Cisco Virtual Topology System (VTS)€¦ · Cisco Virtual Topology System (VTS) Cisco Knowledge...
Transcript of Cisco Virtual Topology System (VTS)€¦ · Cisco Virtual Topology System (VTS) Cisco Knowledge...
Cisco Virtual Topology System (VTS) Cisco Knowledge Network Presentation Vijay Arumugam and Palak Desai
Product Management, Cloud and Virtualization
Feb 3, 2016
2 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Agenda
Trends and Challenges in SP market
The Programmable Fabric and VTS
Customer Use Cases
Demo
Cisco Virtual Topology System
Summary and Q&A
Need for Network Overlays
3 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Service Provider Market Trends
Changing Customer Expectations
The World Has Gone Mobile Massive Traffic Growth, Driven by Video
Soon to Change SP Architectures/ Service Delivery
Emergence of the Internet of Everything
Process Things People Data
Ubiquitous Access to Apps & Services
Changing Enterprise Business Models
Efficiency & Capacity
Rise of Cloud Computing M2M Driving Enterprise Business Value
+ + +
10X Mobile Traffic Growth From 2013-2019
4 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Pace of Change is Accelerating – Simplification is Imperative
Orchestration Service automation and self-service fulfillment Orches-
tration
NFV SDN Network Functions Virtualization, NFV
Transforming Network Architectures & Operations
Software Defined Networking, SDN Abstracting to Better Application & Network Interaction
Service Provider Industry Trends Each Addressing an aspect of Challenges and Opportunities
5 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Cisco Open Network Architecture Strategy
Cisco Services
Applications
Automation Management Orchestration Policy
Physical and Virtual Infrastructure
Business Mobility Video Cloud
VNFs
Storage Network Compute
Smart Service
Capabilities
Cisco® Evolved Services Platform
Service Broker
Catalog of Virtual/ Physical Functions
Orchestration Engine Service Profiles
Cisco Evolved Programmable Network
6 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
VNF3 VNF2 VNF1
EMS EMS EMS EMS
BSS/OSS
NFV INFRASTRUCTURE (Compute, Storage, Network)
EMS EMS EMS
Network Services Orchestrator enabled by Tail-f
Elastic Services Controller (ESC)
NFVO
EMS/NMS
OSS: Service Fulfillment and Service Assurance
SDN Controller
Virtual Topology System (VTS)
VNFM
VNF3 VNF2 VNF1
Openstack/vCener
VIM
• Generic Orchestration architecture that spans physical and virtual domains
• Enables co-existance and migration from Physical to Virtual
• Generic architecture for different use cases including mobility, vCPE and virtual Managed Services
Physical Network Infrastructure
Cisco NFV Orchestration Architecture
7 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Need for Network Overlays
8 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Needs of a Modern Day Cloud Enabled Data Center
Automation
• Flexible, on-demand overlays with underlay awareness
• Support scale out architectures • Auto provision resources • Visibility, Management &
Troubleshooting
• Intent driven, declarative and transactional
• Simplified, application oriented interfaces to the user
• Granular, policy driven instantiation of network overlays
Programmability Policy
• Exposed standardized northbound APIs
• Support physical and virtual workloads
• Provide vendor agnostic southbound communication channels
9 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Allows redesign and upgrade of the physical network without affecting the virtual topology
Separates virtual network configuration and topologies from the physical (underlay) networks
Provides much more flexibility for the rapid creation, updating, and deletion of networks
Provision a fast underlay unfettered by policy and control
DCI
VTF DVS OVS
VXLAN / MPLS
VTF DVS OVS
Network Overlays/SDN in the Datacenter
10 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Flexible workload
placement/mobility
Drivers for Overlay Networking in Data Center
Multi-tenancy at scale
Simplified workload
provisioning
11 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Cisco Virtual Topology System (VTS)
12 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Flexible Overlays
Open and Programmable
Automated
Scalable VXLAN Mgmt.
