《构建专用 5G 以实现弹性、安全性和企业网络融合.pdf》由会员分享,可在线阅读,更多相关《构建专用 5G 以实现弹性、安全性和企业网络融合.pdf(73页珍藏版)》请在三个皮匠报告上搜索。
1、#CiscoLive#CiscoLiveBhavik Adhvaryu Ben BleichmanBhavik175 BbleichmanBRKSPG-2042For Resiliency,Security,and Enterprise Network ConvergenceArchitecting Private 5G 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEnter your personal notes hereCisco Webex App Questions?Use Cis
2、co Webex App to chat with the speaker after the sessionFind this session in the Cisco Live Mobile AppClick“Join the Discussion”Install the Webex App or go directly to the Webex spaceEnter messages/questions in the Webex spaceHowWebex spaces will be moderated by the speaker until June 9,2023.12343htt
3、ps:/ 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicBRKSPG-20423#CiscoLive 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicAgendaCisco Private 5G Introduction Architecture Deep-DiveSolution SecurityEnterprise IntegrationPrivate 5G Stack ObservabilitySummary Private
4、 5G DemosEasy to DeployEasy to OperateISE IntegrationUmbrella DNS IntegrationP5G Monitoring+ThousandEyesBRKSPG-20424 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicWho are we?Bhavik AdhvaryuBhavik AdhvaryuSr.Tech Product LeadLinkedIn bhavik175Ben BleichmanBen BleichmanSr.Product MB
5、RKSPG-20425 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicWhats in it for me?1.Understand what is private 5G and why it is important?2.How to build resilient and secured P5G service?3.Unified tools across Wi-Fi&P5GP5G becomes access technology adjacent to Wi-Fi4.How to achieve bus
6、iness objective and monitor the service?5.See things LIVE!LIVE!BRKSPG-20426 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLivePrerequisitesBRKSPG-20427This presentation assumes knowledge about:Introductory knowledge of Private or Public 5G Introductory knowledge about Cisco
7、Enterprise Portfolio primarily ISE,Umbrella,ThousandEyes,etc.Cisco Private 5GIntroduction 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveA private cellular network that is built using 3GPP 5G technology,dedicated to carrying traffic from a specific entity(e.g.,an enterpri
8、se)in licensed radio spectrum What is Private 5G?DevicesMobile packet coreRadioSpectrumAccess networkBRKSPG-20429 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveTypical 5G Network ArchitectureUsage ReportingPolicy and Service ConfigurationSubscriber ProvisioningSIM and Id
9、entity ProvisioningProvisioningSoftware Life Cycle ManagementAuthentication FunctionLoggingUser Plane FunctionApplicationsSLA Management4G/5G Session Management4G/5G Mobility ManagementMetrics/EventsAutomation ToolsUnified Data RepositoryUnified Data Manager4G/5G Session Management4G/5G Mobility Man
10、agementRBACDevices4G/5G Centralized Unit4G/5G Distributed UnitRadio mgtRadios(Radio Unit)Home Subscriber ServerNot all functions shownEnterprise DomainEnterprise+Cloud/Service Provider DomainManagementEnterprise and Service Provider AccessBRKSPG-204210 2023 Cisco and/or its affiliates.All rights res
11、erved.Cisco Public#CiscoLiveCisco Private 5G in the enterprise 11Converged core architecture Full LCM:RAN,core,device Tight enterprise integration Cisco security portfolio UX/API Automation focused AI/ML tools Secure signaling and management 5G/4G radios 5G/4G converged core Campus WAN Cloud apps Ed
12、ge apps Edge apps ISE API access User interface Role-based access control Service management Identity management BRKSPG-2042 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLivePrivate 5G solutionRadios Certified and validated Open RAN radio partnersMobility core Industry-lead
13、ing 4G/5G converged mobility coreIdentity and policy Intuitively integrated into existing enterprise systemsManagement Cloud managedEnterprise Ready Offline ResourceBRKSPG-204212SimpleSecuredTrusted 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveComprehensive 5G solution
14、delivered with enterprise simplicity Cisco Private 5G Whats included Enterprise dashboardReliable operationsCloud-managed serviceHigh-performance edgeCompact mobile core Fully integrated with enterprise switches and routers Integrated identity and security 3GPP release support UX for customer onboar
