2. 71% of IT teams can’t meet
demands for new applications
Need for new tools, frameworks, and
best practices needed to quickly build
new applications and services
IT is now the broker of services
Elastic, on-demand resources that
break infrastructure and vendor silos
Continuous Integration
Continuous Deployment
Today: Innovate or Become Irrelevant
3. A world of many clouds and applications that need to
Connect
Communicate
Share Workloads
…just like Cisco enabled for IP
In the future there will be…
Tomorrow: It Will Take a Community
5. • Innovation, not cost
savings, is the number
one business driver
• Innovative customers
choose Cisco, not
commodity vendors
Ability to Innovate
47%*
• Almost 50% of customers
polled have OpenStack
running in production
• Private (53%), Public
(40%), Hybrid (7%)
46%*
Production
• Most common is Web
services, at 57%
• High usage of Database
and Enterprise Apps
• Not just development
• Used for business critical,
customer-facing Apps
Mission Critical Applications
57%*
* Source: Openstack.org community poll, November 2014
OpenStack is Ready
6. Cisco OpenStack Strategy
For Data Center and Cloud Solutions
Relevant, large
contributions to
open source
code
10110101 1001010110
101010101010
Improve
OpenStack
with
supplemental
functionality
Drive
OpenStack
innovation
into Cisco
products
Multi-vendor
components,
Support all
leading
Distributions
Build world-
class global
Cisco Cloud
Services
Programs for
every OpenStack
deployment
model
Open Innovation Success
7. Cisco OpenStack Contribution!
#1
Contributor to
Juno in Neutron
Top 6
Total Reviews
In Juno
Vice
Chair
44
completed
Juno
blueprints
98
Engineers
Contributed
to Kilo
165
resolved
Juno bugs
Top 5
In OpenStack
Member
565
Kilo
commits
#2
Kilo Neutron
Blueprints
Top 5
In Neutron
Kilo Commits
Source: www.stackalytics.com
Note:; Stackalytics metrics change daily
Stats as of June 4, 2015
8. All Major OpenStack Distributions
SUSE
Cloud
Ubuntu
OpenStack
Planning Design End-to-End Validation Documentation
Unit
Feature
Integration
System
Customer
OpenStack
Platform
Deploy with confidence and full Cisco Support!
9. Cisco Approach to OpenStack
Fill gaps for customers, contribute code, work closely with community
Easy Secure Reliable
• Fast simple install
• Cisco Validated
Designs
• Group Based
Policies
• Cisco FWaaS
• Cisco VPNaaS
• Encryption
• Group Based
Policies
• Application Mobility
• Load Sharing
• Service Redundancy
• Node Redundancy
• Rich Plugin Offering
that is open source
compatible
• Any HW Any App
• Cisco Better Together
Advantages
Complete
A+
10. Product Innovation Built on OpenStack
UCS for OpenStack
Optimized OpenStack
Computing
Rich OpenStack Plugins
Plugins optimizing a
range of virtual and
physical infrastructure
from Cisco
Nexus Networking
Network behavior
driven by application
intent/policies
• Application Centric
Infrastructure (ACI)
• Group Based Policy
11. OpenStack Neutron Plug-In Architecture
vNetworking
VM/APP
Single Source of Physical and Virtual
Management Across Cloud
UCS
Nexus
ASR
APIC
Management
Neutron Core
Plugins
Cisco(Nexus,
N1Kv)
OVS
Morevendor
plugins
Neutron Service
Plugins
LoadBalancer
Firewall
VPN
HAProxy
IPTables
OpenSwan
L3ServicesFutures
Type Drivers Mechanism Drivers
VLAN
GRE
VXLAN
Nexus
OVS
OpenDayLight
APIC
Morevendor
drivers
Neutron Plugin Architecture
ML2
13. Unified Computing System with OpenStack
Unified Computing System
ACI- GBP
Bringing It All Together - Tested - Full Support - Simple Packaging – Easy Install
14. Cisco: We Build, Manage, and Use OpenStack
Cisco Cloud
Services
Cisco OpenStack
Private Cloud
Cloud
VPN
Cloud DVR,
Videoscape
XaaS
Intercloud
Fabric
Cisco Spark
collaboration
16. Consume OpenStack Your Way
Cisco OpenStack
Private Cloud
Solution Validation
Services
Cisco Intercloud
Services
XaaS
Let Cisco manage your
on-premise OpenStack
private cloud
Have Cisco experts
validate your private
OpenStack deployment
Augment your cloud with
OpenStack-based services
from the Intercloud
17. Public
internet
Cisco OpenStack Private Cloud
A Public Cloud Experience in a Private Environment
Full admin control and
monitoring via COPC
custom dashboard
or APIs and CLI
Transparent upgrades
to new OpenStack
features with full
