Automation and Orchestration of vBranch using Cisco … · Automation and Orchestration of vBranch...

Automation and Orchestration of vBranch using Cisco NSO

Faisal Chaudhry

Lei Tian

Ahmed Shams

LTRCRS-1551

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public

Cisco Spark

Questions? Use Cisco Spark to communicate with the speaker after the session

1. Find this session in the Cisco Live Mobile App

2. Click “Join the Discussion”

3. Install Spark or go directly to the space

4. Enter messages/questions in the space

How

cs.co/ciscolivebot#LTRCRS-1551

• Introduction to vBranch and NSO

• Validate Branch NFVIS and NSO Function Pack

• Onboard NFVIS to NSO

• Plug-and-play (PNP) of NFVIS

• Topology 1: Single Virtual Network Function (Cisco ISRv) use-case

• Create Virtual Network Function Descriptor (VNFD) of ISRv

• Create Networks on NFVIS

• Create Virtualisation Deployment Unit (VDU) and ISRv image download on NFVIS

• Upload Virtual Network Function (VNF) Image on NFVIS from NSO

• Launch ISRv (VNF) on NFVIS via NSO vBranch Function Pack

• Validate Day0 config of ISRv (VNF)

• Use of NSO for Day1 configs of ISRv (VNF)

• Topology 2: Service Chain with two (2) Virtual Network Functions

Agenda


Virtualizing the Branch

NFVIS

ENCS

Virtual Network VNFs running on:

• ENCS with NFVIS

LTRCRS-1551 5

Data Center

NSO

MPLS INETVirtual Devices


Network Equipment Drivers (NEDs)

Service Manager

Device Manager

Physical Networks Virtual Networks

• VNFM

• Controller Apps

• EMS and NMS

Network Apps

Service

Model

Device

Model

Applications Engineers

• Logically centralized network

services

• Data models for data

structures

• Structured representations of:

• Service instances

• Network configuration

and state

• Mapping service operations to

network configuration changes

• Transactional integrity

• Multiprotocol and multivendor

support

Network-wide CLI,

Web UI

REST, Java,

NETCONF

NETCONF, CLI, SNMP, REST, etc.

Network Services Orchestration (NSO) .

LTRCRS-1551 6


Network Functions Virtualization in Branch

Network Functions Virtualization Infrastructure Software (NFVIS)

ISR 4000 + UCS-E-Series

UCS C-SeriesEnterprise Network Compute

Systems (ENCS)

Orchestration and Management (MANO)NSO with vBranch Core Function Pack

Virtual Router(ISRv)

Virtual Firewall(ASAv)

Virtual WAN Optimization

(vWAAS)3rd Party VNFs

COTS

Virtual Router(vEdge)

Virtual Wireless LAN Controller (vWLC)

LTRCRS-1551 7

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 8LTRCRS-1551

Topologies within Branch

WANLAN

WANLAN net2 net1

WANLAN net1

????

ISRv

ISRv

ISRv

ASAv

ASAvWAAS

ENCS

ENCS

ENCS

ENCS


NFVIS Software Stack

LinuxPlatform Drivers

Interface Drivers

NFVIS

Virtualization Layer – Hypervisor and vSwitch

Orchestration (VM Lifecycle)

HTTPSPnPClient

PnPServer

Console/SSH

NSO DNA-C

CLI NETCONF REST

Health Monitoring

Local Device Web Portal

Host Management

RBAC

LTRCRS-1551 9


Cisco and 3rd party VNF support

• High performance

• Rich features

• End-to-end support

ISRv

New

• Harden virtual services

• Enable secure access

• On-premise orcloud management

NGFWv

New

• VNF program

• Tested and certified

• Streamlined support from Cisco and third party

Third-Party VNFs

New

• ISR WAAS: Leader in Gartner MQ

• Superior caching with Akamai Connect

vWAAS

• Survivability and scale

• Built for small and medium-sized branches

vWLC

• Comprehensive protection

• Full DC class Featured functionality

• Designed for NFV

ASAv

• Microsoft Windows

• Custom applications

Applications

• High performance

• SDWAN Edge

• NETCONF support

vEdge

New

LTRCRS-1551 10


Network and Bridges

port portport port

LTRCRS-1551 11

ENCS

lan-bridge

lan-net

wan-net

wan-bridge

service-net


NSO

Device Adaptation

Service Model

Physical Networks Virtual Networks

• VNFM

• Controller Apps

• EMS and NMS

Network Apps

Applications Engineers

Network-wide CLI,

Web UIREST, Java,

NETCONF

NETCONF, CLI, SNMP, REST, etc.

