Cyber Security and the Evolving Datacenter
|
|
- Felicia Garrett
- 5 years ago
- Views:
Transcription
1 Cyber Security and the Evolving Datacenter Segmenting PINs to PICs
2 Preface Who is Arista? Work with 3 rd party best of breed partners Communication with customers and peers Foster Discussion Contact us to learn more - Lindsay Clarke Account Manager: lclarke@arista.com - Rich Whitney Engineering Manager: rw@arista.com *Vendors in this presentation are for reference only*
3 Arista PINs to PICs Private Cloud Public Cloud Branch Datacenter On-premise and/or hosted models Hypervisor centric Elastic demand-based service models Extremely agile MPLS to IPSEC driven VPN architectures High vendor lock-in Open leaf & spine cloud networking Siloes breaking down Challenges Hard to integrate across hypervisor vendor platforms Provider centric hard to tie to on-premise DC architectures Too many competing and vendor proprietary niches (i.e., SD-WAN) Silo Places in the Network (PINS) with Bolted After-Thoughts to Seamless and Secure Places-in-the-Cloud (PICs) Remaining legacy fabric hold-outs dying off 3
4 Secure Cloud Networking Goals Enable heterogeneous container deployments across virtual machines, bare-metal, and public or private clouds Production-grade networking to containers running on any platform Docker Swarm, Kubernetes or OpenShift Ability to migrate containerized workloads to and between clouds Uniform way to connect, manage and secure micro-services in a multi-cloud deployment Provide application layer visibility in the public cloud and aggregating telemetry data Ability to secure traffic flows to/from or within micro-services (i.e. inter & intra VPC/Vnet) traffic using same security policy mechanism as private cloud independently of public cloud provider lock-in security mechanisms Automatically secure applications in the cloud based on consistent set of enforcement mechanisms Manage secure cloud using same security orchestration rules as private cloud Integrate with best-of-breed security management to orchestrate security with open API in any public or private cloud Reduce capex and opex costs of running a multi-cloud infrastructure
5 Leaf Hosts Dual-Homed Leaf MLAG Pair Rack 1 Rack 2 The dual-hom ed compute leaf is usually provisioned with a 3:1 oversubsc ri ption ratio. Ensure a thorough understanding of the failover characteristics of the NIC redundancy plan here and deploy VARP for protocol- free first hop redundancy. Leaf Edge Routers Data Center Spine Spine Data Center Interconnect Metro A MLAG Pair VTEP(s) VARP-FHRP Metro B Storage Leaf Leaf Storage Devices MLAG Pair External First Hop FCOE Network MPLS CORE Switch FC SAN The Data Center Interconnec t Leaf serves as the gateway leaf to The storage leaf is usually provisioned with a 1:1 oversubsc r ipti on the Metro DC Pair, the MPLS network, and the Core to the ratio when the storage is serving hosts connected to the compute remote Data Center. VXLAN is used as the L2 transport between leaves. Legacy Fiber Channel connections will remain in the MDS the Metro pairs and in limited amounts across the Core Network and connect to the IP Fabric through the storage Leaf N AS IP Storage Services Leaf Leaf Network Services The network spine is provisioned to provide wire-speed connectivi ty with deep buffers to manage periods of sporadic congestion and incast. It is designed to be simple and thus highly available while To Spine network operations and change control via Smart Switches System Upgrades. The spine runs BGP as its primary MLAG Pair Checkpoint/ PAN Firewalls F5 Load balancer Acceleration/ ETC. The services leaf is usually provisioned with an uplink capacity based on the throughput of the services connected to and through it. It is important to monitor both bandwidth and critical table utilization for shared services to ensure stable connectivity. routing protocol Leaf Services Edge Routers External Network Internet DMZ allowing for routine The DMZ terminates the Internet traffic on the external routers and connects up to a typical Leaf model leveraging services that are specific for thedmz connectivity TAP and Monitor Port Aggregation MLAG Pair Services FW/LB/IPS... Storage Compute MLAG Pair Packet Monitor Application Performance Monitor IDS/IPS Each leaf switch and each spine switch connects to this switch with either one 10Gb or on 40GbE interface to simplify monitoring and troubleshooti ng as well as enabling APM and IDS systems to see any/all traffic as efficiently as possible. Management Leaf Leaf Network Services MLAG Pair CVX DHCP ZTP/ZTR Splunk The management leaf never needs much throughput, but does require maximum uptime and reliability to ensure the overall infrastructur e stays available. Each service is detailed in the accompanying design document. Arista EOS Use-cases Universal Cloud Network Data Center Interconnect Macro Segmentation DWDM MUX/ DMUX >3000km with Amplification SP IN E LEAF/ TOR SERV E RS DC1 DC 2 Virtual Virtual Physical Servers Physical Firewalls & Storage Network Virtualization DANZ, LANZ and Tracers NSX Software Defined Data Center Central Management IP Storage Media IPPeering ISP A ISP B CloudVision exchange Monitoring Tools EOS EOS EOS Programmable Underlay with EOS 5
