Cisco VXI is a comprehensive, end-to-end virtualization system. VXI facilitates rapid deployment of desktops, and improves control and security by improving visibility at the VM level. The VXI system also offers the industry's lowest total cost of ownership. VXI integrates rich media and network services to improve performance and application response. The VXI modular, eco-system-based architecture preserves customer flexibility, and ensure long-term alignment with the industry. The VXI system comprises mandatory and optional components from both Cisco and third-party technology partners. Mandatory components are those that provide the basic foundation for a virtualized desktop deployment A VXI configuration includes these components: • Compute (Cisco) • Hypervisor (Technology Partner) • VDI Desktop Software (Technology Partner) • Storage (Technology Partner) • Endpoints • Networking (Cisco) • Applications (Cisco) This session will provide in-depth design considerations and guidelines for deploying an end to end Virtual eXperience Infrastructure (VXI). It is designed to offer technical information to the networking professional planning to deploy a VXI system.

1. VXI – End-to-end Virtualization
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 1

2.  "The worldwide hosted virtual desktop (HVD) market will accelerate through 2013 to
reach 49 million units, up from more than 500,000 units in 2009, according to Gartner
Inc.
 Worldwide HVD revenue will grow from about $1.3 billion to $1.5 billion in 2009, which is
less than 1 percent of the worldwide professional PC market, to $65.7 billion in 2013,
which will be equal to more than 40 percent of the worldwide professional PC market.”
- Gartner, Inc.
http://www.gartner.com/it/page.jsp?id=920814
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 2

3. BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 3

4. The New VDI Experience
VXI Architecture
Any Any
Application Content
Anywhere Anytime
Securely, Reliably, Seamlessly
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 4

5. Overview
Business Drivers
 Capital Expenditures (CAPEX)
Lengthened desktop hardware refresh cycles
Reduced desktop hardware capital expenses
Reduced desktop software licenses
 Operational Expenditures (OPEX)
Reduced desktop software maintenance and operational expenses
Lower desktop power consumption
Moves, Adds, and Changes (MAC)
Productivity
 Capabilities
Disaster Recovery (DR)
Improved desktop and data security/protection
Flexibility - Improved user mobility and faster time to market
 Externalization
Increased numbers of contractor, outsourcer, or partner desktops to support
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 5

6. Deliver a superior collaboration and rich media user experience with best in class ROI in a
fully integrated, open and validated desktop virtualization solution
IT Standardization Rich Media Experience
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 6

7. Overview
Virtual Desktop Models
Virtual Desktop Streaming Remote Virtual Desktop
Apps
O/S Desktop
Synchronized Apps
App Guest App Apps OS
Apps Apps Apps
Desktop
Apps OS OS OS OS
App Guest OS OS
OS Hypervisor
Main OS
Display Data
Server
Application Streaming Terminal Services
Application
App
OS
App App
OS Display Data
OS
Server
OS Presentation
Server
Client Hosted Computing Server Hosted Computing
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 7

8. Overview
The Network is the Desktop
Broker
Keyboard, Video, Mouse Thin
Client
Compute
Storage
Network
 Personal Computer is disaggregated
 Keyboard, Video, and Mouse stay with user
 Compute and storage move to the data center
 Network availability is required for all application access
 Network performance is critical to user experience
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 8

9.  ICA/HDX
• Citrix Proprietary – Supports many advanced features
• 32 virtual channels
• TCP transport
• If the latency is greater than 30ms, Flash content is rendered on the server
• Encryption and compression on by default
 PCoIP/Teradici
• VMware software and hardware – Highly efficient
• Adaptive - compensates latency and bandwidth variations
• Supports 4 monitors and resolution upto 2560 x 1600
• 128-bit AES (On by default)
• UDP Transport – Most Security servers support TCP only
 RDP
• Protocol by Microsoft
• Citrix/VMware VDI deployment support
• TCP transport and AES support
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 9

10. Overview
What Do End Users Need?
Call Center or Clerical Professional Design Professional
Administrative Rich Media Graphics or Custom
Remote/Task Worker Knowledge Worker Power User
Thin Clients Capable Clients
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 10

11. Overview
Horizontal and Vertical Market
Regulated Industries Task Workers
Finance
Government Healthcare Retail Education
Banking
Call centers, Red badge employees, Off shore development, Extranet access, Mergers and
Acquisitions, High cost of real estate, Building moves, Windows 7 migrations
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 11

