ios xe : enabling the digital network...

IOS XE : Enabling the Digital Network Architecture

Muhammad A Imam

BRKARC-3300

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public

The goal of this session is to give you an understanding of what IOS-XE Denali 16.x is, why would you care and how it

works.

BRKARC-3300 3


Muhammad A ImamSr. Manager Technical MarketingCCIE#27739

Email: [email protected]: @m_a_imam

Muhammad currently works as a Sr. Manager Technical Marketing for Data Center & Enterprise Switching Group. Muhammad joined Cisco in 2008 and has around 15 years of experience in the networking industry. Currently he manages a team of Catalyst, Nexus and MDS Platform TMEs. He was one of the first TMEs to work on Catalyst 3850/3650 and has worked on all Catalyst Switching products. He also contributes to Enterprise Network designs and Next Generation Platform Architectures. In the past he has held roles in Development, Test and Support of different products ranging from Routers, Switches, Firewalls, etc.

Muhammad holds a Masters degree in Electrical & Computer Engineering. He also maintains a CCIE #27739 in Routing and Switching.

BRKARC-3300 4

• Cisco IOS and its Evolution

• IOS XE Denali Architecture

• Benefits of the New Architecture

• Features Enabled by IOS XE Denali

• Wrap up & Summary

Agenda


Historical View of Cisco IOS

1984 1993 2007 2010 20151986

Cisco was born

Cisco’s Shipped First AGS Router

Operating

System

6.0

2009

IOS XE

BinOS

3.x

ASR1000

NX-OS 2008

IOS 1986

Timeline unevenly distributed

IOS 15.x

M&T ReleaseLAN Switching, Remote Access, WAN Switching

IOS 9.xIOS XE

NOVA

3.x

Cat4K Cat3850

IOS XE

Denali

16.1

Cat3850

ASR1000, ISR

IOS-XR 2004

12.2SX

12.2SR

12.2SE

12.2SG

12.2S

IOS 9.x 10.x… 11.x... 12.x

BRKARC-3300 6


Historical View of Networks

1984 1993 2007 2010 20151986 2009

ASR1000

Timeline unevenly distributed

Cat4K

Internet Era

Cat3850

Cat3850

ASR1000, ISR

Digitization

Cisco’s Shipped First AGS Router

Cisco was born

Connect multiple Networks BYOD, Video, Cloud

BYOD, Video, Cloud

Routers & SwitchesLAN Switching, Remote Access, WAN Switching

BRKARC-3300 7

Introduction to DNA

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco PublicBRKARC-3300 9

Network Requirements for the Digital Organization

Insights &Actions

Drive Business

Innovations

Security & Compliance

Real-time & Dynamic

Threat Defense

Cisco Digital Network Architecture (DNA)

Automation& Assurance

Speed, Simplicity

and Visibility


Cloud Enabled

Automation

Abstraction & Policy Control

from Core to Edge

Open & Programmable | Standards-Based

Open APIs | Developers Environment

Network Enabled ApplicationsCollaboration | Mobility | IoT | Security

Virtualization

Physical & Virtual Infrastructure | App Hosting

Analytics

Structured Data,

Contextual Insights

Insights

& Actions

Automation

& Assurance

Security &

Compliance

Cisco Digital Network Architecture

Principles

Benefits

BRKARC-3300 10

The Vision of IOS-XE Denali


Switches Wireless Routers

Unified Software Stack (IOS-XE 16)

APIC-EMPrime Infra. WebUI

M a n a g e a b i l i t y

P l a t f o r m A S I C s / C P U

O p e r a t i n g S y s t e mCLI, SNMP, RESTConf, NETConf

Forward Vision – IOS XE Denali 16.x.y

One OS Across Enterprise Platforms

BRKARC-3300 12


Challenges Being Addressed…

Life Cycle

Management

ASR 1000 –

3.7 (16)

15.3(2)

Catalyst 3850 –

3.7.3

15.2(3)

Feature

Consistency

Inconsistent

Features across

platforms

Lack of end to end

feature consistency

Different

Configuration CLI

Same Features

different form of

Commands

Two Versioning Systems

Two Versioning Systems

BRKARC-3300 13

IOS XE Denali Architecture


• Monolithic IOSd – Control Plane

• Sub Packages for Data Plane

• Linux Demons hosting capability

• Message Parsing Capability

IOS XE EvolutionSame Look & Feel, More Powerful Architecture

IOS IOS XE 3.7.x(SE)

