Cisco Public 1© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Borderless Networks architektúra pre budovanieinteligentných sietí budúcnosti
Tomáš Kelemen
Partner Systems Engineer
CCIE #24395
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 2
22
Introduction to Borderless Networks
BN Services
Infrastructure update
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 3
33
Introduction to Borderless Networks
BN Services
Infrastructure update
Cisco Public 4© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Core technologies
WirelessRouting Switching Security WAAS
Borderless Networks
CollaborationData Center and
Virtualization
Cisco ArchitectureCisco Architecture Cisco Architecture
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 5
Blurring the Borders:
Consumer ↔ Workforce Employee ↔ PartnerPhysical ↔ Virtual
MobilityWorkplaceExperience
Video
1.3 Billion New Networked Mobile Devices in theNext Three Years
Changing Way We WorkVideo projected to quadruple IP traffic by 2014 to 767 exabytes*
Mobile Devices
IT Resources
Anyone, Anything, Anywhere, Anytime
Cisco Public 6© 2010 Cisco and/or its affiliates. All rights reserved.
IT Consumerization
Device Border
Mobile Worker
Location Border
Video/Cloud
IaaS,SaaS
Application Border
External-FacingApps Internal
Apps
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 7
Borderless Experience
ANYONE ANY DEVICE
ANYTIMEANYWHERE
Securely Reliably Seamlessly
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 8
88
Introduction to Borderless Networks
BN Services
Infrastructure update
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 9
Borderless Network Services
PROFESSIONAL SERVICES: Realize the Value of Borderless Networks Faster
Architecture for Agile Delivery of the Borderless Experience
Securely, Reliably, Seamlessly: AnyConnect
Borderless Policy,
Management and Smart Services
Infrastructure
Switching
Wireless
WAAS
Routing
Security
Mobility WorkplaceExperience
Video
Borderless End-Point/User Services
Green:EnergyWise
App. Performance:App Velocity
Voice/Video: Medianet
Security:TrustSec
Mobility:Motion
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 10
Borderless Network Services
PROFESSIONAL SERVICES: Realize the Value of Borderless Networks Faster
Architecture for Agile Delivery of the Borderless Experience
Securely, Reliably, Seamlessly: AnyConnect
Borderless Policy,
Management and Smart Services
Infrastructure
Switching
Wireless
WAAS
Routing
Security
Mobility WorkplaceExperience
Video
Borderless End-Point/User Services
Green:EnergyWise
App. Performance:App Velocity
Voice/Video: Medianet
Security:TrustSec
Mobility:Motion
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 11
IT Consumerization: Now a Reality
ORGANIZATION
TIME
Smartphone adoption is growing
at 50%+ annually*
80 of world’s top 100 Companies
are using iPads **
Source: * IDC, **Apple Inc, Quarterly Financial Report
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 12
Integrates with the Wired Network to Ensure Performance, Preserve Investment and Decrease Complexity
Flexible Architecture that Meets Business Network Requirements
Common Management Solution that Scales Across Regions
Unified Client Solution that Simplifies Device Security and Management
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 13
Security
Location
Guest Access
Voice
Wi-Fi Enabled Voice with Better
Coverage, Reduced Cost and
Integrated with IP-PBX
Provide Access to Partners,
Customers and Vendors
Decrease Costs and Increased
Visibility with RF Location and
Asset Tracking
Rogue Apps—Employees Create
Opening to Enterprise Network
Unknowingly = FTC FINES
Hacker
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 14
Standalone
• Small / independent sites
• Low-cost entry point
• Simple upgrade path to controller-based
Centralized control
Large scalability
Mid-to-large enterprises
Controller Based
Data VLAN
Voice VLANLWAPP
/CAPWAP
Tunnel
Data VLAN
Voice VLAN
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 15
PERFORMANCEAIR QUALITY PERFORMANCE AIR QUALITY
Wireless Interference Decreases 802.11n Performance
CleanAir Detects and Mitigates Interference for Performance Protection
CleanAir delivers a full Spectrum Analyzer in the radio chipset of the access point
100% accuracy in detection and classification of ANY interference event
Simultaneous interference mitigation without performance degradation for production traffic
Solution Description
Delivered 64x the granularity of interference information compared to alternative solutions
Reduced IT troubleshooting and administration with proactive interference detection and mitigation
Improved network security for compliance
Customer Benefits
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 16
Industry-Proven Devices at Every LayerReliable
Hardware
RAPMAP
SSG
Wireless Control
System (WCS)
Back Office
Systems
Wireless LAN
Controller
Root Access
Point
Mesh Access
Point
Wireless Control
System (WCS)
Bandwidth Monitoring and Management
Policy Definitions
Subscriber Database Management
Billing and OSS Systems
Wireless Mesh Management System enables network-wide policy configuration and device management
SNMPv3, Syslog, IPSec, AAA, etc.
