You are on page 1of 76

Cisco Nexus 7000 Series

Click to edit Master subtitle style

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

Where the 7K fits


1 2 3 4 5
Data Center Virtualization Projects
DC Networking Upgrades to accommodate 10Gig Ethernet, FCOE

DC Disaster Recovery Projects


Opportunity to build secondary DC, OTV as a solution for DC Migration

DC Consolidation Projects
Nexus can add value with options such as VDC, FEX-Link, 10GE

Green-field Data Center Build-out


vPC, vDC, FabricPath, OTV, FCoE, & UCS differentiate the Nexus 7K

New Campus Network


High-density 10GE aggregation for video ready campus network

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

How the Nexus 7K Stacks Up


230/550 Gbps per slot Fabric Path FCoE OTV VDC vPC ISSU

Nexus 7K

Catalyst 6500

HP

Brocade

Juniper

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

Technology Transition Cycles

Nexus 7000 enables 1GE to 10GE Migration


Catalyst 6500 Nexus 7000

10/100 Mb Ethernet

Gigabit Ethernet

10 Gigabit Ethernet

Central Forwarding
16 Gbps Shared Bus Architecture 16 Gbps per slot

Distributed Forwarding
40 Gbps per slot

Distributed Fabric with Distributed Forwarding


230 Gbps per slot 550 Gbps per slot 80 Gbps per slot (C6K)

1999
BRKDCT-2951

2001

2004
2010 Cisco and/or its affiliates. All rights reserved.

2008
Cisco

2HCY2010
4

List Price Comparison


Nexus 7K vs Catalyst 6500
Place In the Network All 1GbE Configuration Cat 6509-E Nexus 7010 Comparison

Common Equipment 1 Supervisor Dual 6KW PS I/O Ports 96 -10/100/1000 48 1GbE SFP Common Equipment 2 Supervisor Dual 6KW PS I/O Ports 240 -10/100/1000 4 10GbE Common Equipment 2 Supervisor Dual 6KW PS I/O Ports 16 -10GbE Linerate 48 1GbE SFP

$125,495

$105,000

N7K is $20K less, about 20% less

DC Access

$206,475

$205,080

~Same Price

DC Aggregation

$244,975

$234,920

Nexus 7000 is $10K less, about 4% less

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

Catalyst 6500 vs. Nexus 7000


Catalyst 6500 Service modules VPN support Slot speed (now/future) 40GE roadmap 100GE roadmap MPLS Virtualization and MEC Max # links per Etherchannel VDC FabricPath OTV FCoE GOLD/ERSPAN/EEM
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved.

Nexus 7000 Roadmap (FW/NAM/LB) 2012 No 230 (550) Yes Yes Yes vPC 16 Yes Yes Yes Yes Yes
6

Yes Roadmap - 2012 40 (80) Yes No Yes VSS 8 No No No No Yes


Cisco

Hardware overview

Click to Edit Master Subtitle Style

2010 Cisco and/or C97-561519-00BRKDCT-2951 Cisco Systems, Inc. All rights reserved. its affiliates. All rights reserved. 2009 Cisco

Cisco

What Is Nexus 7000?

Data-center class Ethernet switch designed to deliver high-availability, system scale, usability, investment protection
Chassis

Supervisor Engines

I/O Modules

Fabrics

Forwarding Engines
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

Nexus 7000 Series


First in Class

9, 10 & 18 Slot versions 15+ Terabit System DCB and FCoE Ready Modern, Modular OS Device Virtualization Cisco TrustSec Continuous Operations

Nexus 7009
8.8 Tbps Slots 7 I/O + 2 sup N/A 550 Gig / Slot
2010 Cisco and/or its affiliates. All rights reserved.

Nexus 7010
9.9 Tbps 8 I/O + 2 sup 230 Gig / slot 550 Gig / slot
Cisco

Nexus 7018
18.8 Tbps 16 I/O + 2 sup 230 Gig / slot 550 Gig / slot
9

Highest Height

Density 1G / 10G / RU / 100GE Switching Platform in Industry 14 40G 21 RU 25 RU

BW / Slot Fab 1 BW / Slot Fab 2


BRKDCT-2951

NX-OS Operating System and Data Center Network Manager

Supported in NX-OS release 4.1(2) and later

Nexus 7018 Chassis


Integrated cable management

System status LEDs Optional front door Side-toside airflow

System fan trays

Supervis or slots (9-10) I/O module slots (1-8, 11-18)

25 R U

Crossbar fabric modules

Common equipment removes from rear

Power supply air intake


BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved.

