Cisco's Cloud Services Router (CSR 1000V): Extending the Enterprise Network to the Cloud Ray Wong, Technical Marketing Engineer BRKVIR-2016
|
|
- Candace Cain
- 6 years ago
- Views:
Transcription
1
2 Cisco's Cloud Services Router (CSR 1000V): Extending the Enterprise Network to the Cloud Ray Wong, Technical Marketing Engineer BRKVIR-2016
3 Housekeeping We value your feedback don t forget to complete your online session evaluations after each session Visit the World of Solutions and Meet the Engineer Please switch off your mobile phones Follow us on Twitter for real time updates of the #CLUS
4 Agenda CSR 1000V Overview and Architecture Licensing Use Cases CSR 1000V in Public Cloud Deployment and Management Performance and Scale Q&A
5 CSR 1000V Overview & Architecture
6 ASR 1K Architecture Embedded Services Processor (active) FECP Route Processor (active) RP Route Processor (standby) RP Embedded Services Processor (standby) FECP RP Handles control plane traffic Manages system Crypto assist QFP subsystem Interconn. Interconn. Crypto assist QFP subsystem ESP Handles forwarding plane traffic SPA Interface Processor Interconn. Interconn. Shared Port Adaptors provide interface connectivity Interconn. SPA Agg. IOCP Interconn. SPA Agg. IOCP Passive Midplane Interconn. SPA Agg. IOCP Centralized Forwarding Architecture Traffic flows through the active ESP Standby is synchronized with all flow state Distributed Control Architecture SPA SPA SPA SPA SPA SPA Dedicated control processors for major systems components
7 CSR 1000V: Take ASR 1001 and Remove Hardware RP CPU IOS Chassis Mgr. Forwarding Mgr. Kernel (incl. utilities) Interconn. ESP FECP QFP Client / Driver Chassis Mgr. Forwarding Mgr. Kernel (incl. utilities) Interconn. Interconn. QFP subsys-tem QFP code Crypto assist SIP Interconn. SPA Agg. IOCP SPA SPA SPA driver SPA driver driver driver Chassis Mgr. Kernel (incl. utilities) SPA SPA
8 CSR 1000V: Embed the Resulting Software in a VM RP IOS VSR 1000 (virtual IOS XE) Chassis Mgr. Forwarding Mgr. No crypto ASIC CSR 1000V leverages AES-NI No QFP CPU Memory ESP Lower forwarding performance No hardware accelerators FFP Client / Driver Less efficient feature processing Flash / Disk Kernel (incl. utilities) FFPcode Mgmt ENET Chassis Mgr. Forwarding Mgr. Console Ethernet vnics
9 Cisco Cloud Services Router (CSR 1000V) Cisco IOS XE Software in Virtualized Form-Factor App OS App OS Hypervisor Virtual Switch CSR 1000V IOS XE Cloud Edition Selected IOS XE features based on use cases Infrastructure Agnostic Supports any x86 server or vswitch Runs on ESXi, KVM, Hyper-V, Xen, Amazon AWS, Microsoft Azure* Throughput Elasticity Delivers 10Mbps to 20 Gbps throughput Server Virtualized Networking with Rapid Deployment and Flexibility * Available from June 2015 ** Available on AWS, Smart Licensing (CA) Multiple Licensing Models Term, Perpetual, Usage** Programmability RESTful APIs for automated management
10 Supported Hypervisors and vnics (IOS XE 3.15) Supported Versions Supported NIC Types Max. Number of vnics per VM vnic Hot Add/Remove Support SR-IOV Support VMWare ESXi KVM Microsoft Hyper-V 5.0, 5.1, 5.5 RHEL 6.6, Ubuntu Server LTS VMXNET3 ixgbevf/ixgbe VirtIO ixgbevf/ixgbe Windows Server 2012 R2 HV NETVSC Yes Yes No No Yes (since XE 3.13) Yes (since XE ) Yes (since XE 3.13) Citrix XenServer 6.2 VIF ixgbevf/ixgbe Yes (since XE )
11 CSR 1000V Architecture Virtualized IOS XE Forwarding Plane FFP Client / Driver Chassis Mgr. Forwarding Mgr. FFP code vcpu vmemory vdisk Control Plane IOS Chassis Mgr. Forwarding Mgr. Linux Container vnic Hypervisor (VMware / Citrix / KVM) CPU Memory Disk NIC Virtualized IOS XE Generalized to work on any x86 system Hardware specifics abstracted through a virtualization layer Forwarding (ESP) and Control (RP) mapped to vcpus Bootflash / NVRAM are mapped into memory from hard disk No dedicated crypto engine leveraged the Intel AES-NI instruction set to provide hardware crypto assist Boot loader functions implemented by GRUB Physical Hardware
12 CSR 1000V Architecture IOSd Forwarding Plane FFP Client / Driver Control Plane IOS Runs as a process under the Guest Linux Kernel IOS timing is governed by Linux Kernel scheduling Chassis Mgr. Chassis Mgr. Forwarding Mgr. Forwarding Mgr. FFP code vcpu vmemory vdisk vnic Hypervisor (VMware / Citrix / KVM) CPU Memory Disk NIC Provides virtualized management ports Managed by their respective software processes No direct hardware component access Runs Control plane features CLI and configuration processing SNMP handling Running routing protocols & computing routes Interfaces, tunnels and sessions management Processing of punted features (legacy protocols) Physical Hardware
13 CSR 1000V Architecture Hypervisor Interaction Blade Hypervisor Blade VM CSR vmem Tables vcpu vcpu VNIC port Vswitch VM CSR Scheduler VNIC port vcpu vcpu vmem Tables Hypervisor abstracts and shares physical hardware resources from / among multiple VMs Scheduling of vcpus onto physical cores can create nondeterministic behavior Scheduling of vnics onto physical ports can lead to packet losses / jitter CPU Core UCS Core CPU Core Core Phy i/f Phy i/f Memory ESXi Scheduler spreads the load across all physical cores intelligently according to a proportional share-based algorithm
14 CSR 1000V Architecture KVM Example Hypervisor virtualizes the NIC hardware to the multiple VMs Hypervisor scheduler responsible for ensuring that I/O processes are served One vhost/virtio thread used per configured interface (vnic) Each VM appears as a regular Linux process to the Host OS Linux schedulers generally time-share between processes Host-OS / KVM Guest-OS CSR Virtio-net Qemu / v-host tap x86 machine Qemu / v-host tap vswitch (OVS) / Linux bridge NIC driver NIC port Guest-OS CSR Virtio-net
15 CSR 1000V Architecture - vcpu allocation Control Plane Data Plane # vcpus Virtual Route Processor Virtual Forwarding Processor CSR 1000V Separation of control plane and data plane vcpu allocation is static and done during boot-up
16 CSR 1000V Architecture Network I/O Method Driver Performance Pros/Cons Supported Emulated E1000 Low Wide compatibility Worst performance NO Para-virtualized VMXNET3 VirtIO Excellent Virtualization aware High degree of interaction between guest OS and hypervisor para APIs YES - default Pass-through Depends on NIC type Best Direct access to HW high I/O Lose virtualization features such as vmotion YES only Intel NICs (ixgbevf / ixgbe drivers)
