CCNA Datacenter N1KV Intro Final

© 2013 Cisco and/or its affiliates. All rights reserved. 1

DCICT Introduction to Nexus 1000V Madhu Somu CCIE,VCP

17-Jan-2013


• Congratulations on choosing the CCNA DC certification path!

This CCNA career path is for datacenter professionals who want to prove their technical expertise implementing & maintaining datacenter technologies & products at an associate level.

• Webinars will be weekly on various topics

• Want to see a certain topic covered – let us know!

• Guest speakers from various groups within Cisco

• Discussion threads for each Webinar topic created on Learning Network forum

• Any missed Webinars will be available shortly after the live delivery via recorded VOD posted to Study Group


Data Center Technologies

1.0 Cisco data center fundamental concepts

Describe network architectures for the data center (LAN, SAN)

Describe the modular approach in network design

Describe the data center core layer

Describe the data center aggregation layer

Describe the data center access layer

Describe the collapse core model

Describe Cisco FabricPath

Identify key differentiator between DCI and network interconnectivity

Describe, configure, and verify vPC

Describe the functionality of and configure port channels

Describe and configure VDC

Describe the edge and core layers of the SAN

Describe the Cisco Nexus product family

Configure and verify network connectivity

Identify control and data plane traffic

Perform initial setup

2.0 Data center unified fabric

Describe FCoE

Describe FCoE multihop

Describe VIFs

Describe FEX products


3.0 Storage networking

Describe the initiator target

Verify SAN switch operations

Describe basic SAN connectivity

Describe the different types of storage array connectivity

Verify name server login

Describe, configure, and verify zoning


Describe, configure, and verify VSAN

4.0 Data center virtualization

Describe device virtualization

Describe server virtualization

Describe the Cisco Nexus 1000V Switch

Verify initial setup and operation for the Cisco Nexus 1000V Switch 5.0 Unified computing

Describe the Cisco UCS product family

Describe the Cisco UCS Manager

Describe, configure, and verify cluster configuration

Describe and verify discovery operation

Describe, configure, and verify connectivity


Describe the key features of the Cisco UCS Manager

6.0 Data center network services

Describe standard Cisco ACE features for load balancing

Describe server load-balancing virtual context and high availability

Describe server load-balancing management options

Describe the benefits of the Cisco Global Load Balancing Solution

Describe how the Cisco Global Load Balancing Solution integrates with local Cisco

load balancers

Describe the Cisco WAAS need and advantages in the data center


What is Cisco CloudLab?

Cisco CloudLab provides a dedicated cloud based setup to for demonstrations and

hands-on labs. Demos and labs consist of pre-packaged virtual Lab Pod (vPod) that

can be used on-demand and without the need of advanced scheduling.

How can I get access to Cisco CloudLab?

Cisco CloudLab is available to Cisco employees, customers, channel and technology

partners for training and demonstration usage. Access to Cisco CloudLab requires a valid

Cisco.com (CCO) account which can be obtained free of charge.

You must have a Cisco employee as sponsor in order to access Cisco CloudLab. Upon

initial login you have the opportunity to specify your sponsor, who will receive an e-mail

requesting verification of your need for access. Once that verification is received, your

access will be enabled and you will receive a confirmation e-mail.

Visit http://cloudlab.cisco.com

http://tools.cisco.com/RPF/register/register.do

http://cloudlab.cisco.com/



• Given : Understanding of Basic Networking and Server Virtualization Basics

• Action : The Learner will be able to understand Virtual Machine Networking Concepts

• Result : Demonstrate understanding of Cisco Nexus1000v Switching platform and define advanced Virtual Machine networking concepts such as adding server virtualization intelligence into the network.

• Server Virtualization Issues

• Cisco Nexus 1000v Components and Architecture

• Port-Profiles Concepts - Policy Based VM Connectivity

• Advance Features


Think of Problems Virtual Machines create

when it comes to Networking !


1 vMotion Moves VMs Across Physical Ports—the

Network Policy Should Follow


2 Impossible to View or Apply Network Policy to Locally

Switched Traffic


Need Shared Nomenclature Between Network Admin

and Server Admin 3

VMware vCenter

Manager

Switch Supervisor Interface


Host Host

Network

Admin

Server

Admin

Host Host

The rest of the network…

vSwitch vSwitch vSwitch vSwitch

VMs on Wrong VLANs!

No Network Visibility or Control!

Unchaperoned VM-to-VM

communication!

No Policy and VLAN

control!

