Cisco Blogs


Cisco Blog > Data Center

ITD Deployment with Transparent mode security devices

ITD (Intelligent Traffic Director) is getting a lot of interest about transparent (Layer 2) mode device support.

Here is a 10 minute video that shows step by step ITD deployment for Transparent mode security devices, such as Firewalls, IPS, IDS, Web application Firewalls (WAF), ASA, Cisco Sourcefire, etc:

ITD is a hardware based multi-Tbps Layer 4 load-balancing, traffic steering and clustering solution on Nexus 5k/6k/7k/9k series of switches. It supports IP-stickiness, resiliency, NAT (EFT), VIP, health monitoring, sophisticated failure handling policies, N+M redundancy, IPv4, IPv6, VRF, weighted load-balancing, bi-directional flow-coherency, and IPSLA probes including DNS. There is no service module or external appliance needed.

Solution Guide: ITD with Layer 2 Firewall / IPS / IDS

Here is more information about ITD: www.cisco.com/go/itd

Please send email to nxos-itd@cisco.com if you have any questions.

 

Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,

Open NX-OS featured on TechWiseTV

Only on TechWiseTV

Only on TechWiseTV

This is the first in a multi-part series where we cover ‘programmability’ for networking.  The idea is to fully review the programming options now available inside the Nexus switches, (3000, 9000).  This first episode covers new access with Linux tools, NX-API and more. Further shows will be diving into the details around Object Models and orchestration partners.

The primary point for any of these is to understand how Cisco Open NX-OS extensibility exposes greater programmability and automation capabilities.  It is fascinating and full of new learning opportunities.  It does not come without a few career questions of course…usually, something along the lines of: do network engineers need to become programmers now too?  

Two answers:  Yes.  It depends.

Networking knowledge and skill should not be undersold here.  Programming capabilities should be additive.  They are useful in just about any tech career and obviously affecting the networking space.  I think it’s foolish to ever quit learning but it does depend on your aspirations, your current level of satisfaction and perhaps how narrowly defined your skill set might be.

Full disclosure: I am not a programmer. I have been learning the fundamentals of python and a few others as I work on this series but I am not hire-able for this skill by any means. But the distinct feeling I get, and the feedback I hear from you guys: its not that hard.  You are probably well versed in scripting for various CLI operations…take it up a few notches and work on some of these ‘readable’ languages that will have similar syntax.  This will give you the ability to judge the appeal of what we are offering with ACI and other solutions much more credibly…and I guarantee you will find ways to get rid of redundant crap and stupid errors you may be fighting with yourself or your team.

JOIN US AT THE WORKSHOP

Live, interactive, never dull.

September 21, 2015

Programmable networks will forever change the way you manage infrastructure enabling you to dramatically accelerate configuration and deployment of your network, automate time consuming manual tasks, and allocate IT resources far more efficiently.  Are you ready for the revolution?  

Discover how to create a programmable network as we discuss and demonstrate the NX-API and NX-API REST (Object Model) in detail. Understand how Cisco Open NX-OS extensibility exposes greater programmability and automation capabilities that eliminate costly manual errors.

– You can sign up at the workshop tab when the date gets a bit closer, http://www.techwisetv.com

 

Nicolas Delecroix in the TechWiseTV Lab

Nicolas Delecroix in the TechWiseTV Lab

TechWiseTV 176: Open NX-OS: Programmability

Shownotes:

Two great experts on this episode.

Six Key Points: What OPEN means for NX-OS

Six Key Points: What OPEN means for NX-OS

Shane Corban shares Six Key Points: What OPEN means for NX-OS

Changes made across the software stack to address Extensibility, Openness, Programmability.

  1. Auto Deployment (Bootstrap and Provisioning)
    • Added support for PXE server, operationalize NX-OS software to match an existing server environment
  2. Extensibility – how we package software
    • We did not use to expose much beyond a bash shell
    • Now you can install native RPM’s, and third party applications running processes as they would on a Linux server
  3. Open Interfaces
    • We are now adding support to leverage Linux like tools for debugging, configuration and troubleshooting…manipulate those front panel ports as native Linux interfaces within our switch software stack.
  4. Application Integration (Adaptable SDK)
    • Published an SDK, a build environment that you can install on any Linux server, download the build agent, and put your source into that directory structure and build into an RPM for installation and run it natively.
    • Build your own custom automation apps, monitoring agents, and have them run natively on our platform
  5. Programmability Tool Choice
    • Sandbox
    • We have a native Python shell today that has a Native Cisco Library that you can utilize for automation
    • NX-API – the ability to embed CLI commands and structured data (JSON, XML) for execution on the switch via HTTP/HTTPS Interface to get back structured data back on show commands.
  6. Management Tools
    • Support for Chef and Puppet
    • Agents will be publicly available on the enterprise sites
    • Support for Open Stack, Neutron

NX-OS is now more modular, more open, more capable of third party integration providing a  wide variety of programmability choices ideal for Dev-Ops environments.  

