SlideShare a Scribd company logo

Cisco ACI Main Session EMC World 2015

L
ldangelo0772

This document discusses integrating RecoverPoint for VMs with Cisco Application Centric Infrastructure (ACI). It describes how ACI allows defining network policies once and deploying them consistently using group-based policies. The integration pre-configures four network instances for RecoverPoint's network interfaces and associates them using ACI policies. This provides automation, security and visibility for workloads running on RecoverPoint. The document also outlines the configuration steps and assumptions required to set up this integration.

Technology
Related topics:
Data Center Overview
1 of 20
Downloaded 30 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
Policy-based Infrastructure Provisioning for Recover Point with Cisco ACI Carly Stoughton – Cisco Technical Marketing Engineer Thomas Scheibe – Cisco Senior Director Product Management
§ Group-Based Policy Concept in Cisco ACI § Integration of RecoverPoint for VMs and Cisco ACI § ACI Security/ Compliance Properties Agenda
Enable the Cloud 2009 20142008 Consolidation Virtualization Automation Enabling the Cloud LAN SAN Network Compute Storage Access Network Apps Policy Today Policy PolicyCisco ACI RAPID APPLICATION EVOLUTION Policy
Vision: Scale, Security and Full Visibility Physical Networking Compute L4–L7 Services StorageHypervisors and Virtual Networking Multi DC WAN and Cloud Enabled by physical and virtual integration Tenant Application 2 0
Automation through Policy Physical, Virtual and Containers Open, Standards and Embedded Security
The Problem DBAPP ADC WEBF/W ADC MGMT Data Applications Infrastructure Applications Management Applications Challenges attempting to automate network configurations •  Provisioning models are built around the device •  Build separate networks for the apps for policy, visibility, and security •  Legacy network security limits our ability to implement policy with mobility & cloud VMOTION DNS
Group Based Policy Model Define Once – Deploy Consistently COMPONENTS OF A Group Based Policy Endpoint Group: A set of endpoints (VMs/ servers) with the same policy Contracts: A set of rules governing communication between endpoint groups Service Chains: A set of network services between endpoint groups OUTSIDE WEBAPPDBCRM APP ADC F/W ADC ContractContract
Context-Aware Segmentation Dynamic Content User and Devices Resources and Demands Marking Traffic with Consistent Policy Context (Device, Group, Role) Immune to Network Changes Abstracted Policy Business Policy X Distributed Enforcement End Point Group TagTAG
Contract Contract Contract DBAPPWEB ADC F/W ADC Group Policy OVS Driver Neutron Networking APIC Group Driver W eb W eb W eb W eb Ap p Ap p D B D B HYPERVISOR HYPERVISOR HYPERVISOR OpenStack extensions on top of Neutron exposing a policy API Group-Based Policy And OpenStack Group Policy Plugin
§ Group-Based Policy Concept in Cisco ACI § Integration of RecoverPoint for VMs and Cisco ACI § ACI Security/ Compliance Properties Agenda
§  Automate network policies – define once/ deploy consistently §  Pre-configure four network instances on the VMware vSphere ESXi Servers where RecoverPoint for VMs will be installed –  LAN Network –  WAN Network –  iSCSI1 & iSCSI2 Network §  Associate the four RecoverPoint for VMs network interfaces (i.e., LAN Interface, WAN Interface, iSCSI1 Interface and iSCSI2 Interface) to the pre- configured network instances RecoverPoint for VMs & ACI - Objective
§  VMware ESXi has been installed on the servers that will be used for RecoverPoint for VMs and that all servers have been assigned an IP Address §  The “VM Network” shown in the logical topology has been created. §  VMware vCenter server has been installed and all servers (single or multiple vCenter instances are possible) §  Cisco ACI has been physically installed and all leaf switches have been initialized and are visible in the APIC Fabric Topology view. §  Servers running VMware ESXi have been physically cabled to the Cisco ACI leaf switches as shown in the physical topology diagram. Assumptions
Logical Topology View
Physical Topology View
1. ACI Configuration §  a. Configure Fabric §  b. Add VMware vCenter to APIC §  c. Verify connectivity 2. VMware vCenter Configuration §  a. Configure the Distributed vSwitch in vcenter 3. Tenant (RP4VM network) Configuration §  a. Create the RP4VM Networks via APIC §  b. Modify iSCSI Port Groups to allow iSCSI via VMware vCenter §  c. Configure vmknics and attach to iSCSI Port Groups via VMware vCenter §  d. Install RP4VM Appliance via VMware vCenter Overview of Configuration Steps
§ Group-Based Policy Concept in Cisco ACI § Integration of RecoverPoint for VMs and Cisco ACI § ACI Security/ Compliance Properties Agenda
Security: P+V = C VIRTUALIZATION CENTRIC No Physical Support Limited Visibility Management Complexity APPLICATION CENTRIC Any workload and any place Full VisibilityAutomated PERIMETER CENTRIC Manual and Complex Error-ProneStatic Topology Limited Places + =
PCI Compliant Network with Cisco ACI •  Simplifies audit based on higher level policy •  Secure network segmentation and isolation •  Defense in depth with advanced L4-7 security (NGFW, IDS/IPS, DDoS) integration •  Centralized Auditing and Security Monitoring SECURE NETWORK ACCESS CONTROL SECURITY POLICY CENTRALIZED AUDIT MONITORING ACCESS
Cisco ACI Main Session EMC World 2015
A C I- R E A D Y VBLOCK SYSTEMS WITH ACI-READY NEXUS 9000 • Policy management enhances operational simplicity • Use policies to accelerate network configuration • ACI further reduces risk through policy automation Vblock Systems with ACI Further extend IT agility Vblock™ 340 and Vblock™ 720 Converged Infrastructure