15、ding and for management by customer or partner APIs for automation and enhanced services 24x7 support SLA assurance Software and firmware for edge equipment New feature content Packet core management Subscriber(SIM)management and authentication Monitoring and alerting of service/solution BRKSPG-2042
16、13 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLivePartner-led Full stack subscription is pre-integrated and validated by CiscoCisco software,delivered as a serviceMSP Partner provides HW,spectrum,and onsite servicesRadios Certified and validated Open RAN radiosPacket core
17、 Industry-leading 4G/5G converged packet coreIdentity and policy Intuitively integrated into existing enterprise systemsManagement Cloud managedBRKSPG-204214 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveManaged Cisco Private 5GPrivate 5G-enabled,E2E solution by partners
18、 CiscoMSP PartnerEnterpriseCisco Private 5G OfferCore Platform ManagementDevice/SIM ManagementE2E Service Health MonitoringEmbedded support(24/7/365)Private4G/5G CoreSIMsP5G ManagementDashboardRadioDevicesEdge HWSpectrumCustomerSuccessIndustryUse CasesSubscribe,consume,and focus on outcomesMSP Offer
19、Plan,design,implementBest-of-breed radio technologyE2E SupportValue-added servicesBRKSPG-204215Demo#1:Easy to Deploy 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveLog in.Self-onboarding Wizard5G service is ready.Step-by-step Onboarding WizardSimplified configuration Ente
20、rprise friendlyAutomated instantiation Complete core network configuration hours not daysEasy to DeployBRKSPG-204217Install HardwareP5G Architecture Deep Dive 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLivePrivate 5G architecture Enterprise admin RAN operations CNDP-Cloud
21、 Orchestration and management,monitoring of edge Cisco P5G Management PlatformUX and API interface,Cisco Cloud hosted core NFMSP admin Cisco operations Cloud EnterpriseCBRS,n77,n79 Enterprise applications GPS antenna RAN switch Indoor/outdoor gNB/eNB Indoor/outdoor 4G/5G RU Secure P5G edge(UPF/SMF/A
22、MF/MME)vRAN servers(CU/DU)Devices Devices 4G/5G router Enterprise switch RAN mgmt.BRKSPG-204219 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveMSP admin Cisco Private 5G Solution architecture RAN operations Cisco operations Cloud Enterprise Devices Devices 4G/5G router CB
23、RS,n77,n79 GPS antenna RAN switch Indoor/outdoor gNB/eNB Indoor/outdoor 4G/5G RU vRAN servers(CU/DU)Enterprise switch Enterprise applications P5G edge N1 P5G edge N2 AMF,SMF,MME Control node and CEE(infra)UPF/SGW-U 4G/5G security and ISE proxies Orch and automation P5G edge N3 RBAC Security Eps Ops/
24、Mon Automation NF LCM Edge orc Edge mgmt.CI/CD CNDPCNDP-Cloud Cloud(CSP)(CSP)RBAC CHF Cloud proxy AUSF UI/portals UDM/UDR HSS API platform P5G management Platform P5G management Platform(Cisco Cloud)(Cisco Cloud)RAN mgmt.RAN EMS Internet BRKSPG-204220Secure P5G edgeSecure P5G edge 2023 Cisco and/or
25、its affiliates.All rights reserved.Cisco PublicKey Cisco Solution BlocksCisco Control CenterGeo-redundantly deployedacross the continentsCloud Native Deployment PlatformDeployed at CSPs availability zonesP5G EdgeDeployed per Enterprise siteBRKSPG-204221 2023 Cisco and/or its affiliates.All rights re
26、served.Cisco Public#CiscoLiveKey Cisco solution blocks 22BRKSPG-2042P5G edge Deployed per enterprise site Cisco control center Geo-redundantly deployed across the continents Cloud native deployment platform Deployed at CSPs availability zones Anchor 4G and 5G device support Secure onboarding via edg
27、e proxy TLS connection to cloud Integration with RAN and enterprise network components Provides backend data for UI Enables cloud based continuous monitoring and management Orchestration and automation REST APIs Enterprise and MSP portals(UI/UX)Role based access control Multi-tenancy across the boar
28、d E2E network management SIM device management(SDM)AUSF,UDM,and UDR for 5G HSS for 4G Charging function Robust API platform Device management and monitoring P5G edge management and monitoring NF lifecycle management Orchestration and automation CI/CD Secure edge onboarding via cloud proxies TLS endp
