Page 1
© 2011 Cisco and/or its affiliates. All rights reserved. 1 All Specifications are subject to change without notice © 2011 Cisco and/or its affiliates. All rights reserved. All Specifications are subject to change without notice 1
Overview: Abdul Khan
Architecture: Manish Mittal
September, 2011
Page 2
© 2011 Cisco and/or its affiliates. All rights reserved. 2 All Specifications are subject to change without notice
• Refers to the separation of the physical endpoint from the logical desktop
• Endpoints may be variety of devices; applications are hosted where ever the best user experience is offered (locally at endpoint or data center)
• Access from the endpoint to the logical desktop is delivered through the network
TM
Page 3
© 2011 Cisco and/or its affiliates. All rights reserved. 3 All Specifications are subject to change without notice
Flexibility / Business Continuity
Total Cost of Ownership
Data Security
Desktop Virtualization Drivers
Fragmented Solution Set
Maintaining High Quality for Video, Voice Experience
Desktop Virtualization Challenges
Return on Investment
Page 4
© 2011 Cisco and/or its affiliates. All rights reserved. 4 All Specifications are subject to change without notice
Desktop Virtualization Suite of Technologies
Desktop Streaming
Application Virtualization
Terminal Services
VDI Virtual Desktop
Infrastructure
Industry Terms for VDI: Gartner: ―Hosted Virtual
Desktop‖ (HVD)
IDC: ―Centralized Virtual
Desktop‖
Cisco
VXI
End-to-End
Architecture
& Validation
Supporting
Rich Media
/UC
Enhanced
Security
Application
Acceleration
POE /
Energy Wise
Page 5
© 2011 Cisco and/or its affiliates. All rights reserved. 5 All Specifications are subject to change without notice
Collaboration Borderless
Networks
Data Center
Virtualization
Virtual
Workspace
Cisco
VXI
TCO / ROI
Security
Rich Media Experience
System Integration
―Deliver a superior collaboration and rich media user experience with best in class
ROI in a fully integrated, open and validated desktop virtualization solution‖
Page 6
© 2011 Cisco and/or its affiliates. All rights reserved. 6 All Specifications are subject to change without notice
Applications /Desktop OS
MS Office
Virtualized
Data Center Virtualized
Collaborative Workspace Generic VDI
No support
for UC or
Rich Media
ACE Unified
CM
Quad
ASA Nexus
1000v
Virtual Security Gateway
WAAS
Cisco Collaboration Applications
Hypervisor
Desktop Virtualization Software
Storage
Cisco Virtualization Experience Clients
Compute
UCS
Cisco
Products
WAAS
Virtualization-Aware
Borderless Network
Routing PoE
Switching
SiSi
CDN
Cius Business Tablet
Cisco VXC 22xx 21xx
Zero Client
End-to-End, Management and Optimization
Cisco®
Identity
Services
Engine
AnyConnect
AnyConnect
TM TM
TM TM
TM TM
TM
TM
TM
Cisco Confidential
Page 7
© 2011 Cisco and/or its affiliates. All rights reserved. 7 All Specifications are subject to change without notice
Media Rich Experience
2.0
• New client
experience
• Power over
Ethernet
2.5
• Rich media
clients
Dynamic User Experience
• Branch
Survivability
• Security
• Scalability
• System
integration
• Optimized DV
compute
platform
Integrated Desktop Virtualization System
1
• Massive
scalability to
consumers
• Fully
converged
DV and
collaboration
Universal VXI
Network Aware & Cloud VXI
• Enable new
delivery models
for DV,
collaboration
• Manageability
4
5
3
2
* Timelines and features are subject to change
Page 8
© 2011 Cisco and/or its affiliates. All rights reserved. 8 All Specifications are subject to change without notice © 2011 Cisco and/or its affiliates. All rights reserved. 8 All Specifications are subject to change without notice
Healthcare
University
Financial
• 3,000 users Windows XP
• 5 year savings 32%
• 3,750 users Windows 7
• 5 year saving 18%
• 3,000 users Windows 7
• 6 year savings 24%
• Saves $1,000 per user per
