Mobile-First. Campus Switching. Introducing Aruba Aruba Inspiration Day. Dennis Ladefoged - Systems Engineer

Similar documents
Introduction to Aruba Dik van Oeveren Aruba Consulting System Engineer

Aruba Campus Switching

SOLUTION OVERVIEW THE ARUBA MOBILE FIRST ARCHITECTURE

NX 9500 INTEGRATED SERVICES PLATFORM SERIES FOR THE PRIVATE CLOUD

ExtremeWireless WiNG NX 9500

Aruba ridefinisce il futuro del Mobile, Cloud e IoT

MS425 SERIES. 40G fiber aggregation switches designed for large enterprise and campus networks. Datasheet MS425 Series

Cisco Data Center Network Manager 5.1

IBM Ethernet Switch J08E and IBM Ethernet Switch J16E

Title DC Automation: It s a MARVEL!

IMC as a Trojan Horse and Roadmap update

Cisco Meraki MS400 Series Cloud-Managed Aggregation Switches

Technologies for the future of Network Insight and Automation

Transformation through Innovation

Arista 7160 series: Q&A

OmniSwitch 6850E Stackable LAN Switch

Overview. Information About High Availability. Send document comments to CHAPTER

45 10.C. 1 The switch should have The switch should have G SFP+ Ports from Day1, populated with all

ARUBA AIRWAVE. Visibility and management for multi-vendor access networks DATA SHEET REAL-TIME MONITORING AND VISIBILITY

Cisco Virtual Networking Solution for OpenStack

Features > 10/100/1000 Mbps Gigabit Ethernet Ports

Cisco SP Wi-Fi Solution Support, Optimize, Assurance, and Operate Services

CISCO CATALYST 4500-X SERIES FIXED 10 GIGABIT ETHERNET AGGREGATION SWITCH DATA SHEET

DPX19000 Next Generation Cloud-Ready Service Core Platform

OmniSwitch 6900 Overview 1 COPYRIGHT 2011 ALCATEL-LUCENT ENTERPRISE. ALL RIGHTS RESERVED.

Pass-Through Technology

BEST PRACTICE - NAC AUF ARUBA SWITCHES. Rollenbasierte Konzepte mit Aruba OS Switches in Verbindung mit ClearPass Vorstellung Mobile First Features

Borderless Networks. Tom Schepers, Director Systems Engineering

BROCADE CAMPUS. Bill Ryan. August 23, Brocade Communications Systems, Inc. Proprietary Information

Request for Proposal (RFP) for Supply and Implementation of Firewall for Internet Access (RFP Ref )

ARUBA AIRWAVE. Management and monitoring for multi-vendor campus networks DATA SHEET CONNECTIVITY ANALYTICS REAL-TIME MONITORING AND VISIBILITY RAPIDS

Cisco Prime for Enterprise Innovative Network Management

vcenter Operations Management Pack for NSX-vSphere

EX2200 & EX2300 Sales Guide. March 2017

Cisco ME 6524 Ethernet Switch

Chapter 10: Review and Preparation for Troubleshooting Complex Enterprise Networks

Agile Data Center Solutions for the Enterprise

The Aruba S3500 Mobility Access Switch

The Routing Solution for the Digital Era 2016 BROCADE COMMUNICATIONS SYSTEMS, INC.

Intelligent Edge Protection

Introducing Avaya SDN Fx with FatPipe Networks Next Generation SD-WAN

Cisco 4000 Series Integrated Services Routers: Architecture for Branch-Office Agility

For Ethernet and IP/MPLS networks

Lenovo ThinkSystem NE Release Notes. For Lenovo Cloud Network Operating System 10.6

For Ethernet and IP/MPLS networks

Migration Guide from Cisco Catalyst 3850 Series to 9300 Series

Enterasys K-Series. Benefits. Product Overview. There is nothing more important than our customers. DATASHEET. Operational Efficiency.

