The power of orchestration - Inside Cisco IT - DC Cloud from IaaS to Fast IT
1. Cisco Confidential 1
The Power of Orchestration
Inside Cisco IT – DC Cloud from IaaS to Fast IT
In partnership with:
2. Cisco Confidential 2
Cisco Stakeholder & IT Landscape
4,469 Cloud Partner Services71K+ EmployeesStakeholders: 70K Partners17K+ Sales500K+ Customers
135K LaptopsData and Things: 31 Data Centers18PB Data66K Mobile Devices
SecurityProductivityBusiness Capabilities: InnovationEnablementGrowth
3. Cisco Confidential 3
Pace of change2
Today’s Landscape: Challenges or Opportunities?
Video adoption will
increase IP traffic to a
CAGR of 18%, growing a
factor of 2 by 2018
By 2018, over 55% of all
Internet traffic will cross
content delivery networks
By 2017, Cloud to grow to
69% of total DC Traffic
Over 50% of all IP traffic
will originate with non-PC
devices (e.g. smartphones,
tablets) by 2018
Today, malicious traffic
is visible on 100% of
corporate networks
CIOs report that at least
25% of IT spending will
happen outside the IT
budget in 2014
Source: Visual Networking Index 2013 - 2018
5. Cisco Confidential 5
Services Everything: Technology, Process, and People
Architectural Transitions
Services-
Oriented
Everything
Talent Strategy
Accountability Checkpoint
Architectural
Reviews
Strategic
Investment
Planning
Organizational
Health
Services
Review
Organizing Principles
6. Cisco Confidential 6
Cisco Information Technology
Power the #1 IT Company
Future proof our business through adaptive services
Adaptive Experience: Pervasive Experience UpgradeAdaptive Technology: Internet of Everything
Unified Architecture Advantage
Adaptive Process: Commercial Transformation Adaptive People: Workforce Development
S
V
Cisco Performance Measurements
Architecture/Services Operating Framework
Growth Speed Productivity
Software and
Cloud Capabilities
Field Enablement Next-Generation
Collaboration Platform
IoE Foundation
E
M
Continuous Delivery Process and Mindset
Stakeholder
Experience
Security Resiliency
7. Cisco Confidential 7
Lessons Learned
§ The high level outcomes must be made obvious.
§ You have to architect for change, at an accelerating pace.
• If you don’t change your fundamental processes, you won’t
change.
• People make change if they identify with the intended
outcomes.
• Everything you do = communication.
9. Cisco Confidential 9
Growth
Enablement
Global Data Center Strategy
Policy Based is Key
§ New markets and
business models
§ Global expansion
§ User experience
§ Enable customer
success
§ Increase data
center tiers
§ Multi-site architecture
§ Move out of high
risk geographies
§ Improve availability
and recoverability
Resiliency
Capacity
§ Build and occupy
data center
§ Optimize demand
§ Consolidate where
appropriate
§ Run IT as a business
§ Internal service
provider model
§ Service-oriented
architecture
§ Product & technology
transformation
§ Focus on operational
excellence
Transformation
10. Cisco Confidential 10
Building DC Capacity Worldwide
Company-Wide Bundled Investment Approach
RTP
Mountain View
Texas
APAC
AmsterdamTBD
Bundle 1
(Jan-08)
Critical resiliency,
critical capacity
Bundle 2
(July-09)
SaaS
European growth,
bridging immediate
capacity
Bundle 3
(TBD)
Continental hub,
SaaS growth
Bundle 0
(Pre-07)
IT Foundation,
critical capacity,
early adopter
TIME
11. Cisco Confidential 11
Cisco IT’s infrastructure organization
With Global Infrastructure Services Group
OPERATIONSIMPLEMENTATIONARCHITECTURE DESIGN
Network
UC/Video
Infrastructure as a Service
Private Cloud
VirtualTeams
NETWORKCOMPUTE
&
VIRTUALIZ
ATION
SECURITY STORAGE CLOUD PaaS
Infrastructure Groups
12. Cisco Confidential 12
Large Programs Services
