cisco’s cloud services router (csrd2zmdbbm9feqrf.cloudfront.net/2013/eur/pdf/brkvir-2016.pdf ·...
TRANSCRIPT
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Cisco’s Cloud Services Router (CSR) Extending the Enterprise Network to the Cloud
Anurag Gurtu (Sr. Product Manager)
BRKVIR-2016
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Agenda
Overview of Cloud Hosting
Architecture & Design
Use-case and Deployment Models
Management & Performance
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Overview of Cloud Hosting
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Analyst’s Hype Cycle
5
Inflated Expectations
Introduction of the BUZZ word
Start of Productivity
Reality
Maturity
Hyp
e
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Enterprise moving IT Services to Cloud
6
“43% of the companies will run the majority of their IT in the cloud in the
next four years”
Source: Gartner Executive Worldwide Survey, Jan 2011
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Hybrid Cloud
• Shared infrastructure
• Lack of visibility and control • Unpredictable performance
Public Cloud
• Security and control risk • Unpredictable performance
• Internet based apps
Private Cloud
• Application Centralization • Lean Branch
• Poor user experience • Application survivability
Evolution
7
Traditional IT
• Independent branches • Internet via central site
• High Capex & OpEx • Longer time for app rollout
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Is anyone actually using Cloud or is it just a HYPE?
8
Netflix
Worlds Largest Public Cloud
I have more cows than YOU !!
Oh! Now you can see my expressions while I am
talking
Amazon
Zynga
Skype
Search on Paris Hilton take less than 0.16
seconds
I will watch every possible movie because I pay
$12 per month
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Cloud Adoption Drivers
9
Tremendous
Compute
Operational
Savings
Business
Continuity
Scalable &
Elastic Pay As You Go Resiliency
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Various Vendors
10
Models
IaaS
PaaS
SaaS
Vendors Focus
Amazon Rackspace
Google Engine Microsoft Azure
Google Apps Salesforce
IT
Developers
End User
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
What to choose?
11
Reduction in Operating Expense
Leve
l of
Co
ntr
ol
V D C
Public Cloud
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
External Cloud Networking Challenges
• Challenges
‒ Inconsistent VPN Configuration
‒ Incompatible IP addressing
‒ Incomplete network services
Extending Enterprise WAN to External Clouds
Branch
ISR Branch ISR
Branch
ISR
Data Center ASR
Public Cloud
VPC/vDC
VPC/vDC
‒ Different management tools
‒ No WAN optimization options
‒ Inability to prioritize traffic
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Cisco Cloud Services Router (CSR 1000v)
• Solutions
‒ Consistent VPN Configuration
‒ Compatible IP addressing
‒ Complete network services
Cisco Cloud Services Router (CSR 1000v)
Data Center ASR
Public Cloud
VPC/vDC
VPC/vDC
‒ Consistent management tools
‒ Intercept and RedirectWAN optimization options
‒ Classification and Prioritization
Branch
ISR Branch ISR
Branch
ISR
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Architecture & Design
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Architecture (IOS XE)
15
Route Processor (active)
Interconn.
RP
Embedded Services Processor (active)
FECP
Interconn
QFP subsystem Crypto assist
Passive Mid Plane
SPA SPA
IOCP SPA
Agg.
…
Interconn
Route Processor (standby)
Interconn.
RP
Embedded Services Processor (standby)
FECP
Interconn
QFP subsystem Crypto assist
SPA SPA
IOCP SPA
Agg.
…
Interconn
SPA SPA
IOCP SPA
Agg.
…
Interconn
SPA SPA
IOCP SPA
Agg.
…
Interconn
SPA SPA
IOCP SPA
Agg.
…
Interconn
SPA SPA
IOCP SPA
Agg.
…
Interconn
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Architecture (IOS XE CE – Cloud Edition)
16
Route Processor (active)
Interconn.
RP
Embedded Services Processor (active)
FECP
Interconn
QFP subsystem Crypto assist
Passive Mid Plane
SPA SPA
IOCP SPA
Agg.
