catalyst switching deep dive feb2016 - cisco · march 2016 . default redundancy domain sso c4k vss...
TRANSCRIPT
Catalyst Switching Deep Dive
February 2016
System Level
Innovations
OS Level
Innovations
Automation
System Level Innovations
Introducing Catalyst 6840-X
All Catalyst 6800 Features in a Small Fixed Form Factor
Depth:
21.8”
Height:
2RU
16, 24, 32 or 40 SFP+ Uplinks
Convert 4 x SFP+ to QSFP*
2 models with 2 QSFP Uplinks
Convert 4 x SFP+ to QSFP*
750W or 1100W Power
Redundant AC / DC
Front-to-Back Airflow
256K IPv4 Routes
1.5M NetFlow
64K QoS / ACL
Now Shipping October 2015
VSS, Instant Access, NAT,
MPLS, LISP, SGT,
MACSEC, HQoS, etc.
High-Scale Control Plane with
2.0GHz CPU
Higher Scale for IA
C6840-X Series Architecture Overview
Feature C6816-X-LE C6832-X-LE C6824-X-LE-40G C6840-X-LE-40G
Forwarding ASIC(s) 1 DFC4-E 2 DFC4-E 2 DFC4-E 3 DFC4-E
Bandwidth 80 Gbps 160 Gbps 160 Gbps 240 Gbps
Throughput 60 Mpps 120 Mpps 120 Mpps 180 Mpps
CPU 2.0GHz IB2C 2.0GHz IB2C 2.0GHz IB2C 2.0GHz IB2C
Memory 4GB DDR3 4GB DDR3 4GB DDR3 4GB DDR3
Buffer (MB)
per Port
250 or 500MB
(2GB / 8 or 4p)
250 or 500MB
(2GB / 8 or 4p)
250 or 500MB
(2GB / 8 or 4p)
250 or 500MB
(2GB / 8 or 4p)
IPv4 Routes 256K 256K 256K 256K
IPv6 Routes 128K 128K 128K 128K
MAC Address 128K 128K 128K 128K
Flexible NetFlow 512K 1M 1M 1.5M
QoS & ACL 64K 64K 64K 64K
Internal Flash 2GB eUSB+ 2GB eUSB+ 2GB eUSB+ 2GB eUSB+
Console RJ45 / USB Type B RJ45 / USB Type B RJ45 / USB Type B RJ45 / USB Type B
Management RJ45 / SFP RJ45 / SFP RJ45 RJ45 / SFP
External Flash USB Type A USB Type A USB Type A USB Type A
Scalability &
Performance
Introducing Supervisor 6T Taking Catalyst 6800 to a New Level
Feature Parity with Sup2T from Day 1: 3000+ Features
Fabric Ready
SUP2T SUP6T
6807-XL Bandwidth 220G /Slot 440G /Slot
6500-E Bandwidth 80G /Slot 80G /Slot
RP CPU 1.5Ghz
MPC8572
2.5Ghz
X86 Dual Core
Memory 2 - 4GB
DDR2 667Mhz
4 GB
DDR3 1333Mhz
Uplinks 2 x 10G (X2) &
3 x 1G (SFP)
2 x 40G (QSFP) &
8 x 1/10G (SFP+)
Uplinks
Advanced Features
VSS,
MACSEC, SGT
VSS, IA,
MACSEC, SGT,
LISP, UCI
Bootdisk Compact Flash eUSB
Mgmt Port RJ45
CMP
RJ45 / SFP
Mgmt0
High-Performance
Control Plane
with 2.5GHz CPU
2 x 40G (QSFP) and 8 x
10G (SFP+) Uplinks
Support for IA, LISP, etc
Fiber / Copper
Management Ports
Improved Fabric Provides
440G/slot in C6807-XL
Target FCS Q1 2016
* No CFC or Service Module Support
Sup2T Domains
Supervisor 6T Enables Bigger Domains Taking Catalyst 6800 to a New Level
Sup6T Domains
2000+ Host Ports & 160 FEX IDs* =/< 1500 Host Ports & 42 FEX IDs*
S A
Increased IA, ARP / NDP, OSPF / EIGRP, BGP, BFD and More!