Infrastructure Organization Today
Virtual Acceleration Teams
ACI and
IoE
Head of
Infrastructure
Cross-Service Functions
Business
Strategy and
Security
Automation
Software
Development
Architecture
and Design
Implementation
and Operations
IT Delivery
Transformation
Unified
Communications
and Video Service
Data Centre
Service
Network
Service
14. Cisco Confidential 14
Application and
Service Migration
Total Cost of
Ownership
End-User
Experience
Operational
Excellence
Configuration
and Policy
Implementation
Security
Infrastructure Challenges
15. Cisco Confidential 15
Cloud Services Stack – Taxonomy
Cloud
Delivery
Models
SaaS
Software as a Service
SalesForce CRM, WebEx, Ironport
PaaS
Platform as a Service
JVM, Database, Apache
IaaS
Infrastructure as a Service
Compute, storage, networking
Data Center as a Service
Data center facilities, power, cooling DCaaS
CITEIS
16. Cisco Confidential 16
VMWare ESX/ESXi
Network Virtualization
PaaS
• Web Server
• Application Server
• Database Server
• Integration Services
Logical Segmentation
Control, Security
and Fault
Isolation
CITEIS – Journey to the Infrastructure Services Cloud
Cisco
Nexus
Cisco
UCS x86
Virtualization Automation Self-service Multi-tenancy Elasticity
Unified
Infrastructure
Cisco IT Elastic Infrastructure Service (CITEIS)
Cisco Intelligent
Automation for Cloud
Image Repository
Service Catalog
Show/chargeback
Change Management
17. Cisco Confidential 17
Continuous
Real-Time
Response
OpenStack OpenShift
OPFLEX
E2E Infra
Programmability
CIAC
APIC
Nexus 9000
Integrated
Security
Agility, Lower TCO
Business Benefits
Technologies * Cloud operations include elasticity, mobility & security
Cisco Intercloud,
Identity and Data
Awareness,
Service
Awareness
Fabric Integrated Compute
Traditional Cloud
(PaaS, IaaS)
Fabric Integrated Storage
We Are
HERE
Intercloud
Application-Driven
Cloud
Operations*
Big Data,
Analytics
Fast IT Seamless
Workload Mobility,
Catalog Driven
Policy-Based
Learning Network
Evolution to the Intercloud Fabric
Policy-Based
Fabric Control
Next-Gen Fabric
Integrated
Security
18. Cisco Confidential 18
ACI Relevance to Cisco IT
Application Centric Infrastructure
Adaptive Security:
Data Center
• Policy Model
• Fine Grain Network Security
Enablement
• Simplified Network Security
Management
• Unified Policy Model for Hybrid
Clouds
Application Centric Infrastructure
Speed and Agility:
Adaptive Infrastructure
• Revolutionize End to End
Infrastructure significantly
reducing provisioning time
• Deliver “Just-in-Time” and
“Elastic” Infrastructure
• Self Service provisioning
• Policy Model
Adaptive User
Experience:
• Reduced Downtimes for
Planned changes
• Operational Simplicity
• Visibility on Infra
dependencies
• Health Metrics by
Application
• Robust and Resilient
Infrastructure
21. Cisco Confidential 21
Proposed Tenancy Model for IT Services
Organizing Principle
Service Category
Service
Service Offering
(SO)
Service
Asset
Service
Asset
Service Offering
(SO)
Service
Asset
Service
Asset
Organizing Principle
Tenant
Application
Profile
Mapping
Mapping
Application
Profile
1:1
Application Profile
Mapping
OR
22. Cisco Confidential 22
Speed of Delivery
Platform as
a Service
Platform as
a Service
Compute
Networking
StorageStorage
Compute
Networking
Orchestration
Without ACI With ACI
End-to-End
Automated
Provisioning
Security
Partial
Automated
Provisioning
23. Cisco Confidential 23
Application Centric Infrastructure (ACI) – Summary Value Case
Network Operations & ManagementNetwork Provisioning
Type of Saving %
CAPEX Savings 25%
Power Savings 45%
Space Savings 19%
Compute Optimization Storage (NAS) Optimization
12 %
Optimization
20 %
Optimization
Automation Savings
Provisioning SLA Improvement