year
• 1,200 users Windows 7
• 5 year savings 22% Government
Traditional Cisco VXI
Desktop Support Client Hardware
Data Center Power
Software Maintenance
Desktop
Support
– 37%
Power
-73%
Total Savings
16%
5 Year Desktop TCO
Client H/W
-46%
Page 9
© 2011 Cisco and/or its affiliates. All rights reserved. 9 All Specifications are subject to change without notice © 2011 Cisco and/or its affiliates. All rights reserved. All Specifications are subject to change without notice 9
Manish Mittal
Page 10
© 2011 Cisco and/or its affiliates. All rights reserved. 10 All Specifications are subject to change without notice
Guest Workers
• Rich PC
experience
• Instant resets
• Standard
application set
• University
computer lab
• Training center
Office Workers
• Rich PC
experience
• Personal
• Diverse
applications
and users
• Finance
• Operations
• Marketing
• Administration
Remote Workers
• Secured access
and control
• Location and
device flexibility
• Diverse
applications and
users
• Offshore workers
• Outsourcers,
contractors
• Branch offices
• Teleworkers
Mobile Workers
• Offline access
• Secure
• Diverse
applications and
users
• Sales
• Executives
• Field service
Task Workers
• Simple
• Locked down
• Limited
application
• Factory worker
• Retail clerk
• Bank teller
• Credit card
call center
Benefits
Knowledge Workers
Page 11
© 2011 Cisco and/or its affiliates. All rights reserved. 11 All Specifications are subject to change without notice
Where is computation happening? A
pp
lica
tio
n
OS
De
skto
p
Virtual Desktop Streaming Hosted Virtual Desktop
Application Streaming Hosted Virtual Application
Client-Based Computing Server-Based Computing
Synchronized Desktop
Apps
WinXP
Display Protocol
WinXP
Used VMware Hypervisor as an example. Could use any flavor of Hypervisor
Page 12
© 2011 Cisco and/or its affiliates. All rights reserved. 12 All Specifications are subject to change without notice
Connect to Connection Broker
1
Thin Client
Thick Client
Mobile Client
Identify
target
VM
2 Start
target
VM
4 Query for
user policy 3
Display Protocol
Authentication
Connection Broker
Active Directory
Virtual
Infrastructure
Management
5 Return
VM to
endpoint
Virtual Infrastructure
Connect
VM to
endpoint
6 7 Successful
connection
Page 13
© 2011 Cisco and/or its affiliates. All rights reserved. 13 All Specifications are subject to change without notice
• ICA/HDX
• Citrix Proprietary – Supports many advanced features
• 64 virtual channels
• TCP transport
• If the latency is greater than 30ms, Flash content is rendered on the server
• Encryption and compression on by default
• PCoIP/Teradici
• VMware software and hardware – Highly efficient
• Adaptive - compensates latency and bandwidth variations
• Supports 4 monitors and resolution upto 2560 x 1600
• 128-bit AES (On by default)
• UDP Transport – Most Security servers support TCP only
• RDP
• Protocol by Microsoft
• Citrix/VMware VDI deployment support
• TCP transport and AES support
TM
Page 14
© 2011 Cisco and/or its affiliates. All rights reserved. 14 All Specifications are subject to change without notice
Security
Optimization
Availability
Display protocol
over the Network
Branch Office
Branch Endpoints
Mobile Teleworker
Mobile
Teleworker
Endpoint
Fixed Teleworker
Fixed Teleworker
Endpoint
Campus
Campus
Endpoints
VPN
Datacenter
Bandwidth Requirements and Scale
• Local Area Network
• Wide Area Network – Nat/No-Nat
• VPN Tunnel/GRE
• MPLS – EIGRP
High Available
• Compute
• Provisioning and automation
Virtualization-Aware
Borderless Network Virtualized Data Center
Virtualized
Collaborative Workspace
Survivability using Network
redundancy
Page 15
© 2011 Cisco and/or its affiliates. All rights reserved. 15 All Specifications are subject to change without notice
• Media Embedded in Display Protocol
• Added Jitter and Latency for Voice. No QoS.
