LABSP-3701 (2)

Cisco Network Services Orchestrator: L3VPN Bilal Alam – Technical Solutions Architect LABSP-3701 Agenda • Orchestration Platform Architecture • Diverse Customer Use Cases • Data Model Driven Approach • Open & Modular Platform • Lab Work © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Orchestration Platform Architecture Orchestration Overview • Orchestration Platform Architecture - Any Service across any network, any topology, any vendor, any device LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Current State Customer Orders Provisioning B Provisioning D Provisioning A Activation E Activation C NMS NMS EMS CLI CLI EMS CLI CLI EMS CLI Metro and Access LABSP-3701 WAN CLI Data Centre © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Orchestration Platform Architecture VNF-M NMS Domain Controller EMS Metro and Access LABSP-3701 SDNc WAN Data Centre © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Orchestration Platform Architecture • Introducing the Network Element Driver (NED) NSO Platform Network Abstraction – YANG Data Models VNF-M NMS Domain Controller EMS Metro and Access LABSP-3701 SDNc WAN Data Centre © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public NETCONF NEDs (Auto-rendered) Vendor Device/Platform Cisco Elastic Services Controller Cisco Virtual Topology Controller Cisco NFV Infrastructure Software (vBranch/ENCS) Cisco Cloud Services Platform 2100 NetRounds NetRounds Control Center Cisco IOS-XE Platforms Cisco IOS-XR Platforms LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public NEDs (1/6) Vendor Device/Platform Vendor Device/Platform A10 Networks AX Series Thunder Series Ciena Adtran Total Access 900 Series Total Access 5000 Series 3000 Family 5000 Family ESM Cisco Adva Carrier Ethernet FSP 150CC Series Application Policy Infrastructure Controller Data Centre (APIC-DC) Affirmed Networks Acuitas Service Management System ASA Alcatel-Lucent 7210 Service Access Switch 7450 Ethernet Service Switch 7705 Service Aggregation Router 7750 Service Router 7950 Extensible Routing System Arista 7048 Series 7050 Series 7150 Series vEOS Brocade NetIron CES 2000 Series NetIron MLXe Series NetIron XMR Series ServerIron ADX Series ASA 1000V Cloud Firewall ASA 5500-X Series Next-Generation Firewalls Adaptive Security Virtual Appliance IOS 800 Series Routers 1800 Series Integrated Services Routers 1900 Series Integrated Services Routers 2500 Series Routers 2600 Series Multiservice Platforms 2800 Series Integrated Services Routers 2900 Series Integrated Services Routers 3800 Series Integrated Services Routers LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public NEDs (2/6) Vendor Device/Platform Vendor Cisco IOS/IOSXE Cisco 3900 Series Integrated Services Routers 7200 Series Routers 7600 Series Routers Catalyst 2900 Series Switches Catalyst 2960 Series Switches Catalyst 2960-X Series Switches Catalyst 3550 Series Intelligent Ethernet Switches Catalyst 3750 Metro Series Switches Catalyst 3850 Series Switches Catalyst 4500 Series Switches Catalyst 4500E Series • Supervisor Engine 7-E • Supervisor Engine 8-E Catalyst 4500-X Series Aggregation Switch Catalyst 4900 Series Switches Catalyst 6500 Series • 10 Gigabit Ethernet Modules • Mixed Media Gigabit Ethernet Modules • Supervisor Engine 2T • Switches Catalyst 6500-E Series Chassis Device/Platform Catalyst 6900 Series Ethernet Interface Module Cloud Services Router 1000V Series ME 3400 Series Ethernet Access Switches ME 3600X Series Ethernet Access Switches ME 3800X Series Carrier Ethernet Switch Routers ME 4900 Series Ethernet Switches uBR10000 Series Universal Broadband Routers ASR 900 Series Aggregation Services Routers ASR 1000 Series Aggregation Services Routers cBR Series Converged Broadband Routers Cloud Services Router 1000V Series RF Gateway Series IOS XR 12000 Series Routers ASR 9000 Series Carrier Routing System IOS XRv Router LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public NEDs (3/6) Vendor Device/Platform Vendor Device/Platform Cisco NX OS Nexus 1000v Series Switches Nexus 3000 Series Switches Nexus 5000 Series Switches Nexus 6000 Series Switches Nexus 7000 Series Switches Nexus 9000 Series Switches Nexus 9300 Platform Switches F5 Networks BIG-IP 1600 BIG-IP 3600 BIG-IP 3900 BIG-IP 6400 BIG-IP 8900 BIG-IP Virtual Edition Viprion Chassis Fortinet FortiGate 200 Series FortiGate 500-300 Series FortiGate 800-600 Series FortiGate 1000 Series FortiGate 3000 Series FortiGate Virtual Appliances Policy Suite (CPS/QPS) StarOS ASR 5000 Series Quantum Virtualised Packet Core (QvPC-SI/-DI) Web Security Appliance (WSA) Citrix Netscaler 1000v LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public NEDs (4/6) Vendor Device/Platform Vendor Device/Platform Huawei ATN Series NetEngine40E Series Universal Service Router NetEngine5000E Cluster Router Quidway S3300 Series Switches Overture 1400 2200 5000 5100 6000 Palo Alto Networks PA-2000 Series PA-3000 Series PA-5000 Series Virtualised Firewalls Procera Networks PacketLogic 9000 Platform Quagga Quagga Routing Software Suite (BGP module) Juniper EX Series Ethernet