intro to cisco nexus 1000v€¦ · 6:15-6:45pm (cisco booth) introduction to nexus 1000v. tuesday....
TRANSCRIPT
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 1
Intro to Cisco Nexus 1000V
Neal MuellerProduct Manager, Nexus 1000VServer Access Virtualization Business Unit
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 2
What are the Network Hurdles to Virtualization?
Admins are demanding VM-level troubleshooting and debugging
Compliance requires VM-level isolation and visibility
Admins want to manage virtual networks like their physical networks
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 3
Nexus 1000V Brings VM Level GranularityProblems:
Cisco Nexus 1000V• Extends network to the VM • Consistent services • Coordinated, coherent management
• VMotion may move VMs across physical ports—policy must follow
• Impossible to view or apply policy to locally switched traffic
• Cannot correlate traffic on physical links— from multiple VMs
VLAN 101
Cisco Nexus 1000V
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 4
Cisco Nexus 1000V
Software Based Cisco Switch
Industry’s first Distributed Virtual Switch for VMwareBuilt on Cisco NX-OSCompatible with all switching platformsMaintain vCenter provisioning model unmodified for server administration; allow network administration of virtual network via familiar Cisco NX-OS CLI
Policy-Based VM Connectivity
PolicyPolicy--Based Based VM ConnectivityVM Connectivity
Mobility of Network & Security Properties
Mobility of Network & Security Mobility of Network & Security PropertiesProperties
Non-Disruptive Operational Model NonNon--DisruptiveDisruptive
Operational ModelOperational Model
vSphere
NexusNexus1000V1000V
Nexus 1000VNexus 1000V
VMVM VMVM VMVM VMVM
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 5
Cisco Nexus 1000V
Nexus 1000V VSMvCentervCenter
vSphere
NexusNexus1000V1000VVEMVEM
vSphere
NexusNexus1000V1000VVEMVEM
Defined PoliciesWEB AppsHRDBDMZ
Defined PoliciesDefined PoliciesWEB AppsWEB AppsHRHRDBDBDMZDMZ
VM Connection Policy• Defined in the network• Applied in Virtual Center• Linked to VM UUID
VM Connection PolicyVM Connection Policy•• Defined in the networkDefined in the network•• Applied in Virtual CenterApplied in Virtual Center•• Linked to VM UUIDLinked to VM UUID
Faster VM Deployment
Policy-Based VM Connectivity
PolicyPolicy--Based Based VM ConnectivityVM Connectivity
Mobility of Network & Security Properties
Mobility of Network & Security Mobility of Network & Security PropertiesProperties
Non-Disruptive Operational Model NonNon--DisruptiveDisruptive
Operational ModelOperational Model
Cisco VN-Link: Virtual Network LinkCisco VNCisco VN--Link: Virtual Network LinkLink: Virtual Network Link
VMVM VMVM VMVM VMVM VMVM VMVM VMVM VMVM
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 6
Cisco Nexus 1000V
Nexus 1000V VSM
vSphere
NexusNexus1000V1000VVEMVEM
vSphere
NexusNexus1000V1000VVEMVEM
VN-Link Property Mobility• VMotion for the network• Ensures VM security• Maintains connection state
VNVN--Link Property MobilityLink Property Mobility•• VMotionVMotion for the networkfor the network•• Ensures VM securityEnsures VM security•• Maintains connection stateMaintains connection state
VMs Need to Move• VMotion• DRS• SW Upgrade/Patch• Hardware Failure
VMsVMs Need to MoveNeed to Move•• VMotionVMotion•• DRSDRS•• SW Upgrade/PatchSW Upgrade/Patch•• Hardware FailureHardware Failure
vCentervCenter
Richer Network Services
Policy-Based VM Connectivity
PolicyPolicy--Based Based VM ConnectivityVM Connectivity
Mobility of Network & Security Properties
Mobility of Network & Security Mobility of Network & Security PropertiesProperties
Non-Disruptive Operational Model NonNon--DisruptiveDisruptive
Operational ModelOperational Model
Cisco VN-Link: Virtual Network LinkCisco VNCisco VN--Link: Virtual Network LinkLink: Virtual Network Link
VMVM VMVM VMVM VMVM VMVM VMVM VMVM VMVMVMVM VMVM VMVM VMVM
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 7
Cisco Nexus 1000V
Nexus 1000V VSM
vSphere
NexusNexus1000V1000VVEMVEM
vSphere
NexusNexus1000V1000VVEMVEM
vCentervCenter
Network Admin Benefits• Use the tools you are used to• Use the same workflow to
manage physical and virtual networks
Network Admin BenefitsNetwork Admin Benefits•• Use the tools you are used toUse the tools you are used to•• Use the same workflow to Use the same workflow to
manage physical and virtual manage physical and virtual networksnetworks
VI Admin Benefits• Maintains existing VM mgmt• Reduces operational workload
VI Admin BenefitsVI Admin Benefits•• Maintains existing VM mgmtMaintains existing VM mgmt•• Reduces operational workloadReduces operational workload
Increased Operational Efficiency
Policy-Based VM Connectivity
PolicyPolicy--Based Based VM ConnectivityVM Connectivity
Mobility of Network & Security Properties
Mobility of Network & Security Mobility of Network & Security PropertiesProperties
Non-Disruptive Operational Model NonNon--DisruptiveDisruptive
Operational ModelOperational Model
Cisco VN-Link: Virtual Network LinkCisco VNCisco VN--Link: Virtual Network LinkLink: Virtual Network Link
VMVM VMVM VMVM VMVM VMVM VMVM VMVM VMVM
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 8
Cisco Nexus 1000V Architecture
Nexus 1000V VSM
vCentervCenter
Virtual Supervisor Module (VSM)Virtual or Physical appliance running Cisco NXOS (supports HA)Performs management, monitoring, & configurationTight integration with VMware vCenter