• Monolithic OS

• Compact

• High Performance

• IOSd – Component Assemblies

• Modularized Features – Sub

Packages

• Distributed Operating System\

• Location Independence

• Radioactive Tracing and Events

Export

IOS XE Denali 16.x

BRKARC-3300 15


Common Infrastructure / HA

Management Interface

Module Drivers

Kernel

IOS XE EvolutionSame Look & Feel, More Powerful Architecture

IOS

IOS

Common Infrastructure / HA

Management Interface

Module Drivers

Kernel

IOS XE 3.7.x(SE)

Features Components

Hosted AppsIOSd

Features

Components

WCM

Wireshark

IOS XE Denali 16.1.1

Hosted AppsIOSd

LXC*

LXC*

Crimson

DB

Common

Infrastructure / HA

Management

Interface

Module Drivers

Kernel

WCM

Wireshark

IOSd Blob

IOS Sub

SystemsIOS Sub

SystemsIOS Sub

Systems

BRKARC-3300 16


Kernel

IOS

dB

lob

Packet Delivery Service

Internal IPC

Avail

ab

ilit

y F

ram

ew

ork

Process

Manager

Chassis

Manager

Consolidated

Logging

Comet

Services

Licensing

Services

Libraries/

Utilities

Services

External

Transports

(TCP/SCTP/U

DP)

Wireless ControllerHA

Stack Manager (3K)

Features PD

Platform

Drivers

Low Level APIs

UADP ASIC

Drivers

FED

IOS XE Software Internals Overview

Session Manager

FMAN-FP

FMAN-RP

LSMPI, LFTS

Chassis

FS

SMAN

Services

IOS

Su

b

Sys

tem

s

IOS

Su

b

Sys

tem

s

IOS

Su

b

Sys

tem

s


Kernel


Internal IPC

Avail

ab

ilit

y F

ram

ew

ork

Process

Manager

Chassis

Manager

Consolidated

Logging

Comet

Services

Licensing

Services

Libraries/

Utilities

Services

External

Transports

(TCP/SCTP/U

DP)


Stack Manager (3K)

Features PD

Platform

Drivers

Low Level APIs

UADP ASIC

Drivers

FED

IOS XE – IOS-XE (Traditional)

Session Manager

FMAN-FP

FMAN-RP

LSMPI, LFTS

Chassis

FS

SMAN

Services

IOS

dB

lob

IOS

Su

b

Sys

tem

s

IOS

Su

b

Sys

tem

s

IOS

Su

b

Sys

tem

s


Kernel

IOS XE – IOS-XE 16.x


Internal IPC

Avail

ab

ilit

y F

ram

ew

ork

Process

Manager

Chassi

s

Manage

r

Consolidate

d Logging

Comet

Service

s

Licensing

Services

Libraries/

Utilities

Services

External

Transports

(TCP/SCTP/

UDP)

Wireless

Controller

HA

Stack Manager

(3K)

Features PD

Platform

Drivers

Low Level APIs

UADP

ASIC

Drivers

FED

Session

Manager

FMAN-FP

FMAN-

RP

LSMPI, LFTS

Chassis

FS

SMAN

Services

Crimson DB

IOS

dB

lob

IOS

Su

b

Sys

tem

s

IOS

Su

b

Sys

tem

s

IOS

Su

b

Sys

tem

s


Distributed Databases – What is it?

Crimson Database stores all

Configuration and

Operational States

Separation of Code and Data -

Failed Code doesn’t effect Data

and States of other Processes

Crimson DB(Cisco Proprietary)

LogsProtocol

States

Link

States

Link

States

BRKARC-3300 20


Distributed Database – Lets take an example…

Crimson DB

BGP

EtherChannel

Netflow

Multicast

???

Processes (Code) States (Data)

Data & Code Separation

BRKARC-3300 21


Controller

Replication

!!!

!!!

Consistent

Configuration/Operation

Data Base

Database can be replicated to other Polaris

Devices

1:1 or 1:N enabling the concept of Distributed

Stacking e.g.