Network Virtualization. Duane de Witt

Cisco Nexus 9200 Switch Datasheet

THE NETWORK. INTUITIVE. Powered by intent, informed by context. Rajinder Singh Product Sales Specialist - ASEAN August 2017

Ruckus ZoneDirector 3450 WLAN Controller (up to 500 ZoneFlex Access Points)

TG-NET S5500 series switches are the next-generation enhanced IPv6 Layer 3 Core Switches. They adopt modular design, support up to four 10GB ports,

DPX17000 Deep Service Core Switch

vrealize Operations Management Pack for NSX for vsphere 2.0

Pasiruoškite ateičiai: modernus duomenų centras. Laurynas Dovydaitis Microsoft Azure MVP

Hochverfügbarkeit in Campusnetzen

SwitchX Virtual Protocol Interconnect (VPI) Switch Architecture

Juniper Virtual Chassis Technology: A Short Tutorial

Future-Ready Networking for the Data Center. Dell EMC Forum

Technical Document. What You Need to Know About Ethernet Audio

MS225 SERIES. Stackable access switches with 10G SFP+ uplinks, designed for the branch and campus. Datasheet MS225 Series Switches

CISCO EXAM QUESTIONS & ANSWERS

Software-Defined Networking (SDN) Overview

Next Generation Computing Architectures for Cloud Scale Applications

Switching for Intent-Based Networking-Campus, Branch, and Data Center

Cisco Nexus 7000 Switches Second-Generation Supervisor Modules Data Sheet

Politecnico di Torino Network architecture and management. Outline 11/01/2016. Marcello Maggiora, Antonio Lantieri, Marco Ricca

Cisco Nexus 9500 R-Series

SteelConnect. The Future of Networking is here. It s Application- Defined for the Cloud Era. SD-WAN Cloud Networks Branch LAN/WLAN

MS355 SERIES. Multi-Gigabit access switches with 40G uplinks, designed for high performance enterprise and campus networks

Intelligent WAN: Leveraging the Internet Secure WAN Transport and Internet Access

Virtualized Network Services SDN solution for enterprises

Meraki MS Series Switches

Data Sheet. Monitoring Automation for Web-Scale Networks MONITORING AUTOMATION FOR WEB-SCALE NETWORKS -

SOLUTION BRIEF NETWORK OPERATIONS AND ANALYTICS. How Can I Predict Network Behavior to Provide for an Exceptional Customer Experience?

Huawei Agile Controller. Agile Controller 1

Catalyst update & Local Manufactory. João Castanho, System Engineer Comstor

Deep Dive QFX5100 & Virtual Chassis Fabric Washid Lootfun Sr. System Engineer

Pluribus Adaptive Cloud Fabric

PSGS-2610F L2+ Managed GbE PoE Switch

Huawei Technologies engaged Miercom to conduct an evaluation

BROCADE CLOUD-OPTIMIZED NETWORKING: THE BLUEPRINT FOR THE SOFTWARE-DEFINED NETWORK

THE RTOS AS THE ENGINE POWERING THE INTERNET OF THINGS

Cisco Nexus 7000 Switches Supervisor Module

Lenovo ThinkSystem NE1032/NE1032T/NE1072T. Release Notes. For Lenovo Cloud Network Operating System 10.6

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

vrealize Operations Management Pack for NSX for vsphere 3.0

Virtualized Network Services SDN solution for service providers

ISG-600 Cloud Gateway

Ciprian Stroe Senior Presales Consultant, CCIE# Cisco and/or its affiliates. All rights reserved.

