This document discusses Cisco's Unified Computing System (UCS) integrated infrastructure for enabling private clouds based on OpenStack. It provides an overview of Cisco's validated designs for OpenStack private clouds using Cisco UCS and partnerships with other technology providers. Specifically, it describes Cisco's validated solutions for OpenStack private clouds using Cisco UCS with Red Hat OpenStack Platform (OSP) and Ceph storage or FlexPod converged infrastructure with NetApp storage. The solutions are aimed at providing scalable, high availability OpenStack private clouds with single point of support from Cisco and its partners.
When flexibility met simplicity: the friendship of OpenStack and AnsibleMajor Hayden
Ansible is an open source tool that automates IT infrastructure and reduces complexity. It can manage OpenStack deployments and operations through flexible automation while keeping OpenStack's flexibility. The presentation showed how Ansible can help OpenStack operators, administrators and deployers automate tasks like launching instances, managing projects and users, and deploying OpenStack itself. It concluded by recommending ways to get started with Ansible like reading the documentation, joining communities, and finding open source projects that use Ansible with OpenStack.
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growthシスコシステムズ合同会社
OpenStack is a strategy for future growth and innovation as entire industries are disrupted by cloud computing and software defined technologies. OpenStack provides agility, lower costs, and other benefits. Cisco participates in OpenStack to help develop open standards for cloud infrastructure. OpenStack is being used for networking, storage, compute and more across many sectors. Cisco contributes significantly to OpenStack projects like Neutron. Software defined technologies are disrupting traditional networking and infrastructure through virtualization and automation.
This document discusses integrating RecoverPoint for VMs with Cisco Application Centric Infrastructure (ACI). It describes how ACI allows defining network policies once and deploying them consistently using group-based policies. The integration pre-configures four network instances for RecoverPoint's network interfaces and associates them using ACI policies. This provides automation, security and visibility for workloads running on RecoverPoint. The document also outlines the configuration steps and assumptions required to set up this integration.
This document discusses WAF architecture on AWS. It begins by explaining what a WAF is and why they are used, such as to protect against common attacks like SQL injection and cross-site scripting. It then covers different WAF architecture options on AWS like using AWS WAF or traditional on-premise WAFs. It also compares these options based on factors like meeting compliance standards, maintainability and pricing. Finally, it includes a demo of AWS WAF rules and references additional resources.
Cisco Connect 2018 Malaysia - Next-generation hyperconverged infrastructure-s...NetworkCollaborators
This document discusses Cisco's HyperFlex hyperconverged infrastructure solution. It presents HyperFlex as enabling support for any application on any cloud at any scale. Key points discussed include how HyperFlex is engineered on Cisco UCS for unified compute and networking, its next generation data platform, integration with Cisco's Intersight management solution, and how it allows for increased scale, resiliency, workload support, and cloud choice for customers. HyperFlex is positioned as providing the flexibility needed for modern distributed, hybrid IT environments.
[Cisco Connect 2018 - Vietnam] Long ton dc pss hyper flexNur Shiqim Chok
The document discusses Cisco's HyperFlex hyperconverged infrastructure solution. It highlights how HyperFlex provides support for any application on any cloud at any scale. It details how HyperFlex is engineered on Cisco UCS and features the Cisco HX Data Platform for storage optimization. The document also summarizes benefits like accelerated deployment, increased utilization, lower management costs, and support for increased capacity, resiliency, availability, workloads, and cloud choices.
This document discusses Cisco's Unified Computing System (UCS) integrated infrastructure for enabling private clouds based on OpenStack. It provides an overview of Cisco's validated designs for OpenStack private clouds using Cisco UCS and partnerships with other technology providers. Specifically, it describes Cisco's validated solutions for OpenStack private clouds using Cisco UCS with Red Hat OpenStack Platform (OSP) and Ceph storage or FlexPod converged infrastructure with NetApp storage. The solutions are aimed at providing scalable, high availability OpenStack private clouds with single point of support from Cisco and its partners.
When flexibility met simplicity: the friendship of OpenStack and AnsibleMajor Hayden
Ansible is an open source tool that automates IT infrastructure and reduces complexity. It can manage OpenStack deployments and operations through flexible automation while keeping OpenStack's flexibility. The presentation showed how Ansible can help OpenStack operators, administrators and deployers automate tasks like launching instances, managing projects and users, and deploying OpenStack itself. It concluded by recommending ways to get started with Ansible like reading the documentation, joining communities, and finding open source projects that use Ansible with OpenStack.
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growthシスコシステムズ合同会社
OpenStack is a strategy for future growth and innovation as entire industries are disrupted by cloud computing and software defined technologies. OpenStack provides agility, lower costs, and other benefits. Cisco participates in OpenStack to help develop open standards for cloud infrastructure. OpenStack is being used for networking, storage, compute and more across many sectors. Cisco contributes significantly to OpenStack projects like Neutron. Software defined technologies are disrupting traditional networking and infrastructure through virtualization and automation.
This document discusses integrating RecoverPoint for VMs with Cisco Application Centric Infrastructure (ACI). It describes how ACI allows defining network policies once and deploying them consistently using group-based policies. The integration pre-configures four network instances for RecoverPoint's network interfaces and associates them using ACI policies. This provides automation, security and visibility for workloads running on RecoverPoint. The document also outlines the configuration steps and assumptions required to set up this integration.
This document discusses WAF architecture on AWS. It begins by explaining what a WAF is and why they are used, such as to protect against common attacks like SQL injection and cross-site scripting. It then covers different WAF architecture options on AWS like using AWS WAF or traditional on-premise WAFs. It also compares these options based on factors like meeting compliance standards, maintainability and pricing. Finally, it includes a demo of AWS WAF rules and references additional resources.
Cisco Connect 2018 Malaysia - Next-generation hyperconverged infrastructure-s...NetworkCollaborators
This document discusses Cisco's HyperFlex hyperconverged infrastructure solution. It presents HyperFlex as enabling support for any application on any cloud at any scale. Key points discussed include how HyperFlex is engineered on Cisco UCS for unified compute and networking, its next generation data platform, integration with Cisco's Intersight management solution, and how it allows for increased scale, resiliency, workload support, and cloud choice for customers. HyperFlex is positioned as providing the flexibility needed for modern distributed, hybrid IT environments.
[Cisco Connect 2018 - Vietnam] Long ton dc pss hyper flexNur Shiqim Chok
The document discusses Cisco's HyperFlex hyperconverged infrastructure solution. It highlights how HyperFlex provides support for any application on any cloud at any scale. It details how HyperFlex is engineered on Cisco UCS and features the Cisco HX Data Platform for storage optimization. The document also summarizes benefits like accelerated deployment, increased utilization, lower management costs, and support for increased capacity, resiliency, availability, workloads, and cloud choices.
The Cisco ASA 5500 Series, specifically the Cisco ASA 5540-BUN-K9, provides effective network security for businesses to protect against hackers and viruses. It offers high firewall throughput, VPN support, load balancing, VLAN support, and high availability. The Cisco ASA 5540 is a rack-mountable security appliance that scales with business network security needs and provides investment protection and services scalability.
The document discusses Cisco's HyperFlex hyperconverged infrastructure solution. It highlights how HyperFlex provides support for any application on any cloud at any scale. It details how HyperFlex is engineered on Cisco UCS and includes the Cisco HX Data Platform for storage optimization. The document also discusses benefits like accelerated deployment, increased utilization, lower management costs, and support for more workloads, clouds, and increased scale.
Cisco ucs s3260 the new storage building blocksIT Tech
The document discusses Cisco's new UCS S3260 Storage Server. The S3260 allows for scaling storage capacity to petabytes within minutes using scale-out architecture. It offers 600TB of storage capacity in a 4U rack space. The S3260 supports various operating systems and can be configured with different drive options, I/O modules, and in single or dual node configurations for increased flexibility and performance.
Apcera reviews the good, bad and the amazing, based on feedback collected from 250+ early adopters, of emerging microservices platforms and best practices.
You can learn more about The Trusted Cloud Platform at: https://www.apcera.com/
This document discusses the Cisco Catalyst 6500 ASA Services Module, a new security blade for the Cisco Catalyst 6500 switch. It offers the best performance per blade in the industry and the fastest single chassis performance. Known as the ASASM, it provides firewall, IPS and VPN capabilities with throughput of up to 16Gbps and over 300,000 connections per second. It simplifies installation of security capabilities into the data center network and offers better price and performance than competing solutions.
This document discusses WAF architecture on AWS. It begins by explaining what a WAF is and why they are used, particularly to address common attacks like SQL injection and cross-site scripting. It then covers traditional WAF architectures and their problems before detailing the AWS recommended architecture of placing a WAF like AWS WAF in front of a load balancer or CloudFront distribution. It also compares traditional, cloud-hosted, and AWS WAF options in terms of meeting compliance standards, maintenance/automation, and pricing. The document concludes with a demo of AWS WAF rules and features.
The document discusses Cisco's UCS Invicta series, which brings flash memory into the UCS architecture to enable faster application deployment, execution, and workloads. The UCS Invicta series includes appliances and scaling systems that leverage flash memory and the Invicta OS to provide high performance storage. It can be managed by UCS Director as part of the overall UCS management platform to deliver unified, automated management of compute, network, storage and applications.