17 I/O Optimizations: SR-IOV with PCIe Pass-Through Allows a single PCIe device to appear to be multiple separate PCIe devices NIC supports virtualization Enables network traffic to bypass software switch layers Creates physical and virtual functions (PF/VF) PF: Controls sorter VF: Passes packets Requires support in BIOS/Hypervisor Intel VT-D / AMD IOMMU Guest-OS Guest-OS Guest-OS App App App App App App App App App Host-OS / KVM NIC VF driver VF driver VF driver VF VF VF PF layer-2 sorter / switch / classifier x86 machine SR-IOV Master Driver
18 I/O Optimizations: UCS VM-FEX UCS VM-FEX provides dedicated hardware resources to each VM vswitch and hypervisor virtualization layers are bypassed Virtualization performed in hardware One-to-one relationship between VM Can run in DirectPath or emulated mode Support for vmotion Requires dedicated cards (e.g. VIC1280)
19 Licensing
20 CSR 1000V Licensing Overview Since IOS XE 3.13, CSR 1000V package names are now: IPBase, Security, AppX and AX license boot level command adjusted accordingly Old CLI commands are hidden but still accepted ( [premium advanced standard] ) Smart Licensing available since 3.14 Evaluation licenses can be generated for 60 days using the demo portal ( Requires CSR 1000V UDI show license udi After evaluation period expires, throughput will be throttled to 100Kbps Refer to CSR SW Config Guide for license management details tml
21 CSR 1000V Licensing Key Concepts CSR license is tied to the UDI (Unique Device Identifier) UDI = Product ID (CSR1000V) + Serial Number. CSR internally generates its own random serial number on its first boot and stores it persistently in the image UDI will change when CSR is cloned, invalidating the license UDI will not change during vmotion or similar operations. License will remain valid
22 CSR 1000V Licensing Structure Pick one option from each column * CSR add-on license options not shown above Example: Technology Package (See next slide for details) IP Base Throughput 10 Mbps 50 Mbps License Type Perpetual IP Base 250 Mbps 1-Year 100 Mbps SEC AppX 250 Mbps 500 Mbps 1 Gbps Subscription (1-year or 3-year) 2.5 Gbps AX 5 Gbps 10 Gbps Usage (target date CY15)
23 CSR 1000V Technology Package Features Technology Package IP Base (formerly Standard) SEC (formerly Advanced) AppX / APP IOS-XE features Basic Networking: BGP, OSPF, EIGRP, RIP, ISIS, IPv6, GRE, VRF-LITE, NTP, QoS, PBR Multicast: IGMP, PIM High Availability: HSRP, VRRP, GLBP Addressing: 802.1Q VLAN, EVC, NAT, DHCP, DNS Basic Security: ACL, AAA, RADIUS, TACACS+, SGT/TrustSec, VASI Management: IOS-XE CLI, SSH, Flexible NetFlow, SNMP, EEM, NETCONF IP Base plus Advanced Security: Zone Based Firewall, IPSec VPN, EZVPN, DMVPN, FlexVPN, SSLVPN, GETVPN High Availability: Box-to-box HA for FW and NAT IP Base plus Advanced Networking: L2TPv3, BFD, MPLS, VXLAN Unified Communications: CUBE-ENT Application Experience: WCCPv2, AppNav, NBAR2 / AVC, IP SLA Hybrid Cloud Connectivity: LISP, OTV, VPLS, EoMPLS Subscriber Management: PTA, LNS, ISG AX (formerly Premium) ALL FEATURES
24 CSR 1000V Performance-to-Footprint in XE 3.15 Throughput IP Base SEC AppX AX 10 Mbps 1vCPU/4GB 1vCPU/4GB 1vCPU/4GB 1vCPU/4GB 50 Mbps 1vCPU/4GB 1vCPU/4GB 1vCPU/4GB 1vCPU/4GB 100 Mbps 1vCPU/4GB 1vCPU/4GB 1vCPU/4GB 1vCPU/4GB 250 Mbps 1vCPU/4GB 1vCPU/4GB 1vCPU/4GB 1vCPU/4GB 500 Mbps 1vCPU/4GB 1vCPU/4GB 1vCPU/4GB 1vCPU/4GB 1 Gbps 1vCPU/4GB 1vCPU/4GB 1vCPU/4GB 2vCPU/4GB 2.5 Gbps 1vCPU/4GB 1vCPU/4GB 4vCPU/4GB 4vCPU/4GB 5 Gbps 1vCPU/4GB 2vCPU/4GB 8vCPU/4GB NA 10 Gbps 2vCPU/4GB NA NA NA For each throughput/technology-package combination, the minimum required vcpu and RAM is listed Performance results based on 1500 Byte packets and VMWare ESXi
25 CSR 1000V License Throughput Enforcement A shaper is implemented in the ESP data path at the root of the QoS hierarchy All egress traffic is subjected to the shaper Max. rate parameter (derived from license) is programmed into the shaper Throughput limits are checked globally, not on per-interface basis Without any interface QoS Configuration, each interface gets an equal available bandwidth share Shaper does not distinguish between different types of traffic To ensure high-priority traffic is not dropped by the license shaper, configure QoS E.g. LLQ on interfaces (leveraging priority propagation of the QoS Scheduler) Note that Control Plane Policing can be applied to also mark control plane packets! 15 Mbps G1 ESP G3 10 Mbps G1->G3: 15 G2->G4: 20 G3->G2: 10 G4->G3: 15 Total: 60 Mbps 20 Mbps G2 SHAPER (50) 10Mbps (60-50) G4 15 Mbps
26 CSR1000V Smart Licensing: Pooling Traditional Node-Lock Pooling License associated with specific device No easy means to move licenses from one device to another Full visibility to all assets across the company Central repository for all licenses Licenses are company account specific and can be used with any compatible device in your company London Device 1 Brisbane Device 2 Tokyo Device 3 Associate licenses with virtual accounts Smart Account (Pool) Advanced Security Licenses Use any compatible licenses from pool with devices London Device 1 Brisbane Device 2 Tokyo Device 3
27 Central Deployment Distributed Deployment Smart Software Licensing Overview How it works 1 Customer Places Order 2 Customer Activates and Uses Software Router Switch Firewall CSR 1000V Cisco Commerce Workspace Cisco Smart Software Manager Annuity Platform Entitlement Unified Communications Router Usage Distribution Switch Firewall Video Unified Communications Collectors *License Pooling is handled through the Cisco Smart Software Manager 3 Cisco Smart Software Manager Customer Manages Licenses Cisco Smart Software Manager Warning and Notifications -25 Insufficient licenses 25 needed to return to compliance License Quantity In Use Surplus / Shortage 50 Mbps SEC Mbps AX
28 CSR1000V Smart Licensing: Out-Compliance Scenarios Could not connect to smart licensing portal or collector after first install Operate in default mode (100Kbps, CSR-AX) Smart Licensing workflow Was able to register with smart licensing & activated CSR performs with configured feature set and performance Not able to report to smart portal or collector for 90 days in a row Operate in default mode CSR configured more than purchased feature set & performance CSR reports out of compliance for 90 days
