1、#CiscoLive#CiscoLiveBrenden Buresh Distinguished ArchitectCesar Obediente Distinguished Architect BRKDCN-2929Simple VXLAN/EVPN Fabric Setup with Nexus Dashboard 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEnter your personal notes hereCisco Webex App 3Questions?Use Cis

2、co Webex App to chat with the speaker after the sessionFind this session in the Cisco Live Mobile AppClick“Join the Discussion”Install the Webex App or go directly to the Webex spaceEnter messages/questions in the Webex spaceHowWebex spaces will be moderated by the speaker until June 9,2023.12343htt

3、ps:/ 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicBRKDCN-2929Agenda 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicIntroductionNexus Dashboard(ND)Nexus Dashboard Orchestrator(NDO)Nexus Dashboard Fabric Controller(NDFC)VXLAN EVPN FabricMulti Site DomainExternal C

4、onnectivityL4-L7 Services InsertionNDFC Automation&ProgrammabilityInfrastructure as Code(IaC)NDFC DemosBRKDCN-29294Introduction 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLive6BRKDCN-2929Centralized ManagementoCo-located on the SwitchoLimited to No SynchronizationoHost Sw

5、itch Operational Dependency Network Redundancy(NIF to NIF)oUses VNTag(802.1BR/802.1Qbh)o1+1 Redundancy based on Layer-2 Port-Channel(vPC)Host Redundancy(Host to HIF)oSingle Homed or Dual Homed Hosts(vPC,A/S)oSpanning-Tree BPDU GuardoSubset of HIF Capabilities(Dependent on Host Switch)FEXFEXFEXFEXHos

6、tSwitchHostSwitchCCvPCHIF with BPDU GuardNIF with VNTagActive/ActiveSingle Homed HostEnhanced vPCDual Homed HostStraight ThroughDual Homed HostStraight ThroughActive/Standby HostA Data Center Fabric Prior to Data Center FabricsTypically,2-Tier/3-Tier,vPC Based,No Overlay,Discreet L2/L3 Services 2023

7、 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLive7BRKDCN-2929Customer NeedsCustomer NeedsVXLAN DeliveredVXLAN DeliveredAny workload anywhere VLANs limited by L3 boundariesAny Workload anywhere-across Layer 3 boundariesVM MobilitySeamless VM MobilityScale above 4k Segments(VLAN

8、limitation)Scale up to 16M segmentsSimplification of L2/L3 ServicesIntegrated L2/L3 Services,no STPEfficient utilization of bandwidthLeverages ECMP for optimal path usage over the transport networkSecure Multi-tenancyTraffic&Address IsolationCustomer Use Cases for Data Center Fabrics 2023 Cisco and/

9、or its affiliates.All rights reserved.Cisco Public#CiscoLiveLLLLLLSSSS2 Tier Leaf Spine2 Tier Leaf SpineLLLLLLSSSSLLLLLLSSSSSSSSSSSS3 Tier Leaf3 Tier Leaf-SpineSpine-SuperSpineSuperSpineLLLLLLFFFFLLLLLLFFFFSSSSSSSS3 Tier Leaf3 Tier Leaf-FabricFabric-SpineSpine8BRKDCN-2929The Journey to Build Better

10、and Further 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public9A perfectly valid wayTends to have“Finite Scale”Maximum Chassis capacityMaximum Speed per PortMany Locations of RedundancyRedundant Chassis ComponentsCondensed Link and Bandwidth PresenceAggregated within a ChassisStandard

11、 Design2 Tier Leaf SpineUse Modular Chassis at SpineUse Higher Density LinecardsUse Higher Bandwidth per PortLLLLLLSSSS2 Tier Leaf Spine2 Tier Leaf SpineBRKDCN-2929 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public10Avoiding Scale-Up with another TierDistributed Link and Bandwidth Pr

12、esenceDisaggregated across TiersIncreases the“Finite Scale”No Dependency on Chassis capacity or Speed per PortMany Locations of RedundancyRedundant Chassis ComponentsAllows for Cost OptimizationExpanding Scale3-Tier Multi-SiteScale-Out;Introduce a 3rd TierInterconnect multiple 2 Tier“PODs”Use Modula

13、r or Fixed Spine&SuperSpineUse High Port DensityUse High Bandwidth per PortLLLLLLSSSSLLLLLLSSSSSSSSSSSS3 Tier Leaf3 Tier Leaf-SpineSpine-SuperSpineSuperSpineBRKDCN-2929 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public11Increasing Scale-Out in all TiersReduce to the MaxSimple Design

14、PrinciplesIncreases the“Finite Scale”Scale as You GoDisaggregated RedundancyFlexible Link and Bandwidth DistributionFurther Possibility for Cost OptimizationIncreasing ResiliencyMultiplanar ArchitectureTo Infinity and the BeyondLLLLLLFFFFLLLLLLFFFFSSSSSSSS3 Tier Leaf3 Tier Leaf-FabricFabric-SpineSpi

15、neBRKDCN-2929Nexus Dashboard 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveConsume all services in one placeInsights*OrchestratorData BrokerPublic cloud*Includes Cisco Network Assurance EngineSAN ControllerCloud ControllerFabric ControllerPrivate cloudPublic cloudBRKDCN-

16、2929Cisco Nexus DashboardSimple to Automate,Simple to ConsumeNexus Dashboard13 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLivePhysical Form FactorPhysical Form FactorUCS C220 M5 chassis2x10 core 2.2G Intel Xeon Silver CPU256G RAM4x2 4TB HDDs400GB SSD1.2TB NVMe4x25G Virtua

17、l Interface Card 14551050W Power SupplyCluster PID:SE-CL-L3Node:SE-NODE-G2Minimum 3 nodes to run a clusterSupport of max 2 standby nodes 4 additional worker nodesVirtual Form FactorVirtual Form FactorVMware ESXi 6.5,6.7 or 7.0vCenter 6.xApp NodeMemory:64 GBvCPU:16Storage:550G+50G(HDD or SSD)Data Nod

18、eMemory:128 GBvCPU:32Storage:3TB+50G(SSD/NVMe)Cloud Market PlaceCloud Market PlaceProvider:AWS and AzureInstance Type:AWS:m5.4xlargeAzure:Standard_D16s_v3Storage:AWS:100G gp2 SSD,300G gp2 SSDAzure:OS:50 GB,Data 250/500 GBNetwork:VPC/VNET:2IP Address:Elastic:6Static:3BRKDCN-2929Nexus DashboardApplian

19、ce Specifications14 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveNDO Service on pND or vND App node NDO Service on pND or vND App node ND ClusterND ClusterMasterMasterStandby Standby MasterMasterMasterMasterNDFC Service on pND NDFC Service on pND ND ClusterND ClusterMas

20、terMasterStandby Standby MasterMasterMasterMasterNDFC Service on vND App node NDFC Service on vND App node ND ClusterND ClusterMasterMasterStandby Standby MasterMasterMasterMasterORWorker Worker WorkerWorker150ms RTT150ms RTT50ms RTT50ms RTT50ms RTT50ms RTTMaster node:Cluster control plane