Conquer the Cloud

Part 1: The Cloud and Your Network Is There a Gap?

Presenters Nick Lippis, Founder and CEO, Lippis Enterprises Rahul Tripathi, Director of Product Management, Services Routing, Cisco Host Robb Boyd, TechWiseTV Host, Cisco
September 26, 2012, 8 a.m. Pacific Time
2012 Cisco and/or its affiliates. All rights reserved. 2012 Cisco and/or its affiliates. All rights reserved. 1

Experts Provide Best Practices on How to Accelerate Your Organizations Journey to the Cloud FIVE-PART WEBCAST SERIES
September 26: The Cloud and Your NetworkIs There a Gap?
October 16: Optimizing App Performance from Branch to Cloud

November 1: How to Enforce Pervasive Security

November 15: Extending Virtualization

to the Branch Office

December 11: Designing Next-Generation,

Cloud-Ready WAN

2012 Cisco and/or its affiliates. All rights reserved.

Why Traditional WANs Are Challenged by Cloud Computing The Requirements for a Cloud-Ready Branch Office Solutions for Robust Security, Accelerated Application Performance, and Efficient Operations Management Tools That Improve Visibility and Control

Next Steps for Getting Your WAN Cloud-Ready

2012 Cisco and/or its affiliates. All rights reserved.

Conquer the Cloud: Part 1: The Cloud and Your NetworkIs There a Gap?
Nick Lippis Rahul Tripathi Robb Boyd, Host

Founder and CEO, Lippis Enterprises

Director, Product Management, Services Routing, Cisco

Host, TechWise TV

2012 Cisco and/or its affiliates. All rights reserved.

What Percent of Your Workload Will Migrate to the Cloud by the End of 2012?
A. 100% B. ~ 75% C. ~ 50%

D. ~ 25%
E. < 10% or none

2012 Cisco and/or its affiliates. All rights reserved.

60%
Move from Branch to Cloud
By 2015, more than 60% of enterprises will have migrated branch office services to cloud or virtualized servers.
Gartner, Analyst Review, February 2012

71%
Cloud Apps to Mobile Devices
71% of organizations are extending or planning on extending their cloud applications to mobile devices.
IDCs Mobile Enterprise Software Survey, 2011

80%
Video Demand in the Cloud
In 2012, almost 80% of IT organizations will increase their use of video with focus on deploying cloud-based collaboration services.
Cloud Networking Report, Ashton Metzler and Associates, 2011
6

2012 Cisco and/or its affiliates. All rights reserved.

I deal with servers and storage and I dont get why the network matters

Do I really need to buy a bunch of networking gear to get cloud deployed?

Network Is the Critical Path for Implementing Cloud Computing

2012 Cisco and/or its affiliates. All rights reserved. 7

Executive Management Cloud Computing Expectation/ Demand

Branch Office Cloud Readiness

Growing Gap

2000

2005

2010

2015

2020

t
8

2012 Cisco and/or its affiliates. All rights reserved.

Which Is Your Top Wide-Area Network (WAN) Challenge for Migrating to the Cloud?
A. B. C. D. E.

Application performance (response time, latency) WAN bandwidth Security and policy control Visibility and control of applications across the WAN Reliability of cloud applications

2012 Cisco and/or its affiliates. All rights reserved.

Key Findings: Cisco Global Cloud Networking Survey*

Expectation Reality: Top Network Challenges

20%
Organizations Who Plan to Have More Than 50% Apps in the Cloud by 2012

37%
Consider Cloud-Ready WAN to Be the Most Important Infrastructure for Cloud
28% Virtualized DC 21% SP SLA

60%
Cited Performance as a Key Challenge for Cloud

66%
Cited Security and Policy as a Key Challenge for Cloud

60%
Cited Management as a Key Challenge for Cloud

*1300+ global IT professionals across 13 countries, April, 2012

Need for a Major Architectural Shift in the Network

2012 Cisco and/or its affiliates. All rights reserved. 10

Backhaul and Hairpinning

BRANCH CLOUD FLOWS

Users

Internet

Public Cloud Private Cloud

MPLS

Does not provide cloud-computing access Its not cloud aware User experience of cloud services suffer
2012 Cisco and/or its affiliates. All rights reserved.