29 Use Cases
30 CSR 1000V Secure VPN Gateway Enterprise Data Center ASR Branch Location Branch Location ISR ISR Internet WAN Router Cloud Provider Data Center Distribution and ToR Switches Servers CSR 1000V CSR 1000V Virtual Private Cloud Virtual Private Cloud VPN Challenges Integrating Enterprise & Cloud VPN policies Backhaul to data center increases latency Each cloud imposes different VPN type and scale limits VPN Solutions Common VPN Types: IPSec, DMVPN, GETVPN, EZVPN, FlexVPN Routing based VPNs and private addressing Firewall, ACLs, AAA CSR Benefits Direct, secure access. Avoids backhaul to data center. Familiar, reliable, and scalable VPN Compatible with existing management tools
31 SSL VPN on CSR 1000V IPv4 available since IOS XE and IOS-XE 3.13 IPv6 available since IOS XE 3.15 Supports Full Tunnel (Thick Client) AnyConnect client Clientless (browser based) and Thin Client ( port forwarding) modes not supported Amazon/AWS support IPsec and SSL can co-exist
32 Cloud CE/PE Router VPC/ vdc Tenant Scale VPC/ vdc MPLS PE WAN Router Servers DC Fabric CSR 1000V vce Segment A MPLS PE WAN Router Servers DC Fabric CSR 1000V vpe Segment A Segment B Segment B VLAN MPLS IPoVLAN, IPoIP, MPLSoVLAN, MPLSoIP (IP=GRE, VXLAN, etc.) MP-BGP Challenges Mapping tenant traffic from VRFs to VLANs Maximum 4,096 VLANs limits scalability Benefits More Tenants per Physical Infrastructure End-to-end Managed Connectivity and SLAs
33 VxLAN on CSR 1000V Ingress VXLAN packet on Orange segment CSR as VXLAN L3 Gateway Destination is in another segment. Packet is routed to the new segment VXLAN ORANGE BDI VXLAN BLUE VLAN 100 VLAN 200 VXLAN Router Egress interface chosen Uses EVC (Ethernet Virtual Circuits): BD (Bridge Domain L2) and BDI (Bridge Domain Interface L3) Unicast or Multicast (bidir-pm) control plane Supports VxLAN routing unique to CSR and ASR1K! Not yet available on merchant silicon HW platforms Supports VRF Aware VxLAN (multiple VTEP support)
34 Network Function Virtualization with CSR 1000V Mobile Subscriber Business Access & Aggregation Wireless WiFi Edge CGN vcgn LNS vlns ISP Peering A CPE Corporate vcpe Residence Wireline DSLAM xdsl OLT xpon vbng PE vpe vrr IP/MPLS Core HGW Cable DOCSIS Content Farm VOD TV SIP High Speed CPE WiFi Access Gateway BNG-LAC, PTA PE (L3VPN and L3VPN) LNS Route Reflector Internet Peering
35 CSR 1000V in Public Cloud
36 IOS XE Coverage for All Deployment Types CSR 1000V CSR 1000V ISR 4000 ASR 1000 Hypervisor Cloud Platform Enterprise Data Center
37 The Benefits of Bringing IOS XE into Public Clouds Extends Existing Routing Topology Integrates With Existing VPN Topology (Eg. DMVPN) Shares Existing Zone Based Firewall Policies Network Logging to Existing Tools Identifies Cloud Performance Problems IOS XE Supportable by Existing IT Staff Existing Monitoring Tools Existing Troubleshooting Steps
38 Q: Where can I find the CSR on AWS? A: In the AWS marketplace! 1. Search for Cisco 2. Pick a flavor
39 What are all the different CSR 1000V types listed? Cloud Services Router 1000V BYOL Can be any tech package and throughput level depending on license purchased from Cisco and installed on CSR (not all throughputs supported) Cloud Services Router 1000V Security Tech Package Includes features from the Security technology package. Performance based on AWS instance type selected (more or less vcpu/vmemory) Cloud Services Router 1000V AX Tech Package Includes features from the AX technology package. Performance based on AWS instance type selected (more or less vcpu/vmemory) Maximum Performance versions of the above three Enables SR-IOV enhanced networking for higher performance CSR Direct Connect 1 Gig and Multi-Gig Instances used for securing AWS Direct Connect circuits
40 CSR 1000V Licensing for AWS Two Options Bring Your Own License BYOL AWS Marketplace Billing Provision BYOL CSR instances from AWS Marketplace Only pay AWS for basic instance-type fees Purchase desired license from Cisco or Cisco Partner Install purchased license onto BYOL version of CSR you provisioned from the AWS Marketplace Scalable from 10 Mbps up to 2.5 Gbps (AWS has a 2 Gbps throughput limit) Provision hourly or annually billed CSR instances from AWS Marketplace Pay AWS for basic instance-type usage AND fees for CSR usage AWS pays Cisco for CSR usage fees they collect. You pay Cisco nothing directly. No license file to manage or install Choose EC2 instance type based on performance requirement
41 CSR 1000V Features Availability on AWS Technology Package IP Base (formerly Standard) SEC (formerly Advanced) AppX AX (formerly Premium) Features in Green will work only over a Tunnel interface IOS-XE Features Basic Networking: BGP, OSPF, EIGRP, RIP, ISIS, IPv6, GRE, VRF-LITE, NTP, QoS, PBR Multicast: IGMP, PIM High Availability: HSRP, VRRP, GLBP Addressing: 802.1Q VLAN, EVC, NAT, DHCP, DNS Basic Security: ACL, AAA, RADIUS, TACACS+ Management: IOS-XE CLI, SSH, Flexible NetFlow, SNMP, EEM, NETCONF IP Base Plus Advanced Security: Zone Based Firewall, IPSec VPN, EZVPN, DMVPN, FlexVPN, SSLVPN, GETVPN High Availability: Box-to-box HA for FW and NAT IP Base Plus Advanced Networking: L2TPv3, BFD, MPLS, VRF, VXLAN Application Experience: WCCPv2, AppXNAV, NBAR2, AVC, IP SLA Hybrid Cloud Connectivity: LISP, OTV, VPLS, EoMPLS Subscriber Management: PTA, LNS, ISG ALL FEATURES Features in Red will not work in Amazon limitations of AWS infrastructure (lack of L2 support, Multicast not supported)
42 AWS VPC Networking 101 VPC = Logically isolated network own IP range, routes, security policies, etc. VPCs IP ranges can overlap VPC1 CIDR /16 Subnet A /24 AWS Internet Gateway provides external access in/out of VPC Public IP NAT or Overload NAT for outbound traffic (No true public IPs) AWS VPC Peering can route between VPCs (with limitations) Security Options: Network ACLs protect subnets Security Groups protect instances Internet Gateway Subnet B /24 AWS Route Tables route within the VPC (always first IP in subnet) All VPC subnets ALWAYS have a route to all other VPC subnets!
