Cisco on Cisco: Defining the Next Generation Data Center Services

Cisco on Cisco Defining the NG Cloud &

Data Center Services

Oren Seliger IT Theater Leader – EMEAR South

Nov 2014

Cisco and/or its affiliates. All rights reserved. Presentation_ID Cisco Public

2

Introductions Who am I and What is Cisco on Cisco?

Current Landscape What are the Market Trends?

4 Resiliency Overview A Review of Cisco’s Resiliency & DRP

6

Virtualizing DC Services A Review & Demonstration of CITEIS

Next Generation Data Center: A Review of Cisco’s ACI

Connected Workplace The “Work from Anywhere” Methodology

Agenda


Who Am I?

Responsible for Cisco IT Services in Southern European Markets

High Touch

Local IT management

Asset Management

Procurement

Cisco on Cisco

Events Support – Global, Local

Technology Pilots and deployment service

Local Relationship with Service Providers

Mobility Services

IT Escalation Management

Medium Touch

Video services

Print Services

New employee Orientation

Exec Admin productivity trainings

New Employee Orientation

Low Touch

Software licensing/compliance

Cisco Home (Virtual) Office

Campus onsite event support

Data backup

Webex and Collaboration

Unique Services

Executive Support Models

Connected Ops Engagement

IT Theatre Leader

EMEAR-South Who am I Really?


VALUE PROPOSITION

Trusted Advisor to Customer

Deep Understanding of Cisco Technologies for Customers

Sharing of Lessons Learned

The adventures of our IT journey – How we use our own technologies to

solve business challenges, create

opportunities, and communicate lessons learned

4

What Is Cisco on Cisco

John Chambers :

“A key competitive advantage for

Cisco is how we use our own

technology to drive productivity.”


Cisco Faces the same Challenges As Its Customers

Versatility

Performance

Functionality

Ease of Operation and

Maintenance Security Cost of Ownership

Environment /

Green Enabling Innovation

Cisco and/or its affiliates. All rights reserved. Presentation_ID Cisco Public 6

Global Enterprise

74,616 Employees

470+ Locations worldwide

16 DC’s +1500 Labs

48.6 B$ Revenues

~50 B$ Cash end of FY14

First Customer ACI /SDN

UCS

Nexus

Jabber (IM/Voice/Video)

Cisco Prime Catalogue

CUPC , Presence & Mobility

Telepresence

MVDC

Collaborative tools

Cisco Virtual Office

Cisco Connected Workplace

Mobile EasyApps

Cisco Security Solutions

Virtualization (CITEIS)

VDC’s (Virtual Data Centers)

….. And more

…

Huge Global Enterprise

Unique combination of Cisco solutions

First customer for most DC and UC solutions

Cisco Powered

3780 Routers

4697 Switches

7000+ Access Points

36,300 CVO Teleworker Routers

1056 MDS (Multilayer Director Switches)

5 CallManager clusters

17 IPCC sites (IP Contact Centers)

1600+ Telepresence Rooms

Why Cisco, and Why Cisco IT?

Connected Workplace Collaborative “Work from Anywhere” Methodology


Cisco Connected Workplace: WLAN + IPT ( + different furniture and culture)

INTERNET

Mobile Office

12K – 15K employees at any time Resilience

Home Office

36K Home Offices

Flexibility, Performance

Collaborative

Office

• Prefer environment: + 77%

• Improved communications: + 82%

• Workforce satisfaction: + 82%

• Ease of finding quiet space: + 62%

• Ease of finding meeting room: + 80%

People

• Space reduction per person: 30%

• CAPEX for furniture: - 55%

• CAPEX for cabling, infrastructure: - 55%

• Power usage per person: - 58%

Financials

Mobile / Softphone + Remote Access / Wireless = Productivity

+ Globalization + Resilience + Cost Savings

Wireless Everywhere

Hardware VPN (always on,

wireless) Software VPN

Extension Mobility

BYOD Services

For iOS & Android

Jabber: Soft phone/Video

Video Everywhere


Home Office / Small Office: Cisco Virtual Office

Supporting home hardware Video phones

Voice / video QoS

Supporting over 36K Cisco employees

Productivity Metrics:

CVO users typically work 3 full days at home per week

CVO users gain 2 hours 45 minutes productive work hours per week typically spent commuting to/from a Cisco office.

35M commuting miles avoided per year – and 17K tons CO2 emissions reduced.