S A
* Compact IA
Support Matrix for Cat6k Supervisors Sup720 Sup2T Sup6T
C6807-XL ✗ ✓ ✓
C6500E ✓ ✓ ✓
Upcoming 32/16/8 10G
Cards ✗ ✓ ✓
69xx Series Line Cards ✗ ✓ ✓
68xx Series Line Cards ✗ ✓ ✓
WS-X6716-10G/T ✓ With WS-F6K-DFC4-E With WS-F6K-DFC4-E
WS-X6708-10G ✓ ✗ ✗
WS-X6704-10GE with DFC3 ✓ With WS-F6K-DFC4-A With WS-F6K-DFC4-A
67xx Series 1GbE with DFC3 ✓ With WS-F6K-DFC4-A With WS-F6K-DFC4-A
67xx Series with CFC ✓ ✓ With WS-F6K-DFC4-A
61xx Series Line Cards ✓ With 6500E ✗
Current Service Modules ✓ ✓ ✗
WAN Cards ✓ ✗ ✗
Catalyst 6800 Innovations Introducing New 10G/40G/100G Line Cards
Full Catalyst 6K Feature Set @ FCS - Mature and Proven
4 x 100GE
12 x 40GE
48 x 10GE
Equal IPv4 & IPv6
Performance
Line Rate
VSS, IA, LISP, UCI
720 Mpps
Large Buffers
Sup2T & Sup6T
* No XL Version
Concept Commit Target Q3’2016
End-Of-Sale - March 2016
• External Announcement Date: October 1, 2015
• End Of Sale Date: March 31, 2016
MODULES*
WS-X6708-10G-3C
WS-X6748-SFP
WS-X6748-GE-TX
WX-X6816-10T
WS-X6904-40G
WS-X6904-40G-10T
WS-X6908-10G
WS-X6908-10G-2T
*including XL, spare versions
Introducing Supervisor 8LE
Supported on 4500-E chassis
4 SFP/SFP+ 1G/10G Uplinks
Enterprise Fabric Ready
Faster CPU
Attribute Sup8LE Sup8E
Uplinks 4 x SFP+ 8 x SFP+
Port Scale 240 384
Chassis
Support
3,6,7 3,6,7,10
FIB Table Size
(V4/V6)
64K/32K 256K/128K
Campus
Fabric
Converged
Access
Not
supported
Low End Supervisor Based on Sup8E
Target FCS March 2016
Default Redundancy Domain
SSO
C4K VSS Quad Sup RPR Redundancy
VSL
In-Chassis Standby Control Plane RPR-Cold
In-Chassis Active Control Plane Standby
Data Plane Active
In-Chassis Standby Control Plane RPR-Cold
Sup7E/7-LE/8E Only
Release: IOS XE 3.8.0
VSS Active VSS Standby
In-Chassis Active Control Plane Active
Data Plane Active
RPR RPR
100%
50% Availab
le
Ban
dw
idth
Time
Target FCS March 2016
C3850-NM-4x10G
C3850-NM-
8x10G
C3850-NM-2x40G
UADP ASIC Converged
Access Line-Rate StackWise-480 StackPower
1+1 Power
Redundancy
C3850-NM-4x10G
Now Shipping July 2015 Catalyst 3850 10G: 12 and 24 Port
C3850-12XS Architecture Overview
Packet Buffer
Forwarding Controller
Ingress
FIFO
Egress
FIFO
Network Interface
Packet Buffer
Forwarding Controller
Ingress
FIFO
Egress
FIFO
Network Interface
Dual PHY
MACSec
Cavium
1.3 GHz
6-Core CPU
Console EMP
USB
FPGA
SDRAM
4GB
Flash
4GB
4x10G, 2x1G 2x10G,
4x1G
UADP ASIC
Clock – 500 MHz / 80 Gbps
480G STACK INTERFACE
10G PHY
MACSec
10G PHY
MACSec
Reassembly
Crypto
Reassembly
Crypto
Core 1 Core 0 Core 1 Core 0
UADP
ASIC0
1x6 10G SFP+ 1x6 10G SFP+
Packet Buffer
Forwarding Controller
Ingress
FIFO
Egress
FIFO
Network Interface
Packet Buffer
Forwarding Controller
Ingress
FIFO
Egress
FIFO
Network Interface
Packet Buffer
Forwarding Controller
Ingress
FIFO
Egress
FIFO
Network Interface
Packet Buffer
Forwarding Controller
Ingress
FIFO
Egress
FIFO
Network Interface
Dual PHY
MACSec
Dual PHY
MACSec
Cavium
1.3 GHz
6-Core CPU
Console EMP
USB
FPGA
SDRAM
4GB
Flash
4GB
2x40G, 8x10G, 4x10G 1x6 10G SFP+
10G PHY MACSec 10G PHY MACSec
UADP ASIC
Clock – 500 MHz / 80 Gbps
480G STACK INTERFACE
Reassembly
Crypto
Reassembly
Crypto
Reassembly
Crypto
Reassembly
Crypto
Core 1 Core 0 Core 1 Core 0
UADP
ASIC1
UADP
ASIC0
1x6 10G SFP+ 1x6 10G SFP+
10G PHY MACSec
1x6 10G SFP+
C3850-24XS Architecture Overview
How many Can I stack together?
