Cisco Enterprise Networking › assets › global › PL › events › ...Cisco Enterprise...
Transcript of Cisco Enterprise Networking › assets › global › PL › events › ...Cisco Enterprise...
2 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Unified Access
Modele wdrożeniowe dla sieci kampusowych
Centralized Wireless
SiSi SiSi
Traditional Access
Dis
trib
uted
Wire
d
Instant Access C
entr
aliz
ed W
ired à
IA
VSS
Cisco Prime Infrastructure
One Management Cisco ISE One Policy
Distributed Wireless
Converged Access
SiSi SiSi
Dis
trib
uted
Wire
d
Cen
tral
ized
Wire
d à
VS
S
VSS
MA#MA#MA#
MA#MA#MA#
MA#MA#MA#
MA#MA#MA#
MA#MA#MA#
MA#MA#MA#
Cisco Confidential 3 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Dostęp klasyczny (classic access)
4 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Dostępne opcje
• Traditional access
Multilayer
Routed Access
VSS
• Converged Access
• Instant Access
SiSiSiSi
SiSiSiSi
SiSi
Data Center
SiSi SiSi
Services Block
Deployment Models
SiSi SiSi SiSi
5 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Traditional Access – Multilayer Design
MULTILAYER CAMPUS DESIGN
Wireless LAN Controller
Cisco Prime/LMS
CAPWAP Tunnel
Considerations
Highly Available Network Design
L2/L3 Protocol Tuning Required
Protocol Alignment Required
Deployment Flexibility
Well Understood Deployment
Access
Distribution
Backbone Core
CPE
ISE
6 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Characteristics of Multilayer Deployment Model Benefits
§ Well understood and well documented design with many years worth of deployment history
§ Uses industry standard protocols such as Rapid Spanning Tree Protocol
§ Cisco differentiating enhancements enable sub-second or near sub-second network convergence
§ VLAN based traffic load sharing across multiple uplink interfaces
§ Allows for multi-vendor environment
§ Flexible equipment costs from low to high end
Challenges § Requires significant configuration tuning
to achieve sub second network convergence
§ Requires significant complexity when adding VLAN or VRF segmentation
§ All switches managed individually
§ Large scale VLAN deployments increases baseline CPU utilization
§ Complex – Alignment of Spanning Tree, Routing, and Default Gateway Redundancy required
§ Spanning Tree Liability
7 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Standalone VSS (Physical view) VSS (logical view)
Access Switch or ToR or Blades Access Switch
Access Switch
Multi-Chassis Etherchannel
MEC
Simplifies operational Manageability via Single point of Management
Doubles bandwidth utilization with Active-Active Multi-Chassis Etherchannel (802.3ad/PagP) Reduce Latency
Minimizes traffic disruption from switch or uplink failure with Deterministic subsecond Stateful and Graceful Recovery (SSO/NSF)
Catalyst Virtual Switching System Benefits and reminder
Multi-Chassis Etherchannel
Access Switch
8 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Traditional Access – Virtual Switching System
VSS CAMPUS DESIGN
Cisco Prime/LMS
Considerations
Less Protocol Tuning Required
Efficient Resource Utilization
Higher Resiliency with Quad Sup VSS
Access
Distribution
Backbone Core
CPE
Fewer Routing Peers
CAPWAP Tunnel
Some Customer prefer separate control plane
ISE
Wireless LAN Controller
9 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Characteristics of VSS Deployment Model Benefits
§ Simplified network design with a single logical distribution layer device
§ No First Hop Redundancy Protocol needed
§ Ether channel based traffic load sharing across multiple uplinks
§ Allows for extending VLANs across multiple access layer switches without creating STP blocking links and liability
§ Supports sub-second convergence
§ Allows for multivendor access switches
§ Distribution Switches managed as One Entity
Challenges
§ Cisco proprietary solution, requires Cisco switches in the distribution layer
§ Access switches managed individually
§ May require Etherchannel hash tuning (older hardware) for most efficient path utilization
§ Single control plane is concern for some customers
§ No Cisco differentiating enhancements required to achieve sub-second convergence
§ No Access Layer stickiness i.e. any access switch will work with VSS
10 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Traditional Access – Routed Access Design
MULTILAYER CAMPUS DESIGN
Cisco Prime/LMS
CAPWAP Tunnel
Access
Distribution
Backbone Core
CPE
Considerations
Single Control Plane
Simplified Network Recovery
Additional IP Address Usage
Common Set of Troubleshooting Tools
VLAN’s Constrained to WC
ISE
Wireless LAN Controller