HPE FlexNetwork 5510 HI Switch Series FAQ

Free4Dump. Free demo and valid vce dump for certification exam prep

Cisco.Network.Intuitive FastLane IT Forum. Andreas Korn Systems Engineer

Never Drop a Call With TecInfo SIP Proxy White Paper

Meraki MS Series Switches

Cisco Tetration Analytics

Networking Solutions for Mobile Era. Amit Sanyal Director, Product Management

The Virtual Machine Aware SAN

BROCADE ICX 6610 SWITCHES FREQUENTLY ASKED QUESTIONS

for Multi-Services Gateways

Transcription:

Mobile-First Campus Switching Introducing Aruba 8400 @Arrow Aruba Inspiration Day Dennis Ladefoged - Systems Engineer

MODERN DESIGN PHILOSOPHY: ARUBA S HERITAGE AND VISION BORN IN THE MOBILE-CLOUD AND IOT ERA SOFTWARE-DEFINED, API-FIRST OPEN, MULTI-VENDOR SECURITY DRIVEN 2

What customers need in a Mobile-First Network Policy: unified and multi-vendor Manageability: end-to-end and multi-vendor Wireless: best-in-breed Wired: optimized for wireless and IoT aggregation Network analytics for IT, user analytics for Lineof-Business End-to-end compelling TCO 3

AUTOMATED AND INTELLIGENT NETWORKING FULLY INTEGRATED ARCHITECTURE Faster detection, diagnosis, and resolution Easy automation, control, integration Unmatched network assurance Policy Management User and Entity Behavioral Analytics Access Cloud Networking Immediate visibility into what s happening Network Management Location Analytics Core Network Controls Aruba 8400 Location- Based Services 4

OLD INFRASTRUCTURE WON T CUT IT PROPRIETARY INFLEXIBLE MONOLITHIC HARD-CODED MANUAL 5

NG Core Requirements: Operational Simplicity New Differentiator Automation Analytics and Visibility Assurance Programmability Seamless Service Deployment Differentiators Table Stakes Security: Infrastructure, Communication and Application Security Full Protocol Support L2/L3/Multicast etc.. High Availability Virtualization - VSF Sizing speeds/feeds /table sizes Price/ Performance 6

Introducing Aruba 8400, ArubaOS-CX, and Network Analytics Engine Aruba 8400 Optimized form factor & cost, carrier class availability, 10/25/40/100 GbE ArubaOS-CX NG Core Switch OS fully programmable w/ best-of-breed architecture & components Network Analytics Engine Native analytics & visibility to automate troubleshooting and streamline operations 7

Aruba 8400 Hardware Architecture High performance 19.2Tbps switching w/ up to 1.2Tbps per slot High speed connection 32-port 10GbE w/ MACsec 8-port 40GbE module 6-port 40/100G module Convenient bundles simplify ordering Dual redundant management modules for hitless failover OOBM, console management ports Status LEDs for fans, power supplies and modules Redundant Power supplies N+N for hot swappable, redundant power supplies Energy efficient 80 Plus Gold certification Compact 8 slot chassis (8U) 8

Introducing Aruba 8400: Campus Aggregation & Core 8 RU x 66cm Depth 108 Kg populated 8 Line Card Slots 3 Fabric Card Slots 2 Management Slots 4 Power Supplies 18 Fan Modules 1.2 Tb/s Ingress + Egress Forwarding per Slot 1.8 Tb/s Fabric Interface In + Out 21.6 Tb/s, virtual output queueing Dynamic Load Balanced Fabric 99.999% Available, Redundant Passive Chassis 9

Front Components Power supplies Line cards Management modules Line cards Front display card 10

Orthogonal Connections 11

Rear Components Power inlets Rear display card Fabric modules Fan trays Fan modules 12

Architecture benefits Distributed architecture Crossbar vs CLOS The CLOS fabric can dynamically load-balance internal traffic over many paths, helping the switch support 40G/100G. CLOS scheme removes the arbiter as the sole element for scheduling all traffic through the fabric, making the system much more scalable. The 8400 is designed around distributed traffic architecture, which means that none of the traffic is passing through the management cards Using distributed architecture prevents the risk of data loss or catastrophic failure in case of a management card failure. Centralized Distributed 13

CLOS Fabric Architecture (Aruba 8400) 14

ArubaOS-CX - Software architecture Programmable Open APIs for programmability using REST and Python Extensible Built for micro-services and integration with other workflow systems & services ArubaOS-CX OVSDB (Time Series DB) Secure Complete device, network, application security, and trusted Infrastructure Innovative Highly available and fault tolerant, including rollback. Built in visibility and analytics. 15

