Embed Size (px)
DESCRIPTION
Cloud orchestration with nexus 1000v theater presentation from VMworld 2013
1 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1
Cloud Orchestration with Nexus 1000V Han Yang Senior Product Manager
August, 2013
Co-Sponsored by Intel®
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2
Architect Design Where Can
We Put It?
Procure Install Configure Secure Is It Ready?
Manual
From Weeks to Automated Self-Service Provisioning
• Faster application deployment is being demanded
• Deploying applications requires acquiring and configuring physical and virtual infrastructures
• Need Network Agility with best in class network service and SLA
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3
Consistency, Reduce Risk, Rapid Deployment
VIRTUAL
PHYSICAL CLOUD
Consistent Nexus Experience
Intra-tenant
Security
Inter-tenant
Security
Application
Acceleration
Routing and
Gateways
Web-app
Firewall
Load
Balancer
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4
CLOUD NETWORK SERVICES
WAN
Router Switches
Servers
PHYSICAL INFRASTRUCTURE
Multi-Hypervisor (VMware, Microsoft, KVM* Xen*)
Nexus 1000V vPath Enhanced VXLAN
Nexus 1000V
• Distributed switch
• NX-OS consistency
VSG
• VM-level controls
• Zone-based FW
ASA 1000V
• Edge firewall, VPN
• Protocol Inspection
vWAAS
• WAN optimization
• Application traffic
CSR 1000V (Cloud Router)
• WAN L3 gateway
• Routing and VPN
Ecosystem
Services
• Citrix NetScaler VPX virtual ADC
• Imperva Web App. Firewall
*KVM in beta, Xen prototype
ASA 1000V
Cloud Firewall vWAAS
Cisco Virtual
Security Gateway
Cloud Services
Router 1000V
Imperva
SecureSphere WAF
Citrix NetScaler
1000V
Network Analysis
Module (vNAM)
Full Portfolio of Best in Class Virtualized Network Service
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
KVM
CIAC/ OpenStack/
Partners
vSphere
vCloud Director/ Automation
Center
Hyper-V
System Center
XenServer
Citrix CloudPlatform
Across Hypervisors and Orchestration Tools
Physical Network
Computing Platform
Hypervisor
Cloud Portal and Orchestration
Storage Platform
Virtual Network Infrastructure
L4-7
L2-3
Unified Fabric (Nexus 2000 – 7000)
UCS
vPath
Nexus 1000V
Cloud Network Services WAAS NAM ASA 1000V NetScaler Partners VSG
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6
Virtual Appliance Nexus 1010/1110
NAM VSG
Primary
Secondary
VSM
NAM VSG VSM
VSM: Virtual Supervisor Module
VEM: Virtual Ethernet Module
vPath: Virtual Service Data-path
VXLAN: Scalable Segmentation
VSG: Virtual Security Gateway
vWAAS: Virtual WAAS
ASA 1000V: Tenant-edge security
vWAAS VSG VSM ASA 1000V
Virtual Service Blades Virtual Supervisor Module (VSM)
Network Analysis Module (NAM)
Virtual Security Gateway (VSG)
Data Center Network Manager (DCNM)
VEM-2
Win Server 2012
vPath VXLAN
L3 C
on
nec
tivit
y
VEM-3
Open Source Hyp
vPath VXLAN
VEM-1
VMware ESX
vPath VXLAN
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7
Nexus 1000V Essential Edition
No-Cost Version
The world’s most advanced
virtual switch
• Full Layer-2 Feature Set
• Security, QoS Policies
• VXLAN virtual overlays
• Full monitoring and management
capabilities
• vPath enabled Virtual Services
Nexus 1000V Advanced Edition
$695 per CPU MSRP
Adds Cisco value-add features for
DC and Cloud
• All Feature of Essential Edition
• VSG firewall bundled (previously sold
separately)
• Support for Cisco TrustSec SGA policies
• Platform for other Cisco DC Extensions
in the Future
Freemium Pricing Model Offers Flexibility for Customers to Deploy Cisco Virtual Data Center
Cisco Confidential 8 © 2013 Cisco and/or its affiliates. All rights reserved.
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9
Complex Use, Lack of
Visibility and Flexibility
Security: Workload Security,
Connection Security
Transparent Migration
Between On-Prem
and Cloud
Reinventing It –
New Techniques for
Every Cloud
Hybrid Cloud
Enterprise Data Center Public Cloud
VPC
VM
VM
VM
VM
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
Enterprise Apps and Network Services—on the Public Cloud
Program
Unique
APIs
Convert
Image Format
Reconfigure
Application
Insert Custom
Tools
Recreate
Services
Validate
Operations Onboard
New Monitoring
Use Cloud
Provisioning
Identify New
Security
Translate
Policies
Enterprise Cloud
VM VM VM VM
Provider Cloud
Nexus 1000V InterCloud
VM VM VM VM L2 Services
Routing
Optimization
Firewalls IDS
ENTERPRISE VISIBILITY
ENTERPRISE CONTROL
ENTERPRISE SECURITY
PROVIDER RESOURCES
PROVIDER EASE OF BUSINESS
PROVIDER VALUE
Centralized
VM Migration and
Management
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11
Enterprise Apps and Network Services—on the Public Cloud
Program
Unique
APIs
Convert
Image Format
Reconfigure
Application
Insert Custom
Tools
Recreate
Services
Validate
Operations Onboard
New Monitoring
Use Cloud
Provisioning
Identify New
Security
Translate
Policies
Enterprise Cloud
VM VM VM VM
Provider Cloud
Nexus 1000V InterCloud
VM VM VM VM L2 Services
Routing
Optimization
Firewalls IDS Centralized
VM Migration and
Management
• All data in motion is cryptographically isolated and encrypted: Enterprise to Cloud and VM to VM within Cloud
• Enterprise owns the keys
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
InterCloud + Cisco Intelligent Automation for Cloud
Policy manager
Resource manager
Service registry
VM Manager
Cloud Provider Manager
Cisco Prime Network Services Controller
(Management Layer)
(Integration via Northbound API) (Workloads moved via InterCloud)
Cisco Intelligent Automation for Cloud
Cisco Cloud Portal
Orchestrator manages workflow
across multiple cloud environments
User requests cloud
services via end-user portal
Cisco Process Orchestrator
Nexus 1000V (Platform Layer)
VM
VM
VM N1KV switching
firewall, routing
crypto secure
Tenant B
Cisco Confidential 13 © 2013 Cisco and/or its affiliates. All rights reserved.
