Cisco Blogs


Cisco Blog > Perspectives

Cisco Intelligent WAN (IWAN)

April 2, 2014 at 9:00 am PST

In the last three weeks, I have been to two Cisco Events. The first was in Munich (Halbergmoos), which was a dedicated IWAN Workshop in the Cisco Offices and the second was the Cisco Network Innovation Summit in Berlin. I was inspired about the technology and the possibilities of IWAN.

What the heck is IWAN?

IWAN is an abbreviation of Intelligent Wide Area Network. Cisco says it delivers an uncompromisable user experience over any connection. Now, you can benefit from the right-sized connections for your branch offices, while gaining operational simplicity with lower costs. So it bundles a set of features to form a solution. Cisco Intelligent WAN is based on the following components: Read More »

Tags: , ,

E-VPN and PBB-EVPN Take Data Center Interconnect to the Next Level

Tina-lamBy Tina Lam, Product Manager

MPLS based Layer 2 VPN has been around for over 10 years since the inception of IETF Pseuduowire Edge to Edge (PWE3) Working Group. Many drafts and standards have been added, since then, to address different applications and to improve scale and convergence in different topologies. L2VPN as a whole is widely deployed in both service providers and enterprises, from Ethernet services, to fixed and mobile convergence, to enterprise campus layer-2 transport.

Recently, one emerging driver that has been picking up a lot of momentum is to use L2VPN for Data Center Interconnect (DCI). Data centers are often situated in different locations, to be geo-redundant for the purpose of workload mobility and business continuity. At the same time the physical location of the data center has to be transparent to users and to applications. Hence the need for layer-2 connectivity between sites. While Ethernet over MPLS (EoMPLS) and Virtual Private LAN Service (VPLS) have been used for this purpose, DCI presents new requirements and challenges not fully addressed today.  To keep the data center always on, and to utilize all the resources and links as efficiently as possible, data centers need all-active redundancy and load balancing. The technology should be as simple as possible to provision and manage Read More »

Tags: , , , , , , , , ,

Securing the Internet of Everything: An Architectural View

As a follow up to my introductory blog on Securing the Internet of Everything, I would like to discuss further the security implications that will comprise proposed framework. As the applications of the IoT/M2M affect our daily lives, whether it is in the Industrial Control, Transportation, Smartgrid or Healthcare, it becomes imperative to ensure a secure IoT/M2M system. As the use of IP networks are employed, IoT/M2M applications have already become a target for attacks that will continue to grow in both quantity and sophistication. Both the scale and context of the IoT/M2M make it a compelling target for those who would do harm to companies, organizations, nations, and people.

The targets are abundant and cover many different industry segments. The potential impact spans from minor irritant to grave and significant damage and loss of life. The threats in this environment can be similarly categorized as those in the traditional IT environments. It’s useful to consider general platform architecture when discussing IoT security challenges. Below is the platform architecture that uses to frame IoT/M2M discussions.

While many existing security technologies and solutions can be leveraged across this architecture, perhaps especially across the Core and Data Center Cloud layers, there are unique challenges for the IoT. The nature of the endpoints and the sheer scale of aggregation in the data center require special attention.

The architecture is composed of four similar layers to those described in general network architectures. The first layer of the IoT/M2M architecture is comprised of Read More »

Tags: , , , , , , , , , , , ,

Evolution of Virtualized Routing

Hello, and welcome to my blog. As a new member of the Enterprise Networking’s Solutions Marketing team, I’ll be writing about connectivity to the cloud, Software Defined Networking (SDN) and virtualized routing. You can expect to learn details around Cisco’s architecture and product offerings in these topics. Further, based on your comments, I can go into as much detail as necessary.

First, a brief background. I moved to the Bay Area last November from Boston after almost 20 years in New England (in Boston), so I will be musing about culture shocks between the two coasts. I may also learn to like the Warriors and Niners, but I will always be a Celtics and Patriots fan. Read More »

Tags: , , , , , , , , ,

Segment Routing: Impact on Software Defined Networks

Segment routing (SR) is a concept that’s been working its way through the IETF standards process but is finally becoming ready for real world deployment. It’s a network technology that provides enhanced packet forwarding behavior while minimizing the need for maintaining awareness of mass volumes of network state. SR satisfies essential requirements for application-enabled routing in software defined networks, including the ability to provide strict network performance guarantees, efficient use of network resources and very high scalability for application-based transactions. Segment Routing relies on a small number of extensions to IS-IS and OSPF and can operate with an MPLS or an IPv6 data plane and integrates with the rich multi-service capabilities of MPLS such as L3VPN, VPWS, VPLS, E-VPN, etc.

With Read More »

Tags: , , , , , , , ,