VMware vCenter
REST API
Seamless Integra8on with Orchestrators
Automated Overlay Provisioning
Automated DCI/WAN Integra8on
REST-‐Based Northbound APIs
Mul8-‐protocol Support
Mul8-‐hypervisor Support
MP-‐BGP EVPN Control Plane
Virtual Tenant Networks
High Performance Virtual Forwarding
GUI
Physical and Virtual Overlays
Bare-‐metal and Virtualized Workloads
Service Chaining
Cisco Network Services
Orchestrator
YANG CLI NX-‐API BGP-‐EVPN
VTF DVS
Cisco Nexus 2000, 3000, 5000, and 7000 Series Cisco Nexus 9000 Series Cisco ASR 9000 Series
Virtual Compute Environment
Cisco Virtual Topology System
Cisco Virtual Topology System (VTS) Overlay Provisioning & Management System
13 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Cisco Virtual Topology System
Cisco Network Services Orchestrator VMware vCenter GUI
Unified InformaSon Model (REST API)
YANG CLI NX-‐API BGP-‐EVPN
VTF DVS
Cisco Nexus 2000, 3000, 5000, and 7000 Series
Cisco Nexus 9000 Series Cisco ASR 9000 Series
Virtual Compute Environment
Virtual Topology System
Service and Infrastructure Policy Inventory Database Resource Management
Policy Plane C
ontrol Plane IOS XRv
Device Management
Control Plane Federation MP-BGP
VTS Architecture
14 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
VMware vCenter
Cisco VTS
ToR ToR
Spine Spine
ToR
Hypervisor
VM
x86 Server
Hypervisor
VM
x86 Server
Hypervisor
VM VM
x86 Server
REST API
DCI
NX-API, CLI,
YANG
VTEP
VTEP VTEP
Border Leaf VTEP
VTS Architecture
15 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15
ToR ToR
Spine Spine
ToR VTEP VTEP
Cisco VTS
Hypervisor
VM
x86 Server
Hypervisor
VM
x86 Server
Hypervisor
VM VM
x86 Server
REST API
DCI
NX-API, CLI,
YANG
VTEP
Border Leaf VTEP
VMware vCenter
*
* Roadmap for post 2.0
VTS Architecture – Hardware Switches
16 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16
DCI
Border Leaf VTEP
Cisco VTS
ToR ToR
Spine Spine
ToR
Hypervisor
VM
x86 Server
Hypervisor
VM
x86 Server
Hypervisor
VM VM
x86 Server
REST API NX-API,
CLI, YANG
VTEP VTEP
VMware vCenter
VTS Architecture – Border Leaf and DCI
17 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17
ToR ToR
Spine Spine
ToR VTEP VTEP
Cisco VTS
Hypervisor
VM
x86 Server
Hypervisor
VM
x86 Server
Hypervisor
VM VM
x86 Server
REST API
DCI
NX-API, CLI,
YANG
VTEP
VTEP
VMware vCenter
• L3 VNIs (Route) • VRF Route-Leaking • L3PVN Stitching
Simpler Configuration – Single MP-BGP session for all tenants
VTS Architecture – BL/DCI Integrated
18 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
ToR
Hypervisor
18
Cisco VTS
ToR ToR
Spine Spine
Hypervisor
VM
x86 Server
Hypervisor
VM VM
x86 Server
REST API
DCI
NX-API, CLI,
YANG
VTEP VTEP
Border Leaf VTEP
VMware vCenter Hypervisor
VM
x86 Server
VTEP
VTEP
VTS Architecture – Virtual Topology Forwarder
19 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19
Cisco VTS
ToR ToR
Spine Spine
ToR
Hypervisor
VM
x86 Server
Hypervisor
VM VM
x86 Server
REST API
DCI
NX-API, CLI,
YANG
VTEP VTEP
Border Leaf VTEP
VMware vCenter Hypervisor
VM
x86 Server
VTEP
vSwitch vSwitch
VTF (VM)
Tenant VM Tenant VM
vSwitch
VTF (VM)
Tenant VM Tenant VM
KVM ESXi
NIC NIC
User space, Multi-tenant, line rate packet forwarder
Uses Vector Packet Processing technology
Fully integrated with Intel DPDK
Supports VXLAN, can be extended to support MPLSoGRE, L2TPv3, MPLSoUDP, native MPLS and SR
Programmed by VTS using Restconf/YANG
VTS Architecture – Virtual Topology Forwarder
20 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20
Virtual Overlays for Brownfield Deployment
Hardware based Overlays
Software (VTF) based Overlays
Hybrid Overlays
VTS - Flexible Overlays using Virtual Topology Forwarder
21 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
VTS Use Cases
22 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
VTS Use Cases
Multi-Tenant Data Centers
Network-Function Virtualization
23 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
DSW (DC Switch)
PSW (Pod Switch)
ASW (Access Switch)
40GE Link 10GE Link GE Link
PoD 1 PoD N
… … …
Cloud Management
Platform
VTS
REST API
NETCONF
To DC Router
96*40GE
4*40GE
Region 1
Region 2
EBGP based
Underlay
Hardware Based
VxLAN GW
VPC
23
Multi-tenant Private Cloud
24 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
• In FSI, customers have used the separated or isolated infrastructures for the sake of compliances.
