1 / 26

Cisco Unified Access Roadshow One Network : Wired Access

Cisco Unified Access Roadshow One Network : Wired Access. Dan Schnour Cat. 3K Product Manager. Business Challenges of Evolving Workspace. BYOD. Collaboration. VIRTUALIZATION. $$. Non IT Provided Devices Guest and Contractors Secure Access . Reduce Travel Costs Collaboration

alesia
Télécharger la présentation

Cisco Unified Access Roadshow One Network : Wired Access

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Cisco Unified Access RoadshowOne Network : Wired Access Dan Schnour Cat. 3K Product Manager

  2. Business Challenges of Evolving Workspace BYOD Collaboration VIRTUALIZATION $$ • Non IT Provided Devices • Guest and Contractors • Secure Access • Reduce Travel Costs • Collaboration • Rich Media Services • Business Productivity • Ease of Deployment • Low CAPEX/OPEXwith VDI Securing Any Access IT REQUIREMENTS Managing Complexity And Scale Delivering High-Quality Experience Ensuring Business Continuity with Lower TCO

  3. It All Starts at Access • How do I onboard devices and contextually authenticate users? • How do I segment users, devices and applications? • How do I protect my network infrastructure? Securing Any Access On-Board Segment Protect • Automatic discovery and device profiling with Device Sensor • Zero downtime deployment with .1xMonitor Mode • Simplify user authentication with Flexible Authentication On-Board • Flexible Role-based segmentation with Security Group Access. • Simplified Layer 3 Segmentation with Easy Virtual Network. Segment • Prevent Eavesdropping with link layer encryption with MACsec • First Hop IPv4/IPv6 Security for L2 threat defense • Flexible NetFlowfor real-time traffic flow analysis • Protect CPU with Hardware-based Control Plane Policing. Protect

  4. Cat3k: Now ShippingCat4K: Now Shipping BYOD : Context-based Control On-Board Segment Protect • Identify endpoints based on protocol information with Device Sensor • Identify and Authenticate user with 802.1x (Flex auth) • Classify context of access based on Device Type and User CDP LLDP DHCP MAC 1 1 Location aware Device Aware Identity aware 2 2 1 1

  5. Cat3k: Now ShippingCat4K: Now Shipping Secure BYOD with 802.1X On-Board Segment Protect Monitor Mode Unobstructed Access No Impact on Productivity Gain Visibility MAC Based Authentication Flexible Authentication Sequence Enables single configuration for most use cases Flexible fallback mechanism and policies IP Telephony SupportSupport for Virtual Desktop Environments Single Host Mode Multi-Host Mode Multi-Auth Mode Multi-Domain Authentication Critical Data/Voice Authentication Business Continuity in case of failure Identity Differentiators Rich and Robust 802.1X Authentication Features Cisco Catalyst® Switch IP Phones Network Device Guests Tablets Authorized Users • 802.1X • MAB • WebAuth

  6. Cat3k: Now ShippingCat4K: Q3CY13 BYOD: Context-based Control • Role-Based Access Control and Segmentation with Security Group Access Secure Group SGACL enforces policy at access, campus edge, or DC patient doctor doctor facility voice video On-Board Segment Protect CDP LLDP DHCP MAC 1 1 1 1 2 2 X Location aware Location aware Device Aware Device Aware Identity aware Identity aware SG Tag imposed to incoming traffic Cisco Innovation Security Group Access • Simplifies ACL management • Uniformly enforces policy independent of topology • Fine-grained access control 2 2 1 1 1 1

  7. It All Starts @ Access • How do I scale my network to meet device proliferation ? • How do I future proof my network while protecting my investment? • How do I provide consistent policies across networks and devices ? Scale Protect Investment Provide Consistency Managing Complexity And Scale • 848 Gbps System Performance • 384 Ports of 10/100/1000 & 40G uplinks • 384p of PoEP & 192p of UPOE (9KW PS) • 384p of Energy Efficient Ethernet • 9 Member Stack • 64Gbps Stacking BW • Full POE/POE+/UPOE Scale Protect Investment • 7-10 years of life cycle • Legacy line-card support with new supervisor • Feature enhancement with new supervisor • Mix/Match different generation line cards with no impact to system performance Stack Capacity as you grow 5-7 years of life cycle • Unified Management / Single Pane of Glass Management : Prime Infrastructure • Single Policy Control Dashboard : Identity Services Engine [ISE] Provide Consistency