Power supplies

Fron

N7K-

Cisco

Re

10

Nexus 7010 Chassis

System status LEDs

ID LEDs on all FRUs

Front-toback airflow

Integrated cable management with cover Optional locking front doors Locking ejector levers Supervis or slots (5-6) I/O module slots (1-4, 7-10) Air intake with optional filter
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved.

Air exhaust

System fan trays Fabric fan trays


21 R U

Two chassis per 7 rack Crossbar fabric modules

Power supplies

Fron

N7K-

Cisco

Re

Common equipment removes from rear


11

Expanding the Nexus 7000 Portfolio

14 RU (same form factor as Catalyst 6509-E) 2 supervisor slots (slots 1 and 2) 7 I/O module slots (slot 3 9) 5 fabric slots at front center of chassis

Next-Gen fabric module delivering 110 Gbps per slot per fabric 550 Gbps per slot w/5 fabrics

2 power supplies (installed from rear) 1 fan tray (installed from rear)

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

October 2011
12

Nexus 7009

Nexus 7000 Linecard Options


M1 Series

Feature comparison of M-Series and F-Series


F1 Series (Performance)
320Gbps Local, 230Gbps Fabric 512 No 16K No 2K 1.53MB / 0.7MB Yes Yes ~ 5 s ~ 10 watts per port $35K 32 ports

(Service Rich)
Performance (bps) Line Rate 10GbE Ports (18 slot) L3 (IPv4, IPv6) L2 Table Netflow ACL Per Line Rate 10G Port Ingress / Egress Buffer FCoE FabricPath (TRILL) Latency Power per Line Rate 10GbE Port List Price 80Gbps 128 Yes (Up to 1M routes) 128K Yes Up to 128K 100MB / 112MB No No ~ 20 s ~ 80 watts per port $70K - 32 ports 4-1 $44K 8 ports 1-1

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

13

Nexus 7000 M-Series Module


High Performance 10GbE Routing Modules

48 ports 1GE XL (46G) SFP


Up to 60Mpps
N7K-M148GS-11L

8 port 10GE XL (80G) X2


Up to 120Mpps

N7K-M108X2-12L

32 port 10GE (80G) XL SFP+


Up to 60Mpps
Capability
MAC entries IPv4 / IPv6 routes Security / QoS ACL entries Netflow N7K-M132XP-12L

Size (w/o Scalable Feature License)


128K (128K / 64K) 64K 512K

Size (w/ Scalable Feature License)


128K Up to (1M / 350K) 128K 512K

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

14

M1 Module XL Series licenses

The M1 modules use non-XL table sizes by default. A Scalable Feature license is required per chassis to enable XL table sizes. When scalability license is applied, all line modules have to be of the XL type. A mix of modules drops overall FIB size to nonXL size This behavior is per VDC, so non XL modules may not affect XL modules in other VDCs License Features

Support for 8 modules 1M FIB TCAM (IPv4/IPv6) 128K ACL/QoS TCAM Support for 16 modules 1M FIB TCAM (IPv4/IPv6) 128K ACL/QoS TCAM
Cisco

7010 Scalable Feature

7018 Scalable Feature


BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved.

15

Nexus 7000 F-Series Module


High Performance 10GbE supporting Unified Fabrics


Supports FCoE (NX-OS 5.2) L2 only. L3 provided by M1 modules Multi-protocol Classic Ethernet, VPC, FabricPath, DCB Flexible 1G and 10G autosensing High Performance/Scalabilty - 320G Fabric Capacity, 512 Ports/System No FEX support 1G/10G AutoSensing

32-port 1/10 GbE for server access and aggregation

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

16

M1 and F1 modules are complementary

Core

All M1 Series

Aggregation

M1 Series Up Links F1 Series Down Links

Access

All F1 Series

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

17

X2 Optics for 8 Port 10G M1 Module

5.0(2 a)

The 8-Port 10GigE XL module (N7K-M108X2-12L) requires X2 transceivers, which provide a wide range of connectivity options. The 8 port 10 GE modules with X2 optics are ideal for Data Center Interconnect (DCI) solutions.

