Evolution of Campus Switching Marketing Presentation Marketing Presentation Muninder Singh Sambi Speaker Name Designation Sr. Director – Product Management Speaker Name Designation Date: 00/00/0000 Date: 28/05/2015 Date: 00/00/0000
Application Assurance Evolving Campus Demands The Application Landscape Is Changing SCALABILITY High density 10G/40G in Campus Network Virtualization RF Optimization INTERNET OF THINGS IOT for Carpeted Space Light as a Service New Uses for Wired Ports, Greater Demand For Bandwidth Flexible WORKSPACE Less space per Employee MOBILITY Trusted Devices 802.11ac Onboarding Workspace Flexibility and Mobile Users/Devices Evolving Campus & Branch Requirements Security Of Large Companies are Targeted by Malicious Traffic % 95 Mobility Application Assurance 6X 2/3 More Mobile Data Traffic by 2015 of Mobile Traffic Will Be Video
Improve Customer Experiences Reduce Costs and Improve Efficiency What Can Cisco Evolved Campus Enable? Innovate and Transform Your Business Enable next generation apps Improve customer engagement Increase productivity Higher sales transactions Grow Revenues Meet growing user expectations Faster app performance Instant access to content Seamless experience Improve Customer Experiences Lower LAN costs Fully utilize network Pervasive Layered Security Lower downtime Reduce Costs and Improve Efficiency
Cisco Innovations Drive Industry Standards Driving Industry standards – PoE & NBASE-T Example Cisco Innovations Drive Industry Standards 2000 7W Inline Power 2003 15W PoE 2007 30W PoE+ 2011 60W UPOE Multi-Gig IEEE 802.3af 2009 IEEE 802.3at Soon?
Cisco Enterprise Campus Blue print Leading in foundation services Cisco Prime Infrastructure Identity Services Engine APIC-EM Security Secure Group Access to Simplify the Network and Enable Virtualized Data Center Services Resiliency Maximized Network Availability with Virtual Switching and Stateful Switch Over Cisco Catalyst 6800/VSS WISM2/ WLC Cisco Catalyst 4500E, Cisco Catalyst 3K WLC Visibility Application-Aware Networking to Enable Collaboration, Video, and Other Apps Wireless APs Simplicity Reduce Operating Expenses and Improve Network Application and Service Delivery Cisco Catalyst 6800/6500 for Campus Core/Dist Cisco Catalyst 4500E and 3850 for Campus Access OS Consistency: IOS 15.0 Cisco Validated Designs for Campus Deployment
TRADITIONAL WORKSPACE Catalyst Access Portfolio Essential connectivity to Unified Access for next-generation workspaces TRADITIONAL WORKSPACE UNIFIED WORKSPACE Security Video Mobility Converged Wired/Wireless Access Data Voice Lead Stackable Switch Cisco Catalyst 3850/3650 Lead Modular Switch Cisco Catalyst 4500-E Cisco Catalyst 2960-X Secure, reliable access Low TCO & energy-efficient Competitive Feature Set at Compelling Prices FEATURES Upto 480G Stacking Upto 4x10G Uplinks Stackpower with 3850 Supports up to 50/100AP’s Scale and Performance 928G Backplane 8 Modular 1/10G Uplinks Supports 100AP’s* SCALE
UADP ASIC Enables Convergence Built on UADP Unique and powerful Cisco innovation Hardware performance with software flexibility Optimized Performance CAPWAP encapsulation/de-capsulation, Flexible Netflow, QoS Future Proofed and Programmable Flexparser enables new software features over the product lifetime UADP is used across multiple platforms Catalyst 3850, Catalyst 3650, Catalyst 4500/Sup8E, WLC5760
Wireless Standards – Past, Present, and Future CLIENTS / BANDWIDTH Early 2000 2002 2004 2006 2008 2010 2012 2014 2016 Pervasive Nice to Have Media Rich Applications Mission Critical 802.11n 450 Mbps 802.11ac- Wave2 3.5 Gbps 6.9 Gbps Future 802.11ac Wave1 1 Gbps 802.11g 54 Mbps 802.11a, 802.11b 11 Mbps 10Gbps 11Mbps