• Process crash results in process restart• State is preserved stored outside of the process• Control Plane disruption: 5 seconds• Data Plane disruption: None

Distributed Database – Replication & HA

BRKARC-3300 22


CLI Driven: Does not scale, proprietary,

hard to automate.• Everything still depends on CLI

• XML, Python API, TCL Scripting, BASH,

SNMP

Distributed Database – Enables Programmability

Model Programmability: Scalable,

Faster TTM of services, easily automated.model driven across catalyst 3K and 4K platforms

Northbound agents only deal with YANG models

that are either industry common

or Cisco,

Today: CLI Driven Future: Open, Model Driven

OS, Features, Control

Hardware

OS + DME

Hardware

CLICLI RestConf NetConf

Evolved API

BRKARC-3300 23


Crimson Database – Enabling Programmability

Linux Kernel

App Hosting Environment

Crimson DB

Crimson Interface

Yang Models

Model Driven APIs

XML JSON

netconf Restconf

GPB

gRPC

Data Plane

Control Plane

APP1 APP2 APP3 APP4

Open Apps

BRKARC-3300 24


IOS-XE – An Application Platform

Configuration

Management

Network

Monitoring

Network

Analytics

Kernel Support for Multiple Containers exist in current

versions of IOS-XE Denali

Depending on the Platform Capabilities, Apps can run

in Containers

netconf/restconf/yang/rest-api Interfaces

Life Cycle Management

IOS

OS/Linux

IOS

NW Devices

OS/Linux

NW Devices

ContainerContainer

Cisco Signed apps “Open Packages”

Cisco + 3rd-party packages

BRKARC-3300 25


Kernel

IOS

dB

lob


Internal IPC

Avail

ab

ilit

y F

ram

ew

ork

Process

Manager

Chassis

Manager

Consolidated

Logging

Comet

Services

Licensing

Services

Libraries/

Utilities

Services

External

Transports

(TCP/SCTP/U

DP)


Stack Manager (3K)

Features PD

Platform

Drivers

Low Level APIs

UADP ASIC

Drivers

FED

IOS XE – Software Patchability

Session Manager

FMAN-FP

FMAN-RP

LSMPI, LFTS

Chassis

FS

SMAN

Services

IOS

Su

b

Sys

tem

s

IOS

Su

b

Sys

tem

s

IOS

Su

b

Sys

tem

sBug in WCM

Reload

• Bug-fix deployed via sub-package upgrade

• Customer SW Qualification: Few Days compare to months

• Downtime during upgrade: seconds

Benefits of the New Architecture


Benefits for our Customers

One Release TrainOperational Efficiency,

Consistency in Control Plane

Behavior,

RAFA

(Run Any Feature

Anywhere)Feature Velocity across Platforms

Patch UpdatesWCM/WebUI/SANET/etc sub

package upgrade, Peach of mind

for Customers

Secure Platform64 Bit ASLR, Mandatory Access

Control for Processes

Comprehensive

ProgrammabilityObject based model,

Netconf/REST Interfaces

Advanced

Serviceability Tracing and Troubleshooting

BRKARC-3300 28


CLI, SNMP

One Release Train

Network

Administrator

Simplified

Network

Administration

Same CLI

Software

Lifecycle

Management

Platform

Relevant

Features

Different Binaries to Match Respective

Platforms

BRKARC-3300 29


RAFA (Run Any Feature Anywhere)

• Feature Velocity Across Platforms

• No Need to touch Platform Independent Pieces of Software

• Platform Dependent Piece of software need to be done

MPLS

AVC

BRKARC-3300 30


SW Architecture Brings Better Feature Velocity

WCM SANET

FMAN-RP

Contr

ol-

Pla

ne

Data

-Pla

ne

FED

FMAN-FP

• Control-Plane / Data-plane Separation

• Multiple Control Plane (CP) sources (e.g. IOS, WCM, SANET)

• Multiple Data Plane (DP) in redundant and/or stacked configuration

• Persistent copies of forwarding states are maintained (FMAN-RP)

• Feature object dependencies for objects sources from multiple control-plane processes are maintained via FMAN-FP (e.g. IOSD, WCM, SANET)

FED Client

IOSD

IOSD Shim

New Feature Changes

E.g. MPLS – L3 VPN,

x509v3 SSH authentication

BRKARC-3300 31


Patch Updates

WCM

(Wireless Control

Module)

