Get Your Datacenter SDN Ready Ahmad Chehime Cisco ACI Strategic Product Sales Specialist SPSS Emerging Region
AGENDA Data Center Trends, Priorities, Concerns What Problems Are we Trying to Solve? Cisco ACI Framework Overview Key Take Away From Today Tips to Prepare for SDN Remember This when Thinking about SDN
3
CIO S ARE UNDER PRESSURE - APPLICATION EXPLOSION Recent IDG Research Data: Global Enterprises, on an average Are planning on adding 46 New Applications in 2013/2014 41% of total IT budget is consumed by apps Priorities are to New Apps, Business Process Changes 4
WORKLOADS DRIVING SERVER PORT BANDWIDTH 10GE LAN ON MOTHERBOARD, VM DENSITY, BIG DATA New Server Platforms Enabling Higher I/0 Throughput Virtual Machine Density Driving I/0 Performance Big Data Increasing East West Traffic VM VM VM VM VM VM HYPERVISOR 10G LOM/FlexLoM Shipping *4 Up to 12 Cores per Socket *2 Avg. 11 VMs/ Linux Server *1 DATA CENTER IP TRAFFIC GROWTH 25% CAGR (2012-2017) *3 FASTER SERVER REFRESH CYCLE ~ 3 YRS 3 YEARS 5 YEARS FASTER NETWORK REFRESH CYCLE ~ 5 YRS *1 IDC Worldwide Virtual Machine 2013-2017 Forecast *3 Cisco Global Cloud Index: Forecast (2012-2017) 5
EVOLUTION OF APPLICATION COMPLEXITY From Client-server to N-Tier Architecture Complexity App architect concerns 6
NETWORKS = PROBLEMS?? Data Center Networks are in my way James Hamilton Vice President and Distinguished Engineer Amazon Web Services Team October 2010 http://mvdirona.com/jrh/talksandpapers/jameshamilton_poa20101026_external.pdf 7
APPLICATION TRENDS IN DATA CENTER DYNAMIC WORKLOADS Dynamic Instantiation/Removal Decommission Instantiate Migrate existing new VM
APPLICATION TRENDS IN DATA CENTER DYNAMIC WORKLOADS HETERGENEOUS IMPLEMENTATION Dynamic Instantiation/Removal Physical & Virtual Applications on both physical & virtual The adoption rate of server virtualization will reach 21.3% of total servers in 2016. GARTNER
APPLICATION TRENDS IN DATA CENTER DYNAMIC WORKLOADS HETERGENEOUS IMPLEMENTATION DISTRIBUTED DEPLOYMENTS Dynamic Instantiation/Removal Physical & Virtual On-Demand Scaling New Applications, Devices & Users
APPLICATION TRENDS IN DATA CENTER DYNAMIC WORKLOADS HETERGENEOUS IMPLEMENTATION Dynamic Instantiation/Removal Physical & Virtual oversubscribe d underutilized Dynamically Shared Resource Pools Silioed Resources DISTRIBUTED DEPLOYMENTS On-Demand Scaling INFRASTRUCTURE INDEPENDENT Transparent to Underlying Network optimized Shared Resource Pools
Organizations Started Asking... Should I Consider SDN? 12
BUT WHAT IS SDN? A way to reduce the CAPEX of my network and leverage commodity switches Software-Defined Networking A solution to automated network configuration and control A solution to get a global view of the network topology and state Ability to Program The Network A way to scale my firewalls and load balancers Management Simplification A way to configure my entire network as a whole rather than individual devices An Umbrella Marketing name for Vendors to sell More Products It is ALL of the Above Except 13
The reality was that the SDN market became confusing for our customers 14
The Most Common Question we Get in EBC from our Customers is. What is SDN? It Depends on who you ask! 15
Numerous technologies in the market were associated with the SDN moniker Overlays 16
17
We have physical connections between servers and network devices That is real cables and plugs you can touch!! 18
And then we add our overlay 19
20
21
Numerous technologies in the market were associated with the SDN moniker Overlays ASIC s SDK s Openflow Controllers NFV Orchestration and more 22
and it begged the question?? 23
What problem is the industry really trying to solve? 24
We Listened to our Customers and this is what we Realized 25