Server Admin must

handle network

configuration



• Industry’s most advanced software switch for VMware vSphere

• Built on Cisco NX-OS

• Compatible with all switches

• Compatible with all servers on the VMware Hardware Compatibility List

• Winner of VMWorld Best in Show 2008 and Cisco Most Innovative Product of 2009

vSphere

1000V

VEM

1000V VSM

VM VM VM VM

Server

Physical Switches


vSphere

Port Profiles

WEB Apps

HR

DB

DMZ

Policy-Based

VM Connectivity

Non-Disruptive

Operational Model

vSphere

Nexus

1000V

VEM

Nexus

1000V

VEM

VM VM VM VM VM VM VM VM

Nexus 1000V VSM

VM Connection Policy

Defined in the network

Applied in Virtual Center

Linked to VM UUID

VMware vCenter

Server Server

Physical Switches

Mobility of Network and Security

Properties


n1000v# show port-profile name WebProfile

port-profile WebServers

description:

status: enabled

capability uplink: no

system vlans:

port-group: WebServers

config attributes:

switchport mode access

switchport access vlan 110

no shutdown

evaluated config attributes:

switchport mode access

switchport access vlan 110

no shutdown

assigned interfaces:

Veth10

Support Commands Include:

Port management

VLAN

PVLAN

Port-Channel

ACL

Netflow

Port security

QoS

15


Policy-Based

VM Connectivity

Non-Disruptive

Operational Model

vSphere

Nexus

1000V

VEM

vSphere

Nexus

1000V

VEM

Nexus 1000V VSM

VM VM VM VM


Properties

VM VM VM VM VMs Need to Move

VMotion

DRS

SW Upgrade/Patch

Hardware Failure

VMware vCenter

Server Server

Physical Switches

VM VM VM VM

Property Mobility

VMotion for the network

Ensures VM security

Maintains connection state


Policy-Based

VM Connectivity

vSphere

Nexus

1000V

VEM

vSphere

Nexus

1000V

VEM

Nexus 1000V VSM

VM VM VM VM VI Admin Benefits

Maintains existing VM mgmt

Reduces deployment time

Improves scalability

Reduces operational workload

Enables VM-level visibility

Non-Disruptive

Operational Model

Network Admin Benefits

Unifies network mgmt and ops

Improves operational security

Enhances VM network features

Ensures policy persistence

Enables VM-level visibility

VMware vCenter

Server Server

Physical Switches

VM VM VM VM


Properties



Modular Switch

…

Linecard-N

Supervisor-1

Supervisor-2

Linecard-1

Linecard-2

Back P

lan

e

Server 1 Server 2 Server 3

Comparison to a Physical Switch

Network

Admin

Server

Admin


Modular Switch

…

Linecard-N

Supervisor-1

Supervisor-2

Linecard-1

Linecard-2

Back P

lan

e

Moving to a Virtual Environment

Network

Admin

Server

Admin

Hypervisor Hypervisor Hypervisor



Modular Switch

…

Linecard-N

Supervisor-1

Supervisor-2

Linecard-1

Linecard-2

Back P

lan

e

Supervisors Virtual Supervisor Modules (VSMs)

VSM1

VSM2

Virtual Appliance

VSM: Virtual Supervisor Module

Network

Admin

Server

Admin



Modular Switch

…

Linecard-N

Supervisor-1

Supervisor-2

Linecard-1

Linecard-2

Back P

lan

e

Linecards Virtual Ethernet Modules (VEMs)

VEM-N VEM-1 VEM-2


VEM: Virtual Ethernet Module

VSM1

VSM2

Virtual Appliance

Network

Admin

Server

Admin



VSM + VEMs = Nexus 1000 Virtual Chassis

VEM-N VEM-1 VEM-2



vEth: Virtual Ethernet port

• 200+ vEth ports per VEM

• 2K vEths per N1K

• 64 VEMs per N1K (connected by L2 or L3)

• Multiple N1Ks can be created (under single VM management center)

L2 M

ode

L3

Mo

de

VSM1

VSM2

Virtual Appliance


pod5-vsm# show module

Mod Ports Module-Type Model Status

--- ----- -------------------------------- ------------------ ------------

1 0 Virtual Supervisor Module Nexus1000V active *

2 0 Virtual Supervisor Module Nexus1000V ha-standby

3 248 Virtual Ethernet Module NA ok

Cisco VSMs

A B C D E F



26 26

• Offloads setup and daily vSwitch tasks to the network team

• Provides a common nomenclature for network and server teams to discuss network policy – the port profile


27 27

• Enabled visibility and troubleshooting of VM traffic

• Standardizes workflow for virtual and physical networks

• Overcomes hurdles to virtualize applications with high bandwidth, highly secure applications (e.g. DMZ, regulatory, tier-1)

BEFORE 1000V AFTER 1000V


IPv6 Support: As a Layer-2 switch, Nexus 1000V supports forwarding of IPv6 packets as well as Layer-2 features such as PVLAN and Port Security. Also,

management interface can be assigned an IPv6 address.