Up to 9 Enforced by Software Limited in ASIC
Up to 32
Cores
640GB Line-Rate
UADP ASIC
• New 750W AC Power Supplies
• 1+1 Power Supply Redundancy
• Front-to-Back and Back-to-Front Fan options
48 x SFP+ Fixed
UADP ASIC Converged
Access Line-Rate No Stacking
1+1 Power
Redundancy
Front-to-Back & Back-to-Front
Fans and Power Supplies
*No StackWise or StackPower on 48p SKU
4 x QSFP Fixed
Now Shipping September 2015 Catalyst 3850 10G: 48 Port
Packet Buffer
Forwarding
Controller
Ingr
ess
FIF
O
Egr
ess
FIF
O
Network Interface
Packet Buffer
Forwarding
Controller
Ingr
ess
FIF
O
Egr
ess
FIF
O
Network Interface
Reass
embly
Crypt
o
Reass
embly
Crypt
o
Catalyst 3850 SFP+ 48 Port – Block Diagram
Dual PHY
MACSec
Dual PHY
MACSec
Cavium
1.3 GHz
6-Core CPU
Console EMP
USB
FPGA
SDRAM
8GB
Flash
8GB
2x40G, 8x10G, 4x10G 2 x 12 10G SFP+
10G PHY
MACSec
10G PHY
MACSec
10G PHY
MACSec
UADP ASIC
Clock – 500 MHz / 80 Gbps
480G STACK INTERFACE
2 x 12 10G SFP+
10G PHY
MACSec
10G PHY
MACSec
10G PHY
MACSec
Packet Buffer
Forwarding
Controller
Ingr
ess
FIF
O
Egr
ess
FIF
O
Network Interface
Packet Buffer
Forwarding
Controller
Ingr
ess
FIF
O
Egr
ess
FIF
O
Network Interface
Reass
embly
Crypt
o
Reass
embly
Crypt
o
Packet Buffer
Forwarding
Controller
Ingr
ess
FIF
O
Egr
ess
FIF
O
Network Interface
Packet Buffer
Forwarding
Controller
Ingr
ess
FIF
O
Egr
ess
FIF
O
Network Interface
Reass
embly
Crypt
o
Reass
embly
Crypt
o
Packet Buffer
Forwarding
Controller
Ingr
ess
FIF
O
Egr
ess
FIF
O
Network Interface
Packet Buffer
Forwarding
Controller
Ingr
ess
FIF
O
Egr
ess
FIF
O
Network Interface
Reass
embly
Crypt
o
Reass
embly
Crypt
o
ASIC 0
Core 0 Core 1
ASIC 1
Core 0 Core 1
ASIC 2
Core 0 Core 1
ASIC 3
Core 0 Core 1
C3850-XS 10G Family Architecture Overview
Feature C3850-12XS C3850-24XS C3850-48XS
ASIC(s) 1 UADP 2 UADP 4 UADP
Bandwidth 160 Gbps 380 Gbps 640 Gbps
Throughput 228 Mpps 456 Mpps 912 Mpps
CPU 1.3GHz CN6335 1.3GHz CN6335 1.3GHz CN6335
Memory 4GB DDR3 4GB DDR3 8GB DDR3
IPv4 Routes 24K (host) / 8K (routes) 24K (host) , 8K (routes) 24K (host) , 8K (routes)
IPv6 Routes 12K (host) / 4K (routes) 12K (host) , 4K (routes) 12K (host) , 4K (routes)
MAC Address 32K 32K 32K
Flexible NetFlow 48K 96K 192K
QoS & ACL 3K 3K 3K
Internal Flash 4GB eMMC Based eUSB+ 4GB eMMC Based eUSB+ 8GB eMMC Based eUSB+
Console RJ45 / USB Type B RJ45 / USB Type B RJ45 / USB Type B
Management RJ45 RJ45 RJ45
External Flash USB Type A USB Type A USB Type A
Cisco MultiGigabit Driving the Bandwidth in Access
Maintain Switch to AP Reach at Higher Speeds Adaptive Rate Technology (FE, 1G, 2.5G, 5G, and 10G) Future proofed for higher speeds
Infrastructure Investment Protection Supports 100m distance with Cat5e cabling up to 5G speeds for Brownfield
Supports Cat6a cabling for Greenfield deployments for higher speeds
POE/POE+/UPOE Cisco Innovation over 10GT Standard to support high end point power needs
Standards Compliant 1G and 10G BaseT IEEE standards, intermediate speeds work in progress in IEEE
Catalyst 4500E - MultiGigabit Line Card
First 12 Ports are MultiGigabit Capable
Catalyst 4500 has 48G of Backplane per Slot
MultiGigabit Ports are Oversubscribed
The Oversubscription Can be Controlled by 3 Modes Available
All Available 1Gig Ports are Line Rate
