Programmability of Cisco DC Infrastructure

Agenda Cisco ONE onepk Introduction UCS Programming Demo

Evolution of the Intelligent Network Preserve What s Working Evolve for Emerging Requirements Resiliency Scale and Security Rich feature-set + Operational Simplicity Programmability Application aware Evolve the Network for the Next Wave of Application Requirements 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 3

Implementing Customer Use Cases Approach 1 Approach 2 Approach 3 Apps Apps Apps APIs Controller Virtual Overlays Other Agents Physical and Virtual Network OpenFlow Device Device w/ OpenFlow Device Network Tightly-coupled HW & SW Loosely-coupled HW & SW Logical/overlay Networks Cisco Approach: Flexibility to Choose The Power of AND 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 4

Announcing : Cisco Open Network Environment Industry s Most Comprehensive Networking Portfolio Hardware + Software Physical + Virtual Network + Compute Applications Platform APIs Network a Virtual Overlays onepk Controllers and Agents SDN: Controller SW OpenFlow on C3K N1KV Enhancements for Open Clouds www.cisco.com/go/one 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 5

Evolving How We Interact With The Network Operating System CLI IOS SNMP HTML Monitoring XML Policy AAA Interface CDP Syslog Netflow Routing Protocols Span Discov ery Routing Data Plane Actions Events App EEM (TCL)

Anything you can think of Evolving How We Interact With The Network Operating System Traditional Approach New Paradigm CLI IOS SNMP HTML Monitoring XML AAA CDP Syslog Netflow Routing Protocols Span Policy Interface Discov ery Routing Data Plane Actions Events App EEM (TCL) App C Java

Introducing One Platform Kit - onepk Applications That YOU Create onepk Any Cisco Router or Switch Flexible development environment to: Innovate Extend Automate Customize Enhance Modify

onepk Architecture C, JAVA Program onepk API Presentation onepk API Infrastructure IOS / XE (Catalyst, ISR, ASR1K) NXOS (Nexus Platforms) IOS XR (ASR 9K, CRS)

Blade External Server onepk Application Hosting Options Process Hosting Blade Hosting End-Point Hosting Network OS Network OS Network OS Container onepk Apps Container onepk Apps onepk Apps Write Once, Run Anywhere 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 10

onepk APIs are Grouped in Service Sets Base Service Set Description Data Path Policy Routing Element Discovery Utility Developer Provides packet delivery service to application: Copy, Punt, Inject Provides filtering (NBAR, ACL), classification (Class-maps, Policy-maps), actions (Marking, Policing, Queuing, Copy, Punt) and applying policies to interfaces on network elements Read RIB routes, add/remove routes, receive RIB notifications Get element properties, CPU/memory statistics, network interfaces, element and interface events L3 topology and local service discovery Syslog events notification, Path tracing capabilities (ingress/egress and interface stats, next-hop info, etc.) Debug capability, CLI extension which allows application to extend/integrate application s CLIs with network element

Element Getting Properties and Statistics System Interfaces Discovery CPU, Memory, Platform, Serial #, Versions, Routing Uptime, Location, OIR, CLI Changes Port, Slot, BW, MTU, TX/RX, BPS, PPS, QoS Errors, Other Stats, Config, Link Changes CDP, Topology Graph, Edges, Nodes, Security Topology Changes Application 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 12

Element Setting Properties and Statistics System Interfaces Discovery Location IP address, MTU, Clear Stats, Shut/No Shut Filters Application 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 13

Example: Simplified Management Problem: Misconfigurations cause network outages, degrade performance, impact SLAs. Value proposition: Get, set, and detect configuration changes via cross-platform API 1. Network begins with mismatched parameters on either side of link (e.g. MTU) 2. Application checks parameters on either side and identifies mismatches (red lines) 3. Application sets parameters to match (lines turn green) 4. Application registers for events related to parameters change. 5. Users logs into console and manually changes parameter. Topology indicates change. 3 5 2 4 NX3K CRS 9K 1K ISR 1 MTU 1500 MTU 1518 MTU 1518 MTU 1600 MTU 1600 MTU 1500 MTU 1500 MTU 1000 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 14

