Новая эра корпоративных сетей с Cisco Catalyst 9000 и другие инновации для маршрутизации и коммутации

The image part with relationship ID rId2 was not found in the ﬁle.
The image part with
relationship ID rId2
was not found in the
ﬁle.
Новая эра корпоративных сетей
с Cisco Catalyst 9000 и другие
инновации для маршрутизации
и коммутации.
Денис Коденцев
Инженер-консультант, CCIE

2
DNA Center
• Инновационное решение для внедрения и управления
корпоративной сетью и сетевыми сервисами
DNA Assurance & Analytics
• Анализ и проактивное обнаружение проблем
Software-Defined Access
• Универсальная сетевая фабрика с динамической
микросегментацией
Enhanced Network as a Sensor
• Обнаружение вредоносного ПО в зашифрованном
обмене (без расшифровки)
Коммутаторы Catalyst 9000
• Первые специально созданные в рамках DNA коммутаторы
Лицензирование с поддержкой подписки | Дополнительные сервисы от Cisco
Новая эра сетей Cisco – анонс 20 июня 2017

© 2017 Cisco and/or its affiliates. All rights reserved. 4
Семейство коммутаторов Catalyst 9K
Catalyst 9300
Lead Fixed Access
Catalyst 9400
Модульный доступ
Catalyst 9500
Lead Fixed Core
Единое ПО, возможности, лицензирование
Cisco Catalyst 9000
инновации
UADP 2.0
Cisco IOS® XE Software
SD-Access
x86 CPU and containers
Encrypted Traffic Analytics
(ETA)*
AES256/MACSEC256*
Trustworthy systems
StackWise® Virtual*
IEEE1588 and AVB*
NBAR2
Perpetual/fast PoE
Model-driven programmability
Patching/GIR
Streaming telemetry*

Up to 32MB
Packet Buffer
Up to 64K x2
Netflow RecordsEmbedded CPUs
Shared
Lookup
Up to 240GE
Bandwidth
384K Flex
Counters
Up to 2X to 4X
forwarding + TCAM
Universal Deployments
Adaptable Tables
Enhanced Scale/Buffering
Multicore resource share
Investment Protection
Flexible Pipeline
UADP 2.0 – Инновационный программируемый ASIC

Ingress
Programmable
Pipeline
Punt
Flex Parser
IGR
NF
SPAN
VXLAN
L3/L2
FIB
Lookup
Table
Lookup
Table
Lookup
Table
ACL
MCast
Lookup
Table
Lookup
Table
Lookup
Table
QOS
Lookup
Table
Lookup
Table
Lookup
Table
Lookup
Table
Lookup
Table
Lookup
Table
Lookup
Table
Lookup
Table
Lookup
Table
Lookup
Table
SPAN
Flex Parser
EGR
Stage
#..
Sec
MPLS
Policy
Egress
Programmable
Pipeline
TCAM/ SRAM
Flexible
Look up Tables
(Shared
Across Cores)
Programmed to
understand
VXLAN
Programmed to
understand
MPLS
Настройка конвейера обработки с помощью микрокода
ASIC
Micro Code
Software Features
VXLAN MPLS
NG
Protocol

7
Представляем Catalyst 9300
1G Data
mGig UPOE
1G UPOE/POE+
2.5G at the
Price of 1G
40G at the
Price of 10G
Новое решение для фиксированного доступа
24 Ports
Modular Power SuppliesModular UplinksModular Fans
UADP 2.0
Open IOS-XE
SD-Access
X86 CPU & Containers
Encrypted Traffic
Analytics (ETA)*
256 bit MACSEC*
Trustworthy
Systems
StackWise Virtual*
IEEE1588 & AVB*
NBAR2
Perpetual/Fast PoE
Model Driven
Programmability
Patching/GIR
Catalyst 9K Leadership
Streaming Telemetry*
48 Ports
8x10G 2x40G 4x mGig 4x1G 350W 715W 1100
W
*not available at FCS
Only
Stackable
Switch with 8X
10G Uplinks
Highest
2.5G/mGig
Density in the
Industry