Catalyst 4500E - MultiGigabit Line Card
Mode Port Configuration
Oversubscription
Ranges (Depending on MultiGigabit Port
Speed)
Mode 1
Multigigabit
Lite
2.5:1 - 10:1
Mode 2
Multigigabit
Enhanced
1.25:1 - 5:1
Mode 3
Multigigabit
Performance
1.25 - 2.5:1
MultiGigabit 1Gig
MultiGigabit Disabled 1Gig
MultiGigabit Disabled
MultiGigabit Line Card Architecture ─ Modes
12G 12G 12G 12G
Stub ASIC
MACSec
MultiG
igabit
PHY
Power Brick
Management FPGA
PoE Controller PoE Controller
PoE Sub-System
Power Brick Power Brick
FPGA
PHY
Stub ASIC
MACSec
Stub ASIC
MACSec
Stub ASIC
MACSec
Stub ASIC
MACSec
Stub ASIC
MACSec
Stub ASIC
MACSec
Stub ASIC
MACSec
PHY PHY PHY PHY
12G 12G 12G 12G 12G 12G 12G 12G
A new FPGA that programs the Modes
Switch Backplane
RJ45
13-48
RJ45 8-12
RJ45 5-7
RJ45 1-4
MultiG
igabit
PHY
MultiG
igabit
PHY
MultiGigabit Line Card Architecture ─ Modes
12G 12G 12G 12G
Stub ASIC
MACSec
MultiG
igabit
PHY
Power Brick
Management FPGA
PoE Controller PoE Controller
PoE Sub-System
Power Brick Power Brick
FPGA
PHY
Stub ASIC
MACSec
Stub ASIC
MACSec
Stub ASIC
MACSec
Stub ASIC
MACSec
Stub ASIC
MACSec
Stub ASIC
MACSec
Stub ASIC
MACSec
PHY PHY PHY PHY
12G 12G 12G 12G 12G 12G 12G 12G
Switch Backplane
RJ45 (13-24 Disabled)
25-48
RJ45 8-12
RJ45 5-7
RJ45 1-4
MultiG
igabit
PHY
MultiG
igabit
PHY
MultiGigabit Line Card Architecture ─ Modes
12G 12G 12G 12G
Stub ASIC
MACSec
MultiG
igabit
PHY
Power Brick
Management FPGA
PoE Controller PoE Controller
PoE Sub-System
Power Brick Power Brick
FPGA
PHY
Stub ASIC
MACSec
Stub ASIC
MACSec
Stub ASIC
MACSec
Stub ASIC
MACSec
Stub ASIC
MACSec
Stub ASIC
MACSec
Stub ASIC
MACSec
PHY PHY PHY PHY
12G 12G 12G 12G 12G 12G 12G 12G
Switch Backplane
RJ45 (13-48 Disabled) RJ45 8-12
RJ45 5-7
RJ45 1-4
MultiG
igabit
PHY
MultiG
igabit
PHY
MultiGigabit Ports - Command Line
Catalyst4500# show ip int br | i up
TenGigabitEthernet2/1 unassigned YES unset up up
TenGigabitEthernet2/2 unassigned YES unset up up
TenGigabitEthernet2/3 unassigned YES unset up up
TenGigabitEthernet2/4 unassigned YES unset up up
TenGigabitEthernet2/5 unassigned YES unset up up
TenGigabitEthernet2/6 unassigned YES unset up up
TenGigabitEthernet2/7 unassigned YES unset up up
TenGigabitEthernet2/8 unassigned YES unset up up
TenGigabitEthernet2/9 unassigned YES unset up up
TenGigabitEthernet2/10 unassigned YES unset up up
TenGigabitEthernet2/11 unassigned YES unset up up
TenGigabitEthernet2/12 unassigned YES unset up up
GigabitEthernet2/13 unassigned YES unset up up
MultiGigabit Ports Are named as
TenGigabitEthernet indicating its highest
possible speed
MultiGigabit Port Speeds
100M / 1Gig / 2.5Gig / 5Gig / 10Gig
The Non-MultiGigabit Ports Are the
Same as Previous Line Cards / Products – Support 10M/100M/1Gig Speeds
Catalyst4500# show int TenGigabitEthernet 2/1
TenGigabitEthernet2/1 is up, line protocol is up (connected)
Hardware is Ten Gigabit Ethernet Port, address is 18e7.28d8.55e0 (bia 18e7.28d8.55e0)
MTU 1500 bytes, BW 10000000 Kbit/sec, DLY 10 usec, reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Full-duplex, 10Gb/s, link type is auto, media type is 100/1000/2.5G/5G/10GBaseTx
TenGigabitEthernet2/1
MultiGigabit Ports’ Modes - CLI
Catalyst4500(config)# hw-module module 2 mode ?
