Корпоративные,сети

Cisco&Club’16

Развитие&решений&по&коммутации&в&корпоративных&сетях&Cisco

Денис&Коденцев,&dkodents@cisco.com

ИнженерPконсультант,&CCIE

1.12.2016

О&чем&пойдет&речь?

• Обзор&актуальных&решений&Cisco&для&коммутации&в&корпоративных&сетях

• Новые&технологии&и&решения&Cisco&для&коммутации&в&корпоративных&сетях

Обзор&портфолио&2015P2016&

Catalyst,,3850

Catalyst,4500Sup8<E

Catalyst,6800

Catalyst,,3650 Cat6807<XLCat6880<X

Коммутаторы&Cisco Catalyst

Catalyst,,2960

Catalyst,,2960<CCatalyst,,2960<CXCatalyst,3560<CX

Компактные&коммутаторы&Cisco

8&и&12&портовые&модели

Пассивное&охлаждение

Функционал&старших&моделей

FAST,ETHERNET

2960<C,PortfolioLAN&Base

8&и 12&портов FEData&или PoE2&x&1G&Аплинки

EP LLW

Advanced&&Layer&2

GIGABIT,ETHERNET

2960<CX 3560<CXLAN&Base

8&портов GE&Data&или PoE+1G&АплинкиEP LLW

IP&Base&/&IP&Services

8&и 12&портов GEData&или PoE+1G&или 10G&АплинкиEP LLW

Advanced&Layer&3&и Layer&2

Расширенная,экосистема,PoE Устройств

Инновации&Cisco&в&сегменте&PoEПервый&в&индустрии&коммутатор&с&240W&PoE+

Full,PoE+• Инновация&Cisco:&240W,,PoE+ (8&x&30W)

• Пассивное&охлаждение

PERPETUAL,PoE*• PoE без&остановки• Коммутатор&может&предоставлять&сервисы&PoE в&случае&перезагрузки

DC,Питание• Опциональное&питание&от&источника&DC

PoE PASS<THROUGH*

Компактный&коммутатор

Кабель,Ethernet

…WiFi точки&доступа IP&ВидеокамерыСеть&сенсоров

(Свет,&Движение,&CO2/CO,&...)

Коммерческие LED&PoE Устройства

Управление&зданием&(Connected&

HVAC)Выключатель

Цифровые,приложения

• До 146W,PoE+,при&питании&коммутатора&с&помощью&UPoE и&вспомогательного&адаптера&питания

Feature&Leadership&and&Cisco&Quality&at&Competitive&Prices

• 8/16/24/48&x&10/100/1000M• 2x&or&4x&SFP&Uplinks• Partial&PoE&(370W)• PoE+&Capable• Fan&less&operation• LAN<Lite,IOS• 802.1x&MD*,&Web&Auth* RSPAN*• New&Web&UI• IPv6&Host

! 24/48&x&10/100/1000M! 4x&SFP&or&2x&SFP+&Uplinks! Full&PoE&(740W)! All&Ports&PoE+&Capable! External&RPS! 24PSQ&SKU&FanPLess&110W&PoE! 80G&FlexStack+&(Horizontal*)! LAN,Base,IOS! NaaS&License:&Netflow&&&DNSPAS! Openflow&v1.3! Full&PVLAN&P Segmentation! EEM&–Debug&Scripting! TrustSec&with&SXP! IPv6&FHS! COPP

Ease<of<use RobustSecurity

Enhanced,Lifetime,Warranty

Energy,Efficiency

LowerTCO

! 24/48&x&10/100M! 2x&SFP&Uplinks! PoE&Capable! 802.3af

Catalyst&2960PPlusBasic&L2&StandPalone

Развитие&портфолио&Catalyst&2960

Catalyst&2960PLBasic&L2&StandPalone

*,Next&Release

Catalyst&2960PXAdvanced&L2&Stackable

Catalyst&2960PXRL3&Stackable&Resilient

! 24/48&x&10/100/1000M! 4x&SFP&or&2x&SFP+&Uplinks! Full&PoE&(740W)! All&Ports&PoE+&Capable! Dual&FRU&Power&supplies! 80G&FlexStack+&(Horizontal*)! IP<Lite,IOS! OSPF,&PIM,&PBR! REP! NaaS&License:&Netflow&&&DNSPAS! Openflow&v1.3! EEM&–Debug&Scripting! TrustSec&with&SXP! IPv6&FHS! COPP

