Click here to load reader

Cisco Nexus 1000V for Hyper-V

  • View
    85

  • Download
    1

Embed Size (px)

DESCRIPTION

Cisco Nexus 1000V for Hyper-V. Appaji Malla Sr. Product Marketing Manager Cloud Networking & Services Group Cisco Systems Inc. Cisco UCS with Intel ® Xeon ® processors . Intel , the Intel logo, Xeon and Xeon Inside are trademarks or registered trademarks of Intel Corporation in - PowerPoint PPT Presentation

Text of Cisco Nexus 1000V for Hyper-V

Cisco Nexus 1000V for Hyper-V

Cisco Nexus 1000V for Hyper-VAppaji MallaSr. Product Marketing ManagerCloud Networking & Services GroupCisco Systems Inc.Intel, the Intel logo, Xeon and Xeon Inside are trademarks or registered trademarks of Intel Corporation in the U.S. and/or other countries. All other trademarks are the property of their respective owners.Cisco UCS with Intel Xeon processors

2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#1Legal DisclaimerMany of the products and features described herein remain in varying stages of development and will be offered on a when-and-if-available basis. This roadmap is subject to change at the sole discretion of Cisco, and Cisco will have no liability for delay in the delivery or failure to deliver any of the products or features set forth in this document.

2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#2AgendaCisco Virtual Networking VisionCisco Nexus 1000V (N1KV) OverviewWS2012 & SC2012 SP1 Networking Cisco N1KV Integration with SC2012 SP1Cisco Virtual Security Gateway 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#AgendaCisco Virtual Networking VisionCisco Nexus 1000V (N1KV) OverviewWS2012 & SC2012 SP1 Networking Cisco N1KV Integration with SC2012 SP1Cisco Virtual Security Gateway 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Overlay Technology SupportOperational Complexity

Managing networks across physical & virtual environmentsMaturing Hypervisor market

EconomicsUse-cases requiring different hypervisorsPublic Cloud

Security concerns for public cloudMobility concernsResource Utilization

VM Mobility across DCMobility across DCsMobility across clouds

Customer Issues in virtualized environments

Virtual ServicesSecure virtual environmentRich network services

Diverse Virtualization Requirements for DataCenter CustomersMulti-services support with vPath Multi-hypervisor SupportConsistent Operational ModelMulti-cloud support 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#5Physical Virtual Cloud JourneyPHYSICAL WORKLOADVIRTUAL WORKLOADCLOUDWORKLOADOne app per ServerStaticManual provisioningMany apps per ServerMobileDynamic provisioningMulti-tenant per ServerElasticAutomated ScalingHYPERVISORVDC-1VDC-2CONSISTENCY: Policy, Features, Security, Scale, ManagementNexus 1000V, VM-FEXvWAAS, VSG*, ASA 1000VUCS** for Virtualized WorkloadsNexus 7K/5K/3K/2KWAAS, ASA, NAMUCS** for Bare Metal * Virtual only, ** With Intel Xeon processors

Cisco UCS with Intel Xeon processors 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#6Cisco Virtual Networking VisionMulti-HypervisorMulti-ServicesMulti-CloudNexus 1000V 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Microsoft Management Summit 2013 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.6/27/2013 11:14 AM7Cisco Cloud Networking ServicesNexus 1000VDistributed switchNX-OS consistencyVSGVM-level controlsZone-based FWASA 1000VEdge firewall, VPNProtocol InspectionvWAASWAN optimizationApplication traffic

WAN Router

ServersTenant AASA 1000VCloudFirewall

Nexus 1000V

Physical InfrastructureVirtualized/CloudData Center

vWAASCisco Virtual Security GatewayCSR 1000V(Cloud Router)WAN L3 gatewayRouting and VPNSwitches

Ecosystem ServicesCitrix NetScaler VPX virtual ADCImperva Web App. Firewall

Citrix NetScalerVPXImpervaSecureSphereWAF

Cloud Services Router 1000V

Zone AZone BvPathMulti-Hypervisor (VMware, Microsoft,.) 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#8Cisco Nexus 1000VCisco UCS VM-FEXCisco UCS Manager Cisco UCS PowerToolCisco Unified Computing (UCS) with Intel Xeon processorCisco Delivers Optimum IT Infrastructure For Your Microsoft Windows Server 2012 EnvironmentManageabilityComputeNetworking