Data Center Access 38 %
Access Control List
(ACL)
43 %
Local/Global Server
Load Balancing
41 %
Incident Management
Problem Management
Event Management
4x Increase in Bandwidth (10Gbs > 40Gbs)
Data Center Network Compute Storage
* Single Fabric * Single Fabric
58% Cost Savings
Data Center Access
Access Control List
(ACL)
Local/Global Server
Load Balancing
21%
Cost Savings
Service Management
24. Cisco Confidential 24
CITEIS Solution Components
Network Management
APIC, PNSC, N1Kv
Cisco UCS
DC Resources
Storage Management
Cloud Management
vCenter, OpenStack
Resource
Managers
Automation
Packs
Cisco Process
Orchestrator
Prime Service
Catalog
Cisco Intelligent
Automation for Cloud
Provisioning
Automation
Self-Service—
Service Catalog
PaaS Management
OpenShift, Puppet
CITEIS API Server
MessageBus
APIC
Customer Support
Incident Mgmt, Change Mgmt
Enterprise Management
Address Mgmt, Host Mgmt
25. Cisco Confidential 25
$0
$2,000
$4,000
Legacy (rackmount); all
physical
Legacy; medium virtualization
(54%)
46/54% Legacy/UCS; 75%
Virtualized
100% UCS/Cloud; 80%
virtualization
Delivery
Time
12+ weeks 2-3 weeks 15 minutes VM 8 minutes
(self-service)
TCO Physical
Compute TCO
($/Qtr/OS
instance)
Virtualization Unified Computing Cloud
Average TCO
-37%
-27%
-27%
CITEIS Brings Agility and Cost Benefits
27. Cisco Confidential 27
IT Delivery Transformation Framework
Vertical, Disparate, and Unconnected stacks à transformed into Horizontal Integrated Services
P
L
A
N
B
U
I
L
D
O
P
E
R
A
T
E
Order
Mgmt
myCiscoPricing
Dev.
Stack
Testing
Software
Dev’ment
IDE
Software
Release
Source
Cntl Mgt.
Quality
StorageCompute Network
Database
ReplicationEntitlement Integration
App / Web
InfrastructureInfrastructure
Service
Assurance
OperationsSecurity
XaaS
PaaS
IaaS
SDaaS
28. Cisco Confidential 28
Plan
Innovation Circles
Architectural
Framework
Active Stakeholder
Involvement
Changing the Way We Work: Continuous Delivery
Develop and Build
Continuous
Integration, On-
demand
Small Teams
Cloud, ERP,
Mobile Apps
Automated Testing
Built by Developers-
No Separate Q/A
Appropriate Risk Taking
Deploy and Release
Configurable Control
Gates, Regularity
Compliance
Working Prototypes
Client Updates
Adapt and Scale
Policy Enforced Network,
Adaptive Infrastructure,
Workload Mobility
Fast Results
29. Cisco Confidential 29
Continuous Delivery
End to End Workflow for Cloud Applications
TBD
Prioritized Sprint
Product Mgr.
Scrum
Master
Developers
Plan Develop Continuous
Build
Automated
Testing
Deploy &
Release
Adapt & Scale
Source Code Management Application
Snapshot
Release Control
Gates
Development
Staging
Production
30. Cisco Confidential 30
IT Delivery Transformation
30% adoption in Q1FY15
releaseSDaaS & Vir. DB POC
LAE GA, Just In Time DB
OpenShift on Openstack POCLAE Express
CITEIS on Openstack
Express
Q1FY14
Q2FY14
Q3FY14
Q4FY14 Q1FY15
SDaaS Phase 1 (Cont. Integ + SRA)
Adoption use case prototypes
OpenShift on Openstack POC
Openstack VDC
SDaaS Phase 2 (Automated Tests)
Integrated App Development
Multi-DC LAE (High Availability)
Traditional
Network
LAE
Fabric
Plan
Build
Operate
Agile Application Development
Lightweight Application Environment
API Enabled Standard IaaS
Application Centric Infra. (ACI)
Existing
Platforms
Policy Control
Unified
Infrastructure
Scalability
APIs
Intercloud
Autonomic
Feature Rich
Continuous
Delivery
PaaS
IaaS
SDaaS
31. Cisco Confidential 31
Continuous Delivery
Develop
Branch, Merge,
Code Review
Build
Continuous Integration,
On-demand, Nightly, …
Deploy & Release
Configurable control gates
Regulatory compliance
Runtime Stacks
Programmable Network (Access)
Disposable Infrastructure
Adaptive Platforms
Test
Developer Built Unit Tests.