6 Arista EOS Use-cases: Routing focus CCloouuddDDCCI IX Cloud Internet Inter-DCWAN DCI Transit Public Peering Universal Spine Core Spine BGP VxLAN EVPN IX IP Cloud network Spine Leaf AS2906 Customer Edge AS8075 BGP W A N D C 1 I nter-dc Traffic D C 2 Path computation P rogrammatic API s x MPLS TE signaling IGP, BGP - Segment Routing Segment Routing reduces complexity and improves scale by offering intelligent source routing with globally optimized traffic engineering 6
7 Arista EOS Use-cases: Arista Any Cloud Platform Private Cloud Cloud Exchange Public Cloud Any Cloud API Automation veos Router in AWS Analytics Agile Work-X DC Aggregation with Arista Universal Cloud Network veos Router in Azure East Available Architecture Arista Router at Equinix veos Router in Azure West Hybrid cloud, expanding seamlessly beyond the datacenter 7
8 What is Segmentation? Process of implementing isolation and segmentation for security purposes within the virtual data center Gartner, 2017
9 Standard Segmentation Methods Traditional physical firewalls and manually deploying security policies to isolate traffic
10 Micro-segmentation L3/L4 security policies on distributed virtual switch or vngfw down to VM
11 Adaptive Segmentation Automated application discovery, Orchestrate L7 Policies on distributed firewalls and Isolate threats
12 Cloud Based Segmentation L3/L4 security policy micro-segmentation enforcement by Cloud Providers
13 No silver bullets Security Criteria Traditional Segmentation Micro- Segmentation Adaptive Segmentation Cloud Segmentation Firewall Type Physical IP Tables / ACLs (Plug to vngfw) Firewall Location DMZ Top of Rack or Hypervisor Secure typical traffic flows North / South East/West & North/ South Virtual Distributed Operating System East/West & North/ South IP tables / ACLs (plug into NGFW) Hypervisor East/West & North/ South Security layer L3 - L7 L3/L4 on vswitch L3-L7 L3/L4 Security Policies provision & maintaining Manually Manually Application Learning Manually Security policy management Central firewall controller Central firewall controller Central firewall controller Cloud Orchestrator
14 Segmentations have created security islands DMZ Security Island Multi-Silo DC Security Island Branch / Campus Security Island Cloud Security Island Security Policy Sprawl Micro- Visibility per island Lack of Automation & Mobility & Agility Vendor Lock-in & lack of Open Integration
15 Macro-Segmentation with Macro-State Visibility is open to accommodate & enables any segmentation architecture Firewall Controller TapAggregation East Region Packet Monitoring A Z 1 A Z 2 A Z 1 A Z 2 A Z 1 A Z 2 2b). Adaptive Segmentation 2a). Micro Segmentation 1. Traditional Segmentation Transit VPC Internet VPC 4. CloudSegmentation
16 Macro-State Visibility to openly accommodate & enable any segmentation architecture Use CV s NetDB to collect Macro-State using countless EOS software features to provide network wide visibility and state stream the data using Open APIs to any 3rd party security controllers help provide scalable Macro-segmentation across all PlCs Firewall Controller Packet Monitoring TapAggregation DANZ LANZ EOS API SNMP CloudTracer VmTracer Atomic Counters Syslog MSS MapReduce Tracer ZTP Bug Alerts DFA Path Tracer Event Monitor Event Manager EOS SDK sflow VCS State Streaming 3rd party RPM packages Scripting DigitalOptical Monitoring
17 Macro-Segmentation with Macro-State Visibility Macro Application & WorkFlow Visibility & Analytics Open API Integration to with Best of Breed Security Full Security Automation & Segmentation VCS has Macro-State view of Network State Stream & provide atomic changes on end devicesconnected to physical& virtualnetwork State Stream & provide atomic changes on storage infrastructure Provide Cloud Visibility & Analytics to secure cloud workflows andworkloads Provide Visibility, Security, Analytics,Agilityto remoteusers Places In the Cloud (PICs) Compute / Big Data / HPC Edge Storage Edge Cloud Edge Branch / Campus / IoT Edge
