Cico and hyper v

1,923 views

Published on

Cisco and HyperV

Published in: Technology, Education
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
1,923
On SlideShare
0
From Embeds
0
Number of Embeds
571
Actions
Shares
0
Downloads
0
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide

Cico and hyper v

  1. 1. Cisco Nexus 1000V for Hyper-V Appaji Malla, Sr. Product Manager, Cloud Networking & Services Division, Cisco Matt O’Brien, Business Development Manager, Cisco WW Channels
  2. 2. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2 • Cisco Alliance with Microsoft • Cisco Nexus 1000V Overview • Cisco Partner Programs • Cisco Partner Resources
  3. 3. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3  Cisco Nexus 1000V  Cisco UCS VM-FEX  Cisco UCS Manager  Cisco UCS PowerTool  Cisco Unified Computing (UCS) ManageabilityCompute Networking Certified for top-tier Microsoft applications and workloads Partner Eco-system
  4. 4. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4  Cisco Nexus 1000V  Cisco UCS VM-FEX  Cisco UCS Manager  Cisco UCS PowerTool  Cisco Unified Computing (UCS) ManageabilityCompute Networking
  5. 5. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5 Cisco Resale Infrastructure Partners: UCT and DCA Partners Cisco Resale/Consulting Partners: One-stop-shop Regional System Integrators: MSFT Integrators and Service Partners MSFT Integrators: Consulting Cisco Resellers: Cisco Infrastructure Partners:
  6. 6. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6 Cisco Resale Infrastructure Partners: UCT and DCA Partners Regional System Integrators: MSFT Integrators and Service Partners Cisco Infrastructure Partners: MSFT Integrators:
  7. 7. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7 PHYSICAL WORKLOAD VIRTUAL WORKLOAD CLOUD WORKLOAD • One app per Server • Static • Manual provisioning • Many apps per Server • Mobile • Dynamic provisioning • Multi-tenant per Server • Elastic • Automated Scaling HYPERVISOR VDC-1 VDC-2 CONSISTENCY: Policy, Features, Security, Scale, Management Nexus 1000V, VM-FEX vWAAS, VSG*, ASA 1000V UCS for Virtualized Workloads Nexus 7K/5K/3K/2K WAAS, ASA, NAM UCS for Bare Metal * Virtual only
  8. 8. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8 Multi-Hypervisor Multi-Services Multi-Cloud Cisco Nexus 1000V Consistent Operational Model (Physical & Virtual) Optimal Resource Utilization (Mobility across DC & across DCs)
  9. 9. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9 Nexus 1000V VSM Extensible vSwitch Nexus 1000V VEM VM VM VM VM VNICs Advanced NX-OS feature-set Innovative Services architecture (vPath) Consistent operational model SCVMM Integration PNICs
  10. 10. Cisco Confidential© 2010 Cisco and/or its affiliates. All rights reserved. 10 System Center Virtual Machine Manager Cisco Nexus 1000V VEM Cisco Nexus 1000V VEM Cisco Nexus 1000V VEM VM VM VM VMVM VM VM VMVM VM VM VM Cisco Nexus 1000V VSM Virtual Supervisor Module (VSM) • Virtual or Physical appliance running Cisco NXOS (supports Hi-availability) • Performs management, monitoring, and configuration • Tight integration with management platforms Virtual Ethernet Module (VEM) • Enables advanced networking capability on the hypervisor • Provides each virtual machine with dedicated “switch port” • Collection of VEMs : 1 virtual network Distributed Switch WS 2012 Hyper-V WS 2012 Hyper-VWS 2012 Hyper-V Server Server Server
