Cisco connect winnipeg 2018 a look at network assurance in dna center

© 2017 Cisco and/or its affiliates. All rights reserved. 1
DNA-C
Network Assurance
Ian Procyk
Technical Solutions Architect
May 29 2018
Cisco
Connect

C97-740150-00 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
1. Assurance Overview
2. What you need to get started
3. What does it look like?
4. Device & client health
5. Deeper dive on specific wireless test points
6. Using sensors
7. Intelligent Capture & AP4800
8. Peering into the crystal ball
9. Time Permitting: “Roll your own assurance” with webhook
Agenda

DNA-C
Assurance Overview

Network quality is a complex, end-to-end problem
* Both = Join/roam and quality/throughput
Access
points
Local WLCs
Network services
data center
Office site
Cisco
ISE
Mobile clients
Cisco® Unified
CM
Client firmware
AP coverage
WAN uplink usage End-user services
RF noise/interf
Cisco Prime®
Configuration
Authentication
WLC capacity
WAN
Client density
Affects join/roam
Affects quality/throughput
Affects both*
DHCP
Addressing
WAN QoS, routing, ...
100+ points of failure
between user and app
With 50,000+
permutations!
What is the problem?
Where is the problem?
How can I fix the problem fast?

NOC @ Customer Site

Highly Customized Network Monitoring

DNA Assurance in DNA Center
DNA Center
Fabric and Nonfabric
A collection of network devices
under the administrative
control of
DNA Center
Switch Router Wireless LAN
Controller
Access
Point
Policy Design
Identity Services Engine DNA-C APPLIANCE
Provision Assurance

The Components of DNA-C
Policy
• Manage the Network from
a single place
• Create Virtual Networks
and configure
• Access Control
• Application Priority
• Application Registry
Design
• Deploy “World Class”
prescription configuration
• Automation of Device On-
Boarding (Plug and Play)
• Device Inventory
• Fabric Administration
• Host On-Boarding
Provision
• Transform the Network with
Actionable Insights and
Simplicity
• End to End Visibility
• Predict Performance
• Close Loop Automation
• Streaming Telemetry
Assurance
• Build the Network Hierarchy
instead site maps
• Configure Network Settings
including DCHP, AAA, and
IPAM
• Setup the Image Management
Repository
• Configure Network Profiles
Achieve IT and business
alignment with a custom design
Migrate using
predictive steps
Peace of mind with Cisco expertise
and state-of-the-art tools
8

Border/Edge
Reachability
Data Plane Policy Plane Client Onboarding
Control plane reachability
Edge reachability
Border reachability
Routing protocol
MAP server
Border and edge
connectivity
Border node health
Access node health
Network Services DHCP,
DNS, AAA
ISE/PxGrid connectivity
Border Node policy
Edge Node policy
Client/Device DHCP
Client/Device DNS
Client authentication /
authorization
Switch
CPU, Mem, Temp
Line-card
Modules
POE power
TCAM Table
SDA and Switching Specific Correlated Insights
Total SDA/Switching Insights: 38 issues in DNA-C 1.1
BRKEWN-2032 62

Client Onboarding
Network Coverage
& Capacity
Network Device
Monitoring
Application
Performance Sensor
Association failures
Authentication failures
IP address failure
Client Exclusion
Excessive on-boarding time
Excessive authentication time
Excessive IP addressing time
AAA, DHCP reachability
Coverage hole
AP License utilization
Client Capacity
Radio utilization
Availability
Crash, AP Join Failure
High Availability
CPU, Memory utilization
Flapping AP, Hung Radio
Power supply failures
Throughput analysis
Roaming pattern analysis
Sticky client
Slow roaming
Excessive roaming
RF, Roaming pattern
Dual band clients prefer 2.4GHz
Excessive interference
Client Experience
Web: HTTP & HTTPS
Email: POP3, IMAP, Outlook
Web Access
File Transfer: FTP & TFTP
Terminal: Telnet & SSHv2
Wireless Specific Correlated Insights
Total Insights: 66 issues in DNA-C 1.1
BRKEWN-2032 63

Next Generation Networking requires New Era of
Analytics Infrastructure
Right data at the right time with the right context would help generate actionable
business insights on wireless issues
Right Data
Right Time
Right
Context
Legacy Telemetry in traditional Network
Monitoring Tools
• CPU intensive raw data (~10 times more*)
• Multiple data sources needed for end to
end coverage
Contextual and Anomaly driven Telemetry
for DNA Assurance
• Optimized export with programmability
and JSON encoding
• Unified telemetry for heterogeneous
data sources
• Push based model
• Real-time notifications (~as low as 5 sec)
• Pull based model
• No real-time notifications (~ 15-30 mins)
• Network centric view with limited client context
• No events leading to false alarms
• Visibility into Client, App and Network traffic
• 240+ Client Onboarding issues defined as Events
*External reports, under evaluation