1 Multigigabit lite : 12 MultiGigabit
ports (10:1 oversubscribed) and 36 1Gigabit ports
2 Multigigabit enhanced : 12 MultiGigabit
ports ( 5:1 oversubscribed) and 24 1Gigabit ports
3 Multigigabit performance : 12 MultiGigabit
ports ( 2.5:1 oversubscribed) only
Catalyst4500# show module
Chassis Type : WS-C4507R+E
Power consumed by backplane : 40 Watts
Mod Ports Card Type Model
Serial No.
---+-----+--------------------------------------+------
3 4 Sup 7-E 10GE (SFP+), 1000BaseX (SFP) WS-
X45-SUP7-E CAT1542L5GW
…
…
Mod LinecardMode
----+--------------------------------------------------
2 1
Catalyst4500#
Mode Change - The mode changes on a
per line card basis Are named as
TenGigabitEthernet indicating its highest
possible speed
Three Modes
Translate to three different oversubscription
ratios
Mode Change Requires Module Reload
– Resetting module is required after
configuring the mode
Catalyst 3850 ─ MultiGigabit Versions
48 Port Version 24 Port Version
Downlinks:
36 x 1G LineRate 10/100/1000BASE-T, 12 x GE/mGig/10GT
PoE/PoE+/UPoE, EEE, MACSec
Uplinks: 4x10GE SFP+, 2 x 40G QSFP (NEW), 8x10G
SFP+ (NEW)
Downlinks:
24 x GE/mGig/10GT
PoE/PoE+/UPoE, EEE, MACSec
Uplinks:
4x10GE SFP+, 2 x 40G QSFP (NEW), 8x10G
SFP+ (NEW)
All 3850 Versions Can Stack with Each Other
Catalyst 3850 MultiGigabit ─ 24 Port Layout
Packet Buffer
Forwarding Controller
Ingress
FIFO
Egress
FIFO
Network Interface
Packet Buffer
Forwarding Controller
Ingress
FIFO
Egress
FIFO
Network Interface
Packet Buffer
Forwarding Controller
Ingress
FIFO
Egress
FIFO
Network Interface
Packet Buffer
Forwarding Controller
Ingress
FIFO
Egress
FIFO
Network Interface
Dual PHY
MACSec
Dual PHY
MACSec
Octeon-2
1.3 GHz
6-Core CPU
Console EMP
USB
FPGA
SDRAM
4GB
Flash
2GB
2x40G, 8x10G, 4x10G, 12 x 10G 100M/1G/2.5G/5G/10G
12 Port UPoE
10GB PHY
MACSec
10GB PHY
MACSec
10GB PHY
MACSec
One Core/.UADP ASIC
Clock – 500 MHz / 80Gbps
480G STACK INTERFACE
12 x 10G 100M/1G/2.5G/5G/10G
10GB PHY
MACSec
10GB PHY
MACSec
10GB PHY
MACSec
Reassembly
Crypto
Reassembly
Crypto
Reassembly
Crypto
Reassembly
Crypto
12 Port UPoE
Core 1 Core 0 Core 1 Core 0
ASIC1 ASIC0
Catalyst 3850 MultiGigabit ─ 48 Port Layout 480G STACK INTERFACE
12 Port UPoE
Packet Buffer
Forwarding Controller
Ingress
FIFO
Egress
FIFO
Network Interface
Packet Buffer
Forwarding Controller
Ingress
FIFO
Egress
FIFO
Network Interface
Packet Buffer
Forwarding Controller
Ingress
FIFO
Egress
FIFO
Network Interface
Packet Buffer
Forwarding Controller
Ingress
FIFO
Egress
FIFO
Network Interface
USB
FPGA
SDRAM
4GB
Flash
2GB
One Core/UADP ASIC
Clock – 500 MHz / 80Gbps
Dual PHY
MACSec
Dual PHY
MACSec
2x40G, 8x10G, 4x10G, 36 x 1G 10M/100M/1G
36 Port UPoE
OctalPHY
MACSec*
12 x 10G 100M/1G/2.5G/5G/10G
10GB PHY
MACSec
10GB PHY
MACSec
10GB PHY
MACSec
Console EMP
Octeon-2
1.3 GHz
6-Core CPU
Reassembly
Crypto
Reassembly
Crypto
Reassembly
Crypto
Reassembly
Crypto
OctalPHY
MACSec*
OctalPHY
MACSec*
OctalPHY
MACSec* OctalPHY
MACSec*
Core 1 Core 0 Core 1 Core 0
ASIC1 ASIC0
NBASE-TTM Interoperability First Industry mGig Plugfest September 15
• Wide Industry Representation including Amphenol, Aquantia, Aruba, Cisco, CommScope, Fluke
Networks, Freescale , Intel, Microsemi, Panduit,
SpeedTech, Spirent, Tehuti Networks.