Новое решение для модульного доступа
4-Slot* 7-Slot 10-Slot
Power Supply
3200W AC
3200W DC*
2400W AC*
Core Linecards
24x 10G SFP+*
48x1G SFP*
24x1G SFP*
Access Linecards
24xmGig + 24xUPOE*
48xUPoE
48xPoE+*
48xData
Supervisor
Sup-1: 80G/Slot Access Optimized
Sup-1XL*: 120G/Slot Core
Optimized
Redundancy
is now
Table-stake
Industry’s
Highest PoE
Scale
9Tbps System
b/w UADP 2.0
Open IOS-XE
SD-Access
X86 CPU & Containers
Encrypted Traffic
Analytics*
256 bit MACSEC*
Trustworthy
Systems
StackWise Virtual*
IEEE1588 & AVB*
NBAR2
Perpetual PoE*
Model Driven
Programmability
Patching/GIR
Catalyst 9K Leadership
Streaming Telemetry*
*not available at FCS

Catalyst 9400- инновации и преимущества Extending Cat 4500E
Leadership in Modular
Access
Up to 1TB SATA Storage
Side-to-side
air flow
DualServiceable
Fan Tray
Mix AC & DC Power Supplies
N+1/N+N Modular Power Supply
UPOE Simultaneously on all ports
Native 25/10G & 40G Uplinks
4X Throughput
3X Client Scale
2X Wireless Scale
4X Power scale
3X Buffering
10X Bandwidth
4X Memory & Flash
Lower Power
Better Acoustics
Higher MTBF
MPLS VPN
While preserving ….
HA Architecture
Investment
Protection Story
Intel x86 CPU,
4 Core 2.4GHz
Rear accessible Fan
Tray for flexible cable
management
Ergonomic handles
for efficient weight
distribution
Up to 480Gbps/Slot
Fits non-standard
racks (16”)
Re-architected power
distribution for 10% higher
energy efficiency
Efficient Platinum Rated
Power Supplies

Supervisor
Архитектура C9400
Forwarding
Features
Embedded CPUs
Centralized Architecture
Control Plane
Container
HA communication
Passive BackPlane
Upto 480G BW per slot
Line Card
STUB
ASIC
Line Card
STUB
ASIC
Line Card
STUB
ASIC
…
Open
IOS-XE

Catalyst 9400 – новый уровень надежности
Only Campus
Access platform
in the industry to
support ISSU
N+1 Power supply redundancy
Safeguard against power supply
failure
Dual Supervisors
with sub 50ms ISSU* & NSF/SSO
“Transparent” line card design
Minimal on-board components for
very high MTBF
Unique uplink redundancy
Uplinks of failed supervisor continue to
remain active
Redundant Fans
N+1 Fan redundancy within Fan-tray;
Up to 2 minutes of fan-less operation for
servicing fan-tray
N+N Power Supply Redundancy
Safeguard against power circuit failure

Catalyst 9400 – SUP1XL, SFP LCs
C9400-LC-24XS
24-Port SFP/SFP+C9400-LC-48S
48 Port SFP
Line rate on all ports
C9400-LC-24S
24 Port SFP
Nov `17
Mar `18
Nov `17
Mar `18
C9400-SUP1XL
Up to 120G per slot
Sup1XL – Up to 120G
Per Slot
Distribution Template
with Sup1XL*
Fiber to the desktop
Collapsed Access
Distribution
SDA Border Template*
Note: 120G per slot on 7 Slot
Full Portfolio readiness in 7 and 10 Slot chassis for 4K Migration

Catalyst 9400 – mGig & PoE+
48x 10/100/1000 Data 48x 10/100/1000 UPoE
24x 1G + 24x mGig UPoE
48x 10/100/1000 PoE+
Shipping
24x mGig + 24x 1G
PoE+ for price neutral
transition
192 ports of mGig
Nov `17
Mar `18
Highest mGig Port Density in the Industry