Certified for various Microsoft applications

Cisco UCS with Intel Xeon processors 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#9AgendaCisco Virtual Networking VisionCisco Nexus 1000V (N1KV) OverviewWS2012 & SC2012 SP1 Networking Cisco N1KV Integration with SC2012 SP1Cisco Virtual Security Gateway 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#

Bring network to the hypervisor(Cisco Nexus 1000V Switch)

UCS VICUCSServerBring VM awareness to physical network(Cisco UCS VM-FEX)

Windows Server 2012Hyper-V

Windows Server 2012 Hyper-VCisco Nexus 1000VAdapter

ServerVM-FEX

IEEE 802.1Q NetworkUCSFabric Inter-connectCisco Virtual Networking Solutions Cisco Nexus 1000V and UCS VM-FEX

Cisco UCS with Intel Xeon processors 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#

Cisco Nexus 1000VAward Winning Networking Platform for Hyper-VNexus 1000V VSM

Extensible vSwitchCaptureFilteringForwardingNexus 1000V VEM

VMVMVMVMVNICsPNICs

2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#12Cisco Nexus 1000V ArchitectureConsistent across physical & virtual environments

WS 2012 Hyper-VModular SwitchLinecard-NSupervisor-1 (Active)Supervisor-2 (StandBy)Linecard-1Linecard-2Back Plane

VEM-NVEM-1VEM-2VSM: Virtual Supervisor ModuleVEM: Virtual Ethernet ModuleVSM-1 (active)

VSM-2 (standby)

Virtual ApplianceNetworkAdminServerAdminNX-OSControl PlaneNX-OSData PlaneWS 2012 Hyper-VWS 2012 Hyper-V 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#13SwitchingL2 Switching, 802.1Q Tagging, Rate Limiting (TX)IGMP Snooping, QoS Marking (COS & DSCP)SecurityPolicy Mobility, Private VLANs w/ local PVLAN EnforcementAccess Control Lists (L24 w/ Redirect), Port SecurityDynamic ARP inspection*, IP Source Guard*, DHCP Snooping*ProvisioningVisibilityLive Migration Tracking, NetFlow v.9 w/ NDE, CDP v.2VM-Level Interface StatisticsSPAN & ERSPAN (policy-based)ManagementVM Network Provisioning (port-profiles), CiscoWorks, Cisco DCNMCisco CLI, Radius, TACACs, Syslog, SNMP (v.1, 2, 3)Hitless upgrade, SW InstallerNetwork ServicesVirtual Services Datapath (vPath) support for traffic steering & fast-path off-load [leveraged by Virtual Security Gateway (VSG) and other services]Full integration with System Center VM Manager (SCVMM)Faster network policy provisioning through port profilesCisco Nexus 1000V Features * Only with Advanced EditionCisco Confidential 2010 Cisco and/or its affiliates. All rights reserved.# 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Port Profiles: Faster VM DeploymentPort ProfilesDefined PoliciesWEB AppsHRDBDMZPolicy-Based VM ConnectivityMobility of Network and Security PropertiesNon-Disruptive Operational ModelCisco Virtual Networking

Nexus1000V VEM

Nexus1000V VEMVM Connection PolicyDefined in the networkApplied in SCVMMVMVMVMVMVMVMVMVM

VM Mgmt Station Nexus 1000V VSM

ServerServerHypervisorHypervisor 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#1515Port Profiles: Policy MobilityVMs Need to MoveVM MigrationResource SchedulingSW upgrade/patchHardware failurePolicy-Based VM ConnectivityMobility of Network and Security PropertiesNon-Disruptive Operational ModelCisco Virtual Networking

VMVMVMVM

VMVMVMVM

VM Mgmt Station Nexus 1000V VSM

VMVMVMVMVM NetworkingMobilityLive MigrationEnsures VM securityMaintains connection stateNexus1000V VEMNexus1000V VEM