• Each vendor tested equipment with every other vendor
• All tests passed • mGig Speeds – Link up Diagnostics
• Cables – Cat5e, Cat6
• All vendors used Aquantia Phys
NBASE-T driving IEEE Standardization
mGig Server Connectivity With different speeds > 1G
Existing Cable Infra, Cat5e, Cat6, Cat6a
Campus Servers with 10G NIC Manufacturing Floors
Enterprise Workspace
High End Research Workstations Universities
Research Labs
MultiGigabit – Campus Server Connectivity
Roadmap: 3650 “Mini”
2 SKU’s
• 24 x 1Gbe
• 48 x1Gbe
48 Ports – 4xSFP+
24 Ports - 2xSFP & 2xSFP+
Fixed Power Supply, Fixed Fans, RPS2300
11.62 inch depth, 1RU Cisco StackWise®-160 Converged Access
Upto 770W PoE+
budget IP Base/IP Services
Expected
FCS
April ‘16
11.62” = 295mm
Roadmap: 3650 “Mini” Quick comparison
3750V2 3650 Mini 3650
Width 11.6” 11.6” 17.5”
Port speeds FE GE GE
PoE/UPoE PoE PoE+ PoE+
Uplinks SFP SFP/SFP+ SFP/SFP+
Power Supply & Fans Fixed Fixed FRU
Converged Access No Yes Yes
Power Supply Redundancy RPS2300 RPS2300 FRU Power Supply
3750X / 3560X End of Sale Heads-Up
Products Announcement EoS Date Replacement Benefits
3750X 12 months before
EoS
2HCY16
(July-December,
2016)
Catalyst 3850
mGig
Stack BW
FNF
CA
Improved QoS
Bigger buffers (12M)
3560X 12 months before
EoS
2HCY16
(July-December,
2016)
Catalyst 3650
Price
CA
Opt. Stacking
FNF
Improved QoS
Bigger buffers
Warning message on CCW:
CALL TO ACTION: Transition customers from legacy platforms
OS Level Innovations
Cisco IOS Software Release 15SY
Sup2T / 6880-X
IOS 15.2(1)SY1a
45+ CFD Fixes
IOS 15.2(2)SY
New Hardware
• C6816-X-LE, C6832-X-LE
• C6824-X-LE-40G, C6840-X-LE-40G
IOS 15.3(1)SY
New Hardware & Features
• New Hardware • C6800-SUP6T, SUP6T-XL
• CVR-4SFP-QSFP adapter
• Major New Features • UCI (Enterprise Fabric)
• IA 3.0 (160 FEX IDs)
15.2(1)SY
Sup6T
6840-X
15.2(2)SY
15.3(1)SY
Software Release IOS-XE 3.8.0/IOS15.2.(4)E
2960X/XR
IOS-XE 3.8.0/IOS15.2.(4)E
Extended Maintenance Release
35+ Software Features
• New Hardware
• Major Software Features • Horizontal Stacking
• Quad-SUP VSS-RPR
• Supported Platforms • C2960+/2960X/XR/2960CX
• C3750X/3560X/3560CX
• 4500E/4500x/4900M/4948
• Un-Supported Platforms
• C3850/3650
15.2(4)E
4500
3K/3K-Compact
IOS-XE 3.8/IOS 15.2(4)E Key Features
Arriving
packets
DATA PLANE
CONTROL PLANE
Switched
packets Switch
MGMT
SNMP, Telnet ICMP
Routing
Updates Logging ARP IP Options
Data Plane on the
2960X/XR scales
to over 130Mpps
Control Plan Policing
C2960X/XR & C3560CX
VSS Quad Supp RPR
Horizontal Stacking
Auto
Identity With help of Templates
LANBase
Additions
SSO – 4K
PVLAN – 4K/3K/2K
MACSEC on
All Ports
Segment
Edge Switch
Edge Ports
REP Support C2K
Default Redundancy Domain
SSO
VSL
Inchas
sis
Stand
by
Contro
l
Plane
RPR-
Cold
In
chassis
Active
Control
Plane
Standb
y
Data
Plane
Active
InChassis
Standby
Control
Plane
RPR-Cold
VSS
Active
VSS
Standb
y
In
chassis
Active
Control
Plane
Active
Data
Plane
Active
R
P
R
R
P
R
Aggregation
Switch/
mGig Switch
10G
• Application
• Stacking over standard Fiber and Copper interfaces – longer distances
• Stack of units function as a single switch – unified management/control
• Details
• Initial support – 3560CX switches
• 10G SFP+, mGig ports (or combination) configured as H-Stack ports (up to 2)
• 8 units in a stack
• One unit functions as Master
• Single IP address, SNMP agent, Config for the Stack, etc
• Holds configuration of the Stack
• New unit can automatically join stack – auto upgrade firmware
