• Share
  • Email
  • Embed
  • Like
  • Private Content
Flow Metadata for Enhanced Network Application Awareness (IOS Advantage Webinar)
 

Flow Metadata for Enhanced Network Application Awareness (IOS Advantage Webinar)

on

  • 1,896 views

Flow Metadata is a Cisco innovation and part of the Medianet architecture, designed for traffic classification. ...

Flow Metadata is a Cisco innovation and part of the Medianet architecture, designed for traffic classification.

In order for the network to provide functions and services to application traffic, it needs to be able to classify traffic granularly and disseminate information consistently. Flow Metadata is an application awareness technology that provides classification methodologies based on a multitude of parameters and drive functions in network policy (like QoS, PfR, FNF, Monitoring, etc.) that allow for easier, accelerated and scalable deployments.

Flow Metadata infrastructure extends across end points and network devices, and makes the network cognizant of the type, nature and characteristics of the traffic streams thereby enabling flexible policy enforcements and enhanced application visibility. This session highlights the Flow Metadata concept, the challenges it can effectively solve and how it can be deployed in the network across various platforms.

Statistics

Views

Total Views
1,896
Views on SlideShare
1,894
Embed Views
2

Actions

Likes
0
Downloads
33
Comments
0

2 Embeds 2

http://us-w1.rockmelt.com 1
http://www.verious.com 1

Accessibility

Upload Details

Uploaded via as Adobe PDF

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

    Flow Metadata for Enhanced Network Application Awareness (IOS Advantage Webinar) Flow Metadata for Enhanced Network Application Awareness (IOS Advantage Webinar) Presentation Transcript

    • Cisco IOS Advantage Webinars Flow Metadata for Enhanced Application Awareness Karthik Dakshinamoorthy© 2012 Cisco and/or its affiliates. All rights reserved. 1
    • Speaker Panelists Karthik Balaji B.L Jean-Charles Dakshinamoorthy Technical Leader, Griviaud Product Manager Engineering Product Line Manager karthikd@cisco.com blbalaji@cisco.com jgriviau@cisco.com© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2
    • •  Submit questions in Q&A panel and send to “All Panelists” Avoid CHAT window for better access to panelists •  For Webex audio, select COMMUNICATE > Join Audio Broadcast •  For Webex call back, click ALLOW Phone button at the bottom of Participants side panel •  Where can I get the presentation? Or send email to: ask_iosadvantage@cisco.com •  Please complete the post-event Survey •  Join us on August 1 for our next IOS Advantage Webinar: Efficient Data Center Design with FabricPath/TRILL www.cisco.com/go/iosadvantage© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3
    • •  Flow Metadata Introduction•  Concept and Overview•  Key Use Cases•  Metadata enabled Network Services•  Metadata Producers and Consumers•  How does Metadata work?•  Metadata Configurations© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4
    • Architecture for Agile Delivery of the Borderless Experience Borderless End-Point/User Services Mobility Workplace Video Experience Securely, Reliably, Seamlessly: AnyConnect, Mobile Collaboration Infrastructure Borderless Borderless Network Services Management Switching and Policy Routing Mobility: Green: Security: Application Voice/Video: Motion EnergyWise TrustSec Performance Medianet Wireless Security WAAS PROFESSIONAL SERVICES: Medianet and Application Performance: Metadata for enhanced network application to Architectures Products to Systems awareness & easier service delivery© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
    • webex •  Architectural play - Cisco Video & Voice Applications Intelligent endpoints + intelligent network Medianet Services Interface APIs Optimize User •  Bringing application Enable Rich Flow Experience awareness in the Media Metadata Solutions network Multicast NetFlow Media Monitoring Media Aware RSVP •  Multiple video & Routing Media Services voice, business SAF Proxy critical applications IPSLA intelligently sharing Resource Control PfR QoS the same IP Network Media Optimization •  Intelligent Policy enforcement based Seamless Security on business rules© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6
    • Multiple entities Application Cloud and Virtualization involved in complexity centralize application delivering increases delivery applications Identify growing Understand application Problem isolation to applications using more performance from end minimize downtime and than just port number users perspective business impact© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7
    • Today’s network needs to be aware of applications Gain visibility into application Intelligently prioritize and running in the network, control application traffic to performance trend, and user maximize user experience experiences© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8
    • Identification and Classification •  Automatic application recognition •  Application Context awarenessNetwork Monitoring andManagement Instrumentation Plan, configure, monitor, Baseline Provision•  •  Capacity planning troubleshoot •  Visibility into network and•  Sessions, endpoints and application behavior service infrastructure •  Dynamic troubleshooting•  SLA measurements IT Network AdjustmentsOptimization Resources Control•  Application acceleration, •  Prioritize business-critical offload traffic•  Reduce WAN traffic, Optimize Control •  Meets established business application latency policies and priorities© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9
    • Management Visibility Control Perf- IOS FNF HQoS PfR Mon PA Voice/ BW/ App Video Export Experience Metadata, Deep Packet Inspection (NBAR2)© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
    • MC/BR PROBLEM •  What is going on in my network? WAN1   MC/BR •  Voice Traffic classification (IP-­‐VPN)   •  Video Traffic classification •  Critical applications BR BR BR MC/BR HQ   WAN2   SOLUTIONS (IPVPN,  DMVPN)   •  Implicit: DPI (NBAR2, MSP) •  Explicit: Metadata BR •  Indirect: RSVP, Media Services Proxy (MSP) MC/BR© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11
    • •  Metadata is an architecture that enables end-to-end signaling of flow parameters and attributes to the network•  Metadata can be explicitly produced by the end user, implicitly produced by the network DPI engine or indirectly produced by a proxy (e.g. Communications/Call manager)•  Metadata used by various network services like QoS, Netflow, Media monitoring, PBR etc to facilitate application aware deployments•  Metadata would produce a set of “attributes” that the network can use for traffic classification and export•  Leverage RSVP to became the Metadata transport protocol for L2 switches and L3 router© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
    • The network proxy or the end point signals Metadata for a flow I am a surveillance application I use encrypted RTP; My clock frequency is 120Khz; Timeout my flow after 90sec; My GSID is yyy; Metadata signaled path Metadata Database 1.1.1.1 10.1.1.1 2134 80 http ATTR_1I am a conferencing applicationI use non-encrypted RTP; 10.76.109.45 10.76.109.51 1200 2000 Telpresence ATTR_1My clock frequency is 90Khz;Timeout my flow after 120sec; ATTR_2My GSID is xxx; 10.76.109.45 10.76.109.50 450 5060 SIP ATTR_3 30.1.1.1 135.1.1.1 1500 1600 Telpresence ATTR_1 ATTR_2 20.1.1.1 125.1.1.1 1500 1600 Surveillance ATTR_3 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13
    • (to be signaled from MSI on end point or MSP on the network) Attributes CTS-3000, Telepresence Tandberg MOVI app-ID Telepresence-media rtp sub-app-ID N/A N/A application model, CTS-3000, 1.5, Cisco MOVI, 1.1, Cisco vendor, version end point model, N/A Apple, MAC, xxx version, model GSID/MPID xxx yyy media-type Video audio clock frequency 90 Khz 70 Khz codec type MPEG-4 MPEG-2 flow bandwidth 15 Mbps 3 Mbps device-class telepresence software-phone Category/sub-category voice-and-video voice-and-video application-group voice-video-chat-collaboration voice-video-chat-collaboration © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
    • Flow Identifier Metadata IP Src IP Dst Prot L4 L4 Application Vendor Dial From Dial To Caller ID Src Dst 10.1.1.2 20.1.1.2 UDP 2000 4000 Video- Cisco 83922564 85268229 Albert Conference Albatross (Audio)1. Application Creates Metadata QoS based on Metadata Metadata DB Metadata DB Metadata DB 10.1.1.2 Export 10.1.1.2 of data 2. Metadata 3. Media Flow to NMS Announcement© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15
    • Multi Vendor Environment Multi Application Environment Multi Services Environment Media Monitoring Netflow QoS How do I manage these variations and diversity in the network?? With Medianet: Metadata + Media Services Proxy MSP !!!© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16
    • Auto device detection with MSP Third Party support with MSP: Metadata: QoS, Netflow and Monitoring.© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17
    • With Metadata, •  •  •  •  Intelligent, automatic QoS remarking for soft-phones with Metadata Metadata “device-class” or “application”© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18
    • Classification based on Classification based on ACL and DSCP DPI, ACL, DSCP News What do I know about this What do I know about this packet or flow ? packet or flow ? it has a DSCP=0 It has a DSCP = 0 it comes from Fast1/0 it carries Google News application it comes from location “Desk1” it comes from user “Marylou”•  How can device enforce policies if they don’t have uniform view of traffic ? Eg: Rule: Prioritize Google News traffic from Marylou•  How can application information be propagated to enable smarter, consistent enforcement of network policies?© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19
    • Voice communication between Marylou and John Voice communication started with application “X” This flow has a DSCP = EF Packets has DSCP=EF This flow contents RTP Voice I know lots of information from the application that I’m not going to send to the wire JohnMarylou This packet has a DSCP=EF This packet comes from Fast1/0 This packet comes from location “Desk1” This packet comes from user “Marylou” •  How to enforce a consistent network policy when classification are not available along the path ? Eg: Rule: Prioritize Voice communication from Marylou to John ? •  Endpoint can provide information not available or visible on the wire © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20