“Benefit” mentioned by new hires


A Typical Cisco Employee Home Office


The History of Computing The Journey from the Mainframe to the Data Center

1981-2001

The Personal Computer Generation

2001 The Mobile Generation


The History of Computing The Journey from the Mainframe to the Data Center


The Truth is, We’ve Come Full Circle

Cisco Resiliency Overview A Review of Cisco’s Data Center Resiliency & DRP


Resiliency – What & Why

The BIA is used by our CFO to determine financial and non-financial impacts from disruptions to a business function or process. These impacts are measured against time.

Service Resiliency Plans (SRPs) focus on recovering IT services that support critical business processes. They are centered on their criticality as identified by the BIA

Cisco's Business Continuity Plans (BCPs): Designed to recover critical business processes identified in our Business Impact Analysis.

BCP BIA SRP

Resiliency – What & Why


Resiliency Framework—Criticality Levels

Criticality Definitions - The Service Attribute that describes the Impact to the Business when the Service Is Not Behaving as Required.

C-Level Term Impact Description

C1 Mission Imperative Any outage that results in immediate cessation of a primary function, equivalent to

immediate and critical impact to revenue generation, brand name and/or customer

satisfaction; no downtime is acceptable under any circumstances

C2 Mission Critical Any outage results in immediate cessation of a primary function, equivalent to

major impact to revenue generation, brand name and/or customer satisfaction

C3 Business Critical Any outage results in cessation over time or an immediate reduction of a primary

function, equivalent to minor impact to revenue generation, brand name and/or

customer satisfaction

C4 Business Operational A sustained outage results in cessation or reduction of a primary function

C5 Business Administrative A sustained outage has little to no impact on a primary function


Criticality Matrix

Criticality Level

Operational Continuity (Planned downtime)

Disaster Recovery

(Unplanned downtime)

Acceptable

Recovery Time (hrs)

Acceptable

Data Loss (hrs)

Recovery

Time Objective (hrs)

Recovery

Point Objective (hrs)

C1 ~0 ~0 n/a n/a

C2 1 0 4 1

C3 4 0 24 1

C4 24 1 48 24

C5 Best Effort 1wk Best Effort 1wk


How to Determine RTO (Recovery Time Objective)

The RTO is determined based on the six impact types:

Financial - Loss of Revenue

Financial - Delayed Revenue

Customer Service Experience

Legal and Regulatory Requirements

Brand Image


Resiliency Adoption Requirements For IT to Action

Single Prod DC

Data Protection

Disaster Recovery

Metro Pair (MVDC)

Single Prod DC

Data Protection

Disaster Recovery

Single Prod DC

Data Protection

C1-C2-C3 C4 C5 Not Started

?


Introducing Metro Virtual Data Center (MVDC) The First Architecture to Deliver True “Operational Continuity”

DC1 DC2

• Failure of a Single-DC leads to full recovery Within the metro pair

• Any service or critical business process that is MVDC-enabled can automatically recover in the other DC including service failures, application failures, up to and including loss of an entire Data Center


MVDC Business Benefits Rapid Service Recovery Within Metro Pair

DC1 DC2

• Critical business services are

designed to run in BOTH data

centers at the same time (Active –

Active), giving very high availability

(up to 99.995%) • Built in protection against unplanned

failures of key business services,

shared services up to and including

an entire data center

• Built in protection from most planned

outages for changes such as

upgrades, fixes and releases

Any IT Application or Service

that is MVDC-enabled Can

Automatically Fail Over and

Recover in the Other Data Center


What Are MVDC Architectures Used At Cisco??

GVDC

Global Virtual Data Center

RVDC

Regional Virtual Data Center

MVDC

Metro Virtual Data Center


High Availability Data Centers

Richardson, Texas Allen, Texas

Metro Virtual Data Center (MVDC)

~80 Km

MVDC is a Logical Pairing of Two (or

more) Physical Data Centers Into a Single

Virtual Data Center.