43 CSR 1000V Placement in the AWS Network NAT at the Internet GW Will break services that do not work over NAT, such as GET-VPN Tunnel source will be a private address Tunnel destination from the perspective of VPN peers will be a public address Assign EC2 elastic IP address so that address does not change if the CSR1K is shutdown Other VPCs see Elastic IP address unless using VPC peering Maps to AWS Elastic IP Internet IP 54.x.x.x Gi Gi Gi Gi CSR should be the default gateway for the application VMs
44 Interconnecting AWS VPCs Using the CSR 1000V virtual private cloud virtual private cloud US west region AWS cloud US east region No native AWS ability to connect two VPCs together, in same or different regions Even VPC Peering in AWS cannot span multiple regions Easily integrate multiple AWS regions into existing VPN topology as new sites Distribute applications across the globe, and keep the network simple
45 Securing AWS Direct Connect Circuits Cisco ISR/ASR Enterprise Subnets IPSec AWS Direct Connect Virtual Private Gateway CSR 1000V VPC Public Subnet Corporate Data Center VPC Private Subnets AWS Cloud Virtual Private Cloud (VPC) Encrypts Direct Connect traffic, for corporate security policy or regulatory compliance Powered the Test Drive area at Amazon re:invent 2014 Las Vegas
46 CSR 1000V High Availability in AWS No virtual IP as with HSRP, since AWS doesn t allow multicast AWS Route Tables for app subnets are re-pointed to opposite CSR Failure detection is automatic CSR itself calls AWS API to adjust AWS Route Table routes VPC CSR Subnet AWS EC2 Query API App Subnet A App Subnet B Before HA Failover After HA Failover
47 CSR 1000V on Microsoft Azure Availability Timeline May 4th-8th 2015: Official solution launch at Microsoft Ignite conference Early June 2015: Early Field Trials with selected customers Late June 2015: CSR 1000V available on Azure Marketplace with Bring-Your- Own-License (BYOL) 2nd Half 2015: Launch of hourly billing in Azure Marketplace
48 Deployment & Management
49 CSR 1000V VM Instantiation Overview CSR 1000V VM Instances can be instantiated using the following methods (with possible hypervisor dependencies) VMWare ESXi: vsphere KVM: OpenStack Public cloud: Amazon Marketplace, Microsoft Azure Image Management VMWare ESXi: vcloud Director KVM: OpenStack Glance Public cloud: Amazon Marketplace, MS System Center An new Configuration OVF Tool (COT) is also provided for Cisco VMs License management Smart licensing
50 CSR 1000V VMWare ESXi VM Deployment CSR 1000V can be installed and edited under VMWare ESXi using the vsphere tools Deploying an OVA in vsphere involves several steps to navigate through the vsphere GUI Deployment using an.iso format is also supported in vsphere Editing the properties of a VM can be done using vsphere vapp For more details, refer to on/csr1000vswcfg/installesxi.html
51 vcloud Director Integration CSR 1000V Bring-Up Install CSR OVA and create template in vcenter Import into vcloud Director Catalog and create vapp template Build new vapp from template and deploy Add vapp to the Catalog MASTER TEMPLATE CREATED
52 vcloud Director Integration: Automated Deployment Scale out with automated deployment of multiple customized CSR instances using the vapp Leverage vcloud Director REST API to configure IOS bootstrap parameters (IP address, credentials, etc) CSR now ready to talk to outside world network connectivity, credentials Further per-tenant CSR customization using REST API calls CSR REST API guide available Deploy vapp on vdc using data file. Map vcloud org networks to CSR interfaces Obtain Location of created instance Modify productse ctions with IOS parameters Power on the CSR instance Use CSR REST API for additional config CSR READY
53 CSR 1000V KVM VM Deployment CSR 1000V is supported under KVM with RHEL, RHEV and Ubuntu Deploying a CSR 1000V manually in KVM involves going through several steps in the console Based on the VM Manager Installation can be done using OpenStack (XE 3.12+) Based on Horizon GUI Based on the Openstack CLI tool by Creating a Nova flavor Creating a Glance image Using the Nova boot command For more details, refer to
54 OpenStack Conceptual Architecture
55 CSR 1000V and OpenStack CSR 1000V as Instance VM CSR 1000V replaces the default Neutron Router Need a CSR 1000V router service plugin and a cfg agent Multiple Plugins and using Service type framework for features Plugins for OpenStack Kilo Router-aaS FWaaS VPNaaS
56 REST Follows a Familiar Model REST = Representational State Transfer Stateless client-server model Uses URIs to identify resources of interest Uses JSON (JavaScript Object Notation) A light-weight, open standard, human readable data interchange format A more compact alternative to XML Benefits: Human readable Software friendly Large developer base Client libraries in many languages REST API {"ids":[ , , , , , ], "next_cursor":0, "next_cursor_str":"0", "previous_cursor":0, "previous_cursor_str":"0"} HTTP GET JSON/XML Describes data in a format applications can understand
57 REST API Client Authentication Global Banner, Hostname, Domain name, User name / password, Logging, Import / export running config, SNM, etc Licensing Call-home Smart Licensing DHCP server / relay Routing Protocols BGP / OSPF / EIGRP / static Display routing tables ACLs VRF-awareness: DNS, OSPF, BGP, EIGRP, Routing tables, NAT, DHCP, VPN QoS DNS NTP LISP Interface IP NAT (Static / dynamic) Zone-based firewall System Usage (Memory / CPU) VPN: svti, EzVPN See for details REST support typically lags behind official feature support on CSR 1000v
58 CSR 1000V RESTful API Architecture Client 1 Client 2 C1 REST API calls HTTPS C2 REST API calls Web Server REST API C2 Session OneP SDK TIPC (Transparent Inter-Process Commn.) OneP AL Client 3 C3 REST API calls OneP Python App LXC Container IOSd CSR 1000V
59 Performance & Scale
60 Factors Affecting CSR 1000V Performance Hypervisor Type (VMware, KVM, Hyper-V, Citrix XenServer) Numbers of cores / vcpu allocated to a CSR instance Features (CEF, IPsec, NAT, FW, Features combination) CPU type and settings Host processor clock speeds (GHz); Processor/chipset cache sizes L1, L2, L3 Hyper-Threading Processor Affinity BIOS settings (power mgmt.) I/O model and settings Para-virtualized drivers (default) Cisco VM-FEX; SR-IOV (Single Root I/O Virtualization) Definition of Non-drop (NDR) rate 0 packet loss or 5 packets lost or 0.01% packet loss VM Oversubscription
61 Loss Rate Interpretation Background Performance results vary depending on what acceptable frame loss is defined. Typical definitions for loss rates (FLR) range from Absolutely 0 packets lost -> Non-drop Rate 5 packets lost 0.01% of PPS lost 2vCPU: throughput of 670 Mbps at 0.01% acceptable traffic loss Sample Data only! Small relaxation of FLR definition can lead to significant higher throughput Typically FLR Test data reported for 5 packet loss (to account for warm up) with multiple consecutive 2 minute runs Unless stated otherwise 2vCPU: throughput of 384 Mbps at 0% acceptable traffic loss
62 Number of Packets Lost in Perspective At high-speed link rates, number of packets that may be lost may be substantial while still meeting the FLR Loss Tolerance Maximum Throughput at Line Rate Total Dropped Packets during Trial Duration Allowed by Loss Tolerance of 0.01% Dropped Packet Rate allowed by Loss Tolerance (PPS) Physical Media 10 Mbps Ethernet Mbps 1, GE 17, GE 178,571 1,488 Maximum Throughput at Physical Media Line Rate Total Dropped Packets during Trial Duration Allowed by Loss Tolerance of 0.1% 10 Mbps Ethernet 1, Mbps 17, GE 178,571 1,488 10GE 1,785,714 14,881 Dropped Packet Rate allowed by Loss Tolerance (PPS)
63 Aggregate Throughput Mbps Sample Performance with Multiple VMs with VMFEX Near linear performance increase as VMs are added due to VM-Fex with Direct Path 800% 700% 600% 500% Hypervisor CPU contention HV Oversubscription VM Oversubscription 400% 300% 200% 100% 0% vcpu VMs B200 M2 12 Cores, 2.67 Ghz VM/FEX & Direct Path ESXI 5.1 1VM standalone ~ 220 Mbps IP Packets CEF IMIX