• Voice/Video in the display protocol Media flow goes all the way back to data center and back
• Heavy processing on virtual desktop in data center
• Bandwidth explosion
• Display protocol and possible endpoint become unstable
Virtual Desktop
Virtual Desktop
CUCM WAN
Thin
Client
Display Protocol
Thin
Client
Display Protocol
Media Flow
Media Flow
Data Center
Signalling
(SIP)
Signalling
(SIP)
Page 16
© 2011 Cisco and/or its affiliates. All rights reserved. 16 All Specifications are subject to change without notice
Data Center
End User
VXC
Signalling
(CTI)
Signalling
(CTI)
Media
Flow
Outside of Display
Protocol
Data Center
VM
VM VM VM
VM VM VM VM Connection
Broker
Desktop Virtualization S/W VMWare/Citrix
Hypervisor VMWare/Citrix
Desktop O/S
Ap
p
Ap
p
Dat
a
Cisco Call
Manager
VXC
Page 17
© 2011 Cisco and/or its affiliates. All rights reserved. 17 All Specifications are subject to change without notice
End-users see pixelization and bad UE without WAN Optimization/Acceleration
T1
Increasing bandwidth might not help
Video processed on HVD causing bandwidth and server compute overload
End-users experience no pixelization on LAN
Branch Router
Branch Office
Data Center
Video Source
Campus
• WAN’s effects on Users Experience
• Display Protocol Opaque to the Network
Routing Protocol
Display Protocol Video
Page 18
© 2011 Cisco and/or its affiliates. All rights reserved. 18 All Specifications are subject to change without notice
What is New? Optimization of virtual desktop protocols
- Support for Citrix (ICA) Acceleration Value: Support acceleration of Xen Desktop/XenApp
- Application aware DRE in 4.5
Value: Application performance improvement, Increased bandwidth savings
- Optimization for MMR and USB Redirect for rich media
and USB peripherals (Printing)
End-users experiences no pixelization
T1
Branch Router
Branch Office
Virtualized
Data Center
Video Source
Branch WAE Data Center WAE
WAN Acceleration for Display Protocol
Edge Router
End-users see pixelization as media is rendered from the data center
Cisco Confidential
Page 19
© 2011 Cisco and/or its affiliates. All rights reserved. 19 All Specifications are subject to change without notice
Protocol Vendor Transport Bandwidth
without WAAS
(Approx)
Cisco KW+
Bandwidth
without WAAS
(Approx)
Task Worker
Bandwidth
with WAAS
(Approx)
Task Worker
Remote
Desktop
Protocol
(RDP)
Microsoft TCP 3389 1.5 Mbps 384 Kbps 96 Kbps
Independent
Computing
Architecture
(ICA)
Citrix
XenDeskt
op
4.0/5.0/5.5
TCP 2598
CGP
TCP 1494
967 Kbps 120 Kbps 60 Kbps
PC over IP
(PCoIP)
Teradici /
VMware
Media –
UDP
50002/4172
Control –
TCP
50002/4172
1.5 Mbps 192 Kbps 192 Kbps
* Some Caveats apply, refer to Cisco VXI CVDs for more details
Page 20
© 2011 Cisco and/or its affiliates. All rights reserved. 20 All Specifications are subject to change without notice © 2011 Cisco and/or its affiliates. All rights reserved. 20
Network
Secure
End User Data Center
Only Cisco’s VXI Solution Unifies All Three
Deployment
Flexibility
Multiple secure
connectivity options
for different users and
endpoints
Cisco AnyConnect
802.1x
Cisco Virtual Office
Visibility and Control
for Virtualized
Environments
Integrated security for
Hosted Virtual
Desktops
Cisco VSG
Cisco Nexus1000v
High-Performance
Dynamic Security
Data Center Edge,
WAN, Branch Campus
and Mobile Client
connectivity
Cisco ASA
DMVPN
Cisco ASR
ISR G2
Secure
Collaborative Workspace
Page 21
© 2011 Cisco and/or its affiliates. All rights reserved. 21 All Specifications are subject to change without notice
• Anyconnect has the largest footprint of supported devices
Thick endpoints: Windows, Mac and Linux
Apple iOS 4 - Including iPhone
Cisco VXC endpoints not supported today
iPad and CIUS support Anyconnect 2.5 only
• Always On or On-Demand VPN
• Auto Re-Connect (Persistence)
• Built-In Digital Cert Support
• Optimal Gateway Selection
• Support for VDI Applications/ Receiver Support
Refurbished PC
VXC 22xx VXC 21xx CIUS
iPad Cisco Confidential
TM
Page 22
© 2011 Cisco and/or its affiliates. All rights reserved. 22 All Specifications are subject to change without notice
• AnyConnect on Mobile Client allows secure remote connections to corporate network and Virtual Desktops
• Split tunneling and ScanSafe allow secure remote access to Internet from local browser on the endpoint or from within Virtual Desktop
• Web traffic is inspected by WSA at HQ or in the ScanSafe Cloud
• VXI traffic is forwarded to the DataCenter
• Remote HVD access using Cisco VPN technology allows access to both VXI and non-VXI applications while still using a single, and in most cases existing, infrastructure.