TRADITIONAL NETWORKS TOO COMPLEX Router FW Router LB Switch vfw Server Service insertion in traditional networks Configure Network to insert firewall Configure firewall network parameters Configure firewall rules as required by the application Configure load balancer network parameters Configure router to steer traffic to/from load balancer Configure load balancer as required by the application Service insertion takes days Network configuration is time consuming and error prone Difficult to track configuration on services 26
DC NETWORK CHALLENGES AND CONCERNS TODAY Business Agility Faster Deployment of new Application Rolling out applications and its required services any where (Cookie Cutter Solution) Faster ROI and Faster than my Competition Lower TCO Both CAPEX and OPEX Simplification Network Deployment with Minimum Intervention Automation, Automation and Automation of Applications and it s Network Requirements Configure and Control Entire Network with Consistent Network Policy Seemless and Location Independent Layer 4-7 Service Insertion Network Policy moves with workloads and must Extend beyond my DC Operational Excellence Improve Operational Efficiency Understand Bottle Necks that could affect Application Performance Identify, Isolate, and Eliminate trouble spots Proactive Response Lack of VM visibility, accountability, and consistency Roles and Responsibilities in the New Virtualization World Muddled ownership as server admin must configure virtual network Must ensure Right Policy is enforced by the Network and Security Admins Proper Segmentation 27
BUILDING DATA CENTERS - NOT BUSINESS OUTCOME 28
The Cisco ACI Framework has been fine tuned to solve those problems 29
Cisco Vision & Direction The Network has always been FAIR No longer We are delivering a new network that does what is RIGHT for the Application. A BETTER network. - Tom Edsall, CTO Insieme Business Unit, Cisco PSOSEC-2999 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public 30
CISCO ACI FRAMEWORK APPLICATION CENTRIC INFRASTRUCTURE
THE NETWORK MUST EVOLVE AS WELL APP-CENTRICITY FOR ACCESS CONTROL WEB APP DB CLEAR, SIMPLE DESCRIPTION OF HOW TIERS ARE ALLOWED TO COMMUNICAT E 32
THE NETWORK MUST EVOLVE AS WELL APP-CENTRICITY FOR SERVICE DEPLOYMENT F/W ADC WEB ADC APP DB ANY SERVICE CAN BE ADDED BETWEEN TIERS 33
POLICY-BASED DC INFRASTRUCTURE COMMON POLICY FRAMEWORK F/W ADC WEB ADC APP DB CONNECTIVITY POLICY SECURITY POLICIES QOS BANDWIDTH RESERVATION AVAILABILITY APPLICATION L4-L7 SERVICES STORAGE AND COMPUTE 34
POLICY-BASED NETWORKS YOU DEFINED WHAT IS REQUIRED FROM THE NETWORK FOR THIS APPLICATI ON ALL PARTIES AGREED NOW AUTOMATE THE RENDERING OF THE POLICY ON TO THE NETWORK 35
REAL-WORLD APPLICATION LOGICAL PROFILE - EXAMPLE Contract Contract Contract INTRANET FINANCE WEB SINGLE SIGN-ON Active Directory Contract Contract EXTRANET EXPENSES Database Contract Contract Time & Labor Users Groups Application Related Shared Resources 36
POLICY-BASED NETWORKS YOU DEFINED WHAT IS REQUIRED FROM THE NETWORK FOR THIS APPLICATI ON ALL PARTIES AGREED NOW AUTOMATE THE RENDERING OF THE POLICY ON TO THE NETWORK 37
AGILITY: ANY APPLICATION, ANYWHERE PHYSICAL AND VIRTUAL COMMON APPLICATION NETWORK PROFILE F/W ADC WEB ADC APP DB CONNECTIVITY POLICY Extensible Scripting Model SLA QoS APIC SECURITY POLICIES Security Load Balancing APPLICATION NETWORK PROFILE QOS BANDWIDTH RESERVATION AVAILABILITY APPLICATION L4-L7 SERVICES STORAGE AND COMPUTE HYPERVISOR HYPERVISOR HYPERVISOR 38
APP-CENTRICITY FOR TROUBLESHOOTING AND MONITORING HEALTH SCORE 82% The Network Knows the App Structure and Components Easy Traditional to Follow Apps 3-Tier the DC Around Application Visibility into the Health of the Infrastructure for the App APPLICATION NETWORK PROFILE LATENCY 10 Microsecond(s) DROP COUNT 25 Packets Dropped VISIBILITY APPLICATION NETWORK PROFILE APPLICATION NETWORK PROFILE VMs Servers Ports Switches Services Faults APPLICATION NETWORK PROFILE 39
