APPLICATION CENTRIC INFRASTRUCTURE - Cisco · Cisco Confidential 5 MODERN DATACENTER DEMANDS AGILE...

Cisco Confidential 1

APPLICATION CENTRIC INFRASTRUCTURE

September 2014

Chris Gascoigne

Technical Solutions Architect


CHANGING


THESE TRANSITIONS ARE CHANGING THE ROLE OF IT

Business Implications

Technology Transitions

Mobile New Breed

of Apps Cloud

Data & Analytics

Internet of Things

Experience Expectations

Growth &

Innovation

Security & Privacy

New Business Models

Globalisation


MODERN DATACENTER DEMANDS AGILE NETWORKING

0%

10%

20%

30%

40%

50%

60%

70%

80%

90%

100%

06 07 08 09 10 11 12 13

Datacenter Spending (%) Over Time

Server Spending Standalone Servers - Mgnt & Admin

Virtual Servers - Mgnt & Admin Power & Cooling Expense

Source: IDC, 2011 “New Economic Model for the Datacenter”

“Increased OpEx is attributed

to network optimization to

VM’s to deliver application

SLA’s”

Source: ZK Research

Operating expenses

represent over 80%

of DC spending

Network optimization

for virtual servers is

driving OpEx spending

Cisco Confidential 6 © 2013-2014 Cisco and/or its affiliates. All rights reserved.

IT HAS TO DEAL WITH MIXED ENVIRONMENT…

MIXED

APPLICATIONS

PHYSICAL + VIRTUAL

60–80% OF WORKLOADS VIRTUALIZED

HADOOP, BIG DATA AND ANALYTICS

~21% OF PHYSICAL SERVERS VIRTUALIZED BY 2016

HYPERVISOR

FRAGMENTATION

Hypervisor

42% OF BUSINESSES USE MULTIPLE HYPERVISORS

PRIVATE/PUBLIC

CLOUD

Private

Cloud

Enterprise IT

Organizations

Public

Cloud

Service

Provider Cloud

2 OUT OF 3 US BASED MIDSIZE FIRMS WILL USE CLOUD SERVICES

INTEGRATED DEVELOPMENT AND OPERATIONS


WHY SDN, WHY NOW?

Networks are complex!

They are the next silo to experience major shift 1st Gen SDN solutions look to meet the new

technical challenges.


Automation & Programmability

Centralised Provisioning &

Visibility

Simplification/

Abstraction

App

Agility

THE FUTURE OF NETWORKING

Deliver New Revenue

Streams Faster

Risk and OpEx Reduction

Lowered OpEx

Reduced Risk

Reduced CapEx

APIC


APPLICATION VS. NETWORK TWO LANGUAGES

APPLICATION LANGUAGE

?

NETWORK LANGUAGE

• VLAN

• IP Address

• Subnets

• Firewalls

• Quality of Service

• Load Balancer

• Access Lists

• Application Tier Policy and

Dependencies

• Security Requirements

• Service Level Agreement

• Application Performance

• Compliance

• Geo Dependencies

• Tenants


System Architecture

Expand Networking From Boxes To Systems

Open Source & Multi-vendor

Innovations Published to Open Source

Physical & Virtual

Traditional, Virtualised, & Next-Generation Non Virtualised Applications

Velocity

Abstraction, Abstraction, Abstraction

Costs

Best of Merchant & Custom Silicon for CAPEX Unmatched Automation for OPEX

ACI DESIGN PHILOSOPHY

11

APIC


WAN

Firewall

LB to App

Connect to DB

Connect to

App

High Priority

APPLICATION

REQUIREMENTS

WEB APP DB

DB WEB APP F/W

ADC ADC

INFRASTRUCTURE NEEDS TO UNDERSTAND AND SPEAK APPLICATION NEEDS

DIRECTLY MAP TO A NETWORK PROFILE

NETWORK

REQUIREMENTS


SIM Card Identity for a Phone

Service Profile Identity for a Server

UCS Service Profile

Network Policy

Storage Policy

Server Policy

CISCO UCS APPROACH SERVICE POLICIES DEPLOYED ON STATELESS COMPUTING HARDWARE


APPLICATION NETWORK PROFILE THE UCS SERVICE PROFILE FOR THE NETWORK

CONNECTIVIT

Y POLICY

SECURITY

POLICIES QOS

STORAGE

AND

COMPUTE

APPLICATION

L4..7

SERVICES

Traditional

3-Tier

Application

APP PROFILE

L/B APP DB F/W

L/B WEB

SLA

QoS

Security

Load

Balancing

APP PROFILE


HYPERVISOR

ANY APPLICATION, ANYWHERE - PHYSICAL AND VIRTUAL NETWORK ABSTRACTION WITH POLICY

HYPERVISOR HYPERVISOR

APIC


APPLICATION VISIBILITY A SINGLE VIEW OF YOUR APPLICATION IN A DISTRIBUTED ENVIRONMENT

Cisco Confidential

HEALTH SCORE

LATENCY

DROP COUNT

VISIBILITY

VMs Physical Load Balancer

Firewall

17

96%

Microsecond(s)