WebUI SANET*

The Security

Module

Sub Package Upgrade

• Bug-fix deployed via sub-package upgrade

• Customer SW Qualification: Few Days

• Downtime during upgrade: seconds

BRKARC-3300 32


Comprehensive Programmability

Lower Risk & Meet Compliance

Standards Based Interfaces

Programmable Access

Secure Hosting Environment

Reduced Cost & Complexity

Programmable Management

Model driven infrastructure

Automate Repetitive tasks

Resource Optimization

Granular Network-Device Visibility

Rich Streaming Telemetry

Provision on Demand

Greater Business Agility

Automated Operations

Zero Touch On-boarding

Secure Scripting

Complete Device Automation

Endpoints

Branch

OSS/BSSAPIC-EMAnalytics

OPEN APIs

Controller


Secure OS

64 Bit ASLR (Address Space Layout Randomization)

Mandatory Access Control

A more Secure Operating System

BRKARC-3300 34

Features Enabled by New Architecture

MPLS on 3850


Why MPLS in NG Campus Platforms

MPLS on Catalyst 3850

Standards based secure segmentation in

Campus from Access to WAN

Allows new segmentation use cases in

Routed and Collapsed Access with MPLS &

IoT

Allows to differentiate and compete

effectively with a wider choice of

Segmentation solutions for customers+UADP IOS 16.x

16.3 July 16

BRKARC-3300 37


Line of business – BU segmentation Payment Card Industry Hospital Network

Bring-Your-Own-Device (BYOD) Mergers and Acquisitions Multi-Tenancy

POS

Network Other

NetworkDoctor Staff

Medical Device

Network Segmentation in Campus

INTERNET

BRKARC-3300 38


MPLS L3 VPN Campus Segmentation Deployment OptionsEnd to End Network Virtualization

Distribution

Core

Access

C3850

Distribution

Core

Access

C3850

Core

Access

Standard Access Routed Access Collapsed Access

L3 VPN

L3 VPN

L3 VPN

C3850

C6K

BRKARC-3300 39

Application Visibility and Control


Different Levels

& Mechanisms

of Application

Recognition

BRKARC-3300 41


Application Recognition Techniques

Pre Defined Apps

on

DNS-AS Server

Jabber, Lync,

Cisco Telepresence, etc.

DNS-AS &

Server

Based

Signaling

1500 Apps – initial

few packets

NBAR2 with

Socket

Caching

(Performance

Optimized)

Full NBAR2

with

DPI

1500 Apps

Leveraging the

work from Routing

Platforms

Mostly on Routers,

Deep Packet

Inspection

12

BRKARC-3300 42


AVC – Challenges with Todays Applications

HTTP

FTP

POP3

IMAP

HTTPS

SMTP

80

20/21

110

143

443

25

Yesterday’s Applications Today’s Applications

L7

L6

L5

AV

C

L4

L3

L2

L1

Netflo

w

Most of Today’s Applications map to ports 80 or 443

BRKARC-3300 43


Enabling and Monitoring AVCCLI

switch# show run int g1/0/23

Building configuration...

interface GigabitEthernet1/0/23

switchport access vlan 193

service-policy input AVC-youtube

ip nbar protocol-discovery

end

switch# show ip nbar protocol-discovery top-n

GigabitEthernet1/0/23

Input Output

----- ------

Protocol Packet Count Packet Count

Byte Count Byte Count

5min Bit Rate (bps) 5min Bit Rate (bps)

5min Max Bit Rate (bps) 5min Max Bit Rate ---

--------------------- ------------------------ ------------------------

youtube 356 187

264713 25603

0 0

6000 3000

bing 2741 2384

493258 423925

0 0

3000 3000

BRKARC-3300 44


• Enable Application Visibility

on Interfaces

• Drag and Drop to Select

Interface

• Filter Up/Down Interfaces

• Consistent UI on Routers &

Switches

WebUI – Easier Configuration of AVC

BRKARC-3300 45


• Filter Monitoring Over

Ingress/Egress interfaces

and direction

• Identify Top Talkers

• Monitor Data over 2, 24

or 48 hours

• Monitor percentage

Bandwidth usage

WebUI – Monitoring AVC

BRKARC-3300 46

Open Device ProgrammabilityCatalyst Switches


TODAY

Silo’d CLIs and scripts

Manual configurations

Script maintenance

Wired access only

Static network environments

Slow and un predictable workload change

Hardware-centric

FUTURE

Simple user interface

Autonomic with control and visibility

Orchestration with data models

Extensibility with native 3rd party app hosting

Open sourced programmable interfaces

Seamless wired and wireless access

Programmable using software

Standards Based

Object Model APIs

TCO Savings

TCO Savings

Evolution of Enterprise CampusProgrammability & Automation

BRKARC-3300 48


Crimson Database – Enabling Programmability

Linux Kernel

App Hosting Environment

Crimson DB

M

D

T

Crimson Interface

Yang Models

Model Driven APIs

XML JSON

netconf Restconf

GPB

gRPC

Data Plane

Control Plane

APP1 APP2 APP3 APP4

Open Apps

BRKARC-3300 49


Configuration Management Today

jafrazie$ ssh [email protected]