18 Macro Threat Detection & Enforcement Arista Macro Detection & Enforcement Software Roadmap 1) 3rd Party threat security intelligence or enforcement 2) Real time data capture & enforcement 3) Real-time threat analysis via machine learning Phase 1) Provide 3rd Party security devices application visibility & network logs to do security intelligence & enforcement Phase 2) Arista provides policy enforcement on virtual routers and physical devices integrated to 3rd party Phase 3) Arista provides machine learning capabilities for advanced detection and correlation for intelligent & automated policy enforcement Private Cloud Macro visibility Macro W 1 or 0 kfl 1 ow Ne 1 tw 0 o 1 rk W1 o 0 rk 1 lo 0 ad visibility Macro visibility Public Cloud
19 Thank You 19
Weiterentwicklung von OpenStack Netzen 25G/50G/100G, FW-Integration, umfassende Einbindung. Alexei Agueev, Systems Engineer
Weiterentwicklung von OpenStack Netzen 25G/50G/100G, FW-Integration, umfassende Einbindung Alexei Agueev, Systems Engineer ETHERNET MIGRATION 10G/40G à 25G/50G/100G Interface Parallelism Parallelism increases
More informationCloudVision Macro-Segmentation Service
CloudVision Macro-Segmentation Service Inside Address network-based security as a pool of resources, stitch security to applications and transactions, scale on-demand, automate deployment and mitigation,
More informationArista 7500R series: Q&A
Arista 7500R series: Q&A What are the Arista 7500R Series platforms? The Arista 7500R Series are purpose built modular switches that deliver the industry s highest performance with up to 150Tbps of system
More informationArista 7300X and 7250X Series: Q&A
Arista 7300X and 7250X Series: Q&A Product Overview What are the 7300X and 7250X Family? The Arista 7300X Series are purpose built 10/40GbE data center modular switches in a new category called Spline
More informationArista 7170 series: Q&A
Arista 7170 series: Q&A Product Overview What are the 7170 series? The Arista 7170 Series are purpose built multifunctional programmable 100GbE systems built for the highest performance environments and
More informationMETAFABRIC ARCHITECTURE A SIMPLE, OPEN, AND SMART NETWORK FOR THE DATA CENTER
METAFABRIC ARCHITECTURE A SIMPLE, OPEN, AND SMART NETWORK FOR THE DATA CENTER APPLICATIONS ARE DRIVING IT TRANSFORMATION Virtualization Clouds SDN 2 Copyright 2013 Juniper Networks, Inc. TWO PROBLEMS WITH
More informationArista 7160 series: Q&A
Arista 7160 series: Q&A Product Overview What are the 7160 Series? Highly dynamic cloud data center networks continue to evolve with the introduction of new protocols and server technologies such as containers
More informationArista 7280R series: Q&A
Arista 7280R series: Q&A What are the 7280 Series switches? The 7280R are a series of fixed systems including the 7280R, 7280R2 and 7280R2A. The 7280R are 1RU and 2RU switches designed with deep buffers,
More informationArista Solution Overview
Arista Solution Overview Duong Quoc Vuong Solution Architect November 2016 Copyright 2016 Hewlett Packard Enterprise Development LP Arista overview 2 Introducing Arista s mission transform every network
More informationSoftware Driven Cloud Networking
Software Driven Cloud Networking Arista Networks, a leader in high-speed, highly programmable datacenter switching, has outlined a number of guiding principles for network designs serving private cloud,
More informationArista 7020R Series: Q&A
7020R Series: Q&A Document Arista 7020R Series: Q&A Product Overview What is the 7020R Series? The Arista 7020R Series, including the 7020SR, 7020TR and 7020TRA, offers a purpose built high performance
More information1V0-642.exam.30q.
1V0-642.exam.30q Number: 1V0-642 Passing Score: 800 Time Limit: 120 min 1V0-642 VMware Certified Associate 6 Network Visualization Fundamentals Exam Exam A QUESTION 1 Which is NOT a benefit of virtualized
More informationExtending Enterprise Security to Multicloud and Public Cloud
Extending Enterprise Security to Multicloud and Public Cloud Paul Kofoid Sr. Consulting Engineer: Security & Cloud This statement of direction sets forth Juniper Networks current intention and is subject
More information2018 Cisco and/or its affiliates. All rights reserved.
Beyond Data Center A Journey to self-driving Data Center with Analytics, Intelligent and Assurance Mohamad Imaduddin Systems Engineer Cisco Oct 2018 App is the new Business Developer is the new Customer
More informationEOS CloudVision Overview Data Sheet
EOS CloudVision Overview Data Sheet CloudVision Highlights Cloud Automation for Everyone Arista EOS CloudVision simplifies complex time and resource intensive tasks in a turnkey software solution designed
More informationMigration from Silo Security to Secure Holistic Cloud Networking
Migration from Silo Security to Secure Holistic Cloud Networking Enterprises are rapidly transforming their critical network infrastructures to encompass private, public and hybrid cloud architectures.
More informationCHARTING THE FUTURE OF SOFTWARE DEFINED NETWORKING
www.hcltech.com CHARTING THE FUTURE OF SOFTWARE DEFINED NETWORKING Why Next-Gen Networks? The rapid and large scale adoption of new age disruptive digital technologies has resulted in astronomical growth
More informationArista 7060X, 7060X2, 7260X and 7260X3 series: Q&A
Arista 7060X, 7060X2, 7260X and 7260X3 series: Q&A Product Overview What are the 7060X, 7060X2, 7260X & 7260X3 series? The Arista 7060X Series, comprising of the 7060X, 7060X2, 7260X and 7260X3, are purpose-built
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
NET1949BU Seamless Network Connectivity for Virtual and Bare-metal s with NSX Suresh Thiru Sridhar Subramanian VMworld 2017 Content: Not for publication VMworld 2017 - NET1949BU Disclaimer This presentation
More informationPluribus Adaptive Cloud Fabric
Product Overview Adaptive Cloud Fabric Powering the Software-Defined Enterprise Highlights Completely software enabled and built on open networking platforms Powered by the Netvisor ONE network Operating
More informationNetworking solution for consolidated IT infrastructure
Networking solution for consolidated IT infrastructure Timo Lonka timo@extremenetworks.com Topics 1.The New Extreme 2. IP Storage and HCI Networking 3. Agile Data Center Architecture 4. Case study: Ficolo
More informationFuture-Ready Networking for the Data Center. Dell EMC Forum
Future-Ready Networking for the Data Center Dell EMC Forum Our world is changing We want it now Work is no longer a location We re drowning in information Everything is at risk 8 seconds Average human
More informationNext-Generation Data Center Interconnect Powered by the Adaptive Cloud Fabric
Solution Overview Next-Generation Interconnect Powered by the Adaptive Cloud Fabric Increases availability and simplifies the stretching and sharing of resources across distributed data centers Highlights
More informationPluribus Adaptive Cloud Fabric Powering the Software-Defined Enterprise
Adaptive Cloud Fabric Powering the Software-Defined Enterprise Highlights Completely software enabled and built on open networking platforms Powered by the Netvisor ONE network Operating System Eliminates
More informationHuawei CloudFabric and VMware Collaboration Innovation Solution in Data Centers
Huawei CloudFabric and ware Collaboration Innovation Solution in Data Centers ware Data Center and Cloud Computing Solution Components Extend virtual computing to all applications Transform storage networks
More informationEnterprise. Nexus 1000V. L2/L3 Fabric WAN/PE. Customer VRF. MPLS Backbone. Service Provider Data Center-1 Customer VRF WAN/PE OTV OTV.
2 CHAPTER Cisco's Disaster Recovery as a Service (DRaaS) architecture supports virtual data centers that consist of a collection of geographically-dispersed data center locations. Since data centers are
More informationDEFINING SECURITY FOR TODAY S CLOUD ENVIRONMENTS. Security Without Compromise
DEFINING SECURITY FOR TODAY S CLOUD ENVIRONMENTS Security Without Compromise CONTENTS INTRODUCTION 1 SECTION 1: STRETCHING BEYOND STATIC SECURITY 2 SECTION 2: NEW DEFENSES FOR CLOUD ENVIRONMENTS 5 SECTION
More informationGUIDE. Optimal Network Designs with Cohesity
Optimal Network Designs with Cohesity TABLE OF CONTENTS Introduction...3 Key Concepts...4 Five Common Configurations...5 3.1 Simple Topology...5 3.2 Standard Topology...6 3.3 Layered Topology...7 3.4 Cisco
More informationThe Impact of Virtualization on Cloud Networking
The Impact of Virtualization on Cloud Networking The adoption of virtualization in data centers creates the need for a new class of networking designed to support elastic resource allocation, increasingly
More informationDELL EMC VSCALE FABRIC
NETWORK DATA SHEET DELL EMC VSCALE FABRIC FIELD-PROVEN BENEFITS Increased utilization and ROI Create shared resource pools (compute, storage, and data protection) that connect to a common, automated network
More informationExploring Cloud Security, Operational Visibility & Elastic Datacenters. Kiran Mohandas Consulting Engineer
Exploring Cloud Security, Operational Visibility & Elastic Datacenters Kiran Mohandas Consulting Engineer The Ideal Goal of Network Access Policies People (Developers, Net Ops, CISO, ) V I S I O N Provide
More informationArista Universal Cloud Network
Arista Universal Cloud Network Version 2.0 June 2018 About This Document The Arista Universal Cloud Network is based upon common use cases seen from real customers. The UCN Design guide shows a set of
More informationArista 7320X: Q&A. Product Overview. 7320X: Q&A Document What are the 7320X series?