WAN
Cisco ASA
Split Tunnel
Inside network
192.168.225.0 Mobile Consultant
SSL VPN Client
Tunnel IP
192.168.11.1 192.168.11.0 Outside
172.21.61.125
Internet
Internet Traffic
Page 23
© 2011 Cisco and/or its affiliates. All rights reserved. 23 All Specifications are subject to change without notice
Campus
Access Security Data Center
Employee Contractor Finance
Secure VXI Data Center
VSG
N1K
App Data Base Web
VSG
N1K
Cisco ACE
WAAS
DC DC
Network
McAfee MOVE-AV
VXI Network
Campus Cat4K
Anyconnect
w/ Split Tunnel
Internet
ASA
Secure
Display Traffic
Remote/Home User
Branch One
Branch Two
WAAS
Express
ISR-G2
Vo
ice/V
ideo
WAE
• ASA with Anyconnect provide secure remote access solution for a large device footprint
• Scansafe in the cloud allows for secure internet access compliant with enterprise policy UPoE and PoE+ provide de-cluttered and energy efficient virtual workspace
• DMVPN allows secure, dynamic and direct branch to branch collaboration
• WAAS helps accelerate Display Protocol performance
• ISR with PfR allows for virtualization aware application routing and provides high availability in case of WAN failure
Page 24
© 2011 Cisco and/or its affiliates. All rights reserved. 24 All Specifications are subject to change without notice
Typical Non-Virtual
Workspace
Cisco VXI Virtual Workspace
Data/
PoE/PoE+
Wall Plug
Power
Adapters
Cisco
UPOE
Data
Cisco
UPOE
Today’s Workspace with PoE+
Multiple Power Management Points
Cabling Overhead
Desktop Clutter
High Availability only for phone
Obsolete equipment management
High TCO
VXI Workspace with UPoE
Integrated Display Client
High availability (Power Backup)
Minimize workspace clutter
Power Efficiency/Management
EnergyWise Management
Low TCO
Page 25
© 2011 Cisco and/or its affiliates. All rights reserved. 25 All Specifications are subject to change without notice
Bundles are available for ease of configuration and purchasing
Bundle Positioned For Contains
Cisco UCS Base Unit for
Workspace Virtualization
(UCS-VXI-BASE-001)
Starter pack e.g. for proof of
concept
Up to 300 VM Desktops
2 – Cisco UCS 6120XP Fabric Interconnects
1 – Cisco UCS 5108 Blade Server Chassis
2 – Cisco UCS B200 M1 Blade Servers
3 – Cisco UCS B250 M2 Extended Memory Blade Servers
Cisco UCS Expansion Unit for
Workspace Virtualization
(UCS-VXI-SCALE-001)
Expansion pack for VDI
users
Up to 400 additional VM
desktops
1 – Cisco UCS 5100 chassis
4 - Cisco UCS B250 M2 Extended Memory Blade Servers
Cisco UCS Expansion Unit for
Hosted Shared Desktops
Expansion-2
(UCS-VXI-SCALE-002)
Hosted Shared Desktop
deployments
Up to 960 hosted shared
desktops
1 – Cisco UCS 5108 Blade Server Chassis
Up to 8 – Cisco UCS B200 M2 Blade Servers
Cisco UCS Expansion Unit for
Power Users
(UCS-VXI-SCALE-003)
Higher performance ―power
user‖ profiles
1 – Cisco UCS 5108 Blade Server Chassis
Up to 8 – Cisco UCS B230 M1 Blade Servers with 256GB
• Easy to order - It takes only a couple of clicks to order the Bundles.