NBASE-T Alliance www.NBASET.org Founders Contributors Adopters
Multigigabit Technology: Enabling 802.11ac Wave 2 and Beyond Multigigabit Switch Ports 1G, 2.5G, 5G and 10G PoE, PoE+ and UPOE on Multigigabit Ports Investment Protection First to Deliver NBASE-T Ready Switches Catalyst 4500E Catalyst 3850 Catalyst 3560-CX Modular Converged Wired and Wireless Stackable Converged Wired and Wireless Compact Wired No New Cabling for 802.11ac Wave 2
Cisco Multigigabit Ethernet Key Capabilities Maintain Switch to AP Reach at Higher Speeds Adaptive Rate Technology (FE, 1G, 2.5G, 5G, and 10G) Future proofed for higher speeds Infrastructure Investment Protection Supports 100m distance with Cat5e cabling up to 5G speeds for Brownfield Supports Cat6a cabling for Greenfield deployments for higher speeds POE/POE+/UPOE Cisco Innovation over 10GT Standard to support high end point power needs Standards Compliant – NBASE-T Alliance 1G and 10G BaseT IEEE standards, intermediate speeds “work in progress”
Cisco Multigigabit Ethernet Cabling Support Maximum Investment Protection Cable Type 1G 2.5G 5G 10G Cat5e 100m 100m * N/A Cat6 55m Cat6a Auto-negotiation of cable type of speeds supported * 0-55m: no restrictions 55-100m: based on customer cabling infrastructure and configuration, there are some corner cases in which customers will experience less than 100m support. In these cases, the system will automatically default to 2.5G (post-FCS SW release support)
Industry’s First 40G uplink User access switch 2x40Gig, QSFP 8x10Gig, SFP/SFP+ Performance 80G Non Blocking 80G Non Blocking Only work on mGig and 10G Fiber (24-port) Switches Only work on mGig and 10G Fiber (24-port) Switches Compatibility All 3850 Uplinks Are Supported on mGig switches
The New Catalyst 3850 10G Fiber Switches # 10G Ports 12 16 24 32 48 Total Capacity 160G 320G 640G Network Modules Supported C3850-NM-4-10G Slot Used C3850-NM-8-10G C3850-NM-2-40G 4x40G fixed (No FRU Network Module) Key Features Stacks with C3850 family – Stackwise and StackPower Availability June 2015 September 2015
Fixed Power Supply, Fixed Fans Mini 3650 – Space Constrained 3K switch Depth of switch – 11.62” Fixed Power Supply, Fixed Fans 11.62 inch depth, 1RU Cisco StackWise®-160 Converged Access Expected FCS Feb 2016 Upto 770W PoE+ budget 2 SKU’s 24 x 1Gbe 48 x1Gbe IP Base/IP Services 48 Ports – 4xSFP+ 24 Ports - 2xSFP & 2xSFP+ 11.62” = 295mm
Lets Transform The Workspace Introducing the New Catalyst Compact Switches Catalyst 3560-CX and 2960-CX Power Saving Hibernate Mode L2/L3 SW Perpetual PoE* Netflow Lite Trustsec ready (on IPB, IPS) UPOE Powered / PoE Passthrough Option Instant Access Option (with 10G) DC Powered Option APIC-EM Silent/Fanless 1G SFP/Copper uplinks 10G SFP+ uplinks EEE 8x1G and 12x1G options Cisco MultiGig Option Lets Transform The Workspace
Collapsed Access Architectures are driven by compact switches outside the wiring closet 1 STAR TOPOLOGY Desktop Switches Deliver .. Aggregation Gigabit Connectivity and PoE Simple Installation, mounting flexibility Silent efficient operation Fiber Desktop Switches Reduced Cost with Collapsed Access Increased space utilization by eliminating wiring closets on each floor Lower maintenance cost (management, cooling, etc.) Reduced cabling infrastructure ~20%* lower cost for fiber vs. copper Reduced maintenance costs (management, cooling, etc) for 2 RING TOPOLOGY Aggregation Desktop Switches Fiber Loops (*) WIK Consult. Cost Comparison of the FTTO concept vs a structured cabling system with floor distribution units