Applications Applications Applications ArubaOS-CX Meets the Challenge with Innovation Insights LXC Container APIs Simple UI Programmability Aruba Network Analytics Engine Manageability Usability Time-series database: Built-in network record Performance ArubaOS-CX 16

ArubaOS-CX overview Active Standby Current State Database Current State Database History Database Monitoring Policies Management Interfaces Chassis Management Chassis Management Protocols ASIC Sync Kernel sync Protocols ASIC Sync Kernel sync Virtual L2/3 Interfaces ASIC Driver Routing, ARP tables Drivers Virtual L2/3 Interfaces ASIC Driver Routing, ARP tables Drivers Kernel Kernel Legend Line/Fabric Line Cards card ASIC Control HW Fully Active Data Control Mostly Dormant State Sync State caching 17

Current State Database Active Current State Database The entire current state of the system is in the DB Configuration Current status of all features Statistics Agents of the system do not interact with each other outside of the DB. Benefits High modularity easy to extend and maintain Full visibility everything is in one place Full programmability everything is modeled Resiliency agent that fails resyncs from the DB High availability easy to sync to standby MM 18

High Availability Active Standby Current State Database Current State Database Almost all logic runs on Active Active agents don t know that standby exists Current state database synchronizes continuously to standby Standby is mostly syncing current state database Kernel tables are synced to speed up failover Kernel sync Kernel Routing, ARP tables 19

Full Programmability Active Management Intetrfaces Current State Database Supported Protocols HTTP REST API WebSockets based notifications Future Support Device originated Websocket for both configuration and notifications Benefits Everything is programmable no catchup game Appropriate for cloud management, local management systems, automation and scripting 20

Full Visibility and Monitoring Active History Database Management Interfaces Current State Database Monitoring Policies Everything is in the database and exposed History can be maintained for any piece of data in the system Customer can write simple Python scripts to monitor any aspect of the system, alert and correct Alert if some BGP neighbor disconnects more than 2 times in 10 minutes Notify my inventory system if bandwidth tops 90% on any interface for more than 15 minutes per day Kernel External analytics can be implemented Full state of the network can be accumulated for later analysis Tell me what was the state of BGP on switch1 when switch2 complained about high traffic load 21

22

Network Analytics Engine

Root Cause Analytics Problem Intelligent monitoring Automated diagnostics and data collection Rapidly drill-down to root cause Root Cause 24

Monitoring & Troubleshooting Made Easy Complement to AirWave Complete REST API for integration Policies can generate Syslog messages for legacy AirWave and 3 rd party tools Web UI Web UI & REST API Auto-generated for each policy script Intelligence and Automation Full power of Python Parameters for customization Variables for persistent policy state Switch REST API Low system overhead and sandbox isolation Condition Trigger Language Flexible Actions Alert level CLI command execution CLI command output capture Configuration checkpoint diff capture Syslog generation Script function callback Policy scripts Built-in ASE Custom Monitoring Policy Engine Configuration and State Time Series Data Wide Monitoring Capabilities Configuration Protocol and System State ASIC Counters ACL s Scripts upload, readable, can be customized Time series data recording capability Simple: Programmability for Network Operations Driving Predictability 25

Aruba Network Analytics Engine, AI for Networking ArubaOS-CX OVSDB (TimeSeries DB) User Community Python-based Agents Automate Baseline Monitor HPE Aruba Community Act Condition Connections Agents User Interface (UX) Mobile First Infrastructure Network Analytics Engine Solution 26

Network Analytics Engine Accessibility Easy to Access Aruba Solution Exchange hub for policies Links to useful resources, tutorials and help Monitoring Policies pre-loaded on 8400 Easy to Use Users can modify existing Monitor Policy scripts. Switch GUI to upload scripts and activate policies; pre-loaded & pre-activated. REST interface to also manage scripts and policies Ramping Up Submit requests for scripts like feature requests in the ramp up period. Training tools 27