Limited cloud security services Outdated operational model and expensive Its only going to get worse as cloud computing forces more structural changes
11

Public CloudBackhauling and Hairpinning Major Challenge

90% of branch offices hairpin Internet traffic Drivers: lack of cloud security and old habits die hard Robs other applications of this bandwidth Not sustainable as workload/applications move to public cloud at speed Will be a major cause of poor user/ application experience
Public Hybrid

Private

Is Your Branch/WAN Ready for Cloud?

2012 Cisco and/or its affiliates. All rights reserved. 12

Private CloudVirtual Desktops

Users Cloud Services
IaaS

Keystroke

Mouse Control

Video

Screen

New York Branch Office

1500 Miles

Dallas Data Center

Bandwidth Explosion: ~20 VDI Sessions per T1 Line

2012 Cisco and/or its affiliates. All rights reserved.

WAN Latency: >200ms Need for Optimal VDI Performance

Lack of Visibility, Control, and Prioritization

13

Traditional network modelMPLS limitations Backhauling and hairpinning Limited bandwidth and low latency links Security concerns Impacts business process, forcing structural changes
You Want to be Ready for Cloud Computing Models
2012 Cisco and/or its affiliates. All rights reserved. 14

Right Experience for Endpoint Device

Secure the Cloud at Scale

Visibility and Monitor

BRANCH

CLOUD FLOWS
Private Cloud

Users
Internet

Public Cloud Private Cloud

MPLS

2012 Cisco and/or its affiliates. All rights reserved.

15

PaaS

IaaS
VoIP VDI HD Video

SaaS
App OS

Connecting Users to the Cloud with Confidence

Optimal Experience

Pervasive Security

Simplified Operations

2012 Cisco and/or its affiliates. All rights reserved.

16

Delivering Optimal Experience, Pervasive Security, and Simplified Operations

Users

Cloud Services

Branch
ISR G2

Cloud-Ready Platforms
ASR 1K CSR 1KV

Private/Public/ Hybrid

Branch Office
2012 Cisco and/or its affiliates. All rights reserved.

Campus/Data Center

Cloud
17

Delivering Optimal Experience, Pervasive Security, and Simplified Operations

Users

Cloud Services

Cloud-Ready Network Services

Visibility Optimization Security Collaboration App Hosting

Branch
ISR G2

Cloud-Ready Platforms
ASR 1K CSR 1KV

Private/Public/ Hybrid

Branch Office
2012 Cisco and/or its affiliates. All rights reserved.

Campus/Data Center

Cloud
18

Delivering Optimal Experience, Pervasive Security, and Simplified Operations

Management and Policy Users

Collaboration Survivability

Cloud Connectors
Web Security Cloud Storage Third Party

Cloud Services

Cloud-Ready Network Services

Visibility Optimization Security Collaboration App Hosting

Branch
ISR G2

Cloud-Ready Platforms
ASR 1K CSR 1KV

Private/Public/ Hybrid

Branch Office
2012 Cisco and/or its affiliates. All rights reserved.

Campus/Data Center

Cloud
19

Private WAN/ Internet

ASR 1000

ISR G2

Branch/User CSR

Traditional DC Private/Public/ Hybrid

High-Performance, High-Availability Platforms

ISR G2: Unified branch with wired/wireless WAN and integrated services ASR 1000: WAN aggregation up to 100 Gbps, with modular upgrades CSR 1000V: Flexible virtual form factor for cloud deployments
20

2012 Cisco and/or its affiliates. All rights reserved.

AVC, WAAS, PfR

Private WAN/ Internet

ASR 1000

ISR G2

WAAS/ vWAAS Traditional DC CSR Private/Public/ Hybrid

Branch/User

High-Performance, High-Availability Platforms

Application Visibility, Control, and Optimization

ISR G2: Unified branch with wired/wireless WAN and integrated services ASR 1000: WAN aggregation up to 100 Gbps, with modular upgrades CSR 1000V: Flexible virtual form factor for cloud deployments

AVC: Granular application visibility, response time, and SLA management WAAS: Bandwidth optimization and acceleration for apps, video, and VDI PfR: Optimal path selection based on performance and policy
21

