The document discusses Cisco's vision for application-centric infrastructure (ACI) which provides policy-driven automation across networks, compute, storage and security to enable agility. ACI uses concepts like endpoint groups, policies and profiles to simplify management and deliver applications securely on premises or across hybrid clouds. The document also highlights Cisco technologies that integrate with ACI like Tetration for network analytics, Cisco CloudCenter for hybrid cloud orchestration, and Cisco UCS for converged infrastructure.
1. The path to agility in an app-centric world
Hope, Fear, and the Data Center Time Machine…
Wes Toman | Systems Engineer
wetoman@cisco.com
December, 2016
2. * Cisco Global IT Impact Survey
Applications Are Changing
Type
Consumption
Delivery
78% The network is even more critical to
delivering applications than a year ago*
Big Data,
Distributed
Apps, Mobile
Cloud–public,
Private,
Hybrid
Anywhere,
Anytime, Any
Device
3. Cost and
Complexity UP
Growth in Apps and Infrastructure driving
Datacenters to become very complex
Private Clouds
Datacenters
Public Clouds
4. How is the industry solving the problem?
Application
Policy
Visibility
SDN
Programmability
APIs
Automation
Mobility
Agility
Orchestration
Cloud
6. Security Everywhere9
Analytics Everywhere10
8 Policy Everywhere
Policy-Driven Integrated Infrastructure
Answers Customers’ Request
1
Modernize Infrastructure:
Open and Programmable
Network / L4-7
Compute
Storage
Security
Data Center
5
Move Data and
Workloads Securely
6
Self-Service Portal
(IT as a Service)
7
Extend Policy
Model
2
Automate
and Simplify
POLICY
3
Build Your
Hybrid Cloud
Private Cloud
Stack
Integrated Infrastructure
4
Choose any
Other Cloud
Managed
Public
Private
7. IT as a Service
IaaS | PaaS | SaaS | XaaS
Flexible Consumption Models
Foundational Challenges
Simplification
Drive Agility & Automation
Optimize Operations > TCO
Open & Programmable
Security to Meet Compliance
Segment with Multi-tenancy
Elastic Model
Develop Hybrid Cloud Model
Policy Driven Automation for a Cloud Model
Foundation
Orchestration
Self Service
ACI
Solves
Storage
Compute
PaaS
8. Enhancing Bi-Modal IT with ACI and UCS
Tenant 1 = Mode 1 Tenant 2 = Mode 2
Common Infrastructure, and Management With Secure, Stable Separation
Manufacturing IT
Department
Recently Acquired
Company
Marketing
Department
9. Enhancing Bi-Modal IT with ACI and CliQr
ACI, UCS, UCSD = Mode 1 Public Cloud = Mode 2
Stability With on Premises Model 1. Agility with Public Model 2.
Manufacturing IT Department Recent Acquired
Company
Marketing
Department
10. Bare Metal, Virtualized and
Containers
VM Density and
Converged/Hyperconverged Storage
10/25/40/50/100G Ethernet Transition
Hybrid-Cloud
Over 54% Enterprises Moving to Hybrid Cloud
Big Data and Analytics:
Foundational for Next Gen DC
25% CAGR IP Traffic Growth1
1. Cisco Global Cloud Index Forecast (2013-2017)
11. Open Choice for SDN and Network Automation
Large Social
Networking Service
Programmable Network
Cisco ACI
Programmable FabricProgrammable Network
“Do It Yourself”
Modern NX-OS with
enhanced NX-APIs
Automation ecosystem
Common NX-API across
N2K-N9K
Cisco ACI
Policy Automation
Embedded security,
centralized management,
and scale
Broad and deep ecosystem
Programmable Fabric
Open Scalability
VxLAN-BGP EVPN
network virtualization
3rd party controller support
13. Service Profile
Network Policy
Storage Policy
Compute Policy
SIM Cards and Application Profiles
SIM Card
Identity for a Phone
Service Profile
Identity for Compute
Application Profile
Identity for the Network
16. Our Vision for ACI: Scale, Security and Full Visibility
Physical
Networking
Compute L4–L7
Services
StorageHypervisors
and Virtual
Networking
Multi DC
WAN and Cloud
Enabled By Physical and Virtual Integration
Tenant Application
Health Score
Latency
Drop Count
Visibility
78%
5 Microsecond(s)
25 Packets Dropped
16 VMs
8 Physical
Application Delivery
Controller
Firewall
Health Score
Latency
Drop Count
Visibility
96%
2 Microsecond(s)
0 Packets Dropped
16 VMs
8 Physical
Application Delivery
Controller
Firewall
17. ACI Security
With Focus on Simplification, Multi-Tenancy and Scalability
Automated
Audit, Detect,
Mitigate
Policy–
Physical and
Multi-Cloud
Stateless Firewall
and Micro
Segmentation*
* State-full with Cisco
AVS
Integrated in ACI Investment Protection
Validated for Deployment in PCI Compliant Networks
18. Matt Chamley
“ACI became the new construct that not only
provided a simplified environment where we can
drop our firewalls down to 16 and take 5M+
firewall rules down to thousands...It also gave us
the ability, through policies and automation, to
significantly reduce our costs.”
20. CliQr CloudCenter:
Any App, Any Cloud, One Platform
Private Clouds
Datacenters
Public Clouds
Model
Manage
Deploy
Profile
NFS
21. Working Together: End-to-End Orchestration
Business (ITSM)
Prime Service Catalog, ServiceNow, Custom
Development (DevOps)
CliQr, Jenkins
Application-Centric Lifecycle Management
Model Benchmark Deploy Manage
Application Profiles
UCS
Director
ACI
Nexus
Switching
StorageUCS
Datacenter Private Cloud Public CloudProfileProfile
Hyper-V
23. Tetration: Real-Time Analytics
Long-term Forensics
and Auditing Application
Dependency Mapping
Automated Whitelist
Policy Generation
Policy Compliance
and Auditability
Policy Simulation and
Impact Assessment
Forensics (example: flow
search and flow anomaly)
Real-time analytics:
<= 10 Minute Actionable Insight
Pervasive Sensors:
Network and Host
NX-OS
24. Automate the Migration to ACI or CliQr
App Level Policy
Enforcement / Visibility
Self-documenting Network
Real-time Change
Notification
Real
Time
Data
Network
Policy
App Policy
Tetration
25. Major Healthcare Corporation
“Tetration Analytics revolutionizes how we
could start doing our data center
management across every domain: fault,
performance, configuration, change
management, predictive analytics. This is
visibility we have never had before.”
27. Greater
Business Agility
Lower Capital
Expenses
Reduced Costs/
Complexity
Lower
Operating Cost
Resource
Optimization
Cisco on Cisco
58% 25% 21% 45% 10–20%
Reduce Network
Provisioning
CAPEX
Reduction
Reduce
Management Costs
Reduce Power and
Cooling Costs
Compute and Storage
Optimization
28. 368% ROI441% ROI 513% ROI
$145M In Business Benefits
11 Month Payback
87% Faster Application
Development Cycle
83% More Efficient
Network Operations
40x Improvement in Bandwidth
$7.8M In Discounted
Business Benefits
6.4 Month Payback
85% Reduction in Staff Time
for Provisioning
75% Reduction in Staff Time
for Hybrid Deployment
0 Unplanned Downtime Since
Deployment
$3.73M In Discounted
Business Benefits
9 Month Payback
90% Less Staff Time
to Provision Hosted Svcs.
29% More Efficient
Network Operations
Supports Growth of New Cloud-
Based Hosted PBX Svc.
Five Year Cumulative Benefits–IDC ROI Spotlight