Watch the REPLAY right now: http://bit.ly/2YoLbt3
Enterprise networks are now dealing with massive volumes of data, with a critical need to collect and analyze this data to respond faster and deliver insightful context. Traditional approaches, in which data is processed in remote servers, will no longer work. Data can burden the network unless some context is known. Edge computing can greatly reduce the data sent to the cloud or a remote server. Collecting and analyzing the data at the edge and making decisions locally rather than in centralized servers significantly reduces the latency and bandwidth of the network.
Powered by an x86 CPU, the application hosting solution on the Cisco Catalyst 9000 switching family provides the intelligence required at the edge. Native Docker engine support on the switches will enable users to build and bring their own applications without additional packaging. Cisco DNA Center will provide consistent workflows to manage the entire application lifecycle across multiple Cisco Catalyst 9000 switches through the App Hosting dashboard.
Resources:
Watch the related TechWiseTV episode: http://cs.co/9001EIbih
TechWiseTV: http://cs.co/9009DzrjN
10. Competitive edge
Feature Cisco IOS XE Arista EOS ArubaOS Aruba OS-CX Juniper Junos Huawei VRP
Application hosting
capability
Natively
supported via
the EOS Linux
bash
SLAX or JET SDK
are available for app
hosting, development
or/and running
Orchestration CLI, Cisco DNA
Center
Open – Do at
your own risk
CLI CLI
On box python Built-in Built-in Built-in Built-in
Native docker support
Supported platforms
Catalyst 9000
switches
All platforms 3810X, 29XX 8320, 8400
EX43XX, 34XX,
23XX
S5720HI, S5720SI
Not present Basic AdvancedPartial
Software for a new era in networking
Cisco IOS XE 16 is an open and flexible operating system optimized for a new era of enterprise networks.
Its standards-based programmable interfaces automate network operations and give you deep visibility into user, application, and device behaviors.
As the single OS for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE reduces business and network complexity. You can qualify and deploy new services faster.
Cisco IOS XE is a modern operating system that delivers industry leading innovations in programmability, streaming telemetry, application hosting, patching, and graceful insertion and removal (GIR).
Align business and IT goals: Develop a strategy and roadmap to accelerate your Cisco DNA journey across your entire operation
• Improve IT service delivery: Integrate across technology, operations and application domains
• Unlock business insights: Enable heterogeneous network analytics and data
• Enable continuous business/IT alignment: APIs support business and IT applications for an enhanced user experience
• Optimize performance: Proactive assessments, and critical insights to streamline operations and inform the business with network analytics
• Innovate with confidence: Centralized solution support to manage your case to resolution
• Minimize disruption: Managed Services help secure IT management for business transformation to maximize network performance and uptime by delivering consistent always-on service availability.
• Build in-house expertise: Virtual and hands-on technical training to equip IT staff with new skills and knowledge.
Cisco IOS XE application hosting allows third-party off-the-shelf applications built using Linux tool chains to run on Catalyst 9000 switchingK platforms. Application are hosted in a Linux containers for maximum flexibility on distribution environments and isolation from the main operating system.
Applications lifecycle, from initial deployment through ongoing change management and application retirement can be managed using Cisco Fog Director through a visual web environment or integrate with existing management systems through APIs.
Background
One of the most common tasks for the network administrators and operators is troubleshooting and verifying network performance. While the network may not always be the source of performance issues, its often the responsibility of the network IT to be able to rule out the network being source of issues. There are several tools and solutions that can help provide visibility into network performance. Some use out of band mechanisms like SNMP or NetFlow to collect interface counters/errors, and measure latency and round-trip times. Others use agent-based solutions that are able to determine traffic characteristics at an application level. Examples include AppNeta and AppDynamics, which provide detailed application performance profile analytics could potentially also be enhanced to provide a network agent and enhance the application context with network performance data. There are also open source utilities such as iPerf, perfSonar and commercial utilities like Selenium that can help simulate application traffic and provide an application-centric network performance view.
The value in running these utilities on the network infrastructure is that it can help the network operators quickly ascertain whether it is an application level issue versus a more generic network level issue. In addition, they can help pinpoint the source of the bottleneck to a source outside the enterprise network or within the enterprise network, narrow it down to the particular network link or device.
Customers often run a parallel network infrastructure to run these utilities. This introduces complexity in their environment, since such a parallel infrastructure requires independent devices like laptops, raspberry-pi’s, etc. as well as an independent IP-addressing and power infrastructure, cabling and management, and configuration of traffic redirection/copy/forwarding as needed.
Converging such agents and utilities on the network infrastructure provides benefits such as:
Enabling the benefits of network and application performance monitoring in a single view, to be able to quickly point-point source of performance issues
Not requiring dedicated parallel infrastructure such as laptop, cables, power, IP-address management
Not having to manually configure SPAN sessions and instead being able to graphically select the traffic of interest in an intuitive manner
Automatically trigger the performance monitoring sessions as required across the network at scale
Packet capture:
Every network administrator relies on packet capture for monitoring and troubleshooting the network. Traditionally, operators have relied on span to troubleshoot end-user connectivity problems. This is often time consuming, slow and complicated to have physical access to the network device, have another laptop to run the packet capture, cable it and configure the appropriate SPAN session to view the traffic of interest. Often, network administrators are remote and getting physical access to the network infrastructure is a time-consuming process. Running packet capture/analyzer tools such as Wireshark on the network device that is managed through Cisco DNA Center can significantly simplify operations for network engineers by:
Enabling them to trigger packet captures remotely
Not necessitate dedicated laptop, cables
Not having to manually configure SPAN sessions and instead being able to graphically select the traffic of interest in an intuitive manner
Automatically capture the PCAP files to the desired location
Visualize the packet capture in single user-interface as the rest of the operations command center
Integrate lifecycle management of the packet capture tool into a single consolidated man
Automation and telemetry agents: Customers often want consistent management tools in their operations toolchain. Operations from an infrastructure perspective going forward has to aspects:
Automation
Telemetry
In areas of both automation as well as telemetry, there are agent-based approaches that would benefit from the application hosting capability on the network infrastructure. Hosting these agents on the network infrastructure allows the customer to simplify their deployment by reducing the need to install dedicated agent nodes and having a common solution to automation or telemetry & analytics that can work consistently on the network and beyond.
Example of automation agents are Chef and Puppet, or even on-box python can be used for local event management and automation. Examples of telemetry agents include Kibana and Splunk.
Zeek: A common use case for Zeek (formerly known as Bro) is the identification of network behavioral deviations. A few examples include an internal host that suddenly begins communicating with a machine for the first time ever, communicating with more hosts than normal, or using a protocol that is different or unusual. Zeek maintains a record of network transactions, a user can go back retroactively and look at how a series of events played out leading up to that notification. This forensic examination helps determine the behavior a machine was exhibiting before beaconing and understanding if other machines were touched or infected in the process.
Nozomi: establish a baseline of what a normal pattern looks like – what number of connections or hosts an endpoint communicates with, the protocols it uses, and the amount of data it typically sends or receives.
Scenarios: Internal host that suddenly begins communicating with a machine for the first time ever, communicating with more hosts than normal, or using a protocol that is different or unusual.
Access section
Core section
Sneak peak 9600
INSTALL/DEPLOYED: Application is installed on the device. Resources needed by the application is not committed to the application.
ACTIVATED: The resources required by the application is now committed. Associated container artifacts are also generated.
START/RUNNING: Application is now running
STOPPED : Application is stopped.