More Related Content

PPTX
OpenStack at Cisco, June 2015
Lora O'Haver
 
PDF
Cisco and F5 accelerate Application Delivery
Shashi Kiran
 
PDF
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth
シスコシステムズ合同会社
 
PDF
Tokyo meetup 20160224
Takao Setaka
 
PDF
Cisco Connect 2018 Vietnam - hyper flex
NetworkCollaborators
 
PPTX
[Cisco Connect 2018 - Vietnam] Long ton dc pss hyper flex
Nur Shiqim Chok
 
PDF
【Cisco OpenStack Seminar 2015.10.26】 Cisco UCS Integrated Infrastructure - En...
シスコシステムズ合同会社
 
PDF
Infrastructure as Code 101: Steve Tegeler + Nathan Ness, VMware
OpenStack
 
OpenStack at Cisco, June 2015
Lora O'Haver
 
Cisco and F5 accelerate Application Delivery
Shashi Kiran
 
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth
シスコシステムズ合同会社
 
Tokyo meetup 20160224
Takao Setaka
 
Cisco Connect 2018 Vietnam - hyper flex
NetworkCollaborators
 
[Cisco Connect 2018 - Vietnam] Long ton dc pss hyper flex
Nur Shiqim Chok
 
【Cisco OpenStack Seminar 2015.10.26】 Cisco UCS Integrated Infrastructure - En...
シスコシステムズ合同会社
 
Infrastructure as Code 101: Steve Tegeler + Nathan Ness, VMware
OpenStack
 

What's hot (20)

DOCX
Cisco one advanced security
IT Tech
 
PPTX
You Can Build Your OpenStack and Consume it Too
PLUMgrid
 
PPTX
Cisco Application Centric Infrastructure
islam Salah
 
PDF
UCS Automation through the use of API's and UCS PowerTool
Cisco Canada
 
PDF
APPLICATION CENTRIC INFRASTRUCTURE
Cisco Russia
 
PDF
Seven Criteria for Building an AWS Global Transit Network
Khash Nakhostin
 
PDF
OpenStack and Application Delivery: Joy and Pain of an Intricate Relationship
PLUMgrid
 
PPTX
How to Quickly Implement a Secure Cloud for Government and Military | Webinar
PLUMgrid
 
PDF
Cisco Connect 2018 Malaysia - Next-generation hyperconverged infrastructure-s...
NetworkCollaborators
 
