile and Extensible Software-Defined Networks and Security WHITE PAPER Overview Organizations worldwide have gained significant efficiency and
More informationVMware Cloud on AWS Getting Started. 18 DEC 2017 VMware Cloud on AWS
VMware Cloud on AWS Getting Started 18 DEC 2017 VMware Cloud on AWS You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/ If you have comments about
More informationEdgeConnect for Amazon Web Services (AWS)
Silver Peak Systems EdgeConnect for Amazon Web Services (AWS) Dinesh Fernando 2-22-2018 Contents EdgeConnect for Amazon Web Services (AWS) Overview... 1 Deploying EC-V Router Mode... 2 Topology... 2 Assumptions
More informationEZ Cloud Reference Material EZ Cloud Type 1: Release 1 Use Cases
EZ Cloud Type 1: Release 1 Cases Cases Case: Onboard New Group Case: a New Basic Project Case: New Virtual Machine Case: New Bare Metal Server Automate the provisioning steps in the compute, storage and
More informationFeatures. HDX WAN optimization. QoS
May 2013 Citrix CloudBridge Accelerates, controls and optimizes applications to all locations: datacenter, branch offices, public and private clouds and mobile users Citrix CloudBridge provides a unified
More informationCisco Application Centric Infrastructure and Microsoft SCVMM and Azure Pack
White Paper Cisco Application Centric Infrastructure and Microsoft SCVMM and Azure Pack Introduction Cisco Application Centric Infrastructure (ACI) is a next-generation data center fabric infrastructure
More informationPradeep Kathail Chief Software Architect Network Operating Systems Technology Group, Cisco Systems Inc.
Pradeep Kathail Chief Software Architect Network Operating Systems Technology Group, Cisco Systems Inc. March 4 th, 2014 2012 2010 Cisco and/or its affiliates. All rights reserved. 1 2012 Cisco and/or
More information