11 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Characteristics of Routed Access Deployment Model Benefits
§ Single control plane = less complexity
§ Less protocol tuning required for sub-second convergence (protocol dependent)
§ Common set of troubleshooting tools
§ ECMP default behavior for efficient utilization of available links and fast convergence
§ Avoids flooding downstream
§ No FHRP required
§ No trunking required
§ Permits VLAN ID reuse
§ Simplified multicast topology
Challenges
§ Requires additional IP address management and utilization
§ VLAN’s limited to wiring closet – can not span VLAN’s across closets
§ May require ECMP/CEF hash-tuning for most efficient path utilization (older hardware)
§ RSPAN not possible (ER-SPAN required)
12 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Inteligentne, proste,
bezpieczne przełączniki dostępowe
Catalyst 2960-X
Zaawansowane przełączniki Converged
Access
Catalyst 3850
Elastyczne, skalowalne przełączniki modularne
Catalyst 4500E with SUP8-E
Przełączniki Converged
Access
Catalyst 3650
Przełączniki Cisco Catalyst – dla zastosowań w dostępie
IOS
Cisco Confidential 13 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Przełączniki szkieletowe Portfolio przełączników o stałej konfiguracji
Fea
ture
s
Scale & Performance
Industry-Leading Fixed Campus Backbone
Campus Core & Distribution Features
Highest Performance & Scalability
Best Fixed 1 & 10G Aggregation and Core
Catalyst 6880-X
Competitive Features at Compelling Prices
Campus Distribution Features
Moderate Performance & Scalability
Catalyst 4500-X
Best Space Constrained 10G Aggregation
NEW
Catalyst 3850-12/24S
Best Space Constrained 1G Aggregation
Campus Collapsed Access & Basic Distribution Features
Basic Performance & Scale
Stackable 1GE Fiber Aggregation
NEW
Cisco Confidential 14 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Przełączniki szkieletowe Urządzenia modularne
Industry-Leading Modular Campus Backbone
Campus Core & Distribution Features
Highest Performance & Scalability
Optimized for Distributed 10, 40 & 100G Ethernet
Catalyst 6807-XL
Traditional Modular Campus Backbone
Campus Core & Distribution Features
High Performance & Scalability
Catalyst 6500-E
Optimized for Distributed 1, 10 & 40G Ethernet
Catalyst 4500-E
Optimized for Centralized 1G Ethernet
Campus Collapsed Access & Basic Distribution Features
Moderate Performance & Scale
Leading Collapsed Access Features
NEW
Fea
ture
s
Scale & Performance
Cisco Confidential 15 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Instant Access + 6800
16 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Cisco Catalyst Instant Access
Upraszcza działania zapewniając pojedynczy punkt zarządzania, konfiguracji, rozwiązywania problemów dla całego bloku warstwy dystrybucyjnej i dostępowej
Zapewnia spójny zestaw funkcjonalności w całej warstwie dostępowej
Oferuje funkcjonalności Catalysta 6500 w dostępie
Korzyści płynące z architektury Instant Access
Standalone
Access Switch
LACP or PAGP
Access Switch
SiSi SiSi
VSS
LACP or PAGP
LACP or PAGP
VSL
Access Switch Access Switch
SiSi SiSi
Instant Access
VSL
Instant Access Client
SDP SRP SCP
Instant Access Client
SiSi SiSi
17 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Nowy Catalyst 6880-X Platforma “pół-modularna”
Do 80 portów 1G/10G lub 20 portów 40G
Zabudowany moduł 16x1/10G lub do 4x40G
X86 2 GHz CPU 4 GB DRAM
16 portów 1/10G lub 4 porty 40G
Obsługa funkcji typu MACSec, VSS, instant access, MPLS, VPLS, LISP, SGT, 1588 na każdym porcie
Niski pobór mocy
Niski poziom hałasu
Redundantne zasilacze AC lub DC
18 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Catalyst Instant Access Client: 6800ia
• Trzy opcje: 48 portów GigE PoE+, 48 portów GigE, 48 portów GigE PoE+ z redundantnymi zasilaczami
• 2 x 10G uplink SFP+
• Możliwość stackowania (do 3 jednostek)
• Magistrala stackująca o przepustowości 80Gbps
• Pojedynczy, wbudowany zasilacz oraz wbudowane wentylatory
• lub model z redundantnymi wymiennymi zasilaczami
• Praca WYŁĄCZNIE w trybie Client
• Full PoE (15W) dla wszystkich 48 portów
• Full PoE+ (30W) dla 24 portów
• Zawiera moduł stackujący, nie wymaga dodatkowych licencji
19 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Catalyst Instant Access Skalowalność w fazie 1
Maximum Client Node User Ports 1008 Maximum FEX ID’s 12 Maximum Client Switches 21 Maximum Clients in Stack 3 Maximum User Ports in Stack 144
Client Node ID to pojedynczy moduł lub stack. W przypadku
wykorzystywania pojedynczych modułów obsługiwanych jest
maksimum 12 modułów IA Client
