主題：Cisco Data Tetration Solution -思科大數據維運解決方案

公司名稱：Cisco Systems

主講人：大中華區數據中心事業部 首席技術顧問錢小山

Tetration

Addition1 a + n = a + 1 + 1 + . . . + 1

n

Multiplication 2a x n = a + a + . . . + a

n

Exponentiation3an = a x a x . . . x a

n

Tetration 4na = aa

n

a.. a

X

X X X X XX X X XX X X

X X

Infinity2

2 2 2 22 2 222

= 100

= 16 = 65536

9 9 9 99 9 (1.966x10 )9 77

= 81 = 1.966x10 = Infinity77

Infinity10 101010

1010 = 1x10100

= 4

81%Evaluating or Using

Public Cloud

73% Have a Hybrid

Cloud Strategy

84% Will Use

Multiple Clouds

Source: Source: IDC InfoBrief, sponsored by Cisco, Cloud Going Mainstream. All Are Trying, Some Are Benefiting; Few Are Maximizing Value. September 2016

It’s a Hybrid IT World

Closing the Gap

Cloud

Applications

Cloud

Gap

IT capabilities

• People

• Processes

• Tools

…and what IT is capable of reliably and confidently

supporting today.

Between what cloud applications require…

Lo

B r

equ

ire

me

nts

Time

Traditional

Applications

•

•

•

Cisco Digital Network Architecture

Automation

Abstraction and Policy Control from Core to Edge

Open and Programmable | Standards-Based

Open APIs | Developers Environment

Cloud Service Management

Policy | Orchestration

Virtualization

Physical and Virtual Infrastructure | App Hosting

Analytics

Network Data, Contextual Insights

Insights and Experiences

Automationand Assurance

Security and Compliance

Network-enabled Applications

Cloud-enabled | Software-delivered

Principles

What if you could actually look at every data packet that has ever traversed the Data Center

Continous & Always-On On Demand

Checking Health and Compliance

大數據維運 (FCAPS) 的三大需求

持續? 無數據遺失? 專家系統?

Cisco Tetration AnalyticsPervasive Sensor Framework

Provides correlation of data sources across entire application infrastructure

Enables identification of point events and provides insight into overall systems behavior

Monitors end-to-end lifecycle of application connectivity

Information about Consumer –

Provider and type of traffic

Detail information

about the flow

Datacenter/Cloud Wide Traffic Flow Visibility

Analytics Tools Production NetworkData Collection Network

ParStreamCSA

SPAN or Tapping

On-demand Data Collecting

Analyze Data

Nexus 3000

Nexus 3100

Nexus 3500

Nexus 9300

Nexus 9500

Cisco Nexus Data Broker

Software+

Traditional Model : Siloed Architecture Fault, Configuration, Accounting, Performance, Security

Analytics Tools Production NetworkData Collection Network

Real-time Data Collecting

Real-time Data Analytics

Nexus 3000

Nexus 3100

Nexus 3500

Nexus 9300

Nexus 9500

Cisco Nexus Data Broker

Software+

大數據維運專家系統

Cisco Tetration Analytics™ Platform

Application

Insight

Policy

Simulation and

Impact

Assessment

Automated

Whitelist Policy

Generation

Forensics:

Every Packet,

Every Flow,

Every Speed

Policy

Compliance

and Auditability

Under 1 Second

New Model : Operational Big Data & Analytics Fault, Configuration, Accounting, Performance, Security

Cisco Tetration Analytics Architecture

Analytics Engine

Cisco Tetration Analytics™ Platform

Visualization and

Reporting

Web GUI

REST API

Push Events

Data Collection

Host Sensors

Network Sensors

Third-Party Metadata Sources

Tetration

Telemetry

Configuration

Data

Cisco Nexus®

92160YC-XCisco Nexus 93180YC-EX

VM

Application

Insight

Policy

Simulation

and Impact

Assessment

Automated

Whitelist

Policy

Generation

Forensics:

Every Packet,

Every Flow,

Every Speed

Policy

Compliance

and

Auditability

Cisco Tetration Analytics

Data Replay & Forensics

Replay flow details like a DVR

Information mapped across 25 different dimensions

• Thick lines indicate common flows• Faint lines indicate uncommon flows

Application Group Discovery (ADM)

Cisco TetrationAnalytics™ Platform

BM VM VM BM

BM VM VM BM

Brownfield

BM VM VM VM BM

Cisco Nexus® 9000 Series

Bare-metal, VM, & switch telemetry

VM telemetry (AMI …)