29、oints Multi-tenant platform Offline Resource 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveP5G edge 1.5B daily subscribers over Cisco packet core NFs#1 mobile IoT share First US-wide 5G IoT and consumer deployment 5K sessions and 15Gbps throughput Scalable design SP grad
30、e 4G and 5G network functions Cloud managed single click automated edge deployment 3GPP release support Fully integrated with enterprise switches and routers Seamless integration with Cisco ENT portfolio(ISE/Umbrella)P5G edge Deployed per enterprise site Private 4G/5G core BRKSPG-204223 2023 Cisco a
31、nd/or its affiliates.All rights reserved.Cisco Public#CiscoLive220M+devices 82M+connected card 60+service providers 30K+enterprises 120 countries 20+industries P5G Management PlatformBuilt on a strong foundation of mobile SaaS(IoT Control Center)Enterprise sites(edge)Cisco IoT control center Enterpr
32、ise backend integration Deep network integrations P5G edge and device onboarding and LCM Analytics and diagnostics Global API CRM:Traditional IT MDM:Traditional IT Intuitive UI R&D Operations Finance Partners Private 5G edge RAN Devices Comprehensive security Multi-tenant platform Reliable operation
33、 BRKSPG-204224 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveCNDP-Cloud P5G edge LCM(CI/CD)Tool suite for Cisco SRE team APIs for automation and enhanced services North and south bound TLS end points Scalable design Leveraging industry best CSP practices P5G Edge managem
34、ent Closer to P5G edge to meet industry use cases Enables Cisco Cloud integration checkpoints Backend to have 24/7 support with SLA assurance Cloud native deployment platform Deployed per enterprise site BRKSPG-204225Demo#2:Easy to Operate 2023 Cisco and/or its affiliates.All rights reserved.Cisco P
35、ublic#CiscoLiveService control and visibility at the SIM levelEasy to OperateBRKSPG-204227Simple Device ManagementControl SIM inventoryCreate Device GroupsReal Time Service VisibilityCore,Radio,Device viewsSingle and multi-tenant optionsHolistic service visibilityTime series viewsSecured&Trusted 202
36、3 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLive5G accessWi-Fi accessWired accessCloudDCWANCampusCisco P5G integrated enterprise architecture vision End-to-end automation and policy Comprehensive telemetry and assurance Consistent security and segmentation Cisco endpoint/IoT
37、GW integration Common enterprise policy Common transport Enterprise security integration Unified identity framework Unified EN operations Consolidated insights and analytics Private and public mobility 29BRKSPG-2042 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveP5G secur
38、ity overview IPsec Enterprise sites(edge)TLSTLSTLSSecured P5G edge P5G edge N1 P5G edge N2 AMF,SMF,MME Control node and CEE(infra)UPF/SGW-U 4G/5G security and ISE proxies Orch and automation P5G edge N3 TLSTLSRBAC Security Eps Ops/Mon Automation NF LCM Edge orch Edge mgmt.CI/CD CNDP-Cloud(CSP)RBAC C
39、HF Cloud proxy AUSF UI/portals UDM/UDR HSS API platform P5G management portal(Cisco Cloud)RAN Devices RAN Enterprise Switch RAN mgmt.RAN EMS Partner cloud Enterprise Campus access DC SaaS VPC 30BRKSPG-2042 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEnterprise grade se
40、curity across the board Security across the portfolioP5G management system AES 256 bit encryption No customer data stored in DB without encryption Next-gen LBs and firewalls in place 3GPP based security features SIM based secured authentication workflow Control and data plane encryption and protecti
41、on Enterprise integrated Umbrella DNS integration Centralized identity and policy via ISE Secure network architecture P5G secure edge Stringent Cisco security workflows TLS tunnel to secure transport Leverage K8s security features Vault in place to protect sensitive data P5G security BRKSPG-204231 2
42、023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLive3GPP security Device focused32BRKSPG-2042IPsec With 5G,IMSI in the very first request is sent encrypted using public key stored in SIM/eSIM TLSTLSTLSSecured P5G edge P5G edge N1 P5G edge N2 AMF,SMF,MME Control node and CEE(inf
