Cisco Virtual Networking Solution Nexus 1000v and Virtual Services. Abhishek Mande Engineer
|
|
- Austin Tucker
- 6 years ago
- Views:
Transcription
1 Cisco Virtual Networking Solution Nexus 1000v and Virtual Services Abhishek Mande Engineer
2 Agenda Application requirements in virtualized DC The Anatomy of Nexus 1000V Virtual Services with Prime NSC Service Chaining Summary 2
3 Server Virtualization Issues Port Group Server Admin 1. vmotion moves VMs across physical ports the network policy must follow vmotion 2. Must view or apply network/ security policy to locally switched traffic 3. Need to maintain separation of duties while ensuring non-disruptive operations Security Admin Network Admin 3
4 Application Requirements for Network Services Current generation network capabilities are driven by physical network topology. Example, If the firewall is plugged into the Internet connection and then the load balancer into firewall, the path of traffic must always flow in that order. Application driven requirements that change the relationship (load balancing, then firewall) cannot be supported without physically changing the layout of the network. Application Proxy Server Core Router/ Switch Load Balancer Firewall
5 Virtual Services Architectural Approach Requirement Virtualisation Virtualization Awareness Dynamic policy-based provisioning Support VM mobility (e.g. vmotion) Multi-tenant / Scale-out deployment Separation of Duties Non-disruptive to server team Efficient deployment Performance optimisation optimization Broad mobility diameter DC-wide, DC-to-DC, DC-to-Cloud Solution Virtual (SW) form-factor Integration with VM mgmt tools (e.g. vcenter, SC-VMM in future) Policies bound to vnic/vm Integration with N1KV () (*) Virtual service: multi-instance deployment Management: Multi-tenant N1KV : Multi-tenant Profile-based provisioning for services Integration with N1KV port profile Optional hosting on Nexus 1010 HW appliance Integration with N1KV DC-wide: VXLAN** DC-to-DC: OTV** *: Virtual Service Datapath **VXLAN: Virtual Extensible LAN **OTV: Overlay Transport Virtualisation 5
6 Network Services Options for Virtualized/Cloud DC Redirect VM traffic via VLANs to external (physical) firewall Apply hypervisor-based virtual network services Web Server App Server Database Server Web Server App Server Database Server Hypervisor Hypervisor VLANs Virtual Contexts VSN VSN This Session Dedicated Service Nodes Virtual Service Nodes 6
7 The Anatomy of Nexus 1000V
8 Nexus 1000V - Consistent Cloud Networking Multi Hypervisors and Multi Orchestration strategy Cloud Portal and Orchestration L4-7 Virtual Network Infrastructure L2-3 Hypervisor Computing Platform Physical Network vcloud Director/ Automation Center vwaas System Center vsphere Hyper-V XenServer UCS Citrix CloudPlatform Cloud Network Services Nexus 1000V Unified Fabric (Nexus) CIAC/ OpenStack/ Partners ASA 1000V VSG NAM NetScaler1000V Partners KVM Storage Platform 8
9 Cisco Nexus 1000V Cisco Virtual Machine Networking Policy-Based VM Connectivity Mobility of Network and Security Properties Non-Disruptive Operational Model Port Profile / Defined Policies WEB Apps HR DB DMZ VM VM VM VM VM VM VM VM Nexus 1000V VEM Nexus 1000V VEM VM Connection Policy Defined in the network Applied in Virtual Centre Linked to VM UUID vcenter Nexus 1000V VSM 9
10 Cisco Nexus 1000V Cisco Virtual Machine Networking VMs Need to Move VMotion DRS Policy-Based VM Connectivity SW upgrade/patch Hardware failure Property Mobility VMotion for the network Ensures VM security Maintains connection state Mobility of Network and Security Properties VM VM VM VM Nexus 1000V VEM Non-Disruptive Operational Model VM VM VM VM VM VM VM VM Nexus 1000V VEM vcenter Nexus 1000V VSM 10
11 Nexus 1000V Architecture Respects DC Operational Model for Pà V Network Admin Virtual Appliance VSM-1 (active) VSM-2 (standby) NX-OS Control Plane Back Plane Supervisor-1 (Active) Supervisor-2 (StandBy) Linecard-1 Linecard-2 Linecard-N NX-OS Data Plane Modular Switch VEM-1 VEM-2 VEM-N VSM: Virtual Supervisor Module VEM: Virtual Ethernet Module Server Admin Hypervisor Hypervisor Hypervisor 11
12 Port-Profile Configuration n1000v# show port-profile name WebProfile port-profile WebServers description: status: enabled capability uplink: no system vlans: port-group: WebServers config attributes: switchport mode access switchport access vlan 110 no shutdown evaluated config attributes: switchport mode access switchport access vlan 110 no shutdown assigned interfaces: Veth10 Support Commands Include: ü Port management ü VLAN ü PVLAN ü Port-Channel ü ACL ü Netflow ü Port security ü QoS ü vservice 12
13 Port Groups: VI Admin View 13
14 Nexus 1000V Architecture service insertion in the hypervisor Network Admin Virtual Appliance VSM-1 (active) VSM-2 (standby) NX-OS Control Plane Back Plane Supervisor-1 (Active) Supervisor-2 (StandBy) Linecard-1 Linecard-2 Linecard-N NX-OS Data Plane Modular Switch VSM: Virtual Supervisor Module VEM: Virtual Ethernet Module Server Admin VEM-1 VEM-2 VEM-N Hypervisor Hypervisor Hypervisor 14
15 Policy Based Service Enablement is Nexus 1000V dataplane component: 1. Distributed Service insertion architecture, with Intelligent traffic intercept and redirection mechanism 2. Topology agnostic service insertion model 3. Service Chaining across multiple virtual services 4. Performance acceleration with e.g. VSG flow offload 5. Efficient and Scalable Architecture 6. VM Policy mobility with VM mobility Nexus 1000V Any Hypervisor Cloud Network Services (CNS) Evolve the Network for the next wave of application requirements
16 Virtual Services