  8. Unprecedented Investment Protection Scale Protect Investment Provide Consistency Backward compatibility for all line cards with new supervisor 14 years 90% Transition to E-Series Catalyst 4K EOS EOL 11 years EOS EOL 1999 … 2004 … 2007 … 2010 … 2015 … 2020 9 years EOS Catalyst 3K EOL

  9. It All Starts @ Access • How do I know my network is ready for real time applications? • What real time applications and devices are running on my network? • How do I monitor and troubleshoot Application level traffic ? Delivering High-Quality Experience Assess Visualize and Control Monitor/Troubleshoot • Assess network readiness for real time media applications with IP SLA Assess • Differentiate video applications and optimize QoE with Media Services Proxy (MSP)/Metadata • Improved Application visibility with Flexible NetFlow Visualize and Control • Automate monitoring and troubleshooting with Mediatrace • Application level hop by hop statistics with Performance Monitor Monitoring & Troubleshooting

  10. Comprehensive Visibility @ Access Assess Visualize and Control Monitor/Troubleshoot Which end point has poor video quality and How do I know what to troubleshoot? End points are capable of High Definition however they only work in Standard Definition. Why? • Wire Shark can capture raw, real-time packets directly on the switch Is my network ready for 100 HD Desktop Cameras, 30 IPVSC and a new Telepresence room? X How do I provide Quality of Experience for all video applications? • Using MSI / MSP & Metadata the switch can now identify devices and applications for differential treatment • IP-SLA VO injects synthetic media traffic to assess network readiness • MediaTrace locates application performance problems • Performance Monitor provides application level data using Flexible NetFlow • Cisco Prime provides management

  11. Deterministic Quality of Experience Assess Visualize and Control Monitor/Troubleshoot Differential Traffic Treatment through Visibility Device/Application ID exported to FnF Campus Cisco Prime Infrastructure Endpoints embedded with the Media Services Interface Catalyst 3K-X/4500E Quality of Experience • Media Services Interface & MSP • Flow Metadata • AVC on Wireless Controller • Application based QoS • Device/App basedFnF* Workflows to deploy and provide location awareness Uniform QoS policies across network • Device and Application Identification using • MSI / MSP

  12. It All Starts @ Access • How can I make my network resilient to handle business SLAs ? • How can I easily onboard my network infrastructure ? • How can I reduce IT energy expenses and align with corporate ‘Green’ goals? $$ Resiliency Plug n Play Energy Efficiency • Power & data resiliency with StackPower and Stackwise+ (3K-X) • No impact to voice/video for planned and unplanned downtime with ISSU, NSF/SSOand VSS* Resiliency • Zero Touch deployment - Smart Install, Auto QoS, Auto Smart Ports • Programmability with EEM, XML, SDN* • Built in sniffer capabilities with Wireshark • Efficient Planning & troubleshooting with IPSLA, FnF Plug and Play • Visibility, Control and Reporting of enterprise wide energy usage • Save up to $65 per Switch Port** • $0 SKU for Energy Visibility & Basic Control on 3K/4K Energy Management Business Continuity with Lower TCO *Estimates 65% desktops, 35% laptops, 1 AP for every 20 employees, everyone has an IP Phone Results vary based on what, if any, energy management solution is previously in place; Assumes $0.12 per kWh (kilowatt-hour). ** Assumes ROI across 5 years; modeled on a 250 employee campus

  13. NO Downtime for BYOD, Collaboration & Virtualization Best in class Fixed resiliency ! Resiliency Plug n Play Energy Efficiency Maximize Power Redundancy with StackPower Fan Redundancy Simplify and Scale with StackWise+ In-Chassis FRU Redundant PSU Highly Resilient Zero-Footprint of RPS. PS Backup within Stack Innovative Inter-Chassis Power Interconnect Common power pool for distributed power redundancy Intelligent Load Shedding Preserve critical network during power failure Flexible Non-Stop communication. Variant in sizes (AC/DC)