    • Dynamic Attributes Media-type Device-class App-ID device-class voice desktop-conferencing webex-client media-type video room-conferencing vmware-view voice-video physical-phone wyse-zero-client data software-phone cisco-phone desktop-virtualization surveillance telepresence Sub-App-ID traffic-type traffic-type signaling-type Application-group usb-redirection traffic-type pcoip sip citrix-group streaming signaling-type rdp h323 vmware-group tunnel transport-type ica skinny wyse-group realtime interactive mgcp bulk bfcp background sharing© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21
    • Use Cases Metadata Classification based on: Configure performance monitoring on application-group/device-class all Telepresence flows Remark all surveillance traffic to CS4 device-class Reroute Cisco Desktop conferencing vendor, device-class, device-sub- traffic through the MPLS VPN link class Determine % of video and audio-only media-type flows from Netflow Export Police interactive traffic from vmware app-ID, sub-app-ID client to 5 Mbps© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22
    • match application citrix traffic-type interactive (ica tag 0) match application rtp App-ID Based match application cisco-phone match application attribute device-class room- conferencing Dynamic attribute based match application attribute device-class surveillance match application attribute media-type video Application Group based match application application-group webex-group match application application-group citrix-group match application attribute category voice-and-video match application attribute category business-and- Category Based productivity-tools match application attribute sub-category remote-access- terminal match metadata global-session-id <> Metadata Based match metadata end-point [model | vendor | version]© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 23
    • Important charter in the App-Velocity space, enabling network as a platform for delivering intelligent networkservices for a multitude of applications Network Infrastructure Network Readiness: ISRG2, Cat3k, Cat4k, ASR1k, Cat6k Metadata Producers MSI Based End points (WebEx, VXI, TP), MSP, NBAR Network Services Video Monitoring, QoS, FNF, PBR, PfR Video PfR/PBR Monitoring Netflow QoS WAN M M NBAR and MSP Producing Metadata WebEx Metadata Database VXI/VNA 1.1.1.1 10.1.1.1 2134 80 http TP/Tandberg 10.76.109.45 10.76.109.51 1200 2000 WebEx Video 10.76.109.45 10.76.109.50 450 5060 SIP 30.1.1.1 135.1.1.1 1500 1600 WebEx Video 20.1.1.1 125.1.1.1 1500 1600 Surveillance © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24
    • Restore the DSCP value MPLS- VPN campus DMVPN SP could reset the DSCP valueMetadata Database1.1.1.1 10.1.1.1 2134 80 http All Voice calls All TP flows should be should be10.76.109.45 10.76.109.51 1200 2000 Telepresence marked with marked with DSCP=EF DSCP=CS410.76.109.45 10.76.109.50 450 5060 Cisco- Phone30.1.1.1 135.1.1.1 1500 1600 Telepresence20.1.1.1 125.1.1.1 1500 1600 Surveillance © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 25
    • MPLS- VPN campus CE DMVPN CE-1 Metadata SignalingMetadata Database 1.1.1.1 10.1.1.1 2134 80 http Policy on CE-1: 10.76.109.45 10.76.109.51 1200 2000 WebEx Video class-map match-all test match application WebEx 10.76.109.45 10.76.109.50 450 5060 SIP policy-map test class test 30.1.1.1 135.1.1.1 1500 1600 WebEx Video set dscp af11 20.1.1.1 125.1.1.1 1500 1600 Surveillance © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 26
    • Using AppID to enable Monitoring: Enable performance-monitor on all Telepresence flows Surveillance Manager CUCM Metadata Database I want to monitor 1.1.1.1 10.1.1.1 2134 80 http ONLY the 10.76.109.45 10.76.109.51 1200 2000 Telepresence Telepresence flows 10.76.109.45 10.76.109.50 450 5060 SIP Perf-mon: Enable 30.1.1.1 135.1.1.1 1500 1600 Telepresence monitoring on 20.1.1.1 125.1.1.1 1500 1600 Surveillance these 5 tuples © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27
    • Using AppID to set application specific thresholds Performance Monitor modules can Surveillance apply thresholds to the flow being CUCM Manager monitored based on its App-ID Threshold values can be built in for most popular video applications, or come from user configuration Administrator need not configure threshold explicitly for each individual monitoring session. I want to monitor all the Telepresence flows, and Global App ID Based Thresholds pick up the thresholds automatically App ID Loss Jitter Latency Surveillance x x x Cisco-Phone x x x Perf-mon: Enable monitoring on Telepresence x x x these 5 tuples with derived thresholds © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 28