17 Cisco Virtual Networking and Cloud Network Srvs PHYSICAL INFRASTRUCTURE WAN Router Switches Servers Cloud Services Router 1000V vwaas CLOUD NETWORK SERVICES Network Analysis Module (vnam) ASA 1000V Cloud Firewall Citrix NetScaler 1000V Cisco Virtual Security Gateway Imperva SecureSphere WAF Full Portfolio of Best in Class Virtualized Network Service Enhanced VXLAN Nexus 1000V Nexus 1000V Distributed switch NX-OS consistency VSG Distributed Zonebased FW vwaas WAN optimization Application traffic Multi-Hypervisor (VMware, Microsoft, KVM* Xen*) ASA 1000V Edge firewall, VPN Protocol Inspection *KVM in beta, Xen prototype CSR VSG 1000V Ecosystem (Cloud Router) Services WAN L3 gateway Routing and VPN Citrix NetScaler VPX virtual ADC Imperva Web App. Firewall
18 Cisco Cloud Services Platform Dedicated Cloud Services appliance Flexible, on-demand allocation of resources Allows policy management by network teams Nexus 1000V Any Hypervisor Cisco Cloud Network Services (CNS) Citrix NetScaler 1000V Prime virtual NAM Imperva SecureSphere WAF Virtual Security Gateway VM VM VM VSM VSM DCNM* * 2H CY13 VSM = Virtual Supervisor Module DCNM = Data Center Mgt. Center Nexus 1110 Cloud Services Platform 10G and SSL Ready
19 Virtual Security Gateway
20 Cisco Virtual Security Gateway Distributed, Zone Based Firewall Prime NSC Virtual Security Gateway (VSG) Context aware Security Zone based Controls Dynamic, Agile Best-in-class Architecture VM context aware rules Establish zones of trust Policies follow vmotion Efficient, Fast, Scale-out SW (with intelligence)
21 Virtual Security Gateway Intelligent Traffic Steering with VM VM VM PNSC VM VM VM VM VM VM VM VM VM VM VM VM VM VM VM VM 4 Nexus 1000V Distributed Virtual Switch Decision Caching 3 VSG 1 Initial Packet Flow 2 Flow Access Control (policy evaluation) Log/Audit 21
22 Virtual Security Gateway Intelligent Traffic Steering with VM VM VM VNMC VM VM VM VM VM VM VM VM VM VM VM VM VM VM VM VM Nexus 1000V Distributed Virtual Switch 5 Remaining packets from flow Decision offloaded to Nexus 1000V (policy enforcement) VSG Log/Audit 22
23 Decoupled Deployment Across Applications and Virtual Services Cisco VSG VM VM VM VM VM VM VM VM Virtualized Infrastructure with Cisco Nexus 1000V Deployment VEM VEM VEM VEM VEM No need to deploy virtual services on every host Plan CPU capacity independently across application workloads and virtual services Solution is simpler to deploy with multiple operations teams (server, network, and security)
24 Deployment in Multitenant Environment Active VSG (Tenant A) Web Zone Tenant A Standby VSG App Zone Tenant B Standby VSG QA Zone Dev Zone VM VM VM VM VM VM VM VM Active VSG (Tenant B) Cisco Nexus 1000V VEM vsphere Cisco Nexus 1000V VEM Cisco Nexus 1000V VEM vsphere vsphere 1000V VSM Data Center Network Cisco VMWare Prime vcenter Network Service Server Controller
25 Policy Rule Construct Cisco VSG supports policies based on network attribute and virtual machine (VM) attributes Rule Source Condition Destination Condition Action Condition Operator Operator Attribute Type Network VM Custom VM Attributes Instance Name Guest OS full name Zone Name Parent App Name VM Attributes Port Profile Name Cluster Name Hypervisor Name Network Attributes IP Address Network Port eq neq gt lt range Not-in-range Prefix member Not-member Contains
26 Citrix NetScalar1000V
27 Citrix NetScaler 1000V Nexus 1000V Any Hypervisor Citrix NetScaler 1000V Citrix Best-in-Class virtual application delivery controller (vadc) Sold and supported by Cisco (Q3) Integrated with Nexus 1100, NetScaler 1000V = VPX (Cloud Bridge, Cloud Connect, SSL VPN ) Cisco Cloud Network Services (CNS) Citrix NetScaler 1000V Prime virtual NAM Imperva SecureSphere WAF Virtual Security Gateway VM VM VM VSM VSM DCNM* * 2H CY13 VSM = Virtual Supervisor Module DCNM = Data Center Mgt. Center Nexus 1110 Cloud Services Platform
28 SLB : With and Without Without vpath Source NAT (SNAT) - Client/ Source Obscured Policy Based Routing (PBR) - Complex Inline ADC s Performance bottleneck Selective traffic Optimal implementation
29 SLB - why? Without vpath Source NAT (SNAT) - Client/ Source Obscured Policy Based Routing (PBR) - Complex Inline ADC s Performance bottleneck Selective traffic Optimal implementation With Preserve Source IP with ; redirects server-return traffic to SLB Easy deployment Topology agnostic Service Chaining Optimal use of Performance Enable New east-west flow use cases
30 NetScalar 1000V without East-West / Distributed Services Client IP Data Web Tier App Tier DB Tier Virtual Services 1 Web Server initiates connection to App Server with LB services enabled, now destination IP is VIP DST IP: Src IP:
31 NetScalar 1000V without East-West / Distributed Services Client IP Web Tier App Tier DB Tier Data 2 Virtual Services VIP selects App Server for the destination; sends packet with destination IP of App Server, and Source IP of its SNIP 2 DST IP: Src IP:
32 NetScalar 1000V without East-West / Distributed Services Client IP Web Tier App Tier DB Tier 3 Data 3 Distributed Firewall policy for App Server receives packet, but lacks visibility of Source information for policy evaluation. Policy fails! Firewall needs to know Source/Client IP for policy evaluation
33 NetScalar 1000V with Enabling East-West flow use-case for SLB Client IP Web Tier App Tier DB Tier Cisco Cisco 3 Data Data 3 Distributed Firewall enabled for App Server receives packet, and has full visibility of Source information for policy evaluation 5 Firewall has visibility of Source and destination for Policy evaluation
34 NetScalar 1000V with Enabling East-West flow use-case for SLB - East-West Services and Application Servers ready to delivers best in class services J Client IP Web Tier Data App Tier 4 DB Tier Cisco Cisco Data 4 Packet is forward to App Server on Policy evaluation Firewall has visibility of 5 Source and destination for Policy evaluation
