Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Cisco connect montreal 2018 vision mondiale analyse locale

184 views

Published on

Centre de données : L’avantage du la multi-infonuagique

Published in: Technology
  • Be the first to comment

  • Be the first to like this

Cisco connect montreal 2018 vision mondiale analyse locale

  1. 1. Cisco Connect Montréal 2018 Vision mondiale. Analyse locale.
  2. 2. Simon Bellemare Simon Vaillancourt Data Center – Centre de donnée L’avantage MultiCloud Architecte de solutions, Centre de données Spécialiste, Centre de données 20 novembre 2018
  3. 3. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential • Cisco’s Cloud Strategy – What is MultiCloud? • ACI Anywhere • Cisco Container Platform • Cloud Partnerships – AWS and GCP • Cisco Cloud Center Agenda
  4. 4. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Secure, intelligent platform for digital business Power a Multicloud World Increased Pace of Innovation Create Meaningful Experiences Reinvent the Network Security is Foundational Unlock the Power of Data
  5. 5. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential MULTICLOUD What is a multicloud world? SaaS Azure Edge Kinetic IBM Cisco Webex Campus Branch Data Center Hybrid Cloud Google Cloud SaaS Private SaaS SaaS Oracle SaaS AWSAWS Colocation Private Hybrid Cloud
  6. 6. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Innovation Speed Why multicloud?
  7. 7. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Two different worlds… Public cloud New app development Agility, microservices, speed and scale Shared responsibility model On-premises environment Application modernization Governance, investment protection Security
  8. 8. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Market drivers… Accelerating Innovation Evolving on-premises environment Adopting public cloud Cloud Native Apps Application Modernization
  9. 9. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential …triggering technology, organization, and cultural change Adopting public cloud Evolving on-premises environment Cloud Native Apps Networking Security Data Center Application Modernization App Owners IT Ops DEVSCloud Architects LOB CxO
  10. 10. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential But change isn’t easy “…I’m worried about management and control in multiple environments” “…I can’t afford to leave my existing infrastructure and applications behind” “…I feel limited to specific development tools and technologies” “…I can’t easily develop and deploy where I want” “…I am concerned about securing everything inside and outside my firewall” “…I need a consistent application experience across all my environments”
  11. 11. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential if multicloud was simpler IMAGINE
  12. 12. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Powering a multicloud world Adopting public cloud Evolving on-premises environment Helping you to connect, protect, and consume clouds Networking Analytics Management Security
  13. 13. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Securely extend your private networks into public clouds and ensure the application experience Protect multicloud identities, direct-to-cloud connectivity, data, and applications including SaaS Deploy, monitor and optimize applications in multicloud and container environments Powering a multicloud world Helping you to connect, protect, and consume clouds Networking Analytics Management Security
  14. 14. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Multicloud Portfolio Helping customers to connect, protect, and consume their clouds Adopting public cloud Evolving on-premises environment Multicloud Portfolio Cloud Connect Cloud Protect Cloud Advisory Cloud Consume
  15. 15. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Multicloud Portfolio Advisory Services • Cloud Migration • Cloud Connect • Cloud Protect • Cloud Consume (Delivered by AS/Cisco Partners) • AppDynamics • CloudCenter • Container Platform • Cisco Workload Optimization Manager Cloud Consume Cloud Advisory • CSR 1000v • Meraki vMX • vEdge with Umbrella • AMP for Endpoints • Cloudlock • Meraki Systems Manager • Stealthwatch Cloud • Tetration SaaS • Umbrella Cloud Connect Cloud Protect
  16. 16. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential ACI Anywhere
  17. 17. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Remote Leaf / Virtual PoD APIC / Multi-Site Multi-Cloud Extensions ACI Anywhere - Vision Any Workload, Any Location, Any Cloud ACI Anywhere IP WAN IP WAN Remote Location Public CloudOn Premise Security Everywhere Policy EverywhereAnalytics Everywhere
  18. 18. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Inter-Pod IP Network ACI MultiPod Single APIC Cluster Extends Network Virtualization, Policy, Services to Multiple PODs Site A Site B Active-Active Datacenters Virtual Metro Clusters Stretch VRF, EPG, BD Across PoDs with VXLAN Up to 50ms Latency