  14. NO Downtime for BYOD, Collaboration & Virtualization Best in class modular resiliency ! Seamless Resiliency Plug n Play Energy Efficiency Network HSRP/VRRP/GLBP VSS (Jan 2013) ISSU License No Long Required NSF available in IP Base Now! Redundant Sup Redundant PS System CoPP ISSU NSF/SSOSmart Call Home Ent Svc NSF ISSU Lic Distribution Layer Campus IP Base ISSU SSO Link Fast Detect: TDR, DOM UDLD Fast Converge: Flexlink+, RPVST CoPP, Basic HA LAN 2+2 uplinks Access Layer Redundant Fans

  15. BYOD : Operational Efficiency Resiliency Plug n Play Energy Efficiency 3K, 4K, 6k * (“Director”) AccessSwitches Smart Install Auto Smart Ports Programmability Smart Call Home IPSLA, WireShark Zero Touch Deployments and Maintenance Plug and Play for End Devices Control Your Network Monitor & Troubleshoot Anomaly Detected New Device Attached New Switch Connected Proactive diagnostics Real time Alerts Web-based reports Routed to TAC team EEM XML Software Defined Network (OnePK)* Port Configuration: Applied QoS Policy: Enforced Security Policy: Enforced Software image downloaded; Configuration automatically applied • Cost Savings: $15,000 (or 230 Hours) per 100 Switches*

  16. Cisco EnergyWise is an IOS-based intelligent energy management protocol What’s New with Fast-Start $0 SKU’s? Enhance customer ROI with a $0 SKU Available only with 4K, 3KPoE/PoE+/UPOE Features vary by partner, but Visibility, Monitoring of energy for free (up to 5 years) Limited control of devices Cisco EnergyWise: A key differentiator Special $0 EW Fast-Start SKU’s for Cisco Customers with 4K/3K Resiliency Plug n Play Energy Efficiency How to Order? • 3 SKUs available in Cisco GPL and ordering tool • Each SKU license for up to 50 users • For more information on Cisco EnergyWise contact ask-energywise@cisco.com

  17. Access Switching Strategy, and Areas of Investment

  18. Catalyst 4500E – Lead Modular AccessBuilding BYOD, Collaboration Ready Networks ! 4510R+E 4507R+E 4506-E 4503-E • Supervisor Engine 7L-E • 520Gbps Switching Capacity • 2 x 10GSFP+/SFP uplink • 240 10/100/1000 Ports Supervisor Engine 7-E 848Gbps Switching Capacity 4 x SFP+/SFP uplinks 384 10/100/1000 Ports 2 LineCards 5 LineCards 5 LineCards 8 LineCards Single Supervisor Dual Supervisor <200msISSU WS-X4748-RJ45-E WS-X4748-UPOE+E POE, POE+ and Cisco UPOE Dual Core CPU for 3rd Party Apps (Wireshark) • UPOE60W, IEEE • 30W/port on all 48 ports WS-X4648-RJ45-E WS-X4648-RJ45V+E 1+1 Power Redundancy N+1 Fan Redundancy Scales up to 384p POE/PoEP & 192p of UPOE • 30W/port on 24 ports 3rd party validation UNDISPUTED MARKET LEADERSHIP 110M+ Ports, 800K+ Systems 70% PoE/PoEP Port share 80% Adoption by Cisco Top Customers “Powerful stuff: New Cisco switch delivers 60 watts to the desktop”

  19. Catalyst 3K – Lead Fixed AccessBuilding BYOD, Collaboration Ready Networks ! Stack Power now available on LAN Base Stand-Alone Switch Portfolio Stackable Switch Portfolio Catalyst 3560-X Data / PoE(+) Modular 1G/10G Uplinks Dual PS E-LLW Catalyst 3560 v2 Data or PoE Fixed 1G Uplinks Single PS LLW Catalyst 3750-X Data / PoE(+) StackWise Plus Modular 1G/10G Uplinks Dual FRU PS and Fans E-LLW Catalyst 3750 v2 Data or PoE StackWiseFixed 1G Uplinks Single PS LLW Fast Ethernet Fast Ethernet Gigabit Ethernet Gigabit Ethernet Network And Service Modules NEW UPOE coming soon!! Service Module • Flexible Netflow • MACsec C3KX-NM-1G C3KX-NM-10G C3KX-NM-10GT C3KX-SM-10G ¼ Billion+ Ports and 7 Million+ Units sold worldwide Data Redundancy using Stackwise+ (64 Gbps)* Power Redundancy using StackPower* Field replaceable Power Supplies and Fans* 9 member switch stack** Enhanced video features, e.g., Mediatrace, built-in traffic generation Enhanced Security features, e.g., SGT, Device Sensor **available on 3750, *available on 3K-X