New

FCS:Sep’16

Product IDGE&

DownlinksSFP Uplinks PoE Power Depth&(in) Fanless

WSPC2960LP8TSPLL 8 2 8.45 Yes

WSPC2960LP8PSPLL 8 2 67W 9.45 Yes

WSPC2960LP16TSPLL 16 2 8.45 Yes

WSPC2960LP16PSPLL 16 2 120W 9.45 Yes

WSPC2960LP24TSPLL 24 4 9.45 Yes

WSPC2960LP24PSPLL 24 4 195W 10.45 Yes

WSPC2960LP48TSPLL 48 4 9.45 Yes

WSPC2960LP48PSPLL 48 4 370W 11.5 No

Характеристики&Catalyst&2960PL

Jan2013

Oct2013

May2014

Jan2015

Built,on,Cisco’s,Innovative,“UADP”,ASIC

Catalyst,3850StackwiseP480,Stackpower

Data/PoE/PoE+/UPoEFRU&Uplinks&

Catalyst,3650StackwiseP160,Stackable

Data/PoE/PoE+/Fixed&Uplinks&

Catalyst,3850,SFPStackwiseP480,Stackpower

12&and&24&Port&VersionsStacks&with&any&Catalyst&3850

Catalyst,3850,mGigStackwiseP480,Stackpower

24&and&48&Port&VersionsStacks&with&any&Catalyst&3850

Growing&Catalyst&3K&Family

9

ДоступноCatalyst&3850&10G&SFP+&:&12&и 24&порта

C3850PNMP4x10G

C3850PNMP8x10G

C3850PNMP2x40G

UADP,ASIC Конвергированныйдоступ StackWise<480 StackPower Резервирование,

БП,1+1 Line<Rate

C3850PNMP4x10G

Представляем&Catalyst&3650&Miniрекомендованная&замена&для&3750v2

2&SKU’s&• 24&x&1Gbe&• 48&x1Gbe&

48&Ports&– 4xSFP+24&Ports&P 2xSFP&&&2xSFP+

Fixed&Power&Supply,&Fixed&Fans,RPS2300

11.62&inch&depth,&1RU Cisco&StackWise®P160Converged&Access

Upto 775W&PoE+&budget IP&Base/IP&Services

Built&on&Cisco&“UADP”&ASIC&P 11.62”&=&295mm&deep&

Доступно

The&New&Catalyst&3650&Multigigabit&Switches

Lead&with&3650&mGig in&Competitive&Situations

Competitive,48<port,mGig Entry,Level,24,port,mGig

12,mGig ports 8,mGig ports

New,Uplinks2x10G,&4x10G

New&2x40G&and&8x10G

New,Uplinks2x10G

New,4x10G

Higher,SpeedsAdaptive,Rate,Technology1G,&2.5G,&5G&and&10GFuture&Proofed&for&Higher&speedsCat5e,&Cat6,&Cat6a

InvestmentProtectionCable&Infrastructure&is&costly&and&time&consuming&to&upgrade.Stackable,with&all&3650&&&3650&Mini&Switches