Network Plug-N-Play with APIC-EM Automates Switch Configuration Pre Provision Projects/Sites Policies Match Rules Configs/Image IP Addressing NETWORK ADMIN PnP Server Campus, Bldg-2 Smart Install-Client PnP Agent Smart Install Proxy APIC EM Remote Installer Mount and cable devices Power-on INSTALLER Network Admin Remotely Monitors Status of Install While in Progress Booting Devices Call Out to PnP Server, Requesting Instructions UNSKILLED INSTALLER GUI BASED CONSISTENT FOR DEVICES AND PIN (CAMPUS/BRANCH) SECURE GREENFIELD AND BROWNFIELD RMA USE CASE
Compact Switches Deliver Cost Effective and Secure Networking Solutions for Many Industries Mandarin Hotel* Uses the UPOE Powered Compact Switches for In-room Connectivity; For Details Please See Case Study/Blog HOTELS Compact Switches Are Extremely Popular with Service providers for SP Wi-Fi and Other Deployments SP Norwegian and Other Cruiselines Use Compact Switches for In-room Networking and Multimedia Needs; for Details See the Case Study CRUISE Subways and Trains Deployed DC Powered Compact Switches in Semi- climactic Boxes to Power APs for Providing Wi-Fi on the Trains TRAINS Large Enterprise Customers Are Evaluating the Compact Switches for Next Gen Workspaces and Fiber to the Office (FTTO) Deployments ENTERPRISE Retail Outlets Continue to Use Compact Switches for Cable Reduction and to Connect to Point of Sale Terminals RETAIL
Catalyst Backbone portfolio 6807-XL 6880-X 6800IA 7 slots 10RU Up to 880G/slot capable Tremendous investment protection Optimized for 10/40/100G Built for scalability and performance Up to 80x10G ports in 4.5RU Built-in sup with extensible slots Catalyst 6500 DNA Optimized for 10G density, price, and rich services Single touch point for entire campus network POE/POE+ and stacking Cat6K features at the access with feature consistency
Not Every Port is Created Equal! New Modular 10G Card - C6800-32P10G New High Density Multi-Rate Line Cards 32 ports of SFP/SFP+ or up to 8 ports of QSFP* 10/100/1000M GLC-T 100M FX 1M IPv4 Routes 2M NetFlow 256K QoS & ACL 160G Throughput, Performance mode for line rate VSS, Instant Access, SGT, MACSec, LISP, HQoS, etc Front-facing RFID List Price: $35,000 Less than 6904-40G Dramatically reduced price per port 250MB per Port 500MB per Port in Performance Mode * With CVR-4SFP-QSFP Adapter Not Every Port is Created Equal! * with new CVR-4SFP-QSFP Adapter Cable
Catalyst 6800 10G Portfolio Providing Deployment Options 32x10G SFP+ 16x10G SFP+ 8x10G SFP+ Common ASIC Architecture Throughput in 6807 160G Optics: SFP / SFP+ Egress Buffer/port: 250 - 500 MB Features: Full-feature L2 / L3 IPv4 / IPv6, MPLS / VPLS capabilities. 1M IPv4 Routes, 2M NetFlow, Performance mode Additional Hardware Features: Large Buffers, VSS, Instant Access. SGT, MACSEC, LISP, Dual Priority Queues, 2 Level Shaping (HQoS) Price $35,000 (45,000 for XL) 80G SFP / SFP+ 250 - 500 MB Full-feature L2 / L3 IPv4 / IPv6, MPLS / VPLS capabilities. 1M IPv4 Routes, 1M NetFlow, Performance mode Large Buffers, VSS, Instant Access. SGT, MACSEC, LISP, Dual Priority Queues, 2 Level Shaping (HQoS) $25,000 (35,000 for XL) 80G SFP / SFP+ 500 MB Full-feature L2 / L3 IPv4 / IPv6, MPLS / VPLS capabilities. 1M IPv4 Routes, 1M NetFlow, No Oversubscription Large Buffers, VSS, Instant Access. SGT, MACSEC, LISP, Dual Priority Queues, 2 Level Shaping (HQoS) $25,000 (35,000 for XL)