Arista 7320X: Q&A Product Overview What are the 7320X series? The 7320X series are a range of high performance 100GbE systems that offer flexible support for 10GbE to 100GbE. The 7320X series comprise
More informationArista 7050X Series: Q&A
Arista 7050X Series: Q&A Product Overview What is the 7050X Family? The Arista 7050X Series are purpose built 10/40GbE data center switches in compact and energy efficient form factors with wire speed
More informationVMware and Arista Network Virtualization Reference Design Guide for VMware vsphere Environments
VMware and Arista Network Virtualization Reference Design Guide for VMware vsphere Environments Deploying VMware NSX with Arista's Software Defined Cloud Networking Infrastructure REFERENCE DESIGN GUIDE
More informationANIKET DAPTARI & RANJINI RAJENDRAN CONTRAIL TEAM
ROLE OF NETWORK VIRTUALIZATION AND SOFTWARE DEFINED SECURITY IN MULTICLOUD ANIKET DAPTARI & RANJINI RAJENDRAN CONTRAIL TEAM This statement of direction sets forth Juniper Networks current intention and
More informationRouting Applications State of the Art and Disruptions
Routing Applications State of the Art and Disruptions Use cases, Innovations and Disruptions Sachin Natu, Sr. Director Product Management Disha Chopra, Sr. Manager Product Management This statement of
More informationSteelConnect. The Future of Networking is here. It s Application- Defined for the Cloud Era. SD-WAN Cloud Networks Branch LAN/WLAN
Data Sheet SteelConnect The Future of Networking is here. It s Application- Defined for the Cloud Era. SD-WAN Cloud Networks Branch LAN/WLAN The Business Challenge Delivery of applications is becoming
More informationCato Cloud. Software-defined and cloud-based secure enterprise network. Solution Brief
Cato Cloud Software-defined and cloud-based secure enterprise network Solution Brief Legacy WAN and Security Appliances are Incompatible with the Modern Enterprise Cato Networks: Software-defined and Cloud-based
More informationCloudEngine Series Data Center Switches
CloudEngine Series Data Center Switches 2 CloudEngine Series Data Center Switches Product and Solution Overview Huawei CloudEngine (CE) series switches are high-performance cloud switches designed for
More informationArista 7280E Series: Q&A
Arista 7280E Series: Q&A Product Overview What are the 7280E Series? The 7280E are a series of purpose built fixed configuration 1RU form factor switches designed with deep buffers, virtual output queues,
More informationEOS CloudVision Overview Data Sheet
EOS CloudVision Overview Data Sheet CloudVision Highlights Cloud Automation for Everyone Arista EOS CloudVision simplifies complex time and resource intensive tasks in a turnkey software solution designed
More informationSECURING THE MULTICLOUD
SECURING THE MULTICLOUD Bahul Harikumar and Ali Bidabadi Juniper Networks This statement of direction sets forth Juniper Networks current intention and is subject to change at any time without notice.
More informationArista 7010 Series: Q&A
7010 Series: Q&A Document Arista 7010 Series: Q&A Product Overview What is the 7010 Series? The Arista 7010 Series are a family of purpose built high performance and power efficient fixed configuration
More informationCisco SD-WAN and DNA-C
Cisco SD-WAN and DNA-C SD-WAN Cisco SD-WAN Intent-based networking for the branch and WAN 4x Improved application experience Better user experience Deploy applications in minutes on any platform with consistent
More informationMAKING THE CLOUD A SECURE EXTENSION OF YOUR DATACENTER
MAKING THE CLOUD A SECURE EXTENSION OF YOUR DATACENTER Bret Hartman Cisco / Security & Government Group Session ID: SPO1-W25 Session Classification: General Interest 1 Mobility Cloud Threat Customer centric
More informationIntelligent WAN: Leveraging the Internet Secure WAN Transport and Internet Access
Now a part of Cisco We bought Viptela Intelligent WAN: Leveraging the Internet Secure WAN Transport and Internet Access Branch Hybrid WAN Transport IPsec Secure MPLS (IP-VPN) Private Cloud Virtual Private
More informationExtreme Networks How to Build Scalable and Resilient Fabric Networks
Extreme Networks How to Build Scalable and Resilient Fabric Networks Mikael Holmberg Distinguished Systems Engineer Fabrics MLAG IETF TRILL Cisco FabricPath Extreme (Brocade) VCS Juniper QFabric IEEE Fabric
More informationPSOACI Why ACI: An overview and a customer (BBVA) perspective. Technology Officer DC EMEAR Cisco
PSOACI-4592 Why ACI: An overview and a customer (BBVA) perspective TJ Bijlsma César Martinez Joaquin Crespo Technology Officer DC EMEAR Cisco Lead Architect BBVA Lead Architect BBVA Cisco Spark How Questions?