Industry,LeadingPower,OptionUPoE 60WPoE+&&&30WPoE 15.4W

Доступно

NBASEPTTM становится&стандартом!802.3bz& P ожидается&в&Сентябре&2016

Cisco&continues&to&drive&standards&forward

802.3bz

Catalyst&4500E&Campus&Portfolio

4503<E

4510R+E4507R+E

4506<E

Four,Chassis,Options,,7&and&10&Slot&with&Sup&Redundancy&

POE:,WS<X4748<UPOE+E

Data:,WS<X4748<RJ45<E

Port,Scale:Access,and,Collapse,Agg384&10/100/1000&POE/PoE+/UPOE

96&SFP+&,&192&SFP

Power,SupplyMaximize&UPOE/POE+/POE&delivery

Fully&Loaded&10PSlot&with&POE& PWR<C45<9000ACV PWR<C45<6000ACV PWR<C45<4200ACV

SupervisorsTraditional&and&Wireless&Convergence&

928G&Wired,&20G&Wireless& WS<X45<SUP7L<EWS<X45<SUP8<E WS<X45<SUP7<E

1GE:,WS<X4712<SFP<EÑ,WS<X4724<SFP<EÑ,WS<X4748<SFP<E

10GE:,WS<X4712<SFP+E

15

The&Modular&Cat6K&Portfolio

6807PXL

6716 6716

6704 6708

Fiber6724

6748

Copper 6748

NAMP3

ASAPSM

WiSM2

6503PE 6504PE 6506PE 6509PE 6509PVPE6513PE

40G/Slot,6816 6816

6904

80G/Slot

6908

CFPPLR4 CFPPSR4CVRP4SFP

Fiber6824

6848

Copper 6848

Scalability &Performance

Представляем Supervisor&6T

Feature Parity with Sup2T from Day 1: 3000+ Features

FabricReady

SUP2T SUP6T

6807PXL Bandwidth 220G&/Slot 440G,/Slot

6500PE&Bandwidth 80G&/Slot 80G /Slot

RP&CPU1.5Ghz&MPC8572

2.5Ghz,X86&Dual&Core

Memory2&P 4GB&

DDR2 667Mhz4,GB,

DDR3&1333Mhz

Uplinks2 x&10G&(X2)&&3&x&1G&(SFP)

2,x,40G,(QSFP),&8,x,1/10G,(SFP+)

Uplinks&Advanced&Features

VSS,MACSEC,&SGT

VSS,,IA,,MACSEC,,SGT,,LISP,,UCI

Bootdisk Compact&Flash eUSB

Mgmt PortRJ45&CMP

RJ45,/,SFPMgmt0

High-Performance Control Plane

with 2.5GHz CPU2 x 40G (QSFP) and 8 x 10G (SFP+) Uplinks Support for IA, LISP, etc

Fiber / Copper Management Ports

Improved Fabric Provides 440G/slot in C6807-XL

*&No&CFC&or&Service&Module&Support

Доступно

Catalyst&6840PX

All Catalyst 6800 Features in a Small Fixed Form Factor

Depth:21.8”

Height:2RU

16, 24, 32 or 40 SFP+ Uplinks

Convert 4 x SFP+ to QSFP*

2 models with 2 QSFP Uplinks

Convert 4 x SFP+ to QSFP*

750W or 1100W Power

Redundant AC / DC

Front-to-Back Airflow

256K IPv4 Routes

1.5M NetFlow

64K QoS / ACL

VSS, Instant Access, NAT, MPLS, LISP, SGT, MACSEC, HQoS, etc.

High-Scale Control Plane with 2.0GHz CPU

Higher Scale for IA

Доступно

Features &,Scale Nexus,N7700 Catalyst 6800Bandwidth per,slot 1.32T 880G

MAC,Address,Table 128K&(M3) 128K

IPv4 FIB,TCAM 2M&(M3) 1M&(XL)&/&256K

IPv6,FIB,TCAM 1M&(M3) 512K&(XL)&/&128K

IPv4 MFIB,TCAM 64K&(M3) 128K&(XL)&/&64K

QoS,/,Security,ACL,TCAM 128K&(M3)128K&(XL)&/&64K192K (XL)&/&48K

L3,Interfaces,(SVI,,Routed,,Sub.Int) 4K 8K

Flexible,NetFlow,(FnF) Sampled&only 1M&(XL)&/&512K&(per)

10G,Buffer,Capacity< RX,/,TX,(per,port) M3:&31.25MB&/&512KB 1.25MB /&250MB&

(2X&in&Perf.&Mode)

40G,Buffer,Capacity< RX,/,TX,(per,port) M3:&125MB&/&2MB& 5MB /&1GB&

(2X&in&Perf.&Mode)

