Q1 2015 Juniper Networks Education and Certification Webcast March 24, 2015

Welcome Thank you for joining us! Introducing today’s speakers • Lawrence Rust, Education Services Marketing Manager • Elna Samuelsen, Director, Curriculum, Certification, Infrastructure • Jasun Rutter, Sr. Manager, Curriculum Development and Certification • GUEST SPEAKER – Ariful Huq, Product Manager, MX Series

Course and Certification Program Updates

Agenda

Learning Bytes Update

vMX

What’s New

Stay Connected

Labs and Learning Courses • Self-paced, technical training

with hands-on labs • Benefits:

• Hands-on lab experience • Learn whenever and wherever • Control the pace • High-quality content derived from

our instructor-led materials • Available now: Introduction to the Junos

Operating System (IJOS); Junos Routing Essentials (JRE)

The ultimate blend of hands-on technical training and control over the pace you learn

Each $349 course purchase provides four weeks of access to:

Ideally suited to:

Labs and Learning Courses

Web-based recorded lectures

Lab environment

Detailed Lab Guide

• Individuals that want labs but prefer self-study • Teams that are new to Junos • Anyone preparing for the JNCIA-Junos certification

1. Visit www.juniper.net/labsandlearning 2. Select your course 3. Pay with a credit card or Juniper Training Credits!

To purchase:

Design Track

Course and Certification Program Updates

Agenda

Learning Bytes Update

vMX

What’s New

Stay Connected

New Exam: JNCDA • Juniper Networks Certified Design Associate

• Q2 release • No prerequisite certification required (highly recommend JNDF, network

design background) • Design exam track

• JNCDA is the entry-level certification to a larger certification track focused on network design

• Data center Specialist level exam coming in Q3

Watch http://www.juniper.net/us/en/training/certification/ for ongoing news with these credentials

Exam Updates: JNCIE-SEC • JNCIE-SEC

• Update to existing forms – Feb 2015 • Same objectives • Addition of new topic: AppSecure • Watch website for news and timing

• Addition of new forms – 2015 • Same objectives • Software upgrade

Watch http://www.juniper.net/us/en/training/certification/ for updates with news and timing of these updates

Ongoing Update for JNCP Exams • JNCP exams are updated on an ongoing basis

• JNCIA up to JNCIE level • Exams are updated/refreshed on a development cycle

• Sometimes visible (ex. JNCIA-Junos .. JN0-101 -> JN0-102) • Sometimes not

• Ensures freshness of item pool • Ensures security of exams

New and Updated Courseware Q4 14 • New

• Data Center Switching (DCX)

• Troubleshooting Data Center Switching (TDCX)

• Updates • Implementing Junos Secure

Analytics (IJSA) • Update and rebrand of

CSTRM • JNCIE-ENT Bootcamp

Q1 15 • New

• Juniper Networks Design Fundamentals (JNDF)

• Updates • Configuring and Monitoring QFabric Systems

(CMQS) • Troubleshooting QFabric Systems (TQS)

(JNCIS-QF exam to be updated in Q3 2015) • Introduction to the Junos OS (IJOS) • JNCIE-SEC Bootcamp • JNCIE-SP Bootcamp • Configuring and Monitoring Contrail (CMC)

Other Learning Resources JNCP Website Resources page http://www.juniper.net/us/en/training/certification/resources.html J-Net Training, Certification Career Forum http://forums.juniper.net > Training, Certification, and Career Topics Courseware: www.juniper.net/courses Labs and Learning: www.juniper.net/labsandlearning

Course and Certification Program Updates

Agenda

Learning Bytes Update

vMX

What’s New

Stay Connected

Learning Bytes…View the Latest

Learning Bytes…expand your knowledge bit by bit.

New Learning Bytes Chassis Cluster Interface Monitoring Configuring High Availability on Juniper Virtual Chassis Configuring Multiple Junos Devices Using Junos PyEZ & Templates Configuring Transparent Mode on an SRX Series Importing FireFly Perimeter VM into VMware ESXi 5.5 Server IP Addressing and Subnetting Basics IS-IS Configuration Junos Space Log Director Installation Junos Space Security Director - Hub-and-Spoke VPNs