PDF
Successfully Interconnecting Data Centers
Cisco Canada
 
PDF
The Changing Data Center Landscape
Cisco Canada
 
DOCX
Cisco ucs s3260 the new storage building blocks
IT Tech
 
PPT
Calico and simple policy
Anirban Sen Chowdhary
 
PPTX
Implementing the Hybrid Data Center
Cisco Canada
 
PPT
Calico and ubuntu
Anirban Sen Chowdhary
 
PPT
Calico 3
Anirban Sen Chowdhary
 
PPTX
Prevent threats With Analytics Driven Web Application Firewall
Avi Networks
 
PDF
IPv6 on the Cisco Campus
APNIC
 
PDF
Introduction to MANTL Data Platform
Cisco DevNet
 
PDF
OpenStack-Ansible Security
Major Hayden
 
Cisco one advanced security
IT Tech
 
You Can Build Your OpenStack and Consume it Too
PLUMgrid
 
Cisco Application Centric Infrastructure
islam Salah
 
UCS Automation through the use of API's and UCS PowerTool
Cisco Canada
 
APPLICATION CENTRIC INFRASTRUCTURE
Cisco Russia
 
Seven Criteria for Building an AWS Global Transit Network
Khash Nakhostin
 
OpenStack and Application Delivery: Joy and Pain of an Intricate Relationship
PLUMgrid
 
How to Quickly Implement a Secure Cloud for Government and Military | Webinar
PLUMgrid
 
Cisco Connect 2018 Malaysia - Next-generation hyperconverged infrastructure-s...
NetworkCollaborators
 
Successfully Interconnecting Data Centers
Cisco Canada
 
The Changing Data Center Landscape
Cisco Canada
 
Cisco ucs s3260 the new storage building blocks
IT Tech
 
Calico and simple policy
Anirban Sen Chowdhary
 
Implementing the Hybrid Data Center
Cisco Canada
 
Calico and ubuntu
Anirban Sen Chowdhary
 
Calico 3
Anirban Sen Chowdhary
 
Prevent threats With Analytics Driven Web Application Firewall
Avi Networks
 
IPv6 on the Cisco Campus
APNIC
 
Introduction to MANTL Data Platform
Cisco DevNet
 
OpenStack-Ansible Security
Major Hayden
 
Ad

Similar to Cisco ACI Main Session EMC World 2015 (20)

PDF
VMworld 2014: VMware NSX and vCloud Automation Center Integration Technical D...
VMworld
 
PDF
Cisco at v mworld 2015 cs integrated infrastructure_vmworld_cisco_v1
ldangelo0772
 
PPTX
Cisco ACI version 6.0.4F Release BDM Deck.PPTX
SergioDurn16
 
PDF
Build 4 The Cloud By Cisco&VMware1
Azlan NL
 
PPTX
Self service it with v realizeautomation and nsx
solarisyougood
 
PDF
VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...
VMworld
 
PPTX
OpenStack As A Strategy For Future Growth at Cisco
Lew Tucker
 
PDF
cisco-aci-virtualization-guide-52x
ssuser56845e
 
PDF
Simplifier le deploiement d'applications dans le nuage hybride
Cisco Canada
 
PDF
VMware goes container crazy with vSphere integrated containers
vmware academy
 
PDF
DevNetCreate - ACI and Kubernetes Integration
Hank Preston
 
PDF
PROACT SYNC 2013 - Breakout - Cisco UCS Director Live Demo
Proact Netherlands B.V.
 
PPTX
VMworld 2015: What's New in vSphere?
VMworld
 
PDF
4. Kubernetes - Application centric infrastructure kubernetes, contiv
Juraj Hantak
 
PDF
Converge ou Hyperconverge? Cisco HyperFlex
Cisco Canada
 
PDF
Cisco UCS Solution EMC World 2015
ldangelo0772
 
PPTX
Presentation cisco ucs director
solarisyougood
 
PDF
VMware and AWS Together - VMware Cloud on AWS
Kristana Kane
 
PDF
PLNOG15: Cisco Application Centric Infrastructure - why ...? - Krzysztof Mazepa
PROIDEA
 
PDF
Set_up_Kubernetes_clusters_on_premises_&_on_AWS_with_Cisco_Container_Platform...
Khan Baba
 
VMworld 2014: VMware NSX and vCloud Automation Center Integration Technical D...
VMworld
 
Cisco at v mworld 2015 cs integrated infrastructure_vmworld_cisco_v1
ldangelo0772
 
Cisco ACI version 6.0.4F Release BDM Deck.PPTX
SergioDurn16
 
Build 4 The Cloud By Cisco&VMware1
Azlan NL
 
Self service it with v realizeautomation and nsx
solarisyougood
 
VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...
VMworld
 
OpenStack As A Strategy For Future Growth at Cisco
Lew Tucker
 
cisco-aci-virtualization-guide-52x
ssuser56845e
 
Simplifier le deploiement d'applications dans le nuage hybride
Cisco Canada
 
VMware goes container crazy with vSphere integrated containers
vmware academy
 
DevNetCreate - ACI and Kubernetes Integration
Hank Preston
 
PROACT SYNC 2013 - Breakout - Cisco UCS Director Live Demo
Proact Netherlands B.V.
 