100G,Buffer,Capacity< RX,/,TX,(per,port) M3:&375MB&/&4MB N/A

LISP,– L2/L3 Yes Yes

Cross,Domain,Connectivity Yes No

VRF<Aware,LISP Yes Yes

VXLAN Yes Yes

Scalable,Group,Tag Yes Yes

ACL,based,on,SGT,(SGACL) 16K 32K

SGT,Exchange,(SXP) Yes Yes

MACSEC,Encryption Yes Yes

Cisco&Nexus® 770010PSlot

Cisco&Nexus® 770018PSlot

Cisco&Nexus® 77006PSlot

Cisco&Nexus® 77002PSlot

NexusP7700

Hardware,• Multiple&Form&factors&• Highly&Available&Architecture

Fabric,&Sup&&&Power&RedundancyOnline&Insertion&&&Removal

• Best&in&Class&Scale&&&Performance• Dense&10G/40G/100G&Densities

1.32Tbps&per&LC&slotM&&&F&Series&of&LCs

• Front&to&Back&Airflow• FIPS&&&Common&Criteria&certified

Advanced,NX<OS,• Modular&OS&Architecture• 64Pbit&kernel• Support&for&ISSU• Graceful&Insertion&&&Removal• Support&for&Patching&individual&

Modules• Up&to&8&Virtual&Switches&per&H/w&with&

Virtual&Device&Context&(VDC)&• SDA,&Multicast,&VRF,&WCCP,&PBR,&MPLS,&VPLS,&,&LISP,&IPv6,&SGT/TrustSec,&Buffering,&TCAM&Scale

Universal&Core&Platform&supporting&multiple&fabric&technologies

Nexus&7700&P M3&модулиHardware

Software

Nexus&7700M3&1G/10G

Nexus&7700M3&40G

Nexus&7700M3&100G

Nexus&7000M3&40G

Nexus&7000M3&1G/10G

1HCY16! GTP&hashing! 256Pbit&AES&MACSEC! VXLAN&w/EVPN! STP,&VPC,&L3&IPv4&+&IPv6,&IP&multicast! QoS and&ACL&policies! MPLS&L3&VPNs! BFD! Sampled&Netflow

+6'Months

! 4x10G&breakout&support&on&40G&modules

! LISP! FabricPath*! FEX&support**! PTP** *'EFT'Quality

1HCY16 2HCY16

** Roadmap

Shipping!

Новые&технологии&и&решения&

Базовый NaaS на Catalyst&2960PX/XR

! Full&NetFlow

! DNSPAS&50+&Apps

StealthWatch

! 25&FPS/Switch&License

! Physical2 or&Virtual&ApplianceC1<based,License,Only,(New)

Cisco&Unique&Solution&for&Network&Security&

! Reduce&Threat&Attack&Surface&with&Network&Sensing

! Improved&Protection&for&Customers&and&Employees

! Implementing&NaaS&brings&over&200%&ROI1

NEW!!

Forrester&Report&for&StealthWatch1 2Purchase&Separately

Полнофункциональный NaaS на Catalyst&3650/3850

! Full&NetFlow

! NBAR2&1500&Apps

! ERSPAN

! ETTA2

Stealthwatch

! 50&FPS/Switch&License

! Physical1 or&Virtual&Appliance

C1&Foundation&LicenseSee&Software&Packaging

Cisco&Unique&Solution&for&Network&Security&

! Reduce&Threat&Attack&Surface&with&Network&Sensing

! Improved&Protection&for&Customers&and&Employees

! Implementing&NaaS&brings&over&200%&ROI1

NEW!!

Forrester&Report&for&StealthWatch1

Packetwatch1

1Purchase&separately 2Available&1HC17

! Application&visibility&endPtoPend&in&the&network

! LightPweight application&detection&process

! A&scalable&means&of&identifying&encrypted&&&cloud&applications

! An&efficient&means&to&distribute&application&metadata

! No&client&software&requirement

! Simplified endPtoPend&policy&enforcement

Что&такое&DNSPAS?

BRKCRSP1510& 23

License&:&IP&Base

DNSPAuthoritative&Source&(DNSPAS)

Основы&DNSPAS

The$DNS$server$knows$who$the$server$is,$and$replies$with$the$name$for$23.19.168.192.IN@ADDR.ARPA

IP&Address PTR Associated&Metadata

192.168.173.65 mail.xyzindustries.com App&ID =&378,Port&25&(SMTP)Port&389&&(LDAP)…

ClassPmap&matchPany&AppIDP378match&appPid&378

ClassPmap&AppIDP598&matchPanymatch&appPid&598

!PolicyPmap&AppPPolicy1Class&AppIDP378

set&ip&dscp&26Class&AppIDP598

drop

App&ID Declared&Intent

378 FriendlyName:ExchangeINTENT:&&

This&is&a&transactional application,&with&Medium importance&to&the&organization.