• Multi-vendor service orchestrator for existing and future networks

• Single pane of glass for:• L2-L7 networking

• Hardware Devices

• Virtual Appliances

• Model Driven Orchestration• Service Data models (declarative)

• Device Data Model (for auto config)

• All Models are YANG Based

• Highly Scalable for large infrastructure

• One of the existing deployment is managing 60K devices on the network

Network Services Orchestration (NSO)

NED NED

LTRCRS-1551 12


NSO Core Function Pack

NSO

OSS/BSS • NSO Single Entry Point

• NSO (vBranch Core Function Pack) to instantiate VNFs (including 3rd party VNFs) and activate vEdge. Apply device template

REST/NETCONF

NETCONF

NFVIS

NSOCisco and 3rd party VNFs

vBranch CFP

LTRCRS-1551 13


Branch-Infra

• Supports a Strongly Typed Core service model

• Allows customizations using Key-Value pairs

• Supports custom templates

• Notifications

• Optionally used for pushing Day 1 Configurations through

branch-infra

• Supports Physical / Virtual Infrastructure onboarding

• Maintains a catalog of VNFDs, VDUs, Deployments, Day-0

configurations.

• Network creation

• Instantiate VNF and Service Chain

• Instantiates VNFs using ETSI-MANO compliant VNF descriptors

• Supports multi-VM VNFs

• Can be extended to work with multiple VNFMs

ENCS

devices

vBranch Service Request APIs

Stacked Services ApproachvBranch use of Core FP packages

Branch

Service

Infrastructure

Services

LTRCRS-1551 14


On Boarding ENCS/NFVIS

NFVIS

VNFMPnP1) ENCS boots and creates basic n/w infrastructure

2) NFVIS registration to NSO using PnP

IP + serial + model + capabilities

3) NFVIS registered to NSO

4) NSO connects to branch NFVIS (NETCONF)

ENCS/NFVIS on-boarded in NSO

ENCS

PnP Server Branch-Infra FP

Network Service Orchestrator (NSO)Network Service Orchestrator (NSO)

NSO with the vBranch Function Pack

LTRCRS-1551 15


Loading ISR VNF

1) NSO registers ISRv to NFVIS

2) NFVIS pulls ISRv images / local preparation

5) NFVIS notifies NSO ISRv is active3) NSO instructs NFVIS to deploy NWs/ISRv

4) NFVIS deploys ISRv, load day 0 config and sets

up local ISRv monitoring

ISRv loaded

ISRv

Network Service Orchestrator (NSO)

VNFs are loaded in parallel

XMP PAYLOAD

VNF Definitions

NETWORK DefinitionsCore FP (vBranch)

NFVIS

VNFMPnP

ENCS

LTRCRS-1551 16


Lab – Topology 1

ISRv

WAN NIC

Eth0/0

LAN NIC

wan-netlan-net

Eth 0/1

NFVIS

LTRCRS-1551 17


Lab – Topology 2

ISRv

WAN NIC

Eth0/0

LAN NIC

wan-netlan-net

Eth 0/1

ASAv

LTRCRS-1551 18

NFVIS

service-net


branch-cpe

VNF

VNFD

networkCPE

config

VDU

nfvo catalog

VNFD

VDU

deployment

Catalog DefinitionsVNFs and Service Chaining

High Level view of Service Model

Branch-infra

LTRCRS-1551 19


Cisco Spark

Questions? Use Cisco Spark to communicate with the speaker after the session

1. Find this session in the Cisco Live Mobile App

2. Click “Join the Discussion”

3. Install Spark or go directly to the space

4. Enter messages/questions in the space

How

cs.co/ciscolivebot#LTRCRS-1551


• Please complete your Online Session Evaluations after each session

• Complete 4 Session Evaluations & the Overall Conference Evaluation (available from Thursday) to receive your Cisco Live T-shirt

• All surveys can be completed via the Cisco Live Mobile App or the Communication Stations

Don’t forget: Cisco Live sessions will be available for viewing on-demand after the event at www.ciscolive.com/global/on-demand-library/.

Complete Your Online Session Evaluation

http://ciscolive.com/Online

http://www.ciscolive.com/global/on-demand-library/


Continue Your Education

• Demos in the Cisco campus

• Walk-in Self-Paced Labs

• Tech Circle

• Meet the Engineer 1:1 meetings

• Related sessions

22LTRCRS-1551

Thank you

Automation and Orchestration of vBranch using Cisco … · Automation and Orchestration of vBranch...

Documents

Transcript of Automation and Orchestration of vBranch using Cisco … · Automation and Orchestration of vBranch...