Network Programming before during and after the Hype · Network Programming before – during –...
53
Cisco Public © 2012 Cisco and/or its affiliates. All rights reserved. 1 Network Programming before – during – and after the Hype Bruno Klauser Consulting Engineer EN EMEAR CTO Team [email protected] 20131016 – Berlin
Transcript of Network Programming before during and after the Hype · Network Programming before – during –...
Cisco Public copy 2012 Cisco andor its affiliates All rights reserved 1
Network Programming
before ndash during ndash and after the Hype
Bruno Klauser
Consulting Engineer EN EMEAR CTO Team bklauserciscocom
20131016 ndash Berlin
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 2
hellip I do not own a Crystal Ball
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 3
hellip I do not own a Crystal Ball
and even if I would
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 4
hellip I do not own a Crystal Ball
and even if I would
Therefore donlsquot take anything for granted
Cisco Public copy 2012 Cisco andor its affiliates All rights reserved 5
Network Programming in a
Cisco Open Network Environment
Bruno Klauser
Consulting Engineer EN EMEAR CTO Team bklauserciscocom
20131016 ndash Berlin
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 6
Phase 3 Phase 4 Phase 1 Phase 2
Scale Leadership Mainstream Inception
Ch
as
m
Incubation
EN EMEAR CTO Team Early Adopters Field
Invention
CDO
Phase 0
mainstream
new
approach
NWP Network
Programming
NWA Network
Automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 7
mainstream new
approach
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 8
adoption
phases
solution
developmnt
relevant
markets
route to
market
stake
holders
cross
the
chasm
incubation
competition
use
cases beachhead
customers
field
enablement
customer
profiling
sales
resources technical
guides
executive
sponsorship
services
whatrsquos
in it forhellip
customer
validation
ecosystem
roadmap
vision
demo
capabilities
business
case
(external)
success
metrics
business
case
(internal)
value
proposition
mainstream new
approach
Cisco Public 9 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 10
Network Embedded Automation spans across full Life Cycle
Operational Era Pre-Operational Era
Does it meet Requirements
Is it built to Specification
Post-Operational Era
How to take out of service
hellip
hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 11
Problem Sometimes we need data from one or multiple MIBs but
- we may not want to (re-)configure an NMS - donrsquot want to constantly poll - need to gather data during temporary loss of connectivity
Solution Use Bulk File MIB to define the data we need and periodically transfer it to a convenient location
- group data from multiple MIBs - single common polling interval - buffer data - transfer using RCP FTP TFTP - format ASCII or Binary
Feature Name Periodic MIB Data Collection and Transfer Mechanism
Available from IOS 120(24)S 122(25)S 123(2)T IOS XE 21 IOS XR 32 Platforms ASR1k x8xx ISR x900x ISR 72xx 73xx 76xx 10xxx ME3400 C4k C6k hellip See httptoolsciscocomSupportSNMPdoBrowseOIDdolocal=enamptranslate=TranslateampobjectInput=1361212
11
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 12
What Data am I interested in
Where and when do I want to poll Data
How do I want to export Data
Router(config) snmp mib bulkstat object-list my-if-data
Router(config-bulk-objects) add ifIndex
Router(config-bulk-objects) add ifDescr
Router(config-bulk-objects) add ifAdminStatus
Router(config-bulk-objects) add ifOperStatus
Router(config-bulk-objects) exit
1 Define Lists of relevant OIDs (Names for IF-MIB ASN1 for all others)
2 Specify Polling Schema
3 Configure the Transfer Mechanism ndash and enable it
Router(config) snmp mib bulkstat schema my-if-schema
Router(config-bulk-sc) object-list my-if-data
Router(config-bulk-sc) poll-interval 1
Router(config-bulk-sc) instance exact interface FastEthernet0
Router(config-bulk-sc) exit
Router(config) snmp mib bulkstat transfer my-fa0-transfer
Router(config-bulk-tr) schema my-if-schema
Router(config-bulk-tr) transfer-interval 5
Router(config-bulk-tr) url primary tftp10101010folder
Router(config-bulk-tr) retain 30
Router(config-bulk-tr) buffer-size 4096
Router(config-bulk-tr) enable
12
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 13
bull Auto Smart Ports are powered by EEM
bull Pre-built port configuration templates for simplify user experience and minimize configuration error
bull Automatic event detection (CDPLLDPMAC) triggers auto configuration
bull Authentication (8021x MAB) and authorization can be conducted before port configuration applied
bull Automatic notification can be sent to NMS system to help with asset tracking
bull Plug-n-play device deployment lowers overall management cost
CDP
MAC Addr
Radius Server
8021x
LLDP
NMS station
Problem How to trigger custom event-based port configurations Solution Use Embedded Event Manager (EEM)
1
3
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 14
Example When a printer is added to the network use an EEM applet to create a new ASP event
event manager applet dectect-printer
event neighbor-discovery interface regexp FastEthernet cdp add
action 001 regexp LasterJet $_nd_cdp_platform
action 002 if $_regexp_result eq 1
action 003 cli command enable
action 004 cli command config t
action 005 cli command interface $_nd_local_intf_name
action 006 cli command switchport access vlan $printer_vlan
action 007 cli command switchport mode access
action 008 cli command switchport port-security
action 009 cli command switchport port-security violation restrict
action 010 cli command switchport port-security aging time 2
action 011 cli command switchport port-security aging type inactivity
action 012 cli command spanning-tree portfast
action 013 cli command spanning-tree bpduguard enable
action 014 cli command end
action 015 syslog msg New printer added $_nd_cdp_entry_name type
$_nd_cdp_platform
action 016 end
1
4
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 15
Problem Interface description must conform to a fixed format with validated fields
Solution IOS CLI alias TCL scripts EEM and EASy packaging
UDI Location
Customer
Interface
NOC can tell exactly which
device where it is who the
customer is and which
interface just from the
message
GigabitEthernet00 is up line protocol is up
Hardware is CN Gigabit Ethernet address is fc9947bb1640 (bia fc9947bb1640)
Description CISCO1921K9-V03-FCZ154492XZ-NYC-MLB-GigabitEthernet00
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 2
hellip I do not own a Crystal Ball
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 3
hellip I do not own a Crystal Ball
and even if I would
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 4
hellip I do not own a Crystal Ball
and even if I would
Therefore donlsquot take anything for granted
Cisco Public copy 2012 Cisco andor its affiliates All rights reserved 5
Network Programming in a
Cisco Open Network Environment
Bruno Klauser
Consulting Engineer EN EMEAR CTO Team bklauserciscocom
20131016 ndash Berlin
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 6
Phase 3 Phase 4 Phase 1 Phase 2
Scale Leadership Mainstream Inception
Ch
as
m
Incubation
EN EMEAR CTO Team Early Adopters Field
Invention
CDO
Phase 0
mainstream
new
approach
NWP Network
Programming
NWA Network
Automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 7
mainstream new
approach
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 8
adoption
phases
solution
developmnt
relevant
markets
route to
market
stake
holders
cross
the
chasm
incubation
competition
use
cases beachhead
customers
field
enablement
customer
profiling
sales
resources technical
guides
executive
sponsorship
services
whatrsquos
in it forhellip
customer
validation
ecosystem
roadmap
vision
demo
capabilities
business
case
(external)
success
metrics
business
case
(internal)
value
proposition
mainstream new
approach
Cisco Public 9 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 10
Network Embedded Automation spans across full Life Cycle
Operational Era Pre-Operational Era
Does it meet Requirements
Is it built to Specification
Post-Operational Era
How to take out of service
hellip
hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 11
Problem Sometimes we need data from one or multiple MIBs but
- we may not want to (re-)configure an NMS - donrsquot want to constantly poll - need to gather data during temporary loss of connectivity
Solution Use Bulk File MIB to define the data we need and periodically transfer it to a convenient location
- group data from multiple MIBs - single common polling interval - buffer data - transfer using RCP FTP TFTP - format ASCII or Binary
Feature Name Periodic MIB Data Collection and Transfer Mechanism
Available from IOS 120(24)S 122(25)S 123(2)T IOS XE 21 IOS XR 32 Platforms ASR1k x8xx ISR x900x ISR 72xx 73xx 76xx 10xxx ME3400 C4k C6k hellip See httptoolsciscocomSupportSNMPdoBrowseOIDdolocal=enamptranslate=TranslateampobjectInput=1361212
11
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 12
What Data am I interested in
Where and when do I want to poll Data
How do I want to export Data
Router(config) snmp mib bulkstat object-list my-if-data
Router(config-bulk-objects) add ifIndex
Router(config-bulk-objects) add ifDescr
Router(config-bulk-objects) add ifAdminStatus
Router(config-bulk-objects) add ifOperStatus
Router(config-bulk-objects) exit
1 Define Lists of relevant OIDs (Names for IF-MIB ASN1 for all others)
2 Specify Polling Schema
3 Configure the Transfer Mechanism ndash and enable it
Router(config) snmp mib bulkstat schema my-if-schema
Router(config-bulk-sc) object-list my-if-data
Router(config-bulk-sc) poll-interval 1
Router(config-bulk-sc) instance exact interface FastEthernet0
Router(config-bulk-sc) exit
Router(config) snmp mib bulkstat transfer my-fa0-transfer
Router(config-bulk-tr) schema my-if-schema
Router(config-bulk-tr) transfer-interval 5
Router(config-bulk-tr) url primary tftp10101010folder
Router(config-bulk-tr) retain 30
Router(config-bulk-tr) buffer-size 4096
Router(config-bulk-tr) enable
12
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 13
bull Auto Smart Ports are powered by EEM
bull Pre-built port configuration templates for simplify user experience and minimize configuration error
bull Automatic event detection (CDPLLDPMAC) triggers auto configuration
bull Authentication (8021x MAB) and authorization can be conducted before port configuration applied
bull Automatic notification can be sent to NMS system to help with asset tracking
bull Plug-n-play device deployment lowers overall management cost
CDP
MAC Addr
Radius Server
8021x
LLDP
NMS station
Problem How to trigger custom event-based port configurations Solution Use Embedded Event Manager (EEM)
1
3
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 14
Example When a printer is added to the network use an EEM applet to create a new ASP event
event manager applet dectect-printer
event neighbor-discovery interface regexp FastEthernet cdp add
action 001 regexp LasterJet $_nd_cdp_platform
action 002 if $_regexp_result eq 1
action 003 cli command enable
action 004 cli command config t
action 005 cli command interface $_nd_local_intf_name
action 006 cli command switchport access vlan $printer_vlan
action 007 cli command switchport mode access
action 008 cli command switchport port-security
action 009 cli command switchport port-security violation restrict
action 010 cli command switchport port-security aging time 2
action 011 cli command switchport port-security aging type inactivity
action 012 cli command spanning-tree portfast
action 013 cli command spanning-tree bpduguard enable
action 014 cli command end
action 015 syslog msg New printer added $_nd_cdp_entry_name type
$_nd_cdp_platform
action 016 end
1
4
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 15
Problem Interface description must conform to a fixed format with validated fields
Solution IOS CLI alias TCL scripts EEM and EASy packaging
UDI Location
Customer
Interface
NOC can tell exactly which
device where it is who the
customer is and which
interface just from the
message
GigabitEthernet00 is up line protocol is up
Hardware is CN Gigabit Ethernet address is fc9947bb1640 (bia fc9947bb1640)
Description CISCO1921K9-V03-FCZ154492XZ-NYC-MLB-GigabitEthernet00
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 3
hellip I do not own a Crystal Ball
and even if I would
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 4
hellip I do not own a Crystal Ball
and even if I would
Therefore donlsquot take anything for granted
Cisco Public copy 2012 Cisco andor its affiliates All rights reserved 5
Network Programming in a
Cisco Open Network Environment
Bruno Klauser
Consulting Engineer EN EMEAR CTO Team bklauserciscocom
20131016 ndash Berlin
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 6
Phase 3 Phase 4 Phase 1 Phase 2
Scale Leadership Mainstream Inception
Ch
as
m
Incubation
EN EMEAR CTO Team Early Adopters Field
Invention
CDO
Phase 0
mainstream
new
approach
NWP Network
Programming
NWA Network
Automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 7
mainstream new
approach
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 8
adoption
phases
solution
developmnt
relevant
markets
route to
market
stake
holders
cross
the
chasm
incubation
competition
use
cases beachhead
customers
field
enablement
customer
profiling
sales
resources technical
guides
executive
sponsorship
services
whatrsquos
in it forhellip
customer
validation
ecosystem
roadmap
vision
demo
capabilities
business
case
(external)
success
metrics
business
case
(internal)
value
proposition
mainstream new
approach
Cisco Public 9 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 10
Network Embedded Automation spans across full Life Cycle
Operational Era Pre-Operational Era
Does it meet Requirements
Is it built to Specification
Post-Operational Era
How to take out of service
hellip
hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 11
Problem Sometimes we need data from one or multiple MIBs but
- we may not want to (re-)configure an NMS - donrsquot want to constantly poll - need to gather data during temporary loss of connectivity
Solution Use Bulk File MIB to define the data we need and periodically transfer it to a convenient location
- group data from multiple MIBs - single common polling interval - buffer data - transfer using RCP FTP TFTP - format ASCII or Binary
Feature Name Periodic MIB Data Collection and Transfer Mechanism
Available from IOS 120(24)S 122(25)S 123(2)T IOS XE 21 IOS XR 32 Platforms ASR1k x8xx ISR x900x ISR 72xx 73xx 76xx 10xxx ME3400 C4k C6k hellip See httptoolsciscocomSupportSNMPdoBrowseOIDdolocal=enamptranslate=TranslateampobjectInput=1361212
11
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 12
What Data am I interested in
Where and when do I want to poll Data
How do I want to export Data
Router(config) snmp mib bulkstat object-list my-if-data
Router(config-bulk-objects) add ifIndex
Router(config-bulk-objects) add ifDescr
Router(config-bulk-objects) add ifAdminStatus
Router(config-bulk-objects) add ifOperStatus
Router(config-bulk-objects) exit
1 Define Lists of relevant OIDs (Names for IF-MIB ASN1 for all others)
2 Specify Polling Schema
3 Configure the Transfer Mechanism ndash and enable it
Router(config) snmp mib bulkstat schema my-if-schema
Router(config-bulk-sc) object-list my-if-data
Router(config-bulk-sc) poll-interval 1
Router(config-bulk-sc) instance exact interface FastEthernet0
Router(config-bulk-sc) exit
Router(config) snmp mib bulkstat transfer my-fa0-transfer
Router(config-bulk-tr) schema my-if-schema
Router(config-bulk-tr) transfer-interval 5
Router(config-bulk-tr) url primary tftp10101010folder
Router(config-bulk-tr) retain 30
Router(config-bulk-tr) buffer-size 4096
Router(config-bulk-tr) enable
12
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 13
bull Auto Smart Ports are powered by EEM
bull Pre-built port configuration templates for simplify user experience and minimize configuration error
bull Automatic event detection (CDPLLDPMAC) triggers auto configuration
bull Authentication (8021x MAB) and authorization can be conducted before port configuration applied
bull Automatic notification can be sent to NMS system to help with asset tracking
bull Plug-n-play device deployment lowers overall management cost
CDP
MAC Addr
Radius Server
8021x
LLDP
NMS station
Problem How to trigger custom event-based port configurations Solution Use Embedded Event Manager (EEM)
1
3
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 14
Example When a printer is added to the network use an EEM applet to create a new ASP event
event manager applet dectect-printer
event neighbor-discovery interface regexp FastEthernet cdp add
action 001 regexp LasterJet $_nd_cdp_platform
action 002 if $_regexp_result eq 1
action 003 cli command enable
action 004 cli command config t
action 005 cli command interface $_nd_local_intf_name
action 006 cli command switchport access vlan $printer_vlan
action 007 cli command switchport mode access
action 008 cli command switchport port-security
action 009 cli command switchport port-security violation restrict
action 010 cli command switchport port-security aging time 2
action 011 cli command switchport port-security aging type inactivity
action 012 cli command spanning-tree portfast
action 013 cli command spanning-tree bpduguard enable
action 014 cli command end
action 015 syslog msg New printer added $_nd_cdp_entry_name type
$_nd_cdp_platform
action 016 end
1
4
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 15
Problem Interface description must conform to a fixed format with validated fields
Solution IOS CLI alias TCL scripts EEM and EASy packaging
UDI Location
Customer
Interface
NOC can tell exactly which
device where it is who the
customer is and which
interface just from the
message
GigabitEthernet00 is up line protocol is up
Hardware is CN Gigabit Ethernet address is fc9947bb1640 (bia fc9947bb1640)
Description CISCO1921K9-V03-FCZ154492XZ-NYC-MLB-GigabitEthernet00
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 4
hellip I do not own a Crystal Ball
and even if I would
Therefore donlsquot take anything for granted
Cisco Public copy 2012 Cisco andor its affiliates All rights reserved 5
Network Programming in a
Cisco Open Network Environment
Bruno Klauser
Consulting Engineer EN EMEAR CTO Team bklauserciscocom
20131016 ndash Berlin
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 6
Phase 3 Phase 4 Phase 1 Phase 2
Scale Leadership Mainstream Inception
Ch
as
m
Incubation
EN EMEAR CTO Team Early Adopters Field
Invention
CDO
Phase 0
mainstream
new
approach
NWP Network
Programming
NWA Network
Automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 7
mainstream new
approach
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 8
adoption
phases
solution
developmnt
relevant
markets
route to
market
stake
holders
cross
the
chasm
incubation
competition
use
cases beachhead
customers
field
enablement
customer
profiling
sales
resources technical
guides
executive
sponsorship
services
whatrsquos
in it forhellip
customer
validation
ecosystem
roadmap
vision
demo
capabilities
business
case
(external)
success
metrics
business
case
(internal)
value
proposition
mainstream new
approach
Cisco Public 9 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 10
Network Embedded Automation spans across full Life Cycle
Operational Era Pre-Operational Era
Does it meet Requirements
Is it built to Specification
Post-Operational Era
How to take out of service
hellip
hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 11
Problem Sometimes we need data from one or multiple MIBs but
- we may not want to (re-)configure an NMS - donrsquot want to constantly poll - need to gather data during temporary loss of connectivity
Solution Use Bulk File MIB to define the data we need and periodically transfer it to a convenient location
- group data from multiple MIBs - single common polling interval - buffer data - transfer using RCP FTP TFTP - format ASCII or Binary
Feature Name Periodic MIB Data Collection and Transfer Mechanism
Available from IOS 120(24)S 122(25)S 123(2)T IOS XE 21 IOS XR 32 Platforms ASR1k x8xx ISR x900x ISR 72xx 73xx 76xx 10xxx ME3400 C4k C6k hellip See httptoolsciscocomSupportSNMPdoBrowseOIDdolocal=enamptranslate=TranslateampobjectInput=1361212
11
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 12
What Data am I interested in
Where and when do I want to poll Data
How do I want to export Data
Router(config) snmp mib bulkstat object-list my-if-data
Router(config-bulk-objects) add ifIndex
Router(config-bulk-objects) add ifDescr
Router(config-bulk-objects) add ifAdminStatus
Router(config-bulk-objects) add ifOperStatus
Router(config-bulk-objects) exit
1 Define Lists of relevant OIDs (Names for IF-MIB ASN1 for all others)
2 Specify Polling Schema
3 Configure the Transfer Mechanism ndash and enable it
Router(config) snmp mib bulkstat schema my-if-schema
Router(config-bulk-sc) object-list my-if-data
Router(config-bulk-sc) poll-interval 1
Router(config-bulk-sc) instance exact interface FastEthernet0
Router(config-bulk-sc) exit
Router(config) snmp mib bulkstat transfer my-fa0-transfer
Router(config-bulk-tr) schema my-if-schema
Router(config-bulk-tr) transfer-interval 5
Router(config-bulk-tr) url primary tftp10101010folder
Router(config-bulk-tr) retain 30
Router(config-bulk-tr) buffer-size 4096
Router(config-bulk-tr) enable
12
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 13
bull Auto Smart Ports are powered by EEM
bull Pre-built port configuration templates for simplify user experience and minimize configuration error
bull Automatic event detection (CDPLLDPMAC) triggers auto configuration
bull Authentication (8021x MAB) and authorization can be conducted before port configuration applied
bull Automatic notification can be sent to NMS system to help with asset tracking
bull Plug-n-play device deployment lowers overall management cost
CDP
MAC Addr
Radius Server
8021x
LLDP
NMS station
Problem How to trigger custom event-based port configurations Solution Use Embedded Event Manager (EEM)
1
3
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 14
Example When a printer is added to the network use an EEM applet to create a new ASP event
event manager applet dectect-printer
event neighbor-discovery interface regexp FastEthernet cdp add
action 001 regexp LasterJet $_nd_cdp_platform
action 002 if $_regexp_result eq 1
action 003 cli command enable
action 004 cli command config t
action 005 cli command interface $_nd_local_intf_name
action 006 cli command switchport access vlan $printer_vlan
action 007 cli command switchport mode access
action 008 cli command switchport port-security
action 009 cli command switchport port-security violation restrict
action 010 cli command switchport port-security aging time 2
action 011 cli command switchport port-security aging type inactivity
action 012 cli command spanning-tree portfast
action 013 cli command spanning-tree bpduguard enable
action 014 cli command end
action 015 syslog msg New printer added $_nd_cdp_entry_name type
$_nd_cdp_platform
action 016 end
1
4
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 15
Problem Interface description must conform to a fixed format with validated fields
Solution IOS CLI alias TCL scripts EEM and EASy packaging
UDI Location
Customer
Interface
NOC can tell exactly which
device where it is who the
customer is and which
interface just from the
message
GigabitEthernet00 is up line protocol is up
Hardware is CN Gigabit Ethernet address is fc9947bb1640 (bia fc9947bb1640)
Description CISCO1921K9-V03-FCZ154492XZ-NYC-MLB-GigabitEthernet00
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
Cisco Public copy 2012 Cisco andor its affiliates All rights reserved 5
Network Programming in a
Cisco Open Network Environment
Bruno Klauser
Consulting Engineer EN EMEAR CTO Team bklauserciscocom
20131016 ndash Berlin
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 6
Phase 3 Phase 4 Phase 1 Phase 2
Scale Leadership Mainstream Inception
Ch
as
m
Incubation
EN EMEAR CTO Team Early Adopters Field
Invention
CDO
Phase 0
mainstream
new
approach
NWP Network
Programming
NWA Network
Automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 7
mainstream new
approach
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 8
adoption
phases
solution
developmnt
relevant
markets
route to
market
stake
holders
cross
the
chasm
incubation
competition
use
cases beachhead
customers
field
enablement
customer
profiling
sales
resources technical
guides
executive
sponsorship
services
whatrsquos
in it forhellip
customer
validation
ecosystem
roadmap
vision
demo
capabilities
business
case
(external)
success
metrics
business
case
(internal)
value
proposition
mainstream new
approach
Cisco Public 9 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 10
Network Embedded Automation spans across full Life Cycle
Operational Era Pre-Operational Era
Does it meet Requirements
Is it built to Specification
Post-Operational Era
How to take out of service
hellip
hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 11
Problem Sometimes we need data from one or multiple MIBs but
- we may not want to (re-)configure an NMS - donrsquot want to constantly poll - need to gather data during temporary loss of connectivity
Solution Use Bulk File MIB to define the data we need and periodically transfer it to a convenient location
- group data from multiple MIBs - single common polling interval - buffer data - transfer using RCP FTP TFTP - format ASCII or Binary
Feature Name Periodic MIB Data Collection and Transfer Mechanism
Available from IOS 120(24)S 122(25)S 123(2)T IOS XE 21 IOS XR 32 Platforms ASR1k x8xx ISR x900x ISR 72xx 73xx 76xx 10xxx ME3400 C4k C6k hellip See httptoolsciscocomSupportSNMPdoBrowseOIDdolocal=enamptranslate=TranslateampobjectInput=1361212
11
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 12
What Data am I interested in
Where and when do I want to poll Data
How do I want to export Data
Router(config) snmp mib bulkstat object-list my-if-data
Router(config-bulk-objects) add ifIndex
Router(config-bulk-objects) add ifDescr
Router(config-bulk-objects) add ifAdminStatus
Router(config-bulk-objects) add ifOperStatus
Router(config-bulk-objects) exit
1 Define Lists of relevant OIDs (Names for IF-MIB ASN1 for all others)
2 Specify Polling Schema
3 Configure the Transfer Mechanism ndash and enable it
Router(config) snmp mib bulkstat schema my-if-schema
Router(config-bulk-sc) object-list my-if-data
Router(config-bulk-sc) poll-interval 1
Router(config-bulk-sc) instance exact interface FastEthernet0
Router(config-bulk-sc) exit
Router(config) snmp mib bulkstat transfer my-fa0-transfer
Router(config-bulk-tr) schema my-if-schema
Router(config-bulk-tr) transfer-interval 5
Router(config-bulk-tr) url primary tftp10101010folder
Router(config-bulk-tr) retain 30
Router(config-bulk-tr) buffer-size 4096
Router(config-bulk-tr) enable
12
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 13
bull Auto Smart Ports are powered by EEM
bull Pre-built port configuration templates for simplify user experience and minimize configuration error
bull Automatic event detection (CDPLLDPMAC) triggers auto configuration
bull Authentication (8021x MAB) and authorization can be conducted before port configuration applied
bull Automatic notification can be sent to NMS system to help with asset tracking
bull Plug-n-play device deployment lowers overall management cost
CDP
MAC Addr
Radius Server
8021x
LLDP
NMS station
Problem How to trigger custom event-based port configurations Solution Use Embedded Event Manager (EEM)
1
3
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 14
Example When a printer is added to the network use an EEM applet to create a new ASP event
event manager applet dectect-printer
event neighbor-discovery interface regexp FastEthernet cdp add
action 001 regexp LasterJet $_nd_cdp_platform
action 002 if $_regexp_result eq 1
action 003 cli command enable
action 004 cli command config t
action 005 cli command interface $_nd_local_intf_name
action 006 cli command switchport access vlan $printer_vlan
action 007 cli command switchport mode access
action 008 cli command switchport port-security
action 009 cli command switchport port-security violation restrict
action 010 cli command switchport port-security aging time 2
action 011 cli command switchport port-security aging type inactivity
action 012 cli command spanning-tree portfast
action 013 cli command spanning-tree bpduguard enable
action 014 cli command end
action 015 syslog msg New printer added $_nd_cdp_entry_name type
$_nd_cdp_platform
action 016 end
1
4
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 15
Problem Interface description must conform to a fixed format with validated fields
Solution IOS CLI alias TCL scripts EEM and EASy packaging
UDI Location
Customer
Interface
NOC can tell exactly which
device where it is who the
customer is and which
interface just from the
message
GigabitEthernet00 is up line protocol is up
Hardware is CN Gigabit Ethernet address is fc9947bb1640 (bia fc9947bb1640)
Description CISCO1921K9-V03-FCZ154492XZ-NYC-MLB-GigabitEthernet00
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 6
Phase 3 Phase 4 Phase 1 Phase 2
Scale Leadership Mainstream Inception
Ch
as
m
Incubation
EN EMEAR CTO Team Early Adopters Field
Invention
CDO
Phase 0
mainstream
new
approach
NWP Network
Programming
NWA Network
Automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 7
mainstream new
approach
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 8
adoption
phases
solution
developmnt
relevant
markets
route to
market
stake
holders
cross
the
chasm
incubation
competition
use
cases beachhead
customers
field
enablement
customer
profiling
sales
resources technical
guides
executive
sponsorship
services
whatrsquos
in it forhellip
customer
validation
ecosystem
roadmap
vision
demo
capabilities
business
case
(external)
success
metrics
business
case
(internal)
value
proposition
mainstream new
approach
Cisco Public 9 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 10
Network Embedded Automation spans across full Life Cycle
Operational Era Pre-Operational Era
Does it meet Requirements
Is it built to Specification
Post-Operational Era
How to take out of service
hellip
hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 11
Problem Sometimes we need data from one or multiple MIBs but
- we may not want to (re-)configure an NMS - donrsquot want to constantly poll - need to gather data during temporary loss of connectivity
Solution Use Bulk File MIB to define the data we need and periodically transfer it to a convenient location
- group data from multiple MIBs - single common polling interval - buffer data - transfer using RCP FTP TFTP - format ASCII or Binary
Feature Name Periodic MIB Data Collection and Transfer Mechanism
Available from IOS 120(24)S 122(25)S 123(2)T IOS XE 21 IOS XR 32 Platforms ASR1k x8xx ISR x900x ISR 72xx 73xx 76xx 10xxx ME3400 C4k C6k hellip See httptoolsciscocomSupportSNMPdoBrowseOIDdolocal=enamptranslate=TranslateampobjectInput=1361212
11
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 12
What Data am I interested in
Where and when do I want to poll Data
How do I want to export Data
Router(config) snmp mib bulkstat object-list my-if-data
Router(config-bulk-objects) add ifIndex
Router(config-bulk-objects) add ifDescr
Router(config-bulk-objects) add ifAdminStatus
Router(config-bulk-objects) add ifOperStatus
Router(config-bulk-objects) exit
1 Define Lists of relevant OIDs (Names for IF-MIB ASN1 for all others)
2 Specify Polling Schema
3 Configure the Transfer Mechanism ndash and enable it
Router(config) snmp mib bulkstat schema my-if-schema
Router(config-bulk-sc) object-list my-if-data
Router(config-bulk-sc) poll-interval 1
Router(config-bulk-sc) instance exact interface FastEthernet0
Router(config-bulk-sc) exit
Router(config) snmp mib bulkstat transfer my-fa0-transfer
Router(config-bulk-tr) schema my-if-schema
Router(config-bulk-tr) transfer-interval 5
Router(config-bulk-tr) url primary tftp10101010folder
Router(config-bulk-tr) retain 30
Router(config-bulk-tr) buffer-size 4096
Router(config-bulk-tr) enable
12
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 13
bull Auto Smart Ports are powered by EEM
bull Pre-built port configuration templates for simplify user experience and minimize configuration error
bull Automatic event detection (CDPLLDPMAC) triggers auto configuration
bull Authentication (8021x MAB) and authorization can be conducted before port configuration applied
bull Automatic notification can be sent to NMS system to help with asset tracking
bull Plug-n-play device deployment lowers overall management cost
CDP
MAC Addr
Radius Server
8021x
LLDP
NMS station
Problem How to trigger custom event-based port configurations Solution Use Embedded Event Manager (EEM)
1
3
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 14
Example When a printer is added to the network use an EEM applet to create a new ASP event
event manager applet dectect-printer
event neighbor-discovery interface regexp FastEthernet cdp add
action 001 regexp LasterJet $_nd_cdp_platform
action 002 if $_regexp_result eq 1
action 003 cli command enable
action 004 cli command config t
action 005 cli command interface $_nd_local_intf_name
action 006 cli command switchport access vlan $printer_vlan
action 007 cli command switchport mode access
action 008 cli command switchport port-security
action 009 cli command switchport port-security violation restrict
action 010 cli command switchport port-security aging time 2
action 011 cli command switchport port-security aging type inactivity
action 012 cli command spanning-tree portfast
action 013 cli command spanning-tree bpduguard enable
action 014 cli command end
action 015 syslog msg New printer added $_nd_cdp_entry_name type
$_nd_cdp_platform
action 016 end
1
4
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 15
Problem Interface description must conform to a fixed format with validated fields
Solution IOS CLI alias TCL scripts EEM and EASy packaging
UDI Location
Customer
Interface
NOC can tell exactly which
device where it is who the
customer is and which
interface just from the
message
GigabitEthernet00 is up line protocol is up
Hardware is CN Gigabit Ethernet address is fc9947bb1640 (bia fc9947bb1640)
Description CISCO1921K9-V03-FCZ154492XZ-NYC-MLB-GigabitEthernet00
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 7
mainstream new
approach
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 8
adoption
phases
solution
developmnt
relevant
markets
route to
market
stake
holders
cross
the
chasm
incubation
competition
use
cases beachhead
customers
field
enablement
customer
profiling
sales
resources technical
guides
executive
sponsorship
services
whatrsquos
in it forhellip
customer
validation
ecosystem
roadmap
vision
demo
capabilities
business
case
(external)
success
metrics
business
case
(internal)
value
proposition
mainstream new
approach
Cisco Public 9 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 10
Network Embedded Automation spans across full Life Cycle
Operational Era Pre-Operational Era
Does it meet Requirements
Is it built to Specification
Post-Operational Era
How to take out of service
hellip
hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 11
Problem Sometimes we need data from one or multiple MIBs but
- we may not want to (re-)configure an NMS - donrsquot want to constantly poll - need to gather data during temporary loss of connectivity
Solution Use Bulk File MIB to define the data we need and periodically transfer it to a convenient location
- group data from multiple MIBs - single common polling interval - buffer data - transfer using RCP FTP TFTP - format ASCII or Binary
Feature Name Periodic MIB Data Collection and Transfer Mechanism
Available from IOS 120(24)S 122(25)S 123(2)T IOS XE 21 IOS XR 32 Platforms ASR1k x8xx ISR x900x ISR 72xx 73xx 76xx 10xxx ME3400 C4k C6k hellip See httptoolsciscocomSupportSNMPdoBrowseOIDdolocal=enamptranslate=TranslateampobjectInput=1361212
11
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 12
What Data am I interested in
Where and when do I want to poll Data
How do I want to export Data
Router(config) snmp mib bulkstat object-list my-if-data
Router(config-bulk-objects) add ifIndex
Router(config-bulk-objects) add ifDescr
Router(config-bulk-objects) add ifAdminStatus
Router(config-bulk-objects) add ifOperStatus
Router(config-bulk-objects) exit
1 Define Lists of relevant OIDs (Names for IF-MIB ASN1 for all others)
2 Specify Polling Schema
3 Configure the Transfer Mechanism ndash and enable it
Router(config) snmp mib bulkstat schema my-if-schema
Router(config-bulk-sc) object-list my-if-data
Router(config-bulk-sc) poll-interval 1
Router(config-bulk-sc) instance exact interface FastEthernet0
Router(config-bulk-sc) exit
Router(config) snmp mib bulkstat transfer my-fa0-transfer
Router(config-bulk-tr) schema my-if-schema
Router(config-bulk-tr) transfer-interval 5
Router(config-bulk-tr) url primary tftp10101010folder
Router(config-bulk-tr) retain 30
Router(config-bulk-tr) buffer-size 4096
Router(config-bulk-tr) enable
12
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 13
bull Auto Smart Ports are powered by EEM
bull Pre-built port configuration templates for simplify user experience and minimize configuration error
bull Automatic event detection (CDPLLDPMAC) triggers auto configuration
bull Authentication (8021x MAB) and authorization can be conducted before port configuration applied
bull Automatic notification can be sent to NMS system to help with asset tracking
bull Plug-n-play device deployment lowers overall management cost
CDP
MAC Addr
Radius Server
8021x
LLDP
NMS station
Problem How to trigger custom event-based port configurations Solution Use Embedded Event Manager (EEM)
1
3
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 14
Example When a printer is added to the network use an EEM applet to create a new ASP event
event manager applet dectect-printer
event neighbor-discovery interface regexp FastEthernet cdp add
action 001 regexp LasterJet $_nd_cdp_platform
action 002 if $_regexp_result eq 1
action 003 cli command enable
action 004 cli command config t
action 005 cli command interface $_nd_local_intf_name
action 006 cli command switchport access vlan $printer_vlan
action 007 cli command switchport mode access
action 008 cli command switchport port-security
action 009 cli command switchport port-security violation restrict
action 010 cli command switchport port-security aging time 2
action 011 cli command switchport port-security aging type inactivity
action 012 cli command spanning-tree portfast
action 013 cli command spanning-tree bpduguard enable
action 014 cli command end
action 015 syslog msg New printer added $_nd_cdp_entry_name type
$_nd_cdp_platform
action 016 end
1
4
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 15
Problem Interface description must conform to a fixed format with validated fields
Solution IOS CLI alias TCL scripts EEM and EASy packaging
UDI Location
Customer
Interface
NOC can tell exactly which
device where it is who the
customer is and which
interface just from the
message
GigabitEthernet00 is up line protocol is up
Hardware is CN Gigabit Ethernet address is fc9947bb1640 (bia fc9947bb1640)
Description CISCO1921K9-V03-FCZ154492XZ-NYC-MLB-GigabitEthernet00
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 8
adoption
phases
solution
developmnt
relevant
markets
route to
market
stake
holders
cross
the
chasm
incubation
competition
use
cases beachhead
customers
field
enablement
customer
profiling
sales
resources technical
guides
executive
sponsorship
services
whatrsquos
in it forhellip
customer
validation
ecosystem
roadmap
vision
demo
capabilities
business
case
(external)
success
metrics
business
case
(internal)
value
proposition
mainstream new
approach
Cisco Public 9 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 10
Network Embedded Automation spans across full Life Cycle
Operational Era Pre-Operational Era
Does it meet Requirements
Is it built to Specification
Post-Operational Era
How to take out of service
hellip
hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 11
Problem Sometimes we need data from one or multiple MIBs but
- we may not want to (re-)configure an NMS - donrsquot want to constantly poll - need to gather data during temporary loss of connectivity
Solution Use Bulk File MIB to define the data we need and periodically transfer it to a convenient location
- group data from multiple MIBs - single common polling interval - buffer data - transfer using RCP FTP TFTP - format ASCII or Binary
Feature Name Periodic MIB Data Collection and Transfer Mechanism
Available from IOS 120(24)S 122(25)S 123(2)T IOS XE 21 IOS XR 32 Platforms ASR1k x8xx ISR x900x ISR 72xx 73xx 76xx 10xxx ME3400 C4k C6k hellip See httptoolsciscocomSupportSNMPdoBrowseOIDdolocal=enamptranslate=TranslateampobjectInput=1361212
11
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 12
What Data am I interested in
Where and when do I want to poll Data
How do I want to export Data
Router(config) snmp mib bulkstat object-list my-if-data
Router(config-bulk-objects) add ifIndex
Router(config-bulk-objects) add ifDescr
Router(config-bulk-objects) add ifAdminStatus
Router(config-bulk-objects) add ifOperStatus
Router(config-bulk-objects) exit
1 Define Lists of relevant OIDs (Names for IF-MIB ASN1 for all others)
2 Specify Polling Schema
3 Configure the Transfer Mechanism ndash and enable it
Router(config) snmp mib bulkstat schema my-if-schema
Router(config-bulk-sc) object-list my-if-data
Router(config-bulk-sc) poll-interval 1
Router(config-bulk-sc) instance exact interface FastEthernet0
Router(config-bulk-sc) exit
Router(config) snmp mib bulkstat transfer my-fa0-transfer
Router(config-bulk-tr) schema my-if-schema
Router(config-bulk-tr) transfer-interval 5
Router(config-bulk-tr) url primary tftp10101010folder
Router(config-bulk-tr) retain 30
Router(config-bulk-tr) buffer-size 4096
Router(config-bulk-tr) enable
12
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 13
bull Auto Smart Ports are powered by EEM
bull Pre-built port configuration templates for simplify user experience and minimize configuration error
bull Automatic event detection (CDPLLDPMAC) triggers auto configuration
bull Authentication (8021x MAB) and authorization can be conducted before port configuration applied
bull Automatic notification can be sent to NMS system to help with asset tracking
bull Plug-n-play device deployment lowers overall management cost
CDP
MAC Addr
Radius Server
8021x
LLDP
NMS station
Problem How to trigger custom event-based port configurations Solution Use Embedded Event Manager (EEM)
1
3
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 14
Example When a printer is added to the network use an EEM applet to create a new ASP event
event manager applet dectect-printer
event neighbor-discovery interface regexp FastEthernet cdp add
action 001 regexp LasterJet $_nd_cdp_platform
action 002 if $_regexp_result eq 1
action 003 cli command enable
action 004 cli command config t
action 005 cli command interface $_nd_local_intf_name
action 006 cli command switchport access vlan $printer_vlan
action 007 cli command switchport mode access
action 008 cli command switchport port-security
action 009 cli command switchport port-security violation restrict
action 010 cli command switchport port-security aging time 2
action 011 cli command switchport port-security aging type inactivity
action 012 cli command spanning-tree portfast
action 013 cli command spanning-tree bpduguard enable
action 014 cli command end
action 015 syslog msg New printer added $_nd_cdp_entry_name type
$_nd_cdp_platform
action 016 end
1
4
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 15
Problem Interface description must conform to a fixed format with validated fields
Solution IOS CLI alias TCL scripts EEM and EASy packaging
UDI Location
Customer
Interface
NOC can tell exactly which
device where it is who the
customer is and which
interface just from the
message
GigabitEthernet00 is up line protocol is up
Hardware is CN Gigabit Ethernet address is fc9947bb1640 (bia fc9947bb1640)
Description CISCO1921K9-V03-FCZ154492XZ-NYC-MLB-GigabitEthernet00
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
Cisco Public 9 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 10
Network Embedded Automation spans across full Life Cycle
Operational Era Pre-Operational Era
Does it meet Requirements
Is it built to Specification
Post-Operational Era
How to take out of service
hellip
hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 11
Problem Sometimes we need data from one or multiple MIBs but
- we may not want to (re-)configure an NMS - donrsquot want to constantly poll - need to gather data during temporary loss of connectivity
Solution Use Bulk File MIB to define the data we need and periodically transfer it to a convenient location
- group data from multiple MIBs - single common polling interval - buffer data - transfer using RCP FTP TFTP - format ASCII or Binary
Feature Name Periodic MIB Data Collection and Transfer Mechanism
Available from IOS 120(24)S 122(25)S 123(2)T IOS XE 21 IOS XR 32 Platforms ASR1k x8xx ISR x900x ISR 72xx 73xx 76xx 10xxx ME3400 C4k C6k hellip See httptoolsciscocomSupportSNMPdoBrowseOIDdolocal=enamptranslate=TranslateampobjectInput=1361212
11
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 12
What Data am I interested in
Where and when do I want to poll Data
How do I want to export Data
Router(config) snmp mib bulkstat object-list my-if-data
Router(config-bulk-objects) add ifIndex
Router(config-bulk-objects) add ifDescr
Router(config-bulk-objects) add ifAdminStatus
Router(config-bulk-objects) add ifOperStatus
Router(config-bulk-objects) exit
1 Define Lists of relevant OIDs (Names for IF-MIB ASN1 for all others)
2 Specify Polling Schema
3 Configure the Transfer Mechanism ndash and enable it
Router(config) snmp mib bulkstat schema my-if-schema
Router(config-bulk-sc) object-list my-if-data
Router(config-bulk-sc) poll-interval 1
Router(config-bulk-sc) instance exact interface FastEthernet0
Router(config-bulk-sc) exit
Router(config) snmp mib bulkstat transfer my-fa0-transfer
Router(config-bulk-tr) schema my-if-schema
Router(config-bulk-tr) transfer-interval 5
Router(config-bulk-tr) url primary tftp10101010folder
Router(config-bulk-tr) retain 30
Router(config-bulk-tr) buffer-size 4096
Router(config-bulk-tr) enable
12
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 13
bull Auto Smart Ports are powered by EEM
bull Pre-built port configuration templates for simplify user experience and minimize configuration error
bull Automatic event detection (CDPLLDPMAC) triggers auto configuration
bull Authentication (8021x MAB) and authorization can be conducted before port configuration applied
bull Automatic notification can be sent to NMS system to help with asset tracking
bull Plug-n-play device deployment lowers overall management cost
CDP
MAC Addr
Radius Server
8021x
LLDP
NMS station
Problem How to trigger custom event-based port configurations Solution Use Embedded Event Manager (EEM)
1
3
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 14
Example When a printer is added to the network use an EEM applet to create a new ASP event
event manager applet dectect-printer
event neighbor-discovery interface regexp FastEthernet cdp add
action 001 regexp LasterJet $_nd_cdp_platform
action 002 if $_regexp_result eq 1
action 003 cli command enable
action 004 cli command config t
action 005 cli command interface $_nd_local_intf_name
action 006 cli command switchport access vlan $printer_vlan
action 007 cli command switchport mode access
action 008 cli command switchport port-security
action 009 cli command switchport port-security violation restrict
action 010 cli command switchport port-security aging time 2
action 011 cli command switchport port-security aging type inactivity
action 012 cli command spanning-tree portfast
action 013 cli command spanning-tree bpduguard enable
action 014 cli command end
action 015 syslog msg New printer added $_nd_cdp_entry_name type
$_nd_cdp_platform
action 016 end
1
4
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 15
Problem Interface description must conform to a fixed format with validated fields
Solution IOS CLI alias TCL scripts EEM and EASy packaging
UDI Location
Customer
Interface
NOC can tell exactly which
device where it is who the
customer is and which
interface just from the
message
GigabitEthernet00 is up line protocol is up
Hardware is CN Gigabit Ethernet address is fc9947bb1640 (bia fc9947bb1640)
Description CISCO1921K9-V03-FCZ154492XZ-NYC-MLB-GigabitEthernet00
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 10
Network Embedded Automation spans across full Life Cycle
Operational Era Pre-Operational Era
Does it meet Requirements
Is it built to Specification
Post-Operational Era
How to take out of service
hellip
hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 11
Problem Sometimes we need data from one or multiple MIBs but
- we may not want to (re-)configure an NMS - donrsquot want to constantly poll - need to gather data during temporary loss of connectivity
Solution Use Bulk File MIB to define the data we need and periodically transfer it to a convenient location
- group data from multiple MIBs - single common polling interval - buffer data - transfer using RCP FTP TFTP - format ASCII or Binary
Feature Name Periodic MIB Data Collection and Transfer Mechanism
Available from IOS 120(24)S 122(25)S 123(2)T IOS XE 21 IOS XR 32 Platforms ASR1k x8xx ISR x900x ISR 72xx 73xx 76xx 10xxx ME3400 C4k C6k hellip See httptoolsciscocomSupportSNMPdoBrowseOIDdolocal=enamptranslate=TranslateampobjectInput=1361212
11
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 12
What Data am I interested in
Where and when do I want to poll Data
How do I want to export Data
Router(config) snmp mib bulkstat object-list my-if-data
Router(config-bulk-objects) add ifIndex
Router(config-bulk-objects) add ifDescr
Router(config-bulk-objects) add ifAdminStatus
Router(config-bulk-objects) add ifOperStatus
Router(config-bulk-objects) exit
1 Define Lists of relevant OIDs (Names for IF-MIB ASN1 for all others)
2 Specify Polling Schema
3 Configure the Transfer Mechanism ndash and enable it
Router(config) snmp mib bulkstat schema my-if-schema
Router(config-bulk-sc) object-list my-if-data
Router(config-bulk-sc) poll-interval 1
Router(config-bulk-sc) instance exact interface FastEthernet0
Router(config-bulk-sc) exit
Router(config) snmp mib bulkstat transfer my-fa0-transfer
Router(config-bulk-tr) schema my-if-schema
Router(config-bulk-tr) transfer-interval 5
Router(config-bulk-tr) url primary tftp10101010folder
Router(config-bulk-tr) retain 30
Router(config-bulk-tr) buffer-size 4096
Router(config-bulk-tr) enable
12
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 13
bull Auto Smart Ports are powered by EEM
bull Pre-built port configuration templates for simplify user experience and minimize configuration error
bull Automatic event detection (CDPLLDPMAC) triggers auto configuration
bull Authentication (8021x MAB) and authorization can be conducted before port configuration applied
bull Automatic notification can be sent to NMS system to help with asset tracking
bull Plug-n-play device deployment lowers overall management cost
CDP
MAC Addr
Radius Server
8021x
LLDP
NMS station
Problem How to trigger custom event-based port configurations Solution Use Embedded Event Manager (EEM)
1
3
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 14
Example When a printer is added to the network use an EEM applet to create a new ASP event
event manager applet dectect-printer
event neighbor-discovery interface regexp FastEthernet cdp add
action 001 regexp LasterJet $_nd_cdp_platform
action 002 if $_regexp_result eq 1
action 003 cli command enable
action 004 cli command config t
action 005 cli command interface $_nd_local_intf_name
action 006 cli command switchport access vlan $printer_vlan
action 007 cli command switchport mode access
action 008 cli command switchport port-security
action 009 cli command switchport port-security violation restrict
action 010 cli command switchport port-security aging time 2
action 011 cli command switchport port-security aging type inactivity
action 012 cli command spanning-tree portfast
action 013 cli command spanning-tree bpduguard enable
action 014 cli command end
action 015 syslog msg New printer added $_nd_cdp_entry_name type
$_nd_cdp_platform
action 016 end
1
4
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 15
Problem Interface description must conform to a fixed format with validated fields
Solution IOS CLI alias TCL scripts EEM and EASy packaging
UDI Location
Customer
Interface
NOC can tell exactly which
device where it is who the
customer is and which
interface just from the
message
GigabitEthernet00 is up line protocol is up
Hardware is CN Gigabit Ethernet address is fc9947bb1640 (bia fc9947bb1640)
Description CISCO1921K9-V03-FCZ154492XZ-NYC-MLB-GigabitEthernet00
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 11
Problem Sometimes we need data from one or multiple MIBs but
- we may not want to (re-)configure an NMS - donrsquot want to constantly poll - need to gather data during temporary loss of connectivity
Solution Use Bulk File MIB to define the data we need and periodically transfer it to a convenient location
- group data from multiple MIBs - single common polling interval - buffer data - transfer using RCP FTP TFTP - format ASCII or Binary
Feature Name Periodic MIB Data Collection and Transfer Mechanism
Available from IOS 120(24)S 122(25)S 123(2)T IOS XE 21 IOS XR 32 Platforms ASR1k x8xx ISR x900x ISR 72xx 73xx 76xx 10xxx ME3400 C4k C6k hellip See httptoolsciscocomSupportSNMPdoBrowseOIDdolocal=enamptranslate=TranslateampobjectInput=1361212
11
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 12
What Data am I interested in
Where and when do I want to poll Data
How do I want to export Data
Router(config) snmp mib bulkstat object-list my-if-data
Router(config-bulk-objects) add ifIndex
Router(config-bulk-objects) add ifDescr
Router(config-bulk-objects) add ifAdminStatus
Router(config-bulk-objects) add ifOperStatus
Router(config-bulk-objects) exit
1 Define Lists of relevant OIDs (Names for IF-MIB ASN1 for all others)
2 Specify Polling Schema
3 Configure the Transfer Mechanism ndash and enable it
Router(config) snmp mib bulkstat schema my-if-schema
Router(config-bulk-sc) object-list my-if-data
Router(config-bulk-sc) poll-interval 1
Router(config-bulk-sc) instance exact interface FastEthernet0
Router(config-bulk-sc) exit
Router(config) snmp mib bulkstat transfer my-fa0-transfer
Router(config-bulk-tr) schema my-if-schema
Router(config-bulk-tr) transfer-interval 5
Router(config-bulk-tr) url primary tftp10101010folder
Router(config-bulk-tr) retain 30
Router(config-bulk-tr) buffer-size 4096
Router(config-bulk-tr) enable
12
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 13
bull Auto Smart Ports are powered by EEM
bull Pre-built port configuration templates for simplify user experience and minimize configuration error
bull Automatic event detection (CDPLLDPMAC) triggers auto configuration
bull Authentication (8021x MAB) and authorization can be conducted before port configuration applied
bull Automatic notification can be sent to NMS system to help with asset tracking
bull Plug-n-play device deployment lowers overall management cost
CDP
MAC Addr
Radius Server
8021x
LLDP
NMS station
Problem How to trigger custom event-based port configurations Solution Use Embedded Event Manager (EEM)
1
3
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 14
Example When a printer is added to the network use an EEM applet to create a new ASP event
event manager applet dectect-printer
event neighbor-discovery interface regexp FastEthernet cdp add
action 001 regexp LasterJet $_nd_cdp_platform
action 002 if $_regexp_result eq 1
action 003 cli command enable
action 004 cli command config t
action 005 cli command interface $_nd_local_intf_name
action 006 cli command switchport access vlan $printer_vlan
action 007 cli command switchport mode access
action 008 cli command switchport port-security
action 009 cli command switchport port-security violation restrict
action 010 cli command switchport port-security aging time 2
action 011 cli command switchport port-security aging type inactivity
action 012 cli command spanning-tree portfast
action 013 cli command spanning-tree bpduguard enable
action 014 cli command end
action 015 syslog msg New printer added $_nd_cdp_entry_name type
$_nd_cdp_platform
action 016 end
1
4
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 15
Problem Interface description must conform to a fixed format with validated fields
Solution IOS CLI alias TCL scripts EEM and EASy packaging
UDI Location
Customer
Interface
NOC can tell exactly which
device where it is who the
customer is and which
interface just from the
message
GigabitEthernet00 is up line protocol is up
Hardware is CN Gigabit Ethernet address is fc9947bb1640 (bia fc9947bb1640)
Description CISCO1921K9-V03-FCZ154492XZ-NYC-MLB-GigabitEthernet00
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 12
What Data am I interested in
Where and when do I want to poll Data
How do I want to export Data
Router(config) snmp mib bulkstat object-list my-if-data
Router(config-bulk-objects) add ifIndex
Router(config-bulk-objects) add ifDescr
Router(config-bulk-objects) add ifAdminStatus
Router(config-bulk-objects) add ifOperStatus
Router(config-bulk-objects) exit
1 Define Lists of relevant OIDs (Names for IF-MIB ASN1 for all others)
2 Specify Polling Schema
3 Configure the Transfer Mechanism ndash and enable it
Router(config) snmp mib bulkstat schema my-if-schema
Router(config-bulk-sc) object-list my-if-data
Router(config-bulk-sc) poll-interval 1
Router(config-bulk-sc) instance exact interface FastEthernet0
Router(config-bulk-sc) exit
Router(config) snmp mib bulkstat transfer my-fa0-transfer
Router(config-bulk-tr) schema my-if-schema
Router(config-bulk-tr) transfer-interval 5
Router(config-bulk-tr) url primary tftp10101010folder
Router(config-bulk-tr) retain 30
Router(config-bulk-tr) buffer-size 4096
Router(config-bulk-tr) enable
12
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 13
bull Auto Smart Ports are powered by EEM
bull Pre-built port configuration templates for simplify user experience and minimize configuration error
bull Automatic event detection (CDPLLDPMAC) triggers auto configuration
bull Authentication (8021x MAB) and authorization can be conducted before port configuration applied
bull Automatic notification can be sent to NMS system to help with asset tracking
bull Plug-n-play device deployment lowers overall management cost
CDP
MAC Addr
Radius Server
8021x
LLDP
NMS station
Problem How to trigger custom event-based port configurations Solution Use Embedded Event Manager (EEM)
1
3
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 14
Example When a printer is added to the network use an EEM applet to create a new ASP event
event manager applet dectect-printer
event neighbor-discovery interface regexp FastEthernet cdp add
action 001 regexp LasterJet $_nd_cdp_platform
action 002 if $_regexp_result eq 1
action 003 cli command enable
action 004 cli command config t
action 005 cli command interface $_nd_local_intf_name
action 006 cli command switchport access vlan $printer_vlan
action 007 cli command switchport mode access
action 008 cli command switchport port-security
action 009 cli command switchport port-security violation restrict
action 010 cli command switchport port-security aging time 2
action 011 cli command switchport port-security aging type inactivity
action 012 cli command spanning-tree portfast
action 013 cli command spanning-tree bpduguard enable
action 014 cli command end
action 015 syslog msg New printer added $_nd_cdp_entry_name type
$_nd_cdp_platform
action 016 end
1
4
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 15
Problem Interface description must conform to a fixed format with validated fields
Solution IOS CLI alias TCL scripts EEM and EASy packaging
UDI Location
Customer
Interface
NOC can tell exactly which
device where it is who the
customer is and which
interface just from the
message
GigabitEthernet00 is up line protocol is up
Hardware is CN Gigabit Ethernet address is fc9947bb1640 (bia fc9947bb1640)
Description CISCO1921K9-V03-FCZ154492XZ-NYC-MLB-GigabitEthernet00
