ios xe : enabling the digital network...
TRANSCRIPT
IOS XE : Enabling the Digital Network Architecture
Muhammad A Imam
BRKARC-3300
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
The goal of this session is to give you an understanding of what IOS-XE Denali 16.x is, why would you care and how it
works.
BRKARC-3300 3
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Muhammad A ImamSr. Manager Technical MarketingCCIE#27739
Email: [email protected]: @m_a_imam
Muhammad currently works as a Sr. Manager Technical Marketing for Data Center & Enterprise Switching Group. Muhammad joined Cisco in 2008 and has around 15 years of experience in the networking industry. Currently he manages a team of Catalyst, Nexus and MDS Platform TMEs. He was one of the first TMEs to work on Catalyst 3850/3650 and has worked on all Catalyst Switching products. He also contributes to Enterprise Network designs and Next Generation Platform Architectures. In the past he has held roles in Development, Test and Support of different products ranging from Routers, Switches, Firewalls, etc.
Muhammad holds a Masters degree in Electrical & Computer Engineering. He also maintains a CCIE #27739 in Routing and Switching.
BRKARC-3300 4
• Cisco IOS and its Evolution
• IOS XE Denali Architecture
• Benefits of the New Architecture
• Features Enabled by IOS XE Denali
• Wrap up & Summary
Agenda
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Historical View of Cisco IOS
1984 1993 2007 2010 20151986
Cisco was born
Cisco’s Shipped First AGS Router
Operating
System
6.0
2009
IOS XE
BinOS
3.x
ASR1000
NX-OS 2008
IOS 1986
Timeline unevenly distributed
IOS 15.x
M&T ReleaseLAN Switching, Remote Access, WAN Switching
IOS 9.xIOS XE
NOVA
3.x
Cat4K Cat3850
IOS XE
Denali
16.1
Cat3850
ASR1000, ISR
IOS-XR 2004
12.2SX
12.2SR
12.2SE
12.2SG
12.2S
IOS 9.x 10.x… 11.x... 12.x
BRKARC-3300 6
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Historical View of Networks
1984 1993 2007 2010 20151986 2009
ASR1000
Timeline unevenly distributed
Cat4K
Internet Era
Cat3850
Cat3850
ASR1000, ISR
Digitization
Cisco’s Shipped First AGS Router
Cisco was born
Connect multiple Networks BYOD, Video, Cloud
BYOD, Video, Cloud
Routers & SwitchesLAN Switching, Remote Access, WAN Switching
BRKARC-3300 7
Introduction to DNA
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco PublicBRKARC-3300 9
Network Requirements for the Digital Organization
Insights &Actions
Drive Business
Innovations
Security & Compliance
Real-time & Dynamic
Threat Defense
Cisco Digital Network Architecture (DNA)
Automation& Assurance
Speed, Simplicity
and Visibility
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Cloud Enabled
Automation
Abstraction & Policy Control
from Core to Edge
Open & Programmable | Standards-Based
Open APIs | Developers Environment
Network Enabled ApplicationsCollaboration | Mobility | IoT | Security
Virtualization
Physical & Virtual Infrastructure | App Hosting
Analytics
Structured Data,
Contextual Insights
Insights
& Actions
Automation
& Assurance
Security &
Compliance
Cisco Digital Network Architecture
Principles
Benefits
BRKARC-3300 10
The Vision of IOS-XE Denali
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Switches Wireless Routers
Unified Software Stack (IOS-XE 16)
APIC-EMPrime Infra. WebUI
M a n a g e a b i l i t y
P l a t f o r m A S I C s / C P U
O p e r a t i n g S y s t e mCLI, SNMP, RESTConf, NETConf
Forward Vision – IOS XE Denali 16.x.y
One OS Across Enterprise Platforms
BRKARC-3300 12
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Challenges Being Addressed…
Life Cycle
Management
ASR 1000 –
3.7 (16)
15.3(2)
Catalyst 3850 –
3.7.3
15.2(3)
Feature
Consistency
Inconsistent
Features across
platforms
Lack of end to end
feature consistency
Different
Configuration CLI
Same Features
different form of
Commands
Two Versioning Systems
Two Versioning Systems
BRKARC-3300 13
IOS XE Denali Architecture
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
• Monolithic IOSd – Control Plane
• Sub Packages for Data Plane
• Linux Demons hosting capability
• Message Parsing Capability
IOS XE EvolutionSame Look & Feel, More Powerful Architecture
IOS IOS XE 3.7.x(SE)
• Monolithic OS
• Compact
• High Performance
• IOSd – Component Assemblies
• Modularized Features – Sub
Packages
• Distributed Operating System\
• Location Independence
• Radioactive Tracing and Events
Export
IOS XE Denali 16.x
BRKARC-3300 15
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Common Infrastructure / HA
Management Interface
Module Drivers
Kernel
IOS XE EvolutionSame Look & Feel, More Powerful Architecture
IOS
IOS
Common Infrastructure / HA
Management Interface
Module Drivers
Kernel
IOS XE 3.7.x(SE)
Features Components
Hosted AppsIOSd
Features
Components
WCM
Wireshark
IOS XE Denali 16.1.1
Hosted AppsIOSd
LXC*
LXC*
Crimson
DB
Common
Infrastructure / HA
Management
Interface
Module Drivers
Kernel
WCM
Wireshark
IOSd Blob
IOS Sub
SystemsIOS Sub
SystemsIOS Sub
Systems
BRKARC-3300 16
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco PublicBRKARC-3300 17
Kernel
IOS
dB
lob
Packet Delivery Service
Internal IPC
Avail
ab
ilit
y F
ram
ew
ork
Process
Manager
Chassis
Manager
Consolidated
Logging
Comet
Services
Licensing
Services
Libraries/
Utilities
Services
External
Transports
(TCP/SCTP/U
DP)
Wireless ControllerHA
Stack Manager (3K)
Features PD
Platform
Drivers
Low Level APIs
UADP ASIC
Drivers
FED
IOS XE Software Internals Overview
Session Manager
FMAN-FP
FMAN-RP
LSMPI, LFTS
Chassis
FS
SMAN
Services
IOS
Su
b
Sys
tem
s
IOS
Su
b
Sys
tem
s
IOS
Su
b
Sys
tem
s
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco PublicBRKARC-3300 18
Kernel
Packet Delivery Service
Internal IPC
Avail
ab
ilit
y F
ram
ew
ork
Process
Manager
Chassis
Manager
Consolidated
Logging
Comet
Services
Licensing
Services
Libraries/
Utilities
Services
External
Transports
(TCP/SCTP/U
DP)
Wireless ControllerHA
Stack Manager (3K)
Features PD
Platform
Drivers
Low Level APIs
UADP ASIC
Drivers
FED
IOS XE – IOS-XE (Traditional)
Session Manager
FMAN-FP
FMAN-RP
LSMPI, LFTS
Chassis
FS
SMAN
Services
IOS
dB
lob
IOS
Su
b
Sys
tem
s
IOS
Su
b
Sys
tem
s
IOS
Su
b
Sys
tem
s
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco PublicBRKARC-3300 19
Kernel
IOS XE – IOS-XE 16.x
Packet Delivery Service
Internal IPC
Avail
ab
ilit
y F
ram
ew
ork
Process
Manager
Chassi
s
Manage
r
Consolidate
d Logging
Comet
Service
s
Licensing
Services
Libraries/
Utilities
Services
External
Transports
(TCP/SCTP/
UDP)
Wireless
Controller
HA
Stack Manager
(3K)
Features PD
Platform
Drivers
Low Level APIs
UADP
ASIC
Drivers
FED
Session
Manager
FMAN-FP
FMAN-
RP
LSMPI, LFTS
Chassis
FS
SMAN
Services
Crimson DB
IOS
dB
lob
IOS
Su
b
Sys
tem
s
IOS
Su
b
Sys
tem
s
IOS
Su
b
Sys
tem
s
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Distributed Databases – What is it?
Crimson Database stores all
Configuration and
Operational States
Separation of Code and Data -
Failed Code doesn’t effect Data
and States of other Processes
Crimson DB(Cisco Proprietary)
LogsProtocol
States
Link
States
Link
States
BRKARC-3300 20
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Distributed Database – Lets take an example…
Crimson DB
BGP
EtherChannel
Netflow
Multicast
???
Processes (Code) States (Data)
Data & Code Separation
BRKARC-3300 21
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Controller
Replication
!!!
!!!
Consistent
Configuration/Operation
Data Base
Database can be replicated to other Polaris
Devices
1:1 or 1:N enabling the concept of Distributed
Stacking e.g.