Handles RF algorithms and optimization
Seamless L3 Mobility
Security and Mobility control
Image Management
Serves as “Root” AP to the wired network
Typically located on roof-tops or towers
Connects up to 35 Mesh APs using 802.11a
802.11b/g client access
Connects to Root AP via 802.11a
AC/DC power; PoE capable
Ethernet port for connecting peripheral devices
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 17
Borderless Network Services
PROFESSIONAL SERVICES: Realize the Value of Borderless Networks Faster
Architecture for Agile Delivery of the Borderless Experience
Securely, Reliably, Seamlessly: AnyConnect
Borderless Policy,
Management and Smart Services
Infrastructure
Switching
Wireless
WAAS
Routing
Security
Mobility WorkplaceExperience
Video
Borderless End-Point/User Services
Green:EnergyWise
App. Performance:App Velocity
Voice/Video: Medianet
Security:TrustSec
Mobility:Motion
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 18
Environmental
Reduce greenhouse gas emissions
Increase sustainability
Reduce Costs
Reduce energy consumption and cost
Measure Return on Investment
Compliance
Comply with government directivesCap and Trade
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 19
• 50% of energy is consumed by buildings
• A typical commercial building’s IT assets consume 25% of total power usage
• 55% of IT’s power consumption occurs outside the data center
IT Equipment
25%
Heating, Coolingand Ventilation
58%
Lighting
11% Other
6%
Source: UK Energy Efficiency Best Practice Program; Energy Consumption Guide 19: Energy Use in Offices
Source: Forrester, Enterprise And SMB Hardware
Survey, North America And Europe, Q3 2010
IT Electricity
Use Outside the
Data Center
55%
Data Center
Electricity Use
45%
Cisco Public 20© 2010 Cisco and/or its affiliates. All rights reserved.
Innovative software added onto Cisco Catalyst switching portfolio
Available to customers for download now or with technology refresh
Enables reduction of GhG emissions – impacting other 98%
Drives significant cost savings
Network intelligence monitors, reports and reduces energy usage across entire infrastructure
Open technology for greater partnering
Collaborative Cross-Industry Effort
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 21
The Network Isthe Platform
Building Services and TechnologiesNon-IP
Tenant Services and TechnologiesIP Based
High-Speed Internet Lighting
Wireless Elevators
VPN 24/7 Monitoring
IP Telephony HVAC Sensors
Audio & Video Conferencing Fire
Visitor Management Video Surveillance
Interactive Media Access
Digital Signage Energy
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 22
NetworkNetworkNetworkNetwork
Video
Voice
Network
KNOWS
Whenthe
You Save
ENERGY
Always
Available
Always
On≠
Energy Control
Data
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 23
3rd Party App’s
Orchestrator
LMS
IP enabled Devices
Cisco Integrated Services
Routers G2
NEW!
Cisco Catalyst 3750-X &
Cisco Catalyst 3560-X
NEW!
EnergyWiseManagement Applications
Cisco Catalyst 3560-E &
Cisco Catalyst 3560
Cisco Catalyst 3750-E &
Cisco Catalyst 3750
EtherSwitch Modules
Cisco Catalyst 4500
Additional
Platforms
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 24
EnergyWise Toolkit SDK
EnergyWise Toolkit Management API
Cat 2K (now)
Cat 3K(now)
Cat 4K(now)
Cat 6K(now)
ISR G2(now)
CiscoWorks LMS (Now)
Orchestrator (Now)
SolarWinds
(Now)Joulex
(CY2011)
IBM Tivoli
(Now)
IP Ethernet Building Devices
CDN Partners Supporting SDK (CY 11 onwards)
Building Protocols and non-Ethernet connectors
Legacy Building Devices
Cisco Mediator (CY11)
JCI Metasys (TBD)
Schneider Gateway (TBD)
Protocol Translators / Gateways
Honeywell Tridium (TBD)
BMS
Campus IT Devices
IP Phones (May, 2011)
Orchestrator PC Clients
(now)
Wireless APs & Controllers (Aug, 2011)
PoE on/off (now)
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 25
Catalyst 4500 & 4900Catalyst 3560-E & 3560
including Compact Switches
Catalyst 2900 including
Compact Switches
Integrated Services Routers
ISR G2Catalyst 2960-S Catalyst 3750-X & 3560-X
Catalyst 6500Catalyst 3750-E & 3750
Cisco Public 26© 2010 Cisco and/or its affiliates. All rights reserved.