8 x 10G 2 x 40G
The only 40G Optimized Enterprise Class Switch
40 x 10G
12 x 40G
24 x 40G
Non-blocking ports
with 5.3MB (shared)
packet buffer per port
Built-In RFID Up to 24 ports
of QSFP
Internal Storage : 16GB
External Storage :1xUSB 2.0
(front) , 1xUSB 3.0 (back)
High scale control plane
with 2.4GHz x86 CPU with
16 GB DDR4 Memory
IOS 16.x
SD-Access, MPLS AVB,
WRED,NAT, PAT, NBAR2
Stackwise Virtual
Up to 2x 950W
AC/DC PSU
5 x Fan Trays
3X Throughput
3X Bandwidth
5X Buffering
5X CPU Speed
4X Memory & Flash
4X Port Speed
2.4X 10G Port Density
новое решение для фиксированного ядра

Новые возможности по управлению Catalyst 9K
Ease of Serviceability with Blue
Beacons on each component
Ergonomic Design with Industry
standard Icons
Wireless Console Access with
Bluetooth
Mobil
e
Lapto
p
Icons
Inventory Management Efficiency
with Built-in RFID

Программные инновации
Catalyst 9K и не только

17
Надежного периметра уже недостаточно
Phishing
Email Link
Email attachment
Malware on
Personal device
Social Media Site with Malware
1
Initial Compromise
Malware Propagation2
Botnet creation /
Privilege Escalation
3
DDoS Attack /
Data Exfiltration
4
Perimeter Security
ineffective

Cryptographic Audits
Malware in Encrypted
Traffic
§ Netflow Data: SrcIP, DstIP, SrcPort, DstPort, Proto, #Bytes, #Packets
§ Intraflow Data: Sequence of Packet Lengths & Times (SPLT), Byte Distribution, …
§ TLS Metadata: Extensions, Ciphersuites, SNI, Certificate Strings, …
Специализированная телеметрия
Encrypted Traffic Analytics
Эксклюзивная поддержка на Catalyst 9K
Основная задача Вторичная задача

Make the most of the
unencrypted fields
Identify the content type through the
size and timing of packets
Initial data packet
Sequence of packet lengths
and times
Как мы анализируем зашифрованный трафик?
Self-Signed certificate
Data exfiltration
C2 message
Who’s who of the Internet’s
dark side
Threat
intelligence map
Broad behavioral information about the
servers on the Internet.

1110110110000
0100011110011
1101001000100
001
Коммутатор
Catalyst 9K
Stealthwatch
NetFlow с
расширенной
телеметрией
на скорости
порта
Машинное
обучение
Обнаружение
вредоносов в
шифрованном
трафике
ISE
(Identity Services Engine)
Cognitive Analytics
Автоматическая
изоляция угрозы
Развитие решения Cisco «Сеть как Сенсор»
Обнаружение вредоносного ПО в зашифрованном трафике
Encrypted
Traffic Analytics
*Source : Identifying Encrypted Malware
Traffic with Contextual Flow Data, Oct 2016
точность
обнаружения угроз*
0.01%
ложных
срабатываний*
99%

21
Поддержка ETA
ETA is NetFlow records are collected and exported at the Access/Fabric Edge
Campus / Branch
Wired Deployments
SD–Access Wired and
Wireless Deployments
C
BBCatalyst 9300
Sends ETA Data to
Flow Collectors
For SD-Wireless ETA is
deployed on VLANs
which correspond to
Wireless IP Pools
For Wired clients ETA
is applied directly to
interfaces

Network Functions, Analytics
and Telemetry Applications
Open Programmability
(Python scripts, Puppet
Master)
Customer Specific
Edge Applications
Cloud Connect
Applications
Application Hosting
Fast multi-core x86 processor
Linux-based OS
up to 16BG RAM
Storage expansions (USB, SSD)
Mar `18