Five case study examples

Five case study examples

Nicolas provides five case study examples. 

  1. Checking Software Version
  2. Using Python script with NXAPI and JSON to pull version numbers
  3. Python script to query multiple switches to check compliance against a specific version
  4. VLAN Provisioning
  5. Checking for proper VLAN provisioning

Special thanks behind the scenes to Rami Rammaha and Mark Jackson

_____

More Reading:

Cisco Nexus 9000 Programmability Guide

Matt Oswalt is a great writer. You should follow his blog: Keeping it Classless.   I enjoy his angles on things.  Read up on his blog entry: Evolution of Network Programmability, Nexus 9000 NX-API,NX-API Update.

Some Learning Basics:

What do you think still needs to be covered?  I would love any thoughts on how the rest of this series should be shaped.  Leave your comments below and just to make sure…tag me on twitter.  We are diving into Object Models (taping next week) and then some angle with the Orchestration Partners.   Case in point: Puppet Labs is making available today a native Puppet NX-OS agent and Cisco Puppet Module.

Let me know!

Robb

http:twitter.com/robbboyd

Tags: , , , , , , , , , , , ,

ITD: Learn how to deploy ITD in 10 minutes

ITD (Intelligent Traffic Director) is being deployed by a large number of customers, and it is saving them massive CAPEX and OPEX, while providing unprecedented scale and high availability.

Here is a 10 minute video that shows step by step ITD deployment.

 

ITD is shipping on Nexus 9k/7700/7k/6k/5k Series of switches. ITD won the Best of Interop 2015 in Data Center category.

Here is more information about ITD: www.cisco.com/go/itd

Please send email to nxos-itd@cisco.com if you have any questions.

 

 

Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,

ITD and RISE: New innovations at Cisco Live San Diego

ITD (Intelligent Traffic Director) and RISE (Remote Integrated Services Engine) have been helping Cisco partners and customers save massively on CAPEX and OPEX, while providing unprecedented scalability, high availability and ease and deployment. We had several events at Cisco Live San Diego 2015:

  • ITD and RISE Whisper suite meetings for Nexus 9k/7k/5k. For further discussions, please email to nxos-itd@cisco.com
  • A large number of people came to ITD Booth in the World of Solutions, to watch a demo.
  • Breakout sessions :
  • New innovation demo at the Hub:
    • ITD and Analytics Driven Green Networking : First prize winner in Hackathon 2015
  • ITD won the Best of Interop, 2015 in Data Center category. Read blog.
  • Nexus 7702 announcement : Nexus 7702 has a sweet spot in being a “services chassis” with RISE and ITD.
  • Nexus 5k/6k : RISE and ITD are now shipping: NX-OS 7.1.1N1(1)
  • Nexus 9k : ITD is now shipping: NX-OS 7.0(3)I1(2)

We hosted 1:1 customer meetings in whisper suites, during Cisco Live 2015 in San Diego. We had BU Executives, Product Managers, and Engineering Managers on  site to meet with customers. It was a unique opportunity for customers to engage directly with the Business Unit. For further discussions, please send email to nxos-itd@cisco.com.

Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,

ITD: Winner of the Best of Interop 2015

When the Best of Interop 2015 award winners were announced at the Mandalay Bay Convention Center in Las Vegas, the ITD team members couldn’t control their emotions. This team is well known to work in a startup-mode — comes up with new ideas, builds a prototype, demonstrates it to the executives and SEs, goes into execution mode, and delivers a world class solution.

As the leader of this team, I was asked by several media representatives for an interview. Here is an interview by Information Week news desk (watch full-screen for HD):

ITD (Intelligent Traffic Director) is now shipping on Nexus 9k/7k/5k series of switches.

Here is an informative blog on ITD.

 

Tags: , , , , , , , , , , , , , , , , , , , , , , ,