Accelerating incident response in organizations of any sizeCisco Canada
The document discusses accelerating incident response in organizations of any size. It describes how a typical incident response workflow involves investigating incidents, recovering from incidents, improving defenses, and reducing the attack surface. The document then outlines Cisco's security architecture and technologies that can help accelerate each step of the incident response process by providing recorded network history, continuous analysis of that history for automated hunting, and integrated threat intelligence across email, web, firewalls, and endpoints to more quickly block, investigate and respond to incidents.
Kentaro Takeda and Kensuke Ishizu of NTT DATA presented on common misunderstandings enterprises have about OpenStack and how it differs from traditional infrastructure models. They explained that OpenStack is software for building infrastructure as a service (IaaS) and outlined key differences between IaaS and traditional server consolidation approaches. Specifically, IaaS follows a "cattle not pets" approach where infrastructure resources are treated as interchangeable and provisioned on-demand, unlike dedicated server silos. The presentation provided examples of how enterprises sometimes try to use OpenStack in ways that don't align with its IaaS model, resulting in projects deemed "Korejanai" or "not it".
Elastic - From 50 to 270, how to scale a distributed engineering teamSylvain Wallez
Video (in french) at https://youtu.be/rrlPhedNjbA
Elastic, who develops the popular Elasticsearch, Kibana, Logstash and Beats open source tools, is a "remote first" company. This presentation explains how our distributed software engineering team of 270 people works, and the culture behind it.
The document provides information about upcoming presentations for the Brisbane Azure User Group (BAUG) meeting in April 2021. It will feature a presentation by Robert Crane on "All About Azure Sentinel". The document also includes brief summaries of recent Azure product announcements and updates such as Azure Defender for Storage, new HBv3 virtual machines, Oracle WebLogic Server on Azure VMs, Azure Orbital ground stations, and Cloud Services migration tools. Sponsors and links to the BAUG Slack team and YouTube channel are also mentioned.
Apcera: Agility and Security in Docker DeliveryApcera
Post Dockercon 2015 Technical Talk on Agility and Security in Docker Delivery
You can learn more about The Trusted Cloud Platform at: https://www.apcera.com/
Router Defense is a Cisco IOS security assessment tool that reads Cisco IOS configurations and analyzes them with a security mindset. It tests configurations across management, control, and data planes and outputs results in several formats including HTML, CSV and PDF. The tool performs 138 different security tests and provides CVSS scoring. It is written in Python and contains over 9,000 lines of code. The tool is available on Google Code and analyzes enterprise and service provider networks running IPv4, IPv6 and MPLS on both Cisco routers and switches.
10G/40G gen to 25G/100G gen, and go forward (HPVI community meetup)Takao Setaka
The document discusses high-performance virtual infrastructure and networking technologies including 10/25/40/100G Ethernet, dual-rate 40/100G transceivers, QSFP-DD 400G interfaces, Cisco's CloudScale ASIC, and the Cisco Nexus 9300-FX2 series switches. Key topics covered are network interface standards, transceiver and cable technologies, the CloudScale ASIC capabilities like flexible forwarding, telemetry, and MACsec encryption, and the Nexus 9300-FX2 switch models.
Cloud Ubuntu Open Stack, Juju, MaaS - Ua Deck Nov 2013The World Bank
Canonical is the company behind Ubuntu and offers Ubuntu, Juju, MAAS, and Landscape to deploy OpenStack clouds. Ubuntu is the most popular Linux on public clouds and is used by 9 out of 10 OpenStack clouds. Canonical provides automated tools, long term support, and professional services to help customers deploy and manage scalable OpenStack clouds on Ubuntu.
The document discusses Cisco's new ASA 5500-X series of next-generation firewall and IPS platforms. It provides an overview of the new hardware architectures, including multi-core CPUs, larger memory capacities, and integrated IPS acceleration. It also summarizes the key features and specifications of the new ASA 5512-X, 5515-X, 5525-X, 5545-X, and 5555-X models, and compares their performance to previous generation ASA appliances. The document is intended to help customers understand the new mid-range product portfolio from Cisco.
This document discusses Azure Key Vault, which allows centralizing application secrets and securing storage of keys and secrets. It can simplify administration by centralizing configurations and allowing monitoring of access and usage. The document demonstrates how to create an Azure Key Vault and connect to it from Visual Studio using managed identities. It also discusses how Azure Key Vault can integrate with app settings and be called externally with a token.
vRealize Operations (vROps) Management Pack for Cisco Nexus OverviewBlue Medora
The document discusses a management pack for Cisco Nexus switches that integrates them with VMware vRealize Operations. It provides out-of-the-box dashboards, alerts, recommendations, and reports for Cisco Nexus switches. It also automatically discovers relationships between Cisco Nexus switches and virtual machines to provide end-to-end visibility across the IT infrastructure.
Brian Murray presented on how FINEOS, an insurance software company, built a hosted offering on AWS to provide their traditionally on-premises software to customers in a cloud environment. Key requirements for the transition included data sovereignty, compliance, security, and high availability. FINEOS used AWS services like VPC, IAM, and RDS and built their own solutions around availability and security best practices like monitoring, automation, and regular backups. Ongoing challenges included maintaining skills in AWS, providing 24/7 support, automation, and keeping up with new AWS features.
BRKDCT-2445 Agile OpenStack Networking with Cisco Solutions - Cisco Live! US ...Rohit Agarwalla
One of the key areas of contributions from Cisco within OpenStack has been in the evolution and the development of the OpenStack Networking Service - Neutron. Using Neutron's Modular Layer 2 (ML2) plug-in and advanced services framework, Cisco has integrated products and solutions with the networking service to simplify the deployment of highly scalable, manageable and performant networks. Through this session we will cover and provide details of reference as well as the various OpenStack Neutron plugins/drivers for hardware and software Cisco products including the Nexus 1k/3k/5k/6k/7k/9k, UCS FI, CSR 1kv, ASR1K, CPNR and Application Policy Infrastructure Controller (APIC). The audience will also learn about Group Based Policy API in OpenStack that is based on the ACI Policy model. We will further discuss different OpenStack networking architecture, deployments and understand Cisco’s community code contribution that enable and support IPv6 and NFV related features in Neutron.
VMware Product Applicability Guide for NERC CIP v5 Final Version 1.0Anthony Dukes
This document summarizes VMware's software-defined data center (SDDC) products and their applicability to the North American Electric Reliability Corporation's Critical Infrastructure Protection Version 5 (NERC CIP v5) cybersecurity standards. It was produced by Coalfire, an independent cybersecurity audit firm, in conjunction with VMware. The document maps the NERC CIP v5 requirements to VMware's SDDC products such as VMware ESXi, VMware vCenter, VMware NSX, and VMware management and automation products. It finds that while the SDDC alone does not provide all required technologies for full compliance, it can be used along with third-party products and entity policies and
The Cisco ASA 5500 Series, specifically the Cisco ASA 5540-BUN-K9, provides effective network security for businesses to protect against hackers and viruses. It offers high firewall throughput, VPN support, load balancing, VLAN support, and high availability. The Cisco ASA 5540 is a rack-mountable security appliance that scales with business network security needs and provides investment protection and services scalability.
The document discusses Cisco's HyperFlex hyperconverged infrastructure solution. It highlights how HyperFlex provides support for any application on any cloud at any scale. It details how HyperFlex is engineered on Cisco UCS and includes the Cisco HX Data Platform for storage optimization. The document also discusses benefits like accelerated deployment, increased utilization, lower management costs, and support for more workloads, clouds, and increased scale.
Cisco ucs s3260 the new storage building blocksIT Tech
The document discusses Cisco's new UCS S3260 Storage Server. The S3260 allows for scaling storage capacity to petabytes within minutes using scale-out architecture. It offers 600TB of storage capacity in a 4U rack space. The S3260 supports various operating systems and can be configured with different drive options, I/O modules, and in single or dual node configurations for increased flexibility and performance.
Apcera reviews the good, bad and the amazing, based on feedback collected from 250+ early adopters, of emerging microservices platforms and best practices.
You can learn more about The Trusted Cloud Platform at: https://www.apcera.com/
This document discusses the Cisco Catalyst 6500 ASA Services Module, a new security blade for the Cisco Catalyst 6500 switch. It offers the best performance per blade in the industry and the fastest single chassis performance. Known as the ASASM, it provides firewall, IPS and VPN capabilities with throughput of up to 16Gbps and over 300,000 connections per second. It simplifies installation of security capabilities into the data center network and offers better price and performance than competing solutions.
This document discusses WAF architecture on AWS. It begins by explaining what a WAF is and why they are used, particularly to address common attacks like SQL injection and cross-site scripting. It then covers traditional WAF architectures and their problems before detailing the AWS recommended architecture of placing a WAF like AWS WAF in front of a load balancer or CloudFront distribution. It also compares traditional, cloud-hosted, and AWS WAF options in terms of meeting compliance standards, maintenance/automation, and pricing. The document concludes with a demo of AWS WAF rules and features.
The document discusses Cisco's UCS Invicta series, which brings flash memory into the UCS architecture to enable faster application deployment, execution, and workloads. The UCS Invicta series includes appliances and scaling systems that leverage flash memory and the Invicta OS to provide high performance storage. It can be managed by UCS Director as part of the overall UCS management platform to deliver unified, automated management of compute, network, storage and applications.