  11. 11. Cisco Confidential© 2010 Cisco and/or its affiliates. All rights reserved. 11 Switching  L2 Switching, 802.1Q Tagging, Rate Limiting (TX)  IGMP Snooping, QoS Marking (COS & DSCP) Security  Policy Mobility, Private VLANs w/ local PVLAN Enforcement  Access Control Lists (L2–4 w/ Redirect), Port Security  Dynamic ARP inspection*, IP Source Guard*, DHCP Snooping* Provisioning Visibility  Live Migration Tracking, NetFlow v.9 w/ NDE, CDP v.2  VM-Level Interface Statistics  SPAN & ERSPAN (policy-based) Management  VM Network Provisioning (port-profiles), CiscoWorks, Cisco DCNM  Cisco CLI, Radius, TACACs, Syslog, SNMP (v.1, 2, 3)  Hitless upgrade, SW Installer Network Services  Virtual Services Datapath (vPath) support for traffic steering & fast-path off-load [leveraged by Virtual Security Gateway (VSG) and other services]  Full integration with System Center – VM Manager (SCVMM)  Faster network policy provisioning through port profiles * Only with Advanced Edition
  12. 12. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12 Nexus1KV# show running-config port-profile ContractorProfile version 5.2(1)SM1(5.1) port-profile type vethernet ContractorProfile ip flow monitor NetFlowMonitor input ip port access-group Restrict-ContractorVM in no shutdown ….. state enabled publish port-profile Nexus1KV# sh running-config aclmgr version 5.2(1)SM1(5.1) ip access-list Restrict-ContractorVM 10 deny ip 20.20.20.22/32 20.20.20.20/32 20 permit ip any any ….. Supported Commands Include:  Port management  Port-Channel  Netflow  ACL  Port security  QoS
  13. 13. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13 VMs Need to Move • VM Migration • Resource Scheduling • SW upgrade/patch • Hardware failure Policy-Based VM Connectivity Mobility of Network and Security Properties Non-Disruptive Operational Model Cisco Virtual Networking VM VM VM VM VMVM VM VM VM Mgmt Station Nexus 1000V VSM VMVM VM VM VM Networking Mobility • Live Migration • Ensures VM security • Maintains connection state Nexus 1000V VEM Nexus 1000V VEM Server Server Hypervisor Hypervisor
  14. 14. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14 VM VM VM VM Nexus 1000V VEM VM VM VM VM Nexus 1000V VEM Nexus 1000V VSM WS 2012 Hyper-VNexus 1000V VSM VMware vSphere VMware vCenter SCVMM Consistent architecture, feature-set & network services ensures operational transparency across multiple hypervisors.
  15. 15. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15 Essential ($0) Advanced ($695/cpu) VLANs, ACL, QoS   vPath   LACP   Multicast   Netflow, SPAN, ERSPAN   Management (SNMP etc.)   SCVMM Integration   DHCP Snooping  IP Source Guard  Dynamic ARP Inspection  Virtual Security Gateway**  ** Only supports network-attributes
  16. 16. Cisco Confidential© 2010 Cisco and/or its affiliates. All rights reserved. 16
  17. 17. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17
  18. 18. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18 SCVMM Terminology Cisco Nexus 1000V Terminology Logical Networks Logical Networks Network Sites Network Segment Pools VM Network Definitions Network Segments IP-Pools IP-Pools & IP-Pool Templates Port-Classifications Port-profiles
  19. 19. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19 nsm logical network DMZ # nsm network segment pool DMZ_POD1 # member-of logical network DMZ # nsm network segment DMZ_POD1_SUBNET1 member-of network segment pool DMZ_POD1 switchport mode access switchport access vlan 20 ip-pool import template DMZ_POD1_Pool1 # nsm network segment DMZ_POD1_SUBNET2 member-of network segment pool DMZ_POD1 switchport mode access switchport access vlan 21 ip-pool import template DMZ_POD1_Pool2 # nsm network segment DMZ_POD1_SUBNET3 member-of network segment pool DMZ_POD1 switchport mode access switchport access vlan 22 ip-pool import template DMZ_POD1_Pool2 Network Site “DMZ_POD1” VM Network DMZ_POD1_SUBNET1 VM Network DMZ_POD1_SUBNET2 VM Network DMZ_POD1_SUBNET3 Logical network “DMZ”