• Quick validation - No long validation times in config tools due to fixed configs.
• Peace of mind - No confusion. The Bundles are pre-selected with the components which yield the best VM density and the best architecture for lowering TCO. The configs have been validated in our labs.
• Discounts - Bundles made eligible for VIP/SIP discounts.
Page 26
© 2011 Cisco and/or its affiliates. All rights reserved. 26 All Specifications are subject to change without notice © 2011 Cisco and/or its affiliates. All rights reserved. 26
Strategy
Service
Accelerate
Time to Value
World Class Expertise
World Class Presence
Proven Delivery
Capability
Delivering Unique
Cisco Insight
Optimize via…
Review architecture, tools and interfaces
Day-2 support
Problem/Change Mgmt
Arch. Monitoring
Triage support for Cisco & 3rd Party
System Level support
Customer Reporting
Assess Strategy
Customer Workshops
Technology Assessment
Infrastructure
Servers/Storage
Existing desktop service models
Organizational and operational readiness
Build business case
Design
Develop architecture, tools and interfaces
Develop/update desktop service models
Develop/update security and access models
Plan for technology and operations migration
Implement and Integrate
Validate solution with Proof-of-Concept deploy solution
Integrate solution components with infrastructure
Deploy new desktop service models
Migrate desktops and users
Planning and
Design Service
Implementation
Service
Operation &
Optimization
―How can Virtual desktop fit into my overall DC Strategy? Costs? ROI? Process Impact?‖
―How Do We Realize Our Architecture— On-Time, Within Budget, and in Our Environment?‖
―How Do We Ensure Evolution and Ongoing Cost Reduction?‖
―What Architecture Maximizes the end user experience?
Prepare Plan Design Implement Operate Optimize
Page 27
© 2011 Cisco and/or its affiliates. All rights reserved. 27 All Specifications are subject to change without notice
Page 28
© 2011 Cisco and/or its affiliates. All rights reserved. 28 All Specifications are subject to change without notice
Operational
Management
Business
Services
Hosted Virtual Desktop &
UC Services
Self Service Portal
Orchestration & Automation
Desktops Zero
Clients Thin
Clients Tablets
Collaboration
Applications
Borderless Network Systems
Borderless Infrastructure
In-Room
Devices
Borderless Network Services
Client Services
Collaboration
Services
Unified Compute
Unified Fabric
Unified Network Services
Endpoint/Collaboration Datacenter
Borderless Networks
Page 29
© 2011 Cisco and/or its affiliates. All rights reserved. 29 All Specifications are subject to change without notice
Operational
Management
Business
Services
Hosted Virtual Desktop &
UC Services
Self Service Portal
Orchestration & Automation
Desktops Zero
Clients Thin
Clients Tablets
Collaboration
Applications
Borderless Network Systems
Borderless Infrastructure
In-Room
Devices
Borderless Network Services
Client Services
Collaboration
Services
Unified Compute
Unified Fabric
Unified Network Services
Endpoint/Collaboration Datacenter
Borderless Networks
Page 30
© 2011 Cisco and/or its affiliates. All rights reserved. 30 All Specifications are subject to change without notice
New Collaboration endpoints
Continued EcoSystem Partner Updates (View
5.0, vSphere 5.0, Citrix XenDesktop 5.5, Storage
Optimization)
User Persona Management (Appsense & UniDesk)
Network Updates (WAAS 4.5.1, UPOE)
Security (VXC VPN, TrustSec, ISE 1.0 (Policy
Management), Trend Micro, Smart Cards)
Config Guide Improvements
Page 31
© 2011 Cisco and/or its affiliates. All rights reserved. 31 All Specifications are subject to change without notice
Cisco Validated Designs, validated through System Level Testing, enable
customers to:
• Lower risk of deploying technology solutions
• Increase speed of technology solution deployment
• Deploy a scalable, reliable, predictable foundation