20 © 2013-2014 Cisco and/or its affiliates. All rights reserved. 1000 Port Campus Distribution Block
Considerations
Satellite device capable of Stacking, POE+
Single Point of Management, Configuration and Troubleshooting
Simplified Network design for VLANs and port channels
Agile Infrastructure to add new features uniformly across Access Layer
A Single Image to deploy and manage across Distribution Block
REDUCED TCO
Cisco Prime
Managed Devices = 20+ Managed Devices = 1
ISE
Instant Access
21 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Characteristics of Instant Access
Benefits
• Provides Single point of Management, Configuration and Troubleshooting for Distribution block
• Simplified distribution block design, eliminates configuration on the uplinks
• Simplified image management and qualification
• 6K – IOS Feature Robustness available @ Access
• Can be used with Traditional or CA
• Provides solution for customers who need MPLS in access layer
Challenges
• Currently limited to distribution block design of 1000 ports
• Large amounts of east-west traffic would increase uplink bandwidth utilization (Over subscribed to start)
• Only supported with VSS configuration ( supported with single switch in VSS mode )
• Access Feature differences/lag between 6k and traditional access platforms 2k/3k/4k
• Converged Access not available in combination with Instant Access
Cisco Confidential 22 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Converged Access
23 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Converged Access
Multilayer, VSS, or Routed Access
WiSM2*,5508*, 3850, 3650, 5760
Cisco Prime
ISE
MA
MC/MO
*Do release’u 8.0
Considerations
Single QoS Model for Wired/Wireless
Complete visibility in to wireless traffic
Consistent Services for wired/wireless
No external controller for up to 100 AP’s
Future proof for 802.11ac
Access
Distribution
Backbone Core
CAPWAP Tunnel
Multilayer or Routed Access Supported
24 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Characteristics of Converged Access Benefits
§ Can be deployed with existing traditional wireless architecture for ease of migration
§ 3850/3650/4500E* can terminate CAPWAP as the Mobility Agent with existing 5508, WISM2, 3850, 3650, 5760 acting as the Mobility Controller.
§ Single QOS model for Wired and Wireless on 3850/3650/4500E*
§ Provides Flexible Netflow across all ports for wired and wireless
§ Supports Multicast better based on how CAPWAP is terminated
Challenges
§ Multiple management and troubleshooting points for Wireless
§ Prime and WEBGUI lacking in functionality
§ Wired Migration blockers between between 3850 and 3750x
§ Wireless Migration blockers between AireOS & IOS
*Roadmap
25 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Skalowalność – rozproszone
przetwarzanie ruchu dla sieci
przewodowej i WiFi
Stack 480G; 40G dla sieci WiFi/switch;
do16K klientów bez instalacji
dedykowanego WLC
Maksymalna niezawodność z mechanizmami
stateful recovery
Warstwowa konstrukcja sieci wysokiej dostępności,
mechanizm stateful switchover
Pojedyncza platforma dla
sieci WiFi i przewodowej
Jeden IOS, wspólny punkt administracji
siecią
Un i f ied Access - One Po l icy | One Management | One Network
Pełna widoczność dla szybszego rozwiązywania
problemów
Ruch sieci przewodowej i WiFi widoczny w każdym
punkcie sieci
Jeden punkt nakładania polityki bezpieczeństwa i
QoS
Hierarchiczne zarządzanie pasmem i
rozproszone egzekwowanie polityki
Główne korzyści
26 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Converged Access – rekomendowane opcje wdrożeniowe
3
2
1
Mobility Domain - Up to 4000 Devices / 100 AP’s Max 2 x 3850 MC
Centralized Overlay
Num
ber
of D
evic
es
Size of Mobility Domain
Mobility Domain - Up to 2000 Devices / 50 AP’s Max 1 x 3850 MC
Seamless Roaming Use Case Nomadic Roaming Use Case
Size of Mobility Domain
MC
MA1 MA2 MA8 …
4 Site - N
MC
MA1 MA2 MA8 …
MC
MA1 MA2 MA8 …
Site - 3
Site - 2
Mobility Domain 1, 2 or 3
Site - 1
MC
MA1 MA2 MA8 …
MC
MA1 MA2 MA8 …
(N) x independent Mobility Domains Up to 4000 Devices / 100 AP’s per Mobility Domain
Mobility Domain – Up to 14000 Devices / 1200 AP’s WLC 5760* as External MC (max 2 MC)
* 5760 is the recommended platform for external MC
MC
MA1 MA2 MA8 …
MC
MA1 MA2 MA8 …
27 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Lead Platforms for Converged Access
FIXED MODULAR
BACKBONE
ACCESS
Catalyst 4500-E Sup8E*
Catalyst 6500-E
Catalyst 6807-XL 6880-X
3650
3850
Cisco Confidential 28 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Podusmowanie
29 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Który model jest najlepszy ?