  20. Power Over EthernetA technology pioneered by Cisco 2003 2000 2007 2009 2011 Industry Standard:IEEE 802.3at (30W PoE+) Industry Standard: IEEE 802.3af (15W PoE) Cisco Innovations Drive Industry Standards 7W Inline Power 15W (PoE) 30W (PoE+) 60W UPOE

  21. CISCO 2960S PORTFOLIO Layer 2 Only Catalyst 2960S 10G/1G Uplinks FlexStack Full PoE, PoE+ E-LLW Fast Ethernet Gigabit Ethernet Catalyst 2K Campus Portfolio • Competitive Features • Securitywith 802.1x Monitor Mode • Lower TCOwith Energy Wise, Smart Operations and Auto QoS • Static Routing & Priority Queing • FlexStack2 x 10G ports (wire speed) Catalyst 2960SF 1G Uplinks FlexStack Full PoE, E-LLW • Differentiators of 4K/3K over 2K • TrustSec: SGT, MACsec, Device Sensor • Application Visibility:FnF, Mediatrace, Wireshark • Resiliency: StackPower, ISSU, UPOE • Scale: Stack up to 9 on 3750X, 10 Slot Chassis 4500E 60M PORTS 1.3M+ UNITS ENERGY EFFICIENCY LOWERTCO EASE-OF-USE Cisco Quality at Competitive Price

  22. 22% Growth in FY12 3560C and 2960C Compact SwitchDelivering Zero Touch BYOD Deployments Fast Growing Catalyst Platform • POE+/UPOE Powered • AC Power Option • Smart Operations • Smart Install • Auto Smart Ports • PoE • PoE(+) and non PoE Models 4500E 3750X Scalable and Proven Deployments in Education, Retail & Healthcare

  23. BYOD Access Portfolio : Catalyst Switching Traditional Workspace Next Generation Workspace Collaboration Virtualization BYOD Data Voice IP Base Catalyst 3K IP Base • Scale & Performance • Wired/wireless convergence* • TrustSec & Segmentation • Device Sensor, Cisco TrustSec (SGA, MACSec) • Dynamic routing protocol • OSPF, EIGRP Stub, RIP • Application Visibility • Flexible NetFlow & Medianet • 3rd Party Apps (WireShark) * • Lower TCO • EEM & IP SLA • Smart Install Client & Director LAN Base • Scale & Performance • 9 Member Stack (2X+ ports) • 3 X Stacking BW (64 Gbps) • Full POE/POE+ • Resiliency • StackPower, StackWise+ • FRU Power supplies and Fans • Energy Management & Green • EnergyWise • UPOE (60W) ** • EEE ** Catalyst 2960 • Scale & Performance • Stacking (upto 192 port) • POE/POE+ • Base Identity features • Lower TCO • Lowest Power consumption • Green / Energywise • Smart Install Client * Only on IP Base * Roadmap

  24. BYOD Access Portfolio : Catalyst Switching Traditional Workspace Next Generation Business Data Voice Collaboration Virtualization BYOD @96p base config with Redundancy and UPOE Capability Catalyst 4500E • Scale & Performance • 848 Gbps System Performance • 240p with 7 slot and 384p with 10 slot Chassis • In Service Software Upgrade* • VSS** • Wired/wireless convergence ** • TrustSec & Segmentation • Device Sensor* • VRF-Lite, EVN* • Cisco TrustSec* (SGA**, MACSec) • Application Visibility • Flexible NetFlow*, Medianet* • 3rd Party Apps (WireShark*) Catalyst 2960 • Scale & Performance • Stacking (upto 192 port) • POE/POE+ • TrustSec • Identity • Lower TCO • Power consumption • Green / Energywise • Smart Install Client • Energy Management and Green • UPOE (60w) • EnergyWise and EEE • Lower TCO • AutoSmart Ports • Longer Life Cycle (7-10 years) • Smart Install Director** * With IP Base ** Roadmap

  25. Key Takeaways Flexibility of Choice Architecture and Operations Agility Investment Protection • Breadth of the portfolio across 2k, 3k and 4500E • Protect your current investments while getting ready for future in Access. • Features for current and Next Generation Campus • Trustsec • SmartOps • AVC

More Related