28

Modern Network for Digital Business Sensors Integrated w/other sensors for maximum intelligence Assurance Network and application assurance w/ rules based monitoring and correlation with network changes Robust Platform High performance carrier class system Insights & Visibility Real time visibility. Historic visibility with time series database Services Delivery & Integration w/systems Automated connectivity with other management, security and workflow systems Automation based on Policy Powerful, yet simple tools to automate all network operator functions Built for the Network Operator with Evolving Autonomy 29

Bringing it All Together

Access Aggregation Core Aruba Campus Switch Portfolio Aruba 8400 Aruba 3810 Aruba 5400R Aruba 2930F Aruba 2930M Aruba 2540 Aruba 2530 31

New IEEE 802.3bz standard for Multi-gigabit Ethernet Continued leadership in multi-gigabit Ethernet May 2015: first to introduce multi-gigabit Ethernet technology with HPE Smart Rate ports Supports standard IEEE 802.3bz on HPE Smart Rate ports with update to ArubaOS-Switch 16.04 Flexibility Connect with any standard 1G and 10G ports Connect at 2.5G and 5G with NBASE-T or IEEE 802.3bz devices Investment protection Use existing CAT 5E cable Interoperable with HPE Smart Rate on switches before 16.04 32

Stacking: Virtual Switching Framework (VSF) 5400R with VSF Simplify network operations Scalable performance Increases resiliency Available on Aruba 5400R and 2930F Aruba 5400R Up to 2 members Chain topology Aruba 2930F Up to 4 members Chain and Ring topologies 33

Tunnel Node for enhanced security and unified policy enforcement Centralized role-based policy enforcement for wired and wireless Enhanced security with traffic separated by tunnels Trust QoS Use Aruba controller s security features such as Firewall, packet inspection and finger printing 34

Per User Tunneled Node Secured and flexible control of access layer Use Aruba ClearPass authentication and switch s User Role to tunnel selective user/device to the Aruba Controllers Policies (e.g. QoS, ACL, VLAN, rate-limit) can be enforced at Tunneled Node ports Access to Controller s applications Users can access Controller s applications such as stateful firewall and Aruba AppRF Higher availability and scalability Load balance to multiple controllers for high scalability Stateful failover to standby management module for high availability Sticky controller: avoid bouncing tunneled sessions between different controllers Available on the Aruba 5400R with v3, 3810, 2930F, 2930M Aruba AP Tunnels 2930M 3810 Aruba Controllers 5400R 35

Downloadable User Roles Single point of policy management Dynamically assigned by ClearPass at the time of authentication 1. Wired or wireless user provides credentials 2. CPPM returns Role & Policy Builds on top of the existing local User Roles Every user/device is assigned a User Role User Role policies include QoS, VLAN, ACL, Rate Limits BYOD AP Mobility Controller ClearPass Policy Manager (CPPM) Consistent wired/wireless policy management Same as WLAN AP, simplify policy configuration and management PC/Laptop ArubaOS-Switch 3. Role & Policy push to the Mobility Controller or Aruba Switches 36

Any CLI in REST API CLI commands (configuration, show, and action)* can be used in REST API Familiar ArubaOS-Switch CLI syntax Enable REST support for more software features Support in current Aruba switches 5400R, 3810, 3800, 2920, 2930F/M, 2540, 2530 Examples POST /cli {"cmd": "aruba-vpn default-gateway enable"} POST /cli {"cmd":"vlan 20"} POST /cli {"cmd": "show run"} REST API switch CLI REST API client 37

Protect your network with Control Plane Policing Limit traffic going to switch CPU Control and protocol traffic such as MSTP, unicast and multicast control packet Prevent overloading of CPU, protect against Denial-of-Service attack Misconfiguration Problems in the network User configurable rate limit Rate Limit 38

Tak for jeres tid dennis.ladefoged@hpe.com @DennisLadefoged

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback