Embed Size (px)
Citation preview
Brijeshkumar Shah ([email protected])
February 7th, 2018
Building a Simple, Agile and Secure Fabric for an Intent Based MultiCloud Data Center
Every company must now express
its uniqueness with software
Some Important Trends Impacting the Data Centre Evolution
More Workloads are moving to Cloud Data Centers1
Cloud Data Centers include more virtualized workloads per server2
Traffic in each area of the Data Centre is increasing dramatically3
Global Data Centre Traffic by Destination by 2017
Source: Cisco Global Cloud Index,
Forecast and Methodology, 2012–2017
The increasing density of Business Critical workloads hosted in the Cloud is driving
new Multi-site designs to handle Business Continuity, Workload Mobility, and
Disaster Recovery
TraditionalData CentreNetworking
DC
Switching
Network
Apps Policy
Application Centric Infrastructure (ACI)
Network + Services Abstraction & Automation
Infrastructure HyperScale
Data Centres
Two Market Transitions – One DC Network
Virtual Machines
LXC / DockerContainers
Apps Portability, Cross-Platform & Automation
Applications PaaS
4
Will use
multiple
clouds84% 73%
Have a
hybrid cloud
strategy81%
Evaluating
or using
public cloud
It’s a Multicloud World
2016
Will use
multiple
clouds94% 87%
Have a
hybrid cloud
strategy85%
Evaluating
or using
public cloud
2017
App Perf Mgmt
AppDynamics
Business Insights,
User Satisfaction
App Portability
Cloud Center
Infra Independence IaaS
or On-premise
Public Cloud
Application Relevance in a Multi-Cloud World
Private Cloud
On-Premise IT
ANALYTICS
ENFORCEMENT
AUTOMATION
Intent
Lifecycle
App Policy Cycle
Tetration
Policy Inference,
Enforcement, Forensics
The Critical Infrastructure Hierarchy of Needs
Ease of Use
Agility
Performance
Security
Availability
On-Premise
Data Center
Multi-Cloud
Cisco ACI
Switches
Interfaces
into System
Visibility and
Analytics
Hypervisor
Networking
Logical Design
Connectivity
Application Centric Infrastructure
Outside the Network
Inside the
Network
Switches
Interfaces
into System
Visibility and
Analytics
Hypervisor
Networking
Logical Design
Connectivity
Outside the Network
Inside the
Network
Cisco ACI
Traditional Switch Networks
Switches
Interfaces
into System
Visibility and
Analytics
Hypervisor
Networking
Logical Design
Connectivity
Outside the Network
Inside the
Network
Cisco ACI
Overlay Only Networks
ACI 1.1 - Geographically
Stretch a single Pod
DC1 DC2
ACI Stretched Fabric
APIC Cluster
ACI Single Pod Fabric
ACI 1.0 - Leaf/Spine
Single Pod Fabric
ACI 2.0 - Multiple Networks
(Pods) in a single Availability
Zone (Fabric)
Pod ‘A’
MP-BGP - EVPN
…
IPNPod ‘n’
ACI Multi-Pod Fabric
APIC Cluster
ACI 3.0 – Multiple Availability
Zones (Fabrics) in a Single
Region ’and’ Multi-Region Policy
Management
Fabric ‘A’
MP-BGP - EVPN
…
IPFabric ‘n’
ACI Multi-Site
ISE
ISE 2.1 & ACI 1.2
Federation of Identity and
Interconnect TrustSec
and ACI using IP based
EPG/SGT
ACI 3.1/3.2 - Remote Leaf
and vPod extends an
Availability Zone (Fabric) to
remote locations
Application Centric InfrastructureFabric and Policy Domain Evolution
BRKCLD-2931 11
Remote PoD Multi-Pod / Multi-Site Hybrid Cloud Extension
ACI Vision ONE Intent: Any Workload, Any Hypervisor, Any Location, Any Cloud
ACI Anywhere
IP
WAN
IP
WAN
Remote Location Public CloudOn Premise
Security Everywhere Policy EverywhereAnalytics Everywhere
VMVMVM
Site A
Site B
Site C
Site D
VMVMVM
ACI Multi-Site
Multi-Site
Appliance Consistent Policy across sites
Seamless Workload Migration
Single Point of Orchestration
Complete Fault Isolation
Extend ACI to Satellite Data Centers / Co-Lo
1. Remote Physical Leaf (Nexus 9K) 2. Remote Pod (Virtual)
On Premises
L2 / L3
Remote Data Center / Co-Lo
Physical Leaf ACI Virtual Edge
(AVE)
vswitch vswitch
Nexus 9K Remote PoD
IP
Network
14
IP Network
ACI Extension Beyond On-Premise Data Center(s)
Hypervisor
AVE
Hypervisor
vSwitch
Hypervisor
vSwitch
ACI Policies
vSpine + vLeaf
On-Premise Data Center Remote Virtual POD
Web App
Hypervisor
AVE
Hypervisor
AVE
Hypervisor
AVE
Virtual POD
App DBDB Web
Co-Lo / Remote DCs /
Bare-Metal Clouds /
Brownfield Deployments
AVE = ACI Virtual Edge
15
ACI AnywhereFor Hybrid Cloud (Bare Metal as a Service)
On
Premise
Public
Cloud
ACI Extension to Public Cloud
Consistent Network Operations and Governance
Value-add through ACI Networking Features
Hosting Providers
IP WAN
Multi-Pod/Multi-Site
vPod architecture using
ACI Virtual Edge
ACI AnywhereFor Hybrid Cloud (Non-Bare Metal Public Cloud)
Consistent Network Operations and Governance
Continue to Leverage Cloud Native Networking and Services
Public Cloud / DC SITE-2
IP WAN
On-Prem DC SITE-1
ACI Extension to Public Cloud
On
Premise
Public
Cloud
vAPIC
Business Outcomes and Value
A smart enterprise transformation accelerates Business
“Automation tools help us improve the
quality and speed of our services to internal
and external customers.”-Mandar Marulkar, Vice President and CIO, KPIT
Reduced application deployment time from 4 weeks to
1 hour, getting products and services to market faster
Improved application performance by 200%; reduced
manual IT configurations and cut capital expenses
• Used Cisco Unified Computing System (Cisco
UCS®) as digital IT platform
• Optimized development lifecycle with Cisco
Nexus® switches and Cisco Application Centric
Infrastructure (ACI) technology
• Cisco Services
Size: 10,000+ employees Location: India
KPIT
Industry: Information Technology
Optimize Your Network
Protect Your Business
IntegrateHybrid IT
With Cisco ACI,
you can build a
better network…
anywhere.
Ecosystem Partners
Nexus 9K
Customers Globally
ACI
Customers
ACI Attach
Rate on N9K
Ecosystem
Partners
13,000+ 45+%4,500+ 65+
Nexus 9K and ACI: Industry Leader
Intent-Based Data Center
Intent
“Should”
Assurance
“Can”Configuration Analysis
“Very Large State-Space”
Analytics
“Did”Traffic Analysis
“Lots of Data”
Guarantees
Compliance
Consistency
Policy
ADM
Policy
Forensics
Tetration
ACI
COMPANY
CONFIDENTIAL
Thank You
• ACI is a turnkey solution that simplifies
deployment, management and
troubleshooting.
• ACI has a large ecosystem of partners
providing customer flexibility and choice.
• ACI is a sound financial investment,
providing rapid return via multiple metrics
across many customers.
• ACI provides a comprehensive, integrated
approach regardless of endpoint type.
• ACI provides strong automation
capabilities.