VMworld 2015: What's New in vSphere?
VMworld
 
4. Kubernetes - Application centric infrastructure kubernetes, contiv
Juraj Hantak
 
Converge ou Hyperconverge? Cisco HyperFlex
Cisco Canada
 
Cisco UCS Solution EMC World 2015
ldangelo0772
 
Presentation cisco ucs director
solarisyougood
 
VMware and AWS Together - VMware Cloud on AWS
Kristana Kane
 
PLNOG15: Cisco Application Centric Infrastructure - why ...? - Krzysztof Mazepa
PROIDEA
 
Set_up_Kubernetes_clusters_on_premises_&_on_AWS_with_Cisco_Container_Platform...
Khan Baba
 
Ad

More from ldangelo0772 (20)

PDF
Cisco at VMworld 2015 - Cisco UCS as the Foundation for Software-Defined Data...
ldangelo0772
 
PDF
Cisco at v mworld 2015 vmworld sf 2015 brannon theater 20150829
ldangelo0772
 
PDF
Cisco at v mworld 2015 ravi_vmworldtheater2015
ldangelo0772
 
PDF
Cisco at v mworld 2015 gpu-solution-c240_m4-082715-vmworld
ldangelo0772
 
PDF
Cisco at v mworld 2015 theater presentation brfarnha
ldangelo0772
 
PDF
Cisco at v mword 2015
ldangelo0772
 
PDF
Cisco at v mworld 2015 joann_starke_let_your_business_soar
ldangelo0772
 
PDF
Cisco at v mworld 2015 vmworld_sf-2015-hyperconverged
ldangelo0772
 
PDF
Cisco at v mworld 2015 gpu-solution-c240_m4-082715-vmworld
ldangelo0772
 
PDF
Cisco at v mworld 2015 vmworld-deck-2015-final
ldangelo0772
 
PDF
Cisco at v mworld 2015 vmworld 2015 mds final preso
ldangelo0772
 
PDF
Cisco at v mworld 2015 vmworld - cisco mds and emc xtrem_io-v2
ldangelo0772
 
PDF
Cisco at v mworld 2015 versastack-customer_vmworld_20150826v3
ldangelo0772
 
PDF
Cisco at v mworld 2015 shipped-vmworld
ldangelo0772
 
PDF
Cisco at v mworld 2015 intercloud - hybrid cloud solutions for vmware workloa...
ldangelo0772
 
PDF
Cisco at v mworld 2015 cisco-on-demand-private-cloud-for-vmworld-01_sep2015-a...
ldangelo0772
 
PDF
Cisco at v mworld 2015 cisco powered_vmworld 2015
ldangelo0772
 
PDF
Cisco at vmworld 2015 joann_starke_let_your_business_soar
ldangelo0772
 
PDF
Cisco MDS Main Session EMC World 2015
ldangelo0772
 
PPTX
Itpa sessions
ldangelo0772
 
Cisco at VMworld 2015 - Cisco UCS as the Foundation for Software-Defined Data...
ldangelo0772
 