ServerServerHypervisorHypervisor 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#1616Cisco Nexus 1000V PricingTiered Licensing Essential & Advanced EditionsEssential ($0)Advanced ($695/cpu)VLANs, ACL, QoSvPathLACPMulticastNetflow, SPAN, ERSPANManagement (SNMP etc.)SCVMM IntegrationDHCP SnoopingIP Source GuardDynamic ARP InspectionVirtual Security Gateway**** Only supports network-attributes 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Nexus 1100 Series VMware ESXVMware ESX

VSM

VSG Hyper-VHyper-V

VSM

NAMVSG Existing Nexus 1010 will support multi-hypervisor environments

VEM-2VEM-1VEM-2VEM-1

Cisco Nexus 1100 SeriesConsistent architecture across hypervisorsvPathvPathvPathvPath 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#18Frequently Asked QuestionsDoes Nexus 1000V work with all versions of Hyper-V?N1KV requires Windows Server 2012 and System Center Virtual Machine Manager 2012 SP1.Is Cisco Virtual Security Gateway (VSG) available for Hyper-V?Yes. VSG comes bundled with the advanced edition of N1KV.Can the same Nexus 1000V manage both ESX & Hyper-V?No. Separate N1KV switches should be deployed for different hypervisor environments. 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#AgendaCisco Virtual Networking VisionCisco Nexus 1000V (N1KV) OverviewWS2012 & SC2012 SP1 Networking Cisco N1KV Integration with SC2012 SP1Cisco Virtual Security Gateway 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Microsoft SCVMM Networking ConceptsMultiple user-defined constructsLogical NetworksNetwork SitesVM NetworksPort ClassificationIP-Pools 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Host5VMVMVMHost6VMVMVMHost3VMVMVMHost4VMVMVMHost1VMVMVMHost2VMVMVMLogical NetworkMicrosoft SCVMM Networking ConceptsLogical Networks & Network SitesLogical Network represents a network with a certain type of connectivity characteristics (for eg. DMZ network, intranet, isolation)22Network Site2MadridBarcelona

Network Site3

Network Site1

An instantiation of a Logical network on a set of host-groups (for eg. hosts in a POD) is called a network-site 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Microsoft Management Summit 2013 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.6/27/2013 11:14 AM22Microsoft SCVMM Networking ConceptsVMs are bound to VM Networks23

VM Networks can be backed by either VLANs or other overlay networks (e.g. NVGRE segments). The first release of the Cisco Nexus 1000V Switch only supports VLAN-backed VM-networks. 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Microsoft SCVMM Networking ConceptsPort-Classifications

Extensible vSwitchCaptureFilteringForwardingVMVMVMVMVNICsBundling of profiles from each extension is the port-classification

PNICs

2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Microsoft Management Summit 2013 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.6/27/2013 11:14 AM24Microsoft SCVMM Networking ConceptsAssociating VM VNICs to VM Networks & Port-classificationsChoose networkVM NetworkVM Subnet is tied to the Network (1:1)Choose IP address type Can be dynamic (DHCP) or statically assignedChoose IP pool for static IPsChoose Port Profile ClassificationPolicy (QoS, Security, Monitoring)A Classification refers to a Port Profile

2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#25Logical Network DMZMicrosoft SCVMM Networking ConceptsPutting everything together26Network-site DMZ_POD1DMZ_Pod1_Subn1DMZ_Pod1_Subn2DMZ_Pod1_Subn3Network-site DMZ_POD2DMZ_Podz2_Subnet1 DMZ_Pod2_Subnet2DMZ_Pod2_Subnet3ClientsVMVMVMIP-Pool1IP-Pool2IP-Pool3IP-Pool4IP-Pool5IP-Pool6GuestsVMVMServersVMVMGuest AccessApplication ServerIntranet ClientPrivileged ClientPort-profiles 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Microsoft Management Summit 2013 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.6/27/2013 11:14 AM26AgendaCisco Virtual Networking VisionCisco Nexus 1000V (N1KV) OverviewWS2012 & SC2012 SP1 Networking Cisco N1KV Integration with SC2012 SP1Cisco Virtual Security Gateway 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Cisco Nexus 1000V TerminologySCVMM TerminologyCisco Nexus 1000V TerminologyLogical NetworksLogical NetworksNetwork SitesNetwork Segment PoolsVM Network DefinitionsNetwork SegmentsIP-PoolsIP-Pools & IP-Pool TemplatesPort-ClassificationsPort-profiles 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Microsoft Management Summit 2013 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.6/27/2013 11:14 AM28nsm logical-network DMZ