  19. 19. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential VMVMVM Site A Site B Site C Site D VMVMVM ACI Multi-Site Multi-Site Consistent Policy across sites Single Point of Orchestration Fault Isolation Scale VMVMVM VMVMVM Geographically Dispersed Active/Active Data Centers Active/Standby Data Centers For Disaster Recovery Stretch VRF, EPG, BD Across Sites with VXLAN Up to One sec Latency
  20. 20. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential IP Network ACI: Physical Remote Leaf Extend ACI to Satellite Data Centers Site A Remote Location Zero Touch Auto Discovery of Remote Leaf Two Remote Leafs Up To 20 Remote Locations Stretch EPG, BD, VRF, Tenant, Contract Health Scores, EPG Stats VMVMVM VMVMVMVM VMVMVM VMVMVMVM
  21. 21. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential vSpine vLeafvLeaf ACI Virtual Edge IP Network ACI: Virtual PoD Extend ACI To Bare-metal Cloud On-Premise Remote Location Bare Metal Clouds (IBM BlueMix, AWS Elastic Metal etc.) Remote Data Centers Colo Facilities (Equinix, CoreSite etc.) BrownField Deployments VMVMVM VMVMVMVMVMVMVM VMVMVMVM Virtual Pod Hypervisor Logical Connection To Spine (BGP-EVPN/ VXLAN)
  22. 22. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential VMVMVM Site A Site B Site C Site D VMVMVM ACI Extensions To Multi-Cloud ACI Multi-Site Appliance Consistent Network and Policy across clouds Common Governance Single Point of Orchestration Secure Automated Connectivity
  23. 23. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential ACI 4.1 ACI Extensions to AWS IP Network AWS Region EPG Web EPG APP Contract Contract EPG DB SG Web SG APP SG Rule SG Rule SG DB On-Premise VMVMVM Public CloudSite A Site B Monitoring & Troubleshooting Automated Connectivity Common Governance Single Point Of Orchestration Discovery & Visibility Policy Translation Multi-Site
  24. 24. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential AWS Region On-Premises VMVMVM Public CloudSite A Site B Multi-Site Infra VPC L3 Out + Golf AWS Direct Connect Routers CSR1000V DX Location Colocation Customer Router Amazon VGW Customer Premise Router User VPC-1 AWS Instances CSR1000V User VPC-2 AWS Instances CSR1000V BGP EVPN Control Plane VXLAN TUNNEL (DATA PLANE) OVERLAY ACI Anywhere: On-Prem Connectivity To AWS VPC With Direct Connect + VPN ACI 4.1
  25. 25. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Security Group Virtual Private Network Security Group Rule Outbound rule Inbound rule User Account Source/Destination: Subnet or IP or Any or ‘Internet’ Protocol Port Network Adapter Tenant VRF BD Subnet EPG EPG Contracts Consumed contracts Provided contracts EC2 Instance VPC subnet Contracts Policy Mapping - AWS
  26. 26. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Démo
  27. 27. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Optimize Your Network Protect Your Business Integrate Hybrid IT With Cisco ACI, you can build a better network… anywhere.
  28. 28. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Cisco Container Platform (CCP)
  29. 29. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Containerization Challenges and Trends in a Multi-cloud World Multiple Open Source Solutions Hybrid Environments Container Complexity Networking, Security and Storage Source: CNCF Survey, June’2017 Container Trends 1. Kubernetes is emerging as the leading container orchestration platform 2. Containers are being adopted heavily in on-premise data centers Source: Jan 17, 2017 cncf.io blog
  30. 30. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Automates deploying, running, scaling, and operating containers on physical or virtual machines. Incl. Scheduling, Load balancing, Rolling updates Kubernetes Goals • API and implementation 100% open • Modular and replaceable • Don’t force apps to know about concepts that are • Cloud Provider Specific • Kubernetes Specific Enable Users To • Write once, run anywhere • Avoid vendor lock-in • Avoid coupling app to infrastructure What Kubernetes provides
  31. 31. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential • Inside: Container Runtime and Workloads • Above: Management, Services and Tools • Logging + Monitoring • Kubernetes Stack Lifecycle Management, Patches, Upgrades • CI/CD • PaaS • Workflow Orchestration • Data processing • OTS applications: • Middleware + Storage + Databases + … • Below: Diverse Infra Environments • Container Storage, Container Network • Image registry • Cloud provider • Cluster + host lifecycle management • Identity and secret management What Kubernetes does not provide Kubernetes Docker Infra Environments Services and Management
  32. 32. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Cisco Container Platform Hybrid Cloud Optimized E.g: Google, … Flexible Deployment Model VM | Bare metal  HX, ACI | Public cloud Integrated Networking | Management | Security | Analytics Native Kubernetes (100% Upstream) Direct updates and best practices from open source community Turnkey Solution For Production-Grade Container Environments Easy to acquire, deploy and manage | Open and consistent | Extensible platform | World-class advisory and support