Cisco at v mworld 2015 vmworld sf 2015 brannon theater 20150829
ldangelo0772
 
Cisco at v mworld 2015 ravi_vmworldtheater2015
ldangelo0772
 
Cisco at v mworld 2015 gpu-solution-c240_m4-082715-vmworld
ldangelo0772
 
Cisco at v mworld 2015 theater presentation brfarnha
ldangelo0772
 
Cisco at v mword 2015
ldangelo0772
 
Cisco at v mworld 2015 joann_starke_let_your_business_soar
ldangelo0772
 
Cisco at v mworld 2015 vmworld_sf-2015-hyperconverged
ldangelo0772
 
Cisco at v mworld 2015 gpu-solution-c240_m4-082715-vmworld
ldangelo0772
 
Cisco at v mworld 2015 vmworld-deck-2015-final
ldangelo0772
 
Cisco at v mworld 2015 vmworld 2015 mds final preso
ldangelo0772
 
Cisco at v mworld 2015 vmworld - cisco mds and emc xtrem_io-v2
ldangelo0772
 
Cisco at v mworld 2015 versastack-customer_vmworld_20150826v3
ldangelo0772
 
Cisco at v mworld 2015 shipped-vmworld
ldangelo0772
 
Cisco at v mworld 2015 intercloud - hybrid cloud solutions for vmware workloa...
ldangelo0772
 
Cisco at v mworld 2015 cisco-on-demand-private-cloud-for-vmworld-01_sep2015-a...
ldangelo0772
 
Cisco at v mworld 2015 cisco powered_vmworld 2015
ldangelo0772
 
Cisco at vmworld 2015 joann_starke_let_your_business_soar
ldangelo0772
 
Cisco MDS Main Session EMC World 2015
ldangelo0772
 
Itpa sessions
ldangelo0772
 

Recently uploaded (20)

PDF
Hybrid model detection and classification of lung cancer
IAESIJAI
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
PPTX
cloud_computing_Infrastucture_as_cloud_p
mainakbhattacharya20
 
PDF
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
PDF
Mushroom cultivation and it's methods.pdf
mailmeonrishi
 
PDF
From MVP to Full-Scale Product A Startup’s Software Journey.pdf
KodekX
 
PDF
DP Operators-handbook-extract for the Mautical Institute
LeonelMejiaLarios
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
DASA ADMISSION 2024_FirstRound_FirstRank_LastRank.pdf
rameswartudu05
 
PDF
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
project resource management chapter-09.pdf
ssuser00e6e21
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PPTX
A Presentation on Touch Screen Technology
memembruh336
 
PDF
A comparative study of natural language inference in Swahili using monolingua...
IAESIJAI
 
PDF
Getting Started with Data Integration: FME Form 101
Safe Software
 
PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PDF
Microsoft Solutions Partner Drive Digital Transformation with D365.pdf
Microsoft Dynamics
 
Hybrid model detection and classification of lung cancer
IAESIJAI
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
cloud_computing_Infrastucture_as_cloud_p
mainakbhattacharya20
 
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
Mushroom cultivation and it's methods.pdf
mailmeonrishi
 
From MVP to Full-Scale Product A Startup’s Software Journey.pdf
KodekX
 
DP Operators-handbook-extract for the Mautical Institute
LeonelMejiaLarios
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
DASA ADMISSION 2024_FirstRound_FirstRank_LastRank.pdf
rameswartudu05
 
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
Approach and Philosophy of On baking technology
30anthuong17
 
project resource management chapter-09.pdf
ssuser00e6e21
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
A Presentation on Touch Screen Technology
memembruh336
 
A comparative study of natural language inference in Swahili using monolingua...
IAESIJAI
 
Getting Started with Data Integration: FME Form 101
Safe Software
 
A Presentation on Artificial Intelligence
memembruh336
 
Microsoft Solutions Partner Drive Digital Transformation with D365.pdf
Microsoft Dynamics
 