# nsm network-segment-pool DMZ_POD1# member-of logical network DMZ

# nsm network-segment DMZ_POD1_SUBNET1 member-of network segment pool DMZ_POD1 switchport mode accessswitchport access vlan 20ip-pool import template DMZ_POD1_Pool1

# nsm network-segment DMZ_POD1_SUBNET2member-of network segment pool DMZ_POD1switchport mode accessswitchport access vlan 21ip-pool import template DMZ_POD1_Pool2

# network-segment DMZ_POD1_SUBNET3member-of network segment pool DMZ_POD1switchport mode accessswitchport access vlan 22ip-pool import template DMZ_POD1_Pool2Cisco Nexus 1000V for Hyper-VDefining Network sites and VM NetworksNetwork Site DMZ_POD1VM Network DMZ_POD1_SUBNET1VM Network DMZ_POD1_SUBNET2VM Network DMZ_POD1_SUBNET3Logical network DMZ 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Microsoft Management Summit 2013 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.6/27/2013 11:14 AM29Cisco Nexus 1000V for Hyper-VOperational Model with SCVMMNetworks & policies synced to SCVMMAdds hosts to N1KVConnects VMs (VNICs) to VM NetworksConfiguration data and policies sent to N1KV VEM Nexus1000V VEM

Server

Nexus 1000VVSMWS 2012 Hyper-V SCVMM

NetworkAdmin

Create networks and policies (logical networks, network sites, VMnetworks)SCVMM manages the placement and live-migration of the VMs based on the constraints between VM networks and the network sites.VMVMVMVM

ServerAdmin

12345 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#30Cisco Nexus 1000V REST API SupportURI: http:///api/CRUD Operations through VSM RESTful APIsCreate an object*HTTP POSTRead an objectHTTP GETUpdate an objectHTTP POSTDelete an objectHTTP DELETE*Objects can be VM networks, Port-profiles, IP-Pools etc.Write/Update Operations are only supported on limited set of objects 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Microsoft Management Summit 2013 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.6/27/2013 11:14 AM31Cisco Nexus 1000V for Hyper-VAccessing N1KV with Powershell 3.0$User = "admin"$Password = ConvertTo-SecureString String "Secret123" AsPlainText -Force$VSMIPaddress = "10.105.228.108"$URI = "http://"+ $VSMIPaddress + /api/

$Credentials = New-Object TypeName System.Management.Automation.PSCredential ArgumentList $User, $PasswordBasic Parameters Required for API Calls#Create IP-Pool on Nexus 1000V - HTTP POST$IPPURI=$URI +"hyper-v/ip-address-pool"$IPPArg = '{"name":"pool1", "addressRangeStart":"192.168.0.2", "addressRangeEnd":"192.168.0.16"}

ConvertFrom-Json -InputObject $IPPArgInvoke-RestMethod -Uri $IPPURI -Credential $Credential -Method Post -Body $IPPArgCREATE Object #$VMNURI = $URI +"hyper-v/vm-network-definition/vmn4"$VMNArg = '{"name":"VMN4"}ConvertFrom-Json -InputObject $VMNArgInvoke-RestMethod -Uri $VMNURI -Credential $Credential -Method Delete -Body $VMNArgDELETE Object #Update IP-Pool Information - HTTP POST$IPPURI=$URI +"hyper-v/ip-address-pool/pool1"$IPPArg = '{ "addressRangeStart":"192.168.0.5", "addressRangeEnd":"192.168.0.20"}