Assurance:
What you need to get started

Small Footprint Appliance
DNA Center Appliance - Single Appliance Runs Automation
and Assurance
Specifications
UCS 220 1RU
Server: 64-bit x86
vCPU: 44 core (2.2GHz)
RAM: 256 GB
Disk: SSD 12 TB M-RAID
Controllers: 2* 480 GB SSD controllers
Disk I/O speed: 200 MB
TPM module
DNA Center Appliance
SKU: DN1-HW-APL

Platform Support in DNA-C 1.1
• AireOS 8.5+
Type Hardware
Non Fabric
Software
Fabric
APs
Aironet 802.11n (700, 1600, 2600, 3600, 3500) 8.5MR1+ n/a
Aironet 802.11ac Wave 1 (1700, 2700, 3700) 8.5MR1+ 8.5MR1+
Aironet 802.11ac Wave 2 (1810, 1815, 1830,
1850, 2800, 3800,4800)
8.5MR1+ 8.5MR1+
WLCs
WLC 2504 / 5508 N/A N/A
WLC5520 8.5MR1+ 8.5MR1+
WLC8510 8.5MR1+ 8.5MR1+
WLC8540 8.5MR1+ 8.5MR1+
WLC3504 8.5MR1+ 8.5MR1+
Flex 7500 8.5MR1+ n/a
Whole AP
as a Sensor
Aironet 802.11ac Wave 2 (1810, 1815, 1830,
1850)
8.5MR1+ n/a
XOR radio
as a Sensor
Aironet 802.11ac Wave 2 (2800, 3800,4800) 8.5MR1+ n/a
Dedicated
Sensor
AP1800i, AP1800s 8.5MR1+ 8.5MR1+
Apple
Analytics
WLC: 5520, 8510, 8540
Apple iOS 11. iPhone7/iPad Pro or above
8.5MR1+ 8.5MR1+
Wireless: 11n, 11ac (Wave 1, 2) AireOS
Routing platforms
Switching platforms
Hardware Nonfabric Software
Fabric
Software
Catalyst® 3650, 3850 16.3+ 16.6.1+
Catalyst® 4500 IOS-XE 3.9.2+ IOS-XE 3.10.1+
Catalyst® 6800 15.4SY+ 15.5.1SY+
Catalyst® 2960, 3560 15.2.5E1 Not applicable
Catalyst® 9300, 9400, 9500 16.5.1a 16.6.1+
Nexus 7700 7.3+ 7.3.2+
Hardware Nonfabric Software
Fabric
Software
ISR: 800, 1900, 2900, 3900,
4400, 4300, 4200, 1100
15.5.3M+, 16.3.3+
ASR 1K 16.3.3 +
ENCS (5400, 5100) 3.6.2
Virtual: CSR1K, ISRv1K 16.3.3+

15
Designed to be DNA ready
Intent-Based Wireless Controllers
AIR-CT5520
AIR-CT8540
AIR-CT3504
Optimized for driving Intent
 REST API/Streaming Telemetry *
 Easy WEBGUI with best-practices defaults
 Highly Available with Client Stateful Switchover
Industry-leading Scale and Performance
 Up to 6K AP/64K Clients supported
 UDP: 90% BW with NBAR2 turned on
 TCP: 60% BW with NBAR2 turned on(1300 bytes)
Integrated Services with per-device,
per-user policy with no compromise
 Application Visibility and Control, Bonjour Gateway
 Apple Optimized Roaming and FastLane
 Secured by Netflow, Umbrella, TrustSec

DNA-C 1.1: Scale and Data Retention
KPIs, Metrics
Relationship
Graph
Between 7 ~ 30 days
Events/Alarms
Issues
Backup
(To external storage)
Purge
• Data storage for
5000 devices,
25,000 clients
• Customizable
retention policy
• Storage monitoring
and alerting
• Provide meaningful
assurance
troubleshooting,
issues and trending
dashboard data

DNA-C v1.1- CloudTethered Software Upgrades
Benefits:
• Continuous delivery
• Business agility
How it Works:
1. Service catalog hosted in
cloud (AWS EC2)
2. Cisco pushes new
version of an App /
Service to the service
catalog
3. Customer automatically
get notified and have the
option to deploy the new
version

Assurance:
What does it look like?

