Cisco Intelligent Traffic Director (ITD) is an innovative solution to bridge the performance gap between a multi-terabit switch and gigabit servers and appliances. It is a hardware based multi-terabit layer 4 load-balancing, traffic steering and clustering solution on the Nexus 5k/6k/7k/9k series of switches.
It allows customers to deploy servers and appliances from any vendor with no network or topology changes. With a few simple configuration steps on a Cisco Nexus switch, customers can create an appliance or server cluster and deploy multiple devices to scale service capacity with ease. The servers or appliances do not have to be directly connected to the Cisco Nexus switch.
ITD won the Best of Interop 2015 in Data Center Category.
With our patent pending innovative algorithms, ITD (Intelligent Traffic Director) supports IP-stickiness, resiliency, consistent hash, exclude access-list, NAT (EFT), VIP, health monitoring, sophisticated failure handling policies, N+M redundancy, IPv4, IPv6, VRF, weighted load-balancing, bi-directional flow-coherency, and IPSLA probes including DNS. There is no service module or external appliance needed. ITD provides order of magnitude CAPEX and OPEX savings for the customers. ITD is much superior than legacy solutions like PBR, WCCP, ECMP, port-channel, layer-4 load-balancer appliances.
ITD provides :
- Hardware based multi-terabit/s L3/L4 load-balancing at wire-speed.
- Zero latency load-balancing.
- CAPEX savings : No service module or external L3/L4 load-balancer needed. Every Nexus port can be used as load-balancer.
- Redirect line-rate traffic to any devices, for example web cache engines, Web Accelerator Engines (WAE), video-caches, etc.
- Capability to create clusters of devices, for example, Firewalls, Intrusion Prevention System (IPS), or Web Application Firewall (WAF), Hadoop cluster
- Resilient (like resilient ECMP), Consistent hash
- VIP based L4 load-balancing
- NAT (available for EFT/PoC). Allows non-DSR deployments.
- Weighted load-balancing
- Load-balances to large number of devices/servers
- ACL along with redirection and load balancing simultaneously.
- Bi-directional flow-coherency. Traffic from A–>B and B–>A goes to same node.
- Order of magnitude OPEX savings : reduction in configuration, and ease of deployment
- Order of magnitude CAPEX savings : Wiring, Power, Rackspace and Cost savings
- The servers/appliances don’t have to be directly connected to Nexus switch
- Monitoring the health of servers/appliances.
- N + M redundancy.
- Automatic failure handling of servers/appliances.
- VRF support, vPC support, VDC support
- Supported on all linecards of Nexus 9k/7k/6k/5k series.
- Supports both IPv4 and IPv6
- Cisco Prime DCNM Support
- exclude access-list
- No certification, integration, or qualification needed between the devices and the Cisco NX-OS switch.
- The feature does not add any load to the supervisor CPU.
- ITD uses orders of magnitude less hardware TCAM resources than WCCP.
- Handles unlimited number of flows.
- Load-balance traffic to 256 servers of 10Gbps each.
- Load-balance to cluster of Firewalls. ITD is much superior than PBR.
- Scale IPS, IDS and WAF by load-balancing to standalone devices.
- Scale the NFV solution by load-balancing to low cost VM/container based NFV.
- Scale the WAAS / WAE solution.
- Scale the VDS-TC (video-caching) solution.
- Scale the Layer-7 load-balancer, by distributing traffic to L7 LBs.
- ECMP/Port-channel cause re-hashing of flows. ITD is resilient, and doesn’t cause re-hashing on node add/delete/failure.
Documentation, slides, videos:
Email Query or feedback:firstname.lastname@example.org
Please note that ITD is not a replacement for Layer-7 load-balancer (URL, cookies, SSL, etc). Please email: email@example.com for further questions.
Connect on twitter: @samar4
Tags: #BestofInterop, #CiscoITD, #CiscoLive2015, #CLUS, ACE, ACI, ASA, ASA 1000V Cloud Firewall, best of interop, Best of Interop 2015, Best of Interop Finalist, Big Data, cache engines, Cisco, Cisco Nexus, Cisco Nexus 5600, Cisco Nexus 7000, Cisco Nexus 9000, Cisco Nexus Switches, Cisco Prime NAM, Cisco WAAS, ciscolive, citrix, cloud, Cloud Computing, container, data center, Data Center container, F5, FirePOWER, Imperva, Imperva SecureSphere WAF, innovation, interop, IPS, ITD, load balancer, Load Balancing, nexus, Nexus 7000, NFV, SDN, security, server load balancer, Service Provider, Sourcefire, video, Web Application Firewall
The Cisco® Remote Integrated Services Engine (RISE) allows both physical and virtual external service appliances to be attached to the Cisco Nexus® 7000 Series Switches and gain the same benefits as if the appliances were directly connected to the switch backplane like a dedicated service module. Cisco RISE provides a bidirectional control plane for tightly coupling network services to data center switching. Cisco RISE establishes a communication path between the network data plane and the service appliance, simplifying deployment and optimizing data paths with better traffic visibility in the data center. RISE is supported Cisco Prime NAM, Citrix NetScaler 1000v, Citrix NetScaler VPX, Citrix NetScaler MPX, Citrix NetScaler SDX etc.