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 13
bull Auto Smart Ports are powered by EEM
bull Pre-built port configuration templates for simplify user experience and minimize configuration error
bull Automatic event detection (CDPLLDPMAC) triggers auto configuration
bull Authentication (8021x MAB) and authorization can be conducted before port configuration applied
bull Automatic notification can be sent to NMS system to help with asset tracking
bull Plug-n-play device deployment lowers overall management cost
CDP
MAC Addr
Radius Server
8021x
LLDP
NMS station
Problem How to trigger custom event-based port configurations Solution Use Embedded Event Manager (EEM)
1
3
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 14
Example When a printer is added to the network use an EEM applet to create a new ASP event
event manager applet dectect-printer
event neighbor-discovery interface regexp FastEthernet cdp add
action 001 regexp LasterJet $_nd_cdp_platform
action 002 if $_regexp_result eq 1
action 003 cli command enable
action 004 cli command config t
action 005 cli command interface $_nd_local_intf_name
action 006 cli command switchport access vlan $printer_vlan
action 007 cli command switchport mode access
action 008 cli command switchport port-security
action 009 cli command switchport port-security violation restrict
action 010 cli command switchport port-security aging time 2
action 011 cli command switchport port-security aging type inactivity
action 012 cli command spanning-tree portfast
action 013 cli command spanning-tree bpduguard enable
action 014 cli command end
action 015 syslog msg New printer added $_nd_cdp_entry_name type
$_nd_cdp_platform
action 016 end
1
4
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 15
Problem Interface description must conform to a fixed format with validated fields
Solution IOS CLI alias TCL scripts EEM and EASy packaging
UDI Location
Customer
Interface
NOC can tell exactly which
device where it is who the
customer is and which
interface just from the
message
GigabitEthernet00 is up line protocol is up
Hardware is CN Gigabit Ethernet address is fc9947bb1640 (bia fc9947bb1640)
Description CISCO1921K9-V03-FCZ154492XZ-NYC-MLB-GigabitEthernet00
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 14
Example When a printer is added to the network use an EEM applet to create a new ASP event
event manager applet dectect-printer
event neighbor-discovery interface regexp FastEthernet cdp add
action 001 regexp LasterJet $_nd_cdp_platform
action 002 if $_regexp_result eq 1
action 003 cli command enable
action 004 cli command config t
action 005 cli command interface $_nd_local_intf_name
action 006 cli command switchport access vlan $printer_vlan
action 007 cli command switchport mode access
action 008 cli command switchport port-security
action 009 cli command switchport port-security violation restrict
action 010 cli command switchport port-security aging time 2
action 011 cli command switchport port-security aging type inactivity
action 012 cli command spanning-tree portfast
action 013 cli command spanning-tree bpduguard enable
action 014 cli command end
action 015 syslog msg New printer added $_nd_cdp_entry_name type
$_nd_cdp_platform
action 016 end
1
4
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 15
Problem Interface description must conform to a fixed format with validated fields
Solution IOS CLI alias TCL scripts EEM and EASy packaging
UDI Location
Customer
Interface
NOC can tell exactly which
device where it is who the
customer is and which
interface just from the
message
GigabitEthernet00 is up line protocol is up
Hardware is CN Gigabit Ethernet address is fc9947bb1640 (bia fc9947bb1640)
Description CISCO1921K9-V03-FCZ154492XZ-NYC-MLB-GigabitEthernet00
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 15
Problem Interface description must conform to a fixed format with validated fields
Solution IOS CLI alias TCL scripts EEM and EASy packaging
UDI Location
Customer
Interface
NOC can tell exactly which
device where it is who the
customer is and which
interface just from the
message
GigabitEthernet00 is up line protocol is up
Hardware is CN Gigabit Ethernet address is fc9947bb1640 (bia fc9947bb1640)
Description CISCO1921K9-V03-FCZ154492XZ-NYC-MLB-GigabitEthernet00
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 16
Problem How to actively gather and share information from a router and from a few devices behind the router ndash across organizational and technical borders
Solution 1 Initiate a project to make use of SNMP Syslog Event Management Software Reporting Provisioning and CRM Systems
Solution 2 Use Cisco IOS Network Automation to collect and post the information
namespace import http
Using Cisco IOS Embedded Event Manager and Tcl
1 Import the http package into EEM policy
2 Collect the information required
set my_query [httpformatQuery status $my_info]
3 Build a query for the http POST operation
set my_reply [httpgeturl $my_server_url -query $my_query]
4 POST the information to a website
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 17
See httptwittercomEASyDMI Note it is NOT recommended to use a public site or feed other than for demo purpose
Real-World
Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 18
Real-World Example
Problem Sometimes we want to receive remote information on a Router Switch and be able to react to it locally ndash for example a notification from a UPS System
Solution Use Network Automation based on Cisco IOS Embedded Event Manager leveraging the EEM SNMP Notification Event Detector
Router Switch can received SNMP Notifications
Execute (trigger) EEM Policy to take local action
Policy can query varbind info
Supports Incoming or Outgoing Notifications
Outgoing only for locally generated Notifications
Router(config event manager applet catch-a-trap
router(config-applet) description test snmp notification unmanaged service
router(config-applet) event snmp-notification oid 13616311410
oid-val 1361631153 op eq src-ip-address 105189176
direction incoming
router(config-applet) action 010 hellip
router(config-applet) action 020 hellip
Uninterruptible Power Supply
SNMP Trap ndash On Battery 5 Min Remaining
EEM EEM
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 19
Problem How to initiate preventive Maintenance in a HA Environment
Solution 1 Manually change topology after a low priority Syslog warning has been seen (and understood)
Solution 2 Use Cisco IOS Network Automation to schedule a HSRP failover upon GOLD hardware diagnostics result
Standby Primary
Active
1 Cisco IOS Generic Online Diagnostics (GOLD) detects a potential hardware problem
1
EEM 2
2 GOLD Event is detected by Embedded Event Manager (EEM) ndash which schedules an HSRP Failover upon next maintenance window
EEM
3
3 HSRP Failover to Standby node
4 Preventive maintenance replacement activity can now take place on Primary node
HSRP
1
9
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 20
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
2005 - 2015
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 21
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3 2
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 22
On active cluster switches
If we are in HSRP sbquoActivelsquo state ampamp sender is a secondary ASA going to active
For each ASA-facing interface shut
ciscoeemevent_register_snmp_notification oid 1361419941123150 oid_val 0 op ne
1 ndash ASA active
2 ndash shut ASA intf
2 ndash shut ASA intf
Problem Upon a standby ASA deciding to become active we want to force full cluster failover by shutting down all ASA-facing interfaces on the other clusterrsquos switch
Solution use EEM SNMP Event Detector
Real-World
Example
22
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 23
Wireless Controller(s) (WLC etc hellip)
ICT
Opera
tions
Network Survivability Manageability Automation
Virtual Overlay Networks
Business Operations
1
a
b
3
c
Operations
(FCAPS)
6 7 Resource
Allocation
5 Services
(Location Guestnet Onboarding hellip)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 24
1995 2000 2005 2010 2015
Desig
n V
ari
ab
ilit
y amp
Co
mp
lexit
y
Source httpnetworkcomplexityorgwikiindexphptitle=Definition
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
Cisco Public 25 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 26
What Is Software Defined Network (SDN)
ldquohellipIn the SDN architecture the control and data
planes are decoupled network intelligence and state
are logically centralized and the underlying network
infrastructure is abstracted from the applicationshelliprdquo
Source wwwopennetworkingorg
What is OpenStack
Opensource software for building public
and private Clouds includes Compute (Nova)
Networking (Quantum) and Storage (Swift)
services
Source wwwopenstackorg
What is Overlay Network
Overlay network is created on existing network
infrastructure (physical andor virtual) using a network
protocol Examples of overlay network protocol are
GRE VPLS OTV LISP and VXLAN
What Is OpenFlow
Open protocol that specifies interactions between
de-coupled control and data planes
Note OF is not mandatory for SDN
Note North-bound Controller APIs are vendor-specific
Note Applicable to SDN and non-SDN networks Note Applicable to SDN and non-SDN networks
Note SDN is not mandatory for network programmability
nor automation
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 27
bull Common across SDN approaches
bull Enabling capabilities
bull Proliferating across domains
Network Programming
bull ASIC level
programmability
bull Device level
programmability
bull Node Agents
bull Network APIs and
Controller APIs
bull
Virtualization
bull Virtual Overlay
Networks
bull Network Function
Virtualization
bull Virtual Containers
inside Networks
bull hellip
Application Centric
Architectures
bull Agents and Controllers
bull Cloud-connect
Architectures
bull Distributed and
Embedded Systems
bull Peers Sentinels
Agents
bull hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 28
Application Centric
Infrastructure
Applications
L4-7 Services
