cisco sd-access building the routed underlay · cisco sd-access building the routed underlay rahul...

Cisco SD-AccessBuilding the Routed Underlay

Rahul Kachalia

Sr. Technical Leader

BRKCRS-2816

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public

Cisco Spark

Questions? Use Cisco Spark to communicate with the speaker after the session

1. Find this session in the Cisco Live Mobile App

2. Click “Join the Discussion”

3. Install Spark or go directly to the space

4. Enter messages/questions in the space

How

cs.co/ciscolivebot#BRKCRS-2816


Cisco’s Intent-based Networking

Intent Context

Security

Learning

Network Infrastructure

DNA Center

AnalyticsPolicy Automation

Switching Routers Wireless

Powered by Intent.Informed by Context.

The Network. Intuitive.

4BRKCRS-2816


Automated Network Fabric

Single Fabric for Wired & Wireless with Workflow-based Automation

Insights & Telemetry

Analytics and insights into user and application behavior

Identity-based Policy & Segmentation

Decoupled security policy definition from VLAN and IP Address

Software-Defined AccessNetworking at the Speed of Software!

DNA Center

AnalyticsPolicy Automation

IoT Network Employee Network

SDA-ExtensionUser Mobility

Policy stays with user

5BRKCRS-2816


Tuesday (Jan 30) Wednesday (Jan 31) Thursday (Feb 01) Friday (Feb 02)08:00-11:00 11:00-13:00 13:00-15:00 15:00-18:00 08:00-11:00 11:00-13:00 13:00-15:00 15:00-18:00 08:00-11:00 11:00-13:00 13:00-15:00 15:00-18:00 08:00-11:00 11:00-13:00 13:00-15:00 15:00-18:00

Software Defined Access Cisco Live Barcelona - Session Map

BRKCRS-2810Solution Overview

BRKCRS-2815Design & Scale

BRKCRS-2811External Connect

BRKEWN-2020Wireless Overview

BRKCRS-3811Policy Management

BRKDCN-2489DC Integration

LTRCRS-2810 (1)Hands-On Lab

BRKCRS-2814Assurance

You Are Here

Missed One? Sessions are available online @ CiscoLive.com

BRKEWN-2021SDA Wireless Setup

BRKCRS-2816Routed Underlay

LTRCRS-2810 (2)Hands-On Lab

BRKCRS-2812Migration

Agenda

Underlay Automation OverviewWhat is Underlay Automation?

Network PlanningWhat design and planning required?

Underlay Network DesignHow to design and build sites?

Underlay Network Provisioning How discover device and complete automation?

Take-AwayNext Step for Overlay Automation

1

2

3

4

5

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 8

Underlay AutomationSoftware Defined Access

What this session will cover: This session introduces the zero-configuration Underlay Automation to enable new SD-

Access solution. The simplified procedure builds the solid error-free underlay network

foundation to seamlessly start building an SD-Access overlay networks.

This session divides in four simple steps to successfully complete step-by-step Underlay

Automation – Plan | Design | Discover | Provision. This Underlay Automation capability

helps accelerating building SD-Access overlay networks without traditional network planning

and implementation process.

Objectives of this session:The audience will understand the overall Underlay Automation solution, and the parts that

work together to create the solution. The audience should be able to follow describe

procedure for their Day-0 or Day-2 network automation.

Session Overview and Objectives

BRKCRS-2816

Underlay Automation OverviewWhat is Underlay Automation?