    • Propagate flow properties that VM can use instead of static configuration I use encrypted RTP; My clock frequency is 120Khz; Timeout my flow after 90sec; My GSID is yyy; Surveillance Manager RSVP signaled path Fill in attributes inI use non-encrypted Metadata Database metadata databaseRTP;My clock frequency is 1.1.1.1 10.1.1.1 2134 80 http90Khz;Timeout my flow after 10.76.109.45 10.76.109.51 1200 2000 Telpresence ATTR_1120sec;My GSID is xxx; ATTR_2 VM: 10.76.109.45 10.76.109.50 450 5060 SIP Configure flow monitors 30.1.1.1 135.1.1.1 1500 1600 Telpresence ATTR_1 with metadata ATTR_2 attribute 20.1.1.1 125.1.1.1 1500 1600 Surveillance ATTR_3 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 29
    • •  Most collectors today classify and display traffic profiles based on L4 port numbers•  With HTTP as the new TCP this might not be very granular to uniquely classify an application•  Metadata makes it possible for a network node to identify an application granularly•  This approach is similar to NBAR and a few collectors have integrated NBAR along with Netflow to list the App-ID alongside the 5-tuple•  With Metadata, lot many attributes other than App-ID can be exported to Netflow collectors•  Requires FNF integration with Metadata, that is already a planned deliverable; Note this support has to exist even though Video monitoring already exports some Metadata through its native FNF integration Coming Soon© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 30
    • Netflow Cache: SRC ADDR DST ADDR APP NAME ======== ======== ======== 1.1.1.1 10.1.1.1 IP Surveillance 10.76.109.45 10.76.109.51 Telepresence 10.76.109.45 10.76.109.51 IP Surveillance 20.1.1.1 125.1.1.1 IP Surveillance Metadata Signaled by Switch using MSP FNF on the NEs NEs Flow Begins Metadata Database 1.1.1.1 10.1.1.1 2134 80 IP SurveillanceIP Surveillance Cameras 10.76.109.45 10.76.109.51 1200 2000 Telepresence 10.76.109.45 10.76.109.50 450 5060 IP Surveillance Coming 20.1.1.1 125.1.1.1 1500 1600 IP Surveillance Soon © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 31
    • Metadata + FNF Integration Per-Flow Metadata: GSID/MPID Clock Hz Codec Type Bandwidth Coming Soon© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 32
    • •  Performance Routing improves application performance by enabling a performance- aware infrastructure that selects the best path across the network•  Network performance like reach ability, delay, loss, jitter, and Mean Opinion Score help select the best path based on application requirements•  Many current applications cannot be identified by port numbers or prescribed DSCP values based on which PfR/PBR can operate (i.e. dynamically route based on traffic type)•  Metadata provides the ability to the network to be cognizant of flow related attributes (e.g. nature of application and its parameters)•  Integrating Metadata with PfR can enable PfR to identify these applications and optimize routing for them Coming Soon© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 33
    • Coming Soon PfR selects Remote different links for TP and webex TP Office ISP A ISP B ISP C Si Si MPLS or Bottlenecks Si Primary ISP webex Metadata Database Best Metric Path Small 10.76.109.45 10.76.109.51 1200 2000 Telpresence ATTR_1 Office ATTR_2 30.1.1.1 135.1.1.1 1500 1600 Telpresence ATTR_1 ATTR_2 20.1.1.1 125.1.1.1 1500 1600 WebEx ATTR_3•  PfR integration with Metadata exposes the App-ID and other Metadata attributes to the routing subsystem•  Pfr can use this per flow data to intelligently route traffic across various links based on application type or other Metadata attributes•  Leverage policy routing to redirect bandwidth intensive rich media across low cost links to enable gradual scaling of medianet architecture© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 34
    • Coming Soon I am a surveillance camera using RTSP. My clock frequency is 120Khz; Timeout my flow after IPv6 90sec; My GSID is yyy; Surveillance Manager RSVP signaled path Fill in attributes inI use non-encrypted RTP; Metadata Database metadata databaseMy clock frequency 1.1.1.1 10.1.1.1 2134 80 httpis 90Khz;Timeout my flowafter 120sec; 10.76.109.45 10.76.109.51 1200 2000 Telpresence ATTR_1My GSID is xxx; ATTR_2 Attributes FFoE::ABCD FF0E::DEAD 450 5060 SIP ATTR_1 used by VM, QoS, FNF, PfR 30.1.1.1 135.1.1.1 1500 1600 Telpresence ATTR_1 etc ATTR_2 20.1.1.1 125.1.1.1 1500 1600 Surveillance ATTR_3© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 35