  20. 20. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20 Networks & policies synced to SCVMM Adds hosts to N1KV Connects VMs (VNICs) to VM Networks Nexus 1000V VEM Server Nexus 1000V VSM WS 2012 Hyper-V SCVMM Network AdminCreate networks and policies (logical networks, network sites, VMnetworks) SCVMM manages the placement and live-migration of the VMs based on the constraints between VM networks and the network sites. VM VM VM VM Server Admin 1 2 3 4 5
  21. 21. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21 http://developer.cisco.com/web/n1k/hyperv Open a connection to VSM from PowerShell using the credentials Identify the required PowerShell CmdLets Run the Cmdlet directly from the PowerShell Prompt Parse the response for the required information PowerShell CmdLet: <Action>-N1k<Object> Action Verbs Create an object* New Read an object Get Update an object Set Delete an object Remove *Objects can be Logical Networks, VM networks, Port-profiles, IP-Pools, Port-profiles etc. Write/Update Operations are only supported on limited set of objects Examples Create a Logical Network* New-N1kLogicalNetwork() Read port-profile info Get-N1kPortProfile() Update an IP-Pool Set-N1kPoolTemplate() Remove network segment Remove-N1kNetworkSegment()
  22. 22. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22 • New-N1kIpPoolTemplate • New-N1kLogicalNetwork • New-N1kNetworkSegment • New-N1kNetworkSegmentPool • New-N1kVMNetwork • Remove-N1kIpPoolTemplate • Remove-N1kLogicalNetwork • Remove-N1kNetworkSegment • Remove- N1kNetworkSegmentPool • Remove-N1kVMNetwork • Set-N1kIpPoolTemplate • Set-N1kLogicalNetwork • Set-N1kNetworkSegment • Set-N1kNetworkSegmentPool • Get-N1kPortProfile • Get-N1kUplinkPortProfile • Get-N1kUplinkPorts • Get-N1kVirtualPortProfile • Get-N1kVirtualPorts • Get-N1kVsemSystemInfo
  23. 23. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 23 • Xian SCOM Plugin for Nexus 1000V • Monitors various metrics: Availability (ICMP and SNMP) TCP Connections Uptime Traffic, total, error etc. Bandwidth 2
  24. 24. Cisco Confidential© 2010 Cisco and/or its affiliates. All rights reserved. 24
  25. 25. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 25 Internet Edge • Filter external traffic • Extensive app protocol support • VPN access, Threat mitigation Internal Security • Segment internal network • Policy applied to VLANs • Application protocol inspection • Virtual Contexts Virtual Security • Policy applied to VM zones • Dynamic, scale-out operation • VM context based controls ASA 55xx ASA 55xx ASA-SM VSG VM VM VM VM
  26. 26. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 26 Nexus 1000V Distributed Virtual Switch VM VM VM VM VM VM VM VM VM VM VM VM VM VM VM VM VMVM VM vPath Cisco VSC Log/Audit VSG (active) Secure Segmentation (VLAN agnostic) Efficient Deployment (secure multiple hosts) Transparent Insertion (topology agnostic) High Availability Dynamic policy-based provisioning Mobility aware (policies follow Migration) VSC: Virtual Services Controller
  27. 27. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27 Nexus 1000V Distributed Virtual Switch VM VM VM VM VM VM VM VM VM VM VM VM VM VM VM VM VMVM VM vPath Log/Audit Initial Packet Flow Virtual Security Gateway (VSG)* 1 Flow Access Control (policy evaluation) 2 Decision Caching 3 4 * First version only supports network attributes
  28. 28. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 28 Nexus 1000V Distributed Virtual Switch VM VM VM VM VM VM VM VM VM VM VM VM VM VM VM VM VMVM VM vPath Log/Audit Virtual Security Gateway (VSG)* * First version only supports network attributes Remaining packets from flow ACL offloaded to Nexus 1000V (policy enforcement)