What is Underlay Network?Traditional Networks

Core

Access

Dist

Core

Traditional LAN and WLAN network infrastructure and designs

Variable network size – Three-Tier or Collapsed models

Traditional network designs – Multilayer or Routed Access providing reachability

BRKCRS-2816


What is Underlay Automation Automating Traditional Networks

Core

Access

Dist

Core

Ease of new LAN network deployments for Campus or Branch networks

Complete network automation to accelerate building SDA overlay networks

Flexible software design to on-board new switch during network expansion

BRKCRS-2816


Underlay Automation OverviewSimplified Procedure

✅

✅

✅

✅

Verify Network Design

Verify System support

Prepare IP Services

Plan

BRKCRS-2816



Design

Sites across geographic

Global network services

Design IP Address Pools

✅

✅

✅

✅



Prepare IP Services

Plan

BRKCRS-2816



Design




Discover

Discover Network devices

Physical Topology

Network Readiness

✅

✅

✅

✅



Prepare IP Services

Plan

BRKCRS-2816



Design




Discover

Discover Network devices

Physical Topology

Network Readiness

Provision

Dynamic discovery & automation

Optimized routing design

Resilient underlay settings

✅

✅

✅

✅



Prepare IP Services

Plan

SDA Ready Network

4 Step Process

BRKCRS-2816

Underlay AutomationStep – 1 : Plan


Plan – Understanding Device Roles

Core

Cisco DNA Center

Seed Device

Intermediate system(s) between Core and new network block

Key system to discover, automate and on-board new Catalyst switches in network

BRKCRS-2816

ProvisionDiscoverDesignPlan

SeedSeed

Seed

Underlay Automation Block


Plan – Understanding Device Roles

Core

Cisco DNA Center

PnP Agent

PnP-AgentPnP Agent

PnP AgentPnP AgentPnP Agent

Seed Device

Intermediate system(s) between Core and new network block

Key system to discover, automate and on-board new Catalyst switches in network

PnP-Agent Device

Catalyst switch with factory-default settings and waiting at startup-wizard state

Interconnect between Seed and another PnP-Agent device in the network

BRKCRS-2816


SeedSeed

Seed

Underlay Automation Block

SeedSeed

Core

Cisco DNA Center


Plan – Underlay Automation Boundary

Core

Cisco DNA Center

Layer 3

Layer 2

Underlay Automation Boundary


Maximum Automation boundary limited to 2 hop count from Seed Device

Supporting common hierarchical and structured Enterprise network designs

BRKCRS-2816


2 Tier – Collapsed Core Design

Seed

PnP Agent

3 Tier – Campus Design

Seed

PnP Agent

PnP Agent

Extended Campus Design

Seed

PnP Agent

PnP Agent

PnP Agent


Plan – Network Support

Core

Cisco DNA Center

Access

Dist

Core

Layer 3

Layer 2

PnP AgentPnP Agent


Seed Seed


Seed Seed




Underlay Network Discovery

Dynamic and on-demand network discovery process

Seed system programmed to on-board new Catalyst switches with zero configurations

Flexible Discovery Support

Flexible Multi-tier network topologies support – Two or Three-Tier Designs

Day-2 Underlay Automation support for new systems in P2P topologies

BRKCRS-2816



Plan – Catalyst Switch Role Support

Core

Cisco DNA Center

Access

Dist

Core

PnP AgentPnP Agent


Seed Seed


Seed Seed

2 Tier – Collapsed Core Design 3 Tier – Campus Design

BRKCRS-2816


Layer Role Supported Switch

Distribution Seed Catalyst 9500 | 3850-XS | 6800

Access PnP Agent Catalyst 9400 | 9300 | 4500E | 3850 | 3650

Layer Role Supported Switch

Core Seed Catalyst 9500 | 3850-XS | 6800

Distribution PnP Agent Catalyst 9000 | 3850-XS | 4500E | 3850 | 3650

Access PnP Agent Catalyst 9400 | 9300 | 4500E | 3850 | 3650


Core

18

Plan – IP Address Plan

10.128.0.0/16 IS-IS Routing Domain

PnP AgentPnP Agent


Seed Seed

S1(config)# interface Loopback 0

S1(config-if)# ip address <ip> <mask>

!

Seed-1

S1(config)# interface Loopback 0

S1(config-if)# ip address <ip> <mask>

!

Seed-2

IP Address Plan

Plan and identify Network Address range for Underlay Automation network

Manually configure IP subnet on inter-seed switch interfaces from Underlay network address range if there is interconnection

Interface Address Plan

Leverage existing Loopback interface or create new if required

Loopback IP could be outside of domain Network address range, but must be reachable to DNA-C

Seed devices must not use LAN Automation address pool

BRKCRS-2816

Cisco DNA Center



Plan – Seed Switch IP Routing Configurations

IP Routing ConfigurationOptional if IS-IS routing protocol in Core

Else, manually create IS-IS routing instance without area tag and mutually redistribute between routing domains. No additional IS-IS routing configurations required.