Example: Custom Encryption Problem: Customers want custom encryption on specific traffic types Value proposition: Punt traffic of interest, encrypt, and re-inject. 1. Policy APIs on ingress router are set to punt telnet and syslog to app 2. App encrypts punted traffic and re-injects into data path. 3. Policy APIs on egress router punt telnet and syslog to app 4. App decrypts punted traffic and re-injects into data path. 5. Traffic that does not match policy passes through unencrypted. Unsecure Network onepk application onepk application 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 15

Example: Custom Encryption Problem: Customers want custom encryption on specific traffic types Value proposition: Punt traffic of interest, encrypt, and re-inject. 1. Policy APIs on ingress router are set to punt telnet and syslog to app 2. App encrypts punted traffic and re-injects into data path. 3. Policy APIs on egress router punt telnet and syslog to app 4. App decrypts punted traffic and re-injects into data path. 5. Traffic that does not match policy passes through unencrypted. telnet telnet 1 encrypt 2 Unsecure Network 3 encrypt telnet 4 onepk application onepk application 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 16

Example: Custom Encryption Problem: Customers want custom encryption on specific traffic types Value proposition: Punt traffic of interest, encrypt, and re-inject. 1. Policy APIs on ingress router are set to punt telnet and syslog to app 2. App encrypts punted traffic and re-injects into data path. 3. Policy APIs on egress router punt telnet and syslog to app http 5 http Unsecure Network onepk application 4. App decrypts punted traffic and re-injects into data path. 5. Traffic that does not match policy passes through unencrypted. http onepk application 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 17

Cisco Unified Computing System Cisco UCS Manager (Read / Write Configuration Interfaces) UCS Manager GUI and CLI Cisco UCS Fabric Interconnects (Read Only / Cut Through Interfaces) SNMP, Syslog, SMTP, SMASH CLP, CIM XML, Smart Call Home 20, 40, 48, and 96 ports Cisco UCS I/O modules Cisco UCS Blade Server Chassis Cisco UCS Blade and Rack Servers (Cut through Interfaces to CIMC) Cisco UCS I/O Adapters 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 19

Programmatic Infrastructure Comprehensive XML API, standards-based interfaces Bi-Directional access to physical & logical internals Self Serve portals Management Tools Auditing Tools Direct UCS CLI UCS GUI 3 rd Party Customer XML API System Status Physical Inventory Logical Inventory Broad 3rd party integration support Faster custom integration for customer use cases Consistent data and views across ALL interfaces 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 20

UCS XML API Overview UCS XML API Features Communicates over HTTP / HTTPS XML Based, Transactional XML Transactions are Order Agnostic Standard Request / Response cycle Role Based Authentication Object Model Hierarchy Built-in Object Browser Published XML Schema Java Doc Style documentation High Availability Event Stream XML API 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 21

Interfaces for 3rd Party Integration SNMP SMASH CLP Syslog IPMI CIM XML Remote KVM UCSM CLI STANDARD Interfaces Serial Over LAN UCS Full featured Interface UCS XML API 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 22

XML API - Access to all UCS Components Our GUI is a JAVA based Management Console; the Console is build on our comprehensive XML API 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 23

Cisco Developer Network Web based developer community Downloads: UCS Platform Emulator (UCSPE) goucs Automation Tool XML API, Perl, PowerShell code samples Microsoft PowerShell library, SCOM MP HP Software HPOM, HPOO integration modules Documentation: Programming & developer guides White papers Reference guides (XML model, Faults) Collaboration: Blogs Peer to peer forums Videos Access to Cisco subject matter experts 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 26

UCS Platform Emulator (UCSPE) Full featured emulator for the UCS Manager Installs as a Virtual Machine Provides complete support for all XML API calls Object Browser to peruse the UCSM model Import & replicate existing live UCS Manager physical inventory Share saved physical inventories among UCS Platform Emulators Drag-n-drop hardware builder to create custom physical inventory 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 27

goucs Automation Toolkit UCS Manager: Know XML, no problem With goucs: No XML, no problem Convert UCS Manager actions into automation scripts What s new with goucs v2.0 Linux & Mac OS X Support HTTPS Communication Support Tagged Based User Arguments Performance Enhancements 1 Perform single action on UCS Manager and capture it 2 Create script in goucs framework with variable substitutions 3 Re-run script over and over against single or multiple UCSMs 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 28

