Hybrid Cloud Networking
|
|
- Darren Shaw
- 5 years ago
- Views:
Transcription
1 Hybrid Cloud Networking ITMCCS-2580 Follow us on Twitter for real time updates of the #CLEUR
2 Housekeeping We value your feedback- don't forget to complete your online session evaluations after each session & the Overall Conference Evaluation which will be available online from Thursday Visit the World of Solutions and Meet the Engineer Visit the Cisco Store to purchase your recommended readings Please switch off your mobile phones After the event don t forget to visit Cisco Live Virtual: Follow us on Twitter for real time updates of the #CLEUR 2
3 Agenda Section 1 - Cloud Computing introduction - Cloud Deployment Models (NIST definition) Section 2: - Hybrid Cloud Options - Seamless Hybrid Cloud Benefits - Current Solutions Section 3: - Conceptual Cloud Services Management Architecture - Seamless Hybrid Cloud (SHC) Abstraction - End-to-end (E2E) Multitenant Isolation in SHC 3
4 Agenda Section 4 - Seamless Hybrid Cloud Realization in Network: Network Management Architecture for Realization of E2E Multitenant Isolation Section 5 - Use Cases Section 6 - Issues Section 7 - Conclusion 4
5 Cloud Computing Introduction Cloud Deployment Models
6 Cloud Computing - Introduction Cloud Service Consumer or Tenant Network (Internet/Intranet/Private MAN/WAN) Cloud Service Interfaces One or more DC Cloud Service Provider (CSP) vnic2 OS1 DB1 VM13 IaaS: Infrastructure resources PaaS: Software middleware, development & test resources SaaS: Application product resources 6
7 Cloud Deployment NIST Definition Private Cloud: For use by an enterprise only - Owned / operated by enterprise IT or 3rd party Public Cloud: For use by anyone - Owned / operated / offered by a Cloud Service Provider Hybrid Cloud: Multiple interoperable Clouds that enables data and application portability - Multiple Cloud operators and CSP: Private and Public Clouds Community Cloud: Cloud infrastructure is shared by several organizations and supports a specific community that has shared concerns 7
8 Hybrid Cloud Options Seamless Hybrid Cloud Benefits Current Solutions
9 Hybrid Cloud Architecture Options A1: An Enterprise (Tenant) extends into a Public Cloud (consumes resources from public Cloud) - One Cloud service provider serving out of multiple DCs A2: An enterprise extending into multiple public Clouds A3: Public Clouds extending into each other Any combination of above Focus: A1 with support for seamlessness 9
10 Seamless Hybrid Cloud Benefits With Hybrid Cloud enterprises may have resources distributed in Enterprise intranet and one or more Public Clouds Enterprises should be able to deploy and execute apps on these distributed resources seamlessly as if they are on the intranet Manage distributed on-premises and off-premises Cloud resources seamlessly together with other intranet IT resources Seamless Hybrid Cloud Abstraction, Interfaces and their realization on infrastructure will facilitate above 10
11 Current Solutions Solutions for interconnecting several clouds are starting to emerge But these solutions allow only interoperability between clouds at the IT level by providing functions such as: - Populating service catalogs from one cloud to another - deploying a VM in a public cloud from a local one - copying VM templates between clouds - Cold migration of application workloads between clouds 11
12 Current Solutions contd E2E network related services, network protocol, network management architecture and solutions (a la Seamless Hybrid Cloud) both at Cloud abstraction and L2/L3 network levels are missing Typical VPC (Virtual Private Cloud) that is a form of Hybrid Cloud is based on IPSEC over public Internet - In contrast SHC is enterprise and telco grade, supporting, in addition, various L2/L3 network isolation technologies (including PPVPN: Provider Provided VPN) and also SP/telco Private (IP/MPLS/Optical) MAN/WAN New generation (protocol) solutions for multitenant isolation covers Cloud DC only, not E2E as required for hybrid Cloud 12
13 Overview of Conceptual Cloud Services Management Architecture Seamless Hybrid Cloud (SHC) Abstraction End-to-end (E2E) Multitenant Isolation in SHC
14 Seamless Hybrid Cloud Service Management Architecture Tenant On-demand Requests Customer private cloud management Enterprise E1 Site 3 E2 Site 2 E1 Site 4 CSP DC 1 Tenant facing Interfaces Cloud Services Management (Tenant facing Cloud Abstraction for SHC) Compute / Storage / Network Management Interfaces Cloud Infrastructure Management Compute Storage Network E2E SHC Realization in Network MAN/ WAN CE 13 PE 5 DC Core/Aggr Server/Storage Access Network Server/ Storage ETH1 CE22 SP Private MAN/WAN IP / MPLS Network DC-Net 2 Virtual SW veth1 vnic1 OS1 App3 VM14 veth3 vnic4 OS1 App4 VM21 CE 14 PE 4 SW 12 ER 02 DMZ Internet PE 3 DC-SAN-Net 1 14
15 Seamless Hybrid Cloud Abstraction Site 1 (DC) ONPR-DB ONPR-App ONPR-DMZ ~SHC Enterprise T2 Site 1 (DC) Site 5 ~SHC Site 7 CE11 CE21 CE15 CE17 PWAN PE-CL1 PE-TS1 PE-TS2 PE-CL2 ER-CL1 ER-CL2 15
16 Seamless Hybrid Cloud Abstraction SHC Components ONPR-DB PWAN Site 1 (DC) ONPR-App ONPR-DMZ CE11 CE21 CE15 CE17 PE-CL1 PE-TS1 PE-TS2 Site 7 PE-CL2 A whole Tenant Site - Site ID A set of On-premises Resources (ONPR) on a specified Site - ONPR ID or IP Prefix, Site ID - Whole Site is not included in SHC in this case ER-CL1 SHC-T1-1 ER-CL2 A Set of off-premises Public Cloud resources (OFPR) - OFPR ID or IP Prefix OFPR Locations (Public Cloud DC locations - Location ID 16
17 Seamless Hybrid Cloud Components contd.. ONPR-DB PWAN Site 1 (DC) ONPR-App ONPR-DMZ CE11 CE21 CE15 CE17 PE-CL1 ER-CL1 PE-TS1 SHC-T1-1 PE-TS2 Site 7 PE-CL2 ER-CL2 Each SHC attached component can be flagged with whether it is directly accessible from outside (other components or sites or Cloud DCs associated with SHC) or not DA: TRUE FALSE - For example, DA: FALSE for ONPR- DB or ONPR-App Each ONPR and OFPR can be a DC App Tier (Web/DMZ, App and DB Tiers) A Tenant can have multiple SHC (for each per department, Engg, HR, etc.) 17
18 E2E Multitenant Isolation for Seamless Hybrid Cloud ONPR-DB PWAN Site 1 (DC) ONPR-App ONPR-DMZ PE-CL1 ~SHC: PE-TS1 Enterprise T2 Site 1 (DC) Site 5 ~SHC: CE11 CE21 CE15 CE17 PE-TS2 Site 7 PE-CL2 A Cloud is multitenant where multiple tenants (T1 & T2 in example) share Physical Resources (Compute / Storage / server access network) in Cloud DC A network E2E (from CE via PWAN to Cloud DC networks) is also multitenant ER-CL1 ER-CL2 Isolate E2E Traffic and Routes of tenants from each other (not just in Cloud DC) We cover an NM architecture for realizing E2E multitenant isolation in SHC 18
19 Seamless Hybrid Cloud Realization in Network: Network Management Architecture for Realization of E2E Multitenant Isolation in SHC
20 SHC Isolation Realization via L3 MPLS Extranet VPN ONPR-DB Site 1 (DC) ONPR-App ONPR-DMZ ~SHC: Enterprise T2 Site 1 (DC) Site 5 ~SHC: CE1 CE2 CE3 CE4 Site 7 Distributed Offpremises resources modeled / architected as Virtual L3 MPLS VPN Sites PE-CL1 PE-TS1 PWAN OFPR-DMZ OFPR-App ER-CL1 CSP DC 1 PE-TS2 OFPR-App PE-CL2 ER-CL2 CSP DC 2 VRF VLAN VRF-Lite VLAN/ VxLAN An SHC is realized via an L3 MPLS Extranet VPN in the WAN In Cloud DCs mapped to VLAN VRF- Lite VLAN/VxL AN 20
21 SHC Components Mapped to RT Extended Community ONPR-DB Site 1 (DC) ONPR-App ONPR-DMZ ~SHC: Enterprise T2 Site 1 (DC) Site 5 ~SHC: Site 7 SHC components mapped to Route Target (RT) Extended Community, which are exchanged between PEs *RT-C* CE1 CE2 CE3 CE4 *RT-T* PE-CL1 PWAN PE-TS1 PE-TS2 PE-CL2 Example: ONPR-DMZ RT: 2000:2 ER-CL1 ER-CL2 RTs imported/exported accordingly in relevant VRF/VRF-Lite instances OFPR-DMZ OFPR-App CSP DC 1 OFPR-App CSP DC 2 Tenants will have the control over reachability between SHC components 21
22 Use Cases
23 ONPR-DB PWAN Use case 1 Site 1 (DC) ONPR-App ONPR-DMZ PE-CL1 ONPR-App-D PE-TS1 PE-TS2 PE-CL2 Site 7 Tenant T1 extends to a public Cloud by creating an SHC (SHC- T1-1) and acquiring resources for DMZ (OFPR-DMZ 1/2) and certain Apps (OFPR-App 1/2/D) Access from T1 Site 7 loadbalanced via three DMZs DB, App on ONPR and App1, App2 on OFPR are not directly accessible from anywhere, including other location of SHC App-D directly accessible from anywhere in SHC OFPR-DMZ 1 OFPR-App 1 CE-CL1 OFPR-DMZ 2 OFPR-App 2 CE-CL2 OFPR-App-D RT Extended Communities are exchanged for ONPR-DMZ, OFPR-DMZ 1/2, ONPR/OFPR- App-D and imported/exported into relevant VRF/VRF-Lite, but not for ONPR-App/DB and OFPR-App 1/2 CSP DC 1 CSP DC 2 23
24 Use Case 2 Two SHC of a Tenant Site 1 (DC) ONPR-DB ONPR-App ONPR-DMZ Site 7 SHC-1 is created with Site 7, ONPR- DMZ, OFPR-DMZ associated Site 7 accesses via any of the ONPR-DMZ or OFPR-DMZ, which are load-balanced SHC 2 created with OFPR-DMZ, ONPR-DMZ, ONPR-App, ONPR DB (DA: FALSE; not directly accessible) PWAN PE-CL1 PE-TS1 PE-TS2 Cloud DC 1 can reach ONPR-App directly OFPR-DMZ CE-CL1 CSP DC 1 Even though one SHC could have been used A separate SHC will provide quick ondemand access or quick on-demand removal of access (to a group, for example) For SHC-1, ONPR-DMZ, OFPR- DMZ RT are exchanged and imported/exported For SHC-2, OFPR-DMZ, ONPR- DMZ, ONPR-App RT are exchanged and imported/exported If access from Site 7 directed to OFPR-DMZ, the ONPR-App will be accessible from there 24
25 Issues
26 On-demand Acquire / Release ONPR-DB PWAN Site 1 (DC) ONPR-App ONPR-DMZ ~SHC: PE-TS1 Enterprise T2 Site 1 (DC) Site 5 ~SHC: CE1 CE2 CE3 CE4 Remove OFPR-App 1 PE-CL1 Remove VS2-T2 PE-TS2 Site 7 PE-CL2 As typical in Cloud, resources can be added to or released from an SHC ondemand Hence Config/provisioning related to SHC isolation applied/removed ondemand ER-CL1 ER-CL2 Programmatic management/control plane interfaces desirable OFPR-DMZ OFPR-App 1 OFPR-App 2 VS2-T2 Protocol support / extension desirable CSP DC 1 CSP DC 2 26
27 Multitenant E2E Isolation Number of SHC E2E isolation will be limited by number of VRF instances and VLANs supported in devices/network Some of the new multitenant Cloud DC isolation technologies (VxLAN, etc.) can scale better than VLAN, for example - But for E2E isolation with L2/L3 MPLS VPN + DC isolation technologies, the number will be limited by the number of VRF instances Many mapping options in Cloud DC: - VxLAN - NVGRE - PBB/SPB (Provider Backbone Bridge/Shortest Path Bridging 802.1ah/aq) assuming support in Cloud DC - Other Each solution will have its own strengths and weaknesses in terms of: - Hypervisor virtual access switch based isolation - Evolution of existing devices required 27
28 Conclusion
29 Conclusion Seamless Hybrid Cloud (SHC) facilitates seamless and secure extension of enterprises to Public Clouds Seamless Distributed Application Execution: When associated with an SHC, the distributed components of a Tenant application runs seamlessly and securely on on-premises AND off-premises resources Seamless IT resource management: Tenant IT management applications manage on-premises AND off-premises resources seamlessly and securely We have provided a network management architecture for realizing E2E multitenant isolation for an SHC The realization is based on Cloud-ready Network Management Architecture that makes use of L3 MPLS Extranet VPN together with isolation technologies in Cloud DC Since realization is based on network management architecture, it can be supported on existing infrastructure 29
30 Conclusion Continued / Future Work Multi-CSP Hybrid Cloud: Extend the architecture to cover multiple cooperating CSPs so that an SHC can be extended over multiple CSPs and other partner tenants Address issues mentioned Incorporate in Open-source Cloud management framework OpenStack 30
31 Backup
32 ONPR-DB Use case 1 RT Extended Community SHC-T1-1: ONPR-DMZ, Site 1 (DC) ONPR-App ONPR-DMZ ONPR-App-D Site 7 ONPR-App-D, ONPR-DB (DA: FALSE), ONPR-APP (DA: FALSE), OFPR-DMZ 1, OFPR-DMZ 2, OFPR-App-D, OFPR-App 1 (DA: FALSE), OFPR-App2 (DA: FALSE) Each matrix cell is extended community RT exchanged between relevant PEs PWAN PE-CL1 PE-TS1 PE-CL2 PE-TS2 SHC- T1-1 PE-TS1 PE-TS2 PE-CL1 PE-CL2 CE-CL1 CE-CL2 PE-TS1 ONPR- DMZ, ONPR- App-D ONPR- DMZ, ONPR- App-D PE-TS2 Site 7 Site 7 Site 7 OFPR-DMZ 1 OFPR-DMZ 2 PE-CL1 OFPR- DMZ 1 OFPR- DMZ 1 OFPR- DMZ 1 OFPR-App 1 CSP DC 1 OFPR-App 2 OFPR-App-D CSP DC 2 PE-CL2 OFPR- DMZ 2, OFPR- App-D OFPR- DMZ 2, OFPR- App-D OFPR- DMZ 2, OFPR- App-D 32
33 Use Case 2 RT Extended Community Site 1 (DC) ONPR-DB ONPR-App Site 7 ONPR-DMZ PWAN PE-CL1 PE-TS1 PE-TS2 CE-CL1 SHC 1 PE-TS1 PE-TS2 PE-CL1 SHC 2 PE-TS1 PE-TS2 PE-CL1 OFPR-DMZ PE-TS1 ONPR- DMZ PE-TS2 Site7 Site 7 PE-TS1 ONPR- DMZ, ONPR- App CSP DC 1 PE-CL1 OFPR- DMZ PE-TS2 PE-CL1 OFPR- DMZ 33
34 L3 MPLS VPN MP-BGP 8 Bytes 4 Bytes 8 Bytes 3 Bytes 65425:1111 RD VPNv :2 IPv4 Route-Target Label (BGP Extended Community) MP_REACH_NLRI attribute within MP-BGP UPDATE message 34
35 L3 MPLS VPN Provisioning Use Case ip vrf SHC_1_DC_1_PE rd 65425:1111 export map OFPR_DMZ_1 import map ONPR_App route-target import 2000:2! route-map OFPR_DMZ_1 permit 10 match ip address 1 set extcommunity rt 1000:1! route-map ONPR_App permit 10 match ip address 2! access-list 1 permit access-list 2 permit ip vrf Intranet_T1_PE rd 65426:2222 export map ONPR_DMZ_1 import map OFPR_DMZ_1 route-target import 1000:1! route-map ONPR_DMZ_1 permit 10 match ip address 2 set extcommunity rt 2000:2! route-map OFPR_DMZ_1 permit 10 match ip address 1! access-list 1 permit access-list 2 permit
36 Recommended Reading Please visit the Cisco Store for suitable reading.
37 Please complete your Session Survey We value your feedback Don't forget to complete your online session evaluations after each session. Complete 4 session evaluations & the Overall Conference Evaluation (available from Thursday) to receive your Cisco Live T-shirt Surveys can be found on the Attendee Website at which can also be accessed through the screens at the Communication Stations Or use the Cisco Live Mobile App to complete the surveys from your phone, download the app at 1. Scan the QR code (Go to for QR code reader software, alternatively type in the access URL above) 2. Download the app or access the mobile site 3. Log in to complete and submit the evaluations 37
38 38
39 Thank you. 39
Cisco Cloud Architecture with Microsoft Cloud Platform Peter Lackey Technical Solutions Architect PSOSPG-1002
Cisco Cloud Architecture with Microsoft Cloud Platform Peter Lackey Technical Solutions Architect PSOSPG-1002 Agenda Joint Cisco and Microsoft Integration Efforts Introduction to CCA-MCP What is a Pattern?