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Overall Network Health
• Overall health summary
of network and clients
• Where in the world and on
which site most serious
issues are happening
• Quick drill down to a site or
Toggle between Geo, List or
Topology View
• Top 10 Global Insights

End-to-end visibility
• Client Health Summary
• Onboarding, RF and Client Profile info
• Network Health Summary
• Control, Data, Policy Plane and Health info

Path Trace – Troubleshooting
• Run pathtrace from source to
destination to quickly get key
performance statistics for
each device along the
network path
• Identify ACLs that may be
Blocking or affecting the
traffic flow

360°Visibility
• Single location for all user
information and every user device
• History of performance for each
user device
• Proactive identification of any issues
affecting user’s experience
• Single location for all user device
related user information
• Connectivity graph with
health score of all device on
the path
• Application performance
• Device KPIs

Insights with Guided Remediation Actions
• Guided Actions to help remediate
issues quickly
• Detailed drill downs to identify the
impact quickly

Network Time Travel
• Rewind time to when the issue
occurred
• All the information on the user or
network device 360 changes to
the selected time!
• History shows critical events
• Identifies when issues occurred!
Go back in time to understand the
network state when issue occurred

Wireless Client Insights
Device Profile
Client shares these details
1. Model: iPhone 7
2. OS: iOS 11.2
Support per device-group
Policies and Analytics
1
Wi-Fi Analytics
Client shares these details
1. BSSID
2. RSSI
3. Channel number
Insights into the clients
view of the network
2
Assurance
iOS Client shares the reason
(error code) for the
disconnect.
Clarity into the reliability of
connectivity
3
Wi-Fi Analytics for iOS
This partnership with Apple enables
any iOS 11 client to speak to Cisco
DNA Center with client diagnostics.
Provides a more comprehensive
view of all potential root causes of
wireless issues.
Problems affecting iOS clients are
likely affecting all wireless clients.
Apple and

Assurance:
Client Side

DNA Assurance – Client Health
Toggle Overview
Map | List
Health Summary
• Wireless vs Wired
• Onboarding Times
• RSSI
• etc
Time Travel
Quick Filters

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 28BRKEWN-2032
Impacted Clients
Onboarding and RSSI

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco PublicBRKEWN-2032
Client Onboarding Time
• 30 Minute or 24 Hour interval
• Threshold
• Details
29

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco PublicBRKEWN-2032
Connectivity RSSI
• 30 Minute or 24 Hour interval
• Threshold
• Details
30

BRKEWN-2032
Client 360
• Time Selector – 3 Hours, 24 Hours, 7 Days
• Domains
• Health Score over time
• Select an area to focus in on the issues
• Issues and Trends
• Onboarding
• Path Trace
• RF and Device Details
31

32BRKEWN-2032
Client 360 - Issues
• Problems found during the client onboarding process are displayed as an issue
• Impact by location and number of clients is displayed

33BRKEWN-2032
Client 360 - Issue Details
Description and Impact
• Description of the issue is displayed
• Details of the impacted users and
their locations is displayed

34BRKEWN-2032
Client 360 - Suggested Actions
• Suggested actions for each issue
• Impact by location and clients is displayed

35BRKEWN-2032
Client 360 – Detailed Device Information
• Client Information:
• Username, Hostname,
MAC details
• Connection
• Band, Spatial Stream,
Channel Width

36BRKEWN-2032
Client 360 – Detailed RF Information
• RSSI, SNR
• Tx and Rx bytes

BRKEWN-2032
Client 360 - Onboarding
• Devices in the onboarding path have
Health Score
• Cross-Launch to the Device 360

Assurance:
Device Health Scores

39
Device 360 - Issues

40
Device 360 - Radio Utilization Issue

41BRKEWN-2032
Device 360 - Suggested Actions

42BRKEWN-2032
Device 360 - Suggested Actions - Command
Runner

43BRKEWN-2032
Device 360 - Physical Neighbor
Topology
• Shows clients per SSID/radio, AP, and
upstream switch and WLC
• Health score for each device
• Hover over to access more details and easy
access to the Device 360

Device 360 - Detailed Device Information
44BRKEWN-2032

Device 360
Detailed RF Information
• Charts for each radio
1. Channel Utilization
2. Interference
3. Noise
4. Air Quality
45BRKEWN-2032

Assurance:
Deeper Dive

Client on Boarding and Connectivity Insights
Wireless
client
Onboarding
Network
services
RF
connectivity
DNS
AAA
DHCP
Internet service
Association
Roaming
Wired
client
Onboarding
Network
services
First hop
connectivity
DNS
AAA
DHCP
Internet service
…
Wireless client on-boarding score Wired client on-boarding score
48