35 Deployment Network Topologies One-Arm One-armed topologies have several benefits Simple, one physical interface and no risk of bridge loops Can make use of Link Aggregation to satisfy bandwidth requirements SLB does not have to be default gateway for application VM s Very few failure modes, easing HA failure analysis Web NetScaler 1000V interface Logical Topology 35
36 Service-Chaining and why it is important
37 Service Chaining Benefits Intelligent policy-based traffic steering through multiple network services Decouples network services from underlying network topology with Overlays Dynamic Service chains enabled per VM port Programmability Transparent Services Insertion Multi-Tenancy VxLAN Virtual Service A Virtual Service B Virtual Service C Web VM Tenant #2 (Policy 2) Client Cisco Nexus 1000V Embedded (Policy 1 & Policy 2 defined for each tenant) Web VM Tenant #1 (Policy 1) Expanded Ecosystem: VSG, ASA 1000V, vwaas, & NetScaler 1000V
38 Services Chaining with Intelligent Policy-based Traffic Steering Through Multiple Network Services APP OS APP APP OS OS Web Tier VM VM VM DB Tier Cisco Cisco 1 1 Client Initiates Flow to Web Server (VIP as Server IP) Client LB-VIP
39 Services Chaining with Intelligent Policy-based Traffic Steering Through Multiple Network Services APP OS APP APP OS OS Web Tier VM VM VM DB Tier Cisco 2 Cisco 2 NS1000V load balance web request, selects Web Server 1 (Client S1)
40 Services Chaining with Intelligent Policy-based Traffic Steering Through Multiple Network Services APP OS APP APP OS OS Web Tier VM VM VM DB Tier Cisco 3 Cisco 3 Based on policy, redirect traffic to service chain, starting with zone-based firewall, VSG
41 Services Chaining with Intelligent Policy-based Traffic Steering Through Multiple Network Services APP OS APP APP OS OS Web Tier VM VM VM DB Tier Cisco 4 Cisco 4 Traffic returns to Virtual Ethernet Module ready for next network service
42 Services Chaining with Intelligent Policy-based Traffic Steering Through Multiple Network Services APP OS APP APP OS OS Web Tier VM VM VM DB Tier Cisco 5 Cisco 5 WAF inspects packets for web attacks; prevents attack and generate alerts
43 Services Chaining with Intelligent Policy-based Traffic Steering Through Multiple Network Services APP OS APP APP OS OS Web Tier VM VM VM DB Tier Cisco 6 Cisco 6 Forwards packet to Web Server VM
44 Services Chaining with Intelligent Policy-based Traffic Steering Through Multiple Network Services APP OS APP APP OS OS Web Tier 7 VM VM VM DB Tier Cisco Cisco 7 Web to DB Tier Connection
45 Services Chaining with Intelligent Policy-based Traffic Steering Through Multiple Network Services APP OS APP APP OS OS Web Tier VM VM VM DB Tier Cisco 8 Cisco 8 Web to DB Tier Connection : Database tier security policy
46 Services Chaining with Intelligent Policy-based Traffic Steering Through Multiple Network Services APP OS APP APP OS OS Web Tier VM VM VM DB Tier Cisco 9 Cisco 9 Apply VSG policy and forward packet to database
47 3.0 VM Virtualized Network Service Non Virtualized Network Service Physical Network Service Non Physical Network Service Nexus 1000V Any Hypervisor Service chaining with and non- network services Virtual and physical network services Any network service can now be distributed, not just firewalls Submitted to IETF for standardization* Supporting Multiple hypervisors *
48 Service-Chaining Use-cases
49 Enterprise: Multi-Tier Applications Web Intelligent service chaining Network topology agnostic Flat network: VM s are on same VLAN 100 segment, still each have different set of Services enabled Service chain stays attached to VM on VM mobility WAN Optimization + Edge Firewall + NAT + Load Balancer + Web Application Firewall + Zone based Firewall Load Balancer + Zone based Firewall VSG Zone based Firewall VLAN 100 VLAN 100 VLAN
50 3-Tier Server zone NetScaler 1000V Server Load Balancer ASA 1000V - Edge Security Profile VSG - Compute Security Profile ASA: Permit Only Port 80(HTTP) to Web Servers ASA1000v: NAT VIP: NS1000V: Web Server LB ASA ASA: Block All External Access to Database Servers Web-Zone Database-Zone App-Zone Web" DB" Server" Web" Server" Client" Server" IP IP IP VSG Tenant-A VSG: Only Permit Web Servers Access to Database Servers VSG: Only Permit Client Access to Web Server and Deny access to DB server
51 Cloud Provider s Data Center Multi-Tenancy Enterprise A Internet WAN Router Switches MPLS DC Branch Enterprise B Physical Infrastructure CSR1kV VSG Tenant A NS1KV Virtual Infrastructure Tenant B Servers CSR1kV VSG NS1KV Cloud Provider Multi- Tenancy Use Cases Secure VPN Gateway MPLS Extension Tenant SLB East-West Firewall
52 Cloud Provider s Data Center Multi-Tenancy Server Load-Balancer and East-West Firewall offered as a Service Physical by CSP Infrastructure CSR1kV VSG Tenant A Enterprise A NS1KV Internet Virtual Infrastructure CSR1kV VSG WAN Router Switches Tenant B Servers NS1KV MPLS DC Branch Enterprise B Cloud Provider Multi- Tenancy Use Cases Secure VPN Gateway Tenant SLB East-West Firewall
53 Prime Network Service Controller Simple Yet Powerful Virtual Network Services Management Centralized Manager for all Virtual Services Multi-Tenant XML API Third-party integration Role-Based Access Controls Cisco Nexus 1000V, VMware vcenter, SCVMM Dynamic Provisioning Custom created to manage virtualization-specific workflows
54 Summary Cisco Provides Consistent Layer 2-7 Networking for Physical, Virtual, and Cloud Deployments: Design Once, Run Everywhere Hypervisor Agnostic Single Network for Physical, Virtual, and Cloud Consistent Operational Model and Troubleshooting, especially with ACI 3 for Standardized Service Chaining for Virtual and Physical Network Services Orchestration Tool of Your Choice: SCVMM, OpenStack, UCS Director and more
55
Cisco Virtual Security Gateway (VSG) Mohammad Salaheldin
Cisco Virtual Security Gateway (VSG) Mohammad Salaheldin Virtual Security Gateway (VSG) Overview VSG Packet Flow VSG Policy Model Use Case Example ASA on 1000V Summary 2011 Cisco and/or its affiliates.