Summarize Network range to Core

OSPF EIGRP

BRKCRS-2816

Core

Cisco DNA Center



PnP AgentPnP Agent


Seed Seed



S1(config)# router isis

S1(config-router)# redistribute ospf <id> metric <count>

!

S1(config)# router ospf <id>

S1(config-router)# redistribute connected route-map <name>

S1(config-router)# summary-address 10.128.0.0 255.255.0.0

Seed-1 OSPF



!




Seed-2 OSPF




OSPF EIGRP

BRKCRS-2816

Core

Cisco DNA Center



PnP AgentPnP Agent


Seed Seed





!




Seed-1 OSPF



!




Seed-2 OSPF


S1(config-router)# redistribute eigrp <id> metric <count>

!

S1(config)# interface <id>

S1(config-if)# description CONNECTED TO CORE

S1(config-if)# ip summary-address eigrp <AS> 10.128.0.0 255.255.0.0

EIGRP


S2(config-router)# redistribute eigrp <id> metric <count>

!

S2(config)# interface <id>

S2(config-if)# description CONNECTED TO CORE

S2(config-if)# ip summary-address eigrp <AS> 10.128.0.0 255.255.0.0

EIGRP




OSPF EIGRP

BRKCRS-2816

Core

Cisco DNA Center



PnP AgentPnP Agent


Seed Seed


Plan – DNA-C IP Routing Configurations

DNA-C IP Routing ConfigurationDNA-C must have end-to-end IP reachability

In Single-Home design the DNA-C performs host function with Default Gateway providing IP routing.

In Multi-Home design, the DNA-C must have static route to LAN Automation network(s) via secondary interface.

BRKCRS-2816



PnP AgentPnP Agent


Seed Seed






BRKCRS-2816



PnP AgentPnP Agent


Seed Seed

Eth-0 Management Interface :

IP Address : <IP_Address>

Netmask : <Mask>

Gateway : <Default_Gateway>

DNA-C

Core

Cisco DNA Center

Single-Home

Eth-0






BRKCRS-2816

DNA-C


IP Address : <IP_Address_1>

Netmask : <Mask>




PnP AgentPnP Agent


Seed Seed



Netmask : <Mask>


DNA-C

Core

Cisco DNA Center

Single-Home

Eth-0

Multi-Home

Core

Cisco DNA Center

Eth-0






BRKCRS-2816

DNA-C



Netmask : <Mask>




PnP AgentPnP Agent


Seed Seed



Netmask : <Mask>


DNA-C

Core

Cisco DNA Center

Single-Home

Eth-0

Eth-1 Interface :


Netmask : <Mask>

Gateway : <Skip>

Static Route : <LAN_Automation-Net>/<mask>/GW

Eth-1

Multi-Home

Core

Cisco DNA Center

Eth-0


Plan – Endpoint Connections

BRKCRS-2816


Core

10.128.0.0/16

PnP AgentPnP Agent


Seed Seed

Endpoint Integration

The PnP Agent may contend for DHCP address with attached Endpoints

Underlay automation process may fail if the LAN Pool is consumed by the Endpoints connected to PnP Agents

Recommended to connect Endpoints post successful Underlay Automation procedure

Cisco DNA Center

Temp DHCP Server

Layer 2 Domain



BRKCRS-2816


Core

10.128.0.0/16

PnP AgentPnP Agent


Seed Seed





Cisco DNA Center

Before Underlay Automation

Not Recommended

Temp DHCP Server

Layer 2 Domain



BRKCRS-2816


Core


Seed Seed





Cisco DNA Center

After Underlay Automation

Recommended


Plan – Seed Switch Feature Validation

✅ Verify no conflicting Spanning-Tree CLI is not present, i.e. ”spanning-tree portfast default”

BRKCRS-2816





BRKCRS-2816

✅ Verify Seed device do not have any network address belonging to LAN Automation IP Pool





BRKCRS-2816



✅ Pre-configure IS-IS routing without Area Tag. Mutual route-redistribution. No additional IS-IS

routing configuration implemented.