2012 Cisco and/or its affiliates. All rights reserved.

CUBE Private WAN/ Internet

AVC, WAAS, PfR

ASR 1000

ISR G2

WAAS/ vWAAS Traditional DC Private/Public/ Hybrid

Branch/User HCS Connector CME/ SRST CSR

High-Performance, High-Availability Platforms

Application Visibility, Control, and Optimization

Efficient Rich Media Collaboration

ISR G2: Unified branch with wired/wireless WAN and integrated services ASR 1000: WAN aggregation up to 100 Gbps, with modular upgrades CSR 1000V: Flexible virtual form factor for cloud deployments

AVC: Granular application visibility, response time, and SLA management WAAS: Bandwidth optimization and acceleration for apps, video, and VDI PfR: Optimal path selection based on performance and policy

UC Gateways: API control and voice quality enhancement for TDM and SIP CME/E-SRST: Branchoptimized call control and enhanced survivability HCS Connector: Voice survivability for hosted collaboration services
22

2012 Cisco and/or its affiliates. All rights reserved.

 Branch banking personal

routinely utilized the Internet to assist customers quickly and efficiently

Increase of teller applications

on hosted desktops
IT needs visibility on store

to plan and prioritize traffic

Business continuity is critical

for timely transactions

Network is critical for a good

customer experience
Need high performance network

without compromising security

2012 Cisco and/or its affiliates. All rights reserved. 23

Which Type of Cloud Are You Primarily Deploying?

A. Public

B. Private
C. Hybrid (public/private) D. What is a cloud?

2012 Cisco and/or its affiliates. All rights reserved.

24

Private WAN/ Internet

ASR 1000

ISR G2

Branch/User CSR

Traditional DC Private/Public/ Hybrid

Any-to-Any Secure Connectivity

FlexVPN: Converged VPN at scale across branch, mobile user, and cloud GETVPN: Encrypted MPLS WAN for added privacy Next-generation encryption: Suite-B crypto with hardware acceleration

2012 Cisco and/or its affiliates. All rights reserved.

25

100G FW GET, FlexVPN, NGE Private WAN/ Internet

TrustSec

FW, IPS

ASR 1000

ISR G2

Branch/User CSR

Traditional DC Private/Public/ Hybrid

Any-to-Any Secure Connectivity

Integrated Threat Defense

FlexVPN: Converged VPN at scale across branch, mobile user, and cloud GETVPN: Encrypted MPLS WAN for added privacy Next-generation encryption: Suite-B crypto with hardware acceleration

Network integrated firewall: Up to 100 Gbps stateful inspection for IPv4/v6 TrustSec with ISE: End-toend user-aware access and policy control PCI 2.0 Compliance: Single box solution including simplified IPS
26

2012 Cisco and/or its affiliates. All rights reserved.

100G FW GET, FlexVPN, NGE Private WAN/ Internet

TrustSec

FW, IPS

ASR 1000

ISR G2

Branch/User

Traditional DC CSR Private/Public/ Hybrid

Cloud Web Security (Scansafe)

Any-to-Any Secure Connectivity

Integrated Threat Defense

Branch to Cloud Security

FlexVPN: Converged VPN at scale across branch, mobile user, and cloud GETVPN: Encrypted MPLS WAN for added privacy Next-generation encryption: Suite-B crypto with hardware acceleration

Network integrated firewall: Up to 100 Gbps stateful inspection for IPv4/v6 TrustSec with ISE: End-toend user-aware access and policy control PCI 2.0 Compliance: Single box solution including simplified IPS

CSR: Any-to-any enterprise VPN to connect users to external clouds Cloud Web Security (ScanSafe) Connector: Secure, direct access to cloud apps over Internet

2012 Cisco and/or its affiliates. All rights reserved.

27

 From a PCI compliance perspective

many retailers host their point of sale or PoS applications in a VPC environment
To assure PCI compliance its credit

card transactions are securely transmitted by terminating VPN connections within a VPC
Retailer has direct access and

control of their VPC environment to assure PCI compliance and reporting while also reducing their PCI infrastructure cost

2012 Cisco and/or its affiliates. All rights reserved.

28

5 Gbps

36 Gbps

Services and Performance On-Demand

ASR 1002-X: On-demand performance from 5 to 36 Gbps ISR G2: On-demand services in IOS or service engines with no truck rolls WAAS AppNav: Easy-to-scale headends as needs grow