X2-10GB-SR X2-10GB-LRM X2-10GB-LR X2-10GB-ER X2-DWDM-x

26 - 300 Meters 100 - 300 Meters 10 KM 40 KM 32 Light Spectrums

Please reference the Nexus 7000 Data Sheets for a complete list of supported optics and specifications.
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

18

SFP+ Twinax Summary


SFP+ Copper Twinax cables are a cost effective solution for connecting devices within a rack or across racks in close proximity. The SFP+ Twinax cables are supported on the 32 port 10GigE M1XL module. 10GBASE-CU 10GBASECU 10GBASECU

5.1( x)

1 Meter (3.37 5.1( Feet) 3 Meter (10.11 5.1( Feet) 5 Meter (16.40 5.1( Feet) 7 Meter (22.96 Feet) 10 Meter (32.80 Feet)
5.1( 1) 5.1( 1) 2) 2) 2)

10GBASE-ACU 10GBASE-ACU

Please reference the Nexus 7000 Data Sheets for a complete list of supported optics and specifications.
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

19

FET Optics for 32 Port 10G Modules


Fabric Extender Transceivers (FET) provide a low cost solution for connecting a Nexus 2000 (FEX) to a Nexus 7000. A FET is only supported for fabric connectivity on the 32 port 10GigE modules

5.1( 1)

10G-SFPFET
Specifications Form Factor Cable Type Power Latency SFP

25 - 100 Meters

Multimode (OM2 or OM3) 1 Watt 0.1 Microsecond

Fab Nexus ric 2000 Upli Please reference the Nexus 7000 Data Sheets for a complete list of supported optics and specifications. nk
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

20

Extending Modular Leadership

Introducing Fabric-2 for 7009, 7010, and 7018 Increases system performance to 550G per slot Investment Protection for M1 and F1 Series Seamless upgrade from FAB1 to FAB2
Target Q4CY11
21

768 Port 10GE (Future 48 Port 10GE F2 Module) 96 Port 40GE (Future 6 Port 40GE module) 32+ FEX (1,500+ 1GE)

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

M-Series 40G and 100G XL I/O Modules


1H CY12

40G module

6-port 40G module with 120Mpps QSFP transceivers focused on DC distances 550Gbps fabric (2nd generation fabric)

40/100G module

2-port 40/100G module with 120Mpps CFP transceivers focused on wide-area distances 550 Gbps fabric (2nd generation fabric)

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved. Cisco

Cisco

22

Nexus 7K Features: High Availability

Click to Edit Master Subtitle Style

2010 Cisco and/or C97-561519-00BRKDCT-2951 Cisco Systems, Inc. All rights reserved. its affiliates. All rights reserved. 2009 Cisco

Cisco

23

Stateful Fault Recovery


Restart process! Software RIB
BG P OSP F PI M TCP/UD P IPv 6 ST P HSR P LAC P et c

Table Update

If a fault occurs in a process


Hardware FIB
BRKDCT-2951

HA manager determines best recovery action (restart process, switchover to redundant supervisor) Process restarts with no impact on data plane
Cisco

2010 Cisco and/or its affiliates. All rights reserved.

Linux Kernel N7K Data Plane 24

HA Manager

In-Service Software Upgrade (ISSU)


N7K N7K# install all kickstart bootdisk:4.1-kickstart system bootdisk:4.1-system #7K N # Upgrade and reboot Initiate stateful failover Upgrade and reboot Upgrade and reboot I/O modules

OSP F BG P PI M etc .

I/O Module Images 2010 Cisco and/or its affiliates. All rights reserved. BRKDCT-2951

Release 4.0 4.1

OSP F BG P PI M etc .

Release 4.1 4.0

Activ e

Standb y

Release 4.1 4.0

Linux Kernel
Cisco

HA Manager 25

N7K Data Plane

Linux Kernel

HA Manager

High Availability - Independently Verified Zero Packet Loss

Zero Packet Loss when Upgrading and Downgrading the software image - ISSU Zero Packet Loss when removing Fabric Cards Zero Packet Loss when killing and restarting OSPF Zero Packet Loss when failing over Supervisors

Test Conditions: Nexus 7000 I/O modules load balance all of the traffic across all 5
Fabric Cards. The test was performed with 51,200 OSPF routes, 256 OSPF neighbors (one on each 10GbE port), every packet going through a security ACL of 7000 lines, every packet being rewritten using a 500 line QOS ACL, each line cards was doing 48 Mpps lookup, and Cisco Netflow to track up to 512,000 flows .
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco http://www.networkworld.com/reviews/2008/090108-test-ciscoCisco

26

Nexus 7K Features: Virtual Device Context (VDC)

Click to Edit Master Subtitle Style

2010 Cisco and/or C97-561519-00BRKDCT-2951 Cisco Systems, Inc. All rights reserved. its affiliates. All rights reserved. 2009 Cisco

Cisco

27

Various Degrees of Virtualization

VRFs & VLANs

Logical separation of data-plane (and some control-plane) functionality Logical separation of configuration or management and data-plane

Data/Control Plane

Virtual Contexts (i.e. Firewalls, ACE, etc.) Virtual Device Contexts

Data/Control Plane + Management Plane

Logical separation of control-plane, data-plane, management, resources, and system processes