Сервисные контейнеры в Cisco IOS-XE
Cisco Connect 2017 © 2017 Cisco and/or its affiliates. All rights reserved. 23
Linux OS
KVM/LXC
IOSd
Control Plane
Cisco Apps (WAAS, Snort)
Приложения
сторонних разработчиков
Platform-Specific Data Plane
Internal Services Blade
(UCS® E-Series)
External Services Blade
(UCS)
Virtual Ethernet

Stackwise Virtual - развитие технологии VSS
Core
Catalyst 9500Catalyst 9500
Centralized Control &
Management Plane
Distributed Forwarding
Architecture
Multi Chassis
Etherchannel
Single Virtual System
Stackwise Virtual
24

• StackWise Virtual technology is integrated platform
in DNA architecture
• Catalyst 9500 series StackWise Virtual can be Edge
Node (EN) or in Border Node (BN) in Fabric enabled
network
• StackWise Virtual helps building simplified underlay
IP infrastructure
• SDA support available starts from initial software
release
StackWise Virtual
Полная совместимость с SD-Access
B
SV
B
E E E
SV
SV SV
SV SV SV

26
MPLS Features
L3VPN
MP-BGP
Multicast VPN
Draft-Rosen
L2VPN
EOMPLS
VPLS
IPv6 VPN
6PE
6VPE
Polaris | UADP | Standards-based
M
CE
MPLS Backbone
CE
CE
PEPE
PESource
Receiver
ReceiverMDT
Multicast VPN
CE
PE
CE
IPV6 IPV6
P PE
IPv4 MPLS Enabled
IPv6 VPN – 6PE/6VPE
M
CE
MPLS Backbone
CE
PEPE
PE
L3VPN
L3 VPN
CE
PE
CE
L2 L2
P PE
EOMPLS
VPLS
L2VPN – EOMPLS/ VPLS
L3VPN
Multicast VPN - DraftRosen
Catalyst 9K - MPLS

Layer Platform Version FCS
Access/Distribution/
Core
3850/3650( All Models) 16.6.1 July 17
9300 ( All models ) 16.6.1 July 17
9500 ( All models ) 16.6.1 July’17
L2VPN EOMPLS / VPLS – где поддерживается?
VPLSEOMPLS

User
Devices
Service Discovery
Agent on Cat 9k
Policy Management
on DNA-Center
WAN
Bonjour Devices
(Apple TV, Printers)
Wide Area Bonjour
§ Enables Discovery and service distribution across
WAN
§ Group-Based Policies for access control
§ Simplified Controller Based Management
Traditional Bonjour
§ Single Gateway solution, cannot scale
across enterprises
§ No access control
§ Limited Management capabilities
Wide Area Bonjour Mar`18

Catalyst 9K: унификация функционала и лицензирования
Current-Gen - three-tier packaging
IP Services
Full L3 and Core Differentiators
IP Base
Routed Access and Access Differentiators
Lan Base
L2 Features and Competitive Parity
C9K - Simplified two-tier packaging
DNA Essentials
Simplified Network Operations Solution Package
DNA subscriptions required (min 3-year term) at time
of Cat 9K order
DNA Advantage
Software Defined Access, Assurance and ETA Solution
Package
Network Advantage
Full L3 with flexible Segmentation and Network Resiliency
Network Essentials
Competitive Parity with Full L2 and Routed Access