More informationEmerging Architecture for Cloud Computing
ITU Workshop on Cloud Computing (Tunis, Tunisia, 18-19 June 2012) Emerging Architecture for Cloud Computing Monique Jeanne Morrow Distinguished Engineer and CTO Asia-Pac mmorrow@cisco.com Tunis, Tunisia,
More informationPSOACI Why ACI: An overview and a customer (BBVA) perspective. Technology Officer DC EMEAR Cisco
PSOACI-4592 Why ACI: An overview and a customer (BBVA) perspective TJ Bijlsma César Martinez Joaquin Crespo Technology Officer DC EMEAR Cisco Lead Architect BBVA Lead Architect BBVA Cisco Spark How Questions?
More informationUniNets MPLS LAB MANUAL MPLS. UNiNets Multiprotocol label Switching MPLS LAB MANUAL. UniNets MPLS LAB MANUAL
MPLS UNiNets Multiprotocol label Switching MPLS LAB MANUAL CCNP TOPOLOGY Lab: OSPF Routing VPN Topology: Task1: Perform the basic Configuration to provide the reachability as per diagram. SW1 Configuration
More informationCisco Container Platform
Cisco Container Platform Pradnesh Patil Suhail Syed Cisco Spark How Questions? Use Cisco Spark to communicate with the speaker after the session 1. Find this session in the Cisco Live Mobile App 2. Click
More informationEnterprise. Nexus 1000V. L2/L3 Fabric WAN/PE. Customer VRF. MPLS Backbone. Service Provider Data Center-1 Customer VRF WAN/PE OTV OTV.
2 CHAPTER Cisco's Disaster Recovery as a Service (DRaaS) architecture supports virtual data centers that consist of a collection of geographically-dispersed data center locations. Since data centers are
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
NET1949BU Seamless Network Connectivity for Virtual and Bare-metal s with NSX Suresh Thiru Sridhar Subramanian VMworld 2017 Content: Not for publication VMworld 2017 - NET1949BU Disclaimer This presentation
More informationCustomer s journey into the private cloud with Cisco Enterprise Cloud Suite
Customer s journey into the private cloud with Cisco Enterprise Cloud Suite Peter Charpentier, Senior Solution Architect, Cisco AS Cisco Spark How Questions? Use Cisco Spark to communicate with the speaker
More informationDeploying Cloud Network Services Prime Network Services Controller (formerly VNMC)
Deploying Cloud Network Services Prime Network Services Controller (formerly VNMC) Dedi Shindler - Sr. Manager Product Management Cloud System Management Technology Group Cisco Agenda Trends Influencing
More informationCisco VTS. Enabling the Software Defined Data Center. Jim Triestman CSE Datacenter USSP Cisco Virtual Topology System
Cisco Virtual Topology System Cisco VTS Enabling the Software Defined Data Center Jim Triestman CSE Datacenter USSP jtriestm@cisco.com VXLAN Fabric: Choice of Automation and Programmability Application
More informationExtend your datacenter with the power of Citrix Open Cloud
Extend your datacenter with the power of Citrix Open Cloud Peter Leimgruber Sr. SE Datacenter & Networking, CE Mikael Lindholm Sr. SE XenServer & Cloud, EMEA Sales Dev Agenda Cloud Expectations and reality
More informationIntroduction to External Connectivity
Before you begin Ensure you know about Programmable Fabric. Conceptual information is covered in the Introduction to Cisco Programmable Fabric and Introducing Cisco Programmable Fabric (VXLAN/EVPN) chapters.
More informationDistributed Systems. 31. The Cloud: Infrastructure as a Service Paul Krzyzanowski. Rutgers University. Fall 2013
Distributed Systems 31. The Cloud: Infrastructure as a Service Paul Krzyzanowski Rutgers University Fall 2013 December 12, 2014 2013 Paul Krzyzanowski 1 Motivation for the Cloud Self-service configuration
More informationOrchestrating the Cloud Infrastructure using Cisco Intelligent Automation for Cloud
Orchestrating the Cloud Infrastructure using Cisco Intelligent Automation for Cloud 2 Orchestrate the Cloud Infrastructure Business Drivers for Cloud Long Provisioning Times for New Services o o o Lack
More informationVRF, MPLS and MP-BGP Fundamentals
VRF, MPLS and MP-BGP Fundamentals Jason Gooley, CCIEx2 (RS, SP) #38759 Twitter: @ccie38759 LinkedIn: http://www.linkedin.com/in/jgooley Agenda Introduction to Virtualization VRF-Lite MPLS & BGP Free Core
More informationMPLS VPN--Inter-AS Option AB
The feature combines the best functionality of an Inter-AS Option (10) A and Inter-AS Option (10) B network to allow a Multiprotocol Label Switching (MPLS) Virtual Private Network (VPN) service provider
More informationMPLS VPN Inter-AS Option AB
First Published: December 17, 2007 Last Updated: September 21, 2011 The feature combines the best functionality of an Inter-AS Option (10) A and Inter-AS Option (10) B network to allow a Multiprotocol
More informationThe Next Opportunity in the Data Centre
The Next Opportunity in the Data Centre Application Centric Infrastructure Soni Jiandani Senior Vice President, Cisco THE NETWORK IS THE INFORMATION BROKER FOR ALL APPLICATIONS Applications Are Changing
More informationData Center Strategy, Disaster Recovery and CITEIS at Cisco
Data Center Strategy, Disaster Recovery and CITEIS at Cisco ITMCOC-2569 Follow us on Twitter for real time updates of the event: @ciscoliveeurope, #CLEUR Housekeeping We value your feedback- don't forget
More informationCisco UCS Director and ACI Advanced Deployment Lab
Cisco UCS Director and ACI Advanced Deployment Lab Michael Zimmerman, TME Vishal Mehta, TME Agenda Introduction Cisco UCS Director ACI Integration and Key Concepts Cisco UCS Director Application Container
More informationACI Multi-Site Architecture and Deployment. Max Ardica Principal Engineer - INSBU
ACI Multi-Site Architecture and Deployment Max Ardica Principal Engineer - INSBU Agenda ACI Network and Policy Domain Evolution ACI Multi-Site Deep Dive Overview and Use Cases Introducing ACI Multi-Site
More informationServiceability of SD-WAN
BRKCRS-2112 Serviceability of SD-WAN Chandrabalaji Rajaram & Ali Shaikh Cisco Spark How Questions? Use Cisco Spark to communicate with the speaker after the session 1. Find this session in the Cisco Live
More informationNetwork Implications of Cloud Computing Presentation to Internet2 Meeting November 4, 2010
Network Implications of Cloud Computing Presentation to Internet2 Meeting November 4, 2010 Lou Topfl Director, New Technology Product Development Engineering AT&T Agenda What is the Cloud? Types of Cloud
More informationNTT Com Press Conference March 1, 2016 #enterprisecloud
NTT Com Press Conference March 1, 2016 #enterprisecloud 1 Significant Enhancement of Enterprise Cloud - Realizing Digital Transformation - NTT Communications March 1, 2016 2 NTT Communications Initiatives
More informationAgenda. This Session: Azure Networking Basics, On-prem connectivity options DEMO Create VNET/Gateway Cost-estimation for VNET/Gateways
Onur Dogruoz Agenda Previous Sessions: Introduction to Azure Infrastructure as a Service (IaaS), Azure portal, role-based access control (RBAC), calculator overview VM Types, Azure Hybrid Use Benefits(AHUB),
More informationCisco ACI Multi-Site Fundamentals Guide
First Published: 2017-08-10 Last Modified: 2017-10-09 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387)
More informationNetwork Design with latest VPN Technologies
Network Design with latest VPN Technologies Carsten Rossenhövel Managing Director Which VPN type fits the purpose? SOHO Teleworkers Internet Branch Office Questions to identify: What are the business goals?
More informationModelos de Negócio na Era das Clouds. André Rodrigues, Cloud Systems Engineer
Modelos de Negócio na Era das Clouds André Rodrigues, Cloud Systems Engineer Agenda Software and Cloud Changed the World Cisco s Cloud Vision&Strategy 5 Phase Cloud Plan Before Now From idea to production:
More informationto know how and when to apply which Microsoft technology. In many cases, you can combine multiple
Overview of Microsoft Virtualization Microsoft offers a number of virtualization technologies that administrators and infrastructure architects can use to create and administer a virtual environment. To
More informationDesign Guide for Cisco ACI with Avi Vantage
Page 1 of 23 Design Guide for Cisco ACI with Avi Vantage view online Overview Cisco ACI Cisco Application Centric Infrastructure (ACI) is a software defined networking solution offered by Cisco for data
More informationHybrid Cloud Solutions
Hybrid Cloud Solutions with Cisco and Microsoft Innovation Rob Tappenden, Technical Solution Architect rtappend@cisco.com March 2016 Today s industry and business challenges Industry Evolution & Data Centres
More informationMP-BGP VxLAN, ACI & Demo. Brian Kvisgaard System Engineer, CCIE SP #41039 November 2017
MP-BGP VxLAN, ACI & Demo Brian Kvisgaard System Engineer, CCIE SP #41039 November 2017 Datacenter solutions Programmable Fabric Classic Ethernet VxLAN-BGP EVPN standard-based Cisco DCNM Automation Modern
More informationInterAS Option B. Information About InterAS. InterAS and ASBR
This chapter explains the different InterAS option B configuration options. The available options are InterAS option B, InterAS option B (with RFC 3107), and InterAS option B lite. The InterAS option B
More informationSegmentation. Threat Defense. Visibility
Segmentation Threat Defense Visibility Establish boundaries: network, compute, virtual Enforce policy by functions, devices, organizations, compliance Control and prevent unauthorized access to networks,
More informationCloud-Ready WAN For IAAS & SaaS With Cisco s Next- Gen SD-WAN
BRKCRS-2113 Cloud-Ready WAN For IAAS & SaaS With Cisco s Next- Gen SD-WAN Sumanth Kakaraparthi Product Leader SD-WAN Manan Shah Director Of Product Management Cisco Spark How Questions? Use Cisco Spark
More informationNetwork Virtualization
Network Virtualization Petr Grygárek 1 Traditional Virtualization Techniques Network Virtualization Implementation of separate logical network environments (Virtual Networks, VNs) for multiple groups on
More informationCloud Networking From Theory to Practice. Ivan Pepelnjak NIL Data Communications
Cloud Networking From Theory to Practice Ivan Pepelnjak (ip@ioshints.info) NIL Data Communications Who is Ivan Pepelnjak... in 30 Seconds Networking engineer since 1985 (DECnet, Netware, X.25, OSI, IP...)