Data/Control Plane + Management Plane + Resources + Operating Environment

Hypervisor Model
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

28

Virtual Device Contexts


VDC and Interface Allocation
VDC A Ports are assigned on a per VDC basis and cannot be shared across VDCs 32 port 10GE mod ule VDC C

VDC B

Once a port has been assigned to a VDC, all subsequent configuration is done from within that VDC On 32-port 10GE module ports must be assigned to a VDC by 4-block groups.
Cisco

VDC C

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

29

Collapsed Aggregation/Core Using Virtual Switches


Switch 1 Core Switch 2

Aggregation

Access

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

30

Virtual Device Contexts (VDCs)


Application exmaples

Consolidate and support multiple business units, departments, and networks


Web, App, Database Production, OOB mgmt, Development, Test Customer A, Customer B, Customer C

VDC2 BU1 / App 1

VDC3 BU2 / App 2

VDC2
Internal

VDC3 DMZ

Internet

VDC4

Provide network segmentation to meet security compliance requirements


Internet, Extranet, DMZ, Intranet Non-Secured, Secured, PCI
VDC2 Secure VDC3 NonSecure

Implement logical tier design


Core, Aggregation, Access
VDC2 Core VDC3 Agg VDC4 Access
31

VDCs provide logical separation of control-plane, data-plane, management, resources, and system processes within a physical switch
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

Nexus 7K Features: Port channels & Virtual Port Channels (vPC)

Click to Edit Master Subtitle Style

2010 Cisco and/or C97-561519-00BRKDCT-2951 Cisco Systems, Inc. All rights reserved. its affiliates. All rights reserved. 2009 Cisco

Cisco

32

Virtual Port Channel - vPC


vPC is a Port-channeling concept extending link aggregation to two separate physical switches Allows the creation of resilient L2 topologies based on Link Aggregation. Eliminates the need for STP in the access-distribution Provides increased bandwidth All links are actively forwarding vPC maintains independent control planes Supported on both M-series and F-series modules
L 2
Si Si

Physical Topology

Logical Topology

Virtual Port Channel

Non-vPC

vPC

Increased BW with vPC


BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

33

Port channels

F1 support 16 port channel members. M1 only support 8 port channel members M1 and F1 port cannot be configured in the same port channel (or vPC) Can connect to 2 5Ks with each 16p PC and get total of 32p PC (Double-Sided vPC)

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

34

Nexus 7K Features: FabricPath

Click to Edit Master Subtitle Style

2010 Cisco and/or C97-561519-00BRKDCT-2951 Cisco Systems, Inc. All rights reserved. its affiliates. All rights reserved. 2009 Cisco

Cisco

35

Architecture Flexibility Through NX-OS


Spanning-Tree vPC FabricPath
16 Switches

Active Paths

Single Up to 10 Tbps

Dual Up to 20 Tbps

16 Way Up to 160 Tbps

Pod Bandwidth

Layer 2 Scalability Infrastructure Virtualization and Capacity


BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

36

FabricPath: an Ethernet Fabric

FabricPath

Connect a group of switches using an arbitrary topology With a simple CLI, aggregate them into a Fabric:
N7K(config)# interface ethernet 1/1 N7K(config-if)# switchport mode fabricpath

An open protocol based on IS-IS provides Fabric-wide intelligence and ties the elements together.

BRKDCT-2951

Shipping now! Turn your network into a Fabric


2010 Cisco and/or its affiliates. All rights reserved. Cisco

Holistically, the fabric looks like a single switch.

37

Nexus 7K Features: Fiber Channel over Ethernet (FCoE)

Click to Edit Master Subtitle Style

2010 Cisco and/or C97-561519-00BRKDCT-2951 Cisco Systems, Inc. All rights reserved. its affiliates. All rights reserved. 2009 Cisco

Cisco

38

Multi-hop FCoE

MDS 9500 SAN

Nexus 7000 Aggregation Layer Storage Arrays FCoE & Native FC

Nexus 7000 Access Layer

Nexus 5000 Access Layer

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

39

Converged End-to-End FCoE


Nexus 7K LAN
iSCSI FCoE

Completely Eliminate dedicated SAN switches. A single network for LAN and SAN with lower points of management. Requires two licenses on N7K: 7KFCOEF132XP (per module) and N7KSAN1K9 (per chassis) if adv features (as IVR, VSAN-based Access Control, Fabric Binding) are required.