Accelerating incident response in organizations of any sizeCisco Canada
The document discusses accelerating incident response in organizations of any size. It describes how a typical incident response workflow involves investigating incidents, recovering from incidents, improving defenses, and reducing the attack surface. The document then outlines Cisco's security architecture and technologies that can help accelerate each step of the incident response process by providing recorded network history, continuous analysis of that history for automated hunting, and integrated threat intelligence across email, web, firewalls, and endpoints to more quickly block, investigate and respond to incidents.
Kentaro Takeda and Kensuke Ishizu of NTT DATA presented on common misunderstandings enterprises have about OpenStack and how it differs from traditional infrastructure models. They explained that OpenStack is software for building infrastructure as a service (IaaS) and outlined key differences between IaaS and traditional server consolidation approaches. Specifically, IaaS follows a "cattle not pets" approach where infrastructure resources are treated as interchangeable and provisioned on-demand, unlike dedicated server silos. The presentation provided examples of how enterprises sometimes try to use OpenStack in ways that don't align with its IaaS model, resulting in projects deemed "Korejanai" or "not it".
Elastic - From 50 to 270, how to scale a distributed engineering teamSylvain Wallez
Video (in french) at https://youtu.be/rrlPhedNjbA
Elastic, who develops the popular Elasticsearch, Kibana, Logstash and Beats open source tools, is a "remote first" company. This presentation explains how our distributed software engineering team of 270 people works, and the culture behind it.
The document provides information about upcoming presentations for the Brisbane Azure User Group (BAUG) meeting in April 2021. It will feature a presentation by Robert Crane on "All About Azure Sentinel". The document also includes brief summaries of recent Azure product announcements and updates such as Azure Defender for Storage, new HBv3 virtual machines, Oracle WebLogic Server on Azure VMs, Azure Orbital ground stations, and Cloud Services migration tools. Sponsors and links to the BAUG Slack team and YouTube channel are also mentioned.
Apcera: Agility and Security in Docker DeliveryApcera
Post Dockercon 2015 Technical Talk on Agility and Security in Docker Delivery
You can learn more about The Trusted Cloud Platform at: https://www.apcera.com/
Router Defense is a Cisco IOS security assessment tool that reads Cisco IOS configurations and analyzes them with a security mindset. It tests configurations across management, control, and data planes and outputs results in several formats including HTML, CSV and PDF. The tool performs 138 different security tests and provides CVSS scoring. It is written in Python and contains over 9,000 lines of code. The tool is available on Google Code and analyzes enterprise and service provider networks running IPv4, IPv6 and MPLS on both Cisco routers and switches.
10G/40G gen to 25G/100G gen, and go forward (HPVI community meetup)Takao Setaka
The document discusses high-performance virtual infrastructure and networking technologies including 10/25/40/100G Ethernet, dual-rate 40/100G transceivers, QSFP-DD 400G interfaces, Cisco's CloudScale ASIC, and the Cisco Nexus 9300-FX2 series switches. Key topics covered are network interface standards, transceiver and cable technologies, the CloudScale ASIC capabilities like flexible forwarding, telemetry, and MACsec encryption, and the Nexus 9300-FX2 switch models.
Cloud Ubuntu Open Stack, Juju, MaaS - Ua Deck Nov 2013The World Bank
Canonical is the company behind Ubuntu and offers Ubuntu, Juju, MAAS, and Landscape to deploy OpenStack clouds. Ubuntu is the most popular Linux on public clouds and is used by 9 out of 10 OpenStack clouds. Canonical provides automated tools, long term support, and professional services to help customers deploy and manage scalable OpenStack clouds on Ubuntu.
The document discusses Cisco's new ASA 5500-X series of next-generation firewall and IPS platforms. It provides an overview of the new hardware architectures, including multi-core CPUs, larger memory capacities, and integrated IPS acceleration. It also summarizes the key features and specifications of the new ASA 5512-X, 5515-X, 5525-X, 5545-X, and 5555-X models, and compares their performance to previous generation ASA appliances. The document is intended to help customers understand the new mid-range product portfolio from Cisco.
This document discusses Azure Key Vault, which allows centralizing application secrets and securing storage of keys and secrets. It can simplify administration by centralizing configurations and allowing monitoring of access and usage. The document demonstrates how to create an Azure Key Vault and connect to it from Visual Studio using managed identities. It also discusses how Azure Key Vault can integrate with app settings and be called externally with a token.
vRealize Operations (vROps) Management Pack for Cisco Nexus OverviewBlue Medora
The document discusses a management pack for Cisco Nexus switches that integrates them with VMware vRealize Operations. It provides out-of-the-box dashboards, alerts, recommendations, and reports for Cisco Nexus switches. It also automatically discovers relationships between Cisco Nexus switches and virtual machines to provide end-to-end visibility across the IT infrastructure.
Brian Murray presented on how FINEOS, an insurance software company, built a hosted offering on AWS to provide their traditionally on-premises software to customers in a cloud environment. Key requirements for the transition included data sovereignty, compliance, security, and high availability. FINEOS used AWS services like VPC, IAM, and RDS and built their own solutions around availability and security best practices like monitoring, automation, and regular backups. Ongoing challenges included maintaining skills in AWS, providing 24/7 support, automation, and keeping up with new AWS features.
BRKDCT-2445 Agile OpenStack Networking with Cisco Solutions - Cisco Live! US ...Rohit Agarwalla
One of the key areas of contributions from Cisco within OpenStack has been in the evolution and the development of the OpenStack Networking Service - Neutron. Using Neutron's Modular Layer 2 (ML2) plug-in and advanced services framework, Cisco has integrated products and solutions with the networking service to simplify the deployment of highly scalable, manageable and performant networks. Through this session we will cover and provide details of reference as well as the various OpenStack Neutron plugins/drivers for hardware and software Cisco products including the Nexus 1k/3k/5k/6k/7k/9k, UCS FI, CSR 1kv, ASR1K, CPNR and Application Policy Infrastructure Controller (APIC). The audience will also learn about Group Based Policy API in OpenStack that is based on the ACI Policy model. We will further discuss different OpenStack networking architecture, deployments and understand Cisco’s community code contribution that enable and support IPv6 and NFV related features in Neutron.
VMware Product Applicability Guide for NERC CIP v5 Final Version 1.0Anthony Dukes
This document summarizes VMware's software-defined data center (SDDC) products and their applicability to the North American Electric Reliability Corporation's Critical Infrastructure Protection Version 5 (NERC CIP v5) cybersecurity standards. It was produced by Coalfire, an independent cybersecurity audit firm, in conjunction with VMware. The document maps the NERC CIP v5 requirements to VMware's SDDC products such as VMware ESXi, VMware vCenter, VMware NSX, and VMware management and automation products. It finds that while the SDDC alone does not provide all required technologies for full compliance, it can be used along with third-party products and entity policies and
This document outlines Qualys' roadmap for its Web Application Scanning (WAS) product for the second half of 2013 and first half of 2014. Key planned enhancements include integrating malware detection and the ability to import scan results from Burp Suite scanning tools. Future releases will add features like a site map view, user-defined vulnerability definitions, and APIs. The goal is to transform WAS into a full web application testing solution.
RAC Troubleshooting and Diagnosability Sangam2016Sandesh Rao
The document discusses troubleshooting Oracle RAC in the private cloud. It provides an overview of Oracle Grid Infrastructure including the architectural components and processes. It then discusses common troubleshooting scenarios for cluster startup problems and provides a diagnostic flowchart. It also describes some of the key Grid Infrastructure processes like the cssd agent and monitor.
Webinar: Vulnerability Management leicht gemacht – mit Splunk und QualysGeorg Knon
This document discusses how Splunk and Qualys can be used together for vulnerability management. It provides an overview of Splunk and how it is used across IT and business operations, including for security use cases. It then discusses Qualys' vulnerability management and security solutions. The remainder consists of an agenda, demos of Qualys data in Splunk, and benefits of correlating Qualys and Splunk data for improved security posture monitoring and risk visibility.
This document discusses Qualys' strategy and roadmap for its Web Application Scanning (WAS) product. It outlines Qualys' approach to web app security which includes detection, protection, monitoring/forensics, and remediation. It provides details on current and upcoming WAS features like integrated malware detection, attack proxy integration, and sitemap implementation. The document also discusses how organizations can leverage WAS and how it compares favorably to competitors in areas like scale, cost, and providing a complete picture of web app security risks.
ICS Cybersecurity: How to Protect the Proprietary Cyber Assets That Hackers C...EnergySec
Presenter: David Zahn, PAS
Industrial control systems represent the brass ring for hackers who want to disrupt plant operations and negatively impact safety and productivity. The problem for cybersecurity professionals is that plants have highly vulnerable proprietary control systems where configuration data is not visible via standard WMI or SNMP calls. Yet, it is this same configuration data, such as I/O cards, firmware, installed software, and more, that hackers work hard to attain as it aids them in gaining control over industrial systems within plants.