  33. 33. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Cisco Container Platform K8s master K8s Node K8s Node K8s Node Persistent Storage Overlay Network Load Balancer Storage External Communication External Network  Highly automated, curated  Runs on 100% upstream Kubernetes  Seamless container networking  Built In security and load balancing  Enterprise-grade persistent storage  Integrated monitoring and logging Technical Differentiators IaaS Kubernetes Lifecycle Management Kubernetes AuthN and AuthZ Secure Communication
  34. 34. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Cisco Container Platform for HyperFlex IaaS HyperFlex Compute/Storage HyperFlex Network ACI Nexus 9k standalone On-premises Kubernetes Cisco Container Platform Container Networking Contiv / ACI CNI / Calico Container Storage HyperFlex Flex driver Turnkey Kubernetes • Simple & Seamless Day0 & DayN K8S operations integrated into HyperFlex • HyperFlex IaaS Enterprise Storage • Scale-out, HA Filesystem • Data protection, efficiency and resiliency Enterprise Networking and Security • Multi-tenant architecture, Micro-segmentation, Security policies Common Platform for Legacy and Modern Apps • Co-existence of VMs and containers on same platform DevOps Ready IT • Enable developer agility with IT & security policies • Avoid Shadow IT Turnkey Appliance for Enterprise Kubernetes Cisco Container Platform Single Vendor Support • Fully supported by Cisco Global TAC • Single throat to choke for entire stack
  35. 35. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Control Plane Data Plane VM VM Control Plane Kubernetes Automation Orchestration Operations HX Connect Cluster/ Machine Controllers VM VM VM Cluster 1 Kubernetes Cluster1 Workloads Cluster1 Ops Pod Pod Pod VM VM VM Cluster 2 Kubernetes Cluster2 Workloads Cluster2 Ops Pod Pod Pod Kubernetes Fluentd Prometheus Kibana Hyperflex Contiv Storage (HyperFlex) Networking (Nexus 9K) Compute Hardware (UCS) Hypervisor Layer (HyperFlex / VMware) Cisco Container Platform Architecture VM VM
  36. 36. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Interacting with Cisco Container Platform Kubernetes Kubernetes Lifecycle IT Admin UI + API CLI + UI + API Monitoring / Logging Storage / Network Developers KubernetesCisco CP
  37. 37. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Cloud Partnerships
  38. 38. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Extensible Existing applications Hybrid Production Grade APP APP VM Bare Metal Deploy Secure Connect Monitor Introducing: Cisco Hybrid Solution for Kubernetes on AWS Secure and production-grade to accelerate innovation
  39. 39. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential On-premises environment Management Security Monitoring Networking Consistent, production-grade environment Identity Cisco Hybrid Solution for Kubernetes on AWS
  40. 40. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Cisco Hybrid Solution for Kubernetes on AWS On-premises environment Cisco Nexus9K / ACI Cisco HyperFlex / UCS VPC EC2 / EBS Elastic Container Registry Identity and Access Management (IAM) Cisco CloudCenter Cisco Stealthwatch Cloud AppDynamics Optional Mandatory Cisco CSR1000v Cisco Container Platform Amazon EKS Legend: Consistent, production-grade environment
  41. 41. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Solution differentiators First hybrid solution for Kubernetes on AWS Consistent identity and authentication All applications: Kubernetes + existing Cisco enterprise-class support
  42. 42. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential On-premises environment Google Kubernetes Engine Existing services apps | data Cisco Hybrid Cloud Platform for Google Cloud Cisco HyperFlex Cisco Nexus9K / ACI Cisco CSR1000v Cisco Stealthwatch Cloud Cisco Container Platform Consistent environment Google Apigee Cisco CloudCenter Istio BigQuery Cloud SQL Pub/Sub Big Table Cloud Storage Cloud Spanner Open Service Broker
  43. 43. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Benefits for the organization Accelerate innovation Reduce time-to- market with faster adoption of AWS services Production-grade Securely deploy, connect, manage, and monitor with enterprise-class solution and support Reduce risk Integrated security with end-to-end protection and common identity and authentication
  44. 44. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Benefits for teams Developers Accelerate development of new applications IT Ops Production-grade solution with enterprise-class support Security team Visibility and control across the hybrid environment without slowing innovation
  45. 45. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Cisco Cloud Center
  46. 46. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential IT Challenges Feature Velocity OptimizationMulticloud Governance Secure Automation