PowerShell Mission As integrated and composable as BASH/KSH As programmatic as Perl/Python/Ruby As production oriented as AS400 CL/VMS DCL As accessible as file systems 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 30

Cisco UCS PowerTool Supported Objects and Assets Service Profiles Policies (Firmware, Boot Order, vnic / vhba config, Storage, IPMI, SoL, BIOS) Pools (WWN, UUID, MAC) Configuration Faults Launch UCS KVM for SP Servers Hardware - CPU, Memory, Adaptors, CIMC) Power Operations Power / cooling / network /environmental statistical data Hardware Faults Chassis Hardware Power Supply / Fan Modules / IO Modules Power / cooling / network / environmental statistical data Config and Hardware Faults Fabric Interconnect Hardware Power Supply / Fan Modules / Network Expansion Modules Power / cooling / network/ environmental statistical data Network Elements (VLAN, VSAN, QoS, Port Profiles) Configuration Operations Pools (WWN, UUID, MAC, IP) Policy creation, manipulation, deletion, and consumption vnic / vhba Templates Service profile template creation, cloning, deletion, and consumption Simplistic service profile creation (with a limited scope of what is available to configure) Expert SP creation (use variabilized XML w/ config file) Compare Managed Objects across orgs and/or domains Sync Managed Objects across orgs and/or domains 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 31

UCS XML Hierarchy Overview Legend equipment network logical Root sys fabric org-root chassis-1 switch- A LAN cloud SAN cloud bios policy orgprod macpool adaptor-1 blade-1 comput eboard slot-2 ether bob fc vsan10 boot policy ls-bob lsbinding mac pool block lspower eth0 fc0 temp stats power stats port-1 port-5 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 32

UCS XML Hierarchy Overview Legend equipment network logical Get-UcsChassis -Id 1 Get-UcsBlade -SlotId 1 Get-UcsAdaptorUnit -Id 1 Get-UcsAdaptorHostEthIf Root sys fabric org-root chassis-1 switch- A LAN cloud SAN cloud bios policy orgprod macpool adaptor-1 blade-1 comput eboard slot-2 ether vlan10 fc vsan10 boot policy ls-bob lsbinding mac pool block lspower eth0 fc0 temp stats power stats port-1 port-5 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 33

UCS XML Hierarchy Overview Legend equipment network logical Get-UcsChassis -Id 1 Get-UcsBlade -SlotId 1 Get-UcsComputeBoard Get-UcsComputeMbTempStats Root sys fabric org-root chassis-1 switch- A LAN cloud SAN cloud bios policy orgprod macpool adaptor-1 blade-1 comput eboard slot-2 ether vlan10 fc vsan10 boot policy ls-bob lsbinding mac pool block lspower eth0 fc0 temp stats power stats port-1 port-5 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 34

UCS XML Hierarchy Overview Legend equipment network logical Get-UcsLanCloud Add-UcsVlan -name bob -id 222 Root sys fabric org-root chassis-1 switch- A LAN cloud SAN cloud bios policy orgprod macpool adaptor-1 blade-1 comput eboard slot-2 ether bob fc vsan10 boot policy ls-bob lsbinding mac pool block lspower eth0 fc0 temp stats power stats port-1 port-5 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 35

UCS XML Hierarchy Overview Legend equipment network logical et-ucsorg -name root Add-UcsMacPool -Name bob123 Add-UcsMacMemberBlock From 20:00:00:11:22:00 -To 20:00:00:11:22:1 Root sys fabric org-root chassis-1 switch- A LAN cloud SAN cloud bios policy orgprod bob123 adaptor-1 blade-1 comput eboard slot-2 ether bob fc vsan10 boot policy ls-bob lsbinding mac pool block lspower eth0 fc0 temp stats power stats port-1 port-5 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 36

UCS XML Hierarchy Overview Legend equipment network logical Associate-UcsServiceProfile -ServiceProfile (Get-UcsOrg -name root/prod Get-UcsServiceProfile name bob) -Blade (Get-UcsBlade -Chassis 1 -SlotId 1) Root sys fabric org-root chassis-1 switch- A LAN cloud SAN cloud bios policy orgprod macpool adaptor-1 blade-1 comput eboard slot-2 ether bob fc vsan10 boot policy ls-bob lsbinding mac pool block lspower eth0 fc0 temp stats power stats port-1 port-5 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 37