Distributed Virtual Data Center Architecture & C1 applications

Distributed

Regional

Global

Metro

Variation III: Metro Virtual DC (MVDC) Leveraging Metro-based DC pair + remote DR

Clients: Business transactional services

Variation II: Regional Virtual DC (RVDC) – aka DR Active from multiple DCs over high latency within one continent

Clients: Diversity at low cost

Variation I: Global Virtual DC (GVDC) supporting C1 apps Presence in two or more continents

Clients: Diversified businesses, content, communication and collaboration

Examples:

DNS, Authentication, Active Directory

Cisco.com static content

Varying distance/latency

Examples:

FTP.cisco.com, GDCP Migration,

Cisco.com content

Examples:

Integrated Commerce Workplace (ICW),

Enterprise Resource Planning (ERP)


MVDC Service In Action MS Exchange


Business Data Center Data Centers Engineering R&D Data Center

SJ

Linksys

RTP

Amsterdam

Scientific

Atlanta

WebEx

CROS

Iron Port

Richardson i

2x Texas

B B

2x Amsterdam

1x APAC/TBD

B

A

B

Tier-III (Redundant)

Dedicated building

2x = Dual DC, sync capable

Tier-II (Less Redundant)

Existing buildings

Product Development

Key: B

Globally Centralized:

Traditional Business Apps

Continental Hub:

Order Processing, Comms

Continental Hub:

Communications

Seed & Scale Software-as-a-Service (SaaS):

Resilient, Scalable, Cost-effective Presence in Each Continent

B

B

B

B

Traditional Business Model

New Business Models

2013

Target Global Data

Center Presence

Latency-Sensitive

Software Development

TBD

Growth -- Applications: 26% Y/Y Storage: 50+% Y/Y 48+ PB (ACI will resolve)

Virtualization – about 90% (business production). Goal: 95%

Data Center build / migration to state of the art MVDC pair in Texas. All business production Cisco apps now run on Nexus / UCS. 11,000+ UCS servers deployed worldwide so far – in Nexus / FCOE / UCS environment. Provides 27% TCO improvements. 40% reduction in Cable costs.

New automation from Cisco Intelligent Automation for Cloud drops provisioning time: 3 weeks 15 minutes. Agile cloud computing for 1.5 + years.

Big Data applications (on UCS) already providing Business Intelligence new revenue opportunities.

Application Centric Infrastructure – ACI has been installed in our SJ data center and is being rolled out to all Cisco data centers globally.

Virtualizing DC Services A Review & Demonstration of CITEIS


Introducing CITEIS – Concept A Framework for Providing Infrastructure as a Service

Design it

Where can we put it?

Procure it

Install it

Configure it

Secure it

Is it ready?

Architect it

Design it


Procure it

Install it

Configure it

Secure it

Is it ready?

Architect it

Before CITEIS After CITEIS

• Machine-oriented

• Manual provisioning

• Hard to control utilization

• Service-oriented

• Self-service; automated provisioning

• Elasticity (capacity-on-demand)

• High provisioning & ops cost

• Extended provisioning time

• Configuration risk

• Optimized provisioning & ops cost

• Rapid provisioning

• Increased Resiliency and Availability

Manual

Automated

Self-service

On-demand

CITEIS






Automatically

linked from

Enterprise Directory Services

Automatically

added to

Enterprise Directory Services


Choose the closest

physical DC

Choose the

appropriate VDC size

for your project

Selection impacts cost

Selection impacts cost


How/Who should have access

to your VDC? Internal?

Partner? Customer?




VM/vApp Order Form

Automatically linked

from Enterprise

Directory Services


An almost unlimited

number of vApp

images. Or upload

your own image

Limited lease period

guarantees no stale

CITEIS resources!


Information

security policy

enforced

What resourced do

I need for my VM?




SLA vs Actual Eight

Minutes

from

Start to

Finish



Introducing CITEIS – Concept A Framework for Providing Infrastructure as a Service

Design it


Procure it

Install it

Configure it

Secure it

Is it ready?

Architect it

Before CITEIS

• Machine-oriented

• Manual provisioning

• Hard to control utilization

• High provisioning & ops cost

• Extended provisioning time

• Configuration risk

Manual

Design it


Procure it

Install it

Configure it

Secure it

Is it ready?

Architect it

After CITEIS

• Service-oriented

• Self-service; automated provisioning

• Elasticity (capacity-on-demand)

• Optimized provisioning & ops cost

• Rapid provisioning

• Increased Resiliency and Availability

• Automated

• Self-service

• On-demand

CITEIS


Data Center Transformation – Infrastructure TCO Over the Years

Source: Cisco IT GIS–September 2012

Q4 CY10 Q4 CY12 Q2 CY13 Circa 2009 (Legacy)

$75.826

$41.438

$31.598 $24.894

$0

$25.000

$50.000

$75.000

$100.000

TCO ($ Per Qtr) Virtualization Rate (%) Virt.

