Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability,...
Transcript of Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability,...
![Page 1: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/1.jpg)
Brijeshkumar Shah ([email protected])
February 7th, 2018
Building a Simple, Agile and Secure Fabric for an Intent Based MultiCloud Data Center
![Page 2: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/2.jpg)
Every company must now express
its uniqueness with software
![Page 3: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/3.jpg)
Some Important Trends Impacting the Data Centre Evolution
More Workloads are moving to Cloud Data Centers1
Cloud Data Centers include more virtualized workloads per server2
Traffic in each area of the Data Centre is increasing dramatically3
Global Data Centre Traffic by Destination by 2017
Source: Cisco Global Cloud Index,
Forecast and Methodology, 2012–2017
The increasing density of Business Critical workloads hosted in the Cloud is driving
new Multi-site designs to handle Business Continuity, Workload Mobility, and
Disaster Recovery
![Page 4: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/4.jpg)
TraditionalData CentreNetworking
DC
Switching
Network
Apps Policy
Application Centric Infrastructure (ACI)
Network + Services Abstraction & Automation
Infrastructure HyperScale
Data Centres
Two Market Transitions – One DC Network
Virtual Machines
LXC / DockerContainers
Apps Portability, Cross-Platform & Automation
Applications PaaS
4
![Page 5: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/5.jpg)
Will use
multiple
clouds84% 73%
Have a
hybrid cloud
strategy81%
Evaluating
or using
public cloud
It’s a Multicloud World
2016
Will use
multiple
clouds94% 87%
Have a
hybrid cloud
strategy85%
Evaluating
or using
public cloud
2017
![Page 6: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/6.jpg)
App Perf Mgmt
AppDynamics
Business Insights,
User Satisfaction
App Portability
Cloud Center
Infra Independence IaaS
or On-premise
Public Cloud
Application Relevance in a Multi-Cloud World
Private Cloud
On-Premise IT
ANALYTICS
ENFORCEMENT
AUTOMATION
Intent
Lifecycle
App Policy Cycle
Tetration
Policy Inference,
Enforcement, Forensics
![Page 7: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/7.jpg)
The Critical Infrastructure Hierarchy of Needs
Ease of Use
Agility
Performance
Security
Availability
On-Premise
Data Center
Multi-Cloud
![Page 8: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/8.jpg)
Cisco ACI
Switches
Interfaces
into System
Visibility and
Analytics
Hypervisor
Networking
Logical Design
Connectivity
Application Centric Infrastructure
Outside the Network
Inside the
Network
![Page 9: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/9.jpg)
Switches
Interfaces
into System
Visibility and
Analytics
Hypervisor
Networking
Logical Design
Connectivity
Outside the Network
Inside the
Network
Cisco ACI
Traditional Switch Networks
![Page 10: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/10.jpg)
Switches
Interfaces
into System
Visibility and
Analytics
Hypervisor
Networking
Logical Design
Connectivity
Outside the Network
Inside the
Network
Cisco ACI
Overlay Only Networks
![Page 11: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/11.jpg)
ACI 1.1 - Geographically
Stretch a single Pod
DC1 DC2
ACI Stretched Fabric
APIC Cluster
ACI Single Pod Fabric
ACI 1.0 - Leaf/Spine
Single Pod Fabric
ACI 2.0 - Multiple Networks
(Pods) in a single Availability
Zone (Fabric)
Pod ‘A’
MP-BGP - EVPN
…
IPNPod ‘n’
ACI Multi-Pod Fabric
APIC Cluster
ACI 3.0 – Multiple Availability
Zones (Fabrics) in a Single
Region ’and’ Multi-Region Policy
Management
Fabric ‘A’
MP-BGP - EVPN
…
IPFabric ‘n’
ACI Multi-Site
ISE
ISE 2.1 & ACI 1.2
Federation of Identity and
Interconnect TrustSec
and ACI using IP based
EPG/SGT
ACI 3.1/3.2 - Remote Leaf
and vPod extends an
Availability Zone (Fabric) to
remote locations
Application Centric InfrastructureFabric and Policy Domain Evolution
BRKCLD-2931 11
![Page 12: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/12.jpg)
Remote PoD Multi-Pod / Multi-Site Hybrid Cloud Extension
ACI Vision ONE Intent: Any Workload, Any Hypervisor, Any Location, Any Cloud