DEPLOYING APPLICATIONS - THE ACI BENEFIT Invest Time here: Define the Application Communication Policies Define the application communication flow using the new language in the policy model. All IT teams have a role. Network Teams Security Teams Operations Teams Virtualization Teams DEV/App Teams Cloud Teams Storage Teams Spend NO time here: Automatically deploy the policy, fast and consistent, with full visibility. Provision the policy in the Fabric (fully automatic) For virtual & Physical workloads including Network Services 40
Those are the Founding Principles of Cisco s DC SDN strategy Cisco ACI Application Centric Infrastructure 41
YOU WANT TO LEARN MORE DETAILS? Anver Vanker ACI Technical Solution Architect EMEAR Emerging Application Centric Infrastructure Tomorrow @ 11 am 42
KEY TAKE AWAY FROM TODAY
Cisco ACI Train PSOSEC-2999 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public 44
Cisco ACI Train Vision & Destination Data centers and cloud network infrastructures, both physical and virtual, will no longer be configured, will not be software defined (or programmed), but instead will be Policy Driven and Application Centric. PSOSEC-2999 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public 45
DC NETWORK CHALLENGES AND CONCERNS TODAY Business Agility Faster Deployment of new Application Rolling out applications and its required services any where (Cookie Cutter Solution) Faster ROI and Faster than my Competition Lower TCO Both CAPEX and OPEX Policy-Based Network with Application Network Profile Seamless Mobility - Consistently deploy any application any where on the physical or virtual network. 46
DC NETWORK CHALLENGES AND CONCERNS TODAY Simplification Network Deployment with Minimum Intervention Automation, Automation and Automation of Applications and it s Network Requirements Configure and Control Entire Network with Consistent Network Policy Seemless and Location Independent Layer 4-7 Service Insertion Network Policy moves with workloads and must Extend beyond my DC Operational Simplicity a common policy and operation framework Improved Reliability Network and Application Uptime separation from controller uptime End-to-End Automation - Fully automate all functions (Network, Compute, Storage, Virtualization) required to deploy applications APIC Comprehensive Security - Secure multi-tenancy with policy based forwarding, auditing, forensics across both physical and virtual devices 47
DC NETWORK CHALLENGES AND CONCERNS TODAY Operational Excellence Improve Operational Efficiency Understand Bottle Necks that could affect Application Performance Identify, Isolate, and Eliminate trouble spots Proactive Response Lack of VM visibility, accountability, and consistency 48
TIPS TO PREPARE FOR SDN
TIPS TO PREPARE FOR SDN By Jim Duffy Educate Your Self on it Today is a Start What it s Comprised of, and how you might benefit from it Know what you want to Do What are the key pain points for you? What do you want SDN to do for you? Consider Security Implication What is the security Model of the Various SDN Solutions Think About where to start Data Center is where it started, but Enterprise WAN is becoming prime focus for SDN Weigh How to Start Green Field is Ideal, otherwise, start in a small Island or in test and development networks Evaluate Different Vendor Offerings Take into account each vendor s approach with what you are trying to accomplish Eco-System Determine The functionality you need from an SDN Controller How it supports eco-system, openness vs. vendor proprietary, Learn from Experiences and Best Practices of your Peers Many Organizations has been doing SDN before the technology was called that 50
REMEMBER THIS WHEN THINKING ABOUT SDN
Applications Northbound API Controller SDN MAIN COMPONENTS Southbound API Network Devices 52
Buckle Up...A New Journey Has Just Begun!