Beruflich Dokumente
Kultur Dokumente
A CONNECTED WORLD
Javier Grizzuti
System Engineer Juniper Networks
Mayo 2016
Our Strategy
Vision: To Be the Worldwide Leader of Network Innovation
PERFORMANCE
Innovation Matters Across the Network
Campus/
Data Center
Branch
Edge/ Access
Core
& Aggregation
WHY JUNIPER?
Daemon X
Switching
Routing
Well-defined interfaces for expansion of
Control Plane
functions/platforms
Scales performance, enhances resiliency,
Kernel enables redundancy
Open Management & Development
mKernel Interfaces
Data Plane
HAL NETCONF/XML/DMI
Junos API
Automation
Physical Interfaces
Operating Junos
COMMIT MODEL
1 2 3
commit
load candidate validated active
rollback
configuration configuration configuration
commit
confirmed commit commit 1
scripts validations 49
Benefits
• Avert downtime caused by configuration errors
• Reduce time for configuration and changes
• Enforce compliance to policies
• Avoid risks of transient configuration state
• Compare configurations
• Easily roll back to past configurations
HIERARCHICAL COMMAND
STRUCTURE
• Logical structure organizes device
features and functions
Top level
– Deeper levels are more and more node
"off-box"
"on-box" JUNOS
operations OSS integration & Increase
Business
Lower
Risk & XML API Workflow automation
Revenue
OpEx commits
events Net.Eng. Tools
NETCONF/DMI
Management System
NETCONF XML
Security Routing Switching
PROTOCOL
(RFC4741)
Automate config changes, Secure TCP/IP
remote invocation of connections via
SSHv2 (RFC4742)
operational commands,
collection of logs
Output Output
Output XML XML
XML instructions instructions
Input instructions Input on what to Input on actions
Blank on what to XML display XML to take
XML display event (if anything) Junos (make changes,
document description configuration issue warnings,
errors, etc.)
Junos Infrastructure
JUNOS “ON-BOX” AUTOMATION
On-box automation is used to automate configuration, operations, and respond to network event
conditions. These programs use the same XML core OS infrastructure as the off-box programs. This ensures
that as new Junos features are released they become immediately available to both on-box and off-box
automation.
operations events commit configuration
Instructs Junos of actions to take in Instructs Junos during the
Instructs Junos as prompted by the
response to events configuration/commit process
command-line, OSS, or other programs
Gather relevant troubleshooting Abstracts a complex configuration
Create custom commands for specific
information and correlate events from the into a simple set of base commands
solution/user needs
first leading indicators Options to provide warnings, post
Combine a series of iterative steps to
Automate event responses with a set of logs, prevent the configuration, self-
diagnose network problems
actions correct the configuration
Perform controlled configuration changes
Key Benefits Key Benefits
Key Benefits
Automate time-of-day configuration Assure compliance to business rules
Reduce risk and improve productivity changes (e.g. “green” power-saving and network/security policies
Automate troubleshooting actions) Provide change management to
Controlled configuration Speed time-to-resolve to reduce the avert and even correct errors
downtime and cost of events Simplify and speed setup of complex
Automate response to leading indicators configuration
to minimize the impact of events
JUNIPER
SYSTEMS
Recent Network Innovations
Revolutionizing Routing. MetaFabric and UN1TE Software Defined -
Again. Switching Secure Networks.
NEW SILICON:
JUNOS FUSION: SKY ATP WITH SPOTLIGHT SECURE:
First 500G performance (1tbps) 400GE
Centralized point of management; Centralized threat detection and mitigation;
pipeline ready
“Virtual buffer” technology adaptable real-time policy enforcement
PTX5000 & PTX3000: QFX10000 LINE: SECURITY DIRECTOR: Industry
81% more power efficient than nearest Market leading 100G density; seamless breakthrough design; consolidated security
competitor 10/40/100GE transition management; open policy engine foundation
NORTHSTAR: JUNOS DEVOPS SUITE:
First SDN controller to automate control of PHYSICAL & VIRTUAL SRX: Consistent
Unparalleled automation; cloud firewall capabilities; policy enforcement
multiple network layers analytics engine points; deploy with agility
MX Strategy
Pillars of Strategy
• Metro, DC, Colo optimized platforms
• Multi-Terabit scale line cards on MX960 & MX2K
Continuous Product Innovation • Virtualized Routing Engine
Scale, Performance, Convergence • SMP, RPD modularity; RSVP hyper-scaling
• High Availability - LFA, Service mirroring
MX Roadmap 32 Tbps
15 Tbps 24 Tbps
5 Tbps 13 Tbps
8 Tbps
3 Tbps 3 Tbps
1 Tbps 6.0T
N x 10Gbps 80 Gbps 2.4T
400G
Cascade
Port
Upstream
Port
Linux Forwarding
Operating System
LFOS … Satellite Device (SD)
Yocto Linux
QFX5100
LAG
MX EX4300
Flexible
Campus- and data center-optimized
Extensive protocol support
Feature rich
Future ready
EX9208 EX9214
EX9204 Scalable
Logical scale
High density
Up to 13.2 Tbps chassis capacity
1GbE, 10GbE, 40GbE and 100GbE
Juniper One Custom Silicon
EX9200 Line Cards
40 x 10/100/1000BASE-T
1GbE
40 x 100FX/1000BASE-X SFP
Line Cards
40 x 100FX/1000BASE-X SFP MACsec
EX9200-MPC
1 GBE/10GBE EX9200-20F-M-MIC
Line Card EX9200-40GT-MIC
EX9200-10XS-MIC
Access Layer
Update
Juniper’s Innovation in
Enterprise Networks
EX Series Portfolio
Core
100GbE
Aggregation
EX9200
Performance
EX4600
EX4550
EX8200
EX4500
10GbE\40GbE
Access
EX4300
EX3400 Logical Scale
EX3300 Modular
EX2300-C EX2300
Standard Compliance
IEEE 802.3at (POE +)
Management Simplification
Junos Virtual Chassis (4 devices - 10G support)
Management Simplification
Junos Virtual Chassis (10 Devices - 40G support)
MACsec
Supported on 1G and 10G interfaces
EX4300 OVERVIEW
1U 24/48 Port 1GbE Switch
Wire-rate performance on all ports
4 x 10GbE uplink module
4x40GbE QSFP+ fixed ports
MacSec and EEE capable
Front-back and back-front airflow
Extensive Layer 3 (requires license)
Virtual Chassis Technology
Enhanced 320 Gbps backplane
Manage up to 10 as a single device
Standard 10GbE/40GbE cables
Mix 1GbE and 10GbE with QFX3500
Industry-only cross-platform Virtual Chassis
Geographically distributed
Automation & Orchestration
Automation with Puppet and Chef
Openstack integration
Openflow support
SRX300 Series and SRX550
Services Gateways
For Branch Firewall and Secure Router
New SRX Product Line
Branch Edge Data Center
1T SRX5400
SRX3600
SRX3400
100G vSRX
(Virtual SRX) SRX1500
10G SRX550-M
SRX345
SRX340
1G SRX320
SRX300
IPSec VPN* 100 Mbps 200 Mbps 300 Mbps 350 Mbps
Application Control
Anti-virus Botnets/C&C Sandboxing
& Visibility
Rich Reporting
User-based Firewall Web Filtering Custom Feeds, APT
& Analytics