Front/Horizontal Stacking
Deliverables: 3560CX – IOS 15.2(4)E (Oct 2015)
3850/3650/2960X – CY2016
Aggregation
Switch/
mGig Switch
10G
Stack up to 96 GigE ports (3560CX)
40 Gbps throughput
The Power of Polaris
Polaris Technical Capabilities
Distributed
Database
Maximizes Scale,
Separation of state
Information from process
Object/Eve
nt Tracing
Easier Troubleshooting &
Debugging
Application
Platform
Deploy Containers, Run
on X86,
Developer/Operator
Views
Selective
Sensors
Pervasive Security
Across the Network
Control &
Data Plane
Separation
Enables Scale & Best of
Breed Deployment
Polaris Architecture
Distributed Databases – What is it?
Crimson Database (Internal Name)
Crimson Database
stores all Configuration
and Operational states
Distributed Database - Benefits
Enables Real Time Sync of
Incremental Updates
Allows programmatic access via
external facing interfaces
Database can be replicated to
other Polaris Devices
1:1 or 1:N
!!!
netconf/restcon
f/yang/snmp/re
st-api
Object/Event Tracing
Binary &
Radioactive
Tracing helps with
Faster
Troubleshooting
Object/Event Tracing
Binary Tracing
Optimizes Log-
Data Storage
Radioactive Tracing
helps Conditional
Logging
Object/Event Tracing
Conditional
Debugging based on
IP or MAC generates
a UUID
Filtering Logs with
UUID reveals only
relevant debug
messages
Polaris#debug platform condition ?
both Simultaneous ingress and egress debug
egress Egress only debug
feature For a specific feature
ingress Ingress only debug
interface Set interface for conditional debug
ipv4 Debug IPv4 conditions
ipv6 Debug IPv6 conditions
mac Debug MAC conditions
mpls Debug MPLS conditions
start Start conditional debug
stop Stop conditional debug
Polaris#debug platform condition
Application Platform Configuration
Management
Network
Monitoring
Network
Analytics
Kernel Support for Multiple Containers
exist in Polaris Phase-I
Depending on the Platform Capabilities,
Apps can run in Containers
netconf/restconf/yang/rest-api Interfaces
Life Cycle Management
IOS
OS/Linux
IOS
NW Devices
OS/Linux
NW Devices
Container Container
Cisco Signed apps “Open Packages”
Cisco + 3rd-party packages
AVC will be available in
March 2016
for
Wired & Wireless
Different Levels
of Application
Recognition
Application Recognition Techniques
Pre Defined Apps
on
DNS-AS Server
Jabber, Lync,
Cisco Telepresence, etc.
DNS-AS &
Server
Based
Signaling
1500 Apps – initial
few packets
NBAR2 with
Socket
Caching
(Performance
Optimized)
Full NBAR2
with
DPI
1500 Apps
Leveraging the
work from Routing
Platforms
Mostly on Routers,
Deep Packet
Inspection
1 2
• DNS is pervasively used - why not have those servers provide App Metadata?
• Use the TXT record of DNS servers for police metadata and then let router or switches snoop client DNS request and request an Authoritative Answer from the DNS server
Using DNS as an Authoritative Source (DNS-AS)
BR
DNS Server
What do we have in Polaris Phase 1 (16.1)?
Sub Package Upgrade
for WCM
WebUI
Day0, Day1 Faster Device Onboarding
Radioactive Tracing for
Wired & Wireless Smart Licensing
Targeted for 16.2
✗ MACSEC
✗ CISP/NEAT
✗ SGT over FNF
Feature Parity with 3.7*
Targeted for 16.3
✗ CTS Dot1X
✗ Critical Auth
Deprectated
✗ Medianet
✗ Flexlink
Traces
Path
Quickly
Administrator Cisco Support License Service
Steps to Upgrade
stack9#copy tftp://172.20.249.254/polaris/SIT_bld0928_emp3.bin flash:cat3k_caa-
universalk9.SSA.16.1.0.EFT3-1.bin
Destination filename [cat3k_caa-universalk9.SSA.16.1.0.EFT3-1.bin]?