    • •  Metadata match policies look familiar to NBAR C3PL?  They should!•  Policy configuration remains the same, simplifying deployment NBAR Metadata DB C3PL match© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 36
    • Media Services Interface (MSI) Media Services Proxy (MSP) NBAR© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 37
    • •  Metadata producers create metadata announcements Metadata producers may be anywhere along the flow path Generally better to be at the source, or near the sourceProducers Notes Platform/ReleaseMSI (application) Direct application integration at Shipping: WebEx source of flow, before flow even Jabber starts Roadmap: VXC, CTS, Cannondale, TandbergNBAR (routers) DPI used to create metadata Roadmap: ISRG2, ASR1k attributes then share downstreamMSP (routers & Light-weight DPI to create Shipping: ISRG2, Catalyst 4kswitches) metadata attributes. Used locally or downstream Roadmap: Catalyst 3k © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 38
    • What can use metadata?Consumer Function Platform/ReleaseQoS / C3PL QoS services (match, remark, Shipping: ISRG2, ASR1k, cat4k WRED, shape etc) Roadmap: Cat6k/Sup2T, Cat3kFlexible NetFlow Reporting of metadata attributes Roadmap: ISRG2, ASR1k(FNF)Performance Enable monitoring based on Flow Shipping: ISRG2Monitoring Metadata Roadmap: ASR1k, cat4k, cat3kPolicy Based Routing Determination of path based on Roadmap: ISRG2, ASR1k metadata attribute © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 39
    • Media Services Interface Deliverables Middleware/API Resource Management Management – Policy Media Services Host Monitoring Interface TCP/IP Service Discovery (resides at the MSI Reference implementation video endpoint): Media Monitoring API SDK Simulation - Test environment   API Configuration Support - Documentation   Middleware Auto-Registration   Host Stacks / Protocols Neighbor Discovery Platform Portability Layer: Win, Mac, embedded Linux, mobile OS Medianet© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 40
    • Performance Internet  /   Monitoring WebEx  DC   WAN1   MC/BR (IP-­‐VPN)   BR BR BR MC/BR HQ   WAN2   (IPVPN,  DMVPN)   4. Traffic remarked back to enterprise values. 3. DSCP NBAR or metadata used remarked for SP 1. WebEx/MSI generates metadata 5. DPI not available QoS policy driven 2. Different WebEx media get by metadata different QoS policies.© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 41
    • Coming Soon 1. NBAR generates metadata from DPI analysis WAN1   MC/BR (IP-­‐VPN)   BR BR BR MC/BR HQ   WAN2   (IPVPN,  DMVPN)   2. QoS policy driven BR by metadata or NBAR. Basic DSCP markings 4. Traffic remarked are not granular back to enterprise values. MC/BR enough NBAR or metadata used 3. DSCP remarked for SP 5. DPI not available QoS policy driven by metadata© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 42
    • Expand Production With NBAR Producing Metadata Content NBAR detects flow/ application and fields through field extraction WAN M M NBAR Producing Metadata Metadata can signal information downstream Metadata Database 1.1.1.1 10.1.1.1 2134 80 http 10.76.109.45 10.76.109.51 1200 2000 WebEx Video 10.76.109.45 10.76.109.50 450 5060 SIP 30.1.1.1 135.1.1.1 1500 1600 WebEx Video 20.1.1.1 125.1.1.1 1500 1600 Surveillance© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 43
    • Field Description Syntax Type h"pUrl   URL  extracted  from  the  HTTP   collect application http String   transac8on.  The  URL  is   url required  per transaction   h"pHostName   Host  Name  extracted  from  the   collect application http String   HTTP  transac8on.  The  URL  is   host-name required  per transaction   http h"pUserAgent   User  agent  field  extracted  from   collect application http the  HTTP  transac8on   user-agent String   h"pReferrer   REFERRER  extracted  from  the   collect application http String   HTTP  transac8on   referrer h"pCookie   COOKIE  extracted  from  the   collect application http String   HTTP  transac8on   cookie Field Description Syntax Type rtspHostName   RTSP host name extracted String   collect application rtsp host- from the RTSP transaction   name rtspSessionId   RTSP  session  ID  as  seen   String   collect application rtsp Coming on  an  RTSP  SETUP  request   session-id Soon rtspUrl   RTSP URL   String   collect application rtsp url rtsp rtspResponseDate   RTSP  DESCRIBE  date   String   collect application rtsp response-date encodingRate   TBD   Uint32   TBD rtspSessionTitle   Title  for  this  RTSP  stream   String   collect application rstp session-title rtspServerId   Name  of  the  RTSP  server   String   collect application rtsp server-id© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 44