43、ra)UPF/SGW-U 4G/5G security and ISE proxies Orch and automation P5G edge N3 TLSTLSRBAC Security Eps Ops/Mon Automation NF LCM Edge orch Edge mgmt.CI/CD CNDP-Cloud(CSP)RBAC CHF Cloud proxy AUSF UI/portals UDM/UDR HSS API platform P5G management portal(Cisco Cloud)RAN mgmt.RAN EMS Partner cloud Enterp
44、rise Campus access DC SaaS VPC Enterprise sites(edge)RAN Devices RAN Enterprise switch 128-or 256-bit authentication symmetric key stored in SIM/eSIM Identity of IMSI is stored in SIM/eSIM K K 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLive3GPP security CP/signaling focus
45、ed 33BRKSPG-2042IPsec AS is independently encrypted/protected with unique keys TLSTLSTLSSecured P5G edge P5G edge N1 P5G edge N2 AMF,SMF,MME Control node and CEE(infra)UPF/SGW-U 4G/5G security and ISE proxies Orch and automation P5G edge N3 TLSTLSRBAC Security Eps Ops/Mon Automation NF LCM Edge orch
46、 Edge mgmt.CI/CD CNDP-Cloud(CSP)RBAC CHF Cloud proxy AUSF UI/portals UDM/UDR HSS API platform P5G management portal(Cisco Cloud)RAN mgmt.RAN EMS Partner cloud Enterprise Campus access DC SaaS VPC Enterprise sites(edge)RAN Devices RAN Enterprise switch 3GPP devices maintain two signaling connection t
47、owards AMF/MME and RAN-CU NAS is independently encrypted/protected with unique keys K K 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLive3GPP security UP/data plane focused 34BRKSPG-2042IPsec Data plane is independently encrypted/protected with unique keys TLSTLSTLSSecured
48、P5G edge P5G edge N1 P5G edge N2 AMF,SMF,MME Control node and CEE(infra)UPF/SGW-U 4G/5G security and ISE proxies Orch and automation P5G edge N3 TLSTLSRBAC Security Eps Ops/Mon Automation NF LCM Edge orch Edge mgmt.CI/CD CNDP-Cloud(CSP)RBAC CHF Cloud proxy AUSF UI/portals UDM/UDR HSS API platform P5
49、G management portal(Cisco Cloud)RAN mgmt.RAN EMS Partner cloud Enterprise Campus access DC SaaS VPC Enterprise sites(edge)RAN Devices RAN Enterprise switch Data-plane traffic between device and RAN-CU is encrypted and integrity protected K K 2023 Cisco and/or its affiliates.All rights reserved.Cisco
50、 Public#CiscoLiveP5G edge security Hardened microservices TLS connectivity between componentsNo remote connectionAES 256 volume encryption for data at RestEnhanced app layer security over HTTPS via Secure proxyFrequent key rotation Secured P5G edge P5G edge N1 P5G edge N2 AMF,SMF,MME Control node an
51、d CEE(infra)UPF/SGW-U 4G/5G security and ISE proxies Orch and automation P5G edge N3 BRKSPG-204235 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveRBAC CHF Cloud proxy AUSF UI/portals UDM/UDR HSS API platform RBAC Security Eps Ops/Mon Automation NF LCM Edge orch Edge mgmt.
52、CI/CD CNDP-Cloud(CSP)P5G management portal(Cisco Cloud)Advanced load balancers and firewalls in placeHardened MicroservicesGeo-Redundant and Multi-tenant cloud environment Data remains isolated per enterprise tenant and secured to ensure separation of metrics P5G cloud security AES 256 volume encryp
53、tion for data at RestMulti-tenant environment Frequent key rotation Encrypt/decrypt data before transmission using Vault;All customer data encrypted before storageBRKSPG-204236Trusted Enterprise Integration 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLive“How can enterpris
54、e IT/OT admin have common policies and identity across various enterprise domains,such as Wi-Fi,wired,and cellular(4G and 5G)?”38BRKSPG-2042Enterprise problem statement 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveIntent Unified business goals across the enterprise doma
55、ins driven by ISE Why unified policy and identity is critical?39BRKSPG-2042Use cases Allow wired,wireless,or VPN access to network resources based upon the identity of the user and/or endpoint Differentiate between corporate and guest users and devices Classify the endpoints and authorize them appro
56、priately with device profiling Group-based policy allows for segmentation of the network using access control lists(ACLs)Identity based policy allows the unified policy to users and devices Security Group Tagging(SGT)VLAN tagging on data plane traffic matching with rest of the campus logic QoS profi