ConvertFrom-Json -InputObject $IPPArgInvoke-RestMethod -Uri $IPPURI -Credential $Credential -Method Post -Body $IPPArgUPDATE Object #Read VSEM Information - HTTP GET$VersionURI = $URI + "/api/hyper-v/vsem-system-info

Invoke-RestMethod -Uri $VersionURI -Credential $Credential -Method Get -Outfile testout.xmlREAD Object 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#32Cisco Nexus 1000V for Hyper-VSCOM Plugin from JalasoftXian SCOM Plugin for Nexus 1000VMonitors various metrics:Availability (ICMP and SNMP)TCP ConnectionsUptimeTraffic, total, error etc.Bandwidth33

2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#AgendaCisco Virtual Networking VisionCisco Nexus 1000V (N1KV) OverviewWS2012 & SC2012 SP1 Networking Cisco N1KV Integration with SC2012 SP1Cisco Virtual Security Gateway 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Defense in Depth Security ModelInternet Edge Filter external trafficExtensive app protocol support VPN access, Threat mitigationInternal Security Segment internal networkPolicy applied to VLANsApplication protocol inspectionVirtual ContextsVirtual SecurityPolicy applied to VM zonesDynamic, scale-out operation VM context based controls

ASA 55xxASA 55xxASA-SMVSG

VMVMVMVM 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#35Cisco Virtual Security Gateway (VSG)Context-based, Multi-tenant, Workload SegmentationNexus 1000VDistributed Virtual Switch VMVMVMVMVMVMVMVMVMVMVMVMVMVMVMVMVMVMVMvPathCisco VSC

Log/Audit

VSG(active)Secure Segmentation(VLAN agnostic)Efficient Deployment(secure multiple hosts)Transparent Insertion(topology agnostic)High AvailabilityDynamic policy-based provisioningMobility aware(policies follow Migration)

VSC: Virtual Services Controller

2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Nexus 1000VDistributed Virtual Switch VMVMVMVMVMVMVMVMVMVMVMVMVMVMVMVMVMVMVMvPath

Log/Audit

Initial Packet FlowVirtual Security Gateway (VSG)* 1Flow Access Control(policy evaluation)2DecisionCaching34

Cisco Virtual Security Gateway Intelligent Traffic Steering with vPath* First version only supports network attributes

2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Nexus 1000VDistributed Virtual Switch VMVMVMVMVMVMVMVMVMVMVMVMVMVMVMVMVMVMVMvPath

Log/Audit

Virtual Security Gateway (VSG)*

Cisco Virtual Security GatewayPerformance Acceleration with vPath* First version only supports network attributes

Remaining packets from flowACL offloaded to Nexus 1000V(policy enforcement) 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#SummaryCisco Confidential 2010 Cisco and/or its affiliates. All rights reserved.# 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Consistent Network Services Leverage existing virtual servicesVirtual Security Gateway, Virtual WAAS, Virtual ASA, NAM on Nexus 1010 Services can be hosted on Nexus 1010Consistent Networking Features NX-OS feature across multiple hypervisors & across physical Advanced NX-OS switching features, including security, visibility, QoS, segmentation, port channel, Consistent Operational Model NX-OS CLI across multiple hypervisors & across physical Separation of duties between network & server admins Dynamic provisioning and VM mobility awareness Leverage existing monitoring and management toolsCisco Nexus 1000V: Customer Benefits 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#40Start using Cisco Nexus 1000V todayEssential Edition No licensing or procurement needed Advanced Edition you can get a free trial for 60 days when you use essential 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Additional ResourcesCisco Nexus 1000V for Microsoft Hyper-V: http://www.cisco.com/go/1000v/hyper-vCisco Nexus 1000V (N1KV): http://www.cisco.com/go/1000v Cisco Virtual Security Gateway: http://www.cisco.com/go/vsg Cisco N1KV Portfolio: http://www.cisco.com/go/1000vN1KV Powershell Cmdlets: http://developer.cisco.com/web/n1k/hypervCisco-Microsoft Partnership: http://www.cisco.com/go/microsoft 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#Thank you. 2010 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#