support
On-demand provisioning
of redundant, vendor-
agnostic compute,
network and storage
Developers
self-provision
compute,network, and
storage resources –
similar to AWS
CustomerCOPC
COPC
firewall
Customer
firewall
18. Cisco Solution Validation Services
Requirement
Evaluation and
Architecture
Deployment
Ongoing
Monitoring
and
Validation
End-to-End
Validation
Systems
Integration
and Design
19. Together with Our Partners
Building the Intercloud to deliver Cisco Cloud Services
Enterprise
Private CloudsPublic
Clouds
Intercloud
Partners
Energy Management
Cisco
Intercloud
via Intercloud Fabric
Cisco Cloud
Services Partners
Cloud Intercloud
Services and
Applications
Analytics
WebEx
Security
IaaS/PaaS
Mobility
IoT
Integration Platform
Collaboration
Big Data
HCS
IaaS
PaaS
Microsoft
Suite aaS
Workloads Native Cloud Applications
20. Relevant, large contributions to open source code
OpenStack
solution
innovation
Vendor
agnostic
Drive innovation into Cisco products
Build WORLD-CLASS global
Cisco Cloud Services
Programs that enable
success for every deployment model
71% of IT teams can’t meet demands for new applications
New tools, frameworks, and best practices needed to quickly build new applications and services
Elastic, on-demand resources that break infrastructure and vendor silos are the answer
IT is now the broker of services
In the future, we will be a world of many clouds and applications that we will need to Connect, Communicate and move workloads…
…and we will do this with a community based solution, just like we did with IP
What is Bi-modal IT?
The term comes from the Gartner group and it is a situation in which companies operate two distinctly different forms of IT.
Traditional and Agile. Agility being defined as a flexible, cloudy platform designed for scale out.
So what do we see when we look in the at the two areas.
On the left we see traditional infrastructure, steady, stateful and chugging along.
On the right we see a large and diverse set of applications that are immediately identifiable.
Applications that users demand and drive opportunities for organizations today:
Game changers
Household names
Applications that need continuous integration and deployment
Applications that need to remain agile to continue to lead their respective industries
What has emerged to be the foundation for the kind of IT on the right is OpenStack.
Many of us in the community see the OpenStack’s enormous potential.
But as with all great ideas, we must decide when it is ready for us.
When can we trust it.
…and the results at the latest OpenStack Summit are clear.
OpenStack is Ready!
OpenStack is being deployed in production…
…and it is being deployed on mission critical Web, Database and Enterprise Apps.
But last, one of the most repeated comments we hear are people talk about for OpenStack, is the value of an Open Source SW in that it frees everyone from vendor lock in.
However, when IT professionals and App developers were polled, the number one reason for moving to OpenStack was the ability to innovate.
…and this is why you pick Cisco…so let’s talk about what we are doing at Cisco will enable that innovation.
SOURCE: Openstack.org
The Cisco OpenStack Strategy rests on three main customer needs
<click>
Openness
Innovation
Enabling Customer Success
<click>
We then divide this down into six main pillars
First off, you cannot say you are doing OpenStack unless you are already doing OpenStack!
Cisco HAS…and WILL continue to make large scale contributions to the OpenStack trunk in both development and testing.
In addition we will also be participating in other Open Source communities that influence the cloud such as OpenDaylight.
<click>
Second, Make sure it is vendor agnostic. We realize that the underlying OS choice influences the OpenStack distribution choice, therefore we will support all of the leading distributions and thus drive both SW and HW Openness
<click>
Third, just like we did with IP, where OpenStack lags customer needs, are making it easier to install, more secure and more reliable. A good example of this is what we did with HSRP, EIGRP, VLAN Tags etc. These were real customer needs that we brought to market, first as Cisco and then as standards.