Nexus 5K

Unified Access Layer

Nexus 2232

BRKDCT-2951

FCoE Rack Mount Servers

Cisco UCS Blade servers


2010 Cisco and/or its affiliates. All rights reserved. Cisco

40

Nexus 7K Features: Fabric Extender (FEX) Support

Click to Edit Master Subtitle Style

2010 Cisco and/or C97-561519-00BRKDCT-2951 Cisco Systems, Inc. All rights reserved. its affiliates. All rights reserved. 2009 Cisco

Cisco

41

Nexus 2000 (FEX) Overview

5.1( 1)

The Nexus 2000 platform integrates with the Nexus 7000 to create a cost effective, highly scalable logical switching platform for server aggregation. The Nexus 7000 performs all configuration and provisioning functions, which simplifies the network architecture and reduces implementation time. Virtual Chassis Benefit s: Single Mgmt Entity 1 Configuration Reduced Cap-EX and OpEX Cost-Effective Cabling Options Highly Scalable/Flexible NX-OS Feature Consistency Nexus 7000 Simplified Management Nexus 2000 Reduced Power Consumption
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

42

Nexus 7K Features: Overlay Transport Virtualization (OTV)

Click to Edit Master Subtitle Style

2010 Cisco and/or C97-561519-00BRKDCT-2951 Cisco Systems, Inc. All rights reserved. its affiliates. All rights reserved. 2009 Cisco

Cisco

43

OTV Overview
OTV provides layer-2 network connectivity between remote sites over a layer-3 network. OTV is a key enabler for increasing server availability when clusters and virtualized deployments require layer2 connectivity between remote sites connected by a layer-3 IP network. Benefit s: Alternative to EoMPLS, VPLS, and DWDM for extending layer-2 networks
Optimized control plane with loop-prevention supporting point-to-cloud connectivity

5.0( 3)

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

44

Overlay Transport Virtualization OTV


Ethernet in IP Dynamic Encapsulation - 5.0(3)
MAC Table MAC1 MAC2 MAC3 Eth-1 IPB IPC

encap

MAC1 MAC2

IPA IPB | MAC1 MAC2

decap L 3 L 2

MAC1 MAC2

L 2 MAC1

L 3

MAC2 L 3 L 2 IPA IPC IPB L 3 L 2

Ethernet traffic is encapsulated in IP


A

Scalability
A B C D

Unicast in unicast Multicast in multicast Broadcast in multicast


B C D A

Data Center 1 Dynamic encapsulation based on MAC routing table

Manageability L 3 Benefits of packet switched L 2 IP core Data Center 3


MAC3
B C D

No PW state maintained These are NOT tunnels


BRKDCT-2951

Data Center 2
Cisco

Optimal Multicast Fast convergence ECMP


45

2010 Cisco and/or its affiliates. All rights reserved.

Nexus 7K Features: Security

Click to Edit Master Subtitle Style

2010 Cisco and/or C97-561519-00BRKDCT-2951 Cisco Systems, Inc. All rights reserved. its affiliates. All rights reserved. 2009 Cisco

Cisco

46

Control Plane Policing (CoPP)

Prioritizes important control plane traffic and protects supervisor from DoS attacks Follows MQC model, with service-policy applied to control-plane interface Provides granular classification, marking, and rate control for control-plane bound packets
Receive packets Broadcast MAC + non-IP packets Broadcast MAC + IP packets Mcast MAC + IP packets Router MAC + non-IP Multicast packets Exception packets Redirect packets ARP packets

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

47

MACSec
Encrypted links

Campus

AAA

Single Sup-E

Provides WLAN / VPN equivalent encryption (128bit AES) to LAN connections Consists of Encryption (IEEE802.1AE) + Key Management (IEEE802.1XRev) Performs hop-by-hop encryption which makes it compatible with network services (ACL, QoS, etc)

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

48

Nexus 7K Features: Serviceability

Click to Edit Master Subtitle Style

2010 Cisco and/or C97-561519-00BRKDCT-2951 Cisco Systems, Inc. All rights reserved. its affiliates. All rights reserved. 2009 Cisco

Cisco

49

Smart Call Home


Can help reduce MTTR Active/Proactive Notification - Alerts provided before you know there is a problem Integrates with existing NOC tools (XML/SMTP) Devices continually monitored with Connected Service Optional automated TAC case creation Integrates with EEM and GOLD

Notification Reporting Analysis

Customer

Automated Diagnosis Capability

Service Request Tracking System

Messages Received:

Call Home
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

Call Home DB

Diagnostics Environmental Syslog Inventory and Configuration

50

Configuration Rollback
Configuration rollback provides a way to archive and save older configurations so that they may be recovered as and when needed

Configuration rollback allows the user to specify how many older configuration versions they wish to archive ..
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