DNA Assurance Client Issue Page
50

Excessive IP Lease Time
We know:
• 802.11 auth, assoc were okay, on time
• AAA phases worked, on time
• Client sent a DHCP request
• DHCP responded, but late (based on baseline)
• Why?
Network issue
Server issue
Service issue
49

Issues - Client Boarding Issue
Client on-
boarding
Network
services
(raise these
issues only
if no RF
connectivity
issues)
RF
connectivity
DNS
AAA
DHCP
Network
connectivity
Association
WebAuth
RF Link
Health
On-going
49

Issues - Client Boarding Issue
Client on-
boarding
Network
services
(raise these
issues only
if no RF
connectivity
issues)
RF
connectivity
DNS
AAA
DHCP
Network
connectivity
Association
WebAuth
WF1 Failed to obtain IP address – pool exhausted (1) (Issue)
WF1 Failed to obtain IP address – No response from DHCP server (1) (Issue)
WF1 Failed 802.11 Authentication & Key Exchange – Invalid username / pwd (1) (Issue)
WF1 Failed 802.11 Authentication & Key Exchange – too many failed auth (1) (Issue)
WF1 Failed 802.11 Authentication & Key Exchange – Misconfigured PSK (1) (Issue)
WF1 Failed 802.1x Authentication & Key Exchange – Incorrect EAP method (2) (Issue)
WF1 Failed 802.11 Authentication & Key Exchange – Expired RSA certificate (2) (Trend)
WF1 Failed 802.11 Authentication & Key Exchange – Active Directory (2) (Issue)
WF1 Failed 802.11 Association – Mac Authentication / RADIUS Server (2) (Issue)
WF1 Failed 802.11 Association – Mac Authentication / WLC (2) (Issue)
WF1 Failed Authentication & Key exchange – Various reasons (2) (Issue)
(e.g.unexpected response from RADIUS)
Cannot reach DNS server ( reachability – cannot ping DNS server ) (1) (Issue)
DNS server not responding ( can ping DNA server, but no response from DNS server,
config error, or server issue ) (1) (Issue)
Identify guest issues: 1) Local WLC, 2) External Web server, 3) ISE/RADIUS
Cannot reach user specified intranet service (1) (Issue)
Cannot reach user specified internet service (1) (Issue)
RF Link
Health
On-going
User has poor RF connection for a sustained period of time (1) RSSI > 70 dBm
/ SNR > 20 dB, 2) MCS consistent with signal, 3) Retries below < 15%,
4) Cell channel utilization < 50%) (1) (Issue)
WF2 Misbehaving – Dual band capable client preferring 2.4 GHz when 5.0 GHz is available
RF association failed ( specifically, step 2 or 3 ) (2) (Issue)
52

Life, Once You Have Onboarded
Roaming can be an issue
• “Roaming is the same as onboarding, except that we know the client already”
Client RF may suffer
• Sticky client
• Ping-pong client
• Poor RF client
• CHDM client
Quality of experience can degrade outside of RF issues
52BRKEWN-2032

Issues -Wireless Connected Categories
Client
experience
Roaming issues
after client has
successfully on
boarded
WF2 Misbehaving – Roaming failed (1) (Issue)
WF2 Misbehaving – Sticky client (1) (FYI)
WF2 Misbehaving – 802.11r Capable client roaming slow (1) (FYI)
WF2 Misbehaving – 802.11i Capable client roaming slow (3) (FYI)
WF2 Misbehaving – Dual band capable client connects to 2.4 GHz when 5.0 GHz is available
during roam (1) (FYI)
WF2 Misbehaving – Ping pong client (AP/AP) (1) (FYI)
WF2 Misbehaving – Ping pong client (SSID/SSID) (1) (FYI)
WF2 Misbehaving – Ping pong client (2.4GHz / 5 GHz) (1) (FYI)
Issue - Roaming failed counts by AP (current) (by WLC-future)
Issue - Roaming failed counts by location (floor, building, and site) (current)
Issue - Roaming failed counts by client type (current)
Issue - Roaming failed counts per client (current)
Issue - Roaming failed counts over time (current)
Issue - Roaming times longer than normal by AP (current+1)
Issue - Roaming times longer than normal by location (floor, building, and site) (current+1)
Issue - Roaming times longer than normal by client type (current+1)
Issue - Roaming times longer than normal per client (current+1)
Issue - Roaming times longer than normal over time (current+1)
Trends: For each above issue as trends (future)
Prediction: Roaming times and roaming failure counts (future)
Kairos
BRKEWN-2032 54

