This week, as part of a major cloud launch that also introduced the Nexus 6000 series and updates to our Cisco ONE portfolio, Cisco unveiled its Nexus 1000V InterCloud solution, which provides a seamless and secure extension of virtual networks from on-premises data centers to cloud service providers. In part 1 of our introductory blog series to this new technology, we discussed the architecture and components of Nexus 1000V InterCloud for creating secure, on-demand virtual private cloud (VPC) containers in a hybrid cloud. In a pre-launch post earlier in January, we looked at some new Forrester research data on hybrid cloud business drivers and how some organizations were looking to overcome the challenges to real hybrid cloud integration. Today, in part 2 of our InterCloud series, we are going into more depth about the hybrid cloud management component, Virtual Network Management Center (VNMC) InterCloud.
VNMC InterCloud provides a single pane view of VM and cloud resources across the on-premises resources and those at the cloud provider. It interfaces to orchestration tools and service provider management systems, as well as virtual machine managers.
VNMC 2.0 is a template-driven policy management tool that is now bundled with Cisco Virtual Security Gateway (VSG) and Cisco ASA 1000V Cloud Firewall. This new release now has expanded capabilities to configure the security of your virtual cloud environment. Because VNMC 2.0 is such a step up from prior releases, and fewer people are familiar with its functionality, this is going to be a bit longer of a post than usual (but with lots of screen shots).
Let’s take a look at some of the key VNMC features and how it works with the two virtual firewalls:
Resource Objects for ASA 1000V
Cisco VNMC abstracts the devices it manages. As part of provisioning, devices are configured to point to Cisco VNMC for policy management. Cisco VNMC discovers all devices and lists them under the Resources pane. In addition to the ASA 1000V, the Resources pane has other resources such as Cisco VSGs, VSMs, and VMs.
Nothing sits around and gets stale for long at Cisco (outside the break rooms anyway). On the heels of shipping our Nexus 1000V 1.5.2 release earlier this week (which you can download from here), we are ramping up to show the upcoming generation of the virtual switch next week at VMworld in San Francisco. This new major release 2.1 will be going into beta in October, and will represent a quantum leap in ease of deployment and management, as well as greater security for cloud environments.
vCenter Plug-in – Provides a holistic view of the virtual network to the server administrator from within VMware vCenter. A Nexus 1000V dashboard in vCenter shows the virtual supervisor module (VSM) and virtual ethernet module (VEM) details, such as VSM health status, license information, PNIC information, connected VM’s, et al.
Support for Cisco TrustSec -- Extends Cisco TrustSec security solutions for network-based segmentation of users and physical workloads to virtual workloads, leveraging Security Group Tags (SGT) for defining security segments. Data center segmentation and consistent security policy enforcement can now be implemented across physical and virtual workloads.
Cross Data Center High-availability – Supports split Active and Standby Nexus 1000V Virtual Supervisor Modules (VSMs) across two data centers to implement cross-DC clusters and VM mobility while ensuring high availability. In addition, VSM’s in the data center can support VEM’s at remote branch offices. Read More »