hope, fear, and the data center time machine
TRANSCRIPT
The path to agility in an app-centric world
Hope, Fear, and the Data Center Time Machine…
Wes Toman | Systems Engineer
December, 2016
* Cisco Global IT Impact Survey
Applications Are Changing
Type
Consumption
Delivery
78% The network is even more critical to
delivering applications than a year ago*
Big Data,
Distributed
Apps, Mobile
Cloud–public,
Private,
Hybrid
Anywhere,
Anytime, Any
Device
Cost and Complexity UP
Growth in Apps and Infrastructure drivingDatacenters to become very complex
Private Clouds
Datacenters
Public Clouds
How is the industry solving the problem?
Application
Policy
VisibilitySDN
Programmability
APIs
Automation
MobilityAgility
Orchestration
Cloud
Cisco’s Vision
1
2
3
Security Everywhere9
Analytics Everywhere10
8 Policy Everywhere
Policy-Driven Integrated Infrastructure Answers Customers’ Request
1
Modernize Infrastructure:
Open and Programmable
Network / L4-7
Compute
Storage
Security
Data Center
5
Move Data and
Workloads Securely
6
Self-Service Portal
(IT as a Service)
7
Extend Policy
Model
2
Automate
and Simplify
POLICY
3
Build Your
Hybrid Cloud
Private Cloud Stack
Integrated Infrastructure
4
Choose any
Other Cloud
Managed
Public
Private
IT as a Service IaaS | PaaS | SaaS | XaaS
Flexible Consumption Models
Foundational Challenges SimplificationDrive Agility & Automation
Optimize Operations > TCOOpen & Programmable
Security to Meet ComplianceSegment with Multi-tenancy
Elastic ModelDevelop Hybrid Cloud Model
Policy Driven Automation for a Cloud Model
Foundation
Orchestration
Self Service
ACI
Solves
Storage
Compute
PaaS
Enhancing Bi-Modal IT with ACI and UCS
Tenant 1 = Mode 1 Tenant 2 = Mode 2
Common Infrastructure, and Management With Secure, Stable Separation
Manufacturing IT
Department
Recently Acquired
Company
Marketing
Department
Enhancing Bi-Modal IT with ACI and CliQr
ACI, UCS, UCSD = Mode 1 Public Cloud = Mode 2
Stability With on Premises Model 1. Agility with Public Model 2.
Manufacturing IT Department Recent Acquired Company
Marketing Department
Bare Metal, Virtualized and
Containers
VM Density and
Converged/Hyperconverged Storage10/25/40/50/100G Ethernet Transition
Hybrid-CloudOver 54% Enterprises Moving to Hybrid Cloud
Big Data and Analytics:
Foundational for Next Gen DC25% CAGR IP Traffic Growth1
1. Cisco Global Cloud Index Forecast (2013-2017)
Open Choice for SDN and Network Automation
Large Social
Networking Service
Programmable Network
Cisco ACI
Programmable FabricProgrammable Network
“Do It Yourself”
Modern NX-OS with enhanced NX-APIs
Automation ecosystem
Common NX-API across N2K-N9K
Cisco ACI
Policy Automation
Embedded security, centralized management,
and scale
Broad and deep ecosystem
Programmable Fabric
Open Scalability
VxLAN-BGP EVPN network virtualization
3rd party controller support
Application Centric Infrastructure
Service Profile
Network Policy
Storage Policy
Compute Policy
SIM Cards and Application Profiles
SIM Card
Identity for a Phone
Service Profile
Identity for Compute
Application Profile
Identity for the Network
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Application Centric Infrastructure
•
•
•
•
•
Is a network fabric for datacenters.• Leaf/Spine Topology
Uses VXLAN and Tunnel Endpoints asan underlay
All configuration is done from acontrollerand pushed to the network switches
Control plane and data place areseparate
APICs form a cluster for distributedcomputing
8BRKACI-2008
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public 10BRKACI-2008
