Nx o sv and virl
Transcript of Nx o sv and virl
Accelerating Nexus feature adoption with NX-OSv & VIRL
Huyến Dương [email protected]
Systems Engineer
CCIE #38257, VCP510
May 2014
2 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
q Introduction to NX-OSv (Nexus OS virtual) • NX-OSv - a powerful tool • Different ways of exploring NX-OSv
q VIRL (Virtual Internet Routing Lab) • VIRL System Architecture • Creating Network Topologies using VIRL • Available locations for VIRL, dCloud etc. • Licensing (internal & customers)
q Simulating Real World Use Cases & Success Stories • L3, L2
Agenda
3 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
NX-OSv
4 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
• Configuration Validation, testing and prototyping new features
• Troubleshooting complex networking problems • Training and familiarity of NX-OS Operating
system without spending $$ • Customer Demos/Training – Capex intensive
Data Center Deployment Challenges
5 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
• Easily evaluate new features before it hits production – self, customer & partner education
• Create highly accurate models – simulate real world & future networks
• Ability to easily spawn switches on a convenient orchestration tool – flexibility & agility
• Ability to scale multiple nodes within seconds – zero or lower capex
Solution: Cloud-ify NX-OS
6 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
• NX-OSv stands for Nexus OS virtual • NS-OSv is a software simulating Nexus switches running as
a VM
• NX-OSv is NOT an emulator because the software data plane does not emulate the Nexus hardware
• It doesn’t simulate differences between N6K, N5k, N7k, N3k & N9k.
It’s a reference platform for NX-OS
Introducing NX-OSv
7 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
NX-OSv – Benefits – Why NX-OSv ?
• Conveniently build, test and deploy networks • Rapid prototyping of new deployments
• Validate/verify network designs and configurations
• Reduction in expenditure on lab equipment • Decrease time for deployment of new services
• Availability and ease of scaling resources • Reducing risks due to configuration errors
8 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
NX-OSv - Endless Possibilities!
Configuration & Validation
Hands on Learning
Network Simulation
Programmatic API
NX-OSv
9 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
NX-OSv – Data Center Fabric Simulation
10 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Survey Response – NX-OSv Usability
NX-OSv Usability Time Spent in Exploring NX-OSv
Configuration or CLI check,
55%
Programmatic API, 10%
Hands on learning, 12%
Network Simulation
and Prototyping,
23%
11 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Survey Response – Preferred NX-OSv Orchestration Tool
12 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
NX-OSv – Easy to Use a) Integrated with VIRL (Virtual Internet Routing Lab)
http://virl.cisco.com/
13 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
NX-OSv – Easy to Use b) Running as a Virtual Machine
14 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Features Verified on NX-OSv q Layer-3 Routing Protocols:
o BGP (MP-BGP) o EIGRP (IPv4 & IPv6) o ISIS o OSPF and OSPFv3 o RIPv2 o Static Routing (IPv4 & IPv6)
q Management/Security Protocols: o AAA (LDAP, RADIUS, TACACS+) o CDP and LLDP o NTP o SNMP o Syslog
q Multicast Routing Protocols: o IGMP / MLD o MSDP o PIM / PIM6
q First Hop Redundancy Protocols o GLBP o HSRP (IPv4 & IPv6) o VRRP
q Pre-Release Features may be available: o AMT o LISP
q Programming o Python o NXAPI
Disclaimer: Some features such as NAC, Netflow and Policy Based Routing (PBR) are configurable, but may not work. This may be useful for CLI verification.
15 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Unsupported Features on NX-OSv q Bi-Directional Forwarding (BFD) q Cisco TrustSec (Encryption) q HA – ISSU Software Upgrades q Layer-2 Switching (OTV is an exception) q Hardware (TCAM) Related Features:
q Access Control Lists (ACL’s) q Control Plane Policing (CoPP) q Quality of Service (QoS)
q Interface Counters q Port-Channel Interfaces (including vPC) q Port Security q Uni-Directional Link Detection (UDLD) q Virtual Device Context (VDC) q Q-in-Q Tunneling q 802.1x (dot.1x)
16 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
VIRL (Virtual Internet Routing Lab) - the missing link for test driven development
17 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
What is VIRL?
