Digital transformation is reshaping the business landscape faster than any time in history. Organizations that adopt a digital strategy will leapfrog the competition, while those that do not will risk becoming irrelevant within five years. One important step in becoming a digital enterprise is becoming an agile organization—that is, having the ability to take advantage of market opportunities faster than the competition. This shift has become a top initiative for IT and business leaders. Pepe will discuss how to build an agile IT infrastructure to be ready for it.
2. The WAN of
Today
#MarcoTradeshow18
Digital
Disruption
63 million new
devices by 20201
Complexity
OpEx costs exceed
CapEx by almost 3x2
Security
The average security
breach takes
6 months to detect3
3x OpEx 6 months
DCI
DC1 DC2 (DR)
Branch1 Branch2 Branch3
MPLS1
MPLS2
/INET
IaaS SaaS
Two or more circuits All MPLS or MPLS +
INET/LTE
Active/standby
redundancy
Internet/SaaS
backhaul through
DC
3. The Branch
and WAN
Cannot Keep Up
#MarcoTradeshow18
Complex to operate
Difficult to secure
Poor user experience
4. Cisco SD-WAN:
Intent-based
Networking for the
Branch and WAN
#MarcoTradeshow18
Branch
40% WAN OpEx
savings
3.24h Time to threat
detection
4x Improved application
experience
Better user experience
Greater agility
Advanced threat
protection
6. Cisco SD-WAN:
Architecture
#MarcoTradeshow18
The most comprehensive SD-WAN solution on the market!
APIs
3rd Party
Automation
vManage
vBond
4GMPLS
INET
vAnalytics
Data Center Campus Branch CoLoCloud
WAN Edge
Routers
Management and
Orchestration Plane
Control Plane
Data Plane
vSmart Controllers
7. Cisco SD-WAN: Quality of Experience #MarcoTradeshow18IngressInterface
EgressInterface
Classification Queuing
Q0
Q1
Q2
Q7
vEdge
Queuing
Shaping/Policing Queuing
Token Bucket
IngressInterface
EgressInterface
Tokens
Rate
Conforming Marking
Ingress Interface
Egress Interface
Copy
Modify with
ACL/Data Policy
Modify with
re- write rules
Default Behavior
DSCP
DSCP
DSCP
SLA Routing
Remote Site Data Center
Internet
MPLS
4G/LTE
Deep Packet Inspection
App 1
App 2
App 3,000
Visibility
8. Cisco SD-WAN: Quality of Experience #MarcoTradeshow18
Remote Site
Cloud
Data Center
Host
VPCs/VNETs
Gateway
VPC/VNET
Standard IPSec
SD-WAN
Fabric
Campus
SD-WAN
Fabric
Campus
Remote Site
Regional
Hub
Quality Probing (HTTP)
SaaS
Applications
Cloud onRamp for IaaS and SaaS
Versatile Cloud Adoption
9. Cisco SD-WAN: Comprehensive Security #MarcoTradeshow18
Meet industry compliance with end-to-end
segmentation
Talos threat intelligence protects all users’
devices
Reduce attack surface with cloud and
on-premise security
Router VPN 3
VPN 3
VPN 1
VPN 2
IPSec
Tunnel
VPN 4
Cloud
Security
4G/LTE
Corporate
Data Center
Campus
Small Office
Home Office
Branch
Cloud Data Center
MPLSInternet
Full Mesh Hub and SpokePartial Mesh Point to Point
10. Cisco SD-WAN: Management and Operation #MarcoTradeshow18
Cloud-first management and operations with a
single WAN fabric across all end-points
Simplified workflows for easier configuration,
monitoring and troubleshooting
Advanced analytics and assurance for application
service level agreement
Visibility of applications and infrastructure
across the WAN
Forecasting and “what-if” analysis
Intelligent recommendations
3G/4G-LTE
Branch
Private
Cloud
Colocation
Public Cloud
MPLS
InternetDeploy branches faster at lower cost
11. Cisco SD-WAN:
Open and
Programmable
#MarcoTradeshow18
Improve security and reliability with an
open and programmable network operating
system
Customizable for ’best of breed’ virtual
network functions
Program your network stronger, simpler
and faster – build and develop with Cisco
APIs
Cisco IOS XE
3rd Party VNFs
DevNet Developer
Program
12. XE SD-WAN:
Expanding the
Impact of Intent-
based Networking
to the WAN
#MarcoTradeshow18
Cloud + Virtualization + On-Prem
with Integrated security
Millions of ISR/ASR devices eligible for
new capabilities
Broad range of platforms and interfaces
Journey to IBN for WAN
Public CloudBranch Virtualization
ENCS 5100 ENCS 5400
Up to 250Mbps 250Mbps – 2GB
ISR 1000
ISR 4000
ASR 1000
2.5-200Gbps
High-performance
service w/hardware
assist
Hardware & software
redundancy
Up to 2 Gbps
Modular
Integrated service
containers
Compute with UCS E
200 Mbps
Next-gen connectivity
Performance flexibility
ISR / ASR
vEdge 2000
10 Gbps
Modular
vEdge 1000
Up to 1 Gbps
Fixed
vEdge 100
100 Mbps
4G LTE & Wireless
vEdge
vEdge 5000
20 Gbps
Modular
13. Getting Started
with Cisco
SD-WAN
#MarcoTradeshow18
Advisory Services
Strategize, assess readiness and analyze gaps to create a
custom transition plan for your SD-WAN deployment
Professional Services
Planning, design, implementation and training
Technical Support Services
Case management, escalations, stakeholder reviews and
scope management
+
1. Gartner Report - Gartner’s 2017 Strategic Roadmap for Networking
2. McKinsey Study of Network Operations for Cisco – 2016
3. Ponemon Research Institute Study on Malware Detection, Mar 2016
Poor user experience
Delays enabling new connectivity
Inconsistent application performance
Complex to operate
Difficult to manage multiple network devices
Increasing bandwidth demands
Difficult to secure
Support non-traditional devices
Can’t use the internet for SaaS
Better user experience
Deploy applications in minutes on any platform with consistent application performance
Greater agility
Simplify the deployment and operation of your WAN and get faster performance using less bandwidth
Advanced threat protection
Securely connect your users to applications and protect your data from the WAN edge to the cloud
Orchestration Plane
First point of authentication
Distributes list of vSmarts/ vManage to all vEdge routers
Facilitates NAT traversal
Data Plane
Physical or virtual
Zero Touch Provisioning
Establishes secure fabric
Implements data plane policies
Exports performance statistics
Management Plane
Single pane of glass for Day0, Day1 and Day2 operations
Multitenant or single-tenant
Centralized provisioning, troubleshooting and monitoring
RBAC and APIs
Control Plane
Dissimilates control plane information between vEdges
Distributes data plane policies
Implements control plane policies