    • Field Description Syntax Type sipMethod   String   collect application sip method sipSrcDomain   Per transaction   String   collect application sip source-domain Per transaction   sip sipSrcSubscriber   String   collect application sip source-subscriber sipDstDomain   Per transaction   String   collect application sip destination-domain sipDstSubscriber   Per transaction   String   collect application sip destination-subscriber sipCallID   Call-ID extracted from the Uint32   collect application sip call-id SIP transaction   Field Description Syntax Type rtcpPacketLoss   Average  frac8onal  upstream  packet   collect application rtcp Uint16   loss  for  the  session,  taken  from  the   packet-loss RTCP  flow.  A  value  of  0xFFFF  indicates   rtp/rtcp that  this  field  is  undefined   rtcpJi"er   Average  upstream  ji"er  for  the  session  collect application rtcp jitter Uint32   in  units  of  1/65  millisecond,  taken   from  the  RTCP  flow.  A  value  of   0xFFFFFFFF  indicates  that  this  field  is   undefined   rtpPayloadType   Upstream  RTP  payload  type  for  the   collect application rtp Uint8   session.  A  value  of  0xFF  indicates  that   payload-type this  field  was  not  available   rtpSsrc   RTP  SSRC   collect application rtp ssrc Uint32  © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 45
    • Device/Flow Identification by Propagate Metadata to MSP. Update Metadata in local downstream nodes: node Metadata Proxy G 3/1 G 4/1 RSVP G 5/1 Transport Metadata Signaling Flow Identifier Metadata Device Type – IPVS Camera, Conferencing IP Src IP Dst Prot L4 Src L4 Dst Application Vendor Model Version Other properties units 10.1.1.2 20.1.1.2 UDP 2000 4000 IP Surveillance Axis XYZ 1.2 …© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 46
    • Policy on switch:class-map match-all test MSP on Switch identifies match application surveillance surveillance applications, Packets from surveillance cameras remarks packets sent to priority queuepolicy-map test class test set dscp af11 AF11 queue (surveillance) Egress Queues for other traffic IT- M supported UC ClientsBest-effortApplications IP Src IP Dst Prot L4 Src L4 Dst Application Vendor Model Version Other properties 10.1.1.2 20.1.1.2 UDP 2000 4000 Surveillance Axis XYZ 1.2 … Metadata Database © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 47
    • Branch   MSP at Access MC/BR MC/BR BR MSI  from   WAN1   endpoint   (IP-­‐VPN)   BR NBAR at Edge BR HQ   MC/BR Flow Identifier Metadata App-LayerIP Src IP Dst Prot L4 Src L4 Dst Application Vendor Dial Dial To User From10.1.1.1 125.1.1.1 90 4080 1234 telepresence Cisco Priority-1 rtp 1001 2002 Bob Priority-3 telepresence- Priority-2 video© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 48
    • Metadata Flow IdentifierIP Src IP Dst Prot L4 Src L4 Dst Application Vendor Dial Dial To User From10.1.1.1 125.1.1.1 90 4080 1234 telepresence- video Cisco Priority-1 rtp 1001 2002 Bob Priority-3 telepresence Priority-2 App-Layer match succeeds for telepresence-video due to Priority-1 policy-map P1 match MSI class-map C1 pass!! fails!! match application rtp Packet class-map C2 NBAR match application telepresence-video MSP Prioritizes more granular MSI classification BY DEFAULT in case of conflict © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 49
    • Metadata Flow IdentifierIP Src IP Dst Prot L4 Src L4 Dst Application Vendor Dial Dial To User From10.1.1.1 125.1.1.1 90 4080 1234 telepresence- video Cisco Priority-1 rtp 1001 2002 Bob Priority-3 telepresence Priority-2 App-Layer match succeeds for telepresence-video due to Priority-1 policy-map P1 match pass!! class-map C1 Packet match application rtp source msp Prioritizes user specific source for backward compatibility © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 50
    • Metadata : How does it work?© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 51