More informationNetwork Services in Virtualized Data Center
Network Services in Virtualized Data Center Tomáš Michaeli Consulting Systems Engineer, DCV Central / Czech republic 21 Mar 2012 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 1 Almost
More informationDeploying Cloud Network Services Prime Network Services Controller (formerly VNMC)
Deploying Cloud Network Services Prime Network Services Controller (formerly VNMC) Dedi Shindler - Sr. Manager Product Management Cloud System Management Technology Group Cisco Agenda Trends Influencing
More informationVirtual Security Gateway Overview
This chapter contains the following sections: Information About the Cisco Virtual Security Gateway, page 1 Cisco Virtual Security Gateway Configuration for the Network, page 10 Feature History for Overview,
More informationCisco Nexus 1000V Switch for Microsoft Hyper-V
Q&A Cisco Nexus 1000V Switch for Microsoft Hyper-V Overview Q. What are Cisco Nexus 1000V Switches? A. Cisco Nexus 1000V Switches provide a comprehensive and extensible architectural platform for virtual
More informationVirtuální firewall v ukázkách a příkladech
Praha, hotel Clarion 10. 11. dubna 2013 Virtuální firewall v ukázkách a příkladech T-SEC3 / L2 Tomáš Michaeli Cisco 2013 2011 Cisco and/or its affiliates. All rights reserved. Cisco Connect 1 Agenda VXLAN
More informationNexus 1000V in Context of SDN. Martin Divis, CSE,
Nexus 1000V in Context of SDN Martin Divis, CSE, mdivis@cisco.com Why Cisco Nexus 1000V Losing the Edge Server Admin Host Host Host Host Server Admin manages virtual switching! vswitch vswitch vswitch
More informationCisco Virtual Security Gateway Deployment Guide VSG 1.4
Deployment Guide Cisco Virtual Security Gateway Deployment Guide VSG 1.4 Deployment Guide 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 1 of 33
More informationNevrijeme u oblacima i kako se zaštititi
Nevrijeme u oblacima i kako se zaštititi Goran Peteh Enterprise Systems Engineer Zagreb, 0.2.20. Agenda Internet trends MorganStanley Identity-aware infrastructure Physical and virtual security Cumulus
More informationCisco Application Centric Infrastructure Roadshow. Wednesday, 2. April 14
Cisco Application Centric Infrastructure Roadshow Wednesday, 2. April 14 Cisco ACI Roadshow - Agenda Business and IT trends Cisco Open Network Environment (ONE) Lunch Cisco Application Centric Infrastructure
More informationHybrid Clouds: Integrating the Enterprise Data Center and the Public Cloud
Hybrid Clouds: Integrating the Enterprise Data Center and the Public Cloud Usha Ramachandran, Technical Marketing Engineer Session Abstract In this session, participants will learn how to create hybrid
More informationSegmentation. Threat Defense. Visibility
Segmentation Threat Defense Visibility Establish boundaries: network, compute, virtual Enforce policy by functions, devices, organizations, compliance Control and prevent unauthorized access to networks,
More informationService Oriented Virtual DC Design
Dubrovnik, Croatia, South East Europe 20-22 May, 2013 Service Oriented Virtual DC Design Višnja Milovanović Consulting Systems Engineer Data Center & Virtualization 2011 2012 Cisco and/or its affiliates.