57、le Uplink and downlink Aggregate Maximum Bit Rate(AMBR)PDU type New in P5G 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveAuthorization enforcement options 40BRKSPG-2042Access Control Lists Cisco group-based policy Dynamic VLAN assignments*Coming soon EmployeesVLAN 3Print
58、ersVLAN 5GuestVLAN 416-bit SGT assignment and SGT based access control Per port/per domain/per MAC Employeepermit ip any any Contractordeny ip host permit ip any any VLANs ACLs SGTs*2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveP5G and ISE integration Overview 41BRKSPG-2
59、042TLSInsert Cisco delivered SIM in devicesRequest SIM cardsand assign policy groupAdmin assigns QoS policy profile to deviceRANEnterprise facilityDevicesP5GEdgeQoS policyprofilesABCApplication servicesInternetEnterprise premCloudAdminSIM mgmt.P5G portalISE321 2023 Cisco and/or its affiliates.All ri
60、ghts reserved.Cisco Public#CiscoLiveP5GEdgePDU session establishment request DevicesP5G and ISE integration Secondary authorization workflow 42BRKSPG-2042AdminQoS policyprofiles1RADIUSaccess request3AUTH statusPDU establishment response6QoS policy profile“C”indicatedin ISE response and used toestabl
61、ish PDU session5RADIUSaccessrequestIMSI2RADIUSaccessaccept policyprofile name3Enterprise facilitySIM mgmt.P5G portalEnterprise premCloudISEInternetApplication servicesRADIUSaccounting start4RADIUSaccess accept72ABC 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEndpointsU
62、sersDevicesThingsNetwork devicesSwitchesWLCs/APsVPNIdentity servicesAzure/AD/LDAPMDMSAML/MFASecurity servicesCloud analyticsSecure firewallPartnersISE enables zero trust in P5G SecurityEnterpriseCisco ISE P5GP5G BRKSPG-204243 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiv
63、eSubscriber group policy DBEndpoint group policy DBSubscriber DBEndpoint DBISEAuth request(IMSI,IMEI)1Auth response(IP pool,VLAN,SGT*)2Execute(IP pool,VLAN,SGT*)3Policy execution support IMSIGlobally unique IDIMSI keysIdentity groupIMEIIMSI-AGUID-AK-AIdG-AIMEI-KIMSI-BGUID-BK-BIdG-BIMEI-LIMSIGlobally
64、 unique IDEndpoint group IMEI:IMEI-KGUID-KEptG-KIMEI:IMEI-LGUID-LEptG-LIdentity groupAllow/rejectIdG-AAllowIdG-BRejectEndpoint groupSGTVLAN-IDIP PoolAllow/reject EptG-K1EnggEnggAllowEptG-L2PLMPLMRejectEdge/enterprise Devices RAN Wi-Fi Authorization Private edge core Switch ISEISESMFUPFISE proxyRouti
65、ng123Offline Resource*Coming soon BRKSPG-204244Demo#3:Unified Identity and Policy across Enterprise domainsP5G&ISE Integration 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveP5G&ISE IntegrationBRKSPG-204246Connect P5G to an ISE InstanceImport Device and User Groups from I
66、SEAssign Device ProfilesCreate P5G Device ProfilesP5G&ISE Detailed Integration Call Flows 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLive5G Call FlowAuthentication Authorization Focused UE RegistrationPDU Session EstablishmentOffline ResourceBRKSPG-204248 2023 Cisco and/o
67、r its affiliates.All rights reserved.Cisco Public#CiscoLivePre-requisite Required device credentials and policies on ISE Required device credentials on P5G-Portal ISE-Proxy is the secret recipe to facilitate the ISE integration SMF sends radius access requests to ISE via ISE-Proxy Based on the polic
68、y configuration,ISE will take one of the following actions Deny the request Accept the request Accept the request with specific policy details such as Auth Profile Index,PDU type,VLAN tagging,AMBR,etc.SMF gets the policy details from ISE and send it to UPF UE will have enhanced policies applied as d
69、efined in ISEBRKSPG-204249Umbrella DNS 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveCommon security models for existing Wi-Fi access+private 5G Leveraging existing enterprise infrastructure when applicable Edge/enterprise Control center for P5G and SIM management+RAN vi
70、sibility Extending security via Umbrella Cisco Umbrella Umbrella security policy Basic redirect Allow/deny list Centralized v/s global access list Limit content access Control applications Common onboarding/accounting Local domain offload Devices Capability examples*RAN Wi-Fi Local domain Umbrella c