Learning Bytes…View the Latest New Learning Bytes Junos Space Security Director - Variable Objects Master RE Console NAT64 with DNS64 on SRX Python EZ Basics Setting the Virtual Chassis Mode SSM Features Topology-Independent In-Service Software Upgrade (TISSU) on the QFX5100 Virtual Chassis Fabric: Automatic Software Upgrades

www.juniper.net/learningbytes or www.youtube.com/junipernetworks

Course and Certification Program Updates

Agenda

Learning Bytes Update

vMX

What’s New

Stay Connected

vMX Product Overview & Use-cases Ariful Huq MX Product Manager

AGENDA

VMX product overview 1

Performance 2 Use cases and deployment models 3

Licensing 4

Virtualization strategy & Goals

Branch Office

HQ Carrier Ethernet Switch

Cell Site Router

Mobile & Packet GWs

Aggregation Router/ Metro

Core

DC/CO Edge Router Service Edge

Router

Core

Enterprise Edge/Mobile Edge Aggregation/Metro/Metro core Service Provider Edge/Core and EPC

VCPE, Enterprise Router Virtual PE, Virtual BNG/LNS, Hardware Virtualization

Virtual Routing Engine, Virtual Route Reflector

MX SDN Gateway

Control Plane and OS: Virtual JUNOS, Forwarding Plane: Virtualized Trio

vBNG, vPE, vCPE

Data center/Central Office

MX Virtualization Strategy

Leverage R&D effort and JUNOS feature velocity across all physical & virtualization initiatives

Software

Applications

Key Benefit of vMX

Exact same control plane features of JUNOS & forwarding feature set of Trio, and managed same way as physical router

Same release timeline as the JunOS releases

Consistency Quick service enablement by leveraging virtualization technology

Service separation with different routers

Agility

Easy scale-out option for network platforms

Perfect choice of control plane function scaling

Scalability

VMX product overview

VMX – A scale out router

Scale-Up (Physical MX) Scale-Out (Virtual MX)

• Optimize for density in a single instance

• Innovation in ASIC, Power & Cooling

• Density is not the optimization factor

• Each instance is a router

• More agile deployment. Innovation in orchestration and management capabilities

Virtual and Physical MX

Packet Forwarding

Engine (PFE)

Virtual Forwarding Plane (VFP)

Microcode cross-compiled

X86 instructions

CONTROL PLANE

DATA PLANE

ASIC/HARDWARE

Cross compilation creates high leverage of features between Virtual and Physical with minimal re-work

TRIO UCODE

Virtualization Techniques

Application

Virtual NICs

Physical NICs

Guest VM#1

Hypervisor: KVM, XEN,VMWare ESXi

Physical layer

VirtIO drivers

Device emulation

Para-virtualization (VirtIO, VMXNET3)

• Guest and Hypervisor work together to make emulation efficient • Offers flexibility for multi-tenancy but with lower I/O performance • NIC resource is not tied to any one application and can be

shared across multiple applications • vMotion like functionality possible

PCI-Pass through with SR-IOV

• Device drivers exist in user space • Best for I/O performance but has dependency on NIC type • Direct I/O path between NIC and user-space application

bypassing hypervisor • vMotion like functionality not possible

Application

Virtual NICs

Guest VM#2

VirtIO drivers

Application

Virtual NICs

Physical NICs

Guest VM#1

Hypervisor: KVM, XEN, VMWare ESXi

Physical layer

Device emulation

Application

Virtual NICs

Guest VM#2

Device emulation

PCI P

ass-

thro

ugh

SR

-IOV

Virtualization Techniques

Application 1

Virtual NICs

Physical NICs

Physical layer

Containers (Docker, LXC)

• No hypervisor layer. Much less memory and compute resource overhead • No need for PCI-pass through or special NIC emulation • Offers high I/O performance • Offers flexibility for multi-tenancy

Application 2

Virtual NICs

Container engine (Docker, LXC)

VMX Product

• Virtual JUNOS to be hosted on a VM • Follows standard JUNOS release cycles • SMP capable

• Hosted on a VM, Bare Metal, Linux Containers • Multi-threaded, Multi-Core • DPDK, SR-IOV, VirtIO

VCP (Virtualized Control Plane)

VFP (Virtualized Forward Plane)

SCRIPTS

VMX Overview

Virtual Control Plane (VCP) Virtual Forwarding Plane (VFP)

Physical NICs

Virtual NICs

Management traffic

Guest VM (Linux + DPDK) Guest VM (FreeBSD)

Hypervisor: KVM

Cores Memory

Bridge / vSwitch SR-IO

V

Physical layer

• vSwitch/Linux Bridge for VFP to VCP communication (internal host path)

• 1:1 mapping between VFP and VCP

• Optimized data path from physical NIC to vNIC via SR-IOV (Single Root IO Virtualization).