ACI Anywhere
IP
WAN
IP
WAN
Remote Location Public CloudOn Premise
Security Everywhere Policy EverywhereAnalytics Everywhere
![Page 13: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/13.jpg)
VMVMVM
Site A
Site B
Site C
Site D
VMVMVM
ACI Multi-Site
Multi-Site
Appliance Consistent Policy across sites
Seamless Workload Migration
Single Point of Orchestration
Complete Fault Isolation
![Page 14: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/14.jpg)
Extend ACI to Satellite Data Centers / Co-Lo
1. Remote Physical Leaf (Nexus 9K) 2. Remote Pod (Virtual)
On Premises
L2 / L3
Remote Data Center / Co-Lo
Physical Leaf ACI Virtual Edge
(AVE)
vswitch vswitch
Nexus 9K Remote PoD
IP
Network
14
![Page 15: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/15.jpg)
IP Network
ACI Extension Beyond On-Premise Data Center(s)
Hypervisor
AVE
Hypervisor
vSwitch
Hypervisor
vSwitch
ACI Policies
vSpine + vLeaf
On-Premise Data Center Remote Virtual POD
Web App
Hypervisor
AVE
Hypervisor
AVE
Hypervisor
AVE
Virtual POD
App DBDB Web
Co-Lo / Remote DCs /
Bare-Metal Clouds /
Brownfield Deployments
AVE = ACI Virtual Edge
15
![Page 16: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/16.jpg)
ACI AnywhereFor Hybrid Cloud (Bare Metal as a Service)
On
Premise
Public
Cloud
ACI Extension to Public Cloud
Consistent Network Operations and Governance
Value-add through ACI Networking Features
Hosting Providers
IP WAN
Multi-Pod/Multi-Site
vPod architecture using
ACI Virtual Edge
![Page 17: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/17.jpg)
ACI AnywhereFor Hybrid Cloud (Non-Bare Metal Public Cloud)
Consistent Network Operations and Governance
Continue to Leverage Cloud Native Networking and Services
Public Cloud / DC SITE-2
IP WAN
On-Prem DC SITE-1
ACI Extension to Public Cloud
On
Premise
Public
Cloud
vAPIC
![Page 18: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/18.jpg)
Business Outcomes and Value
![Page 19: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/19.jpg)
A smart enterprise transformation accelerates Business
“Automation tools help us improve the
quality and speed of our services to internal
and external customers.”-Mandar Marulkar, Vice President and CIO, KPIT
Reduced application deployment time from 4 weeks to
1 hour, getting products and services to market faster
Improved application performance by 200%; reduced
manual IT configurations and cut capital expenses
• Used Cisco Unified Computing System (Cisco
UCS®) as digital IT platform
• Optimized development lifecycle with Cisco
Nexus® switches and Cisco Application Centric
Infrastructure (ACI) technology
• Cisco Services
Size: 10,000+ employees Location: India
KPIT
Industry: Information Technology
![Page 20: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/20.jpg)
Optimize Your Network
Protect Your Business
IntegrateHybrid IT
With Cisco ACI,
you can build a
better network…
anywhere.
![Page 21: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/21.jpg)
Ecosystem Partners
Nexus 9K
Customers Globally
ACI
Customers
ACI Attach
Rate on N9K
Ecosystem
Partners
13,000+ 45+%4,500+ 65+
Nexus 9K and ACI: Industry Leader
![Page 22: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/22.jpg)
Intent-Based Data Center
Intent
“Should”
Assurance
“Can”Configuration Analysis
“Very Large State-Space”
Analytics
“Did”Traffic Analysis
“Lots of Data”
Guarantees
Compliance
Consistency
Policy
ADM
Policy
Forensics
Tetration
ACI
COMPANY
CONFIDENTIAL
![Page 23: Building a Simple, Agile and Secure Fabric for an Intent ......Containers Apps Portability, Cross-Platform & Automation Applications PaaS 4. Will use multiple clouds 84% 73% Have a](https://reader033.fdocuments.in/reader033/viewer/2022060222/5f07b19a7e708231d41e4461/html5/thumbnails/23.jpg)
Thank You
• ACI is a turnkey solution that simplifies
deployment, management and
troubleshooting.
• ACI has a large ecosystem of partners
providing customer flexibility and choice.
• ACI is a sound financial investment,
providing rapid return via multiple metrics
across many customers.
• ACI provides a comprehensive, integrated
approach regardless of endpoint type.
• ACI provides strong automation
capabilities.