TechWiseTV Workshop: Extending Intent-Based Networking to IoT
0 likes843 views
The document outlines Cisco's extension of intent-based networking to IoT, specifically through the SD-Access extension. Key features include automated device installation, segmented applications, and centralized management through DNA center, enabling simplified network oversight and policy enforcement. It highlights the capabilities and benefits of extended nodes in facilitating IoT and business applications, while detailing the licensing model for different Cisco devices.
TechWiseTV Workshop: Extending Intent-Based Networking to IoT
- 1. Albert Mitchell, Satish Kondalam Technical Marketing Engineer August 1, 2018 Extending Intent-Based Networking to IoT
- 2. © 2018 Cisco and/or its affiliates. All rights reserved Introducing SD-Access Extension Extending the Fabric Edge for IoT and Business Users, Device and IoT Segmentation Policy based Automation Purpose Built Switches for IoT Catalyst Digital Building Catalyst 3560-CX IE Series (4K/5K) Platform Support C B B IoT Network Employee Network Extende d Node DNACenter AnalyticsPolicy Automation Extende d NodeAP Extension
- 3. © 2018 Cisco and/or its affiliates. All rights reserved SD-Access Extension Key Benefits for IoT and Business DNA Center Surveillance Camera Virtual Netw ork Outdoor Wireless Virtual Netw ork Fabric Extended Nodes DUAL MEDIA CONSOLE COM IN2 REF IN1 EXPR ESS SETUP - DC-A + ! + 12-54V 3.4-3.0A - DC-B + OUT IN2 IN1 SYS EXP USB ALARM SDCARD SPEED DUPLEX PoE SYNCE HSR/PRP DISPLAY MODE 1 2 3 4 2 3 1 4 13 14 15 16 17 18 19 20 X 5 6 7 8 9 10 11 12 X • Easy automated Device install and setup • Stretched subnets for ease of endpoint connections • Workflow based policy automation • Segment Applications with separate Virtual Networks • Fabric as a single Entity for Network Admin • Single pane of glass for management • Inventory, Topology, Image management • Automate Day 1 Installation • Network Assurance – Device 360 Extended Nodes are Beta in DNA-C v1.2
- 4. © 2018 Cisco and/or its affiliates. All rights reserved SD-Access Extension DNA Center Fabric Extended Nodes • Extendednode connects to a single Edge node using an 802.1Q Trunk port (single or multiple VLANs) using static assignment • Switchports on the Extended node can then be statically assigned to an appropriate IP Pool (Virtual Node) in DNA Center. • SGT tagging (or mapping) is accomplished by Pool to Group mapping (in DNA Center) on the connected Fabric Edge node • Traffic policy enforcement based on SGTs (SGACLs) is performedat the Edge node Fabric Edge * * C9K Edge Only Key Benefits for IoT and Business Extended Nodes are Beta in DNA-C v1.2
- 5. © 2018 Cisco and/or its affiliates. All rights reserved @ DNA Center Manually Enabling Fabric Extension In Host on-boarding Select one or more interface(s) on the Fabric Edge node and enable it for Extended Node. This will begin the discovery and automation process, to bring the new Extended Node into the Inventory. Once completed, the extended Nodes will also appear in Host Onboarding window
- 6. © 2018 Cisco and/or its affiliates. All rights reserved DNA Licensing – IE Extended Node • 2 DNA license (Advantage, Essentials) • Essentials is for pure networking buyers • Advantage required for SDA • DNA license purchased for 3,5,7 year terms License Type IE2000 IE3000 IE4000 IE4010 IE5000 C3560-CX CDB DNA Essentials Yes Yes Yes Yes Yes Yes Yes DNAAdvantage No No Yes Yes Yes Yes yes Extended Nodes are Beta in DNA-C v1.2
- 7. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential DNA-C Demo
- 8. © 2018 Cisco and/or its affiliates. All rights reserved • Extended Nodes – Same workflow as Fabric Edge, enabling more use cases • Operationally – Fabric is single Entity • Operationally – no Vlan, firewall, or routing tables to update • Security enforcement at Fabric Edge (not extended node) • Network Admin focus on ‘Intent’, and how to build Policies. • Not on configuration of network elements. SDA Extended Node - Summary
- 10. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential backup