L2-3 Delivery Addressing
VLAN
Policy Model
Analytics and Controllers
Applications
L4-7 Services
L2-3 Delivery
Addressing
VLAN
(Based on) ISO OSI
Tig
htly
Co
up
led
TCPIP
Network
Access
Internet
Session
Applications
Su
pe
rse
de
d b
y
De
co
up
led
See also httpspectrumieeeorgcomputingnetworksosi-the-internet-that-wasnt
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 29
Applications are
bull Distributed 2-tier 3-tier n-tier
bull Remote Users
bull Remote Storage
bull Remote Peers Sensors Actors
Sentinels Satellites Agents
Myriads of Things and Applications connected by the Network
Offices
Sources Machina Research
Smart Homes Smart Industry
Growing from Trillions to Tens of Trillions
Smart Car Smart Agriculture Smart Health
Growing from Billions to Trillions
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 30
bull The network knows its topology from routing protocols and link-layer neighbor protocols (eg CDP LLDP etc)
bull About 75 of all problems require some knowledge of the topology in order to determine root cause
bull Leveraging onePK the network can store the topology in a way that can be retrieved using a single command
bull The topology is always up-to-date and always accurate
Proxy
Proxy
Proxy
TAN
ROOT
Domain Site 1
Domain Site 2
Domain Site 4
Domain Site 3
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Node 1
Node 2
Node N
Proxy
Node 2
Node N
Proxy
Node 2
Node 1
Real-World Example
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 31
1 Connect to a device running the Topology-Aware Network app
2 Issue the custom ldquotopology sendrdquo command
3 Router sends current topology image to user
The whole process takes a few seconds
TAN onePK app
Routertopology send jclarkeciscocom
Real-World Example
And Add Locationhellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 32
Real-World Example
Problem How to deliver secure trusted robust cost-effective broadband connectivity to mobile emergency response units
Solution Use Network Programming based on Cisco onePK and Cisco IOS Embedded Event Manager to integrate low-cost high-bandwidth options with accredited legacy radio connectivity
Cisco ISRM2M 819
WiFi
1
1 Connect high-bandwidth forward clients via WiFi
EEM
2
2 Use Cisco IOS EEM for onboard system integration and adaptation
Cisco ISR 29xx
PMR Network
3
3 Use Cisco onePK to redirect IKE key exchange out-of-band via legacy radio
Ka Band 4
4 Secure IPSec tunnel via cost-effective high bandwidth Ka Band
5 Reliable secure emergency response network saving ~4Meuro operating cost annually
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 33
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Traditional Approach Static purpose-built Matrix Network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Purpose Built
Matrix Switch
Static Filtering and
Forwarding
SPAN Ports
Purpose-built specialized Equipment
Engineering Integration
Certified Tools
Static Filtering and Forwarding
Inflexible and expensive
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 34
Real-World Example
Problem How to build and operate a flexible programmable and cost-effective monitoring network
Monitoring Tools
for Legal Compliance
Business Intelligence
Orchestration
Production Network
Openflow Enabled
Nexus 3000s
Dynamic Filter and Forwarding
Event Driven Real Time
Cisco ONE Controller
UI and Open APIs
Monitor Manager
Solution Dynamic Monitor Manager Solution based on Cisco ONE Controller
bull Agent Enabled general purpose Networking (Nexus 3000s initially)
bull Operational Integration
bull Open APIs and UI
bull Dynamic Filtering and Forwarding
Agile and cost effective
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 35
Real-World Example
1) Create a Filter for relevant Traffic
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 36
1) Create a Filter for relevant Traffic
Real-World Example
2) Apply Filter to Rule
(Source Destination Ports)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 37
1) Create a Filter for relevant Traffic
2) Apply Filter to Rule
(Source Destination Ports)
Real-World Example
3) Monitor Troubleshoot actual
Traffic Flows as needed
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 38
Real-World Example
Problem How to optimize service delivery to highly dynamic application demand
Solution Elastic WAN Bandwidth and DC Infrastructure based on Cisco Daylight Controller and ESC
1
User Requestor uses one of
several application interfaces to the
Cisco DaylightXNC Controller to
request a network service or
application
Cisco Daylight Controller
Core Functionality
Cisco Advanced Functions
onePK
Cisco Apps Customer Apps ISV Apps Open Src Apps
OpenFlow More
Coming
REST OSGI More
Coming 3
Cisco DaylightXNC uses a service
orchestration facility such as the Elastic
Services Controller (ESC) to spin-up the
required virtualized application infrastructure in
the DC
WAN DC
Network Service (IDS DNS FW DHCP)
Consumer Business App
Service Orchestration
ESC
Virtual Service Scaling
User Requestor
2
Cisco DaylightXNC calculates
creates and maintains an optimal
path through the network and adjusts
the path profile to accommodate
demand 4
ESC continuously monitors the utilization of both
network service and application infrastructures
(ganglia) adding and removing virtualized
service-instances as needed
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
Cisco Public 39 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 40
Donald Knuth 1974
(Author of ldquoThe Art of Computer Programmingrdquo)
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 41
4+1 View Model
bull Scenarios Use Case Who What and Why Examples Routing-for-(Dollars) Application-Flow-Manipulation Network Slicing SDDC Provisioning CIN hellip
bull Development View SDKs Packages Libraries Tools Examples onePK SDK binaries so Eclipse Debugger IOL hellip
bull Logical View Features Functions Classes Abstractions Examples onePK APIs in C Java Application APIs hellip
bull Process View Architectures Processes Interactions Objects Examples Agents Controllers Thrift IDL Cloud Connectors Sentinels hellip
bull Physical View Deployment Hosting Topology Connectivity Examples Virtual Containers Blades Endpoints L1-2-3 Overlay
See httpsenwikipediaorgwiki4+1_Architectural_View_Model
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 42
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Services
Orchestration Analytics
Applications
Network
Harvest Network
Intelligence
Program for Optimized
Experience
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 43
Application Software
Self- and New Applications
SaaS and Software Driven Integration
Context Awareness
Operations Business Intelligence
Embedded Software
Embedded Automation
Visibility and Control
IOS Intelligence Manageability
Infrastructure Software
Controllers
Analytics Policy
Management and Orchestration
Data Plane ndash (ASIC and Software)
Virtual Overlay Networks
ICT
Govern
ance a
nd O
pera
tion
s
Network
Domain Controllers
Applications and Users
a
1
use
2
use
4
interact
5
interact
3
interact
ma
na
ge
b
c
d control e
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 44
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 45
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Cisco onePK Agent Infrastructure
oneP
K L
oca
tio
n S
erv
ice
Se
t
oneP
K B
GP
Se
rvic
e S
et
Cis
co
819 A
irV
isio
n A
PIs
Op
en
Flo
w
I2R
S
PC
EP
Ne
utr
on
OM
I
Puppet
NE
TC
ON
F +
Ya
ng
oneP
K D
ata
Pa
th S
erv
ice
Se
t
oneP
K P
olic
y S
erv
ice
Se
t
oneP
K R
ou
tin
g S
erv
ice
Se
t
oneP
K E
lem
en
t S
erv
ice
Se
t
oneP
K D
isco
ve
ry S
erv
ice
Se
t
oneP
K U
tilit
y S
erv
ice
Se
t
oneP
K D
eve
lop
er
Se
rvic
e S
et
Cisco one IoT APIs Cisco Cloud Connector Toolkit
Cisco onePK API Presentation Software Development Kit Runtime
onePK BASE
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 46
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 47
Programmable
Network Layer
Network
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Application Interfaces ndash (OSGi REST hellip)
CLI SNMP hellip
Controller Advanced Functionality
Controller Applications
Authentication Troubleshooting
Flow Manager TIF Slice Manager
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 48
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 49
Network-aware
Applications
Cisco Unified Framework
Programmable
Network Layer
(Physical + Virtual) Cisco IOS (Enterprise Data Center Service Provider)
Data Plane ndash (ASIC and Software)
Controller Layer
(Orchestration + Analytics) Service Abstraction Layer
Controller Core
Controller Advanced Functionality
Application Interfaces ndash (OSGi REST hellip)
Device Interfaces and Agents ndash (onePK OpenFlow OpenStack I2RS hellip)
Virtual Overlay Networks
CLI SNMP hellip
Users and Applications ndash across Business Domains and Segments
ICT
Govern
ance a
nd O
pera
tion
s
Cisco Prime
Cisco ISE Cloud
Connectors Mobility Security Applications
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
Cisco Public 50 copy 2011 Cisco andor its affiliates All rights reserved
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 51
bull Cisco ONE ndash Open Network Environment wwwciscocomgoone
bull Cisco onePK ndash ONE Platform Kit wwwciscocomgoonepk
bull Cisco Developer Network developerciscocomwebonepk
bull CiscoLive 2013 Partner Showcases wwwciscocomwebsolutionsnetsysCiscoLive
bull Cisco ONE on Slideshare httpwwwslidesharenetgetyourbuildon
bull Cisco ONE TechZone Community Support techzoneciscocom
bull Network Programming Hands-on Lab Partner Education Connection wwwciscocomgopec
bull Cisco Cloud Connectors ndash Blog httpblogsciscocomborderlessthe-network-is-the-path-to-accelerate-adoption-of-cloud-services
bull Cisco Cloud Connectors ndash Marketplace httpsmarketplaceciscocomcatalogsearchsearch[technology_category_ids]=938
bull Cisco EASy ndash Embedded Automation Solutions httpwwwciscocomgoeasy
bull Cisco Scripting Community wwwciscocomgociscobeyond
For Your Reference
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
copy 2012 Cisco andor its affiliates All rights reserved Cisco Public 52 What will YOU Program
Thank you
Thank you
