New Innovations for Nexus1000V – Simply and EnrichEnd User ExperienceNisarg R. ShahProduct Manager, Data Center GroupAugus...
• Architecture Overview• Current Nexus 1000V Features• New innovations in Nexus 1000V version 2.1© 2011 Cisco and/or its a...
Virtual Appliance                                                                         Nexus 1010            ASA 1000V ...
Tenant A            Virtualized/Cloud                                                                                     ...
• True management control plane (Nexus 1000V Virtual Supervisor Module)• VXLAN – First in the industry to release VXLAN   ...
© 2011 Cisco and/or its affiliates. All rights reserved.   Cisco Confidential   6
“Further Simplify and Enrich the End-User Experience”                                                                  • C...
SGT = “Marketing”                                                WAN/ Campus Network                    Wireless User     ...
Identity Services Engine                         5                                                                        ...
• N1KV Dashboard in vCenter presenting the      VSM level and VEM level information• VSM level information:            •  ...
vMotion ViewProviding added networkinformation at the fingertips:1. vMotion View2. VLAN View3. VM-Info View               ...
Active and Standby VSMs across DCs                VSM can be split across two Datacenters                Max Latency of ...
Extending VEMs to branch offices            VSM can be in a central location in the Head Quarter Datacenter            V...
• Single pane of glass – simplified installation         process              VSMs, VEMs,              VSM HA             ...
1. Flexibility to schedule N1KV upgrades on a per-host basis            Enabling incremental upgrades even during short m...
“Further Simplify and Enrich the End-User Experience”                                                                  • C...
Cisco Super Session                            The Cisco Unified Data Center Architecture: Innovations for a World of Many...
Thank you.
Upcoming SlideShare
Loading in …5
×

Nexus 1000V Version 1.6: New Frontier in Virtual Machine Networking

1,214 views

Published on

Published in: Technology
0 Comments
0 Likes
Statistics
Notes

Comments are closed

  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
1,214
On SlideShare
0
From Embeds
0
Number of Embeds
2
Actions
Shares
0
Downloads
34
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Nexus 1000V Version 1.6: New Frontier in Virtual Machine Networking