As the saying goes, “you can’t manage what you can’t measure.” Taking inventory of this hidden configuration data and doing so for all control assets is difficult. Plants as a result fall short of achieving centralized, automated inventory – a cybersecurity best practice and a necessary precursor to effective change management. So how do you address change management when important security data is kept locked within each vendor’s distributed control systems, programmable logic controllers, and remote terminal units?
In this session, we’ll explore the types of inventory data that comprise a best practices cyber security plan. Next, we will dive into cost effective, accurate automation opportunities for inventory discovery and maintenance of heterogeneous proprietary and non-proprietary control assets. Finally, we’ll present a case study for implementing best practices for hardening ICS cyber security and automating management of change.
Agenda:
Building and Maintaining an Accurate ICS Inventory
Best Practices in Inventory Automation
Case Study
Tripwire IP360 Vulnerability Management Scanning Best PracticesTripwire
The document discusses a cybersecurity breach at a major airline. Hackers were able to access customer loyalty programs of the airline and obtain personal details of frequent flyers. The airline did not detect the breach for months, and experts say the hackers likely obtained the data by exploiting vulnerabilities in the airline's online systems.
Lessons Learned For NERC CIPv5 Compliance & Configuration Change ManagementEnergySec
The NERC CIPv5 deadline is fast approaching, and it’s not too late to be prepared. Join Mark Prince, Manager Operational Technology Fossil, from Entergy, Karl Perman, VP Member Services from EnergySec and Tim Erlin, Director from Tripwire to discuss achieving and maintaining NERC CIPv5 compliance in a fossil generation plant. We’ll cover some of the challenges that Entergy has experienced in their NERC CIPv5 compliance journey. Specifically, we will discuss configuration change management and how to leverage technologies for these requirements and consider what life would be without them.
This document discusses risk assessments and managing third-party risk. It provides an overview of Optiv, a security consulting firm, and their services including risk management, security operations, and security technology. It then covers topics like the evolution of the CISO role, enterprise risk management, assessing assets, threats, vulnerabilities, and controls. The document provides methods for evaluating risk like the risk equation and risk register. It also discusses managing risk from third parties and cloud providers through due diligence and risk tiers based on the relationship and inherent risks.
Industrial Control System Cyber Security and the Employment of Industrial Fir...Schneider Electric
This presentation provides an overview of industrial control systems and typical system topologies, identifies typical threats and vulnerabilities to these systems, and provides recommended security countermeasures to mitigate the risks.
Many organizations are exerting top-down pressure to examine cloud and as-a-service models in general. To the IT managers and administrators in the data center, losing control of your data and/or applications can be a scary thing. There is also a complex web of fiscal and technical items that must be considered.
In this presentation, we will help you build a base understanding of the three core as-a-service models. We will then go on to discuss what we see working with our customers in the real world; these are opportunities that can offload some of the drudgery in your data center, while at the same time demonstrating to your organization that you are embracing the cloud. This presentation provides an in depth discussion surround the pros and cons of moving applications, and or infrastructure over to cloud and managed services.
This document summarizes Cisco's Internet of Things (IoT) solutions and strategy. It notes that IoT adoption is growing rapidly, with 50 billion smart devices projected by 2020. Cisco's IoT system provides an integrated architecture to connect devices, aggregate and analyze data, and deliver business outcomes across industries like manufacturing, transportation, utilities and more. The system includes components for edge computing, security, analytics and application enablement to help customers build customized IoT solutions. Cisco is working with partners to develop its IoT portfolio and address the complex challenges of IoT projects.
The document discusses DevOps practices like continuous integration (CI) and continuous delivery/deployment (CD). It explains that DevOps aims to improve software development and operations by increasing automation, reducing deployment times, and enabling more frequent and safer software releases. CI principles include automating builds, testing, and deployments. CD builds on CI by further automating the software release process and reducing risks of major releases.
OpenStack in Action! 5 - Dell - OpenStack powered solutions - Patrick HamoneNovance
This document discusses Dell/Intel OpenStack-powered solutions and provides the following key points:
1) OpenStack is an open-source cloud operating system that is growing rapidly in adoption with over 10,000 individual members and contributors from over 70 countries.
2) Dell offers OpenStack reference architectures, hardware, software, services, and support to help customers accelerate their adoption of private and hybrid cloud solutions based on OpenStack.
3) Case studies show how Dell OpenStack solutions have helped customers like a research university and web hosting provider build scalable, cost-effective private clouds to meet their infrastructure and data storage needs.
How APIs are Transforming Cisco Solutions and Catalyzing an Innovation EcosystemCisco DevNet
This document discusses how APIs are transforming Cisco solutions and catalyzing an innovation ecosystem. It outlines Cisco's DevNet strategy of making the developer the customer and accelerating market opportunities through a vibrant developer ecosystem built on programmable platforms and APIs. It describes how network programmability, APIs, cloudification, new applications and experiences, developer tools, and open source collaboration are driving network innovation and helping developers build solutions.
This document provides an overview of digital transformation and what it means from SUSE's perspective. It discusses how SUSE helps customers meet the challenges of digital transformation through open source solutions. Key points include:
- SUSE offers enterprise-quality open source solutions like SUSE Linux Enterprise, SUSE OpenStack Cloud, SUSE Enterprise Storage, and their new Container as a Service platform to provide affordable and flexible infrastructure.
- Their approach focuses on open source, automation, orchestration, and management to deliver software-defined infrastructure and help customers gain agility.
- Upcoming products include Cloud Foundry as a platform as a service to further help customers with application delivery and digital transformation initiatives around areas like cloud, containers
1) The OpenStack Icehouse release focused on improving operator-driven updates, integrated release efficiency at scale, and tighter platform integration.
2) Key features included rolling upgrades with no downtime, consistent experience across drivers through rigorous testing, and allowing users to access public and private clouds with a single identity.
3) The number of OpenStack contributors grew by 32% for Icehouse, with over 350 new features added while focusing on testing, maturity and stability.
Enabling Fast IT using Containers, Microservices and DAVROS models: an overviewCisco DevNet
A session in the DevNet Zone at Cisco Live, Berlin. As IT strives to become Fast IT, application architectures are undergoing fundamental disruption to enable faster development to deployment lifecycles. As part of this trend, the number of applications being created using microservices architectures and container technologies like Docker is exploding. This new "cloud native" framework makes deployments on-prem or public cloud seamless. In this session, we will look at these evolving trends and how several open source technologies have converged to provide enterprises the ability to innovate at unprecedented levels.
OpenStack is an open source cloud computing platform that provides software for building private and public clouds. It is made up of a global community of developers and technology vendors who collaborate to create innovative cloud infrastructure software. OpenStack aims to change IT by becoming the platform that powers every datacenter, server, network device, and storage system. It has a large and growing user footprint across many industries and use cases. The OpenStack Foundation was created to provide a permanent home for OpenStack and support its continued success and growth.
This document discusses innovation with open source tools and application modernization. It begins by outlining the challenges of cloud migration versus modernization. It then covers how applications have shifted from monolithic to microservices architectures using containers and Kubernetes. Various scenarios for containerization and app modernization are presented, including lift-and-shift, microservices, machine learning, and serverless architectures. Microsoft Azure tools that can help with containerization, Kubernetes management, DevOps, and app modernization are also described. The document emphasizes that open source tools and containers allow developers to innovate faster while Azure services provide security, management and governance.
The Environment for Innovation: Tristan Goode, AptiraOpenStack
The document discusses OpenStack, an open source cloud computing platform. It provides statistics on OpenStack's large ecosystem of 644 members, 132 sponsors, and 482 supporters, as well as over 57,000 community members. While many vendors and customers are adopting OpenStack, the document notes that neither are fully prepared for it technically or culturally. It then discusses Aptira, a leading OpenStack consulting firm, and some of their work delivering OpenStack solutions and assisting customers and vendors. In the end, it encourages organizations to commit to software defined solutions and build an innovation platform using OpenStack.
Are you facing some, or all, of these challenges?
-Host Mobility (w/o stretching VLANs)
-Network Segmentation (w/o implementing MPLS)
-Roles-based Access Control (w/o end-to-end TrustSec)
-Common Policy for Wired and Wireless (w/o multiple tools)
Using Cisco technologies already available today, you can overcome these challenges and build an evolved Campus network to better meet your business objectives.
Today, it is critical that IT teams are able to easily, consistently deploy to production. Running Docker containers on Amazon Web Services makes it possible to engineer a compliant and DevOps-friendly environment from the ground up. Spring Venture Group successfully migrated to AWS with Docker containers and leveraged Logicworks to migrate to AWS and automate infrastructure build-out and deployment. Join our webinar to learn how Spring Venture Group, an innovative insurance brokerage, reduced risk and improved deployment velocity with Logicworks, AWS, and Docker.
Docker Enterprise Edition Overview by Steven Thwaites, Technical Solutions En...Ashnikbiz
This was presented by Steven Thwaites, Technical Solutions Engineer at Docker at Cloud Expo Asia. Docker is the only Containers-as-a-Service platform for IT that manages and secures diverse applications across disparate infrastructure, both on-premises and in the cloud. It covers topics like:
VMs vs Containers
The Docker Ecosystem
How to Build and Ship your Docker Image
Unique Advantages with Docker EE and more
Enabling Fast IT using Containers, Microservices and DevOps ModelCisco DevNet
This document discusses enabling fast IT using containers, microservices, and DevOps models. It provides an overview of containers and their ecosystem, use cases, and adoption trends. It then describes Contiv, an open source project that provides policy-based networking and storage for containerized applications. It discusses challenges around fast IT adoption and different consumption models. Finally, it concludes that containers will disrupt traditional virtualization and that Contiv provides tools to maintain policies in container infrastructure while embracing fast IT.