• Ease technology solution integration
• Ease deployment of business critical applications
• Utilize Cisco Advanced Services to customize a CVD to meet specific requirements
Detailed system design and/or implementation guidance are available to provide:
• Customer use examples
• Products, Software and Configurations used in design testing
• Design limitations uncovered during testing
http://www.cisco.com/en/US/solutions/ns340/ns414/ns742/ns1100/landing_vxi.html
Page 32
© 2011 Cisco and/or its affiliates. All rights reserved. 32 All Specifications are subject to change without notice
http://www.cisco.com/en/US/solutions/ns340/ns414/ns742/ns1100/landing_vxi.html
http://www.cisco.com/go/vxi
Page 33
© 2011 Cisco and/or its affiliates. All rights reserved. 33 All Specifications are subject to change without notice
• Start at : www.cisco.com/go/designzone
Page 34
© 2011 Cisco and/or its affiliates. All rights reserved. 34 All Specifications are subject to change without notice
http://www.cisco.com/en/US/solutions/ns340/ns414/ns742/ns743/ns993/l
anding_dcVirt-vdi.html
Page 35
© 2011 Cisco and/or its affiliates. All rights reserved. 35 All Specifications are subject to change without notice
Collateral Description
Design Guides
Provides Best Practices for deploying an end to end Cisco
VXI System. Spans Datacenter, Borderless Networks and
Collaboration Architectures and includes Performance and
Capacity Planning
At A Glance Two page overview of Cisco VXI System including business
opportunity, value proposition and solution components
Reference Architecture Describes Cisco VXI System architecture and includes
functional components
Configuration Guide
Includes Architectural Diagram of Cisco VXI system
including Hardware and Software components tested and
configuration files of the System
Release Notes Summary of open defects found during test, including
workarounds
White Papers Various updates for specific solutions.
Page 36
© 2011 Cisco and/or its affiliates. All rights reserved. 36 All Specifications are subject to change without notice
CVD Reference Material may be found at:
• VMDC (Cisco): http://www.cisco.com/en/US/solutions/ns340/ns414/ns742/ns743/ns1050/landing_vmdc.html
• FlexPod (NetApp): http://www.cisco.com/en/US/netsol/ns1002 znetworking_solutions_ design_guidances_list.html
• SMT and ESMT (NetApp): http://www.cisco.com/en/US/netsol/ns1002/networking_solutions_design_guidances_list.html
• Vblock 0,1,2 (EMC): http://www.vce.com/solutions/vblock/
• VXI (Citrix/NetApp): http://www.cisco.com/en/US/netsol/ns1002/networking_solutions_design_guidances_list.html
Page 37
© 2011 Cisco and/or its affiliates. All rights reserved. 37 All Specifications are subject to change without notice
Data Center
60% better VM density per blade – with UCS
1/3 cost of networking infrastructure
Over 20% savings per seat vs. competitors
Collaboration
Devices that are unique – PoE
Virtualizing Cisco soft clients: Cisco Unified
Personal Communicator (CUPC), Cisco UC
Integrations for MOC and Connect (CUCIMOC
and CUCI-Connect), Cisco Quad
Cisco Cius – supports the complete desktop
experience
Cisco uniquely capable of addressing and
solving the intersection of Collaboration (UC),
Desktop Virtualization, Pervasive Video – key
―customer ask‖
Network
Optimization (WAAS)
POE support with access switches
Security
Integrated End-to-End System Across 3 architectures: Collaboration,
Borderless Network, Data Center
Broad ecosystem components
Cisco Validated Design collateral
TM
TM
TM
TM TM
Page 38
© 2011 Cisco and/or its affiliates. All rights reserved. 38 All Specifications are subject to change without notice
• Download the VXI CVD
• Use alias for questions, discussions and comments. [email protected] (Internal alias), [email protected] (External alias)
• Let us know your top opportunities
• Let us know how we can help you
http://www.cisco.com/go/vxi