It&may&only&be&accessedby&internal users.

3266 FriendlyName:OracleINTENT:&&

This&is&a&transactional application,&with&High,importance&to&the&organization.It&may&only&be&accessedby&internal users.

598 FriendlyName:BittorrentINTENT:&&

This&app&is&disallowedfor&all&users.

… …Metadata,says,what&the&app/service&IS.Policy,says,what&to&DO about&that&app&/&service&when&you&see&it&…

IntentMetadata&Example

Policy&Example

BRKCRSP1510& 24

InternalNetwork

! Client&requests&a&DNS&Lookup

! Access&Switch&examines&the&DNS&request

! Internal&DNS&Server&returns&a&DNS&response&(APRecord)

! Access&Switch&requests&application&metadata&information&by&generating&its&own&DNS&query

! Internal&DNS&Server&returns&application&metadata&(APRecord&+&TXT&Record)

! Access&Switch&maintains&a&Binding&Table&of&application&metadata

DNS&Server App&

Server

DNS&Lookup:&

mail.mi6.gov.uk

DNS&APRecord:

mail.mi6.gov.uk&is&172.16.0.7

DNS&Lookup&+&TXT&Record&Request:&

mail.mi6.gov.uk

TXT&Record:

172.16.0.7

mail.mi6.gov.uk

App&ID&=&378

App&Class:&BULKPDATA

Business&Relevance:&YES

IP Address PTR AppPID AppPClass BusinessPRelevance

172.16.0.7 mail.mi6.gov.uk 378 Bulk&Data YES

Сценарий&DNSPAS

BRKCRSP1510& 25

Представляем&Campus&Fabric

Overlay&Control&Plane

Underlay&Control&PlaneUnderlay,Network

Hosts&

(EndPPoints)

Edge&DeviceEdge&Device

Overlay Network

Encapsulation

26

Fabric,Border,Nodes

! APIC<EM,Controller,– Enterprise&SDN&Controller&provides&GUI&management&abstraction&via&multiple&Service&Apps,&which&share&information.

! Control<Plane,Nodes,– Map&System&that&manages&the&Endpoint&to&Gateway&(Edge&or&Border)&relationship.

! Edge,Nodes,– The&L3&Gateway&device&(Access&or&Distribution),&that&connects&Endpoints&to&Fabric.

! User,/,Group,Repository,– External&ID&Store&device&(e.g.&ISE&or&AD)&&&&&&&can&be&leveraged&to&provide&dynamic&&&&User&/&Device&to&Group&mapping.&

! Border,Nodes,– The&L3&Gateway&device&(Core),&that&connects&External&L3&network(s)&to&Fabric.

! Intermediate,Nodes,– Basic&L3&(IP)&Forwarders&in&the&Underlay.

ISE&/&AD Host&DB

Fabric&Domain(Overlay)

Control<PlaneNodes

User&/&Group&Repository

APICPEM&Controller

Что&такое&Campus&Fabric?

Fabric&Intermediate&Nodes&(Underlay)

Fabric,Edge,Nodes

DNA&Center

1. Control<Plane,на,основе,LISP2. Data<Plane,на,основе,VXLAN

Что&особенного&в&решении&Campus&Fabric?&Ключевые&компоненты&P VXLAN

ORIGINAL PACKETPAYLOADETHERNET IP

PACKET IN LISPPAYLOADIPLISPUDPIPETHERNET

PAYLOADETHERNET IPVXLANUDPIPETHERNET PACKET IN VXLAN

Supports&L2&&&L3&Overlay

Supports&L3&Overlay

PAYLOADETHERNET IPVXLANUDPIPETHERNET

1. Control<Plane,на,основе,LISP2. Data<Plane,на,основе,VXLAN3. Интеграция Cisco,TrustSec

Что&особенного&в&решении&Campus&Fabric?&Ключевые&компоненты&– Cisco&TrustSec

VRF + SGT

Virtual&Routing&&&Forwarding

Scalable&Group&Tagging

VXLAN&and&GBP&extensionsEthernet&in&IP&with&a&shim&for&scalable&segmentation&and&policy&metadata