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 27
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 28
• Room setting customized for frequent guest
Phones power upWireless coverage assuredRoom temperature set Lights on
Room Power Up
Identify Room Phones, AP, Building HVAC, Lights
Policy Added and Distributed to Network
EnergyWise Notified Guest Arrives
Guest Services
EnergyWiseManagementApplication
Call Manager
70 degreeF
Micro-Gen
Building Software
Wireless Control
Cisco Public 29© 2010 Cisco and/or its affiliates. All rights reserved.
Building utility management and power distribution
Monitoring and managing PC
energy use
Monitoring and reporting network energy use
Lighting
HVAC
Elevators
Security:Access Control
CCTV
IntruderAlert
PowerDistribution
Building Management
Systems
IT Power Management
Management Applications
PC
Printer
BadgeReader
Scanner
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 30
Borderless Network Services
PROFESSIONAL SERVICES: Realize the Value of Borderless Networks Faster
Architecture for Agile Delivery of the Borderless Experience
Securely, Reliably, Seamlessly: AnyConnect
Borderless Policy,
Management and Smart Services
Infrastructure
Switching
Wireless
WAAS
Routing
Security
Mobility WorkplaceExperience
Video
Borderless End-Point/User Services
Green:EnergyWise
App. Performance:App Velocity
Voice/Video: Medianet
Security:TrustSec
Mobility:Motion
Cisco Public 31© 2010 Cisco and/or its affiliates. All rights reserved.
Comprehensive Security, Flexible Delivery
Cisco Security
Intelligence
Operations
Centralized
Management
Cisco AnyConnect
VPN Client
ASA 5500ISR
ASA 5500IPS 4200Cisco IronPort
S-Series
Cisco IronPort
C-Series
ASA 5500IPS 4200FWSM
Network
Admission Control
Branch Office
Teleworker
Data Center / Campus
Corporate HQ
Clientless Network
Access
Cisco IronPort
S-Series
Network LevelApplication Level
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 32
Most Accurate Protection Against a Broad Range of Threats
Cisco Threat
Operations Center
Global Threat Telemetry
Dynamic Updates and
Actionable Intelligence
Adaptive Security
Appliances
Intrusion Prevention
Solution
Email Security
Appliances
Web Security
Appliances
wwwwww
Global Threat Telemetry
System
Administrators
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 33
Global ThreatCorrelation
Global ThreatCorrelation
8:03 GMT: Detects New Website with Embedded Code
Bank Branch
in Chicago
Ad Agency HQ
in LondonISP Datacenter
in Moscow
8:00 GMT: Detects New Spam Outbreak
8:07 GMT: Detects New Trojan
8:10 GMT
All Cisco Customers Protected
Higher Threat Coverage, Greater Accuracy, Proactive Protection
Backed by 500+ Experts
Analyzing Threat Information
Over 1M Cisco Devices Send
and Receive Dynamic Updates
Firewall/IPS – Cisco Security Intelligence Operations
Cisco Public 34© 2010 Cisco and/or its affiliates. All rights reserved.
Traditional borders are blurred. Access is possible from anywhere
Security Challenges
Where?
Enforce compliance for proliferating consumer and network capable purpose-built devices
What?
Who? Identify users and provide differentiated access in a dynamic, borderless environment
Establish, monitor, and enforce consistent global access policies
How?
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 35
Endpoints
Introducing Identity Services Engine (ISE) and TrustSec 2.0
Policy RulesProfilingAuthentication Posture
Troubleshooting
Monitoring
Network Enforcement
TrustSec Planning and Design Service
Cisco Public 36© 2010 Cisco and/or its affiliates. All rights reserved.