✅ Verify SSH configuration terminal access is present. Telnet is unsupported

BRKCRS-2816



✅ Pre-configure IS-IS routing without Area Tag. Mutual route-redistribution. No additional IS-IS

routing configuration implemented.

Underlay AutomationStep – 2 : Design


Design – Overview

BRKCRS-2816



Design – Overview

Network Hierarchy

Geographic Network Configuration

Network Hierarchy – Site | Bldg | Floor

Add Floor Plan

Global Network Services Configuration

System Management Services

Network Address Plan

Network Settings

BRKCRS-2816



Design – Create Global Network Regions

Add Regions or Sites1

Add Regions or Sites

Add Area - can be Region across Global

Area is optional. Sites is mandatory.

Manual or Bulk configuration thru CSV

1

BRKCRS-2816




Add Regions or Sites1

Add Network Hierarchy2





1 Add Network Hierarchy

Add Sites including Buildings & Floors

Auto geo-location based on Address


2

BRKCRS-2816








1 Add Network Hierarchy

Add Sites including Buildings & Floors

Auto geo-location based on Address


2

30

50

10

5

25

32

28

24

34

44 20

11

19

30

50

BRKCRS-2816



Design – Global Network Settings

Global Network Services

Consistent configuration compliance with global services

Configure services required globally inherited

Not actual GUI

BRKCRS-2816



Design – Global Network Settings

Global Network Services

Consistent configuration compliance with global services

Configure services required globally inherited

Area Network Services

Assign Per-Area or Regional services

Override service inheritance from parent

All device under Area inherits services

Not actual GUI

BRKCRS-2816



Design – Configure Global Network Services

Network Services Configurations

Add all required network services

Multiple servers can be added for load sharing and redundancy

Configuration Compliance

Provision step configures systems

Updates can re-provisioned for Day-2 operation

Add and Configure Server Address1

Save Configuration2

BRKCRS-2816



Design – Configure Global Device Credentials

CLI Credential Configurations

Common login credentials for all devices under selected hierarchy

Multiple local login accounts can be created and automated

SNMP Credentials

Automate SNMP community configuration.

Multiple SNMP community possible. Only one active

BRKCRS-2816







SNMP Credentials



BRKCRS-2816


Configure and Select Credentials 1






SNMP Credentials



BRKCRS-2816



Configure and Select SNMP2






SNMP Credentials



Save Configuration3

BRKCRS-2816



Configure and Select SNMP2


Design – Global Network Range

10.0.0.0/8

Global Network Range

Design Global Network Range

Structured Enterprise IP network design

Planned and divided regionally for optimal network communications

Not actual GUI

BRKCRS-2816



Design – Global Network Range

10.0.0.0/8


/16

/16

/19

/21

/21/21

/21

/19

/19

/19

/19

/19

/21

/21

/16

/16/21

Design Global Network Range



Design Area IP Pool

Subset of Global range assigned to Area, Site for multi-function distribution purpose.

Reserve IP Pool from Area to automate network intent for various operations

Not actual GUI

BRKCRS-2816



Design – Configure Global Network Range




Global IP Pool

IP address repository for multi-function distribution purpose to Area, Site etc.