Switches Firefly Perimeter (Virtual SRX) M Series Multiservice Edge Routers MX Series 3D Universal Edge Routers QFX Series SRX Series Services Gateways LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public NEDs (5/6) Vendor Device/Platform Vendor Device/Platform F5 Networks BIG-IQ OpenDaylight Controller H3C S5800 series Infinera DTN-X Multi-Terabit Packet Optical Network Platform Juniper Contrail Controller MRV Communications Master-OS OptiSwitch 9000 series NEC iPASOLINK family Netfilter Iptables (Linux) Nominum DCS OneAccess OneOS for Routers One540 VMware vSphere ZenOSS Service Dynamics OVSDB (shell) ZTE xPON OLT Lithium Open vSwitch Openstack Cloud Operating System Identity (Keystone) Networking Service (Neutron) Image Service (Glace) Compute (Nova) Pulsecom SuperG Riverbed Steelhead Series Silver Peak VXOA Virtual Appliance Sonus SBC 5000 Series Telco Systems BiNOX T-Marc Family LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public NEDs (6/6) Vendor Device/Platform Vendor Device/Platform Accedian Networks High Performance Service Assurance MetroNID Cisco ME-1200 Alcatel-Lucent 5620 Service Aware Manager ME-4600 Meraki Allied Telesis NCS2k (CTC) x210 Series Prime Network Registrar (PNR) Amazon Amazon Web Services Avaya ERS 4000 Series UCS Manager Clavister cOS Core Eagle Series Coriant 8600 Smart Router Series Datacom DM2100-EDD Family DM4000 Family Dell Force10 Networking S-Series Ericsson EFN324 Series SE family SR 8000 Series VSP 9000 Series Brocade Vyatta 5400 vRouter (Vyatta VSE) CableLabs Converged Cable Access Platform LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Orchestration Platform Architecture Customer Orders • Concept to production in weeks. • Instant Activation • Surgical precision • Single source of Truth L2VPN L3VPN BOD SECURITY NFV Service X Services Orchestration Platform Network Abstraction - YANG Data Models VNF-M NMS Domain Controller EMS Metro and Access LABSP-3701 SDNc WAN Data Centre © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Diverse Customer Use Cases Orchestration Overview • Orchestration Platform Architecture - Any service across any network, any topology, any vendor, any device • Diverse Customer Use Cases LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Multi-Vendor L2VPN NSO Juniper Cisco ALU Cisco Huawei LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Multi-Vendor L3VPN NSO LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Cross-Domain Orchestration Self-Service Portal Service Lifecycle APIs NSO Customer Workloads APIC ASR-9k ASR-9k VM ACI Fabric Customer WorkLoads SP Core Network Internet GW MPLS L3VPN Programmable Platform VM Customer Site Palo Alto FW Citrix Checkpoint FW F5 Dynamic Service Chaining LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Hybrid: VPN & NFV ESC openstack API CLI WEB INTERNET NSO AS 200 DCI-PE Inter-AS PE1 PE3 ASBR Volvo AS 100 Ford Volvo PE2 Volvo Honda LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Layered Orchestration ESC openstack API CLI WEB API CLI WEB INTERNET NSO DC NSO-MoM NSO MPLS AS 200 DCI-PE Inter-AS PE1 PE3 ASBR Volvo AS 100 Ford Volvo PE2 Volvo Honda LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public PCRF & PCEF Coordination LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Security as a Service Traffic Shaper A A B B Use case • Provisioning of Layer 4-7 security services to VPN customers IPS and IDS Content Filtering Incremental revenue from new business Firewall Scale • Thousands of business customers • Dozens of regional points of purchase (POPs) • Several data centres • Tens of thousands of data centre tenants Business case • WAN Acceleration LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Data Model Driven Approach Orchestration Overview • Orchestration Platform Architecture - Any service across any network, any topology, any vendor, any device. • Diverse Customer Use Cases • Data Model Driven Approach LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Model-Based Architecture BSS Service Models Tail-f NSO Device Models No hard-coding of: • Network services • Network architecture • Network devices Instead: • Data models for everything Multivendor Layer 2, Layer 3, and Layer 4-7 Network LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Network Element Driver (NED) Cisco IOS Device Model ... // interface GigabitEthernet * list GigabitEthernet { tailf:info "GigabitEthernet IEEE 802.3z"; tailf:cli-allow-join-with-key { tailf:cli-display-joined; } tailf:cli-mode-name "config-if"; tailf:cli-suppress-key-abbreviation; key name; leaf name { type string { pattern "[0-9]+.*"; } } uses interface-common-pre-grouping; uses interface-ethernet-pre-grouping; uses interface-switch-grouping; uses interface-ethernet-grouping; uses interface-common-grouping; uses interface-zone-member-grouping; } Cisco IOS NED Engine YANG Model South Bound Protocol: CLI LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Device Models Cisco IOS Device Model ... // interface GigabitEthernet * list GigabitEthernet { tailf:info "GigabitEthernet IEEE 802.3z"; tailf:cli-allow-join-with-key { tailf:cli-display-joined; } tailf:cli-mode-name "config-if"; tailf:cli-suppress-key-abbreviation; key name; leaf name { type string { pattern "[0-9]+.