    • •  Metadata protocol: announces flow parameters and attributes to network nodes along a path•  Metadata flow DB: maintains flow attribute information, and coordinates metadata producers/consumers. Producer: creates metadata information Consumer: utilizes metadata information•  Nodes that do not support metadata will pass it silently Metadata DB Metadata producer Metadata consumer (1st: ISRG2 15.2(1)T) (1st:WebEx client Dec 2011) QoS based on Metadata Metadata DB Metadata DB 10.1.1.2 Metadata announcement© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 52
    • Why RSVP? • Metadata sent only to concerned network RSVP nodes Message • No special hardware handling required for RSVP Header RSVP metadata • Keep data streams free of metadata Session Object • Encryption of data traffic not an issue Sender-Template Object •  RSVP well suited for network path changes and is a standard hop-by-hop protocol RSVP Specific Objects RSVP Transport Object DCLASS Object Object Length Class-Num C-Type Payload Length Unused Policy Object (CAC-ID) Metadata-Payload (AppID) Transport Object© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 53
    • Metadata Configurations© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 54
    • •  Metadata global CLI commands are moved to service internal (except “metadata flow”) •  End Point – Flow Specifications •  Source IP address – End point IP (Telepresence) •  Destination IP address – MCU (Telepresence Switch) •  Configuration Example metadata flow <Enable Flow Metadata feature> metadata flow flow-specifier TP-A source-ip 1.1.1.1 source-port 1000 dest-ip 2.2.2.2 dest-port 1000 ip protocol [udp | tcp] [UDP is the default]© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 55
    • •  End Point – Flow Params •  Application – Telepresence Video Stream •  Global Session ID – 12, Clock Freq – 2000 Khz •  Configuration Example: metadata flow <Enable Flow Metadata feature> metadata flow session-params TP-A application name telepresence-media global-session-id 12 multi-party-session-id 11111111 clock-frequency 2000 ssrc 363636© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 56
    • •  Flow Creation and Propagation •  Carries Flow Spec and Flow Attributes to the destination. •  RSVP is the Transport Protocol •  Follows the media path metadata flow entry TP-A session-params TP-A flow-specifier TP-A© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 57
    • Enable Classification on any Node in the network class-map match-all test match application telepresence-media (based on app-ID) [OR] match application attribute device-class desktop-conferencing ! ! policy-map test QOS Application class test set dscp af11 !© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 58
    • •  Classify based on Global Session ID •  Classify based on Multi Party Session ID •  Configuration Examples class-map match-all test3 match metadata global-session-id 12 class-map match-all test1 match metadata multi-party-session-id 11111111© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 59
    • •  Create Class MAP and Policy MAP class-map match-all test match application telepresence-media ! policy-map test class test set dscp af11 ! •  Attach the policy to Interface interface Ethernet1/0 ip address 1.1.1.2 255.255.255.0 service-policy input test1© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 60
    • •  Flow Data Base with Source IP, Destination IP and Port information•  Available in every hop (node)cat4k-1#show metadata flow tableFlow To From Protocol DPort SPort Ingress I/F Egress I/F SSRC1 60.1.1.11 70.1.1.10 UDP 1722 50004 Gi3/47 Gi3/48 1716307277cat4k-1#© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 61
    • Detailed information about a Flow with Attributescat4k1#sh metadata flow local-flow-id 1To From Protocol SPort DPort Ingress I/F Egress I/F60.1.1.11 70.1.1.10 UDP 50000 6970 GigabitEthernet3/47Metadata Attributes :End Point Model : AXIS-CameraApplication Name : rtpApplication Tag : DDA64892Device-class : “Surveillance”Mime Type : H264Payload Type : 96Clock Frequency : 90000Bandwidth : 50000SSRC : 2986382046•  © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 62
    • •  Metadata Debug Commands Debug metadata flow all Debug metadata flow core [api | error | events ] Debug metadata flow table [api | error | events] Debug metadata enc-dec [details | error | events]© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 63
    • •  Thank you! •  Please complete the post-event survey. •  Join us August 1 for our next webinar: Efficient Data Center Design with FabricPath/TRILL To register, go to www.cisco.com/go/iosadvantage© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 64