Packets Dropped

5

25

8 5


APPLICATION POLICY INFRASTRUCTURE CONTROLLER (APIC)

Single API that

Allows for

Centralized

Comprehensive

Network Policy

Management

Visibility Into

All Network / Policy

Reliability

Scalable

APIC


SCALABILITY BUILT FOR GROWTH

1 MILLION IPV4 / IPV6 END POINTS

64,000 TENANTS

PORTS

APIC

55296 44652 35860 27648 22584 18632 13824 11592 8598 6912 5260 4854 3456 2268 1286 288

8K MULTICAST GROUPS (PER LEAF)

60 TBPS CAPACITY (PER SPINE)


Centralized Compliance

and Auditing

Import / Export Policy via API

(Support for External Policy Engines)

Automated Services

Chaining

Engineering Legal Sales HR Finance Marketing

ACI SECURITY WITH MULTITENANCY

Complete Isolation with

Full Scalability and

Security

Policy Separated from

Network Forwarding

Policy

Engine

ENABLING A DYNAMIC ENTERPRISE WITHOUT COMPROMISE

APIC

Encrypted Controller

Communication

Advanced Role Based

Access Control


Trunk Cabling

(100m)

Patch

panel

Jumper

Cable

10G Optical Link

Patch

panel

Jumper

Cable

SIGNIFICANT TRANSCEIVER SAVINGS

Traditional 40G Optical Link—Complete Replacement

40G BiDi Optical Link—Reuse all 10G Cabling/Patch Panels

$1,486 AU

$4,474 AU

$1,635 AU

+ CABLING


EXTENDING POLICY TO THE INDUSTRY

Group-Policy Information Model

OpFlex Agent Framework OpFlex Agent

Group Policy API

Contributors

Group Policy API Contributors

OpFlex Southbound

Plugin

1

2

3

Contributors


NEW PARTNERS:

Published

Data Model

Open and

Standard APIs

Open Source Open Standards

APIC

WITH THE BROADEST ECOSYSTEM OF PARTNERS NEW PARTNERS EMBRACE POWER OF OPEN ECOSYSTEM

L4..7 Services, System Management, Virtualization,

Orchestration and Application Vendors


INVESTMENT PROTECTION: EXTEND ACI TO INSTALLED BASE

1. Leverage Existing Nexus/ IP Network

2. Deploy ACI: New PoDs For Cloud Build Outs

3. Extend ACI Model. Preserve - IP networks, L4-7 Services, Hypervisors

Existing Nexus PoDs

(2k-7k)

ACI POLICY

ACI Fabric

Nexus 9500 / 9300

Nexus 9300

Nexus 7000 DCI

PROFILE

—Augment with Nexus 9300

Nexus 9300

ESX Hyper-V OVS Bare

Metal

AVS

Bare Metal

ESX Hyper-V OVS

AVS


APPLICATION APPROACH TO NETWORKING

F/W DB DB Decouple Policy from Infrastructure

Simple & Scalable Stateless Infrastructure Optimized Forwarding & Mobility

Abstracted Policies for definition of Applications & Connectivity

Open REST APIs Centralized Management Open Source

APIC

Application Network Profile

F/W F/W F/W

STORAGE STORAGE

WEB DB APP

Highest Performance & Reliability Lowest Power Consumption


CLOUD AUTOMATION WITH CISCO ACI

APIC

STORAGE L4-7 SERVICES VIRTUALIZATION COMPUTE

Cloupia

SINGLE PANE OF

MANAGEMENT FOR

HYBRID CLOUD

END-TO-END AUTOMATION

OF APPLICATION AND

LIFECYCLE MANAGEMENT

AUTOMATED PROVISIONING

OF COMPUTE, NETWORK,

STORAGE

SUPPORT FOR CONVERGED

INFRASTRUCTURE

http://www.google.com/url?sa=i&rct=j&q=&esrc=s&frm=1&source=images&cd=&cad=rja&docid=0z519dNQJnxS5M&tbnid=KhLtjx32PHDnGM:&ved=0CAUQjRw&url=http://www.logostage.com/logo/cisco/&ei=1EXjUrihFImEogS6yoH4CA&bvm=bv.59930103,d.cGU&psig=AFQjCNHn_UyjcEsFphpD5M2bR08vY3ZyIQ&ust=1390712643892330


THANK YOU

APPLICATION CENTRIC INFRASTRUCTURE - Cisco · Cisco Confidential 5 MODERN DATACENTER DEMANDS AGILE...

Documents

Transcript of APPLICATION CENTRIC INFRASTRUCTURE - Cisco · Cisco Confidential 5 MODERN DATACENTER DEMANDS AGILE...