Escolar Documentos
Profissional Documentos
Cultura Documentos
Positioning
Scott Hodgdon
Senior Technical Marketing Engineer
Enterprise Networking Group
Session Objectives
At the end of the session, the participants will be able to:
Understand the characteristics of the various enterprise deployment models
Unified Access
Traditional Access
Converged Access
Instant Access
Understand which products are the lead platform for each deployment model
Understand individual product positioning
Cisco Public
Agenda
Session Objectives
Data Center
Services
Block
Multilayer
Routed
VSS
Converged Access
Instant Access
Summary
Si
Si
Si
Si
Si
Si
Si
Si
Si
Si
Deployment
Models
2013 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Campus Optimized
DC Optimized
Video Intelligence
Mobility/
BYOD
DC Virtualization
OTV, LISP, DFA, VXLAN*
Workload
Mobility
Multi-hop FCoE
WiSM2, LISP
Security
10G/
Virtualization
Cisco Public
Energy
Efficiency
VM
One Policy
Cisco ISE
Distributed Wireless
VSS
Traditional Access
VSS
Si
Distributed Wired
Si
Distributed Wired
Si
Centralized Wired IA
Centralized Wireless
Instant Access
2013 Cisco and/or its affiliates. All rights reserved.
Si
MA
MA
MA
MA
MA
MA
MA
MA
MA
MA
MA
MA
MA
MA
MA
MA
MA
MA
Converged Access
Cisco Public
One
Management
Unified Access
What does it really mean?
Cisco Prime
Infrastructure
Identity
Services Engine
LEAD Platforms
Cisco
Catalyst
6800/VSS
WISM2/
WLC
WLC
Agenda
Session Objectives
Data Center
Services
Block
Multilayer
Routed
VSS
Converged Access
Instant Access
Summary
Si
Si
Si
Si
Si
Si
Si
Si
Si
Si
Deployment
Models
2013 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Cisco TrustSec
Secure Group Access Simplifies Security Enforcement
Email Server
Financial
Servers
Patient Records
IT
Allow All
SQL
SQL
Finance
IMAP
Web
No Access
Doctors
IMAP
No Access
File Share
IT
3.1.1.1
Finance
2.1.1.1
Doctor
1.1.1.1
2013 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Cisco TrustSec
Security Group Tags (SGTs) in the Access
ISE Maintains a Centralized View of Device Inventory and Policy Assignment
SGACL Enforces Policy
at Access, Campus
Edge, or Data Center
DeviceAware
1
Patient
Record
Internet
Facility
Doctor
Permit
Permit
Permit
Patient
Deny
Permit
Deny
Voice
Deny
ACL_v
Deny
SG Tag Imposed to
Incoming Traffic
1
2
CDP
LLDP
DHCP
MAC
IdentityAware
LocationAware
Corp PC
Doctor
Office
Doctor
Personal Laptop
Doctor
Office
Doctor
Personal Laptop
Patient
Hotspot
Patient
Smartphone
Admin
Office
Admin
IP Phone
N/A
Office
Voice
TelePresence
N/A
Conf. Room
Video
Secure
Group
Fine-grained access
control
Cisco Public
Cisco TrustSec
SGTs in the Backbone
SGACL Enforcement
SGT
SGT
SGT
SGT
Cisco
TrustSec Domain
Identity
Service
Engine
VLAN 110
VLAN 120
VLAN 130
Cisco Public
Tracking
IP SLA
Built-in Traffic
Simulator
Cisco CleanAir
Proxy (MSP)
Metadata
Flexible NetFlow
Device sensor
Secure group tagging
Quality of Service (QoS)
AVC in Wireless Controller
Mediastream
Monitoring/
Troubleshooting
Performance Monitor
Mediatrace
Flexible NetFlow
Wireshark / Mini-
Protocol Analyzer
Device sensor
VSL
Si
Expansion
High-speed 64Gbps
Bi-Directional Switching
Stack-Ring
Single Logical Unit To Manage
Nine Switches and 450 Ports
Management Architecture
Reduces VLANs/Subnets
9X Operational Simplicity
Forwarding Architecture
Single Network Per Layer
Deterministic Network
Operation With Non-Stop
Forwarding
Cisco Public
Optimized
Network
and Operation
Underutilize Network
Resource
Sub-Optimal Application and
Network Performance
Simplified
Operation
Network Performance
2013 Cisco and/or its affiliates. All rights reserved.
Distribution / Core
4500E
6500E
Mismatch IOS
Version During
Software Upgrade
VSL
eFSU
ISSU
Consistency
ISSU Provides Real-Time Single-Chassis
Software Upgrade. Reduces MTBF
Protects Network Services, Capacity and
Availability for Wired and WLAN End-Points
Cisco Public
Access Switches
Smart Install
Auto Smartports
Zero-Touch Deployments
2013 Cisco
its affiliates.