Virtual
Databases
PROD
STG
DEV
Cloud, ERP, and
Mobile Apps
Static Unit, Compliance, Performance, Security, Regression, tests ..
32. Cisco Confidential 32
Develop in CITEIS Cloud
Development as a Service
Platform as a Service
Source Control
Build & Review
Deploy
1. Download (Pre-configured) IDE
2. Request Application Development Stack
3. Develop, version control, test, code review, deploy without leaving the IDE
1
2
3
33. Cisco Confidential 33
Integrated Services - IT Delivery Transformation
Transform IT Delivery Services into a Strategic Competitive Advantage
(accelerate time-to-capability, pervasive quality and optimized cost of delivery)
Traditional
Network
LAE
Fabric
Plan
Build
Operate
Agile Application Development
Lightweight Application Environment
API Enabled Standard IaaS
Application Centric Infra. (ACI)
Existing
Platforms
Policy Control
Unified
Infrastructure
Scalability
APIs
Intercloud
Autonomic
Feature Rich
Continuous
Delivery
PaaS
IaaS
SDaaS
36. Cisco Confidential 36
Fully Self Contained Apps:
Portable, and Lightweight
Private Interface
App
Private Interface
App
Private Interface
App
Private Interface
App
App App
Routing + Access Policy (EPG)
(EPG) Routing +
Access Policy
(EPG) Routing +
Access Policy
(EPG) Routing +
Access Policy
(EPG) Routing +
Access Policy
OpenShift (Current) OpenShift + ACI + Apcera (Policy Mgmt)
Only the node (VM) is addressable
Individual apps are not directly accessible.
Each app has a directly addressable IP
Routing service a separate “app” by itself.
Linked
containers
Public Interface
Addressable IP Addressable IP
App
Addressable IP
App
Addressable IP
37. Cisco Confidential 37
Self Service
Elastic
Rapid
Is it ready?
Architect it
Design it
Procure it
Install it
Configure it
Secure it
QA it
Design it
Is configured
IT IS READY!
Is procured
Architect it
Is installed
Is secured
Is QA’d
Service Transformation Through PaaS
Manual
Scripted
Automated
Bundled
Integrated
Today
38. Cisco Confidential 38
Data Center Transformation
Sustained YoY TCO reduction – provisioning from days to minutes
$98,930
$66,009
$41,349
$30,729
$0
$25000
$50000
$75000
$100000
Q2 CY12 Q2 CY14 Q2/Q3 CY16Circa 2009
Virt.
Rate (%)
25%
50%
75%
100%
E2E Prov.
(Days)
15
30
45
60
E2E I+P(1) = 45 days
E2E I+P(1) = 17 days
E2E I+P(1) = 7 days
VM = 15 mins.
E2E I+P(1)
Automated
Provisioning
5%
70%
92%
Virtualization
95%
-33%
-37%
-26%
Legacy Bare Metal
based Data Center
• CITEIS Gen 2
• PaaS enablement
• Storage optimization
TCO
($ Per Qtr)
• UCS adoption
• Compute Virtualization
• ACI Network architecture
• Process automation
• Open Stack/ Open Shift
• SAN/NAS/CEPH
TCO ($ per Qtr) Virtualization Rate E2E Provisioning (Days)
39. Cisco Confidential 39Cisco Confidential 39
In partnership with:
Thank you. Visit us in the World of Solutions