Cisco ACI Main Session EMC World 2015

  • 1. Policy-based Infrastructure Provisioning for Recover Point with Cisco ACI Carly Stoughton – Cisco Technical Marketing Engineer Thomas Scheibe – Cisco Senior Director Product Management
  • 2. § Group-Based Policy Concept in Cisco ACI § Integration of RecoverPoint for VMs and Cisco ACI § ACI Security/ Compliance Properties Agenda
  • 3. Enable the Cloud 2009 20142008 Consolidation Virtualization Automation Enabling the Cloud LAN SAN Network Compute Storage Access Network Apps Policy Today Policy PolicyCisco ACI RAPID APPLICATION EVOLUTION Policy
  • 4. Vision: Scale, Security and Full Visibility Physical Networking Compute L4–L7 Services StorageHypervisors and Virtual Networking Multi DC WAN and Cloud Enabled by physical and virtual integration Tenant Application 2 0
  • 5. Automation through Policy Physical, Virtual and Containers Open, Standards and Embedded Security
  • 6. The Problem DBAPP ADC WEBF/W ADC MGMT Data Applications Infrastructure Applications Management Applications Challenges attempting to automate network configurations •  Provisioning models are built around the device •  Build separate networks for the apps for policy, visibility, and security •  Legacy network security limits our ability to implement policy with mobility & cloud VMOTION DNS
  • 7. Group Based Policy Model Define Once – Deploy Consistently COMPONENTS OF A Group Based Policy Endpoint Group: A set of endpoints (VMs/ servers) with the same policy Contracts: A set of rules governing communication between endpoint groups Service Chains: A set of network services between endpoint groups OUTSIDE WEBAPPDBCRM APP ADC F/W ADC ContractContract
  • 8. Context-Aware Segmentation Dynamic Content User and Devices Resources and Demands Marking Traffic with Consistent Policy Context (Device, Group, Role) Immune to Network Changes Abstracted Policy Business Policy X Distributed Enforcement End Point Group TagTAG
  • 9. Contract Contract Contract DBAPPWEB ADC F/W ADC Group Policy OVS Driver Neutron Networking APIC Group Driver W eb W eb W eb W eb Ap p Ap p D B D B HYPERVISOR HYPERVISOR HYPERVISOR OpenStack extensions on top of Neutron exposing a policy API Group-Based Policy And OpenStack Group Policy Plugin
  • 10. § Group-Based Policy Concept in Cisco ACI § Integration of RecoverPoint for VMs and Cisco ACI § ACI Security/ Compliance Properties Agenda
  • 11. §  Automate network policies – define once/ deploy consistently §  Pre-configure four network instances on the VMware vSphere ESXi Servers where RecoverPoint for VMs will be installed –  LAN Network –  WAN Network –  iSCSI1 & iSCSI2 Network §  Associate the four RecoverPoint for VMs network interfaces (i.e., LAN Interface, WAN Interface, iSCSI1 Interface and iSCSI2 Interface) to the pre- configured network instances RecoverPoint for VMs & ACI - Objective
  • 12. §  VMware ESXi has been installed on the servers that will be used for RecoverPoint for VMs and that all servers have been assigned an IP Address §  The “VM Network” shown in the logical topology has been created. §  VMware vCenter server has been installed and all servers (single or multiple vCenter instances are possible) §  Cisco ACI has been physically installed and all leaf switches have been initialized and are visible in the APIC Fabric Topology view. §  Servers running VMware ESXi have been physically cabled to the Cisco ACI leaf switches as shown in the physical topology diagram. Assumptions
  • 15. 1. ACI Configuration §  a. Configure Fabric §  b. Add VMware vCenter to APIC §  c. Verify connectivity 2. VMware vCenter Configuration §  a. Configure the Distributed vSwitch in vcenter 3. Tenant (RP4VM network) Configuration §  a. Create the RP4VM Networks via APIC §  b. Modify iSCSI Port Groups to allow iSCSI via VMware vCenter §  c. Configure vmknics and attach to iSCSI Port Groups via VMware vCenter §  d. Install RP4VM Appliance via VMware vCenter Overview of Configuration Steps
  • 16. § Group-Based Policy Concept in Cisco ACI § Integration of RecoverPoint for VMs and Cisco ACI § ACI Security/ Compliance Properties Agenda
  • 17. Security: P+V = C VIRTUALIZATION CENTRIC No Physical Support Limited Visibility Management Complexity APPLICATION CENTRIC Any workload and any place Full VisibilityAutomated PERIMETER CENTRIC Manual and Complex Error-ProneStatic Topology Limited Places + =
  • 18. PCI Compliant Network with Cisco ACI •  Simplifies audit based on higher level policy •  Secure network segmentation and isolation •  Defense in depth with advanced L4-7 security (NGFW, IDS/IPS, DDoS) integration •  Centralized Auditing and Security Monitoring SECURE NETWORK ACCESS CONTROL SECURITY POLICY CENTRALIZED AUDIT MONITORING ACCESS
  • 20. A C I- R E A D Y VBLOCK SYSTEMS WITH ACI-READY NEXUS 9000 • Policy management enhances operational simplicity • Use policies to accelerate network configuration • ACI further reduces risk through policy automation Vblock Systems with ACI Further extend IT agility Vblock™ 340 and Vblock™ 720 Converged Infrastructure