to zależy …
Cisco Confidential 30 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Przełączniki core – co nowego?
31 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Campus Switching: Decision Criteria in Core
Customer Requirements for Campus Core
Enterprise Switching: Campus Core Positioning 3+ Tier Campus LAN
ü Network Services ü 10/40/100G Scalability ü Operational Simplicity ü High Availability
ü Security ü Segmentation ü Application Visibility and Control ü Investment Protection
Catalyst 6800/6500-E with IOS Nexus 7000/7700, 95001 with NX-OS
Advanced and Integrated Campus Services Segmentation Choices
(MPLS/VPLS, EVN, LISP, mGRE, SGT)
1GE, Medium Density 10GE
OS and Operational Consistency Across Campus Investment Protection for C6500
High Density 10GE/40GE, 100GE
Common Platform for DC Campus Core, and DCI
Segmentation Choices (MPLS/VPLS*, LISP*, OTV*, VDC*, VXLAN, SGT*)
*Not Available in Nexus 9500
1 Case-specific for High Density 10GE/40GE 1 Case-specific for High Density 10GE/40GE
1Opportunistic for Merchant Silicon Competition
Cisco Confidential 32 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
The Journey of 6800 New Hardware Releases Every 3–4 Months
Continuous HW and SW innovation
Dec’14 15.2(1)SY
6800 10G LC
Dec’14 15.2(1)SY
6800 1G LC
Dec’14 15.2(1)SY
IA Compact
Consistent and Effective
Execution
Mar’14 15.1(2)SY2
6880-X Multirate Port Card Aug’14
15.1(2)SY3
C6800IA-48FPDR
2013 15.1(2)SY
15.1(2)SY1
6807-XL 6880-X 6800IA
The MONSTER Switch Embarks on its Journey
Cisco Confidential 33 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Catalyst New 10G Line Card: C6800-32P10G New High Density Multi-Rate Line Cards
* with new CVR-4SFP-QSFP Adapter Cable
32 ports of SFP/SFP+, up to 8 ports of QSFP
10/100/1000M GLC-T
100M FX
250MB per Port;
500MB in Performance Mode
Instant Access, SGT, MACSec
160G Throughput,
Performance mode for line rate
1M IPV4 Route
1M Netflow
Not Every Port is Created Equal!
FCS Q4CY14
NTE: $40,000
Target for Less
Dramatically reduce price/port
Cisco Confidential 34 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Throughput in 6807 160G
Optics: SFP/SFP+
Egress Buffer/port: 250 MB
Features:
Full-feature L2/L3 module with MPLS, VPLS. IPv4/IPv6
capabilities, 1M IPv4 Routes, 1M NetFlow
Additional Hardware Features:
Large Buffers, SGT, MACSec, LISP, Dual Priority Queues, Two Level Shaping, Instant Access
Ideal for: Campus Aggregation and Core
80G
SFP/SFP+
250 MB
Full-feature L2/L3 module with MPLS, VPLS. IPv4/IPv6
capabilities, 1M IPv4 Routes, 1M NetFlow
Large Buffers, SGT, MACSec, LISP, Dual Priority Queues, Two Level Shaping, Instant Access
Campus Aggregation and Core
80G
SFP/SFP+
500 MB
Full-feature L2/L3 module with MPLS, VPLS. IPv4/IPv6
capabilities, 1M+ IPv4 Routes, 1M NetFlow
Large Buffers, SGT, MACSec, LISP, Dual Priority Queues, Two Level Shaping, Instant Access
Campus Aggregation Core
Instant Access
Hierarchical QoS
SGT & MACSec Large Buffers
Catalyst 6800 10G Portfolio Providing Deployment Options
FCS Q4CY14
32x10G SFP+ 16x10G SFP+ 8x10G SFP+
Cisco Confidential 35 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