[email protected]'s password:

cho# conf t

Enter configuration commands, one per line. End with CNTL/Z.

cho(config)#

Task

Oriented

Human

Friendly

Easy To

Replay

No

Special

Tools

Software

Unfriendly

Syntax/format

changes

No Common

Data Model

No Error

Reporting

BRKARC-3300 50

mailto:[email protected]


APIs & Network Configuration Protocols

Content

Operations

Messages

Transport

Protocol StackNETCONF is an IETF configuration management protocol in response to

SNMP/SMI shortcomings for managing configuration e.g.:

Lack of support for simple things like backup-and-restore of element

configuration

Separates Operational and Configuration Data management (show commands v/s config)

Defines capabilities for managing configuration data

Candidate buffer for validation of config before commit

Locking the config space

NETCONF

BRKARC-3300 51


NETCONF Protocol Layers

• Config / Operational DataContent

• <get>, <get-config>, etcOperations

• <rpc>,<rpc-reply>Messages

• SSHTransport

BRKARC-3300 52


APIs & Network Configuration Protocols

REST:

Stands for “Representational State Transfer” – Server maintains no session state

Architecture style for designing networked applications

Uses HTTP(S) to make calls between entities

RESTCONF

RESTCONF:

RESTful protocol to access YANG defined data

URIs reflect data hierarchy in a NETCONF data store

Data encoded with either XML or JSON. XML has structure according to YANG by XML-

YANG and JSON by JSON-YANG.

Allows use of familiar HTTP tools and programming libraries

BRKARC-3300 53


System

Physical

eth1/1, eth1/2…

BGP

BGP router ID, peers…

ARP

ARP entries

VRF

VRF instances

Object Models

Configuration & State are stored in Objects

Objects are structured in a hierarchy

Objects are modelled using YANG

BRKARC-3300 54


Object Models

What is YANG?

• A data model explicitly and precisely determines the structure, syntax and semantics of the data that is externally visible

• YANG is a data modeling language defined in RFC 6020

• YANG modules are for NETCONF what MIBs are for SNMP

陽YANG – Yet Another Next Generation

Why YANG?

• In order for NETCONF to be useful as a network-wide protocol, it must have a common data model

• Simply wrapping CLI in XML is not enough as each vendor has its own CLI

• YANG provides the common data model necessary for to consume NETCONF data from any network device

• Each vendor must implement common YANG modules

BRKARC-3300 55


NETCONF and YANG in Context

NETCONFManager

NETCONF

Yang

Models

YANG ModelsYANG Models

YANG Models

YANG Models

ManagementApplications

BRKARC-3300 56

Stackwise Virtual


Cisco Stackwise Virtual

L2/L3Dist-1 Dist-2VSLSW-1 SW-2

Phase 1 - Aggregation

Unified Control and

Management plane

Simplified L2/L3

network designs

Inherits all proven VSS

architectural benefits

High-performance 10G

Aggregation block

Non-oversubscribe :

o 96 x 10G Ports

o 8 x 40G Ports

Fully Distributed

Forwarding

Non-stop business

communication with

Cisco NSF/SSO

Proven 1+1 HA

architecture

Next-gen In-service

Software upgrade ready

Etherchannel – up to 8p

Flexible design on all

next-gen UADP

based systems

Elastic topology

design – Hub/spoke,

Ring, Chain

Simplification across

multiple network

layers

Based on next-gen OS

– IOS XE Denali

Rich IOS feature sets

– L2/L3, Routing,

Multicast, QoS, etc.