• Process crash results in process restart• State is preserved stored outside of the process• Control Plane disruption: 5 seconds• Data Plane disruption: None
Distributed Database – Replication & HA
BRKARC-3300 22
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
CLI Driven: Does not scale, proprietary,
hard to automate.• Everything still depends on CLI
• XML, Python API, TCL Scripting, BASH,
SNMP
Distributed Database – Enables Programmability
Model Programmability: Scalable,
Faster TTM of services, easily automated.model driven across catalyst 3K and 4K platforms
Northbound agents only deal with YANG models
that are either industry common
or Cisco,
Today: CLI Driven Future: Open, Model Driven
OS, Features, Control
Hardware
OS + DME
Hardware
CLICLI RestConf NetConf
Evolved API
BRKARC-3300 23
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Crimson Database – Enabling Programmability
Linux Kernel
App Hosting Environment
Crimson DB
Crimson Interface
Yang Models
Model Driven APIs
XML JSON
netconf Restconf
GPB
gRPC
Data Plane
Control Plane
APP1 APP2 APP3 APP4
Open Apps
BRKARC-3300 24
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
IOS-XE – An Application Platform
Configuration
Management
Network
Monitoring
Network
Analytics
Kernel Support for Multiple Containers exist in current
versions of IOS-XE Denali
Depending on the Platform Capabilities, Apps can run
in Containers
netconf/restconf/yang/rest-api Interfaces
Life Cycle Management
IOS
OS/Linux
IOS
NW Devices
OS/Linux
NW Devices
ContainerContainer
Cisco Signed apps “Open Packages”
Cisco + 3rd-party packages
BRKARC-3300 25
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco PublicBRKARC-3300 26
Kernel
IOS
dB
lob
Packet Delivery Service
Internal IPC
Avail
ab
ilit
y F
ram
ew
ork
Process
Manager
Chassis
Manager
Consolidated
Logging
Comet
Services
Licensing
Services
Libraries/
Utilities
Services
External
Transports
(TCP/SCTP/U
DP)
Wireless ControllerHA
Stack Manager (3K)
Features PD
Platform
Drivers
Low Level APIs
UADP ASIC
Drivers
FED
IOS XE – Software Patchability
Session Manager
FMAN-FP
FMAN-RP
LSMPI, LFTS
Chassis
FS
SMAN
Services
IOS
Su
b
Sys
tem
s
IOS
Su
b
Sys
tem
s
IOS
Su
b
Sys
tem
sBug in WCM
Reload
• Bug-fix deployed via sub-package upgrade
• Customer SW Qualification: Few Days compare to months
• Downtime during upgrade: seconds
Benefits of the New Architecture
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Benefits for our Customers
One Release TrainOperational Efficiency,
Consistency in Control Plane
Behavior,
RAFA
(Run Any Feature
Anywhere)Feature Velocity across Platforms
Patch UpdatesWCM/WebUI/SANET/etc sub
package upgrade, Peach of mind
for Customers
Secure Platform64 Bit ASLR, Mandatory Access
Control for Processes
Comprehensive
ProgrammabilityObject based model,
Netconf/REST Interfaces
Advanced
Serviceability Tracing and Troubleshooting
BRKARC-3300 28
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
CLI, SNMP
One Release Train
Network
Administrator
Simplified
Network
Administration
Same CLI
Software
Lifecycle
Management
Platform
Relevant
Features
Different Binaries to Match Respective
Platforms
BRKARC-3300 29
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
RAFA (Run Any Feature Anywhere)
• Feature Velocity Across Platforms
• No Need to touch Platform Independent Pieces of Software
• Platform Dependent Piece of software need to be done
MPLS
AVC
BRKARC-3300 30
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
SW Architecture Brings Better Feature Velocity
WCM SANET
FMAN-RP
Contr
ol-
Pla
ne
Data
-Pla
ne
FED
FMAN-FP
• Control-Plane / Data-plane Separation
• Multiple Control Plane (CP) sources (e.g. IOS, WCM, SANET)
• Multiple Data Plane (DP) in redundant and/or stacked configuration
• Persistent copies of forwarding states are maintained (FMAN-RP)
• Feature object dependencies for objects sources from multiple control-plane processes are maintained via FMAN-FP (e.g. IOSD, WCM, SANET)
FED Client
IOSD
IOSD Shim
New Feature Changes
E.g. MPLS – L3 VPN,
x509v3 SSH authentication
BRKARC-3300 31
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Patch Updates
WCM
(Wireless Control
Module)
WebUI SANET*
The Security
Module
Sub Package Upgrade
• Bug-fix deployed via sub-package upgrade
• Customer SW Qualification: Few Days
• Downtime during upgrade: seconds
BRKARC-3300 32
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco PublicBRKARC-3300 33
Comprehensive Programmability
Lower Risk & Meet Compliance
Standards Based Interfaces
Programmable Access
Secure Hosting Environment
Reduced Cost & Complexity
Programmable Management
Model driven infrastructure
Automate Repetitive tasks
Resource Optimization
Granular Network-Device Visibility
