vPath, a Cisco innovative technology developed within Cisco Nexus 1000V, has been shipping for more than 2 years, enabling customers to seamlessly create policy-based multi-tenant / multi-container Data Centers across multiple hypervisor environment. Increasingly, customers are implementing network services into their virtualization and cloud networks in order to meet regulatory, security and service levels. To this end we are seeing increased deployments of virtual firewalls, load balancing, routing, WAN optimization & monitoring tools. Cisco’s vPath technology allows customers to deploy these best-in-class network services seamlessly in their Data Center and Cloud deployments. So, what makes vPath so unique in this industry?
#1 -- vPath Powered Service Chaining at a tenant level: For customers to create multi-tenancy architecture today, they have to configure the different network services and manually “stitch” them together for every unique combination. While this method provides the goals for regulatory compliance, security and service levels it often increases application provision time, and does not easily support application mobility. Additionally most applications have to follow the same manually stitched network services.
With Cisco Nexus 1000V vPath technology, the customer’s Data Center becomes very agile by enabling policy based services chaining at the application or tenant level. Customers can create policies and select the L3-7 virtual services appropriate for the application at the time of VM or Tenant creation. These policies are then dynamically instantiated and fulfilled in the Nexus 1000V distributed virtual switch. If the particular application VM moves, the Nexus 1000V network policy moves with it and hence the service chain remains intact.
Figure 1: Policy based dynamic service chaining through vPath
#2 -- vPath enables Distributed Cloud Network Services: As noted in the picture above, vPath controls the packet flow through all Services that are chained for that particular policy. Once the first few packets of the flow is inspected by each Service node, vPath offers the capability to off load flow decisions of the particular Service to the local host such that the subsequent packets of the same flow are locally inspected at the host. Through this mechanism, vPath improves the performance of the particular service since the subsequent packets of the flow are no longer required to be inspected by the individual Service node and hence enabling distributed behavior of the particular service.
Figure 2: Distributed Cloud Network Services through vPath Fast Path Offload
#3 -- vPath offers Best-In-Class Cloud Network Services across multiple hypervisors: vPath enables the customers to use the best-in-class Cloud Network Services from Cisco such as Virtual Security Gateway, ASA 1000V & virtual WAAS, and best-in-class ecosystem partners such as Citrix NetScaler 1000V & Imperva Secure Sphere Web Application Firewall. This vPath enabled architecture will be supported across all major hypervisors such as VMware vSphere, Microsoft Hyper-V, KVM and Xen.
#4 -- vPath to become a standard based Network Services Header: In traditional fashion, Cisco creates innovative solutions to help solve our customer’s IT challenges. Once proven, we offer these technologies such as VXLAN through standards bodies to allow greater interoperability and choice. Recently, vPath header format has been submitted to the IETF as a Network Service Header draft. In the future customers will be able to leverage dynamic policy based services chaining including both virtual and hardware based solutions that support Network Services Header!
To learn more about Cisco Nexus 1000V and Cloud Network Services, please visit our community site. Create a Cloud Lab account and checkout out the vPath in action today!
Lastly, if you are at VMworld, make a point to attend our sessions PHC6409 and NET6380, or stop by at the Cisco booth.
Tags: Cloud Network Services, data center, Nexus1000V, SDN, service chaining, virtualization, vPath
The Cisco IT network services team views network programmability—the broader category that includes SDN, or Software-Defined Networking—as one of our top priorities.
To clarify terms, SDN is a network architecture that decouples the control plane (that is, the building of a routing table) from the data plane, moving the control plane to a software-based centralized controller. In Cisco IT, we see the real value of SDN as enabling network programmability. Network programmability requires two capabilities: harvesting information from network devices, and automatically pushing out new configurations in response to dynamic network conditions or service-provisioning requests.