More informationCisco Nexus 1000V for Microsoft Hyper-V: Expanding the Virtual Edge
Cisco Nexus 1000V for Microsoft Hyper-V: Expanding the Virtual Edge Appaji Malla Sr. Product Manager Cisco Cloud Networking Services Division Agenda Cisco s Virtual Networking Vision Cisco Nexus 1000V
More informationThe Nexus 1000V on Microsoft Hyper-V: Expanding the Virtual Edge
The Nexus 1000V on Microsoft Hyper-V: Expanding the Virtual Edge 2 Agenda Cisco s Virtual Networking Vision Cisco Nexus 1000V Portfolio Overview Recent Pricing Changes Architectural Overview Services Architecture
More informationEvolution of Data Center Security Automated Security for Today s Dynamic Data Centers
Evolution of Data Center Security Automated Security for Today s Dynamic Data Centers Speaker: Mun Hossain Director of Product Management - Security Business Group Cisco Twitter: @CiscoDCSecurity 2 Any
More informationCisco Nexus 1000V InterCloud based Hybrid Cloud Architectures and Approaches
Cisco Nexus 1000V InterCloud based Hybrid Cloud Architectures and Approaches Kapil Bakshi Solutions Architect Session Details - Session Title: Cisco Nexus 1000V InterCloud-based Hybrid Cloud Architectures
More informationCisco Cloud Services Router 1000V with Cisco IOS XE Software Release 3.13
Q&A Cisco Cloud Services Router 1000V with Cisco IOS XE Software Release 3.13 Q. What is the Cisco Cloud Services Router 1000V? A. The Cisco Cloud Services Router 1000V (CSR 1000V) is a router in virtual
More informationData Center Virtualization Setting the Foundation. Ed Bugnion VP/CTO, Cisco Server, Access and Virtualization Technology Group
Data Center Virtualization Setting the Foundation Ed Bugnion VP/CTO, Cisco Server, Access and Virtualization Technology Group I Fought the Law, and the Law Won Sonny Curtis and the Crickets Moore s Law
More informationSecuring Containers Using a PNSC and a Cisco VSG
Securing Containers Using a PNSC and a Cisco VSG This chapter contains the following sections: About Prime Network Service Controllers, page 1 Integrating a VSG into an Application Container, page 4 About
More informationIntegration of Hypervisors and L4-7 Services into an ACI Fabric. Azeem Suleman, Principal Engineer, Insieme Business Unit
Integration of Hypervisors and L4-7 Services into an ACI Fabric Azeem Suleman, Principal Engineer, Insieme Business Unit Agenda Introduction to ACI Review of ACI Policy Model Hypervisor Integration Layer
More informationData Center 3.0 Technology Evolution. Session ID 20PT
Data Center 3.0 Technology Evolution Session ID 20PT Session Goal The focus of this seminar is on the latest technologies some of which can already be used in today's deployments and some that will become
More informationAgenda Registration & Coffee
Agenda 09.15 Registration & Coffee 09:45 Welcome & Overview - Paul D'Cruz Data Centre Systems Engineering Manager 10:00 Unified Fabric - Virtualising the Network and Storage Domain - Gordon Hirst DC CSE
More informationHW virtualizace a podpora hypervizorů různých výrobců
Cisco Expo 2012 HW virtualizace a podpora hypervizorů různých výrobců René Raeber Datacenter Architect IEEE 802.1DCB Architect Cisco Expo 2012 Cisco and/or its affiliates. All rights reserved. 1 Twitter
More informationNext Generation Data Centers Networks Consolidation and Virtualization
Next Generation Data Centers Networks Consolidation and Virtualization Samuel TAYLOR Directeur Technique Channel - WCA samtaylo@cisco.com 1 70 % of CIOs would increase spending on virtualization even if
More informationData Center and Cloud Automation
Data Center and Cloud Automation Tanja Hess Systems Engineer September, 2014 AGENDA Challenges and Opportunities Manual vs. Automated IT Operations What problem are we trying to solve and how do we solve
More informationIntegrating NetScaler ADCs with Cisco ACI
Docs.Citrix.com Integrating NetScaler ADCs with Cisco ACI http://docs.citrix.com/content/docs/en-us/netscaler/10-1/ns-solutions-con/cisco-aci-wrapper.html Jan. 28, 2011 citrix.com 1 Integrating NetScaler
More informationAutomate Application Deployment with F5 Local Traffic Manager and Cisco Application Centric Infrastructure
Automate Application Deployment with F5 Local Traffic Manager and Cisco Application Centric Infrastructure White Paper 2016 Cisco F5 Networks. All rights reserved. Page 1 Contents What You Will Learn...
More informationSecuring Containers Using a PNSC and a Cisco VSG
Securing Containers Using a PNSC and a Cisco VSG This chapter contains the following sections: About Prime Network Service Controllers, page 1 Integrating a VSG into an Application Container, page 3 About
More informationOrchestrating the Cloud Infrastructure using Cisco Intelligent Automation for Cloud
Orchestrating the Cloud Infrastructure using Cisco Intelligent Automation for Cloud 2 Orchestrate the Cloud Infrastructure Business Drivers for Cloud Long Provisioning Times for New Services o o o Lack
More informationCisco Virtual Networking Solution for OpenStack
Data Sheet Cisco Virtual Networking Solution for OpenStack Product Overview Extend enterprise-class networking features to OpenStack cloud environments. A reliable virtual network infrastructure that provides
More informationF5 Demystifying Network Service Orchestration and Insertion in Application Centric and Programmable Network Architectures
F5 Demystifying Network Service Orchestration and Insertion in Application Centric and Programmable Network Architectures Jeffrey Wong - Solution Architect F5 Networks February, 2015 Agenda F5 Synthesis
More informationCisco Application Centric Infrastructure and Microsoft SCVMM and Azure Pack
White Paper Cisco Application Centric Infrastructure and Microsoft SCVMM and Azure Pack Introduction Cisco Application Centric Infrastructure (ACI) is a next-generation data center fabric infrastructure
More informationService Graph Design with Cisco Application Centric Infrastructure
White Paper Service Graph Design with Cisco Application Centric Infrastructure 2017 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 1 of 101 Contents Introduction...
More informationCisco HyperFlex Systems
White Paper Cisco HyperFlex Systems Converting to Cisco Nexus 1000V Distributed Switches for Cisco HyperFlex Virtual Machine Guest and VMware vmotion Networks Author: Hui Chen October 2016 2016 Cisco and/or
More informationCisco Cloud Architecture with Microsoft Cloud Platform Peter Lackey Technical Solutions Architect PSOSPG-1002
Cisco Cloud Architecture with Microsoft Cloud Platform Peter Lackey Technical Solutions Architect PSOSPG-1002 Agenda Joint Cisco and Microsoft Integration Efforts Introduction to CCA-MCP What is a Pattern?