Catalyst 9K: сравнение Advantage и Essentials
Full Routing Functionality
BGP, HSRP, OSPF, ISIS, HSRP,GLBP
Flexible Network Segmentation
VRF, VXLAN, LISP, Trustsec,
Wireless Client and Guest, MPLS L3VPN
Enhanced Security Controls
MACSEC-256
IoT & Mobility
CoAP
Optimize Bandwidth
Utilization with Multicast
MSDP, mVPN, AutoRP, PIM-BIDIR
Software-defined Access
Policy-based Automation and
Assurance, SD-Wireless
Security & IoT
Encrypted Traffic Analytics,
mDNS GW, NAT/PAT
Telemetry & Visibility
ERSPAN, AVC, NBAR2
Network Advantage (Inclusive of Network Essentials)
DNA Advantage (Inclusive of DNA Essentials)
Assurance & Analytics
Network insights from analytics and
machine learning, clients and
applications covering on-boarding,
connectivity and performance
Essential Switch Capabilities
Layer 2, Routed Access, PIM Stub,
PVLAN, VRRP, PBR, CDP, QoS, FHS,
802.1x, Macsec-128, CoPP, Trustsec SXP,
IP SLA Responder, SSO
DevOps Integration
Programmability with Open
Models and Netconf/Restconf,
PnP Agent, ZTP
Telemetry & Visibility
Sampled NetFlow, SPAN, RSPAN
Basic Automation
Plug and Play,
Patch Management *,
EasyQOS Configuration*
Basic Monitoring Capabilities
EasyQOS Monitoring*, Client and Device
360, PSIRT Compliance*
Element Management
Image Management,
Topology and Discovery
Cisco Differentiators
Containers, Python, EEM, ANI,
Full NetFlow, Wireshark
DNA Essentials
Network Essentials
Perpetual
Perpetual
3,5,7YearTerms
3,5,7YearTerms
Advantage Essentials
High Availability & Resiliency
NSF, GIR, Stackwise Virtual, ISSU
Inclusive of Switch and DNA Center Capabilities
* Future
SD-
Access
Ready
Element Management
Patch Management

Routed Access –доступен везде!
2960L
Lan Lite
includes
Routed Access
§ Default-route
§ Static
§ RIP
2960X
Lan Base
includes
Routed Access
§ RIP
§ EIGRP Stub
§ OSPF(200 routes)
§ PBR
§ PIM Stub Multicast (up
to 200 routes)
3650/3850/4500E
Lan Base
includes
Routed Access
§ RIP
§ EIGRP Stub
§ OSPF (1000 routes)
§ PBR
to 1000 routes)
3650/3850/4500E
IP Base
includes
Routed Access &
VRF
§ 3 Virtual Networks for
SD-Access
IOS 15.2(6)E IOS 15.2(6)E IOS XE 16.6/3.10E IOS XE 16.6/3.10E IOS XE 16.5
C9K
Network Essentials
includes
Routed Access
§ RIP
§ EIGRP Stub
§ OSPF (1000 routes)
§ PBR
to 1000 routes)

Инновации в области
маршрутизации

Маршрутизаторы для филиала: ISR4000
ФУНКЦИОНАЛ IWAN
ГИБКОСТЬ И УПРАВЛЯЕМОСТЬ
ВЫСОКАЯ И ПРЕДСКАЗУЕМАЯ
ПРОИЗВОДИТЕЛЬНОСТЬ
4 IOS Firewall, VPN, IPSec, PfRV3,
NBAR2, AVC, AppNav, VRF, MPLS
4 Автоматизация с APIC-EM
4 Возможность программного апгрейда
производительности
4 Интеграция сервисов
4 NFV
4 Разделение data, control, services
plane
4 Предсказуемая производительность
ISR4431
ISR4351
ISR4331
ISR4321
ISR4451
500Mbps/1Gbps
200/400Mbps
100/300Mbps
50/100Mbps
1-2Gbps
ISR4221 35/70Mbps

Маршрутизаторы для агрегации: ASR1000
ФУНКЦИОНАЛ IWAN
ВЫСОКАЯ
ОТКАЗОУСТОЙЧИВОСТЬ
МОЩНЫЕ, КОМПАКТНЫЕ
МАРШРУТИЗАТОРЫ
4 IOS Firewall, VPN, IPSec, PfRV3,
NBAR2, AVC, AppNav, VRF, MPLS
4 Отдельные control и data planes
4 Резервирование аппаратуры и ПО
4 In-service software upgrades
4 Производительность 2.5G ... 200G+
со включенными сервисами
4 Криптоподсистема 2G ... 60G+
4 Гибкость I/O: SPAs и Ethernet LCs
§ 2.5G с апгрейдом до 5G, 10G, 20G
§ До 8G крипто
§ 5G с апгрейдом до 10G, 20G, 36G
§ Модульный, до 200G
§ Резервирование RP/ESP
ASR1001-X
ASR1002-X
ASR1006-X
§ 44G с апгрейдом до 100G
§ 8, 16, 25G крипто
ASR1002-HX
ASR1001-HX
§ 40G с апгрейдом до 60G
§ 8G или 16G крипто
New
New
New

• All ISR4000, IOS 16.7.1
• FCS Nov 2017
• Enforced License
• PAK is needed
• 60 day Boost Eval available.
• Once installed
• Unshackle the performance
• Container services not supported on 4331 & 4351 with Boost license
• Boost license is repurposing cores on 4331 & 4351
ISR 4000 - новая «Boost» лицензия

ISR 4000 Boost лицензия
Что можно ожидать в плане производительности?
Performance license
4451 2 Gbps @ 19% CPU
4431 1 Gbps @ 18% CPU
4351 400 Mbps @ 17% CPU
4331 300 Mbps @ 16% CPU
4321 100 Mbps @ 8% CPU
4221 75 Mbps @ 8% CPU
Boost license
4 Gbps @ 35% CPU
4 Gbps @ 62% CPU
2 Gbps @ 45% CPU
2 Gbps @ 53% CPU
2 Gbps @ 68% CPU
1.2 Gbps @ 94% CPU
IP Routing ( CEF )
UP results on uncapped platforms IOS 16.4

Представляем Cisco ISR 1100

Cisco ISR 1100
cамый маленький маршрутизатор на базе IOS XE
§ FCS Starting Nov (depending on SKU)
§ Regions covered: US, Canada, EU, Japan and Australia
§ G.fast / Super-vectoring (35b) orderable in Jan -18
§ 800 Series product offering not affected by ISR 1100
Mobility Express LTE AdvancedSD-WAN ProgrammabilityUmbrella Security

Licensing Packaging Model
Default License: IP Base
• Technology Package: APP, SEC
• Feature parity with the ISR 4000
SECAPP
IP Base
Performance (IPSec)HSEC

Cisco Enterprise NFV
Сетевая виртуализация для
удаленного офиса

Представляем Cisco Enterprise NFV
Cisco 4000 Series ISR +
UCS® E-Series
Cisco® UCS
C-Series
Enterprise Network Compute
System
(ENCS)
Network Functions Virtualization Infrastructure Software (NFVIS)
Cisco Enterprise Service Automation (ESA) + APIC-EM + PI
Virtual Router
(ISRv)
Virtual Firewall
(ASAv)
Virtual WAN
Optimization
(vWAAS)
Virtual Wireless
LAN Controller
(vWLC)
Third-Party VNFs

Виртуальные функции для Вашей сети
APIC-EM с
Enterprise
Service
Automation
q vRouter
q vFirewall
q vWAN Optimization
q vWLAN Controller
q 3rd party services
q ISR/UCS E-Series
q UCS C-Series
q X86 Server
Выберите функции
сети
1
Выберите
платформу
2 Оркестрация и
автоматизация
3
IT Agility

Серия ENCS 5400
6, 8, или 12-Core
Intel Xeon-D
16 – 64 GB
DRAM
Интегрированный 8-
портовый коммутатор с
опцией POE
Слот Network Interface
Module для LTE & WAN
Выделенный Board
Management Controller
2 HDD или SSD
RAID 0 & 1
Интегрированный
M.2 Storage
USB 3.0
Storage
2 порта Gigabit
Ethernet ports
с SFP
Опциональный
аппаратный RAID
контроллер
Интегрированный
блок питания
Аппаратная оптимизация
передачи трафика между
виртуальными машинами

ENCS 5100 ISRv
250 Mbps
(NAT, QoS, ZBFW)
4-Core CPU
ISRv + 1 VNF
16 & 32 GB
DRAM
M.2 Storage
64 – 400 GB
2 x USB 3.0
Storage
4 GE ports
with 2 SFPs
Integrated
Power Supply
Size: 1 RU
13” x 10”
Console
& MGMT
AMD 3.4GHz

Новый ENCS 5104 уже доступен для заказа!
ENCS5412
12-Core
ENCS5104
4-Core
ENCS5408
8-Core
ENCS5406
6-Core
• ISRv + 3 cores
• LAN Ports
• NIM LTE, DSL, T1
• HDD, SSD
• RAID, HW Crypto
• ISRv + 9 cores
• PoE
• ISRv + 5 cores
• PoE
• ISRv + 2 cores

Представляем Cisco SD-WAN
(Viptela)

47
Зачем SD-WAN заказчикам?
Simplify WAN/Branch
management
Reduce WAN and
operating costs
Optimize application
experience

Cisco SD-WAN – общая архитектура
4G/LTE
MPLSInternet
Private/Hosted/Managed
Cloud
vEdge Router
vSmart
ControllersvManage
Secure
SD-WAN Fabric
Secure
Control Plane
REST API
GUI
Data Center
Campus
Branch
Small Office
Home Office
Analytics
Multitenant, Cloud Delivered and Cloud Operated
Cloud Data Center

Централизованное управление (Cloud&On-Prem)
REST NETCONF Syslog
Flow
ExportSNMP
CLI Linux Shell
Power Tools
Single Pane Of Glass Rich Analytics & Monitoring

Zero Touch Provisioning (ZTP)
Control and Policy
Elements
* Factory default config
Assumption:
• DHCP on Transport Side (WAN)
• DNS to resolve ztp.viptela.com*
§ Delivered as-a-Service
Zero Touch Provisioning
Server
1
2
Full Registration and
Configuration
5
3
4
vEdge

Контроль состояния каналов
Path1: 10ms, 0% loss, 5ms jitter
vManage
App Aware Routing Policy
App A path must have:
Latency < 150ms
Loss < 2%
Jitter < 10ms
Path 2
vEdge
Router
vEdge
Router
§ vEdge Routers continuously
perform path liveliness and quality
measurements
Device QoS
(shaping, policing,
queuing, marking)
Internet
MPLS
4G LTE
Optimal Application Throughput

Управление SD-WAN на основе политик
Policy Augmented Dynamic Routing
vEdge
WAN
router
Access Layer
Branch/DC
vSmart controller – Policy
Enforcement/Advertisement
Control Policy:
Routing and Services
vManage GUI – Policy Orchestration1
2
3
Data Policy:
Extensive Policy-based
Routing and Services
App-Route Policy:
App-Aware SLA-based
Routing
Combine and Apply per Site
Execute Control Policy
Advertise AAR/Data Policies to Sites
Execute AAR and Data Policy as received
Dynamic Routing and Policies Combine
to dictate behavior

Портфолио Viptela - vEdge
SOHO
SMB
(100 M)
Branch
(1 G)
Head-End
Aggregation
(10 G)
NFV, vCPE
(N x cores)
IaaS & Cloud
Interconnect
(Nx cores)
Dual LTE variant
back
Higher Capacity
Aggregation
(20 G+)
ARM
IOT /
Small Footprint

Окончание цикла продаж
ISR G2

В качестве напоминания…
End-of-sale 2900 & 3900 series on Dec 9, 2017
Plan to End-of-sale 1900 series in December, 2018

Спасибо! Вопросы?
Денис Коденцев, Cisco
dkodents@cisco.com

Новая эра корпоративных сетей с Cisco Catalyst 9000 и другие инновации для маршрутизации и коммутации

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Новая эра корпоративных сетей с Cisco Catalyst 9000 и другие инновации для маршрутизации и коммутации

Similar to Новая эра корпоративных сетей с Cisco Catalyst 9000 и другие инновации для маршрутизации и коммутации (20)

More from Cisco Russia

More from Cisco Russia (20)

Recently uploaded

Recently uploaded (20)

Новая эра корпоративных сетей с Cisco Catalyst 9000 и другие инновации для маршрутизации и коммутации