…
Interconn
Route Processor (standby)
Interconn.
RP
Embedded Services Processor (standby)
FECP
Interconn
QFP subsystem Crypto assist
SPA SPA
IOCP SPA
Agg.
…
Interconn
SPA SPA
IOCP SPA
Agg.
…
Interconn
SPA SPA
IOCP SPA
Agg.
…
Interconn
SPA SPA
IOCP SPA
Agg.
…
Interconn
SPA SPA
IOCP SPA
Agg.
…
Interconn
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Architecture (IOS XE CE – Cloud Edition)
17
Route Processor (active)
Interconn.
RP
Embedded Services Processor (active)
FECP
Interconn
QFP subsystem Crypto assist
Passive Mid Plane
SPA SPA
IOCP SPA
Agg.
…
Interconn
Route Processor (standby)
Interconn.
RP
Embedded Services Processor (standby)
FECP
Interconn
QFP subsystem Crypto assist
SPA SPA
IOCP SPA
Agg.
…
Interconn
SPA SPA
IOCP SPA
Agg.
…
Interconn
SPA SPA
IOCP SPA
Agg.
…
Interconn
SPA SPA
IOCP SPA
Agg.
…
Interconn
SPA SPA
IOCP SPA
Agg.
…
Interconn
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Architecture (IOS XE CE – Cloud Edition)
18
Route Processor (active)
Interconn.
RP
Embedded Services Processor (active)
FECP
Interconn
QFP subsystem Crypto assist
SPA SPA
IOCP SPA
Agg.
…
Interconn
vNIC vCPU vMemory vDisk
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Architecture (IOS XE CE – Cloud Edition)
19
Route Processor (active)
Interconn.
RP
Embedded Services Processor (active)
FECP
Interconn
QFP subsystem Crypto assist
vNIC vCPU vMemory vDisk
Physical Hardware
CPU Memory Disk NIC
Hypervisor (VMware / Citrix)
• Selected feature set of Cisco IOS XE
• Virtual Route Processor (RP)
• Virtual Forwarding Processor (FP)
Optimized for single tenant use cases
• Hypervisor agnostic
• Virtual switch agnostic
• Server agnostic
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
CSR 1000v
• Selected feature set of Cisco IOS XE
• Virtual Route Processor (RP)
• Virtual Forwarding Processor (FP)
• Optimized for single tenant use cases
• Hypervisor agnostic
• Virtual switch agnostic
• Server agnostic
Cisco IOS XE Software in Virtual Form-factor
Server
Hypervisor Virtual Switch
VPC/vDC
OS
App
CSR 1000v
OS
App
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Virtual Network Interfaces
• Max vNICs per Hypervisor
• E1000, VMXNET2, VMXNET3
• Sub-interface Available
Physical Hardware
Hypervisor
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Network Availability
vMotion
Physical Hardware (A)
Hypervisor
Physical Hardware (B)
Hypervisor
Physical Hardware (C)
Hypervisor
OS
App
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Network Availability
HSRP
Physical Hardware (A)
Hypervisor
Physical Hardware (B)
Hypervisor
Physical Hardware (C)
Hypervisor
OS
App
HSRP
Virtual IP (10.10.10.3)
CSR(config)# interface GIGE 1
CSR(config-if)# standby 1 ip 10.10.10.3
CSR(config-if)# standby 1 preempt
CSR(config-if)# standby 1 priority 110
CSR(config-if)# standby timers [msec]… 10.10.10.1 10.10.10.2
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Copy & Clone
• Running
‒ Snapshot of Physical and Virtual
Environment
‒ Major changes detected in Physical
Environment
• Restricted
‒ High variance detected in Virtual Finger
• Invalid
‒ System switched to Evaluation Mode
‒ Regeneration of vUDI
Physical Hardware
Hypervisor
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Use-case and Deployment Models
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
CSR 1000v Deployment in External Cloud
Single Tenant WAN Gateway for Shared Infrastructure Environments
DC
ASR
CSR 1000v
Branch
ISR
Enterprise A
Branch
ISR
Tenant A WAN
Router
Distribution and ToR Switches
Servers CSR 1000v
Physical Infrastructure
Virtual Infrastructure
Cloud Provider Data Center Flexible
Hardware independent
Virtual Ethernet ports