  1. 1. New Innovations for Nexus1000V – Simply and EnrichEnd User ExperienceNisarg R. ShahProduct Manager, Data Center GroupAugust 28. 2012© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1
  2. 2. • Architecture Overview• Current Nexus 1000V Features• New innovations in Nexus 1000V version 2.1© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2
  3. 3. Virtual Appliance Nexus 1010 ASA 1000V vWAAS VSG VSM VSM NAM VSG Primary VSM NAM VSG Secondary VSM: Virtual Supervisor Module VEM: Virtual Ethernet Module L3 Connectivity vPath: Virtual Service Data-path Virtual Service Blades Virtual Supervisor Module (VSM) VXLAN: Scalable Segmentation Network Analysis Module (NAM) VSG: Virtual Security Gateway Virtual Security Gateway (VSG) vWAAS: Virtual WAAS Data Center Network Manager (DCNM) ASA 1000V: Tenant-edge security vPath VXLAN VEM-1 VEM-2 VEM-3• Service Binding (Traffic Steering) • 16M address space for LAN vPath VXLAN vPath VXLAN vPath VXLAN segments• Fast-Path Offload VMware ESX Win Server 2012 Open Source Hyp • Network Virtualization (Mac-over-• Service Chaining UDP) © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3 3
  4. 4. Tenant A Virtualized/Cloud Zone A Zone B ASA Data Center 1000V VSG Servers vWAAS WAN SwitchesRouter vPath VXLAN Nexus 1000V Physical Infrastructure Multi-Hypervisor Nexus 1000V VSG ASA 1000V vWAAS CSR 1000V (Cloud Router) • Distributed switch • VM-level controls • Edge firewall, VPN • WAN optimization • WAN L3 gateway • NX-OS consistency • Zone-based FW • Protocol Inspection • Application traffic • Routing and VPN 6000+ Customers Shipping Shipping Shipping Beta© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4
  5. 5. • True management control plane (Nexus 1000V Virtual Supervisor Module)• VXLAN – First in the industry to release VXLAN  Attend Break Out session – Today (5:00 to 6:00 PM) & Thursday August 30th (10:30AM to 11:30AM)• vPath 2.0  Intelligent Traffic Steering to Network Services and fast path offload  ASA 1000V & Virtual Security Gateway with service chaining – Now Shipping• Separation of duties• Supports vSphere 5.0, 5.0 U1 & 5.1 & vCloud Director v1.5 Nexus 1000V Release 1.5.2 now available for download© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
  6. 6. © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6
  7. 7. “Further Simplify and Enrich the End-User Experience” • Cisco TrustSec SXP support • vCenter Plug-in • vTracker • Enhanced upgrade process • Enhanced Installer App • Split VSMs across data centers (split VEMs across DCs is already supported) • VEMs in remote branch offices Beta target: October 2012© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7
  8. 8. SGT = “Marketing” WAN/ Campus Network Wireless User SXP Data Center segmentation and consistent security policy enforcement across physical and virtual workloads SXP SXP“Marketing Server” VM VM VM “Marketing VM” © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8 8
  9. 9. Identity Services Engine 5 SGACL – Nexus -SGT assigned to SGFW - ASA vEthernet port SXP Hosted Virtual -IP/SGT learned and sent to vApp Desktops N7K/ASA via SXP (HVD) 6 vApp vApp VDI Endpoint Nexus 1000V 1 4 UCS B/C Series Role assigned based N7K on port profile or ASA UCS B/C Series Connection Brokers 0 Role-based access to AD Group to VM application server Pool Mapping groups 2 VM Pool Assignment0 (port group) vCenter 3 ActiveDirectory • Valid AD credentials and AD Group assignment enable the Connection Broker to assign the HVD from the Group VM Pool • N1KV enables SGT in the port profile for dynamic IP/SGT binding • SGACL/SGFW enforcement restricts the user’s access to only authorized application servers © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9 9
  10. 10. • N1KV Dashboard in vCenter presenting the VSM level and VEM level information• VSM level information: • VSM health status • License information • Limits information• VEM level information • Summary • PNIC information • Connected VM’s • Limits© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
  11. 11. vMotion ViewProviding added networkinformation at the fingertips:1. vMotion View2. VLAN View3. VM-Info View VLAN View4. VM vNIC View5. Module PNIC View6. Upstream network view© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11
  12. 12. Active and Standby VSMs across DCs  VSM can be split across two Datacenters  Max Latency of 10ms recommended Active VSM Nexus 1000V vSphere Standby VSM Cisco Nexus 7000 Series DC1 Nexus vSphere 1000V Cisco Nexus 7000 Series DC2© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
  13. 13. Extending VEMs to branch offices  VSM can be in a central location in the Head Quarter Datacenter  VEMs can be spread across in different branches  Use case: Centralized management for both DC and branch Central VSM VEM - Branch 1 VEM - Branch 2 VEM - Branch 3© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13
  14. 14. • Single pane of glass – simplified installation process VSMs, VEMs, VSM HA VSM – VEM communication mode • Options: Standard or Custom Installation • The app supports: L3 (default) & L2 mode HA mode (default) Can load inputs from a config file • Recommended for clean installation only© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
  15. 15. 1. Flexibility to schedule N1KV upgrades on a per-host basis  Enabling incremental upgrades even during short maintenance windows2. Simultaneously upgrade N1KV along with vSphere Hypervisor  Requires vSphere version 5.0 U1 & above  Supported in N1KV version – 1.5.2 and above3. Modify VSM configurations between the upgrade maintenance windows  VSM configuration changes allowed: Add/remove modules, port config, vlans, and other commands© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15
  16. 16. “Further Simplify and Enrich the End-User Experience” • Cisco TrustSec SXP support • vCenter Plug-in • vTracker • Enhanced upgrade process • Enhanced Installer App • Split VSMs across data centers (split VEMs across DCs is already supported) • VEMs in remote branch offices Come checkout the demo on vCenter Plug-in and vTracker.© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16
  17. 17. Cisco Super Session The Cisco Unified Data Center Architecture: Innovations for a World of Many Clouds Cisco Speaker: David Yen, SVP/GM, Data Center Group Date & Time: Tuesday, August 28 (3 – 4 p.m.)Breakout Session Best Practice for Deploying VXLAN with Cisco Nexus 1000V and VMware vCloud Director Date & Time: Tuesday, August 28 (5:00 to 6:00 PM) , Thursday August 30th (10:30AM to 11:30AM)Demos at Cisco booth 1. Creating Secure Multitenant Environments (N1KV, VXLAN, vCloud Director) 2. Managing Virtual Network Services (N1KV, VSG, ASA 1000V) 3. Innovations in Server and Virtual Machine Management (UCS, N1KV, N1K vCenter plug-in)© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17
  18. 18. Thank you.

×