automation and orchestration of vbranch using cisco … · automation and orchestration of vbranch...
TRANSCRIPT
Automation and Orchestration of vBranch using Cisco NSO
Faisal Chaudhry
Lei Tian
Ahmed Shams
LTRCRS-1551
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Cisco Spark
Questions? Use Cisco Spark to communicate with the speaker after the session
1. Find this session in the Cisco Live Mobile App
2. Click “Join the Discussion”
3. Install Spark or go directly to the space
4. Enter messages/questions in the space
How
cs.co/ciscolivebot#LTRCRS-1551
• Introduction to vBranch and NSO
• Validate Branch NFVIS and NSO Function Pack
• Onboard NFVIS to NSO
• Plug-and-play (PNP) of NFVIS
• Topology 1: Single Virtual Network Function (Cisco ISRv) use-case
• Create Virtual Network Function Descriptor (VNFD) of ISRv
• Create Networks on NFVIS
• Create Virtualisation Deployment Unit (VDU) and ISRv image download on NFVIS
• Upload Virtual Network Function (VNF) Image on NFVIS from NSO
• Launch ISRv (VNF) on NFVIS via NSO vBranch Function Pack
• Validate Day0 config of ISRv (VNF)
• Use of NSO for Day1 configs of ISRv (VNF)
• Topology 2: Service Chain with two (2) Virtual Network Functions
Agenda
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Virtualizing the Branch
NFVIS
ENCS
Virtual Network VNFs running on:
• ENCS with NFVIS
LTRCRS-1551 5
Data Center
NSO
MPLS INETVirtual Devices
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Network Equipment Drivers (NEDs)
Service Manager
Device Manager
Physical Networks Virtual Networks
• VNFM
• Controller Apps
• EMS and NMS
Network Apps
Service
Model
Device
Model
Applications Engineers
• Logically centralized network
services
• Data models for data
structures
• Structured representations of:
• Service instances
• Network configuration
and state
• Mapping service operations to
network configuration changes
• Transactional integrity
• Multiprotocol and multivendor
support
Network-wide CLI,
Web UI
REST, Java,
NETCONF
NETCONF, CLI, SNMP, REST, etc.
Network Services Orchestration (NSO) .
LTRCRS-1551 6
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Network Functions Virtualization in Branch
Network Functions Virtualization Infrastructure Software (NFVIS)
ISR 4000 + UCS-E-Series
UCS C-SeriesEnterprise Network Compute
Systems (ENCS)
Orchestration and Management (MANO)NSO with vBranch Core Function Pack
Virtual Router(ISRv)
Virtual Firewall(ASAv)
Virtual WAN Optimization
(vWAAS)3rd Party VNFs
COTS
Virtual Router(vEdge)
Virtual Wireless LAN Controller (vWLC)
LTRCRS-1551 7
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 8LTRCRS-1551
Topologies within Branch
WANLAN
WANLAN net2 net1
WANLAN net1
????
ISRv
ISRv
ISRv
ASAv
ASAvWAAS
ENCS
ENCS
ENCS
ENCS
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
NFVIS Software Stack
LinuxPlatform Drivers
Interface Drivers
NFVIS
Virtualization Layer – Hypervisor and vSwitch
Orchestration (VM Lifecycle)
HTTPSPnPClient
PnPServer
Console/SSH
NSO DNA-C
CLI NETCONF REST
Health Monitoring
Local Device Web Portal
Host Management
RBAC
LTRCRS-1551 9
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Cisco and 3rd party VNF support
• High performance
• Rich features
• End-to-end support
ISRv
New
• Harden virtual services
• Enable secure access
• On-premise orcloud management
NGFWv
New
• VNF program
• Tested and certified
• Streamlined support from Cisco and third party
Third-Party VNFs
New
• ISR WAAS: Leader in Gartner MQ
• Superior caching with Akamai Connect
vWAAS
• Survivability and scale
• Built for small and medium-sized branches
vWLC
• Comprehensive protection
• Full DC class Featured functionality
• Designed for NFV
ASAv
• Microsoft Windows
• Custom applications
Applications
• High performance
• SDWAN Edge
• NETCONF support
vEdge
New
LTRCRS-1551 10
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Network and Bridges
port portport port
LTRCRS-1551 11
ENCS
lan-bridge
lan-net
wan-net
wan-bridge
service-net
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
NSO
Device Adaptation
Service Model
Physical Networks Virtual Networks
• VNFM
• Controller Apps
• EMS and NMS
Network Apps
Applications Engineers
Network-wide CLI,
Web UIREST, Java,
NETCONF
NETCONF, CLI, SNMP, REST, etc.