All Catalyst 6800 Features in a Smaller Fixed Form Factor Target August 2015 Introducing the New Catalyst 6840-X 40 ports of SFP/SFP+ up to 12 ports of QSFP 10/100/1000M GLC-T 100M FX 2 x 40G QSFP Uplinks Breakout to 4 x SFP+ 256K IPv4 Route 1.5M NetFlow 64K QoS / ACL Height: 2RU Depth: 21.8” 750W / 1100W Redundant AC/DC Front-to-Back Airflow High-Scale Control Plane with X86 CPU Higher Scale for IA VSS, Instant Access, MPLS, LISP, SGT, MACSec, HQoS, etc NTE: $50,000 Target for Less Dramatically reduced price per port All Catalyst 6800 Features in a Smaller Fixed Form Factor
Catalyst 6840-X Portfolio Providing deployment options Target Q3 2015 Catalyst 6840-X Portfolio Providing deployment options 15.2(1)SY Q4CY2014 15.2(1)SY Q4CY2014 16x10G 32x10G 24x10G + 2x40G 40x10G + 2x40G Native Optics SFP/SFP+ # of 10G Ports 16 # of 40G Ports 4 using reverse adapter Features Full-feature L2/L3 IPv4/IPv6, MPLS/VPLS, LISP. 256K IPv4 Routes, 512K NetFlow Additional Hardware Features Large Buffers, Dual Priority Queues, 2 Level Shaping, HQoS. SGT, MACSEC. VSS, Instant Access NTE Price (includes 2 x AC PS) $30,000 SFP/SFP+ 32 8 using reverse adapter Full-feature L2/L3 IPv4/IPv6, MPLS/VPLS, LISP. 256K IPv4 Routes, 1M NetFlow Large Buffers, Dual Priority Queues, 2 Level Shaping, HQoS. SGT, MACSEC. VSS, Instant Access $45,000 SFP/SFP+ and QSFP 24 + 8 using breakout 2 + 6 using reverse adapter Full-feature L2/L3 IPv4/IPv6, MPLS/VPLS, LISP. 256K IPv4 Routes, 1M NetFlow Large Buffers, Dual Priority Queues, 2 Level Shaping, HQoS. SGT, MACSEC. VSS, Instant Access $45,000 SFP/SFP+ and QSFP 40 + 8 using breakout 2 + 10 using reverse adapter Full-feature L2/L3 IPv4/IPv6, MPLS/VPLS, LISP. 256K IPv4 Routes, 1M NetFlow Large Buffers, Dual Priority Queues, 2 Level Shaping, HQoS. SGT, MACSEC. VSS, Instant Access $55,000
Future Proofing with 10G to 40G Adapter Target October 2015 Future Proofing with 10G to 40G Adapter C6800-32P-10G 10GE Now C6800-16P-10G C6800-8P-10G 40GE Later 40G Adapter QSFP-40G-SR4 QSFP-40G-CSR4 QSFP-40G-SR-BD QSFP-40G-LR4 QSFP-40G-ER4 6880-X SFP+ 6840-X QSFP SUP8-E Supports All QSFP Types 4500-X Reverse SFP to QSFP Adapter Can Upgrade Your 10G Ports to 40G
VSS, Instant Access, MACSEC, SGT, LISP Target 1H 2016 Supervisor 6T Taking Catalyst 6800 to a New Level Scalability & Performance High-Performance Control Plane with x86 CPU SUP2T SUP6T 6807-XL Bandwidth 220G /Slot 440G /Slot CPU 1.5Ghz MPC8572 2.5Ghz X86 Dual Core Memory 2 - 4GB DDR2 667Mhz 4 - 8GB DDR3 1333Mhz Uplinks 2 x 10G (X2) & 3 x 1G (SFP) 2 x 40G (QSFP) & 8 x 1/10G (SFP+) Uplinks Advanced Features VSS, MACSEC, SGT VSS, Instant Access, MACSEC, SGT, LISP Bootdisk Compact Flash eUSB Mgmt Port CMP Mgmt0 2 x 40G (QSFP) and 8 x 1/10G (SFP+) Uplinks Supporting IA, LISP, etc Improved Fabric Providing 440G/slot in 6807-XL Fiber / Copper Management Ports EC Feature Parity with Sup2T from Day 1: 3000+ Features
Pillars of network Campus architecture Cisco Prime Infrastructure Identity Services Engine APIC-EM Security Secure Group Access to Simplify the Network and Enable Virtualized Data Center Services Resiliency Maximized Network Availability with Virtual Switching and Stateful Switch Over Cisco Catalyst 6800/VSS WISM2/ WLC Cisco Catalyst 4500E, Cisco Catalyst 3K WLC Visibility Application-Aware Networking to Enable Collaboration, Video, and Other Apps Simplicity Reduce Operating Expenses and Improve Network Application and Service Delivery Wireless APs Cisco Catalyst 6800/6500 for Campus Core/Dist Cisco Catalyst 4500E and 3850 for Campus Access OS Consistency: IOS 15.0 Cisco Validated Designs for Campus Deployment