More informationMPLS in the DCN. Introduction CHAPTER
CHAPTER 5 First Published: January 3, 2008 Last Updated: January 3, 2008 Finding Support Information for Platforms and Cisco IOS and Catalyst OS Software Images Use Cisco Feature Navigator to find information
More informationCisco Virtual Networking Solution Nexus 1000v and Virtual Services. Abhishek Mande Engineer
Cisco Virtual Networking Solution Nexus 1000v and Virtual Services Abhishek Mande Engineer mailme@cisco.com Agenda Application requirements in virtualized DC The Anatomy of Nexus 1000V Virtual Services
More informationIntroduction to Cisco Virtual Topology System DP Ayyadevara, Product Manager, Cloud Virtualization Cisco PSOSDN-1050
Introduction to Cisco Virtual Topology System DP Ayyadevara, Product Manager, Cloud Virtualization Group @ Cisco PSOSDN-1050 Agenda Cisco Data Center SDN Strategy Programmable Fabric with VTS VTS Architecture
More informationFast IT - Policy Driven Infrastructure for the Intercloud World
Fast IT - Policy Driven Infrastructure for the Intercloud World Paul Horrocks Technical Solution Architect Agenda What is Fast IT? What is Policy? How Cisco delivers Fast IT The foundation for Fast IT
More informationCloudBridge and Get Ready for Desktops and Apps as a Service. Henrik Poulsen
CloudBridge and Get Ready for Desktops and Apps as a Service Henrik Poulsen Mobile Workstyles Cloud Services Any Device Any Cloud #CitrixSummit Design for Any-to-Any Hybrid Architectures Corporate Datacenter
More informationMigrating Enterprise Applications to the Cloud Session 672. Leighton L. Nelson
Migrating Enterprise Applications to the Cloud Session 672 Leighton L. Nelson Leighton L. Nelson Instructional Technology Principal Oracle ACE & Oracle Certified Expert Oracle Database Administrator Author/blogger
More informationIntuit Application Centric ACI Deployment Case Study
Intuit Application Centric ACI Deployment Case Study Joon Cho, Principal Network Engineer, Intuit Lawrence Zhu, Solutions Architect, Cisco Agenda Introduction Architecture / Principle Design Rollout Key
More informationSecurity Models for Cloud
Security Models for Cloud Kurtis E. Minder, CISSP December 03, 2011 Introduction Kurtis E. Minder, Technical Sales Professional Companies: Roles: Security Design Engineer Systems Engineer Sales Engineer
More informationZentera Systems CoIP Platform
Application Note Zentera Systems CoIP Platform Traffic Isolation Using CoIP Traffic Isolation is Critical to Network Security An important attribute of any network is that it ensures certain types of traffic
More informationCisco Cloud Services Router 1000V with Cisco IOS XE Software Release 3.13
Q&A Cisco Cloud Services Router 1000V with Cisco IOS XE Software Release 3.13 Q. What is the Cisco Cloud Services Router 1000V? A. The Cisco Cloud Services Router 1000V (CSR 1000V) is a router in virtual
More informationOverview of Microsoft Virtualization
Overview of Microsoft Virtualization Microsoft offers a number of virtualization technologies that administrators and infrastructure architects can use to create and administer a virtual environment. To
More informationThird Party Cloud Services Its Adoption in the New Age
Solutions for higher performance! Third Party Cloud Services Its Adoption in the New Age 1 Introduction Cloud computing is the delivery of computing services over the Internet. Cloud services allow individuals
More informationCisco CloudCenter Solution with VMware
Cisco CloudCenter Solution with Extend, any application, and any cloud The Cisco CloudCenter hybrid cloud management platform securely provisions infrastructure resources and deploys application components
More informationCisco Enterprise Cloud Suite Overview Cisco and/or its affiliates. All rights reserved.
Cisco Enterprise Cloud Suite Overview 2015 Cisco and/or its affiliates. All rights reserved. 1 CECS Components End User Service Catalog SERVICE PORTAL Orchestration and Management UCS Director Application
More informationIntelligent WAN: Leveraging the Internet Secure WAN Transport and Internet Access
Now a part of Cisco We bought Viptela Intelligent WAN: Leveraging the Internet Secure WAN Transport and Internet Access Branch Hybrid WAN Transport IPsec Secure MPLS (IP-VPN) Private Cloud Virtual Private
More informationVirtual Machine Fabric EXtension (VM-FEX) Extending the Network directly to the VM s
Virtual Machine Fabric EXtension (VM-FEX) Extending the Network directly to the VM s BRKCOM-2005 Follow us on Twitter for real time updates of the event: @ciscoliveeurope, #CLEUR Housekeeping We value
More informationProvisioning Overlay Networks
This chapter has the following sections: Using Cisco Virtual Topology System, page 1 Creating Overlays, page 2 Creating Network using VMware, page 4 Creating Subnetwork using VMware, page 4 Creating Routers
More informationRunning RHV integrated with Cisco ACI. JuanLage Principal Engineer - Cisco May 2018
Running RHV integrated with Cisco ACI JuanLage Principal Engineer - Cisco May 2018 Agenda Why we need SDN on the Data Center What problem are we solving? Introduction to Cisco Application Centric Infrastructure
More informationOPEN CONTRAIL ARCHITECTURE GEORGIA TECH SDN EVENT
OPEN CONTRAIL ARCHITECTURE GEORGIA TECH SDN EVENT sdn-and-nfv-technical---georgia-tech---sep-2013---v2 Bruno Rijsman, Distinguished Engineer 24 September 2013 Use Cases 2 Copyright 2013 Juniper Networks,
More informationUCS Management Architecture Deep Dive
UCS Management Architecture Deep Dive Agenda Introductions UCS Architecture, Innovations, Topology Physical Building Blocks Logical Building Blocks Typical Use Cases (Live UCS Demo) Programmable Infrastructure
More informationNext generation branch with SD-WAN and NFV
Next generation branch with SD-WAN and NFV Kiran Ghodgaonkar, Senior Manager, Enterprise Marketing Mani Ganeson, Senior Product Manager PSOCRS-2004 @ghodgaonkar Cisco Spark How Questions? Use Cisco Spark
More informationMPLS design. Massimiliano Sbaraglia
MPLS design Massimiliano Sbaraglia - MPLS layer 2 VPN diagram flowchart - MPLS layer 2 VPN pseudowire VPWS diagram - MPLS layer 2 VPN VPLS diagram - MPLS layer 2 EVPN diagram - MPLS layer 3 VPN diagram
More informationSecurizarea Calculatoarelor și a Rețelelor 32. Tehnologia MPLS VPN
Platformă de e-learning și curriculă e-content pentru învățământul superior tehnic Securizarea Calculatoarelor și a Rețelelor 32. Tehnologia MPLS VPN MPLS VPN 5-ian-2010 What this lecture is about: IP
More informationModeling an Application with Cisco ACI Multi-Site Policy Manager
Modeling an Application with Cisco ACI Multi-Site Policy Manager Introduction Cisco Application Centric Infrastructure (Cisco ACI ) Multi-Site is the policy manager component used to define intersite policies
More informationThe Virtualisation Security Journey: Beyond Endpoint Security with VMware and Symantec
The Virtualisation Security Journey: Beyond Endpoint Security with VMware and Symantec James Edwards Product Marketing Manager Dan Watson Senior Systems Engineer Disclaimer This session may contain product
More informationHuawei CloudEngine Series. VXLAN Technology White Paper. Issue 06 Date HUAWEI TECHNOLOGIES CO., LTD.