• Multi-vendor service orchestrator for existing and future networks
• Single pane of glass for:• L2-L7 networking
• Hardware Devices
• Virtual Appliances
• Model Driven Orchestration• Service Data models (declarative)
• Device Data Model (for auto config)
• All Models are YANG Based
• Highly Scalable for large infrastructure
• One of the existing deployment is managing 60K devices on the network
Network Services Orchestration (NSO)
NED NED
LTRCRS-1551 12
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
NSO Core Function Pack
NSO
OSS/BSS • NSO Single Entry Point
• NSO (vBranch Core Function Pack) to instantiate VNFs (including 3rd party VNFs) and activate vEdge. Apply device template
REST/NETCONF
NETCONF
NFVIS
NSOCisco and 3rd party VNFs
vBranch CFP
LTRCRS-1551 13
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Branch-Infra
• Supports a Strongly Typed Core service model
• Allows customizations using Key-Value pairs
• Supports custom templates
• Notifications
• Optionally used for pushing Day 1 Configurations through
branch-infra
• Supports Physical / Virtual Infrastructure onboarding
• Maintains a catalog of VNFDs, VDUs, Deployments, Day-0
configurations.
• Network creation
• Instantiate VNF and Service Chain
• Instantiates VNFs using ETSI-MANO compliant VNF descriptors
• Supports multi-VM VNFs
• Can be extended to work with multiple VNFMs
ENCS
devices
vBranch Service Request APIs
Stacked Services ApproachvBranch use of Core FP packages
Branch
Service
Infrastructure
Services
LTRCRS-1551 14
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
On Boarding ENCS/NFVIS
NFVIS
VNFMPnP1) ENCS boots and creates basic n/w infrastructure
2) NFVIS registration to NSO using PnP
IP + serial + model + capabilities
3) NFVIS registered to NSO
4) NSO connects to branch NFVIS (NETCONF)
ENCS/NFVIS on-boarded in NSO
ENCS
PnP Server Branch-Infra FP
Network Service Orchestrator (NSO)Network Service Orchestrator (NSO)
NSO with the vBranch Function Pack
LTRCRS-1551 15
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Loading ISR VNF
1) NSO registers ISRv to NFVIS
2) NFVIS pulls ISRv images / local preparation
5) NFVIS notifies NSO ISRv is active3) NSO instructs NFVIS to deploy NWs/ISRv
4) NFVIS deploys ISRv, load day 0 config and sets
up local ISRv monitoring
ISRv loaded
ISRv
Network Service Orchestrator (NSO)
VNFs are loaded in parallel
XMP PAYLOAD
VNF Definitions
NETWORK DefinitionsCore FP (vBranch)
NFVIS
VNFMPnP
ENCS
LTRCRS-1551 16
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Lab – Topology 1
ISRv
WAN NIC
Eth0/0
LAN NIC
wan-netlan-net
Eth 0/1
NFVIS
LTRCRS-1551 17
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Lab – Topology 2
ISRv
WAN NIC
Eth0/0
LAN NIC
wan-netlan-net
Eth 0/1
ASAv
LTRCRS-1551 18
NFVIS
service-net
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
branch-cpe
VNF
VNFD
networkCPE
config
VDU
nfvo catalog
VNFD
VDU
deployment
Catalog DefinitionsVNFs and Service Chaining
High Level view of Service Model
Branch-infra
LTRCRS-1551 19
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Cisco Spark
Questions? Use Cisco Spark to communicate with the speaker after the session
1. Find this session in the Cisco Live Mobile App
2. Click “Join the Discussion”
3. Install Spark or go directly to the space
4. Enter messages/questions in the space
How
cs.co/ciscolivebot#LTRCRS-1551
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
• Please complete your Online Session Evaluations after each session
• Complete 4 Session Evaluations & the Overall Conference Evaluation (available from Thursday) to receive your Cisco Live T-shirt
• All surveys can be completed via the Cisco Live Mobile App or the Communication Stations
Don’t forget: Cisco Live sessions will be available for viewing on-demand after the event at www.ciscolive.com/global/on-demand-library/.
Complete Your Online Session Evaluation
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Continue Your Education
• Demos in the Cisco campus
• Walk-in Self-Paced Labs
• Tech Circle
• Meet the Engineer 1:1 meetings
• Related sessions
22LTRCRS-1551
Thank you