More informationHochverfügbarkeit in Campusnetzen
Hochverfügbarkeit in Campusnetzen Für die deutsche Airheads Community 04. Juli 2017, Tino H. Seifert, System Engineer Aruba Differences between Campus Edge and Campus Core Campus Edge In many cases no
More informationApstra Operating System AOS
Apstra Operating System AOS 2.3 CHALLENGES Network admins manually track and verify thousands of elements, even for a small spineleaf networks with a handful of devices. SOLUTION Apstra AOS A turn-key
More informationHPE Strategy for VMware Cloud Foundation
HPE Strategy for VMware Cloud Foundation September 12, 2017 Alexander Tschebanjuk Solution Architect EMEA HPE multi-cloud strategy Manage an open, mixed cloud environment HPE Integration and Professional
More informationVeloCloud Cloud-Delivered WAN Fast. Simple. Secure. KUHN CONSULTING GmbH
VeloCloud Cloud-Delivered WAN Fast. Simple. Secure. 1 Agenda 1. Overview and company presentation 2. Solution presentation 3. Main benefits to show to customers 4. Deployment models 2 VeloCloud Company
More informationEvolution of Data Center Security Automated Security for Today s Dynamic Data Centers
Evolution of Data Center Security Automated Security for Today s Dynamic Data Centers Speaker: Mun Hossain Director of Product Management - Security Business Group Cisco Twitter: @CiscoDCSecurity 2 Any
More informationBest Practices for Extending the WAN into AWS (IaaS) with SD-WAN
Best Practices for Extending the WAN into AWS (IaaS) with SD-WAN Ariful Huq Product Management @arifulhuq & Rob McBride Marketing @digitalmcb Industry trends impacting networking Cloud Mobile Social 2
More informationArista Telemetry. White Paper. arista.com
Arista Telemetry With phenomenal DC growth that includes the expansion of web, cloud datacenters, software defined networks, and big data, there is a need for a complete solution to optimize the networks
More informationTHE EXPONENTIAL DATA CENTER
THE EXPONENTIAL DATA CENTER THE TYRANNY OF TREES Typical tree configuration Location matters in a tree architecture Bubbles Optimal performance VM One Hop 2 Copyright 2010 Juniper Networks, Inc. www.juniper.net
More informationDesign Guide: Deploying NSX for vsphere with Cisco ACI as Underlay
Design Guide: Deploying NSX for vsphere with Cisco ACI as Underlay Table of Contents Executive Summary... 2 Benefits of NSX Architecture... 4 2.1 NSX Primary Use Cases... 4 2.2 Logical Layer Connectivity...
More informationArista 7050X Series: Q&A
Arista 7050X Series: Q&A Product Overview What is the 7050X Family? The Arista 7050X Series are purpose built 10/40GbE data center switches in compact and energy efficient form factors with wire speed
More informationFuture-Ready Networking for the Data Center
Future-Ready Networking for the Data Center Our world is changing We want it now Work is no longer a location We re drowning in information Everything is at risk 8 seconds Average human attention span:
More informationVersa Software-Defined Solutions for Service Providers
PRODUCT BRIEF Software-Defined Solutions for Service Providers Transformative solutions to increase growth and value The Service Provider industry has seen an incredible amount of disruption due to NFV
More informationWhite Paper. OCP Enabled Switching. SDN Solutions Guide
White Paper OCP Enabled Switching SDN Solutions Guide NEC s ProgrammableFlow Architecture is designed to meet the unique needs of multi-tenant data center environments by delivering automation and virtualization
More informationCisco SD-WAN. Intent-based networking for the branch and WAN. Carlos Infante PSS EN Spain March 2018
Cisco SD-WAN Intent-based networking for the branch and WAN Carlos Infante PSS EN Spain March 2018 Aug-12 Oct-12 Dec-12 Feb-13 Apr-13 Jun-13 Aug-13 Oct-13 Dec-13 Feb-14 Apr-14 Jun-14 Aug-14 Oct-14 Dec-14
More informationUse Case Brief BUILDING A PRIVATE CLOUD PROVIDING PUBLIC CLOUD FUNCTIONALITY WITHIN THE SAFETY OF YOUR ORGANIZATION
Use Case Brief BUILDING A PRIVATE CLOUD PROVIDING PUBLIC CLOUD FUNCTIONALITY WITHIN THE SAFETY OF YOUR ORGANIZATION At many enterprises today, end users are demanding a powerful yet easy-to-use Private
More informationIntroducing VMware Validated Designs for Software-Defined Data Center
Introducing VMware Validated Designs for Software-Defined Data Center VMware Validated Design for Software-Defined Data Center 3.0 This document supports the version of each product listed and supports
More informationBROCADE CLOUD-OPTIMIZED NETWORKING: THE BLUEPRINT FOR THE SOFTWARE-DEFINED NETWORK
BROCADE CLOUD-OPTIMIZED NETWORKING: THE BLUEPRINT FOR THE SOFTWARE-DEFINED NETWORK Ken Cheng VP, Service Provider and Application Delivery Products September 12, 2012 Brocade Cloud-Optimized Networking
More informationDeploying Data Center Switching Solutions