Outer'MAC'Header Outer'IP'Header Outer'UDP'Header

FCSOriginal'Layer'2'FrameVXLAN'Header

VXLAN

VXLANPGBP

GBP&=&Group&Based&Policy

SGT&=&EPG(Campus)&&(ACI)

APICPEM&and&APIC&Policy&Mediation&via&ISE

ACI&Policy&DomainDNA&Policy&Domain

Switch Router* Nexus9000 Nexus9000 ServerUser

LISP,SGT&&VXLANClassification

Campus,Fabric

ISE&creates&matching&Security&Groups&and&Endpoint&Groups

ISE&creates&translation&table&with&SGT&to&EPG&mappings

IPPClassId,&VNI&bindingsRADIUS&download&of&translation&table&to&ASR&1K/N7K*

Spine Leaf

Cisco,ISE

Cisco&APICPDC

Security&Groups End&Point&Groups

APIC&P Application&Policy&Infrastructure&Controller,&ACI&P Application&Centric&Infrastructure&

31

BGP&EVPN,&EPG&&VXLAN

APIC@EMIP,&SGT&mappings

*Planned&H1&CY17

Multiple&Edge,&Border,&and&ControlPPlane&Options

Поддержка&Campus&FabricSwitching'Platform'Support

Catalyst&3K Catalyst&6K

! Catalyst&3650! Catalyst&3850! Copper&/&Fiber! IOSPXE&16.3+

! Catalyst&6800! Sup2T&/&6T! 6900&or&Newer! IOS&15.4SY+

Nexus&7K

! Nexus&7700! Sup2E! M3&Only! NXOS&7.3+

Catalyst&4K

! Catalyst&4500E! Sup8E&/&8LE! All&Cards! IOSPXE&3.9+

©'2016''Cisco'and/or'its'affiliates.'All'rights'reserved.'''Cisco'Confidential

УжеДоступно!

Что,такое,Smart,CLI?• Its a,new,configuration,mode to&simplify&config&and&management&of&Campus&Fabric

• Invoked&by&a&new&Global&command&“fabric,auto”

• Provides&a&simple&set&of&easy<to<understand,CLI

• Auto<generates,all&of&the&equivalent&(traditional)&LISP,&VRF,&IP,&CTS,&etc.&CLI&commands

Настройка&Campus&Fabric&P Smart&CLI&Provisioning&&&Troubleshooting&Made&Simple

fabric_device(config)#&fabric,auto

BRKCRSP

33

! Generate&all&LISP&XTR&baseline&configs! Set&up&Loopback0&as&locator&address! Creates&default&neighborhood&as&instance&ID&0! Enables&VXLAN&encapsulation! Adds&SGT&to&VXLAN&encapsulation

Edge(config)# fabric autoEdge(config-fabric-auto)# domain defaultEdge(config-fabric-auto-domain)# control-plane 2.2.2.2 auth-key key1Edge(config-fabric-auto-domain)# border 4.4.4.4Edge(config-fabric-auto-domain)# exit

Smart&CLI&– ПримерAdding&a&new&Edge&Node&

BRKCRSP

34

Campus&Fabric&CVD&уже&на&Cisco.com!

Представляем StackWise Virtual

L2/L3DistP1 DistP2VSLSWP1 SWP2

Phase&1&P Aggregation

! Unified&Control&and&Management&plane

! Simplified&L2/L3&network&designs

! Inherits&all&proven&VSS&architectural&benefits&

! HighPperformance&10G&Aggregation&block

! NonPoversubscribe&:o 96&x&10G&Portso 8&x&40G&Ports&

! Fully&Distributed&Forwarding

! NonPstop&business&communication&with&Cisco&NSF/SSO

! Proven&1+1&HA&architecture

! NextPgen&InPservice&Software&upgrade&ready

! Etherchannel&– up&to&4p&(8p&future)

! Flexible&design&on&all&nextPgen&UADP&based&systems

! Elastic&topology&design&– Hub/spoke,&Ring,&Chain

! Simplification&across&multiple&network&layers

! Based&on&nextPgen&OS&– IOS&XE&Denali

! Rich&IOS&feature&sets&–L2/L3,&Routing,&Multicast,&QoS,&etc.&

ACTIVE HOTPSTANDBY

SWP1

WSPC3850P48XS&&&&&|&&&&96&x&10&Gigabit&Ethernet&&&&&|&&&&&8&x&40&Gigabit&Ethernet

Simple Scale Resilient Flexible Advance

Distributed&stacking&will&support&16.1&feature&parity&during&FCS.&Please&check&release&notes&for&compete&details.

