Presentation is loading. Please wait.

Presentation is loading. Please wait.

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 1 © 2013 Cisco and/or its affiliates. All rights reserved. Michael Waas Systems.

Similar presentations


Presentation on theme: "© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 1 © 2013 Cisco and/or its affiliates. All rights reserved. Michael Waas Systems."— Presentation transcript:

1 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 1 © 2013 Cisco and/or its affiliates. All rights reserved. Michael Waas Systems Engineer

2 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2 Where You Engage Customers Source of Business Intelligence Up to 80% of Your Employees Reside To Grow Your Business & Innovate Your Remotes Sites Must Keep Pace with HQ

3 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3 Applications are Moving to the Data Center and Cloud Internet Edge Is Moving to the Branch Branch Data Centers CloudCloud of CIOs Expect to Operate via the Cloud by 2015 MobilityMobility More Mobile Data Traffic by 2015 Fat Apps Of Mobile Traffic will be Video Pressures on the WAN

4 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4 BUDGET USER SUFFERING WAN Demands Rethink your Branch-WAN Strategy

5 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5 1. Internet Transit Pricing based on surveys & informal data collection primarily from Internet Operations Forums – ‘street pricing’ estimates 2. Packet delivery based on 15 years of ping data from PingER for WORLD (global server sample) from EDU.STANFORD.SLAC in California Source: William Norton (DrPeering.net); Stanford ping end-to-end reporting (PingER) Low Cost Alternative Of organizations do are planning to transition to connections

6 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6 Commodity Transports Viable Now Dramatic Bandwidth, Price Performance Benefits Higher Network Availability Improved Performance Over Internet

7 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7 Dual Internet Hybrid Dual MPLS Public Enterprise Internet MPLS Internet Internet Internet MPLS MPLS Dual MPLS Highest reliability, security & availability ẋ Inflexible for new services ẋ Expensive Hybrid Enable SaaS and/or high BW apps Balanced availability Dual WAN+Dual Router = % Reliability Dual Internet Best price/performance Least dependent on contracts Dual WAN+Dual Router = % Reliability Consistent VPN Overlay enables Security across Transition

8 8 Transport Independent Intelligent Path Control Secure Connectivity DMVPN IPsec overlay design Consistent operational model Simple transport migrations Scalable and Modular design Performance Routing (PfR) full utilization of all bandwidth Application best path based on delay, loss, jitter and path preference Improved network availability Suite-B strong encryption ASA & IOS Firewall/IPS comprehensive threat defense Cloud Web Security (CWS) for direct Internet Access Application Optimization Application Visibility & Control (AVC) WAAS Application Acceleration and bandwidth savings Internet AVC Branch Data Center WAASPfR 3G/4G-LTE MPLS

9 Cisco ISR-AX: Enabling the Next Generation (I)WAN Secure and Optimized Connectivity over any Transport Transport Independent – Consistent overlay design (Ethernet, Fiber, 3G/4G (LTE), xDSL, PON) Intelligent Path Control Services Consistency Secure Access Optimized Connectivity

10 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10 Cisco Confidential 10 © 2013 Cisco and/or its affiliates. All rights reserved. Optimize Application Performance

11 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11 HTTP FTP SMTP POP3 IMAP HTTPS Are these applications? Or just ports? 80 20/ What about these?

12 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12 Control application network usage to improve application performance Control Advanced reporting tool aggregates and reports application performance App Visibility & User Experience Report Management Tool Collect application performance metrics, and export to management tool Reporting Tool Perf. Collection & Exporting Reporting Tools NFv9/IPFIX 3 3 AppBWTransaction Time … SAP3M150 ms… Sharepoint10M500 ms… Identify applications using L3 to L7 information Application Recognition What is Application Visibility and Control (AVC) What is Needed High Med Low

13 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13 QoS (w/ NBAR2) PfR QoS (w/ NBAR2) PfR Control High Med Low Cisco Prime Infrastructure 3 rd Party Tools Cisco Prime Infrastructure 3 rd Party Tools App Visibility & User Experience Report Management Tool Unified Monitoring -Traffic Statistics -Response Time -Voice/Video Monitoring -URL Collection Unified Monitoring -Traffic Statistics -Response Time -Voice/Video Monitoring -URL Collection Reporting Tool Perf. Collection & Exporting Reporting Tools 3 3 AppBWTransaction Time … SAP3M150 ms… Sharepoint10M500 ms… NBAR2 Metadata NBAR2 Metadata Application Recognition What is Application Visibility and Control (AVC) Enabled Technologies NFv9/IPFIX

14 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential AVC Configuration Prime Infrastructure 14 Enable AVC with just ON/OFF button With Cisco Prime Infrastructure 2.0

15 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential AVC Configuration Prime AVC One-Click 15 Enable AVC in one-click One device at a time Two simple steps 1.Select interface(s) 2.Enable 1 2

16 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16

17 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17 Maximize Application Performance Controls application bandwidth usage and selects optimal path 17 Identify applications using NBAR2 and control bandwidth with Cisco industry leading QoS Limit unwanted traffic and prioritize critical applications Application-aware QoS Deliver critical applications over the path which can meet application performance requirement using PfR Automatic load share to maximize bandwidth use on available links Intelligent Path Selection Stop bittorrent and netflix. Prioritize salesforce, oracle Backup WAN1 WAN2