A network orchestration and virtualization platform that enables: • Point-and-click network design • Painless configuration • Integration of platform-sync’d code • Rapid setup and tear-down • Seamless connectivity with ‘real’ networks • Portability and repeatability
18 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
IOS XR NX-OS IOS XE IOS
Virtualized in
IOS XRv
Virtualized in NX-OSv
Virtualized in CSR1000v
Virtualized in IOSv
Servers
Ubuntu, Cirros, 3rd party
appliances
Virtual Machines run the operating system but are NOT representations of a particular hardware platform – no fans, no switch fabric, no ASIC models
VIRL Architecture - Virtualized Platform Operating Systems
19 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
IOS XR NX-OS IOS XE IOS
Virtualized in
IOS XRv
Virtualized in NX-OSv
Virtualized in CSR1000v
Virtualized in IOSv
Servers
Ubuntu, Cirros, 3rd party
appliances
• Same Control-plane code • Same Management plane code • Same memory footprint
• Different CPU performance • Different Forwarding plane code • No ASIC emulation
VIRL Architecture - Virtualized Platform Operating Systems
20 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Virtualization (nested?)
• Virtualized devices (CPU, I/O, memory) enable a single host to support many virtual machines
• KVM / QEMU provides a kernel-based Hypervisor / host-virtualization facility
• Ubuntu provides the basic host operating system
• Intel VT-x / AMD-V capable CPUs expose hardware-virtualization functions to Ubuntu / KVM
Physical Host
Host OS
Virtual Machines
Hypervisor
QEMU /
21 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Keystone (Identity Services)
Glance (Image / Repository Services)
Nova (Compute Services)
Neutron (Networking Services)
Swift (Object
Services)
Cinder (Block
Storage Services)
Horizon
(Dashboard)
AP
Is / CLI
IaaS / cloud orchestration software – creates, manages, and deletes virtual resources according to API- or CLI-based instructions
Built on OpenStack
22 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
VM Maestro
• The graphical topology editing tool
• Enables rapid definition of network elements: ü Routers ü Links ü Protocols ü Facilities
• Supports complex topologies
• Manages simulations
23 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
VM Maestro
• The graphical topology editing tool
• Enables rapid definition of network elements: ü Routers ü Links ü Protocols ü Facilities
• Supports complex topologies
• Manages simulations
24 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
<?xml version="1.0" encoding="UTF-8" standalone="yes"?> <topology xmlns="http://www.cisco.com/VIRL" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" simulationEngine="OPENSTACK" schemaVersion="0.6" xsi:schemaLocation="http://www.cisco.com/VIRL http://cide.cisco.com/vmmaestro/schema/VIRL.xsd"> <extensions> <entry type="String" key="management_network">flat</entry> <entry type="Boolean" key="AutoNetkit.enable_cdp">true</entry> <entry type="Boolean" key="AutoNetkit.enable_OnePK">true</entry> <entry type="String" key="AutoNetkit.address_family">dual_stack</entry> <entry type="String" key="AutoNetkit.ipv4_infra_subnet">10.0.0.0</entry> <entry type="String" key="AutoNetkit.ipv4_infra_prefix">8</entry> <entry type="String" key="AutoNetkit.ipv4_loopback_subnet">192.168.0.0</entry> <entry type="String" key="AutoNetkit.ipv4_loopback_prefix">22</entry> <entry type="String" key="AutoNetkit.ipv4_vrf_loopback_subnet">172.16.0.0</entry> <entry type="String" key="AutoNetkit.ipv4_vrf_loopback_prefix">24</entry> <entry type="Boolean" key="AutoNetkit.enable_routing">true</entry> <entry type="String" key="AutoNetkit.IGP">isis</entry> </extensions> <node location="518,292" subtype="IOSv" type="SIMPLE" name="Core"> <interface name="GigabitEthernet0/1" id="0"/> <interface name="GigabitEthernet0/2" id="1"/> <interface name="GigabitEthernet0/3" id="2"/> </node> <node location="519,172" subtype="IOSv" type="SIMPLE" name="A1"> <interface name="GigabitEthernet0/1" id="0"/> <interface name="GigabitEthernet0/2" id="1"/> <interface name="GigabitEthernet0/3" id="2"/> </node> <node location="648,368" subtype="IOSv" type="SIMPLE" name="A3"> <interface name="GigabitEthernet0/1" id="0"/> <interface name="GigabitEthernet0/2" id="1"/> <interface name="GigabitEthernet0/3" id="2"/> </node> <node location="403,382" subtype="IOSv" type="SIMPLE" name="A2"> <interface name="GigabitEthernet0/1" id="0"/> <interface name="GigabitEthernet0/2" id="1"/> <interface name="GigabitEthernet0/3" id="2"/> </node>