71、onnector Private edge core Cisco/cloud facilities ISESDM BRKSPG-204251 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEnterprise SecurityProven Enterprise grade security from access edge to cloudExtends 5G 3GPP SBA and SDA securityPrivate 5G SIG and DNS security integrati
72、on for on/off prem accessAligns with Ciscos enterprise security strategyBringing Enterprise Access,Edge and App Security to 5GOffline ResourceBRKSPG-204252 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveCisco UmbrellaSD-WANON/OFF NETWORK DEVICESCisco UmbrellaIntegrated se
73、curity platformSecureXDNS-layersecurityCloud-deliveredfirewall(w/IPS)Secure webgatewayCloud accesssecurity brokerInteractive threat intelligenceRemote browserIsolationDatalosspreventionCloud malware detectionMeraki MXViptelaVisitour website to learn ResourceBRKSPG-204253Demo#4:Unified Security Polic
74、ies(DNS)across Enterprise domainsP5G&Umbrella Integration 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveUmbrella DNS Integrates with Cisco Private 5G from Day 1BRKSPG-204255P5G Stack Observability 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiv
75、eDifferent Roles,Different Views Enterprise admin CNDPCNDP-CloudCloudAutomated Edge Orchestration and MonitoringCisco P5G Cisco P5G Management PlatformManagement PlatformUX and API interfaceMSP admin Cisco operations Cloud EnterpriseCBRS,n77,n79 Enterprise applications GPS antenna RAN switch Indoor/
76、outdoor gNB/eNB Indoor/outdoor 4G/5G RU P5G edge(UPF/SMF/AMF/MME)vRAN servers(CU/DU)Devices Devices 4G/5G router Enterprise switch RAN mgmt.BRKSPG-204257 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveP5G MonitoringCisco OpsMSP Partner OpsEnterprise OpsCisco Private 5G Se
77、rviceService health status(Edge/Radio)Device/SIM monitoringREST APIAdvanced integrationsPartner Value AddE2E supportSingle point of contactRAN MonitoringAdditional monitoring servicesGlobally distributed technical operations teams.Monitoring thousands of alerts and health of all Cisco components.24x
78、7x365 Advanced tooling 13 datacenters 20k compute nodes Supporting 70 service providers Supporting 200+million connected devices Service health status(Edge/Radio)Device/SIM monitoringREST APIAdvanced integrationsBRKSPG-204258 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiv
79、eEnterprise BenefitP5G Integration with ThousandEyesDelivering best in class observabilityService AssuranceEnabled by MSPRich bi-directional time-series contextCustomizable alert rules See and corollate jitter,packet loss,delay events Network Path VisualizationEndpoint-to-app service monitoringBRKSP
80、G-204259Demo#5:P5G Observability1.P5G Dashboard2.ThousandEyes Integration 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveP5G Monitoring61BRKSPG-2042Real Time Service VisibilityCore and radio monitoringDevice/session-level metricsSingle and multi-tenant optionsTime series
81、views 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveThousandEyes Integration62BRKSPG-2042ThousandEyes and Private 5G empower your internal and external stakeholders to visualize network health and maintain a predictable service at scale.ThousandEyes agents provide unique
82、 visibility and insight across multiple segments of a P5G service.Monitor jitter,packet loss,delay and throughput.Path visualization extends service visibility all the way to cloud endpoints 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDevice management(e)SIM management
83、 Application integration Tighter integration into enterprise services Macro network ZTP devices Multi access Secure unified onboarding Enterprise Service(MNO/MVNO)Multi core Unified identity and policy Identity services engine Cisco Control CenterAuthentication+service management Authentication+poli
84、cy EnterpriseMacroCatalyst 9K+Wireless LAN controller Private mobility core BRKSPG-204263ThousandEyes MonitoringMonitoring&ManagementUnified Security Policy Umbrella connector Summary 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveSummaryCisco Private 5GCisco Private 5GBR
85、KSPG-204265Enterprise-grade security across the boardEnterprise-readynetworkConverged access network(no island)Highly available and resilient network(edge to cloud)Enabling partner and enterprise observability 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveJune 4|2:00 pmT