ACTIVE HOT-STANDBY

SW-1

WS-C3850-48XS | 96 x 10 Gigabit Ethernet | 8 x 40 Gigabit Ethernet

Simple Scale Resilient Flexible Advance

Distributed stacking will support 16.1 feature parity during FCS. Please check release notes for compete details.BRKARC-3300 58


Cisco Stackwise VirtualPhase 1 – Aggregation

Switch 1

Switch 1# configure terminal

Switch 1(config)# distributed-stack

Switch 1(config-distr-stack)# domain 1

Switch 1(config-distr-stack)# exit

Switch-1(config)# interface

TenGigabitEthernet1/0/2

Switch-1(config-if)# distributed-stack link 1

Switch-1(config-if)# exit

<save the config and reload>

Switch 2

Switch 2# configure terminal

Switch 2(config)# distributed-stack

Switch 2(config-distr-stack)# domain 1

Switch 2(config-distr-stack)# exit

Switch-2(config)# interface

TenGigabitEthernet1/0/2

Switch-2(config-if)# distributed-stack link 2

Switch-2(config-if)# exit

<save the config and reload>

VSLSW-1 SW-2

ACTIVE HOT-STANDBY

Sample Config – Subject to change

BRKARC-3300 59


Cisco Stackwise Virtual Show commands

Switch#show distributed-stack

Distributed Stack Configuration:

--------------------------------

Mode: Aggregation

Domain Number: 5

Switch Distributed Stack Link Ports

------ ---------------------- ------

1 1 FortyGigabitEthernet1/1/1

FortyGigabitEthernet1/1/3

2 1 FortyGigabitEthernet2/1/1

FortyGigabitEthernet2/1/3

Switch#show distributed-stack bandwidth

Switch Bandwidth

------ ---------

1 80

2 80

BRKARC-3300 60


Cisco Stackwise Virtual Show commands

Switch>show switch

Switch/Stack Mac Address : b07d.479e.7500 - Local Mac Address

Mac persistency wait time: Indefinite

H/W Current

Switch# Role Mac Address Priority Version State

------------------------------------------------------------

*1 Active b07d.479e.7500 1 V01 Ready

2 Standby f0b2.e514.6000 1 V01 Ready

BRKARC-3300 61


Cisco Stackwise Virtual

L2/L3Dist-1 VSLSW-1 SW-2

Dual Active Detection using Fast Hello

ACTIVE HOT-STANDBY

VSLP VSLP

• Special hello messages over backup Ethernet• Helps integrate non-Cisco switches

Standby Switch detects complete VSL failure and assumes Active Switch role

Active Chassis continues to function leading to Dual Active situation and traffic black-hole

Dual Active Detection identifies this and prevents this from happening

Sub-Sec

Detection

BRKARC-3300 62

Operational Effciency


Advanced ServiceabilityDelay in troubleshooting results in service interruption and loss of productivity

Traces

Path

Quickly

Administrator

Where are the

voice calls getting

dropped?

Cisco Support

Try turning on traces for

Process 1, Process 2 …

Radioactive Tracing turns on Conditional

Debugs across ProcessesAlways on Binary Tracing allows Faster

Troubleshooting

BRKARC-3300 64


Object/Event Tracing

Conditional

Debugging is based

on IP* or MAC

generates a UUID

Filtering Logs with

UUID reveals only

relevant debug

messages

Polaris#debug platform condition ?

both Simultaneous ingress and egress debug

egress Egress only debug

feature For a specific feature

ingress Ingress only debug

interface Set interface for conditional debug

ipv4 Debug IPv4 conditions

ipv6 Debug IPv6 conditions

mac Debug MAC conditions

mpls Debug MPLS conditions

start Start conditional debug

stop Stop conditional debug

Polaris#debug platform condition

BRKARC-3300 65


3-4mins. 3-4mins.

Day 0: 3850 Wired & W’less Configuration(Before IOS-XE 16.1)

Run Express Setup to

configure mgmt. Port

Factory fresh Install - Day0

Wired WebUI via mgmt. port,

configure VLANs & Interfaces

Basic & advanced

features via CLI

15-20mins.

Based on level of expertise

* Configuration time excludes switch/WLC boot time

5 mins.

Average config time: 35min.BEFORE

5 mins.

W’less WebUI –

Guest & Corp. SSID

10 mins.