[OpenInfra Days Vietnam 2019] Innovation with open sources and app modernizat...Ian Choi
This document discusses innovation and application modernization using open source tools like Kubernetes and containers. It begins by outlining the challenges of migrating applications to the cloud and describes different approaches from simply redeploying applications to fully rearchitecting them. It then discusses how open source tools like Kubernetes and containers can help with application modernization approaches like lift and shift, microservices, machine learning, and IoT solutions. Specific capabilities and scenarios are provided for each along with examples. The document closes by discussing Microsoft's contributions to open source projects in the Kubernetes and container ecosystem.
inQuba Webinar Mastering Customer Journey Management with Dr Graham HillLizaNolte
HERE IS YOUR WEBINAR CONTENT! 'Mastering Customer Journey Management with Dr. Graham Hill'. We hope you find the webinar recording both insightful and enjoyable.
In this webinar, we explored essential aspects of Customer Journey Management and personalization. Here’s a summary of the key insights and topics discussed:
Key Takeaways:
Understanding the Customer Journey: Dr. Hill emphasized the importance of mapping and understanding the complete customer journey to identify touchpoints and opportunities for improvement.
Personalization Strategies: We discussed how to leverage data and insights to create personalized experiences that resonate with customers.
Technology Integration: Insights were shared on how inQuba’s advanced technology can streamline customer interactions and drive operational efficiency.
The Microsoft 365 Migration Tutorial For Beginner.pptxoperationspcvita
This presentation will help you understand the power of Microsoft 365. However, we have mentioned every productivity app included in Office 365. Additionally, we have suggested the migration situation related to Office 365 and how we can help you.
You can also read: https://www.systoolsgroup.com/updates/office-365-tenant-to-tenant-migration-step-by-step-complete-guide/
AI in the Workplace Reskilling, Upskilling, and Future Work.pptxSunil Jagani
Discover how AI is transforming the workplace and learn strategies for reskilling and upskilling employees to stay ahead. This comprehensive guide covers the impact of AI on jobs, essential skills for the future, and successful case studies from industry leaders. Embrace AI-driven changes, foster continuous learning, and build a future-ready workforce.
Read More - https://bit.ly/3VKly70
"Frontline Battles with DDoS: Best practices and Lessons Learned", Igor IvaniukFwdays
At this talk we will discuss DDoS protection tools and best practices, discuss network architectures and what AWS has to offer. Also, we will look into one of the largest DDoS attacks on Ukrainian infrastructure that happened in February 2022. We'll see, what techniques helped to keep the web resources available for Ukrainians and how AWS improved DDoS protection for all customers based on Ukraine experience
"NATO Hackathon Winner: AI-Powered Drug Search", Taras KlobaFwdays
This is a session that details how PostgreSQL's features and Azure AI Services can be effectively used to significantly enhance the search functionality in any application.
In this session, we'll share insights on how we used PostgreSQL to facilitate precise searches across multiple fields in our mobile application. The techniques include using LIKE and ILIKE operators and integrating a trigram-based search to handle potential misspellings, thereby increasing the search accuracy.
We'll also discuss how the azure_ai extension on PostgreSQL databases in Azure and Azure AI Services were utilized to create vectors from user input, a feature beneficial when users wish to find specific items based on text prompts. While our application's case study involves a drug search, the techniques and principles shared in this session can be adapted to improve search functionality in a wide range of applications. Join us to learn how PostgreSQL and Azure AI can be harnessed to enhance your application's search capability.
"What does it really mean for your system to be available, or how to define w...Fwdays
We will talk about system monitoring from a few different angles. We will start by covering the basics, then discuss SLOs, how to define them, and why understanding the business well is crucial for success in this exercise.
What is an RPA CoE? Session 2 – CoE RolesDianaGray10
In this session, we will review the players involved in the CoE and how each role impacts opportunities.
Topics covered:
• What roles are essential?
• What place in the automation journey does each role play?
Speaker:
Chris Bolin, Senior Intelligent Automation Architect Anika Systems
Northern Engraving | Nameplate Manufacturing Process - 2024Northern Engraving
Manufacturing custom quality metal nameplates and badges involves several standard operations. Processes include sheet prep, lithography, screening, coating, punch press and inspection. All decoration is completed in the flat sheet with adhesive and tooling operations following. The possibilities for creating unique durable nameplates are endless. How will you create your brand identity? We can help!
From Natural Language to Structured Solr Queries using LLMsSease
This talk draws on experimentation to enable AI applications with Solr. One important use case is to use AI for better accessibility and discoverability of the data: while User eXperience techniques, lexical search improvements, and data harmonization can take organizations to a good level of accessibility, a structural (or “cognitive” gap) remains between the data user needs and the data producer constraints.
That is where AI – and most importantly, Natural Language Processing and Large Language Model techniques – could make a difference. This natural language, conversational engine could facilitate access and usage of the data leveraging the semantics of any data source.
The objective of the presentation is to propose a technical approach and a way forward to achieve this goal.
The key concept is to enable users to express their search queries in natural language, which the LLM then enriches, interprets, and translates into structured queries based on the Solr index’s metadata.
This approach leverages the LLM’s ability to understand the nuances of natural language and the structure of documents within Apache Solr.
The LLM acts as an intermediary agent, offering a transparent experience to users automatically and potentially uncovering relevant documents that conventional search methods might overlook. The presentation will include the results of this experimental work, lessons learned, best practices, and the scope of future work that should improve the approach and make it production-ready.
"Choosing proper type of scaling", Olena SyrotaFwdays
Imagine an IoT processing system that is already quite mature and production-ready and for which client coverage is growing and scaling and performance aspects are life and death questions. The system has Redis, MongoDB, and stream processing based on ksqldb. In this talk, firstly, we will analyze scaling approaches and then select the proper ones for our system.
Lee Barnes - Path to Becoming an Effective Test Automation Engineer.pdfleebarnesutopia
So… you want to become a Test Automation Engineer (or hire and develop one)? While there’s quite a bit of information available about important technical and tool skills to master, there’s not enough discussion around the path to becoming an effective Test Automation Engineer that knows how to add VALUE. In my experience this had led to a proliferation of engineers who are proficient with tools and building frameworks but have skill and knowledge gaps, especially in software testing, that reduce the value they deliver with test automation.
In this talk, Lee will share his lessons learned from over 30 years of working with, and mentoring, hundreds of Test Automation Engineers. Whether you’re looking to get started in test automation or just want to improve your trade, this talk will give you a solid foundation and roadmap for ensuring your test automation efforts continuously add value. This talk is equally valuable for both aspiring Test Automation Engineers and those managing them! All attendees will take away a set of key foundational knowledge and a high-level learning path for leveling up test automation skills and ensuring they add value to their organizations.
Conversational agents, or chatbots, are increasingly used to access all sorts of services using natural language. While open-domain chatbots - like ChatGPT - can converse on any topic, task-oriented chatbots - the focus of this paper - are designed for specific tasks, like booking a flight, obtaining customer support, or setting an appointment. Like any other software, task-oriented chatbots need to be properly tested, usually by defining and executing test scenarios (i.e., sequences of user-chatbot interactions). However, there is currently a lack of methods to quantify the completeness and strength of such test scenarios, which can lead to low-quality tests, and hence to buggy chatbots.
To fill this gap, we propose adapting mutation testing (MuT) for task-oriented chatbots. To this end, we introduce a set of mutation operators that emulate faults in chatbot designs, an architecture that enables MuT on chatbots built using heterogeneous technologies, and a practical realisation as an Eclipse plugin. Moreover, we evaluate the applicability, effectiveness and efficiency of our approach on open-source chatbots, with promising results.
The Department of Veteran Affairs (VA) invited Taylor Paschal, Knowledge & Information Management Consultant at Enterprise Knowledge, to speak at a Knowledge Management Lunch and Learn hosted on June 12, 2024. All Office of Administration staff were invited to attend and received professional development credit for participating in the voluntary event.
The objectives of the Lunch and Learn presentation were to:
- Review what KM ‘is’ and ‘isn’t’
- Understand the value of KM and the benefits of engaging
- Define and reflect on your “what’s in it for me?”
- Share actionable ways you can participate in Knowledge - - Capture & Transfer
Dandelion Hashtable: beyond billion requests per second on a commodity serverAntonios Katsarakis
This slide deck presents DLHT, a concurrent in-memory hashtable. Despite efforts to optimize hashtables, that go as far as sacrificing core functionality, state-of-the-art designs still incur multiple memory accesses per request and block request processing in three cases. First, most hashtables block while waiting for data to be retrieved from memory. Second, open-addressing designs, which represent the current state-of-the-art, either cannot free index slots on deletes or must block all requests to do so. Third, index resizes block every request until all objects are copied to the new index. Defying folklore wisdom, DLHT forgoes open-addressing and adopts a fully-featured and memory-aware closed-addressing design based on bounded cache-line-chaining. This design offers lock-free index operations and deletes that free slots instantly, (2) completes most requests with a single memory access, (3) utilizes software prefetching to hide memory latencies, and (4) employs a novel non-blocking and parallel resizing. In a commodity server and a memory-resident workload, DLHT surpasses 1.6B requests per second and provides 3.5x (12x) the throughput of the state-of-the-art closed-addressing (open-addressing) resizable hashtable on Gets (Deletes).