1/10GE Now
40GE Later
QSFP-40G-SR4 QSFP-40G-CSR4 QSFP-40G-SR-BD QSFP-40G-LR4 QSFP-40G-ER4
Future Proofing with 10G to 40G Adapter
C6800-8P-10G
6880-X
SUP8-E
4500-X
C6800-16P-10G
C6800-16P-10G
Reverse SFP to QSFP Adapter Can Upgrade Your 10G Ports to 40G
40G Adapter
QSFP
FCS Q2CY15
Cisco Confidential 36 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Instant Access Scale Update
15.1(2)SY (Shipping) 15.2(1)SY (Jan 2015) Feature 15.2(1)SY1 (April 2015)*
Port Scale
Fabric Link
Stacking
Supervisor 2T
15.1(2)SY (Shipping) 15.2(1)SY (Jan 2015) Feature
Port Scale
Fabric Link
Stacking
6880-X
1,000
12
3
2,000
42
5
1,000
12
3
1,200
25
5
1,500
32
5
Cisco Confidential 37 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Catalyst Instant Access Client Portfolio
C6800IA-48TD C6800IA-48FPD C6800IA-48FPDR C6800IA-48TD C3560-CX
PoE/PoE+ ✗ ✓
48 ports, 740W ✓
48 ports, 740W ✓
12 ports, 240W
Down Link Ports 48x1G Cu 48x1G Cu 48x1G Cu 12x1G
Uplink Ports 2x10G SFP+ 2x10G SFP+ 2x10G SFP+ 2x10G SFP+ (for IA mode) ,
2x1G Cu
FEX ID 12!42/32* 12!42/32* 12!42/32* 42/32*
Access Ports Scalability 1000!2000/1500* 1000!2000/1500* 1000!2000/1500* 300-500**
Stack 3!5 3!5 3!5 0
Dual Power Supply ✗ ✗ ✓ ✗
Standalone Mode ✗ ✗ ✗ ✓
FCS December
2014
*see previous slide as accurate reference for scalability ** Depending on the platform, 300 for sup2T, 500 for 6880
Cisco Confidential 38 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
PID Bundle Components Discount
C6880-IA- 10G-BUN
C6880-3650- 10G-BUN
C6807-3850- 10G-BUN
Up to 1 NAM 2320
10G Bundles for Catalyst Architectural Sell
2 x C6880X Up to 40
10G Optics 10 to 20 C6800IA
10%
27%
20%
Up to 1 NAM 2320
2 x C6880X Up to 40
10G Optics 10 to 20 C3650
2 to 4 6904 2 x C6807XL Up to 40 10G Optics 20 to 40 C3850
500–1000 Ports
1000–2000 Ports
AVC
AVC
Now Shipping Till end of FY15
Cisco Confidential 39 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
2 x C6880X Up to 40 10G Optics
10 to 20 C6800IA with dual PSU
2 to 4 6904
2 x C6807XL
500–1000 Ports
500–1000 Ports
C6880-IA- RPS-BUN
C6807-IA-RPS-BUN
PID Bundle Components Discount
New IA with Dual PSU Catalyst 6K 10G Bundles
15%
22% Up to 40
10G Optics 10 to 20 C6800IA
with dual PSU
Now Shipping Till end of FY15
Cisco Confidential 40 © 2013-2014 Cisco and/or its affiliates. All rights reserved. Investment Protection • All E-Series Chassis and 6807-XL • DFC4 Upgrade Option for 67xx Line Cards Fortifying Enterprise Backbones with the Catalyst 6500 & Catalyst 6800
15.2(1)SY Release – Highlights
§ Compact IA § Interface template and
autoconf § IPv6 First Hop Security
§ 8, 16, and 32p 10G/1G cards
§ 10/1G mixed mode § 48p 1 Gig line card § 40G adapter*
§ OF1.0 and 1.3 Includes topology, IPv4/v6 tables, QoS marking, flow stats, multiple controllers, interfaces (routed and switched)
§ PnP Agent
§ OSPFv3 area filter § DHCPv6 LDRA § LDP inbound label filter § VRF-aware DHCP relay § VRF-aware DNS
§ VRRPv3
Instant Access
New Hardware
Innovative Features
200 New
BACKBONE
Features Customer Solutions
FCS JAN CY15
Cisco Confidential 41 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Przełączniki dostępowe – co nowego?