Deploying Data Center Switching Solutions Choose the Best Fit for Your Use Case 1 Table of Contents Executive Summary... 3 Introduction... 3 Multivector Scaling... 3 Low On-Chip Memory ASIC Platforms...4
More informationThe Market Disruptor. Mark Pearce EMEA Director Channel Networking November 16 th Networking Solutions for the Future-Ready Enterprise
Dell EMC Networking The Market Disruptor Mark Pearce EMEA Director Channel Networking November 16 th 2016 Networking Solutions for the Future-Ready Enterprise DELL EMC Networking Innovations & Thought
More informationIP Fabric Reference Architecture
IP Fabric Reference Architecture Technical Deep Dive jammon@brocade.com Feng Shui of Data Center Design 1. Follow KISS Principle Keep It Simple 2. Minimal features 3. Minimal configuration 4. Configuration
More informationArista 7500E DWDM Solution and Use Cases
ARISTA WHITE PAPER Arista DWDM Solution and Use Cases The introduction of the Arista 7500E Series DWDM solution expands the capabilities of the Arista 7000 Series with a new, high-density, high-performance,
More informationSteelConnect. The Future of Networking is here. It s Application-Defined for the Cloud Era. SD-WAN Cloud Networks Branch LAN/WLAN
Data Sheet SteelConnect The Future of Networking is here. It s Application-Defined for the Cloud Era. SD-WAN Cloud Networks Branch LAN/WLAN The Business Challenge Delivery of applications is becoming more
More informationDate Center Solutions. Stefano Alei Consulting SE EMEA Partners
Date Center Solutions Stefano Alei Consulting SE EMEA Partners Disclaimer This statement of product direction sets forth Juniper Networks current intention and is subject to change at any time without
More informationThe Next Opportunity in the Data Centre
The Next Opportunity in the Data Centre Application Centric Infrastructure Soni Jiandani Senior Vice President, Cisco THE NETWORK IS THE INFORMATION BROKER FOR ALL APPLICATIONS Applications Are Changing
More informationBrocade and VMware Strategic Partners. Kyle Creason Brocade Systems Engineer
Brocade and VMware Strategic Partners Kyle Creason Brocade Systems Engineer Brocade Data Center Network Technologies Strategic focus areas FIBRE CHANNEL FABRICS ETHERNET FABRICS CORE ROUTING SDN NFV CLOUD
More informationINNOVATOR AWARDS: NETWORKING
INNOVATOR AWARDS: NETWORKING SECOND HALF 2017 An Enterprise Management Associates Research Report Summary Prepared for Arista Networks Written by Shamus McGillicuddy Q1 2018 EMA Innovator Awards: Networking
More informationOPEN CONTRAIL ARCHITECTURE GEORGIA TECH SDN EVENT
OPEN CONTRAIL ARCHITECTURE GEORGIA TECH SDN EVENT sdn-and-nfv-technical---georgia-tech---sep-2013---v2 Bruno Rijsman, Distinguished Engineer 24 September 2013 Use Cases 2 Copyright 2013 Juniper Networks,
More informationColt Novitas: Bringing SDN & NFV in Production. Javier Benitez, Strategy & Architecture,
Colt Novitas: Bringing SDN & NFV in Production Javier Benitez, Strategy & Architecture, Javier.benitez@colt.net 09 May 2016 ESNOG GORE 17, Barc elona 2016 1 Colt at a glance 187k+ LDN, metro fibre and
More informationOpenFlow: What s it Good for?
OpenFlow: What s it Good for? Apricot 2016 Pete Moyer pmoyer@brocade.com Principal Solutions Architect Agenda SDN & OpenFlow Refresher How we got here SDN/OF Deployment Examples Other practical use cases
More informationCisco ACI Multi-Pod/Multi-Site Deployment Options Max Ardica Principal Engineer BRKACI-2003
Cisco ACI Multi-Pod/Multi-Site Deployment Options Max Ardica Principal Engineer BRKACI-2003 Agenda ACI Introduction and Multi-Fabric Use Cases ACI Multi-Fabric Design Options ACI Stretched Fabric Overview
More informationMP-BGP VxLAN, ACI & Demo. Brian Kvisgaard System Engineer, CCIE SP #41039 November 2017
MP-BGP VxLAN, ACI & Demo Brian Kvisgaard System Engineer, CCIE SP #41039 November 2017 Datacenter solutions Programmable Fabric Classic Ethernet VxLAN-BGP EVPN standard-based Cisco DCNM Automation Modern
More informationVMware Validated Design for NetApp HCI
Network Verified Architecture VMware Validated Design for NetApp HCI VVD 4.2 Architecture Design Sean Howard Oct 2018 NVA-1128-DESIGN Version 1.0 Abstract This document provides the high-level design criteria
More informationEthernet Fabrics- the logical step to Software Defined Networking (SDN) Frank Koelmel, Brocade
Ethernet Fabrics- the logical step to Software Defined Networking (SDN) Frank Koelmel, Brocade fkoelmel@broc 10/28/2013 2 2012 Brocade Communications Systems, Inc. Proprietary Information ETHERNET FABRICS
More informationIntroducing VMware Validated Designs for Software-Defined Data Center
Introducing VMware Validated Designs for Software-Defined Data Center VMware Validated Design 4.0 VMware Validated Design for Software-Defined Data Center 4.0 You can find the most up-to-date technical