Rich Streaming Telemetry
Provision on Demand
Greater Business Agility
Automated Operations
Zero Touch On-boarding
Secure Scripting
Complete Device Automation
Endpoints
Branch
OSS/BSSAPIC-EMAnalytics
OPEN APIs
Controller
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Secure OS
64 Bit ASLR (Address Space Layout Randomization)
Mandatory Access Control
A more Secure Operating System
BRKARC-3300 34
Features Enabled by New Architecture
MPLS on 3850
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Why MPLS in NG Campus Platforms
MPLS on Catalyst 3850
Standards based secure segmentation in
Campus from Access to WAN
Allows new segmentation use cases in
Routed and Collapsed Access with MPLS &
IoT
Allows to differentiate and compete
effectively with a wider choice of
Segmentation solutions for customers+UADP IOS 16.x
16.3 July 16
BRKARC-3300 37
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Line of business – BU segmentation Payment Card Industry Hospital Network
Bring-Your-Own-Device (BYOD) Mergers and Acquisitions Multi-Tenancy
POS
Network Other
NetworkDoctor Staff
Medical Device
Network Segmentation in Campus
INTERNET
BRKARC-3300 38
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
MPLS L3 VPN Campus Segmentation Deployment OptionsEnd to End Network Virtualization
Distribution
Core
Access
C3850
Distribution
Core
Access
C3850
Core
Access
Standard Access Routed Access Collapsed Access
L3 VPN
L3 VPN
L3 VPN
C3850
C6K
BRKARC-3300 39
Application Visibility and Control
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Different Levels
& Mechanisms
of Application
Recognition
BRKARC-3300 41
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Application Recognition Techniques
Pre Defined Apps
on
DNS-AS Server
Jabber, Lync,
Cisco Telepresence, etc.
DNS-AS &
Server
Based
Signaling
1500 Apps – initial
few packets
NBAR2 with
Socket
Caching
(Performance
Optimized)
Full NBAR2
with
DPI
1500 Apps
Leveraging the
work from Routing
Platforms
Mostly on Routers,
Deep Packet
Inspection
12
BRKARC-3300 42
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
AVC – Challenges with Todays Applications
HTTP
FTP
POP3
IMAP
HTTPS
SMTP
80
20/21
110
143
443
25
Yesterday’s Applications Today’s Applications
L7
L6
L5
AV
C
L4
L3
L2
L1
Netflo
w
Most of Today’s Applications map to ports 80 or 443
BRKARC-3300 43
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Enabling and Monitoring AVCCLI
switch# show run int g1/0/23
Building configuration...
interface GigabitEthernet1/0/23
switchport access vlan 193
service-policy input AVC-youtube
ip nbar protocol-discovery
end
switch# show ip nbar protocol-discovery top-n
GigabitEthernet1/0/23
Input Output
----- ------
Protocol Packet Count Packet Count
Byte Count Byte Count
5min Bit Rate (bps) 5min Bit Rate (bps)
5min Max Bit Rate (bps) 5min Max Bit Rate ---
--------------------- ------------------------ ------------------------
youtube 356 187
264713 25603
0 0
6000 3000
bing 2741 2384
493258 423925
0 0
3000 3000
BRKARC-3300 44
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
• Enable Application Visibility
on Interfaces
• Drag and Drop to Select
Interface
• Filter Up/Down Interfaces
• Consistent UI on Routers &
Switches
WebUI – Easier Configuration of AVC
BRKARC-3300 45
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
• Filter Monitoring Over
Ingress/Egress interfaces
and direction
• Identify Top Talkers
• Monitor Data over 2, 24
or 48 hours
• Monitor percentage
Bandwidth usage
WebUI – Monitoring AVC
BRKARC-3300 46
Open Device ProgrammabilityCatalyst Switches
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
TODAY
Silo’d CLIs and scripts
Manual configurations
Script maintenance
Wired access only
Static network environments
Slow and un predictable workload change
Hardware-centric
FUTURE
Simple user interface
Autonomic with control and visibility
Orchestration with data models
Extensibility with native 3rd party app hosting
Open sourced programmable interfaces
Seamless wired and wireless access
Programmable using software
Standards Based
Object Model APIs
TCO Savings
TCO Savings
Evolution of Enterprise CampusProgrammability & Automation
BRKARC-3300 48
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Crimson Database – Enabling Programmability
Linux Kernel
App Hosting Environment
Crimson DB
M
D
T
Crimson Interface
Yang Models
Model Driven APIs
XML JSON
netconf Restconf
GPB
gRPC
Data Plane
Control Plane
APP1 APP2 APP3 APP4
Open Apps
BRKARC-3300 49
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Configuration Management Today
jafrazie$ ssh [email protected]
[email protected]'s password:
cho# conf t
Enter configuration commands, one per line. End with CNTL/Z.