Introducing BoxLang : A new JVM language for productivity and modularity!Ortus Solutions, Corp
Just like life, our code must adapt to the ever changing world we live in. From one day coding for the web, to the next for our tablets or APIs or for running serverless applications. Multi-runtime development is the future of coding, the future is to be dynamic. Let us introduce you to BoxLang.
Dynamic. Modular. Productive.
BoxLang redefines development with its dynamic nature, empowering developers to craft expressive and functional code effortlessly. Its modular architecture prioritizes flexibility, allowing for seamless integration into existing ecosystems.
Interoperability at its Core
With 100% interoperability with Java, BoxLang seamlessly bridges the gap between traditional and modern development paradigms, unlocking new possibilities for innovation and collaboration.
Multi-Runtime
From the tiny 2m operating system binary to running on our pure Java web server, CommandBox, Jakarta EE, AWS Lambda, Microsoft Functions, Web Assembly, Android and more. BoxLang has been designed to enhance and adapt according to it's runnable runtime.
The Fusion of Modernity and Tradition
Experience the fusion of modern features inspired by CFML, Node, Ruby, Kotlin, Java, and Clojure, combined with the familiarity of Java bytecode compilation, making BoxLang a language of choice for forward-thinking developers.
Empowering Transition with Transpiler Support
Transitioning from CFML to BoxLang is seamless with our JIT transpiler, facilitating smooth migration and preserving existing code investments.
Unlocking Creativity with IDE Tools
Unleash your creativity with powerful IDE tools tailored for BoxLang, providing an intuitive development experience and streamlining your workflow. Join us as we embark on a journey to redefine JVM development. Welcome to the era of BoxLang.
ScyllaDB is making a major architecture shift. We’re moving from vNode replication to tablets – fragments of tables that are distributed independently, enabling dynamic data distribution and extreme elasticity. In this keynote, ScyllaDB co-founder and CTO Avi Kivity explains the reason for this shift, provides a look at the implementation and roadmap, and shares how this shift benefits ScyllaDB users.
2. 71% of IT teams can’t meet
demands for new applications
Need for new tools, frameworks, and
best practices needed to quickly build
new applications and services
IT is now the broker of services
Elastic, on-demand resources that
break infrastructure and vendor silos
Continuous Integration
Continuous Deployment
Today: Innovate or Become Irrelevant
3. A world of many clouds and applications that need to
Connect
Communicate
Share Workloads
…just like Cisco enabled for IP
In the future there will be…
Tomorrow: It Will Take a Community
5. • Innovation, not cost
savings, is the number
one business driver
• Innovative customers
choose Cisco, not
commodity vendors
Ability to Innovate
47%*
• Almost 50% of customers
polled have OpenStack
running in production
• Private (53%), Public
(40%), Hybrid (7%)
46%*
Production
• Most common is Web
services, at 57%
• High usage of Database
and Enterprise Apps
• Not just development
• Used for business critical,
customer-facing Apps
Mission Critical Applications
57%*
* Source: Openstack.org community poll, November 2014
OpenStack is Ready
6. Cisco OpenStack Strategy
For Data Center and Cloud Solutions
Relevant, large
contributions to
open source
code
10110101 1001010110
101010101010
Improve
OpenStack
with
supplemental
functionality
Drive
OpenStack
innovation
into Cisco
products
Multi-vendor
components,
Support all
leading
Distributions
Build world-
class global
Cisco Cloud
Services
Programs for
every OpenStack
deployment
model
Open Innovation Success
7. Cisco OpenStack Contribution!
#1
Contributor to
Juno in Neutron
Top 6
Total Reviews
In Juno
Vice
Chair
44
completed
Juno
blueprints
98
Engineers
Contributed
to Kilo
165
resolved
Juno bugs
Top 5
In OpenStack
Member
565
Kilo
commits
#2
Kilo Neutron
Blueprints
Top 5
In Neutron
Kilo Commits
Source: www.stackalytics.com
Note:; Stackalytics metrics change daily
Stats as of June 4, 2015
8. All Major OpenStack Distributions
SUSE
Cloud
Ubuntu
OpenStack
Planning Design End-to-End Validation Documentation
Unit
Feature
Integration
System
Customer
OpenStack
Platform
Deploy with confidence and full Cisco Support!
9. Cisco Approach to OpenStack
Fill gaps for customers, contribute code, work closely with community
Easy Secure Reliable
• Fast simple install
• Cisco Validated
Designs
• Group Based
Policies
• Cisco FWaaS
• Cisco VPNaaS
• Encryption
• Group Based
Policies
• Application Mobility
• Load Sharing
• Service Redundancy
• Node Redundancy
• Rich Plugin Offering
that is open source
compatible
• Any HW Any App
• Cisco Better Together
Advantages
Complete
A+
10. Product Innovation Built on OpenStack
UCS for OpenStack
Optimized OpenStack
Computing
Rich OpenStack Plugins
Plugins optimizing a
range of virtual and
physical infrastructure
from Cisco
Nexus Networking
Network behavior
driven by application
intent/policies
• Application Centric
Infrastructure (ACI)
• Group Based Policy
11. OpenStack Neutron Plug-In Architecture
vNetworking
VM/APP
Single Source of Physical and Virtual
Management Across Cloud
UCS
Nexus
ASR
APIC
Management
Neutron Core
Plugins
Cisco(Nexus,
N1Kv)
OVS
Morevendor
plugins
Neutron Service
Plugins
LoadBalancer
Firewall
VPN
HAProxy
IPTables
OpenSwan
L3ServicesFutures
Type Drivers Mechanism Drivers
VLAN
GRE
VXLAN
Nexus
OVS
OpenDayLight
APIC
Morevendor
drivers
Neutron Plugin Architecture
ML2
13. Unified Computing System with OpenStack
Unified Computing System
ACI- GBP
Bringing It All Together - Tested - Full Support - Simple Packaging – Easy Install
14. Cisco: We Build, Manage, and Use OpenStack
Cisco Cloud
Services
Cisco OpenStack
Private Cloud
Cloud
VPN
Cloud DVR,
Videoscape
XaaS
Intercloud
Fabric
Cisco Spark
collaboration
16. Consume OpenStack Your Way
Cisco OpenStack
Private Cloud
Solution Validation
Services
Cisco Intercloud
Services
XaaS
Let Cisco manage your
on-premise OpenStack
private cloud
Have Cisco experts
validate your private
OpenStack deployment
Augment your cloud with
OpenStack-based services
from the Intercloud
17. Public
internet
Cisco OpenStack Private Cloud
A Public Cloud Experience in a Private Environment
Full admin control and
monitoring via COPC
custom dashboard
or APIs and CLI
Transparent upgrades
to new OpenStack
features with full
support
On-demand provisioning
of redundant, vendor-
agnostic compute,
network and storage
Developers
self-provision
compute,network, and
storage resources –
similar to AWS
CustomerCOPC
COPC
firewall
Customer
firewall
18. Cisco Solution Validation Services
Requirement
Evaluation and
Architecture
Deployment
Ongoing
Monitoring
and
Validation
End-to-End
Validation
Systems
Integration
and Design
19. Together with Our Partners
Building the Intercloud to deliver Cisco Cloud Services
Enterprise
Private CloudsPublic
Clouds
Intercloud
Partners
Energy Management
Cisco
Intercloud
via Intercloud Fabric
Cisco Cloud
Services Partners
Cloud Intercloud
Services and
Applications
Analytics
WebEx
Security
IaaS/PaaS
Mobility
IoT
Integration Platform
Collaboration
Big Data
HCS
IaaS
PaaS
Microsoft
Suite aaS
Workloads Native Cloud Applications
20. Relevant, large contributions to open source code
OpenStack
solution
innovation
Vendor
agnostic
Drive innovation into Cisco products
Build WORLD-CLASS global
Cisco Cloud Services
Programs that enable
success for every deployment model
71% of IT teams can’t meet demands for new applications
New tools, frameworks, and best practices needed to quickly build new applications and services
Elastic, on-demand resources that break infrastructure and vendor silos are the answer
IT is now the broker of services
In the future, we will be a world of many clouds and applications that we will need to Connect, Communicate and move workloads…
…and we will do this with a community based solution, just like we did with IP
What is Bi-modal IT?
The term comes from the Gartner group and it is a situation in which companies operate two distinctly different forms of IT.
Traditional and Agile. Agility being defined as a flexible, cloudy platform designed for scale out.
So what do we see when we look in the at the two areas.
On the left we see traditional infrastructure, steady, stateful and chugging along.
On the right we see a large and diverse set of applications that are immediately identifiable.
Applications that users demand and drive opportunities for organizations today:
Game changers
Household names
Applications that need continuous integration and deployment
Applications that need to remain agile to continue to lead their respective industries
What has emerged to be the foundation for the kind of IT on the right is OpenStack.