Accessing tftp://172.20.249.254/polaris/SIT_bld0928_emp3.bin...
Loading polaris/SIT_bld0928_emp3.bin from 172.20.249.254 (via GigabitEthernet0/0):
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
[OK - 453999188 bytes]
453999188 bytes copied in 125.140 secs (3627930 bytes/sec)
stack9#
stack9#dir flash:*.bin
Directory of flash:/*.bin
30978 -rw- 453999188 Oct 5 2015 14:39:34 -07:00 cat3k_caa-universalk9.SSA.16.1.0.EFT3-
1.bin
1621966848 bytes total (774270976 bytes free)
stack9#
stack9#software install file flash:cat3k_caa-universalk9.SSA.16.1.0.EFT3-1.bin new force
Preparing install operation ...
[1]: Copying software from active switch 1 to switches 2,3,4
[1]: Finished copying software to switches 2,3,4
[1 2 3 4]: Starting install operation
…
…
1.Copy Image to flash:
2.‘Software Install’ Command with new and force options
3.Reload
Everything runs on
Switching Thank you!
Simplified Converged Access – Cisco Prime Infra CA WorkFlow IOS-XE CLI Optimization
CPI – Converged Access WorkFlow 2.0 Shipping : CPI 3.0 TP –
Nov’15
Switch : 3650, 3850, 4500E-Sup8E
Wireless : 5760
Supported Products
Branch Network
Campus Network
Network Deployment
New and simplified User Interface
15+ new CA feature support
Increased WLAN and AAA scalability
More smarter with built-in error-detection
Configuration management support
More…
CA WorkFlow 2.0 Key Enhancements
Platforms Software
Catalyst 3650 / 3860 / CT5760 3.6.0
Catalyst 4500E – Sup8E 3.7.0
New CLI Structure
CA – CLI Optimization MC
MA
1. show wireless mobility controller summary
2. show wireless mobility controller client summary
3. show wireless mobility controller client H.H.H
4. show capwap summary
5. show wlan summary
6. show wlan all
7. show wireless mobility summary
8. show wireless client summary
9. show wireless client mac-address H.H.H detail
10. show access-session mac-address H.H.H detail
11. show wcdb database all
12. show wcm-cs interface
13. show ap dot11 5ghz summary
14. show ap dot11 24ghz summary
15. show license right-to-use summary
16. show passwd encryption status
Current CLI Structure
show wireless mobility <ma-ip> summary
show wireless ap name <map-ip> summary
show wireless wlan name <map-ip> summary
show wireless mobility controller client summary
show wireless mobility
show wireless ap
show wireless wlan
show wireless client
Distributed – MC and MA
(Default) show wireless mobility
show wireless ap
show wireless wlan
show wireless client
Centralized – MC Managing MA
4 CLI’s
New
16 CLI’s
Current
Simplified and Expanded Information
CA – CLI Optimization
o Local Wireless Management Interface ID
o Local Wireless Management IP Address
o Max Mobility Tunnel Support / In Use status
o Host Name for Peer WLC and Mobility Agents
New – show wireless mobility summary
CA – CLI Optimization o Max AP Supported vs Installed License
o AP License In use
o Host Name of all Mobility Agents in local domain
o AP Group information for each local/remote APs
o AP Model # for each local/remotely APs
o Local and Remote AP IP Address
o Total Uptime for each AP across its sub-domain
New – show wireless ap summary
CA – CLI Optimization
o Local WLAN Information with new data columns
o Per-WLAN Security information
o SSID association to Radio Interface
o Aggregated Wireless Client count per SSID
New – show wireless wlan summary Platforms Software
Catalyst 3650 / 3860 / CT5760 3.7.3 – Dec’15
Catalyst 4500E – Sup8E 3.8.2 – Apr-16
CA – CLI Optimization
o Overall Wireless Client summary : Max, Local, Foreign and Anchored
o Username if user is 802.1X authenticated
o Associated AP name
o SSID Name which the user is connected to
o Per Wireless Client L2 and L3 info : VLAN ID and IP Address
o CA info : Switch Peer-Group Name and MA/MC Switch IP Address
o MTE : If this MC is MTE (transit WLC) for a client
New – show wireless mobility client summary (MC)
Platforms Software
Catalyst 3650 / 3860 / CT5760 3.7.3 – Dec’15
Catalyst 4500E – Sup8E 3.8.2 – Apr-16