<click>
Next, we will drive OpenStack into our products and solutions, such as Nexus and Unified Computing and Aggregation Service Routers
<click>
Next, we are putting our money where our mouth is, we are building IaaS, PaaS and SaaS clouds out of the very same infrastructure components and services we are selling you today.
<click>
Last, whether you plan on building and managing your OpenStack cloud completely on your own, using Cloud management as a service or connecting to cloud apps, we have a Services and Solution program to enable your success.
So for point 1 on the 6 part plan we are aggressively engaging the OpenStack community
/* Just read the bullets and point out that these are stats for the Juno distribution */
/* These will change from release to release */
One of the key contributing factors to OpenStack’s popularity is its openness and vendor interchangeability.
In that spirit, Cisco is truly hypervisor, and therefore, vendor agnostic.
In fact we have Cisco Validated Design documents, known as CVDs, for the major hypervisor distributions, Redhat RHEL OSP, Canonical Ubuntu Openstack and Suse Cloud
CVDs are thoroughly designed and tested blueprints, complete with a list for bill of materials, network diagrams and configuration CLI for both Cisco gear and the OpenStack distribution.
Cisco CVDs carry you through Planning Design and Validation.
Open Standards can be great for everybody, but they aren’t known for rapid time to market.
In fact, new OpenStack releases only come out twice a year…and we have things we need to solve today.
Cisco \’s approach to OpenStack will be similar to how it was with IP and Ethernet.
Where the standard is lagging customer needs we will solve the problem and then upstream it to standards bodies like we have always done before for example
Hot Stand By Routing Protocols
Etherchannel
Power Over Ethernet
Some common asks are
“Make it easier to install”
“I need more comprehensive security”
“I need High Availability”
And
“I need OpenStack to make both my cloud Apps, Management Platform and Infrastructure to run better together”
<click>
Right now, we are developing a SW platform that runs with and compliments the existing OpensStack Services” to make it Easier, more Secure, Bombproof and do these things in every important area in the cloud.
We make it Easy
As great as it is the OpenStack Installation process can take a lot of time and require a great deal of expertise. We will…drastically reduce the amount of time and the number of operations it takes to bring an OpenStack presentation to life.
One will no longer need to wrestle with the applications, contorting them to network restrictions. We will implement group based policies with application centric definitions that dynamically reconfigure network resources as the add, move and change
We will clearly document and guide you through the design and installation with CVDs
With an Application Centric Infrastructure and Group Based Policies we implement a policy solution that unifies the application and the infrastructure (details later on in this deck)
We make it Secure
With Firewall as a service, VPN segmentation as a service and Encryption with reliable group based policy management
We make it more Reliable
We will support application mobility and there will never again be a single point of failure in your physical or virtual OpenStack network
We are designing for reliability, not for failure
We focus on Completeness
Supporting rich plug-in offering that not only controls virtual devices, but also physical devices in the Cloud including, UCS, Nexus and ASR1000 to name a few
We have three building blocks that drive OpenStack product Innovation.
We start with a wide range of OpenStack Plugins for switches, router,s v-switches and management platforms, to name a few.
Plugins offer a custom back-end implementation of an API.
A plug-in is used to control a variety of virtual and physical technologies to implement the logical API requests.
We use these plugins to enable what we call Cisco Application Centric Architecture or ACI, who’s main component is Application-based Group Based policies that define an application, where unlike traditional IT, the application policies drives network behavior, not the other way around.
Then we tie this all together with the Cisco Unified Computing System in the UCS OpenStack solution, which we will talk about shortly.
/* There is an explanation of the Plugin Architecture on the right is shown below should there be a need to explain it */
In the beginning much OpenStack centered on managing Virtual Machines, Applications and Virtual Networks
<click>
Today and in the last several OpenStack releases, customers are asking for more.
“I don’t just want to use OpenStack to manage my virtual network, I want to manage my entire cloud from Application to network”
So OpenStack has once again evolved, by updating the plugin architecture.
,click>
On the right we have the Neutron plugin and driver architecture.
The new Modular Layer 2 plugin with its many drivers
<click>
Gives us the capability to combine the virtual world and physical infrastructure into one cohesive cloud solution linking Application intent to the rentire cloud operation.
As we move forward we need to remember that APPLICATION IS KING, at the end the day what drives users expectations and drives our approval.