Topology Representations
• Topologies are represented in XML
• Files are highly portable and shareable
• Integrated support for GIT repositories enables multi-user sharing, versioning
25 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
AutoNetKit
Network Information DB
XML Topology Definition
Configurations
Topology Renderings
AutoNetKit Auto-Configuration
AutoNetKit:
• Understands OS-specific configuration constructs
• Presents graphical representations of topology attributes
• Converts configurations between different OS-types and platforms
26 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Create Routers • Identify Type / Flavor • Associate Image (Glance) • Identify / Assign Resources • Associate Configuration • Launch the VM (Nova)
Create Networks / Links • Identify Links and End-Points • Assign End-Points to VMs • Assign Network / Link Characteristics
• Launch the Switch (Neutron)
XML Topology Definition
The Services Topology Director orchestrates the creation of VIRL virtual routers and inter-router links based on the XML-based topology definition and configurations based by VM Maestro
Services Topology Director
27 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
VM Maestro
Services Topology Director
Topology Graph with Router Configurations
1
2
Router Configurations
3
Topology Views 4
5 6
Virtual Machines / Switches
7
8A1-Console: 17000 A1-Aux: 17001 …
VIRL Workflow
28 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
VIRL Family
Cisco Modeling Labs
For Corporate users; multi-user network modeling, inc. TAC support
Developers
Individuals
VIRL Personal Edition
For Individual users, developers, students etc.
Multi-purpose platform to innovate for SDN / NFV / Cloud paradigms.
/dev/innovate
29 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
VIRL Family VIRL Personal
• Personal Use
• 15 Cisco nodes (fixed)
• Active call home (7 days off-net)
• NO TAC support
• VM images included • IOSv • IOS XRv • CSR1000v • NXOSv • More to follow
Cisco Modeling Labs
• Multi User
• Scale from 15 … X Nodes
• No active call home
• TAC support
• VM images included • IOSv • Linux Server • Other VM images can be added
30 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
• NX-OSv: All features and upgrades – Completely FREE of charge!
• VIRL Personal is $200/year
Licensing for NX-OSv
31 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Creating Topologies using VIRL - Simulating Real World Use Cases & Success Stories
32 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
1. L2 – Fabric Path 2. NX-OSv Layer 3 Topology
Simulating Real World Use Cases & Success Stories
33 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
VM Maestro
• The graphical topology editing tool
• Enables rapid definition of network elements: ü Routers ü Links ü Protocols ü Facilities
• Supports complex topologies
• Manages simulations
34 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Use Case #1 – Fabric Path
35 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Fabric Path – Simulating Leaf & Spine Nodes
36 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Fabric Path – Simulating Leaf & Spine Nodes
37 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Use Case #2 – NX-OSv Layer 3 Topology
38 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Scaling Physical Topology with NX-OSv Nodes
39 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
DCI using BGP, MPLS
DC-1
DC-2
DCI
40 © 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
• DevNet sessions - https://app.smartsheet.com/b/form?EQBCT=cb025e00120b45899fa75b85eca2c0a7
• DevNet learning labs - http://bit.ly/1DeoPsl
• http://wwwin-drrc.cisco.com/virl/download/ [Cisco Internal]
• http://virl.cisco.com/
• https://github.com/datacenter/nexus7000
• https://github.com/VIRL-Open/sample-topologies
• https://dcloud-sng-web-1.cisco.com/dCloud/
References