12. Overview
Virtual Desktop Components (~$1000)
 Clients (~$250)  Compute (~$250)
 Software (~$250)  Storage (~$250)
Broker with display protocol Virtual machine
Virtualization (OS, application, User data
profile) User profile storage
Microsoft Client Access License
Clients Network Broker UCS Storage
VMFS via DAS,
RDP RDP
FC, NFS, iSCSI
ICA/HDX ICA/HDX
PCoIP User Data
CIFS
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 12

13. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13

14. What We’ve Heard From Customers…
Desktop Virtualization Drivers
Flexibility / Business Continuity Data Total Cost of Ownership
Security
Desktop Virtualization Challenges
Maintaining High Quality Fragmented Solution Set Return on Investment
for Video, Voice
Experience
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 14

15. Branch Office
Video Source
Branch Router
T1
Data Center
 Protocols in the virtual desktop environment appear
Routing “monochrome” to QoS
Protocol
Updates Tex  Lack of flow differentiation prevents prioritization within a
t
display protocol stream
CIFS  Video stream competes with other flows in class – (e.g.:
Display
Protocol CIFS, SAMBA or NFS, )
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 15

16. Video processed on HVD causing
The Hair pinning Problem bandwidth and server compute
Video Source overload
Branch Office
End-users see pixelization as media is
rendered from the data center
T1
Branch Router
Increasing bandwidth might not Data Center
help
Campus
Each “new” copy streamed for each
additional DV client resulting in branch
WAN bandwidth overruns
End-users experience no
pixelization on LAN
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 16

17. • Hairpin Effect – causing undesirable results
Data Center
• Monolithic data flows
Virtual Desktop
Display Protocol
Thin • Voice/Video in the display protocol Media
Client flow goes all the way back to data center
and back
• Heavy processing on virtual desktop in
Signalling data center
(SIP)
• Bandwidth explosion
CUCM WAN • Display protocol and possible endpoint
become unstable
Signalling
(SIP)
Thin
Client
Display Protocol
Virtual Desktop
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 17

18. Live Streaming Video - Traditional
 Unified Communications
PC has local browser with media
player
 Borderless Network
WAN / PSTN
CDS and/or multicast split video
resulting in one stream for many users
on the WAN
Bandwidth/experience is native
100/300/700 kbps
QoS protects business applications
and other traffic
CDE CDE
 Data Center
Encoder sources a single stream to
CDS which unicasts or multicasts to
scale DME
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 18

19. Live Streaming Video With VDI
 Unified Communications
Zero/thin client with display protocol client only
needs capacity to decode
 Borderless Network
CDS and multicast cannot split video in a display
protocol resulting in one stream per user on the
WAN WAN / PSTN
Bandwidth/experience varies depending on display
protocol & streaming format
No QoS so entire experience suffers if congestion
 Data Center
Stream sourced from encoder
Broker Broker
Servers are loaded by transcoding and/or
transrating
Server farm is loaded by all streams UCS CDS CDS UCS
Storage Storage
DMS
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 19

20. Cisco VXI
Virtualized End-to-End System
Virtualized Virtualization-Aware Virtualized
Data Center Borderless Network Collaborative Workspace
Cisco Collaboration
Applications
MS Office
Microsoft OS CDN
Desktop Virtualization Software
Cius Business
Tablets
Hypervisor Cisco
WAN
WAAS
Virtual
ISR
Unified CM Cisco Desktop Virtualization
Endpoints
Nexus
Virtual Quad
WAAS
Com
pute S
UC
vWAAS
ACE
End-to-End Security, Management and Automation
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 20

21. BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 21

22.  Supported setup for Cisco VXI Phase Two
Data Center Zero • Unified Communications using desk
Virtual Desktop
Client phone control which allows
• RTP (UC media “voice/video”) to flow
Display Protocol
outside the display protocol
• Signaling of CUPC back to CUCM is
Signalling
outside the display protocol
(CTI)
• QoS can be used on media
CUCM
• Path is optimized
WAN
• Location Awareness and 911, Codex
Zero
Signalling
Client selection, CAC, SRST Reference, Time
(CTI)
Zone, Dial-Plan
Display Protocol
Virtual Desktop
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 22

23. Cisco Unified Personal Communicator
 Supports products from top virtualization
industry leaders
 Hosted virtual desktop
VMware View 4.6
Citrix XenDesktop 5.0
 CUPC 8.0 or later
 Cisco VXI uses Desk phone control mode
 Softphone not supported and can cause CUPC Office App
undesirable results OS
Desktop Virtualization S/W
Server S/W
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 23