/* Plug in explanation below */
Why do we want to talk about the plugin architecture?
Well, I’ve found that there are a lot of the terms people get confused by, especially when they come to us and ask fro new enhancements.
First, The Neutron Plugins, used by the OpenStack Networking component, communicate upstream with Restful APIs an HTTP-based API.
There are two plugin types, those that define services, like security and Address Resolution,
and core Layer 2 networking functions.
In the past, these were only monolithic plugins, in that you could only run one and that was typically taken as one vSwitch, either OVS, LinuxBridge or the Nexus 1kv.
Now we have the Modular Layer 2 plugin, also known as ML2, for which Cisco was a major contributor.
With ML2 you can now run several networking mechanisms at once, whether it’s protocols as seen in Type drivers or other logical and physical devices as seen with Mechanism drivers.
ML2 with it’s multiple protocol and Mechanism drivers is what enables OpenStack to span the entire cloud.
In this next slide we are going to talk about ACI and group based policies….and how we use Applications to dive how the network works.
In the past, one would define a boatload of policies in the network and then attach the applications.
But when those applications move, the underlying network policies had to be changed.
This is both time consuming and prone to error.
Application is king and we needed application centered solution.
Cisco solved this with ACI and eventually moved these concepts to OpenSource with Group based Policies.
In the GBP model one can directly configures the application policy in OpenStack using Horizon or Heat.
ACI and GBP are a departure from the old model because Applications
<click>
Drive and control
<click>
The open cloud infrastructure continuously as applications are created, change and move.
/* More information below */
Application Centric Infrastructure (ACI) in the data center is a holistic architecture with centralized automation and policy-driven application profiles. So when the applications move, their so do their policies that auto-configing the network and preserve their service chains. ACI provides
Simplified automation by an application-driven policy model
Centralized visibility with real-time, application health monitoring
Open software flexibility for DevOps teams and ecosystem partner integration
Scalable performance and multi-tenancy
Cisco also created and implemented the Group Based Policy blueprint to further drive an ACI-like architecture into open source.
In the GBP model one can directly configures the application policy in OpenStack using Horizon or Heat.
The Application Policy Infrastructure Controller (APIC) offers a single point of automation and management for.
The Cisco APIC Driver for OpenStack, using Horizon, Heat or CLI allows customers to use existing OpenStack networking APIs, interfaces, and automation tools.
The Cisco APIC driver supports OpenStack Neutron APIs including, network, router, subnet, and security groups.
It also automates configuration of external networks and the creation and attachment of Neutron ports to virtual machines.
The Cisco APIC driver works as part of the Neutron Modular Layer 2 (ML2) plug-in architecture allowing multiple mechanism drivers to handle different portions of the network.
One final point to remember is that this is an Open Ecosystem.
As of February 2015, the Partner Ecosystem is comprised of 35 Partners including Checkpoint, Cloudera, Citrix, F5, Microsoft, Puppet, Redhat, and SAP.
OpenStack extensions on top of Neutron exposing a policy API
Supports policy API to APIC
Backwards compatible with existing neutron plug-ins (works with Nexus 9000 standalone)
Available for Openstack Juno
OpNative Drivers exist for OpenDaylight as well as multiple vendors (Cisco, Nuage Networks, and One Convergence)
<click> Next we integrated the OpenStack and Open Daylight application policy and control tat we spoke about on the previous slide
<click> And combine it with our partnership with Redhat
Everything is fully documented with Cisco Validated Designs and Supported by Cisco TAC.
In addition to 24x7 product support on Cisco and Red Hat components, customers will also have an option to purchase Solution Support, which will provide global, 24x7 access to a team of cross-trained experts.
At Cisco we are potting our money where our mouth is.
We are not just selling OpenStack and Cloud technologies, but we are building services, for our customers, using OpenStack.
We then take these user experiences, both positive and negative and drive new requirements back into the products and solutions.
To name just few of our OpenStack enabled offerings we have
Cisco Cloud Services, offering Infrastructure as a Service, Platform as a service, Software as a service and access to hundreds of Cisco and partner applications
Intercloud Fabric, The internet of clouds connecting the worlds major providers and Cisco partners
Intercloud Fabric allows you to acquire the added capacity you need and have a seamless demarcation between your internal and the external clouds.