Interested in knowing more about Cisco® RISE . The engineering team will showcase demos of some of the innovative features being designed for the Nexus 2K to 7K platforms. These are 15-30min Software Demos performed by our technical leaders. Please stop by our booth or visit the Nexus Data Center Whisper suites to watch the live demo and get some free goodies. Email questions to: firstname.lastname@example.org
Tags: cisco live, cisco prime, Cisco Prime NAM, citrix, Citrix NetScaler 1000V, Citrix NetScaler VPX, CLIVE, milan, NetScaler, Remote integrated Service Engine, RISE, whisper suite sessions
Cisco RISE can be used to tightly integrate the Cisco Nexus 7000 series switches with the Cisco Prime NAM to provide VDC awareness and SPAN traffic across multiple VDCs without burning slots on the switch. RISE overcomes the limitation of applying SPAN configuration only in the VDC to which the management cable is attached by intelligently managing the movement of NAM data ports and SPAN configuration to other VDCs as needed. The integration includes the following main features:
- NAM appliance acts as a module on Nexus switches
- One NAM appliance can receive traffic from multiple Nexus VDCs without re-cabling
- One NAM appliance can collect interface statistics for multiple VDCs
- Dynamic vdc-aware SPAN configuration on Nexus switches using NAM GUI
- Up to 4 NAM ports can be automatically assigned to Nexus VDCs using NAM GUI
- Graph of per-interface ingress and egress statistics for multiple VDCs
- Auto-discovery and bootstrap of NAM appliance from Nexus switch
- Health monitoring of NAM appliance
- Visibility to multiple VDCs from one NAM appliance with ongoing VDC configuration updates
- Configurable timer intervals and VDC list for interface statistics collection
- User-friendly error handling for SPAN creation/deletion/modification
- Order of magnitude OPEX and CAPEX savings: reduction in configuration, simplified provisioning and data-path optimization
Figure 1. RISE Physical and logical topology
Cisco RISE supports attachment to the NAM appliance in the following modes:
- Direct Attach mode with single NAM: The appliance has a management link that is directly attached to the Nexus switch. Up to 4 data links on the NAM can be attached to one or more VDCs on the Nexus switch to send SPAN traffic (Figure 2).
Figure 2. Direct Attach Mode with single NAM
Direct Attach modes with multiple NAMs: The appliance has a management link that is directly attached to the Nexus switch. Up to 4 data links on each NAM can be attached to one or more VDCs on the Nexus switch to send SPAN traffic (Figure 3).
Figure 3: Direct Attach mode with multiple NAMs
Indirect Attach modes with multiple NAMs: The appliance has a management link that is attached via an L2 network to the Nexus switch. Up to 4 data links on each NAM can be attached to one or more VDCs on the Nexus switch to send SPAN traffic (Figure 4).
Cisco RISE with NAM provides the following key features that allow the solution to provide traffic and performance analysis across all the VDCs on the Nexus switch without changing the wiring connections.
Dynamic VDC-aware SPAN Configuration
- Configure SPAN sessions for up to 4 NAM dataports from NAM GUI.
- Create, edit, delete SPAN sessions, select destination ports and source ports for the SPAN sessions.
- SPAN sessions can be configured in other VDCs by selecting VDC and data ports from NAM GUI. Dataport will be automatically moved to required VDC.
- The options of SPAN configuration available to N7K CLI users are available via NAM GUI using RISE.
- Provides visibility to all VDCs from one NAM.
Multi-VDC Interface Statistics
- Retrieve interface statistics of all VDCs on N7K via RISE
- Set short term and long term polling intervals for getting interface statistics
- Set the interested list of VDCs from which statistics needs to be retrieved
- Statistics can be viewed on per interface basis as a graph or data points
- Enhanced application availability via simplified provisioning and efficient manageability.