Switching

Security

Provisioning

Visibility

Management

Network Services

28

VLAN/VXLAN, IGMP Snooping, QoS Marking (COS & DSCP), Class-based WFQ

Policy Mobility, Private VLANS, Access Control Lists , Port Security, Dynamic ARP inspection, IP Source Guard, DHCP Snooping

vPath technology to support services e.g. VSG, vWAAS

Automated vSwitch Config, Port Profiles, Virtual Centre Integration

vMotion, NetFlow v.9 w/ NDE, CDP v.2, VM-Level Interface Statistics, SPAN & ERSPAN (policy-based)

Cisco CLI, Radius, TACACs, Syslog, SNMP (v.1, 2, 3


Virtual Appliance

N1KV

VSM

VEM

vPath

VEM

vPath

Win8 Hyper-V* XenServer**

vWAAS VSG

VEM

vPath

ESX

VEM

vPath

KVM**

VXLAN VXLAN VXLAN VXLAN

ASA1KV vACE



NX-OS

Control

Plane

NX-OS

Data

Plane

vPath: Virtual Service Datapath

VXLAN: Virtual Extensible LAN



• Allows network administrators to manage the Nexus 1000V Virtual Supervisor Module (VSM) as a standard Cisco switch, with all 1000V features

• Physical appliance for virtual network services (VSM, NAM, etc.)

• Supported by CiscoWorks LAN Management Solution (LMS)

• The Nexus 1010 is a networking appliance to host four Nexus 1000V virtual supervisor modules (VSM)


vSphere

Nexus

1000V

VM VM VM 1000V

VSM x 1

Server

VSM on Virtual Machine

vSphere

Nexus

1000V

VEM

VM VM VM

Server

VM

Cisco Nexus 1010

1000V

VSM x 4

VSM on Nexus 1010

Physical Switches Physical Switches


Server Admin Network Admin

Offload VSM Install/Mgmt to Network Team

VSM Doesn’t Need VMware ESX Licensing

Install The VSM Like a Standard Cisco Switch

Prepare for VM Sprawl with Ample Scalability (256 Hosts Per Nexus 1010 Appliance)


VSM on Virtual Machine VSM on Nexus 1010

Nexus 1000V features and scalability

VEM running on vSphere 4 Enterprise Plus

NX-OS high availability of VSM

64 hosts per VSM

Nexus 1000V features and scalability

VEM running on vSphere 4 Enterprise Plus

NX-OS high availability of VSM

64 hosts per VSM, 4 VSMs, 256 hosts in total

Installation like a standard Cisco switch

Network Team manages the switch hardware

Dedicated services appliance (NAM, etc.)

Pure software deployment


Virtual Appliance Nexus 1010 / 1010-X

vWAAS VSG VSM

NAM

NAM

VSG

VSG

Primary

Secondary

VSM

VSM

L3

Co

nn

ectivity

Nexus 1010 / 1010-X

NX-OS based physical appliance

vCenter access not required

Network team deploys & manages it

Up to 10 virtual blades on Nexus 1010-X

Virtual Blades

Virtual Supervisor Module (VSM)

Network Analysis Module (NAM)

Virtual Security Gateway (VSG)

Data Center Network Manager (DCNM)

ASA 1000V

VEM-2

vPath

VEM-1

vPath

Win8 Hyper-V* XenServer**

VEM-1

vPath

ESX

VEM-2

vPath

KVM**

VXLAN VXLAN VXLAN VXLAN

DCNM

DCNM


http://www.cisco.com/en/US/products/ps9902/prod_installation_guides_list.html


http://www.cisco.com/en/US/products/ps9902/products_installation_and_configuration_guides_list.html


http://www.cisco.com/en/US/products/ps9902/prod_command_reference_list.html


• Next Webinar: Thurs. Jan. 24th

• Keep checking the Cisco Learning Network site for new sessions https://learningnetwork.cisco.com/docs/DOC-16438

Topic Date Presenter

Introduction to Unified IO Jan 24th Michael Brown

Cisco WAAS Overview Jan 31th Zac Seils

NXOS Command Line Feb 7th Michael Brown

[YOUR SUGGESTION HERE!] Feb 14th TBD

Introduction to Unified Computing System Feb 21st Robert Burns

Introduction to FCoE Protocols Mar 7th Ozden Karakok

https://learningnetwork.cisco.com/docs/DOC-16438





• Once you exit the session, your

survey will open in your browser.

• How can we make these Webinars

better?

• What topics do you want to see?

• Complete the quick survey for your

change to win a free E-book from

Cisco

• Winners selected from each session.

Congratulations for Last week Winners - Sam Chapman, Chris Kane !!!

Thank you.

CCNA Datacenter N1KV Intro Final

Documents

cisco andor

cisco cloudlab

cisco fabricpath

cisco waas

cisco ucs manager

data center virtualization

data center technologies

data center lan