• OpenStack/Scripts for VM management

VMX QoS model

LEVEL-1 LEVEL-2 LEVEL-3

PORT

S I X Q U E U E S

Q0

Q1

Q2

Q3

Q4

Q5

VLAN 1

VLAN 2

VLAN n

High

Medium

Low

Port: Shaping-rate

VLAN: Shaping-rate 4k per IFD

Queues: 6 queues 3 priorities

1 High 1 medium 4 low

Priority groups scheduling follows strict priority for a given VLAN

Queues of the same priority for a given VLAN use WRR

High and medium queues are capped at transmit-rate

Performance

vMX Environment

Description Value

Sample system configuration Intel Xeon E5-2667 v2 @ 3.30GHz 25 MB Cache. NIC: Intel 82599 (for SR-IOV only)

Memory Minimum: 8 GB (2GB for vRE, 4GB for vPFE, 2GB for Host OS)

Storage Local or NAS

Sample system configuration

Sample configuration for number of CPUs

Use-cases Requirement

VMX with up to 100Mbps performance Min # of vCPUs: 4 [1 vCPU for VCP and 3 vCPUs for VFP]. Min # of Cores: 2 [ 1 core for VFP and 1 core for VCP]. Min memory 8G. VirtIO NIC only.

VMX with up 3G of performance Min # of vCPUs: 4 [1 vCPU for VCP and 3 vCPUs for VFP]. Min # of Cores: 4 [ 3 cores for VFP, 1 core for VCP]. Min memory 8G. VirtIO or SR-IOV NIC.

VMX with 10G and beyond (assuming min 2 ports of 10G) Min # of vCPUs: 5 [1 vCPU for VCP and 4 vCPUs for VFP]. Min # of Cores: 5 [ 4 cores for VFP, 1 core for VCP]. Min memory 8G. SR-IOV only NIC.

vMX Baseline Performance VMX performance in Gbps

# of cores for packet processing *

Frame size (Bytes) 3 4 6 8 10

256 2 3.8 7.2 9.3 12.6

512 3.7 7.3 13.5 18.4 19.8

1500 10.7 20 20 20 20

2 x 10G ports

4 x 10G ports

# of cores for packet processing*

Frame size (Bytes) 3 4 6 8 10

256 2.1 4.2 6.8 9.6 13.3

512 4.0 7.9 13.8 18.6 26

1500 11.3 22.5 39.1 40 40

6 x 10G ports

# of cores for packet processing*

Frame size (Bytes) 3 4 6 8 10

256 2.2 4.0 6.8 9.8

512 4.1 8.1 14 19.0 27.5

1500 11.5 22.9 40 53.2 60

*Number of cores includes cores for packet processing and associated host functionality. For each 10G port there is a dedicated core not included in this number.

8 x 10G ports

# of cores for packet processing* Frame size (Bytes) 4 6 8 10 12

64 2.1 2.8 3.5 4.2 5.3

128 3.9 5.2 6 7.3 8.7

256 5.2 8 10.4 12.6 15

512 12.7 18.3 23 27.7 32

1500 33.6 47 58.5 71.5 79

IMIX 14 20 25.4 31 37

Use cases and deployment models

Service Provider VMX use case – Virtual PE (vPE)

• Scale-out deployment scenarios

• Low bandwidth, high control plane scale customers

• Dedicated PE for new services and faster time-to-market

Market Requirement

• VMX is a virtual extension of a physical MX PE

• Orchestration and management capabilities inherent to any virtualized application apply

VMX Value Proposition

VMX as a Cloud VPN PE

• Virtual Private Cloud customers need a gateway router in the cloud as an easy extension of the enterprise network, provide inter-region connectivity and use it for services such as NAT.

• Cloud Service Providers can offer a virtualized router to offer this functionality

Market Requirement

• VMX can provide all the functionality enterprises utilize for an on-site MX gateway router. This functionality includes IPSec and in future NAT.

• Operational simplicity in managing another JUNOS device hosted in the cloud.

VMX Value Proposition

VMX as a DC Gateway

• Service Providers need a gateway router to connect the virtual networks to the physical network

• Gateway should be capable of supporting different DC overlay, DC Interconnect and L2 technologies in the DC such as GRE, VXLAN, VPLS and EVPN

Market Requirement

• VMX supports all the overlay, DCI and L2 technologies available on MX

• Scale-out control plane to scale up VRF instances and number of VPN routes

VMX Value Proposition

VMX to offer managed CPE/centralized CPE Service providers want to offer a managed CPE service and centralize the CPE functionality to avoid “truck rolls” Large enterprises want a centralized CPE offering to manage all their branch sites Both SPs and enterprises want the ability to offer new services without changing the CPE device

Market Requirement

VMX with service chaining can offer best of breed routing and L4-L7 functionality Service chaining offers the flexibility to add new services in a scale-out manner

VMX Value Proposition

Reflection from physical to virtual world Proof of concept lab validation or SW certification

• Perfect mirroring effect between carrier grade physical platform & virtual router