• New User Interface for
Windows 7 and Vista (x86 and x64)
Windows XP (x86)
Windows 2003 Server (x86)
Network Access Manager
• Enhanced UI for other platforms to follow
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 37
Borderless Network Services
PROFESSIONAL SERVICES: Realize the Value of Borderless Networks Faster
Architecture for Agile Delivery of the Borderless Experience
Securely, Reliably, Seamlessly: AnyConnect
Borderless Policy,
Management and Smart Services
Infrastructure
Switching
Wireless
WAAS
Routing
Security
Mobility WorkplaceExperience
Video
Borderless End-Point/User Services
Green:EnergyWise
App. Performance:App Velocity
Voice/Video: Medianet
Security:TrustSec
Mobility:Motion
Cisco Public 38© 2010 Cisco and/or its affiliates. All rights reserved.
Category Applications 2X 5X 10X 25X 50X 100X+
File Sharing CIFSNFS
Email Microsoft ExchangeLotus NotesInternet Mail
Web andCollaboration
HTTPWebDAVFTPMicrosoft Sharepoint
Software Distribution
Microsoft SMSAltirisHP Radia
EnterpriseApplications
Microsoft SQLOracle, SAPLotus Notes
BackupApplications
Microsoft NTBackupLegato NetworkerVeritas NetbackupCommVault Galaxy
Data ReplicationEMC SRDF/AEMC IP ReplicatorNetApp SnapMirrorData DomainDouble -TakeVeritas Vol Replicator
2-20X Avg >100X Peak
2-5X Avg 20X Peak
2-10X Avg 100X Peak
2-20X Avg >100X Peak
2-5X Avg 20X Peak
2-10X Avg 50X Peak
2-10X Avg 50X Peak
Category Applications 2X 5X 10X 25X 50X 100X+
File Sharing CIFSNFS
Email Microsoft ExchangeLotus NotesInternet Mail
Web andCollaboration
HTTPWebDAVFTPMicrosoft Sharepoint
Software Distribution
Microsoft SMSAltirisHP Radia
EnterpriseApplications
Microsoft SQLOracle, SAPLotus Notes
BackupApplications
Microsoft NTBackupLegato NetworkerVeritas NetbackupCommVault Galaxy
Data ReplicationEMC SRDF/AEMC IP ReplicatorNetApp SnapMirrorData DomainDouble -TakeVeritas Vol Replicator
2-20X Avg >100X Peak
2-5X Avg 20X Peak
2-10X Avg 100X Peak
2-20X Avg >100X Peak
2-5X Avg 20X Peak
2-10X Avg 50X Peak
2-10X Avg 50X Peak
Cisco Public 39© 2010 Cisco and/or its affiliates. All rights reserved.
Application
Acceleration
Branch IT
Consolidation
WAN Bandwidth
Optimization
Simplified Data
Protection
Branch Office
Regional
Office
WAAS
WAASWAAS
Large Campus
OR
Data Center
WAAS
Mobile
Server VPN VPN
WAAS
Mobile
Server
International
Mobile User
WAAS Mobile SW
over VPNWAAS Mobile SW
over VPN
Domestic
Mobile User
WAN
Internet
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 40
Borderless Network Services
PROFESSIONAL SERVICES: Realize the Value of Borderless Networks Faster
Architecture for Agile Delivery of the Borderless Experience
Securely, Reliably, Seamlessly: AnyConnect
Borderless Policy,
Management and Smart Services
Infrastructure
Switching
Wireless
WAAS
Routing
Security
Mobility WorkplaceExperience
Video
Borderless End-Point/User Services
Green:EnergyWise
App. Performance:App Velocity
Voice/Video: Medianet
Security:TrustSec
Mobility:Motion
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 41
Introducing: Medianet Enhancements, MXE, and Management
Quality of Experience
PlanningAuto
Configuration
Visibility and
MonitoringOptimization
Any to Any
Video Adaptation
Automation and rapid problem resolution in the network to deliver
application quality of experience, particularly video
Rapid
Problem Resolution
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 42
Endpoints / Users
Network Elements
Network
Management
Cisco Prime:
Collaboration Manager 1.0
LAN Management Solution 4.1
Network Analysis Module 5.1
Cisco Developer Network
Tools
Media Monitoring:• Performance monitor
• Mediatrace
• IPSLA VO
Auto Configuration:• Auto smart ports
Flow Metadata
Media Services Interface
Medianet Services
Media Services Proxy
Medianet Readiness Assessment Service