  29. 29. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 29 Consistent Network Services • Leverage existing virtual services Virtual Security Gateway, Virtual WAAS, Virtual ASA, NAM on Nexus 1010 • Services can be hosted on Nexus 1010 Consistent Networking Features • NX-OS feature across multiple hypervisors & across physical • Advanced NX-OS switching features, including security, visibility, QoS, segmentation, port channel, … Consistent Operational Model • NX-OS CLI across multiple hypervisors & across physical • Separation of duties between network & server admins • Dynamic provisioning and VM mobility awareness • Leverage existing monitoring and management tools
  30. 30. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 30 Download Software from cisco.com (go/1000v/hyper-v) Install N1KV Using Installer App Create Port Profiles & Start Using N1KV Essential Edition – No licensing or procurement needed Download Software from cisco.com (go/1000v/hyper-v) Install Nexus 1000V Using Installer App Change Switch mode to Advanced* & Start Using N1KV Advanced Edition – you can get a free trial for 60 days when you use essential
  31. 31. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 31 Cisco Resale Infrastructure Partners: UCT and DCA Partners Cisco Resale/Consulting Partners: One-stop-shop Regional System Integrators: MSFT Integrators and Service Partners MSFT Integrators: Consulting Cisco Resellers: Cisco Infrastructure Partners:
  32. 32. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 32 Good • OIP/TIP • UCS = 65% • Nexus = 50% Better* • SIP • UCS = 68% • Nexus 54% Best • New Account Breakaway • UCS = 70% • Nexus = 58% OIP – Opportunity Incentive Program TIP – Teaming Incentive Program SIP – Solution Incentive Program
  33. 33. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 33 • Funds Microsoft & Cisco Partners to deploy private cloud solutions • Cisco is focused on 16+ UCS Server deployments • COSAis Microsoft’s program to close and drive adoption of Private Cloud with Hyper-V and System Center • COSAis Microsoft’s leading Business Investment Fund (BIF) programs Benefits: • Microsoft accounts managers and SI partners are actively looking for customers that want to deploy on Cisco UCS or FlexPod and/or VSPEX • Builds awareness with Microsoft partners to deploy on Cisco UCS your local Microsoft counterpart to contact COSA coordinator.
  34. 34. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 34 Emerging SI Program • 2H FY13 Global Pilot Top 25 SI’s Targeted • Benefits Partner Level Access (L3) Not-For-Resale Eligibility Cisco Partner Logos Influencer Program* CDN Global Ecosystem UCS Seed Unit Program* • Development, testing, quality assurance, departmental, proof-of- concept (PoC), and production • Cisco UCS C260 M2 Rack Server 2 x 2.4-GHz Intel Xeon E7-4870 CPU 128- and 256-GB 1066-MHz RDIMM • UCS Bootcamp for SI Technical Resources *Targeted - FY14
  35. 35. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 35 • Learn more about Cisco Partnership Opportunities www.cisco.com/web/partners • Non Competitive GTM Aggressive Sales Force with deep customer relationships Complementary Reseller Channel Do not compete for your services • Differentiated DC Solution Offering UCS, Nexus 1000V for Hyper-V, PowerShell Integration, SC Integration Microsoft Fasttrack solution, Flexpod, VSPEX • Large HW Infrastructure pipeline of SQL and PC opportunities Call To Action: Find the right Cisco Partner Program Fit for your Business and engage!
  36. 36. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 36 • Cisco Partnership Resources Become a Cisco Partner: www.cisco.com/web/partners Cisco-Microsoft Partnership: http://www.cisco.com/go/microsoft • Cisco Nexus 1000V Resources Cisco Nexus 1000V for Microsoft Hyper-V: http://www.cisco.com/go/1000v/hyper-v Cisco Virtual Security Gateway: http://www.cisco.com/go/vsg Cisco Nexus 1000V Portfolio: http://www.cisco.com/go/1000v N1KV PowerShell: http://developer.cisco.com/web/n1k/hyperv N1KV Community Site: http://www.cisco.com/go/1000vcommunity • Contact Info: Matt O’Brien (matobrie@cisco.com)
  37. 37. Thank you.

×