You can also integrate your private cloud with clouds run by more than one service provider
And have consistent network and security policies across private and public clouds.
Cisco OpenStack Private, formerly Metacloud, provides a wide array of Cloud-based OpenStack management tools for your on-prem private cloud
CloudVPN offering with Security as a Service
Spark, also known as project squared for cloud based enterprise collaboration
Cloud DVR Cloud-based Digital Video recording system allowing subscribers the capability to record and playback live media over any network
Cisco Intercloud Services: Is Cisco’s Global OpenStack platform for Alliance Partners, built and managed by Cisco
Evolved Service Platform Strategy supporting the largest number of NFVs, Cisco Evolved Services Platform (ESP) is a comprehensive virtualization and orchestration software platform that creates, automates and provisions services in real time, across compute, storage and network functions, enabling the delivery of desired business outcomes for applications running across multiple domains facilitating the shift to new business models. It allows service providers to deliver prepackaged services from a flexible pool of resources that can be reused and personalized for each customer, automatically and on demand.
Leading NSO solution (tail-f acquisition) – Open and Multivendor Solution: provides a single network-wide interface to all network devices and all network applications and services, as well as a common modeling language and datastore for both services and devices. NSO acts as the interface to the network services for both human operators and business support systems, supporting both legacy and NFV/SDN/Cloud services.
Cisco OpenStack Private Cloud, formerly Metacloud, - Standardized Managed OpenStack as a Service Solution discussed in later slide
UCSO: integrated the OpenStack and Open Daylight application policy control:
Cisco Red Hat partnership.
Everything is fully documented with Cisco Validated Designs and Supported by Cisco TAC.
In addition to 24x7 product support on Cisco and Red Hat components, customers will also have an option to purchase Solution Support, which will provide global, 24x7 access to a team of cross-trained experts.
No matter how you decide to consume OpenStack, we have a service to help you be successful
Whether you build it yourself and use Cloud Management with Cisco OpenStack Private Cloud
Whether you want to build and manage you OpenStack cloud by yourself but just need a little help validating your solution
or even if you just want augment your cloud to consume services from the cloud
We can partner with you for your success
Cisco OpenStack Private Cloud delivers a true public cloud experience for users on your premises and behind your firewall.
It offers full administrative control.
Cisco OpenStack Private Cloud is a production-ready, OpenStack-based solution that we engineer, deploy, and remotely operate on your behalf, 24 hours a day, 365 days a year.
Cisco OpenStack Private Cloud is not a traditional OpenStack distribution
The COPC team of cloud experts monitors your environment 24 hours a day, and takes full responsibility for keeping it running all day, every day.
Every aspect of the orchestration and controller environment is redundant and built for high availability.
COPC is designed for an improved user experience, features, and functionality beyond what’s available in OpenStack Horizon.
COPC offers flexible options for Compute, Network and Storage.
And our world-class OpenStack engineering and operations teams have built it for stability, superior performance, and scale.
When deploying OpenStack you may want to own and manage everything by yourself.
However, OpenStack is still new to many and even the most robust application teams may need assistance for new deployment or migration.
That is why Cisco offers Solution Validation Services, SVS, that are there to help you for all phases of pre-deployment, deployment and post-deployment
/* Additional Detail Below*/
The offering begins with Requirement Evaluation and Architecture
1. Understanding customer requirements
2. Overview of possible technology solutions
3. Lab Proof of Concept to understand technologies
4. Architecture review
Systems Integration and Design
1. Leverage SVS Innovation Centers to test components of the architecture and use results to modify design as an iterative process
2. Creation of High Level and Low Level Designs to achieve customer requirements
3. Integration of 3rd party Devices / Software
End-to-End Validation
1. Validate end-to-end solution functionality, scale and resiliency
2. Validate solution meets design goals and requirements
3. Work through issues to resolutions
4. Produce SVS final design output
Deployment
1. Assist customer in taking design and lab results and translating them into an operational environment
2. Perform on-site validation of the solution to ensure what is deployed matches what was designed an validated in the lab
Ongoing Monitoring and Validation
1. Validate operational issues in the SVS Innovation Centers, find solutions, and re-validate new code versions before rolling out into the customer’s network
Last, we have Cisco Cloud Services, or CCS:
CCS offer as a broad portfolio of Cisco cloud applications and partner Cloud services that can help you quickly deploy and monetize your cloud offerings.