64 KVM Performance Tuning Recommendations Use a Direct path I/O technology (SR-IOV w/ PCIe pass-through) with CPU tuning below! Otherwise the following configurations are recommended: Tuning Recommendation Details / Commands Disable Hyperthreading Can be done in BIOS CPU Pin vcpus sudo virsh vcpupin test 0 6 CPU Pin vhost processes Change vnet txqueue length to 4000 Turn off TSO, GSO, RSO, sudo taskset -pc 4 <process Number>, Where <process Number> is found using ps -ef grep vhost Default tx queue length is 500 sudo ifconfig vnet1 txqueuelen 4000 ethtool -K vnet1 tso off gso off gro off NOTE: these settings may impact the number of VMs that can be instantiated on a server / blade Tuning I/O I/O I/O
65 VM-FEX performance (ESXi IOS-XE 3.15, IMIX) High Performance with VM-FEX CEF ACL NAT FW Ipsec 1vCPU 2vCPU 4vCPU 8vCPU 20 Gbps+ Performance with Large Packets Test Parameters VM-FEX / VM Direct Path enabled. Hardware: Cisco UCSC-C240-M3S CPU: Intel Xeon E GHz
66 CSR Performance and Scale (IOS-XE 3.15) Feature Throughput (Mbps) IMIX Feature NAT 44 Scale 450K 2 vcpu 4 vcpu CEF Firewall IPSec (SHA, AES) FW + NAT FW + HQoS + NAT FW + NAT + IPSec + QoS Firewall Test parameters 256K IPsec 1200 IPv4 routes 600K IPv4 ACEs / system vrr 25M IPv4 Routes (w/ 16GB) 0.01 % pkt. loss, vswitch, UCS server with Intel Xeon 3.5 GHz, ESXi 5.5
67 Q&A
68 Complete Your Online Session Evaluation Give us your feedback to be entered into a Daily Survey Drawing. A daily winner will receive a $750 Amazon gift card. Complete your session surveys though the Cisco Live mobile app or your computer on Cisco Live Connect. Don t forget: Cisco Live sessions will be available for viewing on-demand after the event at CiscoLive.com/Online
69 Continue Your Education Demos in the Cisco campus Walk-in Self-Paced Labs Table Topics Meet the Engineer 1:1 meetings Related sessions
70 Thank you
71
Cisco Cloud Services Router 1000V with Cisco IOS XE Software Release 3.13
Q&A Cisco Cloud Services Router 1000V with Cisco IOS XE Software Release 3.13 Q. What is the Cisco Cloud Services Router 1000V? A. The Cisco Cloud Services Router 1000V (CSR 1000V) is a router in virtual
More informationCisco Integrated Services Virtual Router
Data Sheet Cisco Integrated Services Virtual Router The Cisco Integrated Services Virtual Router (ISRv) is a virtual form-factor Cisco IOS XE Software router that delivers comprehensive WAN gateway and
More informationCisco Cloud Services Router 1000v
Data Sheet Cisco Cloud Services Router 1000v Cisco IOS XE Software The Cisco Cloud Services Router 1000v (CSR 1000v) is a virtual-form-factor router that delivers comprehensive WAN gateway and network
More informationAdvanced CSR Lab with High Availability and Transit VPC
Advanced CSR Lab with High Availability and Transit VPC Fan Yang, Cisco, Engineer, Technical Marketing Nikolai Pitaev, Cisco, Engineer, Technical Marketing LTRVIR-3004 Agenda Slides (30 Min.): CSR 1000V
More informationBuilding Hybrid Clouds with CSR 1000v Steven Carter, Solutions Architect Chris Hocker, Consulting Systems Engineer BRKARC-2023
Building Hybrid Clouds with CSR 1000v Steven Carter, Solutions Architect Chris Hocker, Consulting Systems Engineer BRKARC-2023 Agenda CSR Deployment in AWS On-Prem Deployment Options in VMware & OpenStack
More informationvedge Cloud Datasheet PRODUCT OVERVIEW DEPLOYMENT USE CASES EXTEND VIPTELA OVERLAY INTO PUBLIC CLOUD ENVIRONMENTS
vedge Cloud Datasheet PRODUCT OVERVIEW Viptela vedge Cloud is a software router platform that supports entire range of capabilities available on the physical vedge-100, vedge-1000 and vedge-2000 router
More informationThe vedge Cloud router targets the follow ing main deployment use cases: 1. Extend SD-WAN Overlay into Public Cloud Environments
Data Sheet Cisco vedge Cloud Product Overview Cisco vedge Cloud is a softw are router platform that supports an entire range of capabilities available on the physical vedgerouter platforms. The vedge Cloud
More informationBuilding Service-Aware Networks
Building Service-Aware Networks The Next-Generation WAN/MAN Muhammad Afaq Khan, CCIE No. 9070 Cisco Press 800 East 96th Street Indianapolis, IN 46240 Building Service-Aware Networks: The Next-Generation
More informationEmpowering SDN SOFTWARE-BASED NETWORKING & SECURITY FROM VYATTA. Bruno Barba Systems Engineer Mexico & CACE
Empowering SDN SOFTWARE-BASED NETWORKING & SECURITY FROM VYATTA Bruno Barba Systems Engineer Mexico & CACE bbarba@brocade.com Brocade Who is Vyatta? Leader in software-based networking Founded in 2006
More informationCisco Virtual Networking Solution for OpenStack
Data Sheet Cisco Virtual Networking Solution for OpenStack Product Overview Extend enterprise-class networking features to OpenStack cloud environments. A reliable virtual network infrastructure that provides
More informationIntroduction to the Cisco ASAv
Hypervisor Support The Cisco Adaptive Security Virtual Appliance (ASAv) brings full firewall functionality to virtualized environments to secure data center traffic and multitenant environments. You can
More informationLTRDCN-2100 Cloud networking solutions with Cisco Cloud Services Router (CSR 1000V) on AWS and Azure
LTRDCN-2100 Cloud networking solutions with Cisco Cloud Services Router (CSR 1000V) on AWS and Azure Fan Yang, Cisco, Engineer, Technical Marketing Raghavendra K S, Cisco, Engineer, Technical Marketing
More informationCisco CSR 1000v Series Cloud Services Router Software Configuration Guide
Cisco CSR 1000v Series Cloud Services Router Software Configuration Guide Last Modified: 2018-06-26 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com
More informationCisco CSR1000V Overview. Cisco CSR 1000V Use Cases in Amazon AWS
Cisco CSR1000V Overview The Cisco Cloud Services Router 1000V (CSR 1000V) sets the standard for enterprise network services and security in the Amazon Web Services (AWS) cloud. The Cisco CSR 1000V is based
More informationCisco CSR 1000v Series Cloud Services Router Software Configuration Guide
Cisco CSR 1000v Series Cloud Services Router Software Configuration Guide Last Modified: 2018-03-23 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com
More informationInstalling the Cisco CSR 1000v in KVM Environments
Installing the Cisco CSR 1000v in KVM Environments Kernel Virtual Machine Support Information, page 1 KVM Support on OpenStack, page 2 Installation Requirements for KVM Cisco IOS XE Fuji 16.7, page 2 Creating
More informationInstalling the Cisco CSR 1000v in VMware ESXi Environments
Installing the Cisco CSR 1000v in VMware ESXi Environments VMware ESXi Support Information, page 1 VMware Requirements Cisco IOS XE Fuji 16.7, page 2 Supported VMware Features and Operations, page 3 Deploying
More informationEnterprise. Nexus 1000V. L2/L3 Fabric WAN/PE. Customer VRF. MPLS Backbone. Service Provider Data Center-1 Customer VRF WAN/PE OTV OTV.
2 CHAPTER Cisco's Disaster Recovery as a Service (DRaaS) architecture supports virtual data centers that consist of a collection of geographically-dispersed data center locations. Since data centers are
More informationConfiguring Cisco Nexus 7000 Series Switches
Configuring Cisco Nexus 7000 Series Switches DCNX7K v3.1; 5 Days, Instructor-led Course Description The Configuring Cisco Nexus 7000 Switches (DCNX7K) v3.0 course is a 5-day ILT training program that is
More informationVMWARE SOLUTIONS AND THE DATACENTER. Fredric Linder
VMWARE SOLUTIONS AND THE DATACENTER Fredric Linder MORE THAN VSPHERE vsphere vcenter Core vcenter Operations Suite vcenter Operations Management Vmware Cloud vcloud Director Chargeback VMware IT Business
More informationCloud Networking (VITMMA02) Server Virtualization Data Center Gear
Cloud Networking (VITMMA02) Server Virtualization Data Center Gear Markosz Maliosz PhD Department of Telecommunications and Media Informatics Faculty of Electrical Engineering and Informatics Budapest
More informationDeploying Cloud Network Services Prime Network Services Controller (formerly VNMC)
Deploying Cloud Network Services Prime Network Services Controller (formerly VNMC) Dedi Shindler - Sr. Manager Product Management Cloud System Management Technology Group Cisco Agenda Trends Influencing
More information21CTL Disaster Recovery, Workload Mobility and Infrastructure as a Service Proposal. By Adeyemi Ademola E. Cloud Engineer
21CTL Disaster Recovery, Workload Mobility and Infrastructure as a Service Proposal By Adeyemi Ademola E. Cloud Engineer 1 Contents Introduction... 5 1.2 Document Purpose and Scope...5 Service Definition...