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 43
UNIFIED
MANAGEMENT
Best quality
of experience
Intelligence embedded in the network ensures
quality delivery of any multimedia application
Reduced
cost
and time
Save IT troubleshooting time and apply focused
investment to resolve application choke points
Scaling
applicationsEnable any-to-any video delivery with greater
speed and efficiency
AUTOMATED
VIDEO & VOICE
CENTRALIZED
POLICY
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 44
A remote expert joins a TelePresence session
between the VP of sales and the customer ad-hoc via TelePresence
Hmmm… Mediatrace identifies the
bottleneck to be between NY and London
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 45
Borderless Network Services
PROFESSIONAL SERVICES: Realize the Value of Borderless Networks Faster
Architecture for Agile Delivery of the Borderless Experience
Securely, Reliably, Seamlessly: AnyConnect
Borderless Policy,
Management and Smart Services
Infrastructure
Switching
Wireless
WAAS
Routing
Security
Mobility WorkplaceExperience
Video
Borderless End-Point/User Services
Green:EnergyWise
App. Performance:App Velocity
Voice/Video: Medianet
Security:TrustSec
Mobility:Motion
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 46
New Intelligent Secure Access Solutions
Bu
sin
ess C
on
tin
uity Entry-Level
to Cisco
Experience
Converged
Services
Intelligent
Services
Evolves
With Your
Business
Tailored to
Meet Business
Needs
New
New
New
New
New
Catalyst 2960-S
with LAN Lite
Catalyst 2960-S
with LAN Base
Catalyst 3K-X
with LAN Base
Catalyst 3K-X
with IP Base
Catalyst 3K-X
with IP Services
EnergyWise
TrustSec
Business Agility
Medianet
Cisco Public 47© 2010 Cisco and/or its affiliates. All rights reserved.
Generation 2P
erf
orm
an
ce
, S
ca
lab
ility
, A
va
ilab
ility
3925, 3945
Enhancing the Borderless Experience
Virtual Office
SecureMobility
SecureCollaboration
Scalable Rich-Media Services
2901, 2911, 2921, 2951
860, 880, 890
1941, 1941W
Customizable Applications
EnergyWise CollaborationMotion MedianetTrustSecApplication
Performance
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 48
Cisco Flex 7500 Series Cloud
Controller
• Centralized, scalable
WLAN controller
• Reduces WLAN
complexity in the branch
• Enables private cloud
mobility services
• Up to 2000 access
points across multiple
branches
Cisco ISR Web Security
with Cisco ScanSafe
• Enables web based
security for cloud
services
• Secure split tunnel to
avoid backhaul and
reduce latency
• Reduce on-premise
hardware footprint
• Zero-day threat
protection
Cisco ISR G2Integrated Video
Conferencing
• Quality video experience
in the branch
• Localized video
conferencing
• Saves bandwidth by
avoiding backhaul
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 49
• Feature richness of IOS, extensive 3G/4G Management Capabilities
• 3G/4G & WLAN, Dual SIM, SMS/GPS Support, Sync/Async, FE LAN
• Smaller footprint, Industrial Grade Components
• Extended Temperature: -20C up to + 60C
• Environmental Protection: 95% Humidity, IP 41 for Splash Water and Pollution 3 (Dust)
• Shock and Vibe: MIL-STD-810, EN-50155, SAEJ1455, & ENG3396
• Mounting Options: Din-Rail, Floor, Wall Mount
• Increased Pervasiveness of high bandwidth 3G/4G propelling push for connecting remote assets
• Rich Media Applications
Video Telephony
IP Telephony
Data Services
• Rapid deployments
Instant branch connectivity
Connectivity for nomadic sites
• Portable deployments
Kiosks, construction trailers, mobile banks & medical
• Reliable, resilient WAN Backup
Wired Network outages, Disaster recovery
Cisco Public 50© 2010 Cisco and/or its affiliates. All rights reserved.
Borderless Networks
CollaborationData Center and
Virtualization
Cisco ArchitectureCisco Architecture Cisco Architecture
Thank you.Thank you.