Beruflich Dokumente
Kultur Dokumente
• Summary
40%
of today’s Top-10 incumbents
(in terms of market share)
will be digitally disrupted
https://www.imd.org/uupload/IMD.WebSite/DBT/Digital_Vortex_06182015.pdf
http://www.economist.com/news/business/21647317-messaging-services-are-rapidly-growing-beyond-online-chat-message-medium
https://hbr.org/product/leading-digital-turning-technology-into-business-transformation/17
© 2016 Cisco and/or its affiliates. All rights reserved. 5
Digital Transformation is Moving IT to the Boardroom
© 2016 Cisco and/or its affiliates. All rights reserved. TECCRS-2700 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Public 6 6
Cisco Enterprise Networking Vision
Deployment Speed
Network Expenses
Computing Networking
100%
67%
33%
0
Seconds 0 10 100 1000
CAPEX OPEX
Source: Forrester Source: Open Compute Project
10
© 2016 Cisco and/or its affiliates. All rights reserved.
The Network.
Digital NetworkIntuitive.
Architecture (DNA)
Powered by Intent. Informed by Context.
LEARNING
Network-enabled Applications
Cloud-enabled | Software-delivered
SECURITY
© 2016 Cisco and/or its affiliates. All rights reserved. 1
11
Introducing DNA Center
Realizing vision of the intent-powered intuitive network
Assurance and
Policy Automation
Analytics
Translate business intent Reduce manual operations Use context to turn data into
into network policy and cost associated with intelligence
human errors
DNA Center
Identity Services Engine Automation Analytics
Non-Standard Change
New device/site deployment
3% Feature configs:
Security
2% ACL updates
12% Other
Non-Standard Changes :
Interfaces Configuration Interfaces Configuration SSID’s
Use Case:
DHCP
Server DNS • Adding a new Syslog (Ex:
Server
North EMEAR Splunk) in the network
America
• SoX requirements to update
password every 6 months
Profile Based
Deployment § Configuration Compliance
Validation against Profile
Network After § Remediation of Configuration to
Compliance Golden Config
REST API
HTTPS/XML based
(Cisco Active Advisor) Open schema
PnP Server
PnP Agent
• Image Repository to
centrally store Software
Images, VNF Images and
Network Container Images
Platform extensibility for building API and Data Models across multiple Integrations with complimentary
custom apps stages in DNA Stack platforms *
Firehose * Cisco Assets
Graph API
Industry
Connectors Contextual Search Integrations
SECURITY
Protected Assets
Production Servers Development Servers Internet Access
Employee
User Identity and Topology Controller-Led
Networking Deployment
Source
Policy types
1. Access Policies
• Access to the network is governed by ISE
Credentials
Directory)
CASB
pxGrid
Profiling
Authenticate & ISE Posture
Location
Vulnerability
Behavior
Analytics
Authorize
Groups &
(AAA)
Policy
users
things
Scalable
Groups
Network
© 2016 Cisco and/or its affiliates. All rights reserved. 29
POLICY
Policy Authoring
Authorize
(AAA) Groups &
Policy Workflows
users
Fabric Management
things
Network
Traditional Networking CANNOT Keep Pace with the Demands of Digital Business
© 2016 Cisco and/or its affiliates. All rights reserved. 34
Business Value Propositions of Network Analytics
Collector
EM
Provision long-term storage, retrieval and representation of network metrics and events
Correlate all data points and permutations for cognitive and predictive analytics
Analytics
Engine
EM
SECURITY
Automation Analytics
Virtualization
Security
Automation Analytics
Virtualization
NCP NDP:
Network Controller Platform NDP Network Data Platform
NCP
(Network Controller) (Analytics Engine)
EM EM
Automation Analytics
Virtualization
NCP Assuring
the Intent NDP:
Network Controller Platform NCP NDP Network Data Platform
(Network Controller) EM EM (Analytics Engine)
Abstraction layer
NCP NDP
EM EM
SECURITY
Variety Veracity
Information
Data forms Data trustworthiness
• Structured, unstructured • Quality, validity
• Switch, router, AP, • Internal, partner, public
IoT sensor, firewall, Data
load balancer, DHCP, DNS
Extract meaningful insights from data Analytics Create value at the right time
FW LB WLC Sensor
Network
Telemetry CEP (*) Machine Learning Correlation
in the Cloud
Streaming
SNMP NetFlow Syslog Telemetry ...
AVC
NDP
Stream
ISE
Processing
Source IP: 1.1.1.2 Dest Port: 80
?
Topology
?
Location
Device
Dest Port: 80 ?
AVC
NDP
Stream
ISE
Processing
Source IP: 1.1.1.2 Dest Port: 80 ?
Topology
?
Location
Device
Dest Port: 80 ?
AVC
NDP
ISE Stream Source IP: 1.1.1.2 Dest Port: 80
Processing
Topology
?
Location
Dest Port: 80
Device
NetFlow
AVC
NDP
ISE Stream Source IP: 1.1.1.2 Dest Port: 80
Processing
Topology
Location
Dest Port: 80
Device
NetFlow
AVC
NDP
ISE Stream Source IP: 1.1.1.2 Dest Port: 80
Processing
Topology
Location
Dest Port: 80
Device
NetFlow
AVC
NDP
ISE Stream Source IP: 1.1.1.2 Dest Port: 80
Processing
Topology
Location
Dest Port: 80
Device Building 24 1st Floor
NetFlow
AVC
NDP
ISE Stream Source IP: 1.1.1.2 Dest Port: 80
Processing
Topology
Location
Dest Port: 80
Device Building 24 1st Floor
SECURITY
Netflix
Internet Video
Access Points
Facebook
YouTube
WAN
DHCP
SECURITY
Encrypted Traffic
Non-Encrypted
Traffic
© 2016 Cisco and/or its affiliates. All rights reserved. One Point of Management: All from Cisco DNA Center 76
Thank you.