• For example, a large US FSI has the following three infrastructures: • Investment Banking Intranet (INET1) • Corporate Financing Intranet (INET2) • Global IT Intranet (INET3)
• The hardware resource waste resulted from three sets of infrastructures is horrendous.
• Leveraging Cisco’s software overlay SDN will allow them to tap into the unused compute capacity and avoid hardware acquisition.
Glo
bal T
rans
port
Inte
rnet
(The
Bac
kbon
e) INET1
Compute Farm IN
ET1
C
ampu
s
Firm-Wide Compute
Farm
Firm
-Wid
e C
ampu
s
Firewall
INET1: Investment Banking
INET3 – Global IT Intranet
INET2: Corp Fin Intranet
INET2 Compute
Farm INE
T2
Cam
pus
Firewall
24
Multi-Tenant Private Cloud
25 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Multi-Tenant Virtualized Data Center
Multi-Tenant Data Centers
!
26 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
NSO: Network Service Orchestrator VTS: Virtual Topology System VTS: Virtual Topology System ToR: Top of Rack switch PNF: Physical Network Function VNF: Virtual Network Function dVS: distributed Virtual Switch PE: Provider Edge
26
Nexus 9300 (ToR) Nexus 9300 (ToR)
PNF1
VNF1 VNF2
dVS PNF2
VNF1 VNF2
dVS
MPLS VPN Network
VPN PE & VXLAN Gateway
VXLAN
NSO based on Tail-f NCS
VTS vCenter VTS Plug-in
VLANs VLANs VLANs VLANs
Admin Tools Customer
Portal OSS/BSS
REST API
BGP-EVPN
Orchestration & Controllers Layer
Virtual Overlay Networking Layer
Virtual Infrastructure, VNF & PNF Layer
NFV Use case
27 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
• E2E Service orchestration architecture based on Tail-f NCS
• Seamless orchestration and chaining from customer prem (CPE) to cloud
• Orchestrates both physical (CPE) and virtual network appliances (vCPE)
• Centralized Management and Control of customer branch (managed branch)
• Loosely coupled layered and modular architecture for NFV orchestration
• Model driven architectural approach with services and devices represented as YANG models orchestrated by Tail-f NCS
• Enables ordering, activation and monitoring of services via self-service customer portal
• Fully open solution that works with Cisco and 3rd party HW and Cisco and 3rd party VNFs
NSO (Network Services Orchestrator)
OpenStack
ESC (Elastic Services Controller)
Customer Orders Service
VTS (Virtual Topology System)
Tenant Portal SP’s OSS / BSS
PnP Server
Internet Gateway VTF
CPE vIPS vFW vRouter
X86
Ser
ver
##
REST API REST API
Provide Day 1 Configuration
PnP Functionality Zero Touch
Provisioning
Establish VPN: IPSec, IP Overlay (VXLAN, GRE, LISP), L2, MPLSVPN
CPE shipped to Customer site, connected & powered ON
DCI VNF Service Chain
Virtualized CPE Architecture
28 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Compute Storage Network
Virtualized Compute Virtualized Storage Virtualized Network
Single P
ane of Glass
Managem
ent vMS SP Mobility Media Cloud Generic VNF
OpenStack
VTS
Infra Monitoring &
A
ssurance
NFV Infrastructure (NFVI) Unified, Flexible and Agile Platform driving SP Infrastructure Transformation
Single OpenStack based platform for multiple use cases beyond NFV
Orchestrator EMS
VF
EMS
VF
EMS
VF
EMS
VF
Cisco NFVI
29 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
What does VTS provide Infrastructure Providers
Neutron
Abstracted view of a network-wide topology Automate VM discovery in topology and provision virtual network attachment. Make it simple for the end-user
Tenant self-provisioning
SW Forwarder
HW Forwarder Seamless P2V
SW forwarder for brownfield deployment HW forwarder for performance Virtual Appliance inter-working w/ Physical appliance
VTEP
VTEP
VTEP
VTEP
VTEP
VTEP
WAN Connect Tenant
networks to Provider Networks
Stitch Provider L3VPN to Tenant DC virtual network(s) Tenants attach to External networks via Provider Network
30 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Investment Protection
Agility and Automation
Seamless Integration
Open Scalable Multi-vendor Policy Driven
Cisco Virtual Topology System