Issue 06 Date 2016-07-28 HUAWEI TECHNOLOGIES CO., LTD. 2016. All rights reserved. No part of this document may be reproduced or transmitted in any form or by any means without prior written consent of
More informationBuilding a Video Optimized Private Cloud Platform on Cisco Infrastructure Rohit Agarwalla, Technical
Building a Video Optimized Private Cloud Platform on Cisco Infrastructure Rohit Agarwalla, Technical Leader roagarwa@cisco.com, @rohitagarwalla DEVNET-1106 Agenda Cisco Media Blueprint Media Workflows
More informationQuantum, network services for Openstack. Salvatore Orlando Openstack Quantum core developer
Quantum, network services for Openstack Salvatore Orlando sorlando@nicira.com Openstack Quantum core developer Twitter- @taturiello Caveats Quantum is in its teenage years: there are lots of things that
More informationCONTAINERS AND MICROSERVICES WITH CONTRAIL
CONTAINERS AND MICROSERVICES WITH CONTRAIL Scott Sneddon Sree Sarva DP Ayyadevara Sr. Director Sr. Director Director Cloud and SDN Contrail Solutions Product Line Management This statement of direction
More informationData Center Configuration. 1. Configuring VXLAN
Data Center Configuration 1. 1 1.1 Overview Virtual Extensible Local Area Network (VXLAN) is a virtual Ethernet based on the physical IP (overlay) network. It is a technology that encapsulates layer 2
More informationDemystifying the Cloud With a Look at Hybrid Hosting and OpenStack
Demystifying the Cloud With a Look at Hybrid Hosting and OpenStack Robert Collazo Systems Engineer Rackspace Hosting The Rackspace Vision Agenda Truly a New Era of Computing 70 s 80 s Mainframe Era 90
More informationDEPLOYING AND EVOLVING FABRICS IN EXISTING NETWORKS. Scott Fincher Global Solutions Architect Avaya Networking
DEPLOYING AND EVOLVING FABRICS IN EXISTING NETWORKS Scott Fincher Global Solutions Architect Avaya Networking Thank you Sponsors! Global Sponsors Gold Sponsors Silver Sponsors Join the Conversation @Avaya
More informationLTRDCT-2781 Building and operating VXLAN BGP EVPN Fabrics with Data Center Network Manager
LTRDCT-2781 Building and operating VXLAN BGP EVPN Fabrics with Data Center Network Manager Henrique Molina, Technical Marketing Engineer Matthias Wessendorf, Technical Marketing Engineer Cisco Spark How
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
SAI2803BU The Road to Micro- Segmentation with VMware NSX #VMworld #SAI2803BU Disclaimer This presentation may contain product features that are currently under development. This overview of new technology
More informationA Holistic View of Telco Clouds
A Holistic View of Telco Clouds Cloud Computing in the Telecom environment, bridging the gap Miyazaki, 4 March 2012 (A workshop in conjunction with World Telecom Congress 2012) Authors: Lóránt Németh,
More informationSolution Guide. Infrastructure as a Service: EVPN and VXLAN. Modified: Copyright 2016, Juniper Networks, Inc.
Solution Guide Infrastructure as a Service: EVPN and VXLAN Modified: 2016-10-16 Juniper Networks, Inc. 1133 Innovation Way Sunnyvale, California 94089 USA 408-745-2000 www.juniper.net All rights reserved.
More informationAdvanced CSR Lab with High Availability and Transit VPC
Advanced CSR Lab with High Availability and Transit VPC Fan Yang, Cisco, Engineer, Technical Marketing Nikolai Pitaev, Cisco, Engineer, Technical Marketing LTRVIR-3004 Agenda Slides (30 Min.): CSR 1000V
More informationImplementing VXLAN. Prerequisites for implementing VXLANs. Information about Implementing VXLAN
This module provides conceptual information for VXLAN in general and configuration information for layer 2 VXLAN on Cisco ASR 9000 Series Router. For configuration information of layer 3 VXLAN, see Implementing
More informationFeature Information for BGP Control Plane, page 1 BGP Control Plane Setup, page 1. Feature Information for BGP Control Plane
Feature Information for, page 1 Setup, page 1 Feature Information for Table 1: Feature Information for Feature Releases Feature Information PoAP diagnostics 7.2(0)N1(1) Included a new section on POAP Diagnostics.
More informationLive Demo: Top Deployed SD-WAN Use Cases
#FutureWAN Live Demo: Top Deployed SD-WAN Use Cases David Klebanov @DavidKlebanov david@viptela.com Demonstration Topology and Customer Journey Internet Palo Alto Firewall Hub 1 Snort IDS Cloud From MPLS
More informationFlexible NFV WAN interconnections with Neutron BGP VPN
Flexible NFV WAN interconnections with Neutron BGP VPN Thomas Morin Orange OpenStack Summit, May 2018, Vancouver BC Agenda BGP VPNs as a key building block for Telcos 1-slide reminder on BGP VPNs Why we
More informationWhy Choose MS Azure?