2012 Cisco and/or its affiliates. All rights reserved.

29

50% Savings 5 Gbps 36 Gbps

Services and Performance On-Demand

Branch Infrastructure and Services Consolidation

ASR 1002-X: On-demand performance from 5 to 36 Gbps ISR G2: On-demand services in IOS or service engines with no truck rolls WAAS AppNav: Easy-to-scale headends as needs grow

UCS E-Series: Lean server leveraging virtualization, reduced power, and OpEx Network service hosting: Cisco and third-party virtual appliances

2012 Cisco and/or its affiliates. All rights reserved.

30

50% Savings 5 Gbps 36 Gbps

Services and Performance On-Demand

Branch Infrastructure and Services Consolidation

Unified Management

ASR 1002-X: On-demand performance from 5 to 36 Gbps ISR G2: On-demand services in IOS or service engines with no truck rolls WAAS AppNav: Easy-to-scale headends as needs grow

UCS E-Series: Lean server leveraging virtualization, reduced power, and OpEx Network service hosting: Cisco and third-party virtual appliances

Cisco Prime: Unified management with common look and feel across branch, WAN, DC, and cloud Cisco Prime Assurance Manager: Single plane monitoring for application traffic and user experience with AVC

2012 Cisco and/or its affiliates. All rights reserved.

31

 An Enterprise with advertising

campaign residing in a Terremark server in a VPC

The Enterprise could run a

redundant advertising campaign application locally

In the event of a brown out where

VPC access could be cut-off the advertising campaign will still proceed uninterrupted with local application hosting
Call services cannot be

uninterrupted in the event of network congestion or a brownout

2012 Cisco and/or its affiliates. All rights reserved. 32

 2012 Cisco and/or its affiliates. All rights reserved.

33

Implement Broadband Access at Branch Offices

Start to Eliminate Hairpinning by Experimenting with the Cloud Web Security (ScanSafe) Connector

Utilize AppNav to Pool Distributed WAN Optimization Network Services

Assess ASR 1000 Head End Capacity

Start to Use AVC to Gain Application Visibility

Experiment with VPC Solutions and the CSR 1000V Control Point

Assess the Branch Office Network for Cloud Readiness

Consider Using FlexVPN to Manage Existing VPNs and to Configure New Ones

2012 Cisco and/or its affiliates. All rights reserved.

34

Connect Users to the Cloud with Confidence

Branch Office
ISR G2 WAAS

Network and Device Security

CSR

Private and Public Could

WAAS

Secure
WAAS Express WAAS on SRE WAVE

FlexVPN Cloud Web Security TrustSec

Cloud Services Router 1000V

Virtual WAAS

WAN and Cloud Edge

ASR 1000

Network Management
Cisco Prime

Mobile and Remote Users

Desktop Software

WAAS
2012 Cisco and/or its affiliates. All rights reserved.

WAVE

WAAS Mobile

AnyConnect
35

CONQUER THE CLOUD WEBCAST SERIES

October 16: Optimizing App Performance from Branch to Cloud
November 1: How to Enforce Pervasive Security

November 15: Extending Virtualization

to the Branch Office

December 11: Designing

Next-Generation, Cloud-Ready WAN

2012 Cisco and/or its affiliates. All rights reserved.

36

 Test your cloud readiness

knowledge
Step 1: Download the Cisco Enterprise WAN app on your mobile device Step 2: Go to Trivia Step 3: Take our challenge
Challenge open until Friday, 9/28 midnight Pacific Time

Top three winners

1st: AppleTV 2nd: Jawbone Icon Headset 3rd: Cisco Press Book http://tinyurl.com/ciscoewan
2012 Cisco and/or its affiliates. All rights reserved. 37

Cisco Enterprise WAN

blogs.cisco.com/go/bn Facebook: http://www.facebook.com/ciscoenterprisewan Twitter: @ciscoenterprise

Nick Lippis
Principal Analyst and CEO, Lippis nick@lippis.com Twitter: @NickLippis

TechWiseTV
Techwisetv.com Twitter: @ciscocin

2012 Cisco and/or its affiliates. All rights reserved.

38

Thank You

2012 Cisco and/or its affiliates. All rights reserved.

39