Bare-metal & VM telemetry

BM VM

BMVM

VM BM

VMM

VM BM

BMVM

BM

Network-only sensors, host-only sensors, or both (preferred)

Bare metal and VM

On-premises and cloud workloads (AWS)

Unsupervised machine learning

Behavior analysis

Application

Group

White List Recommendation

Application Discovery

AppTier

DBTier

Storage

WebTier

Storage

Policy Enforcement(Future Roadmap)

Whitelist Policy Recommendation(Available in JSON, XML, and YAML)

Real-Time and Historical Data Policy Simulating

• Validating policy impact assessment in real time

• Simulating policy changes over historic traffic

• View traffic “outliers” for quick intelligence

• Audit becomes a function of continuous machine learning

Cisco TetrationAnalytics™ Platform

VM BM

VMVM

BM VM

VMVM

VM BM

VMVM

VM

Compliance Testing

• Identify policy deviations

in real-time

• Review and update

whitelist policy with one click

• Policy lifecycle management

VM BM

VMVM

BM VM

VMVM

VM BM

VMVM

VM

Cisco TetrationAnalytics™ Platform

VM

BM

VM

Interact with SDN Controller

APICApplication Policy

Recommendation

Import Policy using ACI

Toolkit

Automatic creation of EPGs

and Contracts

Real

Time

DataNetwork

Policy

App PolicyTetration

Analytics

UCS

Cisco Nexus 9000 Series

UCS

Interact with Cloud Orchestrator

App Level Policy

Enforcement / Visibility

Self-documenting Network

Real time detection &

closed loop automation

Real

Time

DataApp

Policy

App Policy

10101101

01010011

10101010

10001011

Tetration

Analytics

Nexus 9K

Amazon

Web

Services

Microsoft

Azure

Google

Cloud

Cloud Center

Cisco Nexus Data Broker

络 换Cisco Nexus)

Use Case : SDN-Based Data Analytic Services

OpenFlow

Public Internet

Unidirectional optical tap

Data from SPAN port

图 应

络

Analytics

Engine

Cisco Tetration

Analytics™

Platform

What if you could actually look at every data packet that has ever traversed the WAN network network without sampling?

constantly learning, adapting, protecting

Cisco DNA Center - A Closed loop automation

Network Assurance on DNA Center

Analytics(Network Data Platform

(NDP))

Automation(APIC-EM)

Streaming telemetry

& network data

Network and telemetry

configuration

Telemetry, alerts,

violations

Network inventory,

topology, and

configuration

What if you want to extract the data for further processing or take some actionable insight from the network ?

What Is Cisco Kinetic ?

A Streamline IoT OperatiosPlatform

Empowering the EdgeCompute Inside the Network

Billing

Analytic

Systems

IoT

Applications

Business

ApplicationsData Center /

Cloud Management

Edge / Fog

Processing

• Optimized hardware footprint

• No need for separate

compute machinery

• Integrated security

• Empowered edge

processing

• Reduced latency &

bandwidth cost

Edge / Fog

Processing

Microservices

Cisco KineticHow Does It Work?

1 Gateway Power On

4 Call Home / Register

5 Gateway Provisioning

6 Edge / Fog App Download

7 Connect to Devices / Sensors

8Data Gathering, Processing,

API to Applications

9 Cisco or 3rd Party

Applications

456

Cisco Data

Connect

App

App

App App

AppApp

Gateway

Container SIM

2 Field Tech App

3

3 Scanning / Claiming

1

7

App

8

01010101010

101010101

010101010

101010101

01010

Predictive

Maintenance

Technician

Toolkit

Machine

Analytics

New

Service Creation

9

01010

“Zero Touch Deployment”

Distributed Computing Built into the Network, Served by the Cloud

IP Network

Fog Computing

Fabric

IoT Services

Cisco Kinetic Services for the IoT Network

• Gateway Management

(covered in earlier slides)

• Remote Access

• Application Management

• Data Routing

Data Distribution “Routing” • By Source• By Content• By Rules• By Policy

Learn more about ASAP Data Center

www.cisco.com/go/asap

Learn more about DNA

www.cisco.com/go/dna

Next Steps

Q & A

Thank You.

提醒填寫本場議程問卷！利用電子票卡進行線上填寫並請保留

完成後的QRcode畫面，至該場次入口服務處兌換問卷禮，謝謝！