CCS combines computing, networking, and storage resources within the data center and Intercloud connected clouds.
Applications can be deployed on-premises, subscribed from public or private clouds, or implemented in a hybrid cloud model to give cloud service providers and enterprises more flexible deployment options.
We combine solutions with an industry-leading ecosystem of partners to offer integrated services-including collaboration, security, infrastructure as a service, Platform as a service, and video delivery-that are optimized and pretested cloud use.
This standardized partner architecture will also be available through all of our Intercloud partners for seamless workload portability to accelerate the network enabled App ecosystem.
Our combined services will be available to our Customers via the Intercloud Services Catalog.
Cisco is rapidly expanding its Intercloud partner ecosystem with the announcement of more than 45 new partners, including British Telecom, Deutsche Telekom, and Equinix. In sum, these partners bring more than 300 data centers across 50 countries to the Intercloud.
------List of many popular services below-----------------
Cisco Connected Analytics for Events
Cloud-based software subscription offering that delivers business and operational insight based on data and analytics from wireless networks installed in sports and entertainment venues.
Project Squared
Collaboration platform that provides virtual rooms to collaborate within and across teams
Squared UC
Cloud-based unified communication and collaboration software
Education As a Services
Extend Care Remote Expert
Patient Portal Service that consolidates entertainment, communications, and informational applications into a single view to improve the patient healthcare experience. Application has been developed by Cisco Software Solutions Factory.
ServiceGrid
Cisco ServiceGrid is an integration platform in the cloud that seamlessly connects organizations to enable real time multi-party support collaboration offered via a Software-as-a-Service (SaaS).
Cisco Integration Platform as a Service, Public Cloud Version
SaaS based Application integration platform that provides seamless integration of applications (SaaS and on-prem), people, process, data and infrastructure as well as provide API management to catalog, externalize and expose APIs
Business Process Management as a Service
Providing packaged business processes targeting specific customer verticals available as Software as a Service
Cisco Energy Management as a Service(EMaaS) ( previously EnergyWise Cloud )
"Software based service enabling the ability to See, Measure, and Manage the Energy Use of Your IT Infrastructure from the Cloud"
Cisco IOT PaaS
Cisco Internet of Things Platform as a Service is a software platform that simplifies and scales IoT application development and deployment. It provides a robust set of capabilities that allow for flexibility and customization for developers seeking the most simplified or most advanced development experience.
Connected Mobile Experience
Connected Mobile Experience offers analytics based on wifi, video & cellular signals. On-prem and hosted versions. An example would be hospital using CMX to better understand usage patterns of their WiFi service
Managed Mobility Experience Services
Compute, storage, and network bandwidth for instantiation of Cisco Mobility Experience solution hosted by Cisco. Provides hosted mobility context-aware and insights software solutions such as, but not limited to, CMX, EMSP, enterprise systems, and/or applications based on customer requirements.
Cisco Secure Ops Solution
Secure Ops allows you to implement your security and compliance policies in a standardized and automated way, across disparate sites globally. The service will simplify the processes required to audit, track, and report security mandates.
Managed Threat Defense
A fully outsourced, managed security service. It rapidly detects and responds to security events by analyzing your network traffic, evaluating security telemetry and using global intelligence. MTD takes ownership of the network security event lifecycle. It covers detection, confirmation, mitigation, and remediation.
So In summary, let’s review why we believe it’s Cisco for OpenStack.
First, Cisco has and will continue to make large scale contributions to the OpenStack trunk in both development and testing.
Second, just like we did with IP, where OpenStack lags customer needs, we will make it better.
Third, Make sure it is vendor agnostic. We realize that the underlying OS choice influences the OpenStack distribution solution, therefore we will support all of the leading distributions and thus drive both SW and HW Openness
Next, we will drive OpenStack into our products and solutions, such as Nexus and Unified Computing and Aggregation Service Routers
Next, we put our money where our mouth is, we are building IaaS, PaaS and SaaS clouds out of the very same infrastructure and services we are selling you today.
Last, whether you plan on building and managing your OpenStack cloud completely on your own, using Cloud management as a service or connecting to cloud apps, we have a Services and Solution program to enable your success.