cho(config)#
Task
Oriented
Human
Friendly
Easy To
Replay
No
Special
Tools
Software
Unfriendly
Syntax/format
changes
No Common
Data Model
No Error
Reporting
BRKARC-3300 50
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
APIs & Network Configuration Protocols
Content
Operations
Messages
Transport
Protocol StackNETCONF is an IETF configuration management protocol in response to
SNMP/SMI shortcomings for managing configuration e.g.:
Lack of support for simple things like backup-and-restore of element
configuration
Separates Operational and Configuration Data management (show commands v/s config)
Defines capabilities for managing configuration data
Candidate buffer for validation of config before commit
Locking the config space
NETCONF
BRKARC-3300 51
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
NETCONF Protocol Layers
• Config / Operational DataContent
• <get>, <get-config>, etcOperations
• <rpc>,<rpc-reply>Messages
• SSHTransport
BRKARC-3300 52
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
APIs & Network Configuration Protocols
REST:
Stands for “Representational State Transfer” – Server maintains no session state
Architecture style for designing networked applications
Uses HTTP(S) to make calls between entities
RESTCONF
RESTCONF:
RESTful protocol to access YANG defined data
URIs reflect data hierarchy in a NETCONF data store
Data encoded with either XML or JSON. XML has structure according to YANG by XML-
YANG and JSON by JSON-YANG.
Allows use of familiar HTTP tools and programming libraries
BRKARC-3300 53
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
System
Physical
eth1/1, eth1/2…
BGP
BGP router ID, peers…
ARP
ARP entries
VRF
VRF instances
Object Models
Configuration & State are stored in Objects
Objects are structured in a hierarchy
Objects are modelled using YANG
BRKARC-3300 54
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Object Models
What is YANG?
• A data model explicitly and precisely determines the structure, syntax and semantics of the data that is externally visible
• YANG is a data modeling language defined in RFC 6020
• YANG modules are for NETCONF what MIBs are for SNMP
陽YANG – Yet Another Next Generation
Why YANG?
• In order for NETCONF to be useful as a network-wide protocol, it must have a common data model
• Simply wrapping CLI in XML is not enough as each vendor has its own CLI
• YANG provides the common data model necessary for to consume NETCONF data from any network device
• Each vendor must implement common YANG modules
BRKARC-3300 55
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
NETCONF and YANG in Context
NETCONFManager
NETCONF
Yang
Models
YANG ModelsYANG Models
YANG Models
YANG Models
ManagementApplications
BRKARC-3300 56
Stackwise Virtual
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Cisco Stackwise Virtual
L2/L3Dist-1 Dist-2VSLSW-1 SW-2
Phase 1 - Aggregation
Unified Control and
Management plane
Simplified L2/L3
network designs
Inherits all proven VSS
architectural benefits
High-performance 10G
Aggregation block
Non-oversubscribe :
o 96 x 10G Ports
o 8 x 40G Ports
Fully Distributed
Forwarding
Non-stop business
communication with
Cisco NSF/SSO
Proven 1+1 HA
architecture
Next-gen In-service
Software upgrade ready
Etherchannel – up to 8p
Flexible design on all
next-gen UADP
based systems
Elastic topology
design – Hub/spoke,
Ring, Chain
Simplification across
multiple network
layers
Based on next-gen OS
– IOS XE Denali
Rich IOS feature sets
– L2/L3, Routing,
Multicast, QoS, etc.