All rights reserved.
and/or
User
customizable
Cisco Public
Automate responses to
commonly occurring events
Agenda
Session Objectives
Data Center
Services
Block
Multilayer
Routed
VSS
Si
Converged Access
Instant Access
Si
Si
Si
Si
Si
Summary
Si
Si
Si
Si
Deployment
Models
2013 Cisco and/or its affiliates. All rights reserved.
Cisco Public
17
Considerations
Wireless LAN
Controller
Distribution
Cisco Prime/LMS
L2/L3 Protocol Tuning Required
ISE
Access
Deployment Flexibility
CAPWAP
Tunnel
Cisco Public
Challenges
Cisco Public
Backbone
Core
Wireless LAN
Controller
Distribution
Higher Resiliency
with Quad Sup VSS
Fewer Routing Peers
ISE
Access
CPE
CAPWAP
Tunnel
Cisco Public
Challenges
Cisco Public
Backbone
Core
Wireless LAN
Controller
Cisco Prime/LMS
Distribution
Access
CPE
CAPWAP
Tunnel
Cisco Public
Challenges
No FHRP required
No trunking required
Permits VLAN ID reuse
Cisco Public
Catalyst 6807-XL
6880-X
Catalyst 6500-E
3850
ACCESS
FIXED
Cisco Public
MODULAR
Updated as per Oct2013
Agenda
Session Objectives
Data Center
Services
Block
Multilayer
Routed
VSS
Si
Converged Access
Instant Access
Si
Si
Si
Si
Si
Summary
Si
Si
Si
Si
Deployment
Models
2013 Cisco and/or its affiliates. All rights reserved.
Cisco Public
25
Converged Access
Considerations
Backbone
Core
MC/MO
WiSM2,5508,8510*,3850,
3650*, 5760
Cisco Prime
Distribution
ISE
Access
MA
Challenges
Multiple management and
troubleshooting points for Wireless
Prime and WEBGUI lacking in
functionality
Wired Migration blockers between
between 3850 and 3750x
Cisco Public
*Roadmap
3.3
(Today / October CY13)
3.6
(Q2 CY14)
Wireshark
Medianet (MSI/MSP)
PI 2.1
Security
Device Sensor
AVC
Management
Certification
IPv6, USGv6
Cisco Public
3.3 MR
(Q4 CY13)
3.6
(Q2 CY14)
BYOD Onboarding
AP Support
Wireless
Features
WEBGUI
PI
Cisco Public
AIREOS FLEXCONNECT
Intranet
Intranet
AIREOS
CENTRALIZED
IOS
CENTRALIZED
Today:
Sell AireOS with 802.11ac
Sell the 3850/3650/4K(SUP8-E) as future-proof switches
Converged Access deployment and Prime Infrastructure matures in FY14:
Branch and Small Campus ready in (Today) December with 802.11ac
Mixed AireOS & IOS deployments and Large campus ready in May 2014
2013 Cisco and/or its affiliates. All rights reserved.
Cisco Public
DEPOYABLE
TODAY
ARIAN
DMZ
Prime
ISE
Multilayer or
Routed
Access
50 250
APs
WAN
3850/3650
Employee
31
Guest
BRANCH
Cisco Public
Cisco Public
Catalyst 6807-XL
6880-X
Catalyst 6500-E
3850
ACCESS
FIXED
Cisco Public
MODULAR
Agenda
Session Objectives
Data Center
Services
Block
Multilayer
Routed
VSS
Si
Converged Access
Instant Access
Si
Si
Si
Si
Si
Summary
Si
Si
Si
Si
Deployment
Models
2013 Cisco and/or its affiliates. All rights reserved.
Cisco Public
34
Instant Access
ISE
Cisco Prime
Managed Devices = 1
20+
Considerations
Satellite device capable of Stacking, POE+
Single Point of Management, Configuration
and Troubleshooting
Simplified Network design for
VLANs and port channels
Agile Infrastructure to add new features
uniformly across Access Layer
A Single Image to deploy and manage
across Distribution Block
REDUCED TCO
Cisco Public
Challenges
Cisco Public
6880-X
Catalyst 6807-XL
Catalyst 6500-E
Not Applicable
Catalyst 6800ia
ACCESS
FIXED
Cisco Public
MODULAR
Agenda
Session Objectives
Data Center
Services
Block
Multilayer
Routed
VSS
Si
Converged Access
Instant Access
Si
Si
Si
Si
Si
Summary
Si
Si
Si
Si
Deployment
Models
2013 Cisco and/or its affiliates. All rights reserved.
Cisco Public
38
Cisco Public
Cisco Public
Customers who
Have a preference for the most common wired deployment model
Wants flexibility of centralized or distributed wireless model
Want the best possible Access Switch with 3850, 3650 & Sup8E (Advanced QoS,
Visibility, UPOE)
Want like-for-like replacements (3560 -> 3650, 3750 -> 3850, Sup7E -> Sup8E)
Have multi-vendor wired and wireless environment
Cisco Public
Deployment Mode
Cisco Public
Access Platforms