86、ECSPGTECSPG-24322432New Adventures in Wireless:The Journey of WiFi6 and Private 5G Networks for the EnterpriseJune 5|8:30 amBRKSPGBRKSPG-20422042Architecting Private 5G for resiliency,security,and enterprise network convergenceJune 5|10:30 amBRKSPMBRKSPM-10061006The 5G System as a Spectrum Managemen
87、t SolutionJune 7|2:30 pmPSOGENPSOGEN-10331033Unlock business outcomes from connectivity with a Private 5G solutionStartStartCisco Private 5G Learning Map66BRKSPG-2042June 5,|8:00 amBRKSECBRKSEC-20852085Architecting Enterprise Security in a Wi-Fi plus Private 5G WorldJune 5|11:00 amBRKENSBRKENS-29502
88、950Is your Enterprise Network Ready for P5G June 8|09:30 amBRKSPGBRKSPG-204420445G Use Cases Flight Line of the Future and Smart Warehouse June 6|3:00 pmBRKEWNBRKEWN-20302030WiFi6 and Private 5G for the Enterprise a Better Together JourneyJune 8|1:00 pmBRKGENBRKGEN-20012001Cisco P5G-A Robust and Sec
89、ure ArchitectureFinishFinishJune 8|01:00 pmIBOSPGIBOSPG-20072007Getting Started with Private 5GJune 7|4:00 pmBRKSPGBRKSPG-30043004Monolithic or Polylithic packet cores?The case for specialized use-case-based mobile packet coresJune 5|11:30 amPSOSPGPSOSPG-10021002Leading Your Digital Transformation w
90、ith Cisco Private 5G Network Offer 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveAdditional Private 5G Sessions CL Live67StartStartMonday,Jun 5 2:30 PM BRKSPGBRKSPG-10021002Dont Just Connect,Grow your IoT Business with Cisco IoT Cellular Connectivity Management Monday,Ju
91、n 5 8:30 AM BRKSPGBRKSPG-20422042Architecting Private 5G for resiliency,security,and enterprise network/WiFi 6(E)convergenceThurs,Jun 8,11:00 AM PSOSPGPSOSPG-170117013 Keys to Succeeding at IoT Scale with Cellular Connectivity ManagementThurs,Jun 8,1:00 PM IBOSPGIBOSPG-20072007Getting Started with P
92、rivate 5GThurs,Jun 8,9:30 AM BRKSPGBRKSPG-204420445G Use Cases Flight Line of the Future and Smart Warehouse Thurs,Jun 8,1:00 PM BRKGENBRKGEN-20012001Cisco P5G-A Robust and Secure Architecture Tuesday,Jun 6,3:00 PM BRKEWNBRKEWN-20302030WiFi6 and Private 5G for the Enterprise a Better Together Journe
93、y Wed,Jun 7,10:30 AM BRKSPGBRKSPG-21332133Evolution of the Transport Network Architecture in the Context of 5G and Open RANFinishFinishPSOSPG-1002Monday,Jun 5 11:30 AM PSOSPGPSOSPG-10021002Leading Your Digital Transformation with Cisco Private 5G Network Offer,World of Solutions-Cisco Theater 1BRKSP
94、G-2042 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveWhy Private 5G Matters to Your Business Digital Transformation Panel Discussion:Bhupesh Agrawal Director of Private Network&Edge ComputingVivek AgrawalDirector of Private 5G Business Development Chris CalvertVP Private
95、 Wireless ServicesJoin us at Intel Booth#4915 in World of SolutionsMonday June 5 at 4:30-5pmTues June 6 at 11-11:30amWed June 7 at 11-11:30amKrishna ChiralaDirector of Private 5G Product Management BRKSPG-204268 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveFill out your
96、 session surveys!Attendees who fill out a minimum of four session surveys and the overall event survey will get Cisco Live-branded socks(while supplies last)!These points help you get on the leaderboard and increase your chances of winning daily and grand prizesAttendees will also earn 100 points in
97、 the Cisco Live Challenge for every survey completed.BRKSPG-204269 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicContinue your educationVisit the Cisco Showcase for related demosBook your one-on-oneMeet the Engineer meetingAttend the interactive education with DevNet,Capture the F
98、lag,and Walk-in LabsVisit the On-Demand Library for more sessions at www.CiscoL you#CiscoLive 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLive72Gamify your Cisco Live experience!Get points Get points for attending this session!for attending this session!Open the Cisco Events App.Click on Cisco Live Challenge in the side menu.Click on View Your Badges at the top.Click the+at the bottom of the screen and scan the QR code:How:123472 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicBRKSPG-2042#CiscoLive