ACTIVE HOT-STANDBY
SW-1
WS-C3850-48XS | 96 x 10 Gigabit Ethernet | 8 x 40 Gigabit Ethernet
Simple Scale Resilient Flexible Advance
Distributed stacking will support 16.1 feature parity during FCS. Please check release notes for compete details.BRKARC-3300 58
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Cisco Stackwise VirtualPhase 1 – Aggregation
Switch 1
Switch 1# configure terminal
Switch 1(config)# distributed-stack
Switch 1(config-distr-stack)# domain 1
Switch 1(config-distr-stack)# exit
Switch-1(config)# interface
TenGigabitEthernet1/0/2
Switch-1(config-if)# distributed-stack link 1
Switch-1(config-if)# exit
<save the config and reload>
Switch 2
Switch 2# configure terminal
Switch 2(config)# distributed-stack
Switch 2(config-distr-stack)# domain 1
Switch 2(config-distr-stack)# exit
Switch-2(config)# interface
TenGigabitEthernet1/0/2
Switch-2(config-if)# distributed-stack link 2
Switch-2(config-if)# exit
<save the config and reload>
VSLSW-1 SW-2
ACTIVE HOT-STANDBY
Sample Config – Subject to change
BRKARC-3300 59
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Cisco Stackwise Virtual Show commands
Switch#show distributed-stack
Distributed Stack Configuration:
--------------------------------
Mode: Aggregation
Domain Number: 5
Switch Distributed Stack Link Ports
------ ---------------------- ------
1 1 FortyGigabitEthernet1/1/1
FortyGigabitEthernet1/1/3
2 1 FortyGigabitEthernet2/1/1
FortyGigabitEthernet2/1/3
Switch#show distributed-stack bandwidth
Switch Bandwidth
------ ---------
1 80
2 80
BRKARC-3300 60
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Cisco Stackwise Virtual Show commands
Switch>show switch
Switch/Stack Mac Address : b07d.479e.7500 - Local Mac Address
Mac persistency wait time: Indefinite
H/W Current
Switch# Role Mac Address Priority Version State
------------------------------------------------------------
*1 Active b07d.479e.7500 1 V01 Ready
2 Standby f0b2.e514.6000 1 V01 Ready
BRKARC-3300 61
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Cisco Stackwise Virtual
L2/L3Dist-1 VSLSW-1 SW-2
Dual Active Detection using Fast Hello
ACTIVE HOT-STANDBY
VSLP VSLP
• Special hello messages over backup Ethernet• Helps integrate non-Cisco switches
Standby Switch detects complete VSL failure and assumes Active Switch role
Active Chassis continues to function leading to Dual Active situation and traffic black-hole
Dual Active Detection identifies this and prevents this from happening
Sub-Sec
Detection
BRKARC-3300 62
Operational Effciency
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Advanced ServiceabilityDelay in troubleshooting results in service interruption and loss of productivity
Traces
Path
Quickly
Administrator
Where are the
voice calls getting
dropped?
Cisco Support
Try turning on traces for
Process 1, Process 2 …
Radioactive Tracing turns on Conditional
Debugs across ProcessesAlways on Binary Tracing allows Faster
Troubleshooting
BRKARC-3300 64
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Object/Event Tracing
Conditional
Debugging is based
on IP* or MAC
generates a UUID
Filtering Logs with
UUID reveals only
relevant debug
messages
Polaris#debug platform condition ?
both Simultaneous ingress and egress debug
egress Egress only debug
feature For a specific feature
ingress Ingress only debug
interface Set interface for conditional debug
ipv4 Debug IPv4 conditions
ipv6 Debug IPv6 conditions
mac Debug MAC conditions
mpls Debug MPLS conditions
start Start conditional debug
stop Stop conditional debug
Polaris#debug platform condition
BRKARC-3300 65
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
3-4mins. 3-4mins.
Day 0: 3850 Wired & W’less Configuration(Before IOS-XE 16.1)
Run Express Setup to
configure mgmt. Port
Factory fresh Install - Day0
Wired WebUI via mgmt. port,
configure VLANs & Interfaces
Basic & advanced
features via CLI
15-20mins.
Based on level of expertise
* Configuration time excludes switch/WLC boot time
5 mins.
Average config time: 35min.BEFORE
5 mins.
W’less WebUI –
Guest & Corp. SSID
10 mins.