Issues -Wireless Connected Categories
Client
experience
Throughput
Issue: Throughput significant drop or spike for overall (all applications) by location (current)
Issue: Throughput significant drop or spike for overall (all applications) by AP (current)
Issue: Throughput significant drop or spike for overall (all applications) by client type (current)
Issue: Throughput significant drop or spike from normal per application by location (floor, building, and site)
(current+1)
Issue: Throughput significant drop or spike from normal per application by AP (current+1) (by WLC - future)
Issue: Throughput significant drop or spike from normal per application by client type (current+1)
Trends: For each above issue as trends (future)
Prediction: Throughput 1-5 hours in advance for significant drops or spikes for overall (all applications) by AP
(current)
Prediction: Throughput 1-5 hours in advance for significant drops or spikes for overall (all applications) by
application (current+1)
Prediction: Throughput 1-5 hours in advance for significant drops or spikes for overall (all applications) by client
type (future)
Kairos
BRKEWN-2032 55

Wireless
Network
Data
Plane
AP and Switch
Issues -Wireless Network Devices Categories
WLC and Switch
WF6 – WLC Ethernet Port LAG mismatch (2) (FYI)
WF6 – AP Ethernet Port LAG mismatch (1800 / 2800 / 3800 ) (2) (FYI)
RF events WF5 – AP Channel changes – signal (us) (2) (FYI)
WF5 – AP Channel changes – Interference (not us) (2) (FYI)
WF5 – AP Channel changes – DFS (2) (FYI)
Availability
WF4 – AP Availability: AP up/down (1) (FYI)
WF4 – AP Hung radio – radio 1 ( no sensor checks ) (1) (FYI)
WF4 – AP Hung radio – radio 2 ( no sensor checks ) (1) (FYI)
WF4 – AP last reboot crash (1) (FYI)
WF5 – AP flapping (1) (FYI)
Client to AP
WF5 Poor RSSI – coverage hole (1) (FYI)
WF5 Flash crowd (1) (FYI)
WF6 AP – AP excessive interference – WiFi (2) (FYI)
WF6 AP – AP excessive interference – non WiFI (2) (FYI)
utilization
WF6 AP – Utilization: Radio (1) (FYI)
WF6 AP – 2.4 GHz radio utilization (1) (FYI)
WF6 AP – 5.0 GHz radio utilization (1) (FYI)
WF6 AP – CPU utilization (1) (FYI)
WF6 AP – Memory utilization (1) (FYI)
WF6 AP – Ethernet port utilization (1) (FYI)
Spare capacity (e.g. 1-client count / max client count)
WF5 – AP 5GHz radio utilization (non FRA capable AP) (1) (Issue)
WF5 – AP 5GHz radio utilization (FRA capable AP / FRA disabled) (1) (Issue)
BRKEWN-2032 57

Wireless
Network
Control
plane
Device health
WLC
Connectivity
AP and WLC
Issues -Wireless Network
Availability
WF5 – AP flapping between WLCs (1) (FYI)
WF5 – AP VLAN mismatch (flexconnect) (2) (FYI)
WF4 – WLC regulatory domain mismatch between WLC and APs (2) (FYI)
WF5 – AP WLC join failure – AP not joined to its preferred WLC (3) (FYI)
WF4 – WLC down (1) (Issue)
WF4 – WLC power supply failure (1) (FYI)
WF4 – WLC last reboot crash (1) (FYI)
WF4 – WLC HA/SSO – the primary unit / standby hot (2) (FYI)
WF4 – WLC HA/SSO – HA peer unreachable (2) (FYI)
WF4 – WLC HA /SSO – both WLCs active (2) (FYI)
WF4 – WLC EoIP mobility tunnel – Data channel down / peer WLC up (2) (FYI)
WF4 – WLC EoIP mobility tunnel – control and data channel down / peer WLC up (2) (FYI)
WF4 – WLC EoIP anchor tunnel – data channel down / peer WLC up (2) (FYI)
WF4 – WLC EoIP anchor tunnel – control and data channel down / peer WLC up (2) (FYI)
WF5 – WLC Excessive inter-WLC roaming (L2) (2) (FYI)
WF5 – WLC Excessive intra-WLC roaming (L3) (2) (FYI)
WF4 – WLC Mobility bug (CP) (3) (FYI)
BRKEWN-2032 59

