devnet-1155branch virtualization

© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Presentation ID

Simplifying Cloud and Network Management

Cloud Services

vBranch


Impact of Network Functions Virtualization in the branch

•  Reduce service capability in branch

•  Services run virtualized in the data center

•  Works well with network based VPN solution

•  Service capability remains in the branch

•  Services run virtualized in branch

•  Works well with overlay based VPNs

WAN

Data Centre

2

Focus of today’s discussion

Functional migration

Branch

Routing

Gateways

Security

WAN

Same functions but vitualised

Appliances

Appliances

CSR1kv ASAv vWAAS 3rd party


vBranch – A solution to deploy and run rich service capabilities in the branch environment using virtualization technology. The platform is installed using zero touch technology The service can be adapted rapidly, with no truck rolls, no onsite expertise and no physical re-wiring


vBranch architecture – functional components

•  User portal •  VNF EMS / NMS / Controller •  NFV orchestrator •  Virtual Network Functions •  NFV-OS

•  Physical hardware

IP network

VNF EMS / NMS / Controller

Portal Infrastructure

NFV-OS

NFV Orchestrator

Branch

NFV-OS VNF

VNF VNF

VNF

NFV-OS


vBranch templates types •  Service only - I want a VPN, firewall and enhanced web filtering

vBranch orchestrator decides VNFs, connectivity and their day 1 / 2 configuration

•  VNF only – I want a CSR router, an ASAv and a WSAv vBranch orchestrator logically connects VNFs, spin them up and load day 0 configuration

•  Mixture – I want a VPN and firewall and a WSAv

5


vBranch: Demonstration


vBranch: Technical details


NFV OS Software Stack VNF Lifecycle Management Agent + Plug-n-Play Client +

Programmable APIs + Local WebUI

WAN/LAN Network Interfaces

Redhat Linux

x86 + HW Accelerators

NFV Platform (Cisco/3rd Party)

Hypervisor (KVM/UML)

Security (Secure Boot/

TrustSec) Licensing

Platform Hardware drivers

Hardware Accelerator SDK

vSwitch

Platform Initialization

Software

Service assurance

agents

Interface Drivers

NFV Infrastructure (NFVI)

Storage

Virtual Network Functions

NFV OS

MANO Agents

Server Management

functions Local VNFM

Cisco VNF 3rd Party VNF Cisco VNF 3rd Party VNF Cisco VNF


vbranch Yang model

vBranch Templates

ESC NED

Netconf (reg, dep, day 0)

VNF models/NEDs

VM VM

Day 1 / 2 configs

Template catalog

VNF catalog

Netconf “replace” (service / VNF / Day 1 configs)

User Interface

NCS (formerly Tail –f)

NFV-OS

REST

Portal front-end

Portal back-end

vBranch orchestration design


IP network

vBranch Node

NFV Orchestration platform (NCS) NMS/Human being 3) ESC-Lite registered to NCS

PnP Server

4) NCS connects to branch ESC-Lite (Netconf)

5) ESC-Lite registers the VNFs on VBO

6) ESC-Lite pulls VNF images / local preparation

Netconf over ssh

conf over ssh

NFV-OS

ESC-Lite

Virtual / real n/w

PnP

Portal and portal backend

VM

PNP

Assumes the vbranch node is ordered and claimed

10) NCS configures services

9) ESC-Lite notifies NCS VNF/VNFs are active

2) ESC-Lite registration to NCS using PnP

IP + serial + model + capabilities

1) Branch server boots and creates basic n/w infrastructure

vBranch zero-touch onboarding

7) NCS instructs ESC-Lite to deploy VNFs

NCS service (config) XE NED

vBranch on-boarded

VNF profile loaded

8) ESC-Lite deploys VNF, load day 0 config and sets up local VNF monitoring

Service profile loaded


IP network

vBranch Node

NFV Orchestration platform (NCS) NMS/Human being

3) NCS computes changes requirements

VNF Deletions

Netconf over ssh

conf over ssh

NFV- OS

Virtual / real n/w

PnP

Portal and portal backend

VM

PNP

VNF configuration change

vBranch add / deletes and changes

NCS service (config) XE NED

1) User requests a new vbranch template

2) List of services and deployments to NCS

New VNF Deployments

ESC-Lite


vBranch – A solution to deploy and run rich service capabilities in the branch environment using virtualization technology. The platform is installed using zero touch technology The service can be adapted rapidly, with no truck rolls, no onsite expertise and no physical re-wiring


Complete Your Online Session Evaluation

Don’t forget: Cisco Live sessions will be available for viewing on-demand after the event at CiscoLive.com/Online

•  Give us your feedback to be entered into a Daily Survey Drawing. A daily winner will receive a $750 Amazon gift card.

•  Complete your session surveys though the Cisco Live mobile app or your computer on Cisco Live Connect.

14


Continue Your Education •  Demos in the Cisco campus

•  Walk-in Self-Paced Labs

•  Table Topics

•  Meet the Engineer 1:1 meetings

•  Related sessions

15

devnet-1155branch virtualization

Technology