• Can provide reflection effect of an actual deployment in virtual environment

• Ideal to support • Proof of Concept lab • New service configuration/operation

preparation • SW release validation for an actual

deployment • Training lab for operational team • Troubleshoot environment for a real network

issue

• CAPEX or OPEX reduction for lab • Quick turn around when lab network

scale is required

Virtual

Physical deployment

Service Agility: Bring up a new service in a POP

SP Network for VPN service

PE

L3 CPE L3 CPE

PE

POP

1. Install a new vMX to start offering a new service without impact to existing platform

vMX

2. Scale out the service with vMX quickly if traffic profile fits the requirements

vMX 3. Add service directly to the physical MX GW or add more physical MX if service is successful and there is more demand with significant traffic growth

MX

4. Integrated the new service into existing PE when the service is mature

vMX as an application on Contrail vRouter.

Contrail controller

NFV orchestrator

Template based config

• vMX with vRouter integration enables service chaining use-cases

• VirtIO utilized for Para-virtualized drivers

• Contrail OpenStack for • VM management

• Setting up overlay network

• NFV Orchestrator (OpenStack Heat templates) utilized to easily create and replicate VMX instances

VMX FRS

vMX Products

Characteristics Target customer

Trial

• Up to 90 day trial • No limit on capacity

• Inclusive of all features

• Potential customers who want to try-out VMX in their lab or qualify VMX

Lab simulation/Educatio

n

• No time-limit enforced • Forwarding plane limited to

50Mbps • Inclusive of all features

• Customer wants to simulate production network in lab

• New customer to gain JUNOS and MX experience

GA product • Bandwidth driven licenses

• Two modes for features: BASE or ADVANCE/PREMIUM

• Production deployment for VMX

VMX FRS product

• Official FRS target date for VMX is targeted for Q2 2015 with JUNOS release 14.1R6. • High level overview of FRS product

• DPDK integration. Min 80G throughput per VMX instance. • OpenStack integration. • 1:1 mapping between VFP and VCP • Hypervisor support: KVM, VMWare ESXi, Xen • High level feature support for FRS

• Full IP capabilities • MPLS: LDP, RSVP • MPLS applications: L3VPN, L2VPN, L2Circuit • IP and MPLS multicast • Tunneling: GRE, LT • OAM: BFD • QoS: Intel DPDK QoS feature-set

Licensing

vMX Pricing philosophy

Value based pricing

Elastic pricing model

• Price as a platform and not just on cost of bandwidth • Each VMX instance is a router with its own control-plane, data-

plane and administrative domain • The value lies in the ability to instantiate routers easily

• Bandwidth based pricing • Pay as you grow model

vMX License structure

• Three application packages • BASE: Basic IP routing. No VPN capabilities • ADVANCE: Same functionality as –IR mode MPCs • PREMIUM: Same functionality as –R mode MPCs

• Capacity based licensing

• Each application package offers capacity based SKUs

• Per instance license

• Payment options • Licenses will have a perpetual and subscription option

Application package functionality mapping Application package Functionality Use cases

BASE • IP routing with 32K IP routes in FIB • Basic L2 functionality: L2 Bridging and switching • No VPN capabilities: No L2VPN, VPLS, EVPN and

L3VPN • No VXLAN

• Low end CPE or Layer3 Gateway

ADVANCE (-IR)

• Features in BASE • IP FIB (testing up to 5M v4/v6 routes), IP/MPLS

Multicast • L2 capabilities include L2VPN, VPLS, EVPN,

L2Circuit • VXLAN

• L2vPE • IP vPE • Virtual DC GW

PREMIUM (-R) • Features in ADVANCE • L3VPN for IP and Multicast

• L3VPN vPE • Virtual Private Cloud GW

Note: Application packages exclude IPSec, BNG and VRR functionality.

Bandwidth License SKUs • Bandwidth based licenses for each application package for the following processing capacity limits:

100M, 250M, 500M, 1G, 5G, 10G, 40G. Note for 100M, 250M and 500M there is a combined SKU with all applications included.

100M 250M 500M

1G BASE

1G ADV

1G PRM

5G BASE

5G ADV

5G PRM

10G BASE

10G ADV

10G PRM

40G BASE

40G ADV

40G PRM

BASE

ADVANCE

PREMIUM

• Application tiers are additive i.e ADV tier encompasses BASE functionality

Course and Certification Program Updates

Agenda

Learning Bytes Update

vMX

What’s New

Stay Connected

Program Director – Elna Samuelsen – elnasam@juniper.net

Certification Program website: www.juniper.net/certification Customer Service alias: certification@juniper.net

@JuniperCertify Training, Certification and Career Forum

Stay Connected