Wireless
Network
Control
plane
Device health
WLC
Issues -Wireless Network Devices Categories
utilization
Temperature
FAN
QoS Table Usage (Queue depth, Buffer)
Interface Statistics - Error, Discard, FCS,
Runts, resets
Queue utilization wit drop counters
WF4 – WLC utilization – Radius queue (1) (FYI)
WF6 – WLC utilization – memory (1) (FYI)
WF4 – WLC AP license utilization (1) (Trend)
WF4 – WLC AP license exhausted (1) (FYI)
WF4 – WLC AP Capacity (1) (Trend)
WF4 – WLC client capacity (1) (Trend)
WF6 – WLC utilization – CPU (1) (FYI)
WF6 – WLC utilization – WLC Ethernet port utilization (Rate/load, Tx/Rx
indivual vs bidirectional, duplex speed) (2)(FYI)
WF6 – WLC low free Mbuf (2) (FYI)
WF6 – WLC high WQE pool usage (2) (FYI)
WF6 – WLC high packet pool usage (2) (FYI)
WF6 – WLC low available timer (2) (FYI)
BRKEWN-2032 60

Assurance:
Sensors (Wireless)

Wireless Sensors Proactively Assess Performance
Test your network anywhere at any time
R1
Dedicated Sensor AP1800 Flexible Radio
Sensors act as
clients
Access point
 On-Boarding Tests
• 802.11 Association
• 802.11 Authentication & Key Exchange
• IP Addressing DHCP (IPv4)
 Network tests
• DNS (IPv4)
• RADIUS (IPv4)
• First Hop Router/Default gateway (IPv4)
• Intranet Host
• External Host (IPv4)
 Application tests
• Email: POP3, IMAP, Outlook Web Access (IPv4)
• File Transfer: FTP (IPv4)
• Web: HTTP & HTTPS (IPv4)
Flexible Radio Assignment Algorithm intelligently
identifies excessive radios and seamlessly converts
those into Sensor mode without client impact
BRKEWN-2032 68

Telemetry Evolutions – Wireless Sensors
Flexible Radio as Sensor
(2800/3800/4800 APs)
Dedicated Sensors
(1815/1830/1850 APs, 1800 Sensor)
Dual 5 GHz Flexible Radios
Software defined radios automatically
adjust to dual 5GHz
Purpose-built Hardware for Analytics
Flexible radios can to provide simultaneous
in-line monitoring to DNA for analytics and
insights while serving clients (future)
1815 1830/1850 1800 Sensors
DNA Assurance – Sensor-Driven Tests

Wireless Sensor Support
Dual 5 GHz Flexible Radios
Software defined radios automatically adjust to dual 5GHz
Purpose-built Hardware for Analytics
Flexible radios can to provide simultaneous in-line monitoring to
DNA for analytics and insights while serving clients (future)
XOR RADIO
5GHz.
2.4GHz.
Sensor (Client Testing)
Flexible Radio as Sensor (2800/3800) Dedicated AP as Sensor
1815/1830/1850 AP
• 2x2 with 2 spatial streams
• Multiple powering options:
• PoE Power
• USB Type “C” power
• Direct AC Power Plug
• Integrated BLE
1815
1830/1850
1800s dedicated sensor
BRKEWN-2032 69

Run NetworkTests
See What Works and Where
62BRKEWN-2032

Run NetworkTests
Hover over a Test to See Results
63BRKEWN-2032

SensorTest How-To
1a. Create a New Test, Choose Location and Run Interval
64BRKEWN-2032

SensorTest How-To
1b. Choose the SSIDs to test
65BRKEWN-2032

SensorTest How-To
2. Select the Tests to Run
66BRKEWN-2032

SensorTest How-To
3. Select the Sensors to Use
67BRKEWN-2032

SensorTest How-To
Test Runs at Intervals
68BRKEWN-2032

Assurance:
The AP4800 &
“Intelligent Capture”

AP-4800 is a more advanced AP than the AP-3800
Similar to the AP-3800i but it has an additional Flexible Radio for Analytics + Advanced Hyperlocation antenna array
• Location Array antenna is now integrated
• Bluetooth Low Energy radio is now integrated
• Embedded analytics/location radio is now integrated
Hyperlocation
antenna array
+ =
DNA Analytics, Monitoring
and Location Radio AP-4800
Best in Class

AP-4800 Antenna System Overview
Most Advanced Antenna System (25 Elements) in a Single Access Point
(4) 2.4/5GHz Macro
Antenna Elements
(4) 5GHz Micro Cell
Antenna Elements
(16) Element Directional
Antenna Array
(Digitally Switched)
for Location tracking
(4) Omni-Directional Elements
(Digitally Switched)
for 24x7 Monitoring &
Analytics / DNA Assurance
BLE=>
Element
Total Antenna Elements = 25