24. Cisco VXI
Interactive Voice/Video
 Unified Communications
Hardphone control for VXC
Softphone in Cius
Survivable Remote Site Telephony (SRST) supported
Use local services (gateways, call control, vmail, etc.)
MMR for Streaming video delivery
 Borderless Network WAN / PSTN
Use local internet access
Use CDS/ACNS/WAAS to cache, split, and/or multicast
streaming media (MMR required) WAAS WAAS
Provide QoS for rich media
 Data Center
No voice/video hairpinning
Offload server CPU
Offload server bandwidth Broker Broker
CDS CDS
UCS Storage Storage UCS
DMS
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. CUCM
Cisco Public CUCM 24

25. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 25

26.  Zero clients are the simplest devices
 They have embedded operating systems that are not exposed to the user
 Zero clients have reduced local capabilities and depend heavily on the resources
available within the virtual desktop
 This class of devices is typically slated toward the task worker since it provides no
enhancements for media streaming
 Because there is no exposed OS, there is no virus infection, making them a very secure
endpoint
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 26

27.  Introducing the Cisco VXC 2100 and 2200
Support for PCoIP and ICA/RDP display protocols
Cisco VXC 2100 is a compact device that integrates with the Cisco Unified IP Phone 8961 and
9900
Cisco VXC 2200 is a standalone unit
Both units support PoE (Power over Ethernet)
Cisco VXC 2200 Cisco VXC 2100
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 27

28. VXC endpoints demystified
 VXC endpoints don’t have native telephony capabilities today.
 Hardphone control is used to integrate telephony: Example: in a video call the video will not be displayed on the
monitor connected to VXC
 VXI specific feature support
 MMR : Supported in VXC 2x12 (Citrix) – RDP only
 Smartcard : Supported in VXC 2x12 (Citrix)
 USB Redirection: Supported on all VXC endpoints
 Native Dot1x: Supported in VXC 2x12 (Citrix) only. Dot1x supplicants can’t be installed separately on any VXC
 VXC 2x11 (VMware) supports PCoIP in hardware using Terradici chipset
 Virtual Experience Client Manager (VXC Manager) can be used for enforcing peripheral policies, pushing
configurations (DHCP etc) and firmware upgrades.
Detailed Specs available at www.cisco.com/go/vxc
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 28

29.  Thin client devices usually contain more local capabilities and often have a customizable
local embedded operating system (usually Linux or Windows)
 This class of endpoint provides greater flexibility
 They are generally customized by the system administrators and then locked down
 Thin clients are typically used by power users who need access not only to browsers,
email clients and office automation tools, but also additional features such as streaming
audio and video
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 29

30.  CIUS supports simultaneous voice/video telephony and desktop virtualization – Integrated Cisco
Softphone
 Supports external display in “mirror mode” – Users can’t see phone control and virtual desktop at
the same time
 Base supports POE (Requires 30 W)
1024 x 600
Display Port
Dedicated chip to improve
external display quality 1024 x 600 scaled up to display
size
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 30

31. Software
Thick Desktop Display Protocol Clients
 Thick client devices refer to standard PC or Laptops running a standard OS
but have similar software as the thin client installed as an application
 Thick client devices allow users to work offline and are often the choice of the
“Road Warrior” user
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 31

32. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 32

33. Borderless Networks
Architecture for Agile Delivery of the Borderless Experience
New Innovations
Borderless Endpoint and User Services
Mobility Workplace Video
Experience
Securely, Reliably, Seamlessly: Cisco® AnyConnect Infrastructure
Borderless Network Services
Borderless
Management
and Policy
Mobility: Green: Security: Application Video:
Motion Cisco EnergyWise Performance Medianet
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 33

34. Video Source
Branch Office
End-users see pixelization as media is
rendered from the data center
Branch Router Edge Router
T1
WAN Acceleration for Display Protocol Virtualized Data
Branch WAE Data Center WAE Center
Optimization of virtual desktop protocols – e.g RDP Protocol
End-users experiences no pixelization - latency mitigation
- reduction of bandwidth,
- optimization for MMR and USB Redirect for rich media
and USB peripherals (Printing)
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 34

35.  Watching Video with RDP is unacceptable without WAAS, due to bandwidth explosion.
WAAS provides 91% compression ratio
 There is no benefit to WAN Optimization with PCoIP
PCoIP is an encrypted protocol over UDP
 WAAS improves Citrix ICA “XenDesktop 4.0” with a compression ratio of 55%
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 35