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
Innovative Building Blocks
Bundled Functions are Modular and
Simplified for Scale and Automation
Fabric
Management
Workload
Automation
Optimized
Network
Virtual
Fabrics
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15
Orchestration Stack
Network and Services
Orchestration
Compute and Storage
Orchestration
Cisco Prime DCNM
Virtual
Machines
N1K
Auto-config Triggers
VDP
DHCP/ARP-ND
Data Packet Driven
Programmatic Physical
Machines
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16
Cisco Prime DCNM
Configuration
Profiles
OpenStack
vCloud Director
Cisco N1kV DVS
1
a
a
2
b
Create Tenant Network Communicate Tenant Network to Fabric
New VM gets created in Red Network Instantiates Red network
Tenant
Network
a b 2 1
Vrf x
Interface
bdi
b
Network
Services
Security Storage
(Future)
Compute
(Future)
Network
Infra
stru
ctu
re E
lem
en
ts
UNIFIED API - UNIFIED INFORMATION MODEL (RESTFUL XML/JSON API)
Open APIs, Open Source, Open Standards
COMMON POLICY DRIVEN OPERATIONAL MODEL
Hypervisor Network Services
ASA
Network Management, Automation, Orchestration
Efficiency Scale Optimization Telemetry Application
Awareness
Nexus 1000V Fits within Application Centric Infrastructure
Cisco Confidential 18 © 2013 Cisco and/or its affiliates. All rights reserved.
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19
Blade Server Managers Storage APIs Network API/CLI SCVMM vCenter RM
Physical Infrastructure Virtual Infrastructure
API to Cisco UCSM
Enterprise Systems Integration
LDAP, CMDB,
Metering DB • Single, unified product built
from the ground up
• Modular architecture
• Extensibility through APIs
• Deployed as an on-premise
virtual appliance(s)
Cloupia Network Services
Agent
Virtual
Infrastructure
Management
Provides: • Policy-driven
• Self-service infrastructure
• Lifecycle management Cisco Cloupia
Multi-tenant Infrastructure Management Platform
Mobile
Platform
IT Admins IT Operations End Users
Cloupia Provides Unified, Centralized Management of Physical and Virtualization Infrastructure in Private and Hybrid Clouds
VMware Hyper-V KVM
Other
Providers
Savvis VPDC,
Terremark
Amazon, Entel,
Rackspace
Self Service Catalog
Admin Console
Dashboard
Cisco UCS Cisco Nexus
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20
SSH
• Install BareMetal ESXi
• Download and Install VEM using Cloupia Script
• Configure/Un-Configure Port-Profiles, VLAN, ACL, VXLAN
UCS Director Integrated Multi-tenant Cloud Platform
CNSA
VM VM VM VM
Nexus 1000V VEM
VMware
vCenter Server
Server
VM VM VM VM
Nexus 1000V VEM
VMware
Nexus 1000V VSM
Server
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21
End-to-End Operations and Provisioning
• Single-click provisioning
• Intelligent resource allocation
• Automated, controlled delivery
Result: Improved time to market
Minutes
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22
• Accelerating application deployment is key to IT agility
• Nexus 1000V is fully integrated with cloud orchestration stacks: vCD, SCVMM, OpenStack, UCS Director, and more
• Nexus 1000V InterCloud eases migration to the cloud without redesigning your application
• Nexus 1000V is integrated with Dynamic Fabric Automation
• UCS Director enables virtual and physical infrastructure orchestration
Visit Cisco Booth 1005 Twitter: @ciscoDC, #ciscovmw
Facebook: http://www.facebook.com/CiscoDC
Youtube: http://www.youtubecisco.com/datacenter
Cisco DCC Blog: http://blogs.cisco.com/datacenter
Slideshare: http://slideshare.com/CiscoDataCenter
Community: : https://communities.cisco.com/community/technology/datacenter
Pinterest: http://pinterest.com/ciscosystems/data-center
LinkedIn: http://www.linkedin.com search “Cisco Data Center” group
Google +: http://goo.gl/irm4b
In Collaboration with Intel®
Intel, the Intel logo, Xeon and Xeon inside are trademarks of Intel Corporation in the U.S. and other countries.
24 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24