Cisco Internal Only

BRKARC-3300 66


Day 0: 3850 Wired & W’less Configurationwith IOS XE 16.1

Factory fresh install - Day0 using WebUI

* Configuration time excludes switch/WLC boot time

Config time: 15min.AFTER

3-4mins. 3-4mins.15 minutes

Wired and W’less Day0 config: Site profiles for Cisco best practice config, enable global & port level config,

Corporate and Guest SSID

Single Wizard for Wired & W’less

Cisco Internal Only

BRKARC-3300 67


Day 1: Monitoring and Advanced Configuration

Monitoring

• Customizable Dashboard – display user preferred

data

• Easier Navigation - 3 step configuration to

monitoring, Simplified Menu structure

• Task Pinning - Maintain user-defined task list

(Admin’s top 10 activities)

• Search toolbar – Search clients, AP, users, mac,

etc.

• Ask Cisco – Users can make feature requests

directly to Product teams

User-Experience

• Use-case based workflows (not feature

enablement)

• Better response time – enhanced backend/frontend

Cisco Internal Only

BRKARC-3300 68

WebUI Demo

Wrap up & Summary


• Application Visibility –

Config & Monitoring

• Device Dashboard

• Device Onboarding

Simplified Device Management

Patch Critical &

Security Fixes

• Sub-Package Upgrade

• Security & Kernel Patches

• Match Condition

• Logging across features

• Collate Logs

Faster Troubleshooting

Advanced OS – Consistent Customer Experience

BRKARC-3300 71


2HCY2014 1HCY2015 2HCY2015 1HCY2016 2HCY2016

3.7.0 3.7.1

3.6.13.6.3

3.6.2

3.7.2 3.7.3

XE 3.7.0/15.3(1)E

XE 3.6.0E/15.2(2)E

16.3

C3650

C3850

3.6.2/3.7.2 Feature Parity

3.7.3 Feature

Parity

C3650MGig,

C365012”,3850-48XS

RadarRadarShipping

IOS-XE 16.x

3.14 3.163.15

Routing XE 3.x/15.y

3.17

ASK1K, ISR 4k, CSR

16.1

EM SM

3.17 Feature Parity

Migration Strategy

16.2 16.4

BRKARC-3300 72


Steps to Upgrade

stack9#copy tftp://172.20.249.254/polaris/SIT_bld0928_emp3.bin flash:cat3k_caa-

universalk9.SSA.16.1.0.EFT3-1.bin

Destination filename [cat3k_caa-universalk9.SSA.16.1.0.EFT3-1.bin]?

Accessing tftp://172.20.249.254/polaris/SIT_bld0928_emp3.bin...

Loading polaris/SIT_bld0928_emp3.bin from 172.20.249.254 (via GigabitEthernet0/0):

!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

[OK - 453999188 bytes]

453999188 bytes copied in 125.140 secs (3627930 bytes/sec)

stack9#

stack9#dir flash:*.bin

Directory of flash:/*.bin

30978 -rw- 453999188 Oct 5 2015 14:39:34 -07:00 cat3k_caa-universalk9.SSA.16.1.0.EFT3-

1.bin

1621966848 bytes total (774270976 bytes free)

stack9#

stack9#software install file flash:cat3k_caa-universalk9.SSA.16.1.0.EFT3-1.bin new force

Preparing install operation ...

[1]: Copying software from active switch 1 to switches 2,3,4

[1]: Finished copying software to switches 2,3,4

[1 2 3 4]: Starting install operation

…

…

1.Copy Image to flash:

2.‘Software Install’ Command with new and forceoptions

3.Reload

BRKARC-3300 73


IOS-XE Denali 16.1 & 16.2 available on cisco.com

A 3rd Party Performance & Scalability Report is available

BRKARC-3300 74


Download IOS-XE 16.x from Cisco.com

ASR1000 and ISR4K, CSR Catalyst 3850/3650

BRKARC-3300 75


Complete Your Online Session Evaluation

Don’t forget: Cisco Live sessions will be available for viewing on-demand after the event at CiscoLive.com/Online

• Give us your feedback to be entered into a Daily Survey Drawing. A daily winner will receive a $750 Amazon gift card.

• Complete your session surveys through the Cisco Live mobile app or from the Session Catalog on CiscoLive.com/us.

BRKARC-3300 76

CiscoLive.com/Online

http://ciscolive.com/Online

http://ciscolive.com/Online

http://ciscolive.com/us

http://ciscolive.com/us


Continue Your Education

• Demos in the Cisco campus

• Walk-in Self-Paced Labs

• Lunch & Learn

• Meet the Engineer 1:1 meetings

• Related sessions

BRKARC-3300 77

Thank you

ios xe : enabling the digital network...

Documents