Cisco Confidential 42 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
4503-E
4507R+E 4510R+E
4506-E
Four Chassis Options 7 and 10 Slot with Sup Redundancy
Catalyst 4500E Portfolio
Power Supply Maximize UPOE/POE+/POE delivery
Fully Loaded 10-Slot with POE PWR-C45-9000ACV PWR-C45-6000ACV PWR-C45-4200ACV
Supervisors Traditional and Wireless Convergence
928G Wired, 20G Wireless WS-X45-SUP7L-E WS-X45-SUP8-E
WS-X45-SUP7-E
1GE: 12/24/48 port WS-X47xx-SFP-E
POE: WS-X4748-UPOE+E
Data: WS-X4748-RJ45-E
Port Scale: Access and Collapse Agg 384 10/100/1000 POE/PoE+/UPOE
96 SFP+ , 192 SFP
10GE: WS-X4712-SFP+E
Cisco Confidential 43 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Wireless on Catalyst 4500 Sup-8E
Works in all Shipping 4500-E chassis
Up to 50APs 2000 Clients
8 SFP+ 10G/1G Uplinks
UCI/Campus LISP Ready 928G total capacity
Wireless integration
Faster CPU
A p p V i s i b i l i t y
L o w e r T C O
S c a l e
• Investment Protection to UA Arch • In Service Software Upgrade • Life Cycle
• Flexible NetFlow Wireless • IOS XE Open Application Platform
• 20G Wireless Termination • 100% more Uplink Bandwidth • Programmable Uplink FPGA (LISP)
Q4CY14
Cisco Confidential 44 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Sup8-E Wired Mode Restrictions
4500E 10 Slot Chassis
47xx (K10) Line Cards
46xx/45xx Line Cards
All Line Cards
SUP7-E Mode
WIRED ONLY WIRELESS ENABLED
47xx (K10) Line Cards
46xx/45xx Line Cards
40G 40G
20G 20G
4500E 10 Slot Chassis
20G 20G
20G Wireless
No Restriction on 3,6 and 7 slot chassis
No Restriction on 3,6 and 7 slot chassis
To enable Sup7-E mode: Switch(config)#hw-module uplink mode 40Gig
Cisco Confidential 45 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Catalyst 4500(E & X) Software Roadmap
New Hardware/
Infra
IT Simplicity, Programmability
Application Experience/ IOT
Mobility & Security
Others
Shipping IOS 3.5.0E / IOS 3.3.0XO Q3CY2013
• Sup8E Wired • 9000W PS • New 1G Fiber Cards
• IPFIX Flow export
• Smart Install Enhancements
• EnergyWise 2.8
• VSS Phase II (L3 MEC, Fast hellos, Asymmetric chassis)
• IPv6 FHS Phase II
• MacSec(802.1AE), SGT/SGACL
• Service Discovery Gateway Ph I
• FIPS 140-2 & Common Criteria on 4500-X & SUP7-E
• BFD v4 & v6, HSRP aware PIM, IPv6 VRF Lite
IOS XE 3.6.0E Q2CY2014
• Sup8E : Feature Parity with SUP7-E*
• Active Optics Cable
• FnF Export over IPv6 • IPFIX flow export for SUP8-E
• Plug n Play (PnP) • AutoConf & Interface Templates • Easy VSS
• Service Discovery Gateway Phase II (Location aware)
• Govt Certifications: FIPS, Common Criteria, UCAPL, USGv6
• ISE 1.2/1.3
• Prime 2.1 & MSE 8.0
IOS XE 3.7.xE Q4CY2014/1H2015
• Sup8E Wireless Support
• mGig Line card**
• AVC Wireless on SUP8-E • IPv6 ACL Masking • IPv6 PBR on Sup8E
• SDN - OpenFlow1.3**
• VSS: QinQ, VLAN Translation, L2PT, WCCP**
• Trustsec on New 1G Fiber cards
• Object Group ACL **
• BFD for ISIS v4 & v6 • HW GRE, NHRP **
• Govt Certifications for Wireless SUP8-E
• Cisco Prime 2.2
* Except IPv6 PBR
EC
** Rebuild releases in 1HCY15
Cisco Confidential 46 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
The Catalyst Access portfolio was completely refreshed in 2013
• Secure, reliable access
• Low TCO & energy-efficient
Competitive Feature Set at Compelling Prices
UNIFIED WORKSPACE
BYOD Video Mobility
Converged Wired/Wireless Access
• Upto 480G Stacking • Upto 4x10G Uplinks • Stackpower with 3850 • Supports up to 50AP’s
• Scale and Performance • 928G Backplane • 8 Modular 1/10G Uplinks • Supports 50AP’s*
Lead Modular Switch Lead Stackable Switch
SCALE
FE
AT
UR
ES
NEW Jul 2013 NEW Jan 2013 NEW Aug 2013
Cisco Confidential 47 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Private VLANs
IPv6 FHS: Source/Prefix Guard
IEEE 802.1AE MACsec
(SAP)
IPv6 FHS: Destination
Guard
3.7.0E Q4CY14
3.7E Rebuild H1CY15
XPS Support
IEEE 802.1AE MACsec (MKA)
3.7E – Catalyst 3850/3650 New Features
Cisco Confidential 48 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Catalyst 3850/3650 Leadership in Wired Services