More informationDELL EMC VSCALE FABRIC
NETWORK DATA SHEET DELL EMC VSCALE FABRIC FIELD-PROVEN BENEFITS Increased utilization and ROI Create shared resource pools (compute, storage, and data protection) that connect to a common, automated network
More informationEvolution with End-to-End Data Center Virtualization
Evolution with End-to-End Data Center Virtualization Yves Louis DC Virtualisation Technical Solution Architect Agenda Data Center Virtualization Overview Front-End Data Center Virtualization Core Layer
More informationCCIE Data Center Written Exam ( ) version 1.0
CCIE Data Center Written Exam (350-080) version 1.0 Exam Description: The Cisco CCIE Data Center Written Exam (350-080) version 1.0 is a 2-hour test with 80 110 questions that will validate that a data
More informationBrocade and VMware Strategic Partners. Kyle Creason Brocade Systems Engineer
Brocade and VMware Strategic Partners Kyle Creason Brocade Systems Engineer Brocade Data Center Network Technologies Strategic focus areas FIBRE CHANNEL FABRICS ETHERNET FABRICS CORE ROUTING SDN NFV CLOUD
More informationTable of Contents HOL-PRT-1305
Table of Contents Lab Overview... 2 - Abstract... 3 Overview of Cisco Nexus 1000V series Enhanced-VXLAN... 5 vcloud Director Networking and Cisco Nexus 1000V... 7 Solution Architecture... 9 Verify Cisco
More informationVMWARE SOLUTIONS AND THE DATACENTER. Fredric Linder
VMWARE SOLUTIONS AND THE DATACENTER Fredric Linder MORE THAN VSPHERE vsphere vcenter Core vcenter Operations Suite vcenter Operations Management Vmware Cloud vcloud Director Chargeback VMware IT Business
More informationQ&As DCID Designing Cisco Data Center Infrastructure
CertBus.com 300-160 Q&As DCID Designing Cisco Data Center Infrastructure Pass Cisco 300-160 Exam with 100% Guarantee Free Download Real Questions & Answers PDF and VCE file from: 100% Passing Guarantee
More informationService Insertion with ACI using F5 iworkflow
Service Insertion with ACI using F5 iworkflow Gert Wolfis F5 EMEA Cloud SE October 2016 Agenda F5 and Cisco ACI Joint Solution Cisco ACI L4 L7 Service Insertion Overview F5 and Cisco ACI Integration Models
More informationThe Virtualisation Security Journey: Beyond Endpoint Security with VMware and Symantec
The Virtualisation Security Journey: Beyond Endpoint Security with VMware and Symantec James Edwards Product Marketing Manager Dan Watson Senior Systems Engineer Disclaimer This session may contain product
More informationThe Next Opportunity in the Data Centre
The Next Opportunity in the Data Centre Application Centric Infrastructure Soni Jiandani Senior Vice President, Cisco THE NETWORK IS THE INFORMATION BROKER FOR ALL APPLICATIONS Applications Are Changing
More informationis also based on Citrix NetScaler support for the Cisco Nexus 1110-S Virtual Services Appliance and related Cisco vpath traffic-steering technology.
Deliver the Next-Generation Intelligent Data Center with Cisco Nexus 7000 Series Switches, Citrix NetScaler Application Delivery Controller, and RISE Technology What You Will Learn The next-generation
More informationCisco SDN 解决方案 ACI 的基本概念
Cisco SDN 解决方案 ACI 的基本概念 Presented by: Shangxin Du(@shdu)-Solution Support Engineer, Cisco TAC Aug 26 th, 2015 2013 Cisco and/or its affiliates. All rights reserved. 1 Type Consumption Delivery Big data,
More informationWe re ready. Are you?
We re ready. Are you? Security Architectures and the Data Center Evolution: Physical, Virtual, and Automated Gustavo Santana Technical Solutions Architect CCIEx3# 8806 (DC, SAN, R&Sw) Agenda Security Threats
More informationApplication Centric Infrastructure
Application Centric Infrastructure Design pro řešení na zelené louce i do stávajícího DC DCA4 Miroslav Brzek, Systems Engineer Agenda Modern DC infrastructure Customer requirements What s Application Centric
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
NET1949BU Seamless Network Connectivity for Virtual and Bare-metal s with NSX Suresh Thiru Sridhar Subramanian VMworld 2017 Content: Not for publication VMworld 2017 - NET1949BU Disclaimer This presentation
More informationBuilding NFV Solutions with OpenStack and Cisco ACI
Building NFV Solutions with OpenStack and Cisco ACI Domenico Dastoli @domdastoli INSBU Technical Marketing Engineer Iftikhar Rathore - INSBU Technical Marketing Engineer Agenda Brief Introduction to Cisco
More informationSecurity for shared infrastructure in Cisco ONE Enterprise Cloud Suite BRKPCA-2040
Security for shared infrastructure in Cisco ONE Enterprise Cloud Suite Roxana Diaz TSA, CCIE BRKPCA-2040 @roxadiaz2 Agenda Introduction Cisco VACS Overview VACS Configuration Security Use-cases Customers
More informationCisco Nexus 1000V Series Switches
Data Sheet Cisco Nexus 1000V Series Switches Product Overview Cisco Nexus 1000V Series Switches provide a comprehensive and extensible architectural platform for virtual machine and cloud networking. The
More informationApplication Provisioning
Overview, page 1 Application Categories, page 1 Application Containers, page 2 Catalogs, page 7 Self-Service Provisioning, page 8 Overview After you have allocated your resources among your user groups,
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
NET1350BUR Deploying NSX on a Cisco Infrastructure Jacob Rapp jrapp@vmware.com Paul A. Mancuso pmancuso@vmware.com #VMworld #NET1350BUR Disclaimer This presentation may contain product features that are
More informationCloudBridge and Get Ready for Desktops and Apps as a Service. Henrik Poulsen
CloudBridge and Get Ready for Desktops and Apps as a Service Henrik Poulsen Mobile Workstyles Cloud Services Any Device Any Cloud #CitrixSummit Design for Any-to-Any Hybrid Architectures Corporate Datacenter
More informationSoftware Defined Networks For Service Providers. A Practical Approach
BRKSPG-3683 Software Defined Networks For Providers. A Practical Approach Michael O Gorman Chief Architect Office C97-693316-00 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
More informationCisco Virtual Application Container Services 2.0 Lab v1
Cisco Virtual Application Container Services 2.0 Lab v1 Last Updated: 02-SEP-2015 About This Solution Cisco Virtual Application Container Services (VACS) enables simplified deployment of Secure Application
More informationSDN Security BRKSEC Alok Mittal Security Business Group, Cisco
SDN Security Alok Mittal Security Business Group, Cisco Security at the Speed of the Network Automating and Accelerating Security Through SDN Countering threats is complex and difficult. Software Defined
More informationExam Name: VMware Certified Associate Network Virtualization
Vendor: VMware Exam Code: VCAN610 Exam Name: VMware Certified Associate Network Virtualization Version: DEMO QUESTION 1 What is determined when an NSX Administrator creates a Segment ID Pool? A. The range
More informationDesign Guide: Deploying NSX for vsphere with Cisco ACI as Underlay
Design Guide: Deploying NSX for vsphere with Cisco ACI as Underlay Table of Contents Executive Summary... 2 Benefits of NSX Architecture... 4 2.1 NSX Primary Use Cases... 4 2.2 Logical Layer Connectivity...