- Data path optimization: ADC off-load, low latency policy engine.
- Dynamic VDC-aware SPAN configuration: Create SPAN sessions on any VDC
- Multi-VDC awareness: Deliver traffic and performance reports in multiple VDCs
- Cisco RISE provides significant savings in capital expenditures (CapEx) and operating expenses (OpEx) through simplified provisioning and data-plane optimizations:
- Dramatic OpEx savings: Reduction in configuration time and ease of deployment
- Dramatic CapEx savings: Reduced wiring, power, and rack-space needs
- The solution provides enhanced business resiliency and stickiness to Cisco products.
Cisco RISE is supported in Cisco NX-OS Software Release 7.1(0) and requires the Enhanced Layer 2 Package license. Please contact email@example.com if you are interest in an EFT.
RISE with Prime NAM White Paper
Tags: Cisco Prime NAM, Remote Integrated Services Engine
Data Centers are becoming increasingly smart, intelligent and elastic. With the advancement in cloud and virtualization technologies, customers demand dynamic workload management, efficient and optimal use of their resources. In addition the configuration and administration of Data Center solutions is complex and is going to become increasingly so.
With these requirements and architectures in mind we have a industry first solution called Remote Integrated Service Engine (RISE). RISE is a technology that simplifies provisioning, out of box management of service appliances like load balancers, firewalls, network analysis modules. It makes data center and campus networks dynamic, flexible, easy to configure and maintain.
RISE can dynamically provision network resources for any type of service appliance (physical and virtual form factors). External appliances can now operate as integrated service modules with Nexus Series of switches without burning a slot in a switch . This technology provides robust application delivery capabilities that accelerate the application performance manifold.
RISE is supported on all Nexus Series switches with services like Citrix NetScaler MPX, VPX, SDX and Cisco Prime NAM with many more in the pipeline.
Advantages & Features
- Simplified Out-of-Box experience : reduces the administrator’s manual configuration steps from 30 to 8 steps !!
- Supported on Citrix NetScaler MPX, SDX, VPX, and Nexus 1KV with VPX
- Supported on Cisco Prime Network Analyzer Module
- Automatic Policy Based Routing – Eliminates need for SNAT or Manual PBR
- Direct and Indirect Attach mode integration
- Show module for RISE
- Attach module for RISE
- Auto Attach – Zero touch configuration of RISE
- Health Monitoring of appliance
- Appliance HA and VPC supported
- Nexus 5K/6K support (EFT available)
- IPV6 support (EFT available)
- DCNM support
- Order of magnitude OPEX savings: reduction in configuration, and ease of deployment
- Order of magnitude CAPEX savings: Wiring, Power Rackspace and Cost savings
For more information, schedule an EFT or POC Contact us at firstname.lastname@example.org
RISE press release on Wall Street Journal : http://online.wsj.com/article/PR-CO-20140408-905573.html
RISE At A Glance white paper: http://www.cisco.com/c/dam/en/us/products/collateral/switches/nexus-7000-series-switches/at-a-glance-c45-731306.pdf
RISE Video at Interop: https://www.youtube.com/watch?v=1HQkew4EE2g
Cisco RISE page: www.cisco.com/go/rise
Gartner blog on RISE: “Cisco and Citrix RISE to the Occasion”: http://blogs.gartner.com/andrew-lerner/2014/03/31/cisco-and-citrix-rise-to-the-adc-occasion/
Tags: 7000, Cisco, Cisco Nexus Switches, Cisco Prime NAM, Citrix NetScaler, Citrix NetScaler VPX, cloud, data center, innovation, nexus, Nexus 7000, partner, RISE, virtualization
Data traffic has grown dramatically in the recent years, leading to increased deployment of network service appliances and servers in enterprise, data center, and cloud environments. To address the corresponding business needs, network switch and router architecture has evolved to support multi-terabit capacity. However, service appliance and server capacity remained limited to a few gigabits, far below switch capacity.
Cisco Intelligent Traffic Director (ITD) is an innovative solution to bridge the performance gap between a multi-terabit switch and gigabit servers and appliances. It is an hardware based multi-terabit layer 4 load-balancing, traffic steering and clustering solution on the Nexus 7000 and 7700 series of switches.
Read More »
Tags: ACE, ASA, ASA 1000V Cloud Firewall, cache engines, Cisco Prime NAM, Cisco WAAS, citrix, F5, Imperva, Imperva SecureSphere WAF, IPS, ITD, load balancer, Load Balancing, server load balancer, Web Application Firewall