BRKCRS-2816







Global IP Pool



Assign unique IP Pool Name1

BRKCRS-2816







Global IP Pool




Network Range for specific Area 2

BRKCRS-2816







Global IP Pool





Classful Network Mask 3

BRKCRS-2816







Global IP Pool






Gateway IP Address 4

BRKCRS-2816







Global IP Pool






Gateway IP Address 4

Save to create new entry5

BRKCRS-2816



Design – Configure LAN Pool at Site

Reserve LAN IP Pool

Configure Pool Name and Type = LAN

One Fabric Domain = One LAN Pool

Select Parent Pool to reserve Network Address Range

BRKCRS-2816




Reserve LAN IP Pool




LAN IP Assignments

Supported Netmask Range – 8 – 24

Dynamic IP address assignment from the LAN pool

Add more as network grow

Assign unique LAN Pool Name1

BRKCRS-2816




Reserve LAN IP Pool




LAN IP Assignments





Select LAN from menu 2

BRKCRS-2816




Reserve LAN IP Pool




LAN IP Assignments






Select Area Network Range 3

BRKCRS-2816




Reserve LAN IP Pool




LAN IP Assignments







Assign LAN Pool Address and Mask 4

BRKCRS-2816




Reserve LAN IP Pool




LAN IP Assignments







Assign LAN Pool Address and Mask 4

Reserve to create new entry5

BRKCRS-2816



Design – Configuration Summary

Build Network Hierarchy based on geographic locations

Configure Network Services – Global | Area | Site level

Configure Network Address Range – Global | Area | Site level

Configure LAN IP Pool from Parent – Global | Area | Site level

Step-1

Step-2

Step-3

Step-4

BRKCRS-2816


Underlay AutomationStep – 3 : Discovery


Discovery – Overview

Core

Cisco DNA Center

Access

Dist

Core

Layer 3

Layer 2

PnP AgentPnP Agent


Seed Seed


Seed Seed




Underlay Network Discovery

Dynamic and on-demand network discovery process

Seed system programmed to on-board new Catalyst switches with zeroconf

Flexible Discovery Support

Flexible network topologies with Dual or Single Seed system

Day-2 Underlay Automation support for new systems

BRKCRS-2816



Discovery – Seed System Discovery

BRKCRS-2816




Seed System Discovery

Initial automation-step to add Seed system in DNA-C inventory

Assign Seed system Loopback IP range to initiate SNMP-based discovery

BRKCRS-2816







Assign Discovery Profile Name1

BRKCRS-2816








Seed-1-Loopback IP Seed-2-Loopback IP

Assign Seed System IP Range2

BRKCRS-2816








Retain Global Settings unless unique3

Seed-1-Loopback IP Seed-2-Loopback IP

Assign Seed System IP Range2

Save Configuration4

BRKCRS-2816




Verify successful discovery1

BRKCRS-2816



Discovery – Seed System Inventory

BRKCRS-2816



Discovery – Seed System Inventory


Seed device automatically added in Inventory. Discovers system information

Prepares for Underlay network infrastructure discovery and automation

BRKCRS-2816

✅

✅



Discovery – Configuration Summary

BRKCRS-2816



Discovery – Configuration Summary

Build Discovery Profile

Assign Primary and Secondary Seed System IP address to discover

Retain remaining parameters unless unique value

Step-1

Step-2

Step-3

Step-4

BRKCRS-2816


Underlay AutomationStep – 4 : Provision


Provision – Underlay Automation

Underlay Provision

DNA-C Provision supports Underlay and Overlay network automation

All systems under Seed are dynamically discovered and programmed using PnP function

BRKCRS-2816



Provision – Add Seed Systems to Site

Underlay Provision

After successful Step-2 discovery the Seed systems are automatically added in Provision table

Add Seed systems to a Building of an Site where deployed for logical grouping

BRKCRS-2816

Add Seed system to Site1



Provision – Add Seed Systems to Site

Underlay Provision

After successful Step-2 discovery the Seed systems are automatically added in Provision table

Add Seed systems to a Building of an Site where deployed for logical grouping

BRKCRS-2816

Add Seed system to Site1

Update Software if needed2

Upgrade Software

Upgrade Cisco IOS software on Seed device(s) if new version required

Optional step to proceed further on Underlay Automation



Provision – Device Inventory Views

✅

✅

BRKCRS-2816

✅

✅



Provision – Device Inventory Views

Change Topology View 1

Underlay Provision

Device Inventory provides two views providing unique functions – Table and Topology

Table view provides device inventory and states

Topology view provides Provision function

BRKCRS-2816



Provision – Initiate Discovery Process

Select Seed Systems

Click each discovered seed system and select ”Discover and Provision”

Both systems are programmed with all required parameters to successfully discover and automate all systems

BRKCRS-2816



Provision – Initiate Discovery Process

Select Seed Systems

Click each discovered seed system and select ”Discover and Provision”

Both systems are programmed with all required parameters to successfully discover and automate all systems

BRKCRS-2816

Select Primary Seed-1 System1

S1 S2

Select Secondary Seed-2 System2



Provision – Start Automation

Start Automation Process

Primary Seed is temporarily programmed with DHCP and options. Automatic failover to Secondary if Primary fails during automation.