18 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18 Performance Routing Topologies Full utilization of expensive WAN bandwidth Efficient distribution of traffic based upon load, circuit cost and path preference Improved Application Performance Per application best path based on delay, loss, jitter measurements Increased Application Availability Protection from carrier black holes and brownouts WAN1 (IP-VPN) WAN2 (IPVPN, DMVPN) MC/BR BRMC/BR BR HQ MC BR MC Enterprise WAN ISP1 ISP2 Internet Edge Branc h Optimize by: Reachability, Loss, Delay, Jitter, MOS, Throughput, Load, and/or $Cost

19 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19 Private Cloud BranchDC/Headquarters Faster Applications, More Users, Less Bandwidth 90% HD Video optimization and better user experience Twice as many Citrix users over same WAN, 70% faster Toyota: ROI in less than one year, 65% BW cost savings Easy to Deploy Works with existing branch routers (and existing AX license) Scalable AppNav Controller and WAVE pool is scalable Native HA capability vWAAS WAAS ExpressWAAS Express Proliferation of Devices Users/ Machines AppNav-XE ControllerAppNav-XE Controller CSR WAVE WAN Accelerate Any TCP Connection

20 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20 SOLUTIONSOLUTION Reduce load – Data redundancy elimination (DRE), compression, and TCP optimization Application optimization – Fewer protocol messages and metadata caching PROBLEMPROBLEM Application latency WAN bandwidth inefficiencies Application bandwidth with Cisco ® WAAS Application bandwidth natively Application latency natively Application latency with Cisco WAAS Application Bandwidth Application Latency Bandwidth (Mbps) Latency (Seconds) Reduction in bandwidth Reduction in latency

21 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21 Cisco Confidential 21 © 2013 Cisco and/or its affiliates. All rights reserved. Securing Your IWAN

22 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22 Step 1: Secure Transport IPSec with DMVPN or FlexVPN overlay Secure transport independent overlay Add Strong Cryptography: IKEv2 + AES-GCM 256 Step 2: Threat Defense IOS Zone-based Firewall Minimize exposure DHCP addressing for Internet and tunnel interfaces Don’t put tunnel addresses into DNS Step 3: Choose your performance level Size router based on Encryption with Services and WAN bandwidth Head-end: ASR1000 or ISR4451X Branch: ISR-G2 DSL Cable Branch Data Center ISR-G2 ASR 1000 ISP AISP A ISP CISP C

23 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 23 Control the Perimeter: External and internal protection: internal network is no longer trusted Protocol anomaly detection and stateful inspection Communicate Securely: Call flow awareness (SIP, SCCP, H323) Prevent DoS attacks Flexible: Split Tunnel-Branch/Remote Office/Store/Clinic Internal FW—International or un-trusted locations/segments, addresses regulatory compliances Integrated: No need for additional devices, expenses and power Works with other Cisco Services: SRE, Scansafe, WaaS Express Manageable: Supports CLI, SNMP, CCP, and CSM Supports Cisco Configuration Engine DSL Cable Branch Data Center ISR-G2 ASR 1000 ISP AISP A ISP CISP C

24 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24 Simplifies WAN Design Easy multi-homing over any carrier service offering Single routing control plane with minimal peering to the provider Transport IndependentTransport Independent Proven Robust Security Certified crypto and firewall for compliance Scalable design with high performance cryptography in hardwareSecure Dynamic Full Meshed Connectivity Consistent design over all transports Automatic site-to-site IPsec tunnels Zero-touch hub configuration for new spokesFlexibleWAN

25 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 25 Cisco Confidential 25 © 2013 Cisco and/or its affiliates. All rights reserved. Why Cisco IWAN?

26 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 26 Integrated Platform for IT Simplicity Granular Control Everywhere Proven Security at Scale Unmatched Context-based Routing Quick ROI Faster than Alternatives Overlay Appliances 72% Up to 72% in Savings The Alternative: App Visibility & Control IP Sec VPN WAN Opt. Firewall WAN Path Selection Router Any to Any Security Protect All Branch Resources Secure Direct Internet Access Network-Aware App-Aware Endpoint-Aware Savings enables Business Innovation Many pay off in 6-12 months6-12 months Branch  ISR-AX DC  ASR1K-AX Cloud  CSR1000V

27 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27 L2-L3 Transport L4-L7 Application Services Control OptimizationVisibility Transport Independent Secure Routing ISR-AX Cisco AX Routers 3900 | 2900 | 1900 | 800 | 4451 | ASR1002-XCisco AX Routers 3900 | 2900 | 1900 | 800 | 4451 | ASR1002-X Simplify Application Delivery One Network UNIFIED SERVICESUNIFIED SERVICES ASR1000-AX ISR 4451-X-AX

28 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 28 Introducing the ISR App License Security U.C. IP Base App Extends and replaces the Data license with application router services. All previous Data license features included. All Application Visibility and Control (AVC) features included. Enables powerful, comprehensive application monitoring and management. Right-To-Use license for WAAS License enables WAAS Express, WAAS SRE, or WAAS on UCS-E with no additional software cost. App & Security included with the ISR-AX!

29 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 29 Lower Costs without Tradeoffs Maximize Your WAN Investment Unleash Your Business Potential

30 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 30 Thank you.


Download ppt "© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 1 © 2013 Cisco and/or its affiliates. All rights reserved. Michael Waas Systems."

Similar presentations


Ads by Google