  47. 47. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential IT Benefit Decreased end user wait time by 99% while removing 100% manual admin work Decreased time for new product release by nearly 20% Optimizing cloud instance sizing and type reduced cloud bill by over 40% IT Support 6 clouds and 24 regions without increasing staff Feature Velocity OptimizationMulticloud Governance Secure Automation
  48. 48. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Data Center Private Cloud Public Cloud Container as a Service Business gets Value. IT gets Management Complexity… Higher Costs Increased Complexity
  49. 49. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15 years ago… Application RHEL CPUs:1 Memory: 4GB Storage: 0GB
  50. 50. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10 years ago… Application Data CenterA Data Center B App1A Script App2A Script App3A Script App1B Script App2B Script App3B Script RHEL CPUs:1 Memory: 4GB Storage: 0GB
  51. 51. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10 years ago… Application Data CenterA Data Center B AWS Region 1 AWS Region 2 App1A Script App2A Script App3A Script App1B Script App2B Script App3B Script App1C1 Script App2C1 Script App3C1 Script App1C2 Script App2C2 Script App3C2 Script RHEL Google Region 1 Google Region 2 App1D1 Script App2D1 Script App3D1 Script App1D2 Script App2D2 Script App3D2 Script CPUs:1 Memory: 4GB Storage: 0GB
  52. 52. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Script-Based Scaling 0 1 2 3 4 5 6 7 8 9 10 1 2 3 4 5 6 7 8 9 10 Automation Artifacts NumberofClouds/Regions
  53. 53. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential What is CloudCenter?
  54. 54. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential CloudCenter – Multicloud Management Platform Securely Model, Deploy, and Manage Anywhere. One Integrated Platform End to End Lifecycle New and Existing Applications Deploy Manage Model Container as Service Public Cloud Data Center Private Cloud
  55. 55. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Control and Optimize Usage Multicloud Governance • Control users, applications and clouds both on and off-premises • IT controls who can do what, where, for how long Policy • Simplify IT management • Ensure consistency Deploy Manage Model
  56. 56. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential How CloudCenter Works
  57. 57. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Unique Approach to Cloud Scale Infrastructure- centric Cloud-specific workflows and scripts Labor/services intensive Error Prone Unique Script/ Workflow Script-Based Unique Script/ Workflow Unique Script/ Workflow Application Profile-Based Application- centric Cloud agnostic Low TCO Cisco Partner Confidential
  58. 58. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential CloudCenter Components CloudCenter Manager (CCM) Application Profile CloudCenter Orchestrator (CCO) Virtual Appliance Hosted On-Premises or in Cloud JSON-Based Model Built and Lives in CCM Virtual Appliance Hosted in Target Cloud Cisco Partner Confidential
  59. 59. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential CloudCenter Components VM CO NTA INE R Cisco Partner Confidential
  60. 60. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential CloudCenter Manager Capabilities CloudCenter Manager (CCM) Provides: • UI/API • Self-Service Catalog • Role-based access control (RBAC) • Modeling Tool • Governance • Policy Enforcement • Object Management Virtual Appliance Hosted On-Premises or in Cloud Cisco Partner Confidential
  61. 61. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Application Profile Capabilities Describes: • Virtual infrastructure • Application Topology • Service creation • Lifecycle actions • Service interdependencies • Firewall rules Application Profile JSON-Based Model Built and Lives in CCM Cisco Partner Confidential
  62. 62. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Application Profile Capabilities Executes: • Translation from Application profile to API • Virtual infrastructure instantiation • Cloud-specific objects and security • Calls to 3rd party tools • Dynamic agent Installation CloudCenter Orchestrator (CCO) Virtual Appliance Hosted in Target Cloud Cisco Partner Confidential
  63. 63. © 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential How CloudCenter is Different
  64. 64. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public From Scripts to Declarative Orchestration 70 “Turn By Turn” Directions Manual Scripting
  65. 65. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public From Scripts to Declarative Orchestration 71 “Turn By Turn” Directions State Your Destination Manual Scripting Template-ized Scripts
  66. 66. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public From Scripts to Declarative Orchestration 72 “Turn By Turn” Directions State Your Destination Take a Train Manual Scripting Template-ized Scripts Platform as a Service (PaaS)
  67. 67. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public From Scripts to Declarative Orchestration 73 “Turn By Turn” Directions State Your Destination Take a Train Take an Uber or Lyft Manual Scripting Template-ized Scripts Platform as a Service (PaaS) Declarative Orchestration

×