Selected Ports are automated to discover direct and in-direct attached PnP-Agent switches

BRKCRS-2816







BRKCRS-2816

Click LAN Automation1




Select Site2




BRKCRS-2816





Select Site2

Select Seed Devices3




BRKCRS-2816





Select Site2

Select Site LAN IP Pool 4





BRKCRS-2816





Select Site2

Optional. Configure Name Prefix5






BRKCRS-2816





Select Site2



Select Underlay Network Interface6





BRKCRS-2816





Select Site2








BRKCRS-2816

Start Underlay Discovery7





Select Site2








BRKCRS-2816

Start Underlay Discovery7



See Notes for more details


Provision – Stop Automation

BRKCRS-2816




BRKCRS-2816

Check Discovery Status1




BRKCRS-2816

✅

✅

⚠

️

⚠

️




BRKCRS-2816

✅

✅

✅

✅




BRKCRS-2816

✅

✅

✅

✅

Stop Automation Process

All discovered and automated Switches must reach to Completed status. Process time may vary on network size

Stop the automation. This action completes process and transitions all switches to final state

Stop Underlay Automation2




BRKCRS-2816

✅

✅

✅

✅

Stop Automation Process

All discovered and automated Switches must reach to Completed status. Process time may vary on network size

Stop the automation. This action completes process and transitions all switches to final state

Stop Underlay Automation2


See Notes for more details


Provision – Global Network Services

BRKCRS-2816

✅

✅

✅

✅

✅

✅

✅

✅

✅

✅

✅

✅




Global Service Provision

Provision all Global or Area configured services to newly discovered switches

The services configuration are supported over non-Mgmt Core network infrastructure

BRKCRS-2816




BRKCRS-2816




BRKCRS-2816

✅

✅

✅

✅

✅

✅




Global Service Provision

Provision all Global or Area configured services to newly discovered switches

The services configuration are supported over non-Mgmt Core network infrastructure

BRKCRS-2816



Provision – Define System Roles

BRKCRS-2816




BRKCRS-2816




BRKCRS-2816

System Role

Administrator must select each switch and define its network role – Access | Distribution | Core

DNA-C auto-arranges topology view based on user selection




BRKCRS-2816




BRKCRS-2816

System Role

Administrator must select each switch and define its network role – Access | Distribution | Core

DNA-C auto-arranges topology view based on user selection



Provision – Validate Configuration

BRKCRS-2816

Underlay Automation Configurations

DNA-C automates broad set of network configuration on Seed and PnP Agent Switches

All systems are programmed with variety of technologies and best practices for reliable underlay network infrastructure




BRKCRS-2816





Underlay Automation



BRKCRS-2816





Point-to-Point Interface configurations

Loopback Interface configurations

Underlay Automation



BRKCRS-2816







IS-IS Routing Protocol

BFD, IP Dampening, High Availability

Underlay Automation



BRKCRS-2816









IP Routing Security, Device Security

AAA, 802.1X, IP Device Tracking

Underlay Automation



BRKCRS-2816











SNMP Traps, Syslog, Radius

SSH, HTTP and OOB Access

Management

Underlay Automation



BRKCRS-2816

Microsoft Word

Document





Click to verify configurations







SNMP Traps, Syslog, Radius

SSH, HTTP and OOB Access

Management

Underlay Automation


Provision – SD-Access Ready!

BRKCRS-2816

💡Resynchronize Device Inventory if partial topology discovered

SD-Access Ready

DNA-C auto-arranges topology view based on user selection.