StackWise Virtual – Hub-n-Spoke

LogicalPhysicalPhysical Logical

StackWise Virtual – RingStackWise Virtual

Physical Logical

Layer Platform Version FCS

Distribution

WS-C3850-48XS

16.3.2*

Oct’16 *

WS-C3850-12XSWS-C3850-24XSWS-C3850-48XS

16.5.1 Mar’17

StackWise Virtual&EvolutionUnified&System&Virtualization&Architecture

*&=&EFT&Deployment

MPLS&для Catalyst&3850/3650

Campus Virtualization! Cost Effective MPLS in 1RU, Stackable

! Differentiate and compete effectively with a wider choice of Segmentation solutions

! Alternate Segmentation option

! Deployments – Standard Access, Routed Access, Collapsed Access

! C1 Advanced/ IP Services (No new license level )

+UADP(Programmability)

ShippingNOW&!!

IOS 16.x (Control Plane)

Leverage&C1&Advanced&Promotions.&Beat&Competition&!!&

MPLS,Features

• Label&Distribution&ProtocolLDP

• MPLS&QOS• BFD• MPLS&TraceRoute/LSP&Ping• MPLS&L3VPNPIPv4

PEPCE&Protocols&:&Static,&RIP,&EIGRP,&OSPFPEPP&Protocols:&OSPF&&&ISISMPPIBGP

CE PPE

PE

P

P

CE

P

PE

PE

CE

CE

MPLS,Domain

Label,switched,path

LDP L3VPN

UADPIOS 16.x

L3 VPN and Campus Segmentation

MPLS&в&кампусе Shipping

MCE,

MPLS,BackbonePE

CE,

CE,

CE,

PEPEPESource

Receiver

Receiver

ReceiverMDT

Multicast,VPN

CE,

PE,

CE,

IPV6 IPV6P PE

IPv4,MPLS,Enabled

CE,

PE,

CE,

L2 L2P PE

EOMPLS

IPv6,VPN,/,EOMPLS–

Дальнейшие&планы…

ПланыTarget,16.3.2

Autonomic&Network&для&Catalyst&3650/3850

• Completely&selfPmanaging

• No&config!

• Secure

• Separate&(VPN)&and&Encrypted&(IPsec)

• Independent&of&Routing

• Only&depends&on&link&local&addresses

• Independent&of&Configuration

• Only&certificate&visible&in&“sh running”

• Visible&

• Lots&of&show&commands,&debugs,&etc.&

Use&as&a&“Virtual&

OutPOfPBand&Channel”

IPv6 link,local IPv6 link,local

Secure&TunnelVRF VRF

loopback loopback

Supported&on&ASR,&CSR,&ME,&ISR,&and&now&also&3850/3650&as&of&16.3

Развитие&технологий&PoE

2Pevent&classification

! Super&Fast&power&negotiation&without&LLDP

! Physical&layer&negotiation&<&1s&based&on&Class/Type

! Uninterrupted&POE&power&during&control&plane&reboot

! Bypasses&IOS&control&plane&boot&up

! Restores&power&to&Powered&Device&within&30sec&of&power&resumption

Perpetual&POE& Fast&POE&

Shipping!

Сравнение&возможностей

Feature, 3850 3560<CX CDB<8P/U

2Pevent&Classification

Perpetual&POE

Fast&POE

Fast&UPOE

COAP

Ключевые&моменты

• Новые&Catalyst&2960PL&с&GE&портами

• Новые&Catalyst&3650&с&MultiPgigabit портами

• Nexus&7700/M3&для&кампусного ядра

• Campus&Fabric&– новый&подход&к&созданию&кампусных сетей!

• Stackwise Virtual&– VSS&для&Catalyst&3850!

Клуб&Cisco

Есть&вопросы&по&приобретению&оборудования&Cisco?8&800&700&05&22

Благодарим&за&участие

Cisco CiscoRu CiscoRussia CiscoRu