Rate (%)

25%

50%

75%

100%

0%

E2E Prov.

(Days)

15

30

45

60

0

E2E = 45 days

E2E = 17 days

E2E = 5 days

CITEIS/Compute = 15 mins. Fully Self

Provisioned

5%

70%

85% Virtualization

95%

TC

O (

$/Q

tr.)

Legacy Bare Metals

based Data Center

Focus

• UCS Adoption

• All Virtualization on UCS

Focus

• Workflow automation

• PaaS Enablement

• Storage Optimization

Focus

• Process Transformation

• Infrastructure/

Platform Optimization

-45%

-24% -21%


Automated

Self-Service

On-Demand

Private Cloud Orchestration (CIAC) Reduces VM provisioning time, provides self service deployment

Architect It Design It Where Can

We Put It?

Procure It Install It Configure It Secure It Is It Ready?

Manual

Service-Oriented

Self-Service;

Automated

Provisioning

Elasticity

(Capacity-on-

Demand)

Next Generation Data Center A Review of Cisco’s Application Centric Infrastructure


Challenges of the Current Data Center Strategies

User experience is poor

Sometimes the applications

respond, sometimes they don’t

Network, data center, storage and

security admins are getting

overwhelmed

Complexity is making solving

issues very challenging

Until now, no agreement on what

the best cloud management

solution is


Why ACI happened for Cisco IT Business Drivers & Technical Opportunities

Business Drivers

Reduce IT Costs:

OpEx, CapEx

Better Security

And Compliance

Faster Business

Support

Out of Control

Data Center Growth

Cisco Technical Focus Areas (From Executive Leadership)

Cloud Fast IT IT as a Service

C i s c o I T D e l i v e r e d

Virtualization ACI

Automation & Orchestration

IaaS PaaS and

SDaaS Intercloud*

We needed to build a set of new state-of-the-art data centers

around the world, to handle:

- 26% growth in the number of applications we

supported, year over year

- 50% growth in storage, year over year.

Cisco’s leadership

demanded more services

but at lower costs and

actually cut the IT budget.

The business needed a

faster rollout of new

resources and services with

less downtime for

maintenance and upgrades.

Cisco IT was drowning trying to manage

the configurations and policies for

hundreds of:

- Firewalls

- Access Control Lists

- Content checking systems

- Intrusion detection and prevention

systems.

- Switches and routers…

And additional security devices needed to

be constantly added.

Controls growth by

maximizing effective use of all

our resources across all DC’s

around the globe

Controls Cost by reducing the

cost of the HW and requiring less

resources by centralizing

operations across all global DC’s

Provides a faster deployment

of applications and services, and

a vastly improved administrator

and end-user experience

Improved and centralized

security profiling across

entire network

MVDC…eStore…CITEIS…


What is a web application and how does it work?

Very Complex, but

manageable in a

single data center

with few

applications

The challenge is to

meet these standards

while working

securely, cheaply and

seamlessly across

many data centers and

with thousands of

applications?!?


Based on Three Primary Concepts ACI: A Complete Rethink of the Entire Network


The ACI Application Network & Security Profile High Level

The network & security policy is

attached to the application for its

entire journey through the

network


The ACI Application Policy Infrastructure Controller Drilldown


How Does A single web application work with ACI?


Speed and Agility through an Adaptive infrastructure is a key enabler for Fast IT

Adaptive User Experience: Reduces downtimes for planned changes, and provides resiliency for unplanned outages

Adaptive Security: The policy model provides a higher level of network security and simplifies management, as well as a Unified Policy Model for our Hybrid Clouds

Cisco IT Has Moved to ACI for…


ACI Program – Quarterly Objectives: FY15

FY14Q3 FY14Q4 FY15Q1 FY15Q2 FY15Q3 FY15Q4

1

2

3

4

5

6

SJC-K Engineering DC on N9K

(standalone)

ACI Design and ACI Automation

(finalization)

FY15: +/- 4000 VMs on ACI

All workloads on ACI: migration of 2-3 years

Migrate SJC-K to Fabric

Cisco IT Private Cloud on ACI

RTP1 DC

Cisco IT Private Cloud on ACI

Allen DC

RTP1: Traditional Application Migration

(non-prod)

Allen & RCDN9: Traditional Application

Migration to ACI

(production apps wave 1)

Allen & RCDN9:

production apps wave 2

58

FY15Q1 FY14Q4 FY14Q3 Where We Are Today

Thank You