The path to agility in an app-centric world

Hope, Fear, and the Data Center Time Machine…

Wes Toman | Systems Engineer

wetoman@cisco.com

December, 2016

* Cisco Global IT Impact Survey

Applications Are Changing

Type

Consumption

Delivery

78% The network is even more critical to

delivering applications than a year ago*

Big Data,

Distributed

Apps, Mobile

Cloud–public,

Private,

Hybrid

Anywhere,

Anytime, Any

Device

Cost and Complexity UP

Growth in Apps and Infrastructure drivingDatacenters to become very complex

Private Clouds

Datacenters

Public Clouds

How is the industry solving the problem?

Application

Policy

VisibilitySDN

Programmability

APIs

Automation

MobilityAgility

Orchestration

Cloud

Cisco’s Vision

1

2

3

Security Everywhere9

Analytics Everywhere10

8 Policy Everywhere

Policy-Driven Integrated Infrastructure Answers Customers’ Request

1

Modernize Infrastructure:

Open and Programmable

Network / L4-7

Compute

Storage

Security

Data Center

5

Move Data and

Workloads Securely

6

Self-Service Portal

(IT as a Service)

7

Extend Policy

Model

2

Automate

and Simplify

POLICY

3

Build Your

Hybrid Cloud

Private Cloud Stack

Integrated Infrastructure

4

Choose any

Other Cloud

Managed

Public

Private

IT as a Service IaaS | PaaS | SaaS | XaaS

Flexible Consumption Models

Foundational Challenges SimplificationDrive Agility & Automation

Optimize Operations > TCOOpen & Programmable

Security to Meet ComplianceSegment with Multi-tenancy

Elastic ModelDevelop Hybrid Cloud Model

Policy Driven Automation for a Cloud Model

Foundation

Orchestration

Self Service

ACI

Solves

Storage

Compute

PaaS

Enhancing Bi-Modal IT with ACI and UCS

Tenant 1 = Mode 1 Tenant 2 = Mode 2

Common Infrastructure, and Management With Secure, Stable Separation

Manufacturing IT

Department

Recently Acquired

Company

Marketing

Department

Enhancing Bi-Modal IT with ACI and CliQr

ACI, UCS, UCSD = Mode 1 Public Cloud = Mode 2

Stability With on Premises Model 1. Agility with Public Model 2.

Manufacturing IT Department Recent Acquired Company

Marketing Department

Bare Metal, Virtualized and

Containers

VM Density and

Converged/Hyperconverged Storage10/25/40/50/100G Ethernet Transition

Hybrid-CloudOver 54% Enterprises Moving to Hybrid Cloud

Big Data and Analytics:

Foundational for Next Gen DC25% CAGR IP Traffic Growth1

1. Cisco Global Cloud Index Forecast (2013-2017)

Open Choice for SDN and Network Automation

Large Social

Networking Service

Programmable Network

Cisco ACI

Programmable FabricProgrammable Network

“Do It Yourself”