Many of us in the community see the OpenStack’s enormous potential.
But as with all great ideas, we must decide when it is ready for us.
When can we trust it.
…and the results at the latest OpenStack Summit are clear.
OpenStack is Ready!
OpenStack is being deployed in production…
…and it is being deployed on mission critical Web, Database and Enterprise Apps.
But last, one of the most repeated comments we hear are people talk about for OpenStack, is the value of an Open Source SW in that it frees everyone from vendor lock in.
However, when IT professionals and App developers were polled, the number one reason for moving to OpenStack was the ability to innovate.
…and this is why you pick Cisco…so let’s talk about what we are doing at Cisco will enable that innovation.
SOURCE: Openstack.org
The Cisco OpenStack Strategy rests on three main customer needs
<click>
Openness
Innovation
Enabling Customer Success
<click>
We then divide this down into six main pillars
First off, you cannot say you are doing OpenStack unless you are already doing OpenStack!
Cisco HAS…and WILL continue to make large scale contributions to the OpenStack trunk in both development and testing.
In addition we will also be participating in other Open Source communities that influence the cloud such as OpenDaylight.
<click>
Second, Make sure it is vendor agnostic. We realize that the underlying OS choice influences the OpenStack distribution choice, therefore we will support all of the leading distributions and thus drive both SW and HW Openness
<click>
Third, just like we did with IP, where OpenStack lags customer needs, are making it easier to install, more secure and more reliable. A good example of this is what we did with HSRP, EIGRP, VLAN Tags etc. These were real customer needs that we brought to market, first as Cisco and then as standards.
<click>
Next, we will drive OpenStack into our products and solutions, such as Nexus and Unified Computing and Aggregation Service Routers
<click>
Next, we are putting our money where our mouth is, we are building IaaS, PaaS and SaaS clouds out of the very same infrastructure components and services we are selling you today.
<click>
Last, whether you plan on building and managing your OpenStack cloud completely on your own, using Cloud management as a service or connecting to cloud apps, we have a Services and Solution program to enable your success.
So for point 1 on the 6 part plan we are aggressively engaging the OpenStack community
/* Just read the bullets and point out that these are stats for the Juno distribution */
/* These will change from release to release */
One of the key contributing factors to OpenStack’s popularity is its openness and vendor interchangeability.
In that spirit, Cisco is truly hypervisor, and therefore, vendor agnostic.
In fact we have Cisco Validated Design documents, known as CVDs, for the major hypervisor distributions, Redhat RHEL OSP, Canonical Ubuntu Openstack and Suse Cloud
CVDs are thoroughly designed and tested blueprints, complete with a list for bill of materials, network diagrams and configuration CLI for both Cisco gear and the OpenStack distribution.
Cisco CVDs carry you through Planning Design and Validation.
Open Standards can be great for everybody, but they aren’t known for rapid time to market.
In fact, new OpenStack releases only come out twice a year…and we have things we need to solve today.
Cisco \’s approach to OpenStack will be similar to how it was with IP and Ethernet.
Where the standard is lagging customer needs we will solve the problem and then upstream it to standards bodies like we have always done before for example
Hot Stand By Routing Protocols
Etherchannel
Power Over Ethernet
Some common asks are
“Make it easier to install”
“I need more comprehensive security”
“I need High Availability”
And
“I need OpenStack to make both my cloud Apps, Management Platform and Infrastructure to run better together”
<click>
Right now, we are developing a SW platform that runs with and compliments the existing OpensStack Services” to make it Easier, more Secure, Bombproof and do these things in every important area in the cloud.
We make it Easy
As great as it is the OpenStack Installation process can take a lot of time and require a great deal of expertise. We will…drastically reduce the amount of time and the number of operations it takes to bring an OpenStack presentation to life.
One will no longer need to wrestle with the applications, contorting them to network restrictions. We will implement group based policies with application centric definitions that dynamically reconfigure network resources as the add, move and change
We will clearly document and guide you through the design and installation with CVDs
With an Application Centric Infrastructure and Group Based Policies we implement a policy solution that unifies the application and the infrastructure (details later on in this deck)
We make it Secure
With Firewall as a service, VPN segmentation as a service and Encryption with reliable group based policy management
We make it more Reliable
We will support application mobility and there will never again be a single point of failure in your physical or virtual OpenStack network
We are designing for reliability, not for failure
We focus on Completeness
Supporting rich plug-in offering that not only controls virtual devices, but also physical devices in the Cloud including, UCS, Nexus and ASR1000 to name a few
We have three building blocks that drive OpenStack product Innovation.
We start with a wide range of OpenStack Plugins for switches, router,s v-switches and management platforms, to name a few.
Plugins offer a custom back-end implementation of an API.
A plug-in is used to control a variety of virtual and physical technologies to implement the logical API requests.
We use these plugins to enable what we call Cisco Application Centric Architecture or ACI, who’s main component is Application-based Group Based policies that define an application, where unlike traditional IT, the application policies drives network behavior, not the other way around.
Then we tie this all together with the Cisco Unified Computing System in the UCS OpenStack solution, which we will talk about shortly.
/* There is an explanation of the Plugin Architecture on the right is shown below should there be a need to explain it */
In the beginning much OpenStack centered on managing Virtual Machines, Applications and Virtual Networks
<click>
Today and in the last several OpenStack releases, customers are asking for more.
“I don’t just want to use OpenStack to manage my virtual network, I want to manage my entire cloud from Application to network”
So OpenStack has once again evolved, by updating the plugin architecture.
,click>
On the right we have the Neutron plugin and driver architecture.
The new Modular Layer 2 plugin with its many drivers
<click>
Gives us the capability to combine the virtual world and physical infrastructure into one cohesive cloud solution linking Application intent to the rentire cloud operation.
As we move forward we need to remember that APPLICATION IS KING, at the end the day what drives users expectations and drives our approval.
/* Plug in explanation below */
Why do we want to talk about the plugin architecture?
Well, I’ve found that there are a lot of the terms people get confused by, especially when they come to us and ask fro new enhancements.
First, The Neutron Plugins, used by the OpenStack Networking component, communicate upstream with Restful APIs an HTTP-based API.
There are two plugin types, those that define services, like security and Address Resolution,
and core Layer 2 networking functions.
In the past, these were only monolithic plugins, in that you could only run one and that was typically taken as one vSwitch, either OVS, LinuxBridge or the Nexus 1kv.
Now we have the Modular Layer 2 plugin, also known as ML2, for which Cisco was a major contributor.
With ML2 you can now run several networking mechanisms at once, whether it’s protocols as seen in Type drivers or other logical and physical devices as seen with Mechanism drivers.
ML2 with it’s multiple protocol and Mechanism drivers is what enables OpenStack to span the entire cloud.
In this next slide we are going to talk about ACI and group based policies….and how we use Applications to dive how the network works.
In the past, one would define a boatload of policies in the network and then attach the applications.
But when those applications move, the underlying network policies had to be changed.
This is both time consuming and prone to error.
Application is king and we needed application centered solution.
Cisco solved this with ACI and eventually moved these concepts to OpenSource with Group based Policies.
In the GBP model one can directly configures the application policy in OpenStack using Horizon or Heat.
ACI and GBP are a departure from the old model because Applications
<click>
Drive and control
<click>
The open cloud infrastructure continuously as applications are created, change and move.
/* More information below */
Application Centric Infrastructure (ACI) in the data center is a holistic architecture with centralized automation and policy-driven application profiles. So when the applications move, their so do their policies that auto-configing the network and preserve their service chains. ACI provides
Simplified automation by an application-driven policy model
Centralized visibility with real-time, application health monitoring
Open software flexibility for DevOps teams and ecosystem partner integration
Scalable performance and multi-tenancy
Cisco also created and implemented the Group Based Policy blueprint to further drive an ACI-like architecture into open source.
In the GBP model one can directly configures the application policy in OpenStack using Horizon or Heat.
The Application Policy Infrastructure Controller (APIC) offers a single point of automation and management for.
The Cisco APIC Driver for OpenStack, using Horizon, Heat or CLI allows customers to use existing OpenStack networking APIs, interfaces, and automation tools.
The Cisco APIC driver supports OpenStack Neutron APIs including, network, router, subnet, and security groups.
It also automates configuration of external networks and the creation and attachment of Neutron ports to virtual machines.
The Cisco APIC driver works as part of the Neutron Modular Layer 2 (ML2) plug-in architecture allowing multiple mechanism drivers to handle different portions of the network.
One final point to remember is that this is an Open Ecosystem.
As of February 2015, the Partner Ecosystem is comprised of 35 Partners including Checkpoint, Cloudera, Citrix, F5, Microsoft, Puppet, Redhat, and SAP.
OpenStack extensions on top of Neutron exposing a policy API
Supports policy API to APIC
Backwards compatible with existing neutron plug-ins (works with Nexus 9000 standalone)
Available for Openstack Juno
OpNative Drivers exist for OpenDaylight as well as multiple vendors (Cisco, Nuage Networks, and One Convergence)
<click> Next we integrated the OpenStack and Open Daylight application policy and control tat we spoke about on the previous slide
<click> And combine it with our partnership with Redhat
Everything is fully documented with Cisco Validated Designs and Supported by Cisco TAC.
In addition to 24x7 product support on Cisco and Red Hat components, customers will also have an option to purchase Solution Support, which will provide global, 24x7 access to a team of cross-trained experts.
At Cisco we are potting our money where our mouth is.
We are not just selling OpenStack and Cloud technologies, but we are building services, for our customers, using OpenStack.
We then take these user experiences, both positive and negative and drive new requirements back into the products and solutions.
To name just few of our OpenStack enabled offerings we have
Cisco Cloud Services, offering Infrastructure as a Service, Platform as a service, Software as a service and access to hundreds of Cisco and partner applications
Intercloud Fabric, The internet of clouds connecting the worlds major providers and Cisco partners
Intercloud Fabric allows you to acquire the added capacity you need and have a seamless demarcation between your internal and the external clouds.
You can also integrate your private cloud with clouds run by more than one service provider
And have consistent network and security policies across private and public clouds.
Cisco OpenStack Private, formerly Metacloud, provides a wide array of Cloud-based OpenStack management tools for your on-prem private cloud
CloudVPN offering with Security as a Service
Spark, also known as project squared for cloud based enterprise collaboration
Cloud DVR Cloud-based Digital Video recording system allowing subscribers the capability to record and playback live media over any network
Cisco Intercloud Services: Is Cisco’s Global OpenStack platform for Alliance Partners, built and managed by Cisco
Evolved Service Platform Strategy supporting the largest number of NFVs, Cisco Evolved Services Platform (ESP) is a comprehensive virtualization and orchestration software platform that creates, automates and provisions services in real time, across compute, storage and network functions, enabling the delivery of desired business outcomes for applications running across multiple domains facilitating the shift to new business models. It allows service providers to deliver prepackaged services from a flexible pool of resources that can be reused and personalized for each customer, automatically and on demand.
Leading NSO solution (tail-f acquisition) – Open and Multivendor Solution: provides a single network-wide interface to all network devices and all network applications and services, as well as a common modeling language and datastore for both services and devices. NSO acts as the interface to the network services for both human operators and business support systems, supporting both legacy and NFV/SDN/Cloud services.
Cisco OpenStack Private Cloud, formerly Metacloud, - Standardized Managed OpenStack as a Service Solution discussed in later slide
UCSO: integrated the OpenStack and Open Daylight application policy control:
Cisco Red Hat partnership.
Everything is fully documented with Cisco Validated Designs and Supported by Cisco TAC.
In addition to 24x7 product support on Cisco and Red Hat components, customers will also have an option to purchase Solution Support, which will provide global, 24x7 access to a team of cross-trained experts.
No matter how you decide to consume OpenStack, we have a service to help you be successful
Whether you build it yourself and use Cloud Management with Cisco OpenStack Private Cloud
Whether you want to build and manage you OpenStack cloud by yourself but just need a little help validating your solution
or even if you just want augment your cloud to consume services from the cloud
We can partner with you for your success
Cisco OpenStack Private Cloud delivers a true public cloud experience for users on your premises and behind your firewall.
It offers full administrative control.
Cisco OpenStack Private Cloud is a production-ready, OpenStack-based solution that we engineer, deploy, and remotely operate on your behalf, 24 hours a day, 365 days a year.
Cisco OpenStack Private Cloud is not a traditional OpenStack distribution
The COPC team of cloud experts monitors your environment 24 hours a day, and takes full responsibility for keeping it running all day, every day.
Every aspect of the orchestration and controller environment is redundant and built for high availability.
COPC is designed for an improved user experience, features, and functionality beyond what’s available in OpenStack Horizon.
COPC offers flexible options for Compute, Network and Storage.
And our world-class OpenStack engineering and operations teams have built it for stability, superior performance, and scale.
When deploying OpenStack you may want to own and manage everything by yourself.
However, OpenStack is still new to many and even the most robust application teams may need assistance for new deployment or migration.
That is why Cisco offers Solution Validation Services, SVS, that are there to help you for all phases of pre-deployment, deployment and post-deployment
/* Additional Detail Below*/
The offering begins with Requirement Evaluation and Architecture
1. Understanding customer requirements
2. Overview of possible technology solutions
3. Lab Proof of Concept to understand technologies
4. Architecture review
Systems Integration and Design
1. Leverage SVS Innovation Centers to test components of the architecture and use results to modify design as an iterative process
2. Creation of High Level and Low Level Designs to achieve customer requirements
3. Integration of 3rd party Devices / Software
End-to-End Validation
1. Validate end-to-end solution functionality, scale and resiliency
2. Validate solution meets design goals and requirements
3. Work through issues to resolutions
4. Produce SVS final design output
Deployment
1. Assist customer in taking design and lab results and translating them into an operational environment
2. Perform on-site validation of the solution to ensure what is deployed matches what was designed an validated in the lab
Ongoing Monitoring and Validation
1. Validate operational issues in the SVS Innovation Centers, find solutions, and re-validate new code versions before rolling out into the customer’s network
Last, we have Cisco Cloud Services, or CCS:
CCS offer as a broad portfolio of Cisco cloud applications and partner Cloud services that can help you quickly deploy and monetize your cloud offerings.
CCS combines computing, networking, and storage resources within the data center and Intercloud connected clouds.
Applications can be deployed on-premises, subscribed from public or private clouds, or implemented in a hybrid cloud model to give cloud service providers and enterprises more flexible deployment options.
We combine solutions with an industry-leading ecosystem of partners to offer integrated services-including collaboration, security, infrastructure as a service, Platform as a service, and video delivery-that are optimized and pretested cloud use.
This standardized partner architecture will also be available through all of our Intercloud partners for seamless workload portability to accelerate the network enabled App ecosystem.
Our combined services will be available to our Customers via the Intercloud Services Catalog.
Cisco is rapidly expanding its Intercloud partner ecosystem with the announcement of more than 45 new partners, including British Telecom, Deutsche Telekom, and Equinix. In sum, these partners bring more than 300 data centers across 50 countries to the Intercloud.
------List of many popular services below-----------------
Cisco Connected Analytics for Events
Cloud-based software subscription offering that delivers business and operational insight based on data and analytics from wireless networks installed in sports and entertainment venues.
Project Squared
Collaboration platform that provides virtual rooms to collaborate within and across teams
Squared UC
Cloud-based unified communication and collaboration software
Education As a Services
Extend Care Remote Expert
Patient Portal Service that consolidates entertainment, communications, and informational applications into a single view to improve the patient healthcare experience. Application has been developed by Cisco Software Solutions Factory.
ServiceGrid
Cisco ServiceGrid is an integration platform in the cloud that seamlessly connects organizations to enable real time multi-party support collaboration offered via a Software-as-a-Service (SaaS).
Cisco Integration Platform as a Service, Public Cloud Version
SaaS based Application integration platform that provides seamless integration of applications (SaaS and on-prem), people, process, data and infrastructure as well as provide API management to catalog, externalize and expose APIs
Business Process Management as a Service
Providing packaged business processes targeting specific customer verticals available as Software as a Service
Cisco Energy Management as a Service(EMaaS) ( previously EnergyWise Cloud )
"Software based service enabling the ability to See, Measure, and Manage the Energy Use of Your IT Infrastructure from the Cloud"
Cisco IOT PaaS
Cisco Internet of Things Platform as a Service is a software platform that simplifies and scales IoT application development and deployment. It provides a robust set of capabilities that allow for flexibility and customization for developers seeking the most simplified or most advanced development experience.
Connected Mobile Experience
Connected Mobile Experience offers analytics based on wifi, video & cellular signals. On-prem and hosted versions. An example would be hospital using CMX to better understand usage patterns of their WiFi service
Managed Mobility Experience Services
Compute, storage, and network bandwidth for instantiation of Cisco Mobility Experience solution hosted by Cisco. Provides hosted mobility context-aware and insights software solutions such as, but not limited to, CMX, EMSP, enterprise systems, and/or applications based on customer requirements.
Cisco Secure Ops Solution
Secure Ops allows you to implement your security and compliance policies in a standardized and automated way, across disparate sites globally. The service will simplify the processes required to audit, track, and report security mandates.
Managed Threat Defense
A fully outsourced, managed security service. It rapidly detects and responds to security events by analyzing your network traffic, evaluating security telemetry and using global intelligence. MTD takes ownership of the network security event lifecycle. It covers detection, confirmation, mitigation, and remediation.
So In summary, let’s review why we believe it’s Cisco for OpenStack.
First, Cisco has and will continue to make large scale contributions to the OpenStack trunk in both development and testing.
Second, just like we did with IP, where OpenStack lags customer needs, we will make it better.
Third, Make sure it is vendor agnostic. We realize that the underlying OS choice influences the OpenStack distribution solution, therefore we will support all of the leading distributions and thus drive both SW and HW Openness
Next, we will drive OpenStack into our products and solutions, such as Nexus and Unified Computing and Aggregation Service Routers
Next, we put our money where our mouth is, we are building IaaS, PaaS and SaaS clouds out of the very same infrastructure and services we are selling you today.
Last, whether you plan on building and managing your OpenStack cloud completely on your own, using Cloud management as a service or connecting to cloud apps, we have a Services and Solution program to enable your success.