Intelligent Capture
On-demand VIP Troubleshooting
Real-time Event
Viewer
Download Onboard
Packet
Auto Packet
Analyzer
Real-time Client location Map
with trail of movement
AP4800 3rd radio Full packet
capture
Failed Onboard
Network Time Travel
view
Interpacket Gap (ms) bar
chart
RSSI Chart per Packet
Onboard Packet
stage identifier
Failed Packet
Intelligent Capture

Intelligent Capture is Real-Time Analytics and troubleshooting
• On-demand Intelligent Capture Capture
• Real-time Event Viewer and Automated Filtered Packet
capture
• Auto Packet Analyzer
• Real-time Client location Map
• Real-Time Client RF Stat Graph
• AP4800 3rd radio Full packet capture – one client per
floor
• Real-Time Application Analyzer integration
• Packet Capture across multiple APs
• Wireless Decrypted Packet Capture
• Real-Time RF Visualization with Location
• Spectrum Analyzer on DNA Assurance
• Real Time Client RF Stat update
• Real Time AP RF Stat update
• Multi-Device Onboarding Capture – 16
clients per foor
• Client Onboarding Issue with Intelligent
Capture PCAP
• Radio Anomaly Issue with PCAP
• AP RF Analysis
Single Device VIP capture Multi-Device Onboarding capture Real-Time RF / Spectrum AnalyzerAutomated PCAP
On-Demand Scheduled, Automated

Intelligent Capture
Real Time Application Analytics
• Real-time Application
Analysis
• Application Identification
• Reveal WMM (L2), DSCP(L4)
Marking of each App
• Real-Time Packet Loss Graph
• Real-Time Wireless Delay Graph
• Real-time Jitter Graph
ONLY supported on AP 4800
Enabled by vNAM

Intelligent Capture
Real-Time AP RF Stats. Spectrum Analyzer
• Runs as Scheduled / On-demand manner
• Runs per AP level
Supported on 2800, 3800, 4800

Assurance:
Peering into the crystal ball…

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Project Kairos
For Wireless, Wired and IOT
Cognitive Analytics
Anomaly detection across hundred of thousands of
devices, dozen of thousands of gears and
hundreds of heat maps
Machine Learning
For Wireless, Wired Networks and IOT
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco PublicTECSDN-3400 77

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
DNA Analytics – Detect and Predict
Problem: Networks are complex, troubleshooting networks is challenging. Networks create
massive amount of Telemetry*. Data from your network alone may not be sufficient. Predicting
issues before they have an impact is difficult.
Solution: Use Machine Learning in DNA Analytics
1. Deploy ‘Kairos’ Package in DNA Center
2. Telemetry is collected across
wireless, routing, switching
(no hardware/software upgrade required)
3. (Anonymized) data is sent to the cloud
4. Advanced Machine Learning continuously
adapts using vast and diverse set of Big Data
5. Detect existing Issues (Cognitive Analytics)
6. Predict upcoming Issues (Predictive Analytics)
Infrastructure
Physical | Virtual | Programmable | App Hosting
DNA Center Cisco DNA
Analytics Cloud
ALERT INSIGHT! !
1)
4)
3)
2)
5) 6)
* Example: Cisco IT – 8’000 Access Points, 100’000
wireless clients  150 Mio Data Points per Hour

 DNA Analytics groups
networks according to
degree of “similarity” using
ML, and analyzes how the
network performs,
comparing with peers
 Provides comparison both
for issues and metrics (KPI
of interest)
Compare with your peers

Compare with your peers …
Compare with other
devices in the same
network, time and …
comparable networks

DNA Assurance – Issue  ITSM Integration
Cisco DNA Issue Context
• DNAC Center User 360 Link
• Description
• Impact
• Locations
• Clients
• Guided Resolution

DNA Assurance – SaaS Integration
DNA Center
DNA Infrastructure
Clients | Applications | Wireless | Switching | Routing
SaaS Applications
Cloud Hosted Applications
may or may not interact with an
on-prem application controller
may or may not interact with
on-prem infrastructure or clients
Integration to
• Propagate App
Metrics to 360 View
• DNAC 1.3
- Skype 4 Business
• Other Candidates
- WebEx
- Spark
- Office365
- …