SCALABILITY/PERFORMANCE § Up to 480G Stacking § Up to 50 Access Points / 2000 Clients
§ 4x10GE Uplinks with Copper/Fiber Downlinks § IPv4/IPv6/Multicast Scalability Leadership
AVAILABILITY / RESILENCY
§ Stateful Switch Over (SSO)
§ AP and Tunnel SSO § Stackpower
§ FRU Power Supplies / Fans
I INTERNET OF THINGS / SDN
§ Segmentation (TrustSec, VRF-lite)
§ UPOE / Full POE / EnergyWise § Bonjour / Services Discovery Gateway
§ Flexible Parser
NETWORK AS A SENSOR § Flexible Netflow § WireShark
§ MediaNet* § Embedded Event Manager
Cisco Confidential 49 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Coming 1H 2015 Simplified CA Management
MC
MAs
Configuration push (MC à MA)
Troubleshooting scripts output gathering
(MAà MC)
MC Managing MA Prime CA Templates
Internet
5760-GA-1
DC
CPI ISE 5760-GA-2
MC/MA MC/MA MC/MA
Branch – 1
3850
Branch – 2
3650-StackWise
Branch – 3
SiSiSiSiSiSi
4500E-Sup8E
Addressing & Mobility WLANs
Security
Bandwidth (%)
App Visibility
H1 2015
LAN Only
Dec 2014
Cisco Confidential 50 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Catalyst 2960-X Series Access Switches is best in its class Refuse to lose with the Catalyst 2960-X
2x Doubling Everything
Stack units, bandwidth & more Investment Protection Stack with Existing 2960-S/SF
Application Visibility & Control
Layer 3 Routing
Greenest Switch Ever
Future-Proof
Scalable Smart Intelligent & Green
Simple
Reduce TCO
Secure One Policy
Cisco Confidential 51 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Nobody Beats the 2960X
Cisco Confidential 52 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Miercom Verified Catalyst 2960-X Annual Power Cost is of HP 2920!
Cisco Catalyst 2960-XR HP 2920
The figures show annual energy costs to operate bot.
2960X Series was awarded "The greenest switch in the
Industry" by Miercom at Interop Las Vegas
Download Competitive Reports Here – • http://miercom.com/pdf/reports/20130917.pdf • http://miercom.com/pdf/reports/20131112.pdf Performance Verified
Cisco Confidential 53 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
The Catalyst Warranty matches the competition
Service Element Enhanced Limited Lifetime
Warranty
Duration of Coverage
Unregistered access only Online Support/ Web Access
Next business day** Advance Hardware
Replacement
Lifetime for switches- As long as the original customer owns the product
Limited Lifetime Warranty
Lifetime for switches- As long as the original customer owns the product
Unregistered access only
10 Business Days
Lifetime for fans & power supplies for new and existing switches
Lifetime for fans and power supplies for new and existing switches
** Where next business day delivery is available, Cisco will use commercially reasonable efforts to ship a replacement for next business day delivery provided Cisco’s determination of the hardware failure has been made before 3 p.m. depot time. If a request is made after 3 p.m. depot time, Cisco will ship the advance replacement on the next business day. Actual delivery times may vary depending on Customer location.
Business hours access for 90-days only
Cisco Technical Assistance Center (TAC) Support
Award Winning
No
Software Updates are free for Lan Lite, Lan Base and IP Base (SMARTnet required for IP Services)
Cisco Confidential 54 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Call to Action: Transition customers from legacy platforms 2960-S/SF EoS announcement coming Q2’FY15
Position replacement Benefits Caveats
Catalyst 2960-S/SF
Catalyst 2960-X • Direct replacement for 2960-S • Stacking compatibility
• No direct replacement for 2960-SF
Catalyst 2960 Catalyst 2960-Plus • Direct replacement for each
2960 model • No PoE+ • Limited v6
Catalyst 3560v2 Catalyst 3750v2
Catalyst 3850 Catalyst 3650
• Converged Access • Performance • New stacking technology
Catalyst 2960-X Catalyst 2960-XR • Pricing
• Feature gaps (e.g. no IP Services)
Catalyst 3K-X Not expected to EOS before FY17.