Cisco Internal Only
BRKARC-3300 66
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Day 0: 3850 Wired & W’less Configurationwith IOS XE 16.1
Factory fresh install - Day0 using WebUI
* Configuration time excludes switch/WLC boot time
Config time: 15min.AFTER
3-4mins. 3-4mins.15 minutes
Wired and W’less Day0 config: Site profiles for Cisco best practice config, enable global & port level config,
Corporate and Guest SSID
Single Wizard for Wired & W’less
Cisco Internal Only
BRKARC-3300 67
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Day 1: Monitoring and Advanced Configuration
Monitoring
• Customizable Dashboard – display user preferred
data
• Easier Navigation - 3 step configuration to
monitoring, Simplified Menu structure
• Task Pinning - Maintain user-defined task list
(Admin’s top 10 activities)
• Search toolbar – Search clients, AP, users, mac,
etc.
• Ask Cisco – Users can make feature requests
directly to Product teams
User-Experience
• Use-case based workflows (not feature
enablement)
• Better response time – enhanced backend/frontend
Cisco Internal Only
BRKARC-3300 68
WebUI Demo
Wrap up & Summary
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
• Application Visibility –
Config & Monitoring
• Device Dashboard
• Device Onboarding
Simplified Device Management
Patch Critical &
Security Fixes
• Sub-Package Upgrade
• Security & Kernel Patches
• Match Condition
• Logging across features
• Collate Logs
Faster Troubleshooting
Advanced OS – Consistent Customer Experience
BRKARC-3300 71
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
2HCY2014 1HCY2015 2HCY2015 1HCY2016 2HCY2016
3.7.0 3.7.1
3.6.13.6.3
3.6.2
3.7.2 3.7.3
XE 3.7.0/15.3(1)E
XE 3.6.0E/15.2(2)E
16.3
C3650
C3850
3.6.2/3.7.2 Feature Parity
3.7.3 Feature
Parity
C3650MGig,
C365012”,3850-48XS
RadarRadarShipping
IOS-XE 16.x
3.14 3.163.15
Routing XE 3.x/15.y
3.17
ASK1K, ISR 4k, CSR
16.1
EM SM
3.17 Feature Parity
Migration Strategy
16.2 16.4
BRKARC-3300 72
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Steps to Upgrade
stack9#copy tftp://172.20.249.254/polaris/SIT_bld0928_emp3.bin flash:cat3k_caa-
universalk9.SSA.16.1.0.EFT3-1.bin
Destination filename [cat3k_caa-universalk9.SSA.16.1.0.EFT3-1.bin]?
Accessing tftp://172.20.249.254/polaris/SIT_bld0928_emp3.bin...
Loading polaris/SIT_bld0928_emp3.bin from 172.20.249.254 (via GigabitEthernet0/0):
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
[OK - 453999188 bytes]
453999188 bytes copied in 125.140 secs (3627930 bytes/sec)
stack9#
stack9#dir flash:*.bin
Directory of flash:/*.bin
30978 -rw- 453999188 Oct 5 2015 14:39:34 -07:00 cat3k_caa-universalk9.SSA.16.1.0.EFT3-
1.bin
1621966848 bytes total (774270976 bytes free)
stack9#
stack9#software install file flash:cat3k_caa-universalk9.SSA.16.1.0.EFT3-1.bin new force
Preparing install operation ...
[1]: Copying software from active switch 1 to switches 2,3,4
[1]: Finished copying software to switches 2,3,4
[1 2 3 4]: Starting install operation
…
…
1.Copy Image to flash:
2.‘Software Install’ Command with new and forceoptions
3.Reload
BRKARC-3300 73
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
IOS-XE Denali 16.1 & 16.2 available on cisco.com
A 3rd Party Performance & Scalability Report is available
BRKARC-3300 74
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Download IOS-XE 16.x from Cisco.com
ASR1000 and ISR4K, CSR Catalyst 3850/3650
BRKARC-3300 75
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Complete Your Online Session Evaluation
Don’t forget: Cisco Live sessions will be available for viewing on-demand after the event at CiscoLive.com/Online
• Give us your feedback to be entered into a Daily Survey Drawing. A daily winner will receive a $750 Amazon gift card.
• Complete your session surveys through the Cisco Live mobile app or from the Session Catalog on CiscoLive.com/us.
BRKARC-3300 76
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public
Continue Your Education
• Demos in the Cisco campus
• Walk-in Self-Paced Labs
• Lunch & Learn
• Meet the Engineer 1:1 meetings
• Related sessions
BRKARC-3300 77
Thank you