More informationVMware Cloud Provider Platform
VMware Cloud Provider Platform Enabling your journey to multicloud Winston Benjamin Systems Engineer Cloud Provider Program Disclaimer This presentation may contain product features that are currently
More informationQ&As DCID Designing Cisco Data Center Infrastructure
CertBus.com 300-160 Q&As DCID Designing Cisco Data Center Infrastructure Pass Cisco 300-160 Exam with 100% Guarantee Free Download Real Questions & Answers PDF and VCE file from: 100% Passing Guarantee
More informationModule 5: Cisco Nexus 7000 Series Switch Administration, Management and Troubleshooting
The Detailed course Modules for (DCNX7K) Configuring Cisco Nexus 7000 Switches Training Online: Module 1: Cisco Nexus 7000 Series Switches Cisco unified fabric trends Nexus 7000 series switch Deployment
More informationCisco SD-WAN (Viptela) Migration, QoS and Advanced Policies Hands-on Lab
Cisco SD-WAN (Viptela) Migration, QoS and Advanced Policies Hands-on Lab Ali Shaikh Technical Leader Faraz Shamim Sr. Technical Leader Mossaddaq Turabi Distinguished ENgineer Cisco Spark How Questions?
More informationCisco Nexus 1000V InterCloud
Deployment Guide Cisco Nexus 1000V InterCloud Deployment Guide (Draft) June 2013 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 1 of 49 Contents
More informationCisco Configuring Cisco Nexus 7000 Switches v3.1 (DCNX7K)
Course Overview View Course Dates & Register Today This course is designed for systems and field engineers who configure the Cisco Nexus 7000 Switch. This course covers the key components and procedures
More informationVM-SERIES FOR VMWARE VM VM
SERIES FOR WARE Virtualization technology from ware is fueling a significant change in today s modern data centers, resulting in architectures that are commonly a mix of private, public or hybrid cloud
More informationBorderless Networks. Tom Schepers, Director Systems Engineering
Borderless Networks Tom Schepers, Director Systems Engineering Agenda Introducing Enterprise Network Architecture Unified Access Cloud Intelligent Network & Unified Services Enterprise Networks in Action
More informationEthernet Fabrics- the logical step to Software Defined Networking (SDN) Frank Koelmel, Brocade
Ethernet Fabrics- the logical step to Software Defined Networking (SDN) Frank Koelmel, Brocade fkoelmel@broc 10/28/2013 2 2012 Brocade Communications Systems, Inc. Proprietary Information ETHERNET FABRICS
More informationEnterprise Network Compute System (ENCS)
Enterprise Network Compute System (ENCS) Cisco vbranch Architecture Per Jensen, per@cisco.com Sept 2017 Agenda: Tech Update september-2017 1. ENCS update + demo v/per 2. Viptela update + demo v/dr Søren
More informationHuawei AR1000V Brochure
Huawei AR1000V Brochure AR1000V Brochure AR1000V Brochure Huawei AR1000V is a virtual router based on Network Functions Virtualization (NFV). As a software product, the AR1000V uses the x86 server hardware
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
LHC2103BU NSX and VMware Cloud on AWS: Deep Dive Ray Budavari, Senior Staff Technical Product Manager NSX @rbudavari #VMworld #LHC2103BU Disclaimer This presentation may contain product features that are
More informationCisco ASR 1000 Series Aggregation Services Routers: QoS Architecture and Solutions
Cisco ASR 1000 Series Aggregation Services Routers: QoS Architecture and Solutions Introduction Much more bandwidth is available now than during the times of 300-bps modems, but the same business principles
More informationDesigning Cisco Data Center Unified Computing
Designing Cisco Data Center Unified Computing Number: 642-998 Passing Score: 800 Time Limit: 120 min File Version: 1.1 http://www.gratisexam.com/ Sections 1. Drag and Drop 2. Questions 3. Hot Spot CISCO
More informationDMVPN for R&S CCIE Candidates Johnny Bass CCIE #6458
DMVPN for R&S CCIE Candidates Johnny Bass CCIE #6458 BRKCCIE-3003 @CCIE6458 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public About the Presenter Johnny Bass Networking industry since
More informationEdgeConnect for Amazon Web Services (AWS)
Silver Peak Systems EdgeConnect for Amazon Web Services (AWS) Dinesh Fernando 2-22-2018 Contents EdgeConnect for Amazon Web Services (AWS) Overview... 1 Deploying EC-V Router Mode... 2 Topology... 2 Assumptions
More informationUCS Technical Deep Dive: Getting to the Heart of the Matter
UCS Technical Deep Dive: Getting to the Heart of the Matter Session ID Agenda Introductions UCS Architecture, Innovations, Topology Physical Building Blocks Logical Building Blocks Typical Use Cases (Live
More informationOrdering and deleting Single-node Trial for VMware vcenter Server on IBM Cloud instances
Ordering and deleting Single-node Trial for VMware vcenter Server on IBM Cloud instances The Single-node Trial for VMware vcenter Server on IBM Cloud is a single-tenant hosted private cloud that delivers
More informationCisco Virtual Routers, CSR 1000V and ISRv
Cisco Virtual Routers, CSR 1000V and ISRv The Impact of Configuration Changes On Throughput Performance An Independent Assessment DR161111E November 2016 Miercom www.miercom.com Contents 1 - Executive
More informationVendor: Cisco. Exam Code: Exam Name: Designing Cisco Data Center Unified Fabric (DCUFD) Version: Demo
Vendor: Cisco Exam Code: 642-996 Exam Name: Designing Cisco Data Center Unified Fabric (DCUFD) Version: Demo DEMO QUESTION 1 Which three Cisco technologies or solutions are used during the virtualization
More informationvcpe and Network Function Virtualisation for Enterprises
vcpe and Network Function Virtualisation for Enterprises Matthias Falkner, Distinguished Engineer, Technical Marketing #clmel Abstract Network Function Virtualisation is gaining increasing traction in
More informationQuestion No : 1 Which three options are basic design principles of the Cisco Nexus 7000 Series for data center virtualization? (Choose three.