EoS Oct’14
EOS Nov’15
EoS CY15
Cisco Confidential 55 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Catalyst Fixed Access(2/3K) Software Roadmap
New Hardware/
Infra
IT Simplicity, Programmability
Application Experience
Mobility & Security
Others
Shipping IOS-XE 3.6.0E
• 1G 3850 Fiber SKU • AP2700, AP700I, AP700W, AP1530 (Centralized mode)
• QinQ, IPv6 Multicast, EW 2.8 (3850/3650)
• AVC for Wireless Ph II (on AP) • Medianet (Perf-mon, Mediatrace, Metadata) on 3850/3650
• PnP Agent, PnP Proxy* (Amur MR1) • Auto Conf & Interface Templates • IPv6 – VRF, PBR, uRPF, VRRPv3 (3850/3650), Auto Secure
• Service Discovery Gateway Phase II (Location, static service)
• Device Sensor (Policy Classification Engine)
• AP Pass Through • Govt Certifications: FIPS 140-2, Common Criteria, UCAPL, USGv6
• ISE 1.2/1.3, Prime 2.1, MSE 8.0
IOS XE 3.7.0E Q4CY2014
• Next Gen Compact • 3850 10G POE Copper • AP 1570, 1700(2 SS 802.11ac) • PVLAN, XPS*, IPv6 FHS (3850/3650)
• SDN - OpenFlow1.3* (3850/3650) • AP Pass-through Automation • MC Management of MA • Prime CA Templates
• MACSec SW-to-SW (3850/3650) • MACSec SW-to-Host (3850/3650)* • Sleeping Client
• Regulatory: India, Indonesia, Brazil, Singapore, Hong Kong and Iraq
• World Regulatory Domains • Prime 2.2, MSE 8.0
EC
• AVC Top N • AFD Visibility • Auto QoS (wireless)
* Rebuild releases in 1HCY15
Cisco Confidential 56 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
1G SFP/Copper uplinks 10G SFP+ uplinks
UPOE Powered / PoE passthrough
option
DC Powered option
EEE
Netflow Lite Trustsec ready (on IPB, IPS)
Instant Access Option (3560CX with 10G)
Power Saving Hibernate Mode
8x1G & 12x1G options
L2/L3 SW
Perpetual PoE*
Introducing the Catalyst Compact Switch Target FCS: Dec’14
Silent/ Fanless
Let’s transform the workspace!
APIC-EM
Cisco Confidential 57 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Enhanced PoE capabilities on the compact switches enable Perpetual PoE and scale
• Increased PoE Budget: 240W of PoE+ (8 x 30W)
• Fanless, silent reliable operation.
• Provides non-stop PoE power. • Switch can continue to provide PoE+ during
config and reboot
Dense Sensor Network
(Light, Motion, CO2/CO, etc.)
WiFi Access Point
IP Video Surveillance
Camera
Wall Switch
Commercial LED PoE Fixtures
Ethernet Cable
Building Mgmt (Connected HVAC)
Digital Ceiling Applications
…
Compact Switch in the
Ceiling
An expanding ecosystem of PoE devices
• Option to power over 18V-60V external DC power supply, supports PoE+
Cisco Confidential 58 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
The compact switches deliver advanced networking features for performance and scale.
IT Simplicity
§ Instant Access with 10G – New § Smart Operations , Autoconf § NG Plug n Play – New
SMART SERVICES § Netflow Lite – New § Embedded Event Manager § EEE, Hibernate Mode – New § 2 x UPOE Powering option – New
SECURITY
§ Segmentation (TrustSec*, VRF-lite) – New § MACsec*
§ Secure Boot – New
PERFORMANCE § 10G Fiber uplinks– New § mGig for 11ac wireless New § PoE+ Scale (240W) – New § Persistent PoE* – New
(*) On the roadmap
Cisco Confidential 59 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
The Quiet and Fanless Catalyst Portfolio Optimized for deployments outside the wiring closet
WS-C2960X-24PSQ-L • 8 Ports PoE+ (110W)
• LAN Base Sofftware
Ideal for retail, conference rooms, classrooms, hotels and more
24 Ports 8 Ports 12 Ports
Port Density
Catalyst Compact • 8/12 Ports PoE+ (240W)
• L2/L3 Software
Thank you.