DNAC
• App Experience
in * 360 Views
• Link context-aware
DNA Assurance – App Dynamics Integration
DNA Center
DNA Infrastructure
Clients | Applications | Wireless | Switching | Routing
Data Center Infrastructure
AppDynamics
• Transaction Scores
and Dashboard
Integration to
• Propagate App
Scores to 360 View

Forward Looking Ideas
• Imagine that we linked the DNA Assurance platform to TAC database
What Else Could We Do?
Disclaimer: this is not a roadmap, just an exchange of forward looking ideas
Issue
found: high
CPU on
platform
XYZ
TAC knowledge
base
Suggested fix
“Issue found with 952 other
customers, when command
AA is used in combination
with interface command BB,
changing to command CC
achieves the same result but
lower CPU condition”
Would you like me to make the
change?
BRKEWN-2032 86

Forward Looking Ideas
• Imagine that we linked the DNA Assurance platform to the CVD Database
What Else Could We Do?
Disclaimer: this is not a roadmap, just an exchange of forward looking ideas
Click:
grade my
config
Anonymous CVD
database call
Suggested fixes
52 optimization
opportunities were found
Would you like me to make the
change?
87

Assurance:
Your own way…
via Streaming Telemetry

AireOS 8.7
WLC
8.5 +
“WSA”
Wireless Service Assurance
8.7 +
“Webhook”
DNAC
Assurance
3rd Party Server
Kibana
Yang Models
7 Models
AP, Client, System, Network,
Rogue, Mapserver, interferer
15 Models
HTTPS Post
“push” JSON
Certificate generated manually and
installed on WLC and into 3rd Party
Server
(config transfer datatype
webhook-ca-cert)
DNAC generates and manages
HTTPS certificate
(config transfer datatype
NaServerCaCert)
• Either WSA or Webhook can be enabled, not both
• Pub/Sub: Subscribe to topics in AireOS, data is pushed to DNAC or 3rd Party Server
• Configurable interval
• Configurable model
subscriptions
• Full of Differential payloads
No compression
• All models enabled
by DNAC
• Differential,
compressed payloads
Telemetry in AireOS
Interval: 2, 15, 30, 90, 300 seconds Interval: 30 or 300 seconds

Webhook Configuration Example
Check
Prerequisites: DX,
TLS, and DNS
Chose data
publishing settings
Set the URL and
Auth-Token
Subscribe to the
models
Enable and verify
DX: Data Externalization must first be enabled, requires reboot

Why Webhooks
• Works based on Pub-Sub
• Applications does not need to make API calls
or poll
• Subscribe for the interested topic
• Data will be posted periodically to the
channels via webhook
• Posting of data via HTTP Post
• Compatible with 3rd party analyzers and
applications
Application / Client
APIs Over time
Device / Data Source
Any Data ? Nope Any Data ? Nope Any Data ? Data
Time
Application / Client
Device / Data Source
Data
Time
Webhook Over time
Ack

Raw Data Visualized

YANG Model to Subscription Mapping

Subscriptions
Subscription Description
All Configures All topics Data Publish
AP MAC, AP-Group, Flex-Group, Mode, state, etc
Client MAC, state, connected-time, protocol, device details, etc
Interferer RF Interferers, detecting AP, RSSI, duty cycle, etc
MapServer SDA/FEW, IP, status, type, counters, etc
Network IP, CDP, Interfaces and counters
Rogue MAC, SSID, RSSI, SNR, type, reporting AP
System CPU and Memory usage, inventory, apps, etc

YANG Model Example
• Network Counters
wlc
ops
network
radius
auth-servers
counters
accounting-
servers
counters
dhcp
stats
counters
tacacs
auth-servers
statistics
acct-servers
statistics
cdp
expire-time
device
port
RADIUS Auth RADIUS Acct DHCP
Pending-requests First-requests tx-discovers
First-requests retry-requests rx-discovers
Retry-requests Acct-responses requests
Accept-responses Malformed-msgs informs
Reject-responses Bad-auth-msgs declines
Challenge-resp Timeout-requests releases
Malformed-msgs Unknown-msgs replies
Bad-auth-msgs Other-drops offers
Timeout-requests Pending-requests acks
Unknown-msgs nacks
Other-drops tx-failures

Kibana Visualization
Kibana

Cisco connect winnipeg 2018 a look at network assurance in dna center

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Cisco connect winnipeg 2018 a look at network assurance in dna center

Similar to Cisco connect winnipeg 2018 a look at network assurance in dna center (20)

More from Cisco Canada

More from Cisco Canada (20)

Recently uploaded

Recently uploaded (20)

Cisco connect winnipeg 2018 a look at network assurance in dna center

Editor's Notes