Programmable
RESTful API
Configuration
Reporting
Elastic
Grow capacity
Clone instances
MPLS
Internet
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Use Case: Secure VPN Gateway
Scalable, Dynamic, and Consistent Connectivity to External Cloud
CSR 1000v
Branch
ISR
WAN Router
Distribution and ToR Switches
Servers
DC
ASR
CSR 1000v
Cloud Provider Data Center
Branch
ISR
Challenges
Inconsistent security
High network latency
Limited scalability
Solutions
IPSec VPN, DMVPN,
EZVPN, FlexVPN
Routing and addressing
Firewall, ACLs, AAA
Benefits
Direct, secure access
Scalable, reliable VPN
Operational simplicity
Internet
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Use Case: Data Center to Cloud IP Mobility
Simplified Application Deployment to External Cloud
CSR 1000v
WAN Router
Distribution and ToR Switches
Servers
DC
ASR
CSR 1000v
Cloud Provider Data Center
L2oWAN tunnel
LISP protocol
Challenges
Simple, fast, transparent
application onboarding
Consistency with DC
network features
Solutions
LISP for VM Mobility
Dynamic routing
EoMPLS, OTV
Benefits
Simpler app integration
Dynamic infrastructure
Consistent management
WAN
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Use Case: Traffic Control and Management
Comprehensive Networking Services Gateway in External Cloud
CSR 1000v
WAN Router
Distribution and ToR Switches
Servers
CSR 1000v
Cloud Provider Data Center
Optimized TCP connection
Challenges
Response time of apps
Application prioritization
Connectivity resiliency
Solutions
AppNav for WAAS
QoS prioritization
HSRP VPN resiliency
Benefits
Rich portfolio of network
features and services
Single point of control
vWAAS
HSRP
Branch
ISR
WAAS
Branch
ISR
WAAS
DC
ASR
WAAS
WAN
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Management & Performance
30
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
CSR 1000v Management
Familiar Management Tools and API Support
Self-Managed Environment Automated Environment
Cisco Prime
Cisco IOS CE CLI and SNMP
3rd Party Network Management
Cisco CSR 1000v RESTful API
VMware vCenter Server VMware vSphere Management API
VMware vCloud Director VMware vCloud API Multi-tenant Environment
Hypervisor
CSR 1000v
Additional multi-tenant management options from Cisco will be available in the future
Additional hypervisors and their management options will be available in the future
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
vCenter & vCloud Director Deployment
• OVA Provisioning using vCenter &
vCloud Director
• End User License Agreement
Support
• Support for populating CSR
attributes
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Automated CSR Provisioning
CSR ISO
hostname anurag
interface GigabitEthernet1
ip address 10.1.1.1 255.255.255.0
no shut
interface GigabitEthernet2
ip address 10.1.2.1 255.255.255.0
no shut
IOS CLIs
BDEO Tool
Physical Hardware
Hypervisor
CSR 1000v
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
BDEO Tool
• VMware vCenter / vSphere Connection Details
• Virtual Container Creation
‒ CPU
‒ Memory
‒ Disk
‒ Network Interface & Mapping
‒ Product Description, Vendor Name and URL
• Path of CSR ISO image
• Path of IOS configuration (optional)
• Power ON VM (optional)
bdeo -i /CSR.iso -n VM -deploy '10.2.2.1/DC1/host/10.3.2.1' -u Adm -pw ABC -store ‘DS2' -b CFG.txt
34
<ProductSection ovf:class="ultra">
<Info>Information about the installed software</Info>
<Product>Cisco CSR 1000 Cloud Services Router</Product>
<Vendor>Cisco Systems</Vendor>
<Version>1</Version>
<VendorUrl>http://www.cisco.com</VendorUrl>
<!--VAPP ADDITION-->
<Property ovf:key="nvram_0003" ovf:type="string" ovf:userConfigurable="true" ovf:value="hostname anurag">