51

Configuration Rollback

Provides checkpointing and rollback facility to return configuration to any previous state Options to name checkpoints, view contents of checkpointed configuration, diff checkpoints versus each other or running/startup configuration, etc.
n7k# sh checkpoint --------------------------------------------------------------------Checkpoint_id Label UserName TimeStamp

---------------------------------------------------------------------

16777476

10-8

tstevens

Mon Oct

8 21:55:45 2007

n7k# rollback destination label 10-8 Note: Processing the Request... Please Wait Note: Generating the Rollbackpatch... Please Wait
BRKDCT-2951

Note: Executing the patch... Please Wait


2010 Cisco and/or its affiliates. All rights reserved.

Cisco

52

Embedded WireShark Analyzer

Monitor traffic from inband and mgmt0 interfaces to the Control Processor Extensive capture and display options, including to file (.pcap) Capture rules/filters

Co ntr ol Tr af

fi c

Control Processor
mgmt0

Data Traffic
tta kA ck

Inband

or etw N

Management Traffic

Real-time, on the device protocol analyzer provide ultimate visibility into various traffic hitting CPU from remote locations
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

53

Data-Plane Traffic Monitoring


SPAN

CPU

Support mix of interface/portchannel/VLAN as SPAN sources Avoid service interruption caused by mis-config -- Require switchport monitor to be configured on SPAN destinations

Supervisor

I/O Module ACL


RSPAN VLAN

RSPAN / ERSPAN (Released in 5.1(1))

Support RSPAN VLANs (pass-through) and destination Monitoring live traffic on the device with minimal impact on CPU loading
RSPAN VLAN

VLAN

ACL Logging

Facilitate troubleshooting by provide additional visibility into user-traffic either on or off the device
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

54

Slash Notation

Slash notation supported for all IPv4/IPv6 masks

n7k(config)# int e2/23 n7k(config-if)# ip add 10.2.23.1/24 n7k(config-if)# ipv6 add ::abcd:223/120 n7k(config-if)# ip access-list test n7k(config-acl)# permit ip 10.1.1.0/24 any n7k(config-acl)#

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

55

Interface Ranges

Same configuration used for interface ranges as for single interfaces

n7k(config)# int e1/1-3 n7k(config-if-range)# no sh n7k(config-if-range)# int e2/3 n7k(config-if)# ip add 10.2.3.1/24 n7k(config-if)# int e2/1-4,e1/1-2,e1/15 n7k(config-if-range)# mtu 9216 n7k(config-if-range)#

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

56

Nexus 7K Features: Management

Click to Edit Master Subtitle Style

2010 Cisco and/or C97-561519-00BRKDCT-2951 Cisco Systems, Inc. All rights reserved. its affiliates. All rights reserved. 2009 Cisco

Cisco

57

Nexus Management Options

DCNM

3rd Party Application

Netconf/ XML

CLI Nexus

SNMP

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

58

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

59

No need DCNM: VPC Pre-Deployment Validationclifor interacting with 3 consoles, a wizard guides the user step by step with clear indication of the task being completed.

DCNM automatically enforces configuration consistency between the VPC peers for all matching variables.

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

60

DCNM: VPC Network Compliance Monitoring


Detailed physical and logical VPC topology maps provide valuable insight for troubleshooting.

1. An Operator tampered with the VPC settings via cli, creating configuration inconsistencies. 2. Inconsistencies are automatically discovered. 3. A color-coded elliptic visual is indicative of such a condition.

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

61

VPC Configuration Automatic Repair

VPC configuration inconsistencies are clearly reported

.. and are automatically resolved.


BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

62

Managing Virtualization: VDC


Per Virtual Device Context Operations
VDC are transparently handled throughout the application Wizard-based Configuration
VDC #1 VDC 3 Layer 2 Protocols
V L P A V S N L T A P N C P U D C L D 8 D P 0 C 2 T . S 1 X

VVVV DDDD CCCC

- Interfaces Allocation Across VDC - Resource Limit Enforcement with Templates - Resource consumption monitoring - IPv4 and IPv6 Capable

Infrastructure Kernel

VDC aware Fault & Performance Monitoring VDC aware RBAC Topology Representation
- VDC per Chassis - VDC to VDC Connectivity

Real-time or Delayed Discovery

4321

VD C1

Layer 2 Protocols O S B P G E F P I G I R M P

G L H B S I P R G S P M N P M P

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

63

DCNM- OS Image Management

Wizard based installation of NX-OS images on multiple devices simultaneously Performs validations before installation:
- Verifies the switchs flash memory space availability for the image to download - Verifies compatibility between currently running network services and the new image
Software Version Change