More informationHypervisors networking: best practices for interconnecting with Cisco switches
Hypervisors networking: best practices for interconnecting with Cisco switches Ramses Smeyers Customer Support Engineer Agenda What is this session about? Networking virtualization concepts Hypervisor
More informationEnterprise. Nexus 1000V. L2/L3 Fabric WAN/PE. Customer VRF. MPLS Backbone. Service Provider Data Center-1 Customer VRF WAN/PE OTV OTV.
2 CHAPTER Cisco's Disaster Recovery as a Service (DRaaS) architecture supports virtual data centers that consist of a collection of geographically-dispersed data center locations. Since data centers are
More informationSecurity and Virtualization in the Data Center. BRKSEC Cisco Systems, Inc. All rights reserved. Cisco Public
Security and Virtualization in the Data Center 1 What We ll Cover Areas of Interest Security for Data Center Layers Device Virtualization & Security Services Security Considerations for Server Virtualization
More information1V0-642.exam.30q.
1V0-642.exam.30q Number: 1V0-642 Passing Score: 800 Time Limit: 120 min 1V0-642 VMware Certified Associate 6 Network Visualization Fundamentals Exam Exam A QUESTION 1 Which is NOT a benefit of virtualized
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
SAI2803BU The Road to Micro- Segmentation with VMware NSX #VMworld #SAI2803BU Disclaimer This presentation may contain product features that are currently under development. This overview of new technology
More informationOpenFlow: What s it Good for?
OpenFlow: What s it Good for? Apricot 2016 Pete Moyer pmoyer@brocade.com Principal Solutions Architect Agenda SDN & OpenFlow Refresher How we got here SDN/OF Deployment Examples Other practical use cases
More informationBorderless Networks. Tom Schepers, Director Systems Engineering
Borderless Networks Tom Schepers, Director Systems Engineering Agenda Introducing Enterprise Network Architecture Unified Access Cloud Intelligent Network & Unified Services Enterprise Networks in Action
More informationDesign Guide for Cisco ACI with Avi Vantage
Page 1 of 23 Design Guide for Cisco ACI with Avi Vantage view online Overview Cisco ACI Cisco Application Centric Infrastructure (ACI) is a software defined networking solution offered by Cisco for data
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
LHC2103BU NSX and VMware Cloud on AWS: Deep Dive Ray Budavari, Senior Staff Technical Product Manager NSX @rbudavari #VMworld #LHC2103BU Disclaimer This presentation may contain product features that are
More informationDesigning Cisco Data Center Unified Computing
Designing Cisco Data Center Unified Computing Number: 642-998 Passing Score: 800 Time Limit: 120 min File Version: 1.1 http://www.gratisexam.com/ Sections 1. Drag and Drop 2. Questions 3. Hot Spot CISCO
More informationTitle DC Automation: It s a MARVEL!
Title DC Automation: It s a MARVEL! Name Nikos D. Anagnostatos Position Network Consultant, Network Solutions Division Classification ISO 27001: Public Data Center Evolution 2 Space Hellas - All Rights
More informationPrepAwayExam. High-efficient Exam Materials are the best high pass-rate Exam Dumps
PrepAwayExam http://www.prepawayexam.com/ High-efficient Exam Materials are the best high pass-rate Exam Dumps Exam : 300-160 Title : Designing Cisco Data Center Unified Computing Vendor : Cisco Version
More informationEnd To End Data Center Virtualization
Toronto, Canada May 30, 2013 End To End Data Center Virtualization Ronnie Scott DC Technology Solutions Architect ascott@cisco.com Follow us on Twitter at #CiscoConnect_TO 2011 2012 Cisco and/or its affiliates.