More informationBrocade Ethernet Fabrics
Brocade Ethernet Fabrics Brocade 9 June 2015 On-Demand Data Center Network Technologies Strategic focus areas FIBRE CHANNEL FABRICS ETHERNET FABRICS CORE ROUTING SDN NFV CLOUD ORCHESTRATION 2015 Brocade
More information100G MACsec Solution: 7500R platform
100G MACsec Solution: 7500R platform Data Sheet Product Highlights Density and Performance 36x100GbE on a 1RU line card Scales to up to 576 wire speed ports of 100GbE MACsec in a 7500R system Full IEEE
More informationIntroducing VMware Validated Designs for Software-Defined Data Center
Introducing VMware Validated Designs for Software-Defined Data Center VMware Validated Design for Software-Defined Data Center 4.0 This document supports the version of each product listed and supports
More informationCHANGING DYNAMICS OF IP PEERING Arista Solution Guide
CHANGING DYNAMICS OF IP PEERING Arista Solution Guide Inside The Rise of Content Delivery Networks Arista 7500R Universal Spine Platforms Highest 100G density with power efficiency Deep buffer VoQ Architecture
More informationDistributed Data Centers Within Juniper Networks Mobile Cloud Architecture. Mobile World Congress 2017
Distributed Data Centers Within Juniper Networks Mobile Cloud Architecture Mobile World Congress 2017 Agenda Challenges and Trends Use Cases and Solutions Products and Services Proof Points Juniper s Mobile
More informationArista Networks and F5 Solution Integration
Arista Networks and F5 Solution Integration Inside Overview Agility and Efficiency Drive Costs Virtualization of the Infrastructure Network Agility with F5 Arista Networks EOS Maximizes Efficiency and
More informationData Center Automation
Data Center Automation About Arista Networks 10/40/100GbE Networks for the Virtualized Cloud & Data Center Founded in 2004 Shipping Since Mid-2008 ANET, IPO (NYSE) in June 2014 1000+ Employees More than
More informationCato Cloud. Solution Brief. Software-defined and Cloud-based Secure Enterprise Network NETWORK + SECURITY IS SIMPLE AGAIN
Cato Cloud Software-defined and Cloud-based Secure Enterprise Network Solution Brief NETWORK + SECURITY IS SIMPLE AGAIN Legacy WAN and Security Appliances are Incompatible with the Modern Enterprise The
More informationSolving the Virtualization Conundrum
Solving the Virtualization Conundrum Collapsing hierarchical, multi-tiered networks of the past into more compact, resilient, feature rich, two-tiered, leafspine or SplineTM networks have clear advantages
More informationTITLE. the IT Landscape
The Impact of Hyperconverged Infrastructure on the IT Landscape 1 TITLE Drivers for adoption Lower TCO Speed and Agility Scale Easily Operational Simplicity Hyper-converged Integrated storage & compute
More informationTAP Aggregation with DANZ
TAP Aggregation with DANZ The Missing Economics of Network Visibility Arista DANZ provides the ability to cost-effectively capture and analyze all traffic and flows in a datacenter or service provider
More informationSecuring the Software-Defined Data Center
Securing the Software-Defined Data Center The future of the data center is software defined Key Advantages McAfee Network Platform 8.4 Delivers best-in-class IPS security across physical and softwaredefined
More informationCato Cloud. Global SD-WAN with Built-in Network Security. Solution Brief. Cato Cloud Solution Brief. The Future of SD-WAN. Today.
Cato Cloud Global SD-WAN with Built-in Network Security Solution Brief 1 Legacy WAN and Security Appliances are Incompatible with the Modern Enterprise The rise of cloud applications and mobile workforces
More informationAgile Data Center Solutions for the Enterprise
Solution Brief Agile Data Center Solutions for the Enterprise IP Fabrics: Paving the Way to Digital Transformation The data center sits at the core of the business, housing mission critical applications
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
SAI2803BU The Road to Micro- Segmentation with VMware NSX #VMworld #SAI2803BU Disclaimer This presentation may contain product features that are currently under development. This overview of new technology
More informationHybrid Cloud Solutions
Hybrid Cloud Solutions with Cisco and Microsoft Innovation Rob Tappenden, Technical Solution Architect rtappend@cisco.com March 2016 Today s industry and business challenges Industry Evolution & Data Centres
More informationJStorm Based Network Analytics Platform. Alibaba Cloud Senior Technical Manager, Biao Lyu
JStorm Based Network Analytics Platform Alibaba Cloud Senior Technical Manager, Biao Lyu Overview of Alibaba Cloud 18 Regions 150+ Products 1Million+ Customers Comprehensive Networking Product Family 12
More information