We’re in the early stages of weaving network programmability into Cisco IT programs. So far, we’ve identified five internal use cases. Read More »
Tags: Borderless Networks, network, policy management, SDN, WAN
Cisco celebrated OpenStack’s 3rd birthday recently by releasing the Cisco OpenStack Installer for Grizzly. This blog post has more details.
The OpenStack foundation organizes a four-day OpenStack Summit every six months for contributors, enterprise users, service providers, application developers and ecosystem members. It facilitates the community to gather, discuss and present on several different streams ranging from keynote presentations and general sessions to workshops and developer sessions for planning the next OpenStack release. The next OpenStack Summit will be held in Hong Kong from November 5th to the 8th 2013 at the Asia World-Expo. The number of attendees for the Summit is expected to be around 5000 people. More information on the Summit and how you can register to attend is available here.
Speaking proposals are submitted by the community from anyone with an idea or topic they would like to present. The proposals are voted on by the community to secure a slot in session track. Submissions for the OpenStack summit general sessions closed on July 31st 2013 and are now available for vote.
As compared to the Portland summit that had 250 proposal submissions [you can view session videos from OpenStack Portland Summit here, the Hong Kong summit has more than 600 submissions. There are a lot of great proposals but only the best and most popular will make it to the Summit. The approved sessions typically get recorded and are available for viewing online as well.
Cisco’s OpenStack team submitted several proposals that highlight our involvement and contributions to OpenStack. The table below lists the proposals along with a link to the abstract and speaker details.
Community voting is open now and if you are interested in any (or all) of the above proposals, please vote for them here. The voting is open until Sunday, August 25th 2013. Please note that you do need to be an OpenStack Community member in order to vote; If you are not currently a member, you can easily register for membership via the OpenStack website.
Stay tuned for more updates, as we get closer to the OpenStack summit.
Tags: Cisco, cloud, data center, Hong Kong, icehouse, networking, Neutron, open source, opendaylight, OpenStack, openstack installer, Puppet, SDN
Today marks an important milestone for one of our most strategic data center products and the foundation of virtual networking portfolio. Five years ago, the Nexus 1000V virtual switch was the pioneer in the virtual networking market with its launch at VMworld in 2008. Since then it has been adopted by over 8000 customers and continues to grow on other platforms, such as Microsoft Hyper-V, and soon Linux/KVM. Today, Nexus 1000V represents the largest software controller-based networking solution (aka, Software Defined Networking or SDN) in the industry.
We continue to add hundreds of paying customers every quarter, in spite of offering a fully featured no-cost essential edition. The interest in the virtual networking space also continues to increase ever since the SDN trend started. There are also plenty of FUD or rumors being spread about the Cisco’s virtual networking solution. On this 5th year anniversary, let’s do some myth busting focused on Nexus 1000V based solutions. Read More »
Tags: ACI, application centric infrastructure, Cisco DFA, network virtualization, Nexus1000V, NVGRE, OpenStack, SDN, ucs director, VXLAN, VXLAN-VLAN Gateway
“I confess that in 1901, I said to my brother Orville that man would not fly for fifty years . . . Ever since, I have distrusted myself and avoided all predictions.” — Wilbur Wright, 1908
In SDN in the Enterprise: aligning with business needs I highlighted one of what some people are claiming to be the most disruptive technologies in the networking space in recent memory: Software Defined Networking (SDN), or what I like to call the continuation of the abstraction of everything. Today we’ll explore some of the ways I believe SDN will and will not change networking.
Trying to predict the future in any endeavor is fraught with danger, or at least substantial risk of embarrassment. Winston Churchill once said, “I always avoid prophesying beforehand because it is much better to prophesy after the event has already taken place,” and he was on to something. Technology predictions, in particular, seem to have a funny way of getting away from even the most intelligent and business-savvy among us. Hit the target, and you look like a genius. Miss it, and if you have a high enough profile people will remember it forever. Worse than that, however, is that in business if you miss the target you leave money on the table, or in the worst cases sink the company. Read More »
Tags: business, Enterprise, sddc, SDN, UCS, virtualization