All systems are programmed and ready to build an overlay networks



Provision – Configuration Summary

Add Seed systems to Site

Start Underlay Network discovery and automation

Stop Underlay Network discovery and automation

Provision Global Network services

Designate System role to build structure network topology

Step-1

Step-2

Step-3

Step-4

Step-5

BRKCRS-2816



Access Network Expansion

Seed

62BRKCRS-2816

Core

Cisco DNA Center


Automate from Parent Seed device as Access network expands.

Transparent process with existing switches sharing same or different LAN Pool

PnP AgentPnP Agent

Provision – Network Expansion




Seed

62BRKCRS-2816

Core

Cisco DNA Center




PnP AgentPnP Agent PnP Agent




PnP Agent

PnP Agent


Seed

62BRKCRS-2816

Core

Cisco DNA Center




Distribution Network Expansion

Seed





Automate new network block from Parent Seed device. Reuse or create new LAN Pool.

Use Distribution as Seed if Access expands


PnP Agent

PnP Agent


Seed

62BRKCRS-2816

Core

Cisco DNA Center





Seed


PnP Agent

PnP Agent

PnP Agent

PnP Agent




Automate new network block from Parent Seed device. Reuse or create new LAN Pool.

Use Distribution as Seed if Access expands

Take Away


Key Takeaway

30

50

10

5

25

32

28

24

34

44 20

11

19

30

50

✅ Accelerate SD-Access deployment with Zero configuration Underlay Automation

Underlay networks are optimized, resilient with integrated Cisco Best Practices

Four simplified steps to rapidly automate large network infrastructure

Automate Global or Area local system and network services for consistency

Flexible Automated solution for Day-0 or Day-2 network deployments

✅

✅

✅

✅

BRKCRS-2816


SD-Access SupportFabric ready platforms for your digital ready network

BRKCRS-2816

ASR-1000-X

ASR-1000-HX

ISR 4430

ISR 4450

WirelessRoutingSwitching

AIR-CT5520

AIR-CT8540

Wave 2 APs (1800,2800,3800)

Wave 1 APs* (1700,2700,3700)

Catalyst 9400

Catalyst 9300

Catalyst 9500

Catalyst 4500E Catalyst 6800 Nexus 7700

Catalyst 3650 and 3850

AIR-CT3504

ISRv/CSRv

* with Caveats

Extended

CDB

3560-CX

NEW

NEW

NEW

NEW

NEW

IE (2K/3K/4K/5K)

NEW

NEW


What to Do Next?

Get SD-Access Capable Devices

with DNA Advantage OS License

Get DNA Center Appliances

with DNA Center Software

Cisco Services can help you

to Test - Migrate - Deploy

Refresh your

Hardware & Software

Deploy the

DNA Center

SD-Access

Capable

Engage with

Cisco Services

DNA

Center

Cisco

Services

Advisory

Implementation

Technical

Optimization Training

Managed

BRKCRS-2816


The First Step… #NewEra

#CiscoDNA#NetworkIntuitive


Cisco Spark

Questions? Use Cisco Spark to communicate with the speaker after the session

1. Find this session in the Cisco Live Mobile App

2. Click “Join the Discussion”

3. Install Spark or go directly to the space

4. Enter messages/questions in the space

How

cs.co/ciscolivebot#BRKCRS-2816


• Please complete your Online Session Evaluations after each session

• Complete 4 Session Evaluations & the Overall Conference Evaluation (available from Thursday) to receive your Cisco Live T-shirt

• All surveys can be completed via the Cisco Live Mobile App or the Communication Stations

Don’t forget: Cisco Live sessions will be available for viewing on-demand after the event at www.ciscolive.com/global/on-demand-library/.

Complete Your Online Session Evaluation

http://ciscolive.com/Online

http://www.ciscolive.com/global/on-demand-library/


Continue Your Education

• Demos in the Cisco campus

• Walk-in Self-Paced Labs

• Tech Circle

• Meet the Engineer 1:1 meetings

• Related sessions

73BRKCRS-2816

Thank you

cisco sd-access building the routed underlay · cisco sd-access building the routed underlay rahul...

Documents