More informationCisco Designing Cisco Data Center Unified Fabric (DCUFD) v5.0. Download Full Version :
Cisco 642-996 Designing Cisco Data Center Unified Fabric (DCUFD) v5.0 Download Full Version : https://killexams.com/pass4sure/exam-detail/642-996 Answer: A QUESTION: 156 Which three functions are provided
More informationIntegration of Hypervisors and L4-7 Services into an ACI Fabric
Integration of Hypervisors and L4-7 Services into an ACI Fabric Bradley Wong Principal Engineer, INSBU Technical Marketing #clmel This session provides a technical introduction to how the ACI fabric handles
More informationCisco Designing the Cisco Cloud (CLDDES) Download Full version :
Cisco 300-465 Designing the Cisco Cloud (CLDDES) Download Full version : http://killexams.com/pass4sure/exam-detail/300-465 out from the VM. F. Operates by allocating disk storage space in a flexible manner
More informationCisco Prime Data Center Network Manager Release 7.1
Product Bulletin Cisco Prime Data Center Network Manager Release 7.1 PB733518 Cisco Prime Data Center Network Manager (DCNM) software is an advanced network management system (NMS) for storage, LAN, and
More information"Charting the Course... Designing Cisco Data Center Infrastructure (DCID) Course Summary
Course Summary Description v6.0 is a five-day instructor-led course that focuses on data center design based on Cisco solutions. The course includes theoretical content, as well as design oriented case
More informationData Center Security. Fuat KILIÇ Consulting Systems
Data Center Security Fuat KILIÇ Consulting Systems Engineer @Security Data Center Evolution WHERE ARE YOU NOW? WHERE DO YOU WANT TO BE? Traditional Data Center Virtualized Data Center (VDC) Virtualized
More informationBROCADE CLOUD-OPTIMIZED NETWORKING: THE BLUEPRINT FOR THE SOFTWARE-DEFINED NETWORK
BROCADE CLOUD-OPTIMIZED NETWORKING: THE BLUEPRINT FOR THE SOFTWARE-DEFINED NETWORK Ken Cheng VP, Service Provider and Application Delivery Products September 12, 2012 Brocade Cloud-Optimized Networking
More informationCisco VTS. Enabling the Software Defined Data Center. Jim Triestman CSE Datacenter USSP Cisco Virtual Topology System
Cisco Virtual Topology System Cisco VTS Enabling the Software Defined Data Center Jim Triestman CSE Datacenter USSP jtriestm@cisco.com VXLAN Fabric: Choice of Automation and Programmability Application
More informationXen and CloudStack. Ewan Mellor. Director, Engineering, Open-source Cloud Platforms Citrix Systems
Xen and CloudStack Ewan Mellor Director, Engineering, Open-source Cloud Platforms Citrix Systems Agenda What is CloudStack? Move to the Apache Foundation CloudStack architecture on Xen The future for CloudStack
More informationAutomation of Application Centric Infrastructure (ACI) with Cisco UCS Director
Automation of Application Centric Infrastructure (ACI) with Cisco UCS Director Raju Penmetsa @RajuPenmetsa1 Data Center Group Agenda IT Complexity Solution for ACI Automation Cisco UCS Director Application
More informationLayer 4 to Layer 7 Design
Service Graphs and Layer 4 to Layer 7 Services Integration, page 1 Firewall Service Graphs, page 5 Service Node Failover, page 10 Service Graphs with Multiple Consumers and Providers, page 12 Reusing a
More informationDisclaimer CONFIDENTIAL 2
Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitment from VMware to deliver these features in any generally
More informationDeploying the Cisco ASA 1000V
CHAPTER 2 This chapter includes the following sections: Information About the ASA 1000V Deployment, page 2-1 Downloading the ASA 1000V OVA File, page 2-7 Deploying the ASA 1000V Using the VMware vsphere
More informationTaming the Multi-Cloud With Simplicity and Openness. Minh Dang Cisco Systems Vietnam 2018 January
Taming the Multi-Cloud With Simplicity and Openness Minh Dang Cisco Systems Vietnam 2018 January Multi-Cloud Challenge Growth in Applications and Infrastructure Many Operating Env COST Data Center Many
More informationLayer 4 to Layer 7 Service Insertion, page 1
This chapter contains the following sections:, page 1 Layer 4 to Layer 7 Policy Model, page 2 About Service Graphs, page 2 About Policy-Based Redirect, page 5 Automated Service Insertion, page 12 About
More informationANALYSIS OF VIRTUAL NETWORKS IN DATA CENTERS.
ANALYSIS OF VIRTUAL NETWORKS IN DATA CENTERS. Ionka Gancheva, PhD student 45 Abstract: The article contains an analysis of virtual networks and technologies that are used at data centers nowadays. Many
More informationChapter 5. Security Components and Considerations.
Chapter 5. Security Components and Considerations. Technology Brief Virtualization and Cloud Security Virtualization concept is taking major portion in current Data Center environments in order to reduce
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
NET1192BE Multisite Networking & Security with Cross-vC NSX Josh Coulling Networking & Security Senior System Engineer #VMworld #NET1192BE Disclaimer This presentation may contain product features that
More informationCisco Data Center Network Manager 5.1
Cisco Data Center Network Manager 5.1 Product Overview Modern data centers are becoming increasingly large and complex. New technology architectures such as cloud computing and virtualization are adding
More informationArchitecting Scalable Clouds using VXLAN and Nexus 1000V
Architecting Scalable Clouds using VXLAN and Nexus 1000V Lawrence Kreeger Principal Engineer Agenda Session Is Broken Into 3 Main Parts Part 1: VXLAN Overview What is a VXLAN? Why VXLANs? What is VMware
More informationEthernet Fabrics- the logical step to Software Defined Networking (SDN) Frank Koelmel, Brocade
Ethernet Fabrics- the logical step to Software Defined Networking (SDN) Frank Koelmel, Brocade fkoelmel@broc 10/28/2013 2 2012 Brocade Communications Systems, Inc. Proprietary Information ETHERNET FABRICS
More informationCisco Unified Data Center Strategy
Cisco Unified Data Center Strategy How can IT enable new business? Holger Müller Technical Solutions Architect, Cisco September 2014 My business is rapidly changing and I need the IT and new technologies
More informationCisco Virtual Security Gateway, Rel. 4.2(1)VSG1(3.1) and Cisco Virtual Network Management Center, Rel. 1.3 Installation and Upgrade Guide
Cisco Virtual Security Gateway, Rel. 4.2(1)VSG1(3.1) and Cisco Virtual Network Management Center, Rel. 1.3 Installation and Upgrade Guide February 16, 2012 Americas Headquarters Cisco Systems, Inc. 170
More informationCisco Enterprise Cloud Suite Overview Cisco and/or its affiliates. All rights reserved.
Cisco Enterprise Cloud Suite Overview 2015 Cisco and/or its affiliates. All rights reserved. 1 CECS Components End User Service Catalog SERVICE PORTAL Orchestration and Management UCS Director Application
More informationCisco Application Centric Infrastructure (ACI) Simulator
Data Sheet Cisco Application Centric Infrastructure (ACI) Simulator Cisco Application Centric Infrastructure Overview Cisco Application Centric Infrastructure (ACI) is an innovative architecture that radically
More information