Volume: 162 Questions Question No : 1 Which three options are basic design principles of the Cisco Nexus 7000 Series for data center virtualization? (Choose three.) A. easy management B. infrastructure
More informationCloud-Ready WAN For IAAS & SaaS With Cisco s Next- Gen SD-WAN
BRKCRS-2113 Cloud-Ready WAN For IAAS & SaaS With Cisco s Next- Gen SD-WAN Sumanth Kakaraparthi Product Leader SD-WAN Manan Shah Director Of Product Management Cisco Spark How Questions? Use Cisco Spark
More informationBIG-IP Virtual Edition and VMware ESXi: Setup. Version 12.1
BIG-IP Virtual Edition and VMware ESXi: Setup Version 12.1 Table of Contents Table of Contents Getting Started with BIG-IP Virtual Edition on ESXi...5 Steps to deploy BIG-IP VE...5 Prerequisites for BIG-IP
More informationExam Name: VMware Certified Associate Network Virtualization
Vendor: VMware Exam Code: VCAN610 Exam Name: VMware Certified Associate Network Virtualization Version: DEMO QUESTION 1 What is determined when an NSX Administrator creates a Segment ID Pool? A. The range
More informationSecuring Containers Using a PNSC and a Cisco VSG
Securing Containers Using a PNSC and a Cisco VSG This chapter contains the following sections: About Prime Network Service Controllers, page 1 Integrating a VSG into an Application Container, page 4 About
More informationDeploying the Cisco CSR 1000v on Amazon Web Services
Deploying the Cisco CSR 1000v on Amazon Web Services This section contains the following topics: Prerequisites, page 1 Information About Launching Cisco CSR 1000v on AWS, page 1 Launching the Cisco CSR
More informationVirtual Security Gateway Overview
This chapter contains the following sections: Information About the Cisco Virtual Security Gateway, page 1 Cisco Virtual Security Gateway Configuration for the Network, page 10 Feature History for Overview,
More informationCCIE Routing & Switching
CCIE Routing & Switching Cisco Certified Internetwork Expert Routing and Switching (CCIE Routing and Switching) certifies the skills required of expert-level network engineers to plan, operate and troubleshoot
More informationCisco Modelling Labs Lessons from a Virtual World
Cisco Modelling Labs Lessons from a Virtual World Joel Obstfeld Distinguished Engineer Network Virtualisation The challenge - How do you deploy new services, make changes, or troubleshoot in the live network
More informationCCIE Data Center Written Exam ( ) version 1.0
CCIE Data Center Written Exam (350-080) version 1.0 Exam Description: The Cisco CCIE Data Center Written Exam (350-080) version 1.0 is a 2-hour test with 80 110 questions that will validate that a data
More informationNexus 7000 F3 or Mx/F2e VDC Migration Use Cases
Nexus 7000 F3 or Mx/F2e VDC Migration Use Cases Anees Mohamed Network Consulting Engineer Session Goal M1 VDC M1/M2 VDC M2/F3 VDC M1/F1 VDC M1/M2/F2e VDC F2/F2e/F3 VDC F2 VDC F3 VDC You are here This Session
More informationConfiguring Bridge Domain Interfaces
The Cisco ASR 1000 Series Aggregation Services Routers support the bridge domain interface (BDI) feature for packaging Layer 2 Ethernet segments into Layer 3 IP. Restrictions for Bridge Domain Interfaces,
More informationCisco 921J Gigabit Ethernet security router with external power supply for Japan only
C921J-4P Datasheet Overview C921J-4P is the Cisco 921J Gigabit Ethernet security router with external power supply for Japan only. Cisco 900J Series Integrated Services Routers (ISRs) combine Internet
More informationVirtual Tech Update Intercloud Fabric. Michael Petersen Systems Engineer, Cisco Denmark
Virtual Tech Update Intercloud Fabric Michael Petersen Systems Engineer, Cisco Denmark michaep2@cisco.com Agenda Introduction Intercloud and Intercloud Fabric Intercloud Fabric - New Features Intercloud
More informationMulticloud Networking: An Overview. Shannon McFarland CCIE #5245 Distinguished
Multicloud Networking: An Overview Shannon McFarland CCIE #5245 Distinguished Engineer @eyepv6 Agenda Hybrid Cloud Networking vs Multicloud Networking - A Level Set Extending on-premises private cloud
More informationCisco Exam Questions & Answers
Cisco 642-996 Exam Questions & Answers Number: 642-996 Passing Score: 800 Time Limit: 120 min File Version: 38.8 http://www.gratisexam.com/ Cisco 642-996 Exam Questions & Answers Exam Name: Designing Cisco
More informationNext Generation Enterprise Routing Portfolio Are you ready for the Challenge?
Next Generation Enterprise Routing Portfolio Are you ready for the Challenge? Stefan Mansson, Technical Marketing Engineer ENG Agenda ISR G2 & ISR4451-X Overview ASR1000 Aggregation Platform CSR1000V Cloud
More informationVMware vcloud Air User's Guide
vcloud Air This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a new edition. To check for more recent editions of this document,
More informationVIRTUAL APPLIANCES. Frequently Asked Questions (FAQ)
VX INSTALLATION 2 1. I need to adjust the disk allocated to the Silver Peak virtual appliance from its default. How should I do it? 2. After installation, how do I know if my hard disks meet Silver Peak
More informationUCS Management Architecture Deep Dive
UCS Management Architecture Deep Dive Agenda Introductions UCS Architecture, Innovations, Topology Physical Building Blocks Logical Building Blocks Typical Use Cases (Live UCS Demo) Programmable Infrastructure
More informationVPN Solutions for Zerto Virtual Replication to Azure. IPSec Configuration Guide
VPN Solutions for Zerto Virtual Replication to Azure IPSec Configuration Guide VERSION 1.0 AUGUST 2017 Table of Contents 1. Overview... 2 1.1 Use Cases... 2 2. Proofs of Concept and Lab Usage... 2 2.1
More information1V0-642.exam.30q.
1V0-642.exam.30q Number: 1V0-642 Passing Score: 800 Time Limit: 120 min 1V0-642 VMware Certified Associate 6 Network Visualization Fundamentals Exam Exam A QUESTION 1 Which is NOT a benefit of virtualized
More informationvnetwork Future Direction Howie Xu, VMware R&D November 4, 2008
vnetwork Future Direction Howie Xu, VMware R&D November 4, 2008 Virtual Datacenter OS from VMware Infrastructure vservices and Cloud vservices Existing New - roadmap Virtual Datacenter OS from VMware Agenda
More informationOpenNebula on VMware: Cloud Reference Architecture
OpenNebula on VMware: Cloud Reference Architecture Version 1.2, October 2016 Abstract The OpenNebula Cloud Reference Architecture is a blueprint to guide IT architects, consultants, administrators and
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
LHC2384BU VMware Cloud on AWS A Technical Deep Dive Ray Budavari @rbudavari Frank Denneman - @frankdenneman #VMworld #LHC2384BU Disclaimer This presentation may contain product features that are currently
More informationCisco Exam Questions & Answers
Cisco 648-375 Exam Questions & Answers Number: 648-375 Passing Score: 800 Time Limit: 120 min File Version: 22.1 http://www.gratisexam.com/ Cisco 648-375 Exam Questions & Answers Exam Name: Cisco Express
More informationDeploy the ASAv Using KVM
You can deploy the ASAv using the Kernel-based Virtual Machine (KVM). About ASAv Deployment Using KVM, on page 1 Prerequisites for the ASAv and KVM, on page 2 Prepare the Day 0 Configuration File, on page
More informationCisco Virtual Networking Solution Nexus 1000v and Virtual Services. Abhishek Mande Engineer
Cisco Virtual Networking Solution Nexus 1000v and Virtual Services Abhishek Mande Engineer mailme@cisco.com Agenda Application requirements in virtualized DC The Anatomy of Nexus 1000V Virtual Services
More informationSilver Peak EC-V and Microsoft Azure Deployment Guide
Silver Peak EC-V and Microsoft Azure Deployment Guide How to deploy an EC-V in Microsoft Azure 201422-001 Rev. A September 2018 2 Table of Contents Table of Contents 3 Copyright and Trademarks 5 Support
More informationvrealize Operations Management Pack for NSX for vsphere 2.0
vrealize Operations Management Pack for NSX for vsphere 2.0 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a new edition.