Modern NX-OS with enhanced NX-APIs

Automation ecosystem

Common NX-API across N2K-N9K

Cisco ACI

Policy Automation

Embedded security, centralized management,

and scale

Broad and deep ecosystem

Programmable Fabric

Open Scalability

VxLAN-BGP EVPN network virtualization

3rd party controller support

Application Centric Infrastructure

Service Profile

Network Policy

Storage Policy

Compute Policy

SIM Cards and Application Profiles

SIM Card

Identity for a Phone

Service Profile

Identity for Compute

Application Profile

Identity for the Network

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public

Application Centric Infrastructure

•

•

•

•

•

Is a network fabric for datacenters.• Leaf/Spine Topology

Uses VXLAN and Tunnel Endpoints asan underlay

All configuration is done from acontrollerand pushed to the network switches

Control plane and data place areseparate

APICs form a cluster for distributedcomputing

8BRKACI-2008

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public 10BRKACI-2008

L/B

EPGAPP EPG DB

F/W

EPG WEB

Application Network Profile

LegacyNetwork

Fabric Policies

Access Policies

Tenant Policies

Application Centric Infrastructure

Our Vision for ACI: Scale, Security and Full Visibility

Physical Networking

Compute L4–L7Services

StorageHypervisors and Virtual Networking

Multi DC WAN and Cloud

Enabled By Physical and Virtual Integration

Tenant Application

Health Score

Latency

Drop Count

Visibility

78%

5 Microsecond(s)

25 Packets Dropped

16 VMs

8 Physical

Application Delivery

Controller

Firewall

Health Score

Latency

Drop Count

Visibility

96%

2 Microsecond(s)

0 Packets Dropped

16 VMs

8 Physical

Application Delivery

Controller

Firewall

ACI SecurityWith Focus on Simplification, Multi-Tenancy and Scalability

Automated

Audit, Detect,

Mitigate

Policy–

Physical and

Multi-Cloud

Stateless Firewall

and Micro

Segmentation*

* State-full with Cisco

AVS

Integrated in ACI Investment Protection

Validated for Deployment in PCI Compliant Networks

Matt Chamley

“ACI became the new construct that not only provided a simplified environment where we can drop our firewalls down to 16 and take 5M+ firewall rules down to thousands...It also gave us the ability, through policies and automation, to significantly reduce our costs.”

Hybrid Cloud Orchestration

CliQr CloudCenter:Any App, Any Cloud, One Platform

Private Clouds

Datacenters

Public Clouds

Model

Manage

Deploy

Profile

NFS

Working Together: End-to-End Orchestration

Business (ITSM)Prime Service Catalog, ServiceNow, Custom

Development (DevOps)CliQr, Jenkins

Application-Centric Lifecycle Management

Model Benchmark Deploy Manage

Application Profiles

UCS

DirectorACI

Nexus

SwitchingStorageUCS

Datacenter Private Cloud Public CloudProfileProfile

Hyper-V

Cisco Tetration Analytics™

Tetration: Real-Time Analytics

Long-term Forensics

and AuditingApplicationDependency Mapping

Automated Whitelist Policy Generation

Policy Compliance and Auditability

Policy Simulation and Impact Assessment

Forensics (example: flow search and flow anomaly)

Real-time analytics:

<= 10 Minute Actionable Insight

Pervasive Sensors:

Network and Host

NX-OS

Automate the Migration to ACI or CliQr

App Level Policy

Enforcement / Visibility

Self-documenting Network

Real-time Change

Notification

Real

Time

DataNetwork

Policy

App Policy

Tetration

Major Healthcare Corporation

“Tetration Analytics revolutionizes how we could start doing our data center management across every domain: fault, performance, configuration, change management, predictive analytics. This is visibility we have never had before.”

Business Cases

Greater

Business Agility

Lower Capital

Expenses

Reduced Costs/

Complexity

Lower

Operating Cost

Resource

Optimization

Cisco on Cisco

58% 25% 21% 45% 10–20%Reduce Network

Provisioning

CAPEX

Reduction

Reduce

Management CostsReduce Power and

Cooling Costs

Compute and Storage

Optimization

368% ROI441% ROI 513% ROI

$145M In Business Benefits

11 Month Payback

87% Faster Application

Development Cycle

83% More Efficient

Network Operations

40x Improvement in Bandwidth

$7.8M In Discounted

Business Benefits

6.4 Month Payback

85% Reduction in Staff Time

for Provisioning

75% Reduction in Staff Time

for Hybrid Deployment

0 Unplanned Downtime Since

Deployment

$3.73M In Discounted

Business Benefits

9 Month Payback

90% Less Staff Time

to Provision Hosted Svcs.

29% More Efficient

Network Operations

Supports Growth of New Cloud-

Based Hosted PBX Svc.

Five Year Cumulative Benefits–IDC ROI Spotlight

Cisco Cloudcenter

Application

Centric

Infrastructure