<Label>IOS_CLI_1</Label>
<Description>IOS CLI</Description>
</Property>
<Property ovf:key="nvram_0004" ovf:type="string" ovf:userConfigurable="true" ovf:value="interface GigabitEthernet1">
<Label>IOS_CLI_2</Label>
<Description>IOS CLI</Description>
</Property>
<Property ovf:key="nvram_0005" ovf:type="string" ovf:userConfigurable="true" ovf:value="ip address 10.1.1.1 255.255.255.0">
<Label>IOS_CLI_3</Label>
<Description>IOS CLI</Description>
</Property>
<Property ovf:key="nvram_0006" ovf:type="string" ovf:userConfigurable="true" ovf:value="no shut">
<Label>IOS_CLI_4</Label>
<Description>IOS CLI</Description>
</Property>
</ProductSection>
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
REST API
• Designed specifically for Cloud Based Deployment scenarios
• Transport mode http & https
• Response type json
• Two fundamental methods GET & POST
POST /license/evaluation
Content-Type: application/x-www-form-urlencoded
Accept: application/json
201 Created
Location: http://host/v1/lss/license/evaluation
Content-Type: application/json
{
“features”: [
{
“featureName”: “csr”,
“licenseType”: “evaluation”,
“startDate” : “{string}”
}
]
}
GET /license/UDI
Accept: application/json
200 Ok
Content-Type: application/json
{
“link: “/license/UDI”,
“UDI”: “ACRPSJAE9486R”
}
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
CSR 1000v Price/Performance Comparison
Providing Flexibility, Elasticity, and Programmability for Cloud Environments
Performance
Pri
ce
DC/Campus Edge Performance and scale
Reliability and availability
Multi-tenant services Branch Office Rich feature set
Minimal footprint
Reliable hardware
IaaS Cloud Flexible deployment
Elastic performance
Programmability with hypervisor and server
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Performance
64B 76B 128B 256B IMIX 512B 1024B 1518B
67 86 155
338
438
658
1173
885
CEF
Packet sizes from 64 bytes to 1518 bytes
438 Mbps @ IMIX traffic flow
Peak Performance of 1.173 Gbps
Mb
ps
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Performance
64BIMIX
1418B
24
178
457
21 53 68
AES 3DES
IPSec
Packet sizes from 64 bytes to 1418 bytes
178 Mbps @ IMIX traffic flow (AES)
53 Mbps @ IMIX traffic flow (3DES)
Peak Performance of 457 Mbps @ 1418 bytes
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Hypervisor
Cisco Networking and Security Solution for External Cloud
WAN Router
Distribution & ToR Switch
Servers
ASA 1000v CSR
1000v
Department B
VSG
Nexus 1000v
vPath
Nexus 1000v
Distributed switch
LAN connectivity
CSR 1000v
WAN gateway
Routing and VPN
ASA 1000v
Edge firewall
WAN-to-LAN traffic
VSG
Inter-VM firewall
Intra-LAN traffic
Physical Infrastructure
Virtual Infrastructure
vWAAS
vWAAS
WAN optimization
Application traffic
VSG
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Summary
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Summary
• Cisco IOS XE software in Virtual Form Factor
• Secure connectivity, network consistency and traffic control benefits
• Extends enterprise network to IaaS in externally hosted cloud
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
More Information
Customer resources:
http://www.cisco.com/go/cloudrouter/
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public
Call to Action
• Visit the Cisco Campus at the World of Solutions to experience Cisco innovations in action
• Get hands-on experience attending one of the Walk-in Labs
• Schedule face to face meeting with one of Cisco’s engineers
at the Meet the Engineer center
• Discuss your project’s challenges at the Technical Solutions Clinics
43
© 2013 Cisco and/or its affiliates. All rights reserved. BRKVIR-2016 Cisco Public 44