More informationvmx Getting Started Guide for VMware Release 18.3 Modified: Copyright 2018, Juniper Networks, Inc.
vmx Getting Started Guide for VMware Release 18.3 Modified: 2018-11-26 Juniper Networks, Inc. 1133 Innovation Way Sunnyvale, California 94089 USA 408-745-2000 www.juniper.net Juniper Networks, the Juniper
More informationTable of Contents HOL-PRT-1305
Table of Contents Lab Overview... 2 - Abstract... 3 Overview of Cisco Nexus 1000V series Enhanced-VXLAN... 5 vcloud Director Networking and Cisco Nexus 1000V... 7 Solution Architecture... 9 Verify Cisco
More informationvcenter Operations Management Pack for NSX-vSphere
vcenter Operations Management Pack for NSX-vSphere vcenter Operations Manager 5.8 This document supports the version of each product listed and supports all subsequent versions until the document is replaced
More informationNGFWv & ASAv in Public Cloud (AWS & Azure)
& in Public Cloud (AWS & Azure) Anubhav Swami, CCIE# 21208 Technical Marketing Engineer Your Speaker Anubhav Swami answami@cisco.com Technical Marketing Engineer 5 years in Cisco TAC 2 years in ASA BU
More informationDMVPN for R&S CCIE Candidates
DMVPN for R&S CCIE Candidates Johnny Bass CCIE #6458 BRKCCIE-3003 @CCIE6458 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public About the Presenter Johnny Bass Networking industry since
More informationCloud Intelligent Network
Dubrovnik, Croatia, South East Europe 20-22 May, 2013 Cloud Intelligent Network Mitko Vasilev CIN Lead Central Europe mitko@cisco.com 2011 2012 Cisco and/or its affiliates. All rights reserved. 1 New Application
More informationNSX-T Data Center Migration Coordinator Guide. 5 APR 2019 VMware NSX-T Data Center 2.4
NSX-T Data Center Migration Coordinator Guide 5 APR 2019 VMware NSX-T Data Center 2.4 You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/ If you
More informationArchitecting Scalable Clouds using VXLAN and Nexus 1000V
Architecting Scalable Clouds using VXLAN and Nexus 1000V Lawrence Kreeger Principal Engineer Agenda Session Is Broken Into 3 Main Parts Part 1: VXLAN Overview What is a VXLAN? Why VXLANs? What is VMware
More informationIntroduction to VPC-SI
This chapter introduces Cisco Virtualized Packet Core Single Instance (VPC-SI). VPC-SI addresses the need for virtualized cloud architectures that enable the accelerated deployment of new applications
More informationVMware Integrated OpenStack Quick Start Guide
VMware Integrated OpenStack Quick Start Guide VMware Integrated OpenStack 1.0.1 This document supports the version of each product listed and supports all subsequent versions until the document is replaced
More informationWorkload Mobility and Disaster Recovery to VMware Cloud IaaS Providers
VMware vcloud Architecture Toolkit for Service Providers Workload Mobility and Disaster Recovery to VMware Cloud IaaS Providers Version 2.9 January 2018 Adrian Roberts 2018 VMware, Inc. All rights reserved.
More informationData Path acceleration techniques in a NFV world
Data Path acceleration techniques in a NFV world Mohanraj Venkatachalam, Purnendu Ghosh Abstract NFV is a revolutionary approach offering greater flexibility and scalability in the deployment of virtual
More informationSecuring Containers Using a PNSC and a Cisco VSG
Securing Containers Using a PNSC and a Cisco VSG This chapter contains the following sections: About Prime Network Service Controllers, page 1 Integrating a VSG into an Application Container, page 3 About
More informationResilient WAN and Security for Distributed Networks with Cisco Meraki MX
Resilient WAN and Security for Distributed Networks with Cisco Meraki MX Daghan Altas, Director of Product Management BRKSEC-2900 Agenda Problem Cisco CNG Live network creation demo (45m) Product Brief
More informationCisco Certdumps Questions & Answers - Testing Engine
Cisco Certdumps 642-996 Questions & Answers - Testing Engine Number: 642-996 Passing Score: 797 Time Limit: 120 min File Version: 16.8 http://www.gratisexam.com/ Sections 1. A 2. B 3. C 4. Exhibit Case
More informationFeatures. HDX WAN optimization. QoS
May 2013 Citrix CloudBridge Accelerates, controls and optimizes applications to all locations: datacenter, branch offices, public and private clouds and mobile users Citrix CloudBridge provides a unified
More informationLayer-4 to Layer-7 Services
Overview, page 1 Tenant Edge-Firewall, page 1 LBaaS, page 2 FWaaS, page 4 Firewall Configuration, page 6 Overview Layer-4 through Layer-7 services support(s) end-to-end communication between a source and
More informationNetwork Virtualization
Network Virtualization Petr Grygárek 1 Traditional Virtualization Techniques Network Virtualization Implementation of separate logical network environments (Virtual Networks, VNs) for multiple groups on
More informationActual4Test. Actual4test - actual test exam dumps-pass for IT exams
Actual4Test http://www.actual4test.com Actual4test - actual test exam dumps-pass for IT exams Exam : 300-165 Title : Implementing Cisco Data Center Infrastructure Vendor : Cisco Version : DEMO Get Latest
More informationPaperspace. Architecture Overview. 20 Jay St. Suite 312 Brooklyn, NY Technical Whitepaper
Architecture Overview Copyright 2016 Paperspace, Co. All Rights Reserved June - 1-2017 Technical Whitepaper Paperspace Whitepaper: Architecture Overview Content 1. Overview 3 2. Virtualization 3 Xen Hypervisor
More informationIntroduction to Cisco Virtual Topology System DP Ayyadevara, Product Manager, Cloud Virtualization Cisco PSOSDN-1050
Introduction to Cisco Virtual Topology System DP Ayyadevara, Product Manager, Cloud Virtualization Group @ Cisco PSOSDN-1050 Agenda Cisco Data Center SDN Strategy Programmable Fabric with VTS VTS Architecture
More information5 days lecture course and hands-on lab $3,295 USD 33 Digital Version
Course: Duration: Fees: Cisco Learning Credits: Kit: DCAC9K v1.1 Cisco Data Center Application Centric Infrastructure 5 days lecture course and hands-on lab $3,295 USD 33 Digital Version Course Details
More informationInstalling Cisco CSR 1000v Licenses
Activating Cisco CSR 1000v Licenses, page 2 Cisco Software Licensing (CSL), page 2 Troubleshooting CSL License Issues, page 16 Cisco Smart Licensing, page 18 Prerequisites for Cisco Smart Licensing, page
More informationBuild Cloud like Rackspace with OpenStack Ansible
Build Cloud like Rackspace with OpenStack Ansible https://etherpad.openstack.org/p/osa-workshop-01 Jirayut Nimsaeng DevOps & Cloud Architect 2nd Cloud OpenStack-Container Conference and Workshop 2016 Grand
More informationSecuring VMware NSX MAY 2014
Securing VMware NSX MAY 2014 Securing VMware NSX Table of Contents Executive Summary... 2 NSX Traffic [Control, Management, and Data]... 3 NSX Manager:... 5 NSX Controllers:... 8 NSX Edge Gateway:... 9
More informationCISCO EXAM QUESTIONS & ANSWERS
CISCO 642-999 EXAM QUESTIONS & ANSWERS Number: 642-999 Passing Score: 800 Time Limit: 90 min File Version: 32.5 http://www.gratisexam.com/ Sections 1. Questions 2. Drag & Drop 3. Hot Spot CISCO 642-999
More information