Why Choose MS Azure? Bio Dave Williams Cloud Architect AWS and Azure Expertise Agenda How to choose a public cloud service provider Microsoft Azure Strengths: Identity & Azure Active Directory Infrastructure
More informationCloudCenter for Developers
DEVNET-1198 CloudCenter for Developers Conor Murphy, Systems Engineer Data Centre Cisco Spark How Questions? Use Cisco Spark to communicate with the speaker after the session 1. Find this session in the
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
NET1510 Introduction to NSX-T Architecture Dimitri Desmidt ddesmidt@vmware.com Andrew Voltmer avoltmer@vmware.com #VMworld #NET1510BU Disclaimer This presentation may contain product features that are
More informationDeveloping, Deploying and Managing Applications on the Cloud
Developing, Deploying and Managing Applications on the Cloud Jayabalan S CTO & Co-Founder September 10, 2011 Agenda 1 2 3 4 5 6 7 8 9 10 Introduction Computing Evolution IT Challenges and Importance of
More informationModule Day Topic. 1 Definition of Cloud Computing and its Basics
Module Day Topic 1 Definition of Cloud Computing and its Basics 1 2 3 1. How does cloud computing provides on-demand functionality? 2. What is the difference between scalability and elasticity? 3. What
More informationANIKET DAPTARI & RANJINI RAJENDRAN CONTRAIL TEAM
ROLE OF NETWORK VIRTUALIZATION AND SOFTWARE DEFINED SECURITY IN MULTICLOUD ANIKET DAPTARI & RANJINI RAJENDRAN CONTRAIL TEAM This statement of direction sets forth Juniper Networks current intention and
More informationEthernet Fabrics- the logical step to Software Defined Networking (SDN) Frank Koelmel, Brocade
Ethernet Fabrics- the logical step to Software Defined Networking (SDN) Frank Koelmel, Brocade fkoelmel@broc 10/28/2013 2 2012 Brocade Communications Systems, Inc. Proprietary Information ETHERNET FABRICS
More informationTEN ESSENTIAL NETWORK VIRTUALIZATION DEFINITIONS
E-Guide TEN ESSENTIAL NETWORK VIRTUALIZATION DEFINITIONS SearchSDN T here is some confusion surrounding as there is no one definition. In this exclusive guide, you ll find ten to help you better understand
More informationDeploy Application Load Balancers with Source Network Address Translation in Cisco DFA
White Paper Deploy Application Load Balancers with Source Network Address Translation in Cisco DFA Last Updated: 1/27/2016 2016 Cisco and/or its affiliates. All rights reserved. This document is Cisco
More informationMicrosoft Azure Course Content
Cloud Computing Trainings @ STUCORNER & SHARPENCLOUD Microsoft Azure Course Content Lesson 1: Introduction to Azure 1. Overview of On-premise infrastructure 2. Transition from On-premise to datacenter
More informationMicrosoft Azure for AWS Experts
Microsoft Azure for AWS Experts OD40390B; On-Demand, Video-based Course Description This course provides an in-depth discussion and practical hands-on training of Microsoft Azure Infrastructure Services
More informationContiv installation and integration with ACI
Contiv installation and integration with ACI http://contiv.ciscolive.com Haroun Dass Customer Solutions Architect hdass@cisco.com Luis Flores System Engineer luflores@cisco.com @Luis_E_Flores Cesar Obediente
More informationCisco SD-WAN (Viptela) Migration, QoS and Advanced Policies Hands-on Lab
Cisco SD-WAN (Viptela) Migration, QoS and Advanced Policies Hands-on Lab Ali Shaikh Technical Leader Faraz Shamim Sr. Technical Leader Mossaddaq Turabi Distinguished ENgineer Cisco Spark How Questions?
More informationEthernet VPN (EVPN) and Provider Backbone Bridging-EVPN: Next Generation Solutions for MPLS-based Ethernet Services. Introduction and Application Note
White Paper Ethernet VPN (EVPN) and Provider Backbone Bridging-EVPN: Next Generation Solutions for MPLS-based Ethernet Services Introduction and Application Note Last Updated: 5/2014 Ethernet VPN (EVPN)
More informationPUBLIC AND HYBRID CLOUD: BREAKING DOWN BARRIERS
PUBLIC AND HYBRID CLOUD: BREAKING DOWN BARRIERS Jane R. Circle Manager, Red Hat Global Cloud Provider Program and Cloud Access Program June 28, 2016 WHAT WE'LL DISCUSS TODAY Hybrid clouds and multi-cloud
More informationVMware Cloud on AWS. A Closer Look. Frank Denneman Senior Staff Architect Cloud Platform BU
VMware Cloud on AWS A Closer Look Frank Denneman Senior Staff Architect Cloud Platform BU Speed is the New Currency Cloud Computing We are in the 3 rd fundamental structural transition in the history of
More informationHybrid Clouds: Integrating the Enterprise Data Center and the Public Cloud
Hybrid Clouds: Integrating the Enterprise Data Center and the Public Cloud Usha Ramachandran, Technical Marketing Engineer Session Abstract In this session, participants will learn how to create hybrid
More informationImplementing MPLS VPNs over IP Tunnels
The MPLS VPNs over IP Tunnels feature lets you deploy Layer 3 Virtual Private Network (L3VPN) services, over an IP core network, using L2TPv3 multipoint tunneling instead of MPLS. This allows L2TPv3 tunnels
More informationManaging MPLS VPN Services
CHAPTER 5 This chapter describes the tasks required to get started using Cisco Prime Fulfillment 6.2, Multiprotocol Label Switching (MPLS) virtual private network (VPN). The information in the section
More informationHPE FlexFabric 5940 Switch Series
HPE FlexFabric 5940 Switch Series MCE Configuration Guide Part number: 5200-1024b Software version: Release 25xx Document version: 6W102-20170830 Copyright 2017 Hewlett Packard Enterprise Development LP
More informationCisco ACI Multi-Pod/Multi-Site Deployment Options Max Ardica Principal Engineer BRKACI-2003
Cisco ACI Multi-Pod/Multi-Site Deployment Options Max Ardica Principal Engineer BRKACI-2003 Agenda ACI Introduction and Multi-Fabric Use Cases ACI Multi-Fabric Design Options ACI Stretched Fabric Overview
More informationCloud & container monitoring , Lars Michelsen Check_MK Conference #4
Cloud & container monitoring 04.05.2018, Lars Michelsen Some cloud definitions Applications Data Runtime Middleware O/S Virtualization Servers Storage Networking Software-as-a-Service (SaaS) Applications
More information