*"; } } uses interface-common-pre-grouping; uses interface-ethernet-pre-grouping; uses interface-switch-grouping; uses interface-ethernet-grouping; uses interface-common-grouping; uses interface-zone-member-grouping; } Huawei VRP Device Model ... Juniper Junos Device Model // interface GigabitEthernet * ...list GigabitEthernet { ALU-SR Device Model grouping top-configuration { tailf:info "GigabitEthernet interface"; ... leaf version { tailf:cli-full-command; list port { type string; key name; tailf:info "Configure physical ports"; description "Software version information"; key}port-id; leaf name { leaf port-id { container system { } } description "System parameters"; leaf description { uses juniper-system; } } // interface GigabitEthernet * / description uses access interface-description; container { list logical-systems { } key "name"; // interface GigabitEthernet * / vlan-type container egress { description "Logical systems"; uses interface-vlan-type; } uses juniper-logical-system; container ingress { } // interface GigabitEthernet * / speed }container chassis { leaf speed { } description "Chassis configuration"; } container { uses ethernet chassis-type; leaf mode { } // interface GigabitEthernet * / duplex }container interfaces { leaf duplex {{ container access description "Interface configuration"; } } uses apply-group; container autonegotiate { uses apply-macro; // interface GigabitEthernet * / mtu } list pic-set { uses interface-mtu; key "name"; leaf dot1q-etype { ordered-by // interface user; GigabitEthernet * / ip } leafcontainer duplex { ip { } } container efm-oam { } LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Service Model examples augment /ncs:services { list l2vpn { key name; leaf name { } container vpn { list l3vpn { key name; leaf name { } leaf as-number { } list endpoint { key device; list endpoint { key "id"; leaf id{ } leaf ce-device { } leaf ce-interface { } leaf ip-network { } leaf bandwidth { } } leaf device { } leaf intf-number { } leaf remote-ip { } } leaf pw-id { } } } } } LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Service-Model to Device-Model Mapping Service CREATION mapping UPDATE, DELETE and REDEPLOY INFERRED A FASTMAP LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Service-Model to Device-Model Mapping Service CREATION mapping UPDATE, DELETE and REDEPLOY INFERRED A FASTMAP LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Service-Model to Device-Model Mapping Service CREATION mapping A B UPDATE, DELETE and REDEPLOY INFERRED FASTMAP LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Benefits of Model Driven Precision & Traceability Volvo A access-list 101 permit ip any 10.1.1.0 0.0.0.255 NED ENGINE FASTMAP LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Precision & Reverse Traceability Volvo A access-list 101 permit ip any 10.1.1.0 0.0.0.255 NED ENGINE FASTMAP LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Transactional Guarantees BSS Network is always in a consistent state. Tail-f NSO Transactional Integrity Multivendor Layer 2, Layer 3, and Layer 4-7 Network LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Tail-f NSO Overview Auto-Generation Management Applications Network Engineer REST, NETCONF, JSON-RPC, Java … Networkwide CLI and Web UI Tail-f NSO Service Models Service Manager Device Manager Device Modes FASTMAP LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Open & Modular Platform NSO Overview • Orchestration Platform Architecture - Any service across any network, any topology, any vendor, any device. • Diverse Customer Use Cases • Data Model Driven Approach • Open & Modular Platform – Speed & Agility LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Tail-f NSO Overview Open & Modular Platform Management Applications Network Engineer REST, NETCONF, JSON-RPC, Java… Networkwide CLI and Web UI Tail-f NSO Service Models Utility Models Service Manager Device Manager Device Models Network Element Drivers Runtime Package Directory NETCONF, CLI, SNMP, REST, etc. • EMS • Applications • Controllers LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Add-On Packages 1. Discovery 2. Plug-and-Play, Image Upgrade 3. Resource Manager • ID Allocator (VLAN, RD etc.) • IP Address Allocator 4. NFV Orchestrator: NFV-O 5. Function Packs: SD-WAN, vBranch, SAE LABSP-3701 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Lab Work Q&A Complete Your Online Session Evaluation • Give us your feedback and receive a Cisco Live 2018 Cap by completing the overall event evaluation and 5 session evaluations. • All evaluations can be completed via the Cisco Live Mobile App. Don’t forget: Cisco Live sessions will be available for viewing on demand after the event at www.CiscoLive.com/Global. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public Thank you

LABSP-3701 (2)

Products

Support

LABSP-3701 (2)

Add this document to collection(s)

Add this document to saved

Suggest us how to improve StudyLib