Virtual Supervisor Module (VSM)Virtual Supervisor Module (VSM)Virtual or Physical appliance running Cisco NXOS Virtual or Physical appliance running Cisco NXOS (supports HA)(supports HA)
Performs management, monitoring, & configurationPerforms management, monitoring, & configurationTight integration with VMware Tight integration with VMware vCentervCenter
Virtual Ethernet Module (VEM)Enables advanced networking capability on the hypervisorProvides each VM with dedicated “switch port”Collection of VEMs = 1 vNetwork Distributed Switch
Virtual Ethernet Module (VEM)Virtual Ethernet Module (VEM)Enables advanced networking capability on the Enables advanced networking capability on the hypervisorhypervisorProvides each VM with dedicated Provides each VM with dedicated ““switch portswitch port””
Collection of Collection of VEMsVEMs = 1 = 1 vNetworkvNetwork Distributed SwitchDistributed Switch
Cisco Nexus 1000V InstallationESX & ESXiVUM & Manual InstallationVEM is installed/upgraded like an ESX patch
Cisco Nexus 1000V InstallationCisco Nexus 1000V InstallationESX & ESX & ESXiESXiVUM & Manual InstallationVUM & Manual InstallationVEM is installed/upgraded like an ESX patchVEM is installed/upgraded like an ESX patch
vSphere
NexusNexus1000V1000VVEMVEM
vSphere vSphere
Nexus1000V VEM
NexusNexus1000V1000VVEMVEM
VMVM VMVM VMVM VMVM VMVM VMVM VMVM VMVM VMVM VMVM VMVM VMVM
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 9
Hundreds are Using Nexus 1000V
University of Arizona
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 10
Broad Ecosystem for Nexus 1000V
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 11
Nexus 1000V Return on InvestmentCustomer Example:
VMware Standard Switch (vSS): 100 servers, 290 apps, 10% of servers virtualized Compared to Cisco Nexus 1000V: 24 servers, 290 apps, 40% of servers virtualized
*vSS = VMware Standard Switch with Enterprise Edition
Source: Customer case studies, Lightreading analyst study, VMmark Benchmark Study, Cisco/VMware ROI Model
OpexCapex Availability 3-Year Savings $ $1,029,805 10 x 1000V + 3yr support ($24,340)
1000V ROI $1,005,4651000V24
servers
vSS*100
servers
1000V155
hrs/yr
vSS*288
hrs/yr
1000V0.4
errors
vSS*0.8
errors
3-Year Savings$325,574
3-Year Savings$14,094
3-Year Savings$3,600
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 12
Nexus 1000V Works with Everything
All servers on VMware Compatibility List
All hardware switches, including Cisco
1G & 10G NICs
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 13
Available Now
Download and Evaluate Free www.cisco.com/go/1000veval
Buy the Upgrade Bundle for $795 (limited time offer)
Until 12/15/09
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 14
Daily Dose of Cisco Nexus 1000V
Monday6:15-6:45PM (Cisco booth) Introduction to Nexus 1000V
Tuesday2:50-3:20PM (Cisco booth) Return on Investment for the Cisco Nexus 1000V
Wednesday10:10-10:40PM (Cisco booth) Securing the Virtualized Data Center with Nexus 1000V3:00-4:00PM (Room 135) Deploying Nexus 1000V in a VMW vSphere environment
Thursday12:10-12:40PM (Cisco booth) Nexus 1000V in a High-Density VM environment
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 15
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 16
Port Profile – Network Viewn1000v-RC# show port-profileport-profile web-server-dmz-2
description: Web Server – DMZ-2 status: enabledcapability uplink: nosystem vlans: noneport-group: Web Server – DMZ-2max-ports: 32inherit:config attibutes:switchport mode accessswitchport acess vlan 5ip port access-group web-secure inip flow monitor outputno shutdown
evaluated config attibutes:switchport mode accessswitchport acess vlan 5ip port access-group web-secure inip flow monitor output
no shutdownassigned interfaces:
Vethernet10
Port Group Name
ACL
Interfaces
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 17
Port Groups - VI Admin View
Consistent Workflow: VI admin selects Port Groups when configuring a VM through vSphere Client
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 18
Port Profile Configuration
Support Commands Include:
Port managementVLANPVLANPort-channelACLNetflowPort SecurityQoS
Support Commands Include:
Port managementVLANPVLANPort-channelACLNetflowPort SecurityQoS
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 19
VMware vNetwork 3rd Party Switch
Enterprise networking vendors can provide their own implementations of the virtual switch leveraging the vNetwork switch API interfaces
Enables support for 3rd party networking capabilities, including new features, monitoring and management of the virtual network
The Cisco Nexus 1000V is the first 3rd Party vNetworkDistributed Switch
vSwitch
CU
RR
ENT
vSwitch vSwitch
vNetw
ork
vNetwork Platform
vNetwork Distributed Switch
vNetwork Platform
Cisco Nexus 1000 –3rd Party Switch
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 20
How is the Product Priced?Nexus 1000V is licensed per CPU socket, each CPU requires 1 license, no limit on the number of cores per CPU
CPU licensing is inline with VMware vSpherelicensing, provides customer flexibility for increasing number of cores per socket
Today’s server motherboards can accommodate 1-8 CPUs and each CPU has 1-6 cores
CPUSocket Core
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 21
For more information visit: www.cisco.com/go/vmworld09
© 2008 Cisco Systems, Inc. All rights reserved.Presentation_ID 22