VTS : Flexible overlays with optimized routing
31 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
NFV Ecosystem Full stack NFV solution
Integration with NSO and VNF life-cycle manager ESC
Dynamic service chaining capabilities
Virtual Topology System (Policy Plane & Control Plane)
Transactional policy models; ability to flag transaction errors & rollback
Architecture to easily integrate third party network elements
Virtual Topology Forwarder User space without any kernel modifications
Multi-tenanted, L2/L3 capable including VXLAN & MPLS
Line rate packet forwarder
Network Endpoint Ecosystems
Enabling SW and HW overlays in bare-metal and virtualized environment
N2k-N9k, ASR 9K, and Virtual forwarder support
Cisco Differentiation
32 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Demo
33 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 33
ToR ToR
Spine Spine
ToR
Hypervisor
VM
x86 Server
Cisco VTS
OpenStack Tenant View
Hypervisor
VM
x86 Server
VTEP VTEP
Hypervisor
VM VM
x86 Server
VTEP
Create Tenant Networks 1
VNID assigned for each network
3
Tenent and Tenant Networks Created
2
REST API
VM Host info captured by VTS and mapped to the right
ToR & ToR port using topology database
5
Attach VM to Network 4
VXLAN
NX-API, CLI, YANG
VTS : OpenStack Workflow
34 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 34
ToR ToR
Spine Spine
ToR
Hypervisor
VM
x86 Server
Cisco VTS
OpenStack Tenant View
Hypervisor
VM
x86 Server
VTEP VTEP
Hypervisor
VM VM
x86 Server
VTEP
Create Tenant Networks 1
VNID assigned for each network
3
Tenent and Tenant Networks Created
2
REST API
Attach VM to Network 4
VM Host info captured by VTS and mapped to the right
ToR & ToR port using topology database
5
Neutron agent modified to request VLAN information
from VTS before programming vSwitch
7
VLAN
VLAN VLAN VLAN
VXLAN
VXLAN
NX-API, CLI, YANG
VTS provisions VTEP, VLAN for each VTEP
and EVPN on ToR/VTF 6
vlan 1,1700-711,2000 vlan 1706 vn-segment 46006 evpn evi 46006 vni bgp rd auto route-target import auto route-target export auto interface nve1 no shutdown source-interface loopback0 member vni 46006 host-reachability protocol bgp mcast-group 224.1.1.1
VTS : OpenStack Workflow
35 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 35
ToR ToR
Spine Spine
ToR
Hypervisor
VM
x86 Server
Cisco VTS
OpenStack Tenant View
Hypervisor
VM
x86 Server
VTEP VTEP
Hypervisor
VM VM
x86 Server
VTEP
Create Tenant Networks 1
VNID assigned for each network
3
Tenent and Tenant Networks Created
2
REST API
Attach VM to Network 4
VM Host info captured by VTS and mapped to the right
ToR & ToR port using topology database
5
Neutron agent modified to request VLAN information
from VTS before programming vSwitch
7
VLAN
VLAN VLAN VLAN
VXLAN
VXLAN
NX-API, CLI, YANG
VTS provisions VTEP, VLAN for each VTEP
and EVPN on ToR/VTF 6
Create router and attach interfaces to tenant networks
8
VTS provisions L3 VXLAN (distributed L2/L3) , Anycast
gateway with EVPN
9
vlan 1708 vn-segment 46008
vrf context vni-46008 vni 46008 rd auto address-family ipv4 unicast route-target both auto
fabric forwarding anycast-gateway-mac 0002.0002.0002
#Anycast Gateway MAC, identically configured on all VTEPs
interface Vlan1706 no shutdown vrf member vni-46008 ip address 192.168.4.1/24 ---> Anycast GW Address fabric forwarding mode anycast-gateway
interface Vlan1708 no shutdown vrf member vni-46008 ip forward
router bgp 23 router-id 4.4.4.4 address-family ipv4 unicast address-family l2vpn evpn retain route-target all ….. vrf vni-46008 address-family ipv4 unicast advertise l2vpn evpn evpn evi 46008 vni bgp rd auto route-target import auto route-target export auto
VTS : OpenStack Workflow
36 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Summary
36
37 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
For More Information
http://www.cisco.com/go/vts
38 C97-734423-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Call To Action
Play with VTS Product at Cisco Demo Cloud and provide feedback