onepk the swiss army knife for network programming
DESCRIPTION
This presentation was made in the DevNet Zone at Cisco Live, San Francisco, 2014.TRANSCRIPT
© 2014 Cisco and/or its affiliates. All rights reserved.BRK-2777 Cisco Public 1
© 2014 Cisco and/or its affiliates. All rights reserved.BRK-2777 Cisco Public
Business Application Developers – Network Programmability aware
Network Programmability Designers, Developersand Support Engineers
Business & Service Orchestration Workflow Engine for Compute, Network & Storage
Platform API
Infrastructure Services Orchestration ManagementCustomRouting
Paths Topo
vRR/ BGP
Policy & Identity
Analytic
OpenStack
Infra.Service Mgmt.
Device Mgmt
WirelessMgmt.
Controller APIController Layer
Virtual and Physical
OpenFlowAPII2RS PCEPBGP NetConf CLI, other..
Operating Systems
Application Domain - Web, RDBMS, CRM, Messaging ...
Amazon …
… …… … ...
EEM (TCL), Python & PnP
APIC-DC APIC-EM
Application Centric Infrastructure Roles and Technologies IT Operations and Service Delivery
Network Engineering and Operations
© 2014 Cisco and/or its affiliates. All rights reserved.BRK-2777 Cisco Public
Evolution Traditional Approach
Evolving How We Interact With The Network Operating System
App
CJava
PythonREST
…
IOS
Events
AppEEM (TCL)Actions
Routing
Data Plane
Policy
Interface
Monitoring
Discovery
CLI
AAA
SNMP
HTML
XML
Syslog
Span
Netflow
CDP
Routing Protocols An
yth
ing
yo
u c
an
th
ink
of
© 2014 Cisco and/or its affiliates. All rights reserved.BRK-2777 Cisco Public
onePK Architecture
C, JAVA Program
onePK API Presentation
onePK API Infrastructure
IOS / XE(Catalyst, ISR, ASR1K)
NXOS(Nexus Platforms)
IOS XR(ASR 9K, CRS)
© 2014 Cisco and/or its affiliates. All rights reserved.BRK-2777 Cisco Public
Container
Network OS
onePK Apps
Process Hosting
Container
onePK Apps
Network OS
Bla
de
Blade Hosting
onePK Apps
Ext
ern
al
Se
rve
r
Network OS
End-Point Hosting
Write Once, Run Anywhere
onePK Application Hosting Options
© 2014 Cisco and/or its affiliates. All rights reserved.BRK-2777 Cisco Public
Yes, it is secureSecurity Five Ways
App Security
Admin Security
Container Security
Runtime Security
Code Security
Digital SigningCertification Process
CLI ControlResource Allocation
IsolationResource Consumption
Code IsolationStrong Typing
AAA (PKI)Encryption (TLS)
© 2014 Cisco and/or its affiliates. All rights reserved.BRK-2777 Cisco Public
Languages and Service SetsElement•Element Capabilities•Configuration Management•Interface/Ports Events•Location Information
Utilities•Syslog Events and Queries•AAA Interface•Path Trace
Discovery•Network Element Discovery•Service Discovery•Topology Discovery
Developer•Debug Capabilities•Tracing Interfaces•Management Extensions
Data Path• Packet/Flow Classifiers• Copy/Divert/Inject• Statistics
Policy• Interface Policy• Interface Feature Policy• Forwarding Policy• Flow Action Policy
Routing• Read RIB Routes• Add/Delete Application Routes• RIB Events (Route up/down)