36.  When an endpoint sends a document to a printer, the request actually takes place within
the data center where the virtual desktop and print server are located
 The print data going to the network printer travels outside the desktop display protocol
and can be optimized with WAAS
Print Server
Network Printer
HVD
Branch Office Print Job Edge Router
Display
Protocol WAN Acceleration for Display Protocol
WAN Acceleration for Print Job
Branch WAE Data Center WAE
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 36

37. Cisco WAAS Mobile
 Cisco WAAS Mobile is used to optimize View Client connections for mobile
and/or remote workers that do not have access to the WAE-based solution
 WAAS Mobile can optimize View flows that use traditional VPN or the View
SS role
View Connection
Servers
Small Office Worker
with
WAAS Mobile Client Internet/
WAN
WAAS Mobile Server
Mobile Worker with
WAAS Mobile Client
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 37

38. Borderless Networks
Architecture for Agile Delivery of the Borderless Experience
New Innovations
Borderless Endpoint and User Services
Mobility Workplace Video
Experience
Securely, Reliably, Seamlessly: Cisco® AnyConnect Infrastructure
Borderless Network Services
Borderless
Management
and Policy
Mobility: Green: Security: Application Video:
Motion Cisco EnergyWise Performance Medianet
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 38

39. Cisco Secure Remote Access
Widest Range of Connectivity Options
IPsec VPN Clientless SSL VPN DTLS (voice/video) Mobile Access
Tunneling VPN Access Tunneling Tunneling
Powered by the Cisco ASA
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 39

40. Anyconnect 3.0 supported platforms
 Thick endpoints: Windows, Mac and Linux
 Apple iOS 4
Including iPhone
 Support planned for
additional enterprise
mobility platforms
 Cisco VXC endpoints not
supported today
 iPad and CIUS support Anyconnect
2.5 only
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 40

41. DMVPN in VXI
Branch Access Network Data Center
Branch One
WAAS SRE
WAAS
ISR-G2
DMVPN
DC Network
Core
Branch Two
CUCM/CUPC
N1K
WAAS VSG
Express
Display/Call Control
Traffic
Voice/Video Call
Traffic McAfee MOVE-AV Virus scan
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 41

42. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 42

43. Unified Computing System
Key Innovations applied to Desktop Virtualization
BUSINESS
VALUE
SYSTEMS SOLUTION
SYSTEMS EXCELLENCE DIFFERENTIATION
EXCELLENCE TECHNOLOGY
INNOVATION
Rapid Deployment TECHNOLOGY
Workload Mobility INNOVATION
Optimized Scaling Unified Fabric
Simplified Operations Unified Management
Service Profile
Unified IT Workflows HW Abstraction
Lower TCO Virtual Interfaces
Extended Memory
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 43

44. Optimizing Memory for Desktop Virtualization
Classic
Xeon 5600 Xeon 5600
12 DIMMs 18 DIMMs
Max 96GB Or Max 144GB
Higher Performance Lower Performance
Cisco UCS With
Extended Memory
Xeon 5600 Xeon 5600
48 DIMMs
Max 384GB
© 2010 Cisco and/or its affiliates. All rights reserved.
Higher Performance Cisco Confidential 44

45.  Numbers fluctuate based on worker profile
=
Cisco UCS B250 with 192GB memory
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 45

46.  Cisco VXI Validated Design
Housing the Hosted Virtual
Desktops
WAAS
Management
Outside VDC connects to edge Routers
Cisco VXI CVD on Design Zone
http://www.cisco.com/en/US/netsol/ns742/networking_solutions_program_category_home.html
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 46

47.  Cisco Application Control Engine (ACE) to accelerate and scale connection broker
Mobile
Teleworker
Virtual IP
Thick client
ACE Load Balancer
Thin Client Connec&on
Broker
Serverfarm
Endpoint (LAN user)
 Offloading SSL processing from the connection broker
 One Armed mode suggested when not using SSL offloading
 Cisco ACE supports virtual contexts
Cisco Confidential
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 47

48. Cisco VXI
Virtualized End-to-End System
Virtualized Virtualization-Aware Virtualized
Data Center Borderless Network Collaborative Workspace
Cisco Collaboration
Applications
MS Office
Microsoft OS CDN
Desktop Virtualization Software
Cius Business
Tablets
Hypervisor Cisco
WAN
WAAS
Virtual
ISR
Unified CM Cisco Desktop Virtualization
Endpoints
Nexus
Virtual Quad
WAAS
Com
pute S
UC
vWAAS
ACE
End-to-End Security, Management and Automation
BRKVIR-2002 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Public 48

49. Thank you.
#CNSF2011