L/B
EPGAPP EPG DB
F/W
EPG WEB
Application Network Profile
LegacyNetwork
Fabric Policies
Access Policies
Tenant Policies
Application Centric Infrastructure
Our Vision for ACI: Scale, Security and Full Visibility
Physical Networking
Compute L4–L7Services
StorageHypervisors and Virtual Networking
Multi DC WAN and Cloud
Enabled By Physical and Virtual Integration
Tenant Application
Health Score
Latency
Drop Count
Visibility
78%
5 Microsecond(s)
25 Packets Dropped
16 VMs
8 Physical
Application Delivery
Controller
Firewall
Health Score
Latency
Drop Count
Visibility
96%
2 Microsecond(s)
0 Packets Dropped
16 VMs
8 Physical
Application Delivery
Controller
Firewall
ACI SecurityWith Focus on Simplification, Multi-Tenancy and Scalability
Automated
Audit, Detect,
Mitigate
Policy–
Physical and
Multi-Cloud
Stateless Firewall
and Micro
Segmentation*
* State-full with Cisco
AVS
Integrated in ACI Investment Protection
Validated for Deployment in PCI Compliant Networks
Matt Chamley
“ACI became the new construct that not only provided a simplified environment where we can drop our firewalls down to 16 and take 5M+ firewall rules down to thousands...It also gave us the ability, through policies and automation, to significantly reduce our costs.”
Hybrid Cloud Orchestration
CliQr CloudCenter:Any App, Any Cloud, One Platform
Private Clouds
Datacenters
Public Clouds
Model
Manage
Deploy
Profile
NFS
Working Together: End-to-End Orchestration
Business (ITSM)Prime Service Catalog, ServiceNow, Custom
Development (DevOps)CliQr, Jenkins
Application-Centric Lifecycle Management
Model Benchmark Deploy Manage
Application Profiles
UCS
DirectorACI
Nexus
SwitchingStorageUCS
Datacenter Private Cloud Public CloudProfileProfile
Hyper-V
Cisco Tetration Analytics™
Tetration: Real-Time Analytics
Long-term Forensics
and AuditingApplicationDependency Mapping
Automated Whitelist Policy Generation
Policy Compliance and Auditability
Policy Simulation and Impact Assessment
Forensics (example: flow search and flow anomaly)
Real-time analytics:
<= 10 Minute Actionable Insight
Pervasive Sensors:
Network and Host
NX-OS
Automate the Migration to ACI or CliQr
App Level Policy
Enforcement / Visibility
Self-documenting Network
Real-time Change
Notification
Real
Time
DataNetwork
Policy
App Policy
Tetration
Major Healthcare Corporation
“Tetration Analytics revolutionizes how we could start doing our data center management across every domain: fault, performance, configuration, change management, predictive analytics. This is visibility we have never had before.”
Business Cases
Greater
Business Agility
Lower Capital
Expenses
Reduced Costs/
Complexity
Lower
Operating Cost
Resource
Optimization
Cisco on Cisco
58% 25% 21% 45% 10–20%Reduce Network
Provisioning
CAPEX
Reduction
Reduce
Management CostsReduce Power and
Cooling Costs
Compute and Storage
Optimization
368% ROI441% ROI 513% ROI
$145M In Business Benefits
11 Month Payback
87% Faster Application
Development Cycle
83% More Efficient
Network Operations
40x Improvement in Bandwidth
$7.8M In Discounted
Business Benefits
6.4 Month Payback
85% Reduction in Staff Time
for Provisioning
75% Reduction in Staff Time
for Hybrid Deployment
0 Unplanned Downtime Since
Deployment
$3.73M In Discounted
Business Benefits
9 Month Payback
90% Less Staff Time
to Provision Hosted Svcs.
29% More Efficient
Network Operations
Supports Growth of New Cloud-
Based Hosted PBX Svc.
Five Year Cumulative Benefits–IDC ROI Spotlight
Cisco Cloudcenter
Application
Centric
Infrastructure