Profiling Attribute Sources Network as a Sensor Lancope StealthWatch and ISE Bring Security Analytics Lancope Visibility NETWORK / USER CONTEXT How What Who Where When Network Infrastructure Cisco ISE Voice Data Suppliers Guest DHCP/DNS RADIUS SNMP Profiling Attribute Sources NMAP HTTP NetFlow Profiler Feed Service Automatic updates New device support 192.168.10.123 10.237.22.232 192.168.254.187 174.45.21.12 Employee 1 Finance Department Personal iPAD 2 San Jose Branch Partner A LOB Y Managed MAC Air New York Contractor 2 LOB X Android Richardson, Floor 3 Guest Windows Tablet RTP Lobby 1st Floor
Network as an Enforcer Working with network to restrict access Lancope Visibility Network Infrastructure Cisco ISE Quarantine Voice Data Suppliers Guest Employee 1 Finance Department Personal iPAD 2 San Jose Branch Partner A LOB Y MAC Air New York Contractor 2 LOB X Android Richardson, Floor 3 Guest Windows Tablet RTP Lobby 1st Floor
Better with Cisco Router and Switches Device Sensor Device Sensor Support 3k/4k/WLC The Network IS the Collector! Automatic discovery for most common devices (printers, phones, Cisco devices). Collects the data at point closest to endpoint and is Topology independent Profiling based on: CDP/LLDP DHCP HTTP (WLC only) mDNS, H323, MSI-Proxy (4k only) ISE RADIUS Accounting CDP/LLDP/DHCP/ CDP/LLDP/DHCP CDP/LLDP/DHCP DHCP HTTP Device Sensor Distributed Probes http://www.cisco.com/c/en/us/td/docs/security/ise/1-3/compatibility/ise_sdt.html
Network as a Sensor for the Network Infra Team Security and Network Value Prop Large Global Retailer Large US Medical Center US University Challenge: Ineffective implementation of network segmentation policy allowed traffic patterns which should have been blocked Solution: NetFlow with Lancope provided visibility of hosts and traffic flows and helped develop effective policy for network segmentation. Challenge: Network team tasked to manage access policies on network infra and firewalls was challenged to demonstrate effectiveness to security and InfoSec teams. Solution: NetFlow with Lancope enabled network infra team to demonstrate accuracy and effectiveness of their security rule implementation. Challenge: University received notices of illegal downloads, but could not verify or attribute incidents to campus users. Solution: NetFlow with Lancope enabled university to verify and attribute notice with detailed user access information.
Automation with Cisco APIC Enterprise Module Cisco and Third Party Applications Security QoS ZTD Abstracts Network Devices to Mask Complexity Treat Network as a System REST API Cisco APIC Enterprise Module Network Info Database Policy Infrastructure Automation Network Devices Catalyst, ASR, ISR Exposes Network Intelligence for Business Innovation CLI, OpenFlow, OnePK API Complex Manual Network Operations at the click of a button
APIC-EM traces the path automatically and visually APIC-EM Use Case : Path Visualization APIC EM Returns A Path Based on input of (40.0.7.34, 6000, 40.0.0.42, 7000, Prot: TCP) Problem Statement: Today users manually query each network device to determine what paths it has to its nearest neighbors to get from point A to point B Time consuming and error prone APIC-EM traces the path automatically and visually
APPLICATION VISIBILITY Enterprise Trends—Campus of the Future INTERNET OF THINGS IOT for Carpeted Space Light as a Service Campus Fabric Provisioning APIC-EM MOBILITY Unified Access 802.11ac, Multi-Gig Technology SIMPLICITY Enterprise Trends FLEXIBLE WORKSPACE Campus Fabric Compact Switching SCALABILITY High density 10G/40G in Campus Network Virtualization APPLICATION VISIBILITY BASE SERVICES SECURITY RESILIENCY
Q&A