DCNM

Compatibility Matrix

Nexus

Allows for time based deployment i.e. on-demand or scheduled Fully leverages NX-OS ISSU transparent software upgrade that has no impact to the network traffic (no service disruption, zero packet loss) Detects installation failure and automatically initiates recovery action Images can be installed from external servers using TFTP/FTP/SFTP
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

64

DCNM- Fault Management

Industry Standard Event Browser 4 Event Collection and Normalization 4 Per Network Feature Correlation 4 Noise Filtering for Root Cause Isolation 4 Event Propagation - actionable tasks - integration in the SMF
4
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

65

DCNM- Performance Monitoring


4

Real-time Traffic Statistics


* Port utilization: inbound/outbound, unicast / multicast / broadcast, etc * Port error: CRC errors, collisions, overruns, run frame count, etc * Packet loss: drops, discards * GRE tunnel: keep alive retries * Port security : address count and security violation on secure ports, etc * PortChannel: traffic rate, link utilization vs total traffic and wire speed * VLAN traffic: traffic switched, routed in and out VLAN, etc * ARP packets: forwarded, dropped due to MAC/IP validation failure, etc * Storm control statistic, etc

4 4 4

Environmental Status and Resource Utilization Historical Reports Visuals and Exportable Reports

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

66

DCNM Licensing
VDC CISF Configuration Change Control OS Image Mgmt

Nexus 7000

DCNM LAN Enterprise $10K per Nexus 7000

Inventory L1 & L2 Topology Map L2 ACL VPC FabricPath Fault Management Traffic Statistics Reports

Nexus 7000

Nexus 5000, Nexus 2000, Nexus 4000, Nexus 1000V


All Features

DCNM LAN $0 Unlimited nb of devices

No charge zone

DCNM SAN licensing unchanged


BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

67

Nexus 7K Features: Licenses

Click to Edit Master Subtitle Style

2010 Cisco and/or C97-561519-00BRKDCT-2951 Cisco Systems, Inc. All rights reserved. its affiliates. All rights reserved. 2009 Cisco

Cisco

68

Nexus 7000 Software Licenses


5.2

MPLS LIS XL P Enterprise (L3, PBR, GRE)

Transpor t Services Advance d (VDC)

Enhanced L2 (FabricPath)

5.1

Storage

5.2

Base

Transport Services: OTV, P2P L2VPN (EoMPLS), MP L2VPN (VPLS) MPLS license will enable L3 VPN Storage license will be per linecard Base license includes all the following
ISSU RIP/RIPng HSRP Jumbo Frames BRKDCT-2951 PVRST+ IGMP snooping GLBP UDLD MSTP+ DHCP helper VRRP 802.1Q uRPF check VRF lite LACP Port Security CoPP PVLANs SSHv2 DHCP snooping CDP RBAC DAI NAC SPAN SNMP IPSG NetFlow QoS RADIUS/ TACACS+ 802.1x ACLs
69

Storm EEM GOLDs Call home control 2010 Cisco and/or its affiliates. All rights reserved. Cisco

License Model Summary


Feature License
Enterprise Services Package

Features
BGP (Multi-Protocol), EIGRP, GRE (IP Tunnels), ISIS, MSDP, OSPF, PBR and PIM Cisco Trustsec (Encryption) Virtual Device Context (VDC) OTV M1 XL Modules Cisco Fabric Path F1 Series / Multi-Hop LDP, MPLS, L3VPN, TE IVR, VSAN AC, Fabric Binding 5.0(2 a) 5.0(2 a) 5.1( 1) 5.2( 1) 5.2( 1) 5.2( 1)

Advanced Services Package Transport Services Package Scalable Feature Package Enhanced Layer 2 Package FCoE Package MPLS Package SAN Enterprise Package

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.

Cisco

70

Nexus 7K Roadmap

Click to Edit Master Subtitle Style

2010 Cisco and/or C97-561519-00BRKDCT-2951 Cisco Systems, Inc. All rights reserved. its affiliates. All rights reserved. 2009 Cisco

Cisco

71

Cisco Confidential Under NDA

Nexus 7000 I/O Module Family Roadmap


s) Serie rm (M Platfo/L3/L4 Rich L2 rvicesurpose, full Se l- p
ra Gene

M1 Series Modules 40G/100G modules M1 Series XL Module 16+ port 10G (160G/slot) M1 Series XL Modules 8 port 10G-XL (80G/slot) 32 port 10G-XL (80G/slot) 48 port 1G-XL (46G/slot)
Serve

M1 Series Modules 32 port 10G (80G/slot) 48 port 1G RJ45 (46G/slot) 48 port 1G (46G/slot)

ries) (F Se lications app atform ce Pl specialized an nd rm Perfor access a

F1 Series I/O Modules 32 port 10G SFP+ (230G/slot) F2 Series I/O Modules 48 port 10G SFP+ w/L3 (480G/slot) 48 port 10G 10G-T w/L3 (480G/slot)

Shipping
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved.

201
Cisco

201

201

72

Cisco Confidential Under NDA

Provide Simple solutions to complex problems


F-Series M-Series

Access and Aggregation supporting Unified Fabric Transport capabilities


L2+ for highest port density and bandwidth FabricPath, DCB, vPC, FCoE, Low Latency Optimized for the 1G to 10G transition

L2 / L3 flexibility with greater port density and performance


Broad L2 and L3 features, 6500 HW capability QoS, Security, Large ACLs and Tables, Netflow 10G/1G options with deep buffers

Common characteristics: Performance, Scale, NX-OS


BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

73

Cisco Confidential Under NDA

Nexus 7000 F-Series I/O Modules

F1-Series Modules 32-Port 1/10GbE Module Shipping Q3 CY2010 320 GPS local switching -230 Gbps per slot across the fabric 480 MPPS ~ 5us latency slot to slot (64 bytes) Layer 2 Switching FabricPath / TRILL Support Multi-hop FCoE Support 2H CY2010
BRKDCT-2951 2010 Cisco and/or its affiliates. All rights reserved. Cisco

F2-Series Modules 48-Port 1/10GbE Module Shipping 2H CY2011 L2 / L3 720 MPPS / 480 Gbps per slot ~ 5us latency slot to slot (64 bytes) Layer 2 Switching Layer 3 Routing 32K FIB FabricPath / TRILL Support Fabric Extender Support OTV Support, Sampled Netflow VN-Link Support Multi-hop FCoE Support
74

Cisco Confidential Under NDA

M-Series 10/40/100G XL I/O Modules


2H CY1 1

10G module 16+ ports of 10GigE with 120Mpps forwarding 40G module
6-port 40G module with 120Mpps QSFP transceivers focused on DC distances 550Gbps fabric (2nd generation fabric)

40/100G module

2-port 40/100G module with 120Mpps CFP transceivers focused on wide-area distances 550 Gbps fabric (2nd generation fabric)

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved. Cisco

Cisco

75

Nexus 7000 Software Roadmap


Delhi Platf orm Solu tion Scal abilit y, Conv erge nce, Oper ation IOS Migr ation Hard ware
Target: Q2 CY2011 Status: Execute Commit

Edinburgh
v5.2.x

Freetown
v6.0
Target: 1H CY2012 Status: Execute Commit

Target: Q4 CY2011 Status: Execute Commit (Short Lived Release)

v6.1

Scalability enhancements (L3, FabricPath Trees) BFD Triggered FRR MIBs (PIM, BFD, Mroute, FCoE) EEM Enhancements vPC and Port Channel host/FEX FEX L3 routed ports F1 Series: PTP IEEE 1588 Parallel ISSU/EPLD upgrades Nexus 2232-10G Nexus 2224 FCoE FCF, E_Port, F_Port OTV Adjacency Server LISP MPLS Phase 1 (L3VPN) 6VPE / PE VACL Capture

Nexus 7009 Fabric2: 7009

Fabric2: 7010, 7018 F2 Series: 48p 1/10GE SFP+ (Phase I Support: F2 only VDC, L2/vPC, L3/ VRF, ACLs, QoS Policy, SPAN)
Cisco

+ 1x Admin VDC VDC CPU/Memory Control Groups vPC Scale (Multicast 20K (S,G),) 2000 VRF-lite, L3VPN Scale MIBs (IGMP, P-BRIDGE, QBRIDGE) Fabric QoS L3 over vPC (with F2 modules) vPC Enhancements vPC Config Sync OTV Enhancements, VLAN PVLAN on PC and vPC Translation F2 Series Phase II: FEX, FCoE, FabricPath, 12 Tx/Rx SPAN, ERSPAN, 1588 ERSPAN LISP Multi-tenancy VACLDeny I CCN Phase IS-ISv6 BGP, OSPF enhancements IP-SLA, sender/responder, basic probes MPLS Phase 2 (EoMPLS, VPLS ) F2 Series: 40p 1/10GBase-T M2 Series: 6x 40GE (Feature Parity with M-Series inc. FEX) M2 Series: 2x 40/100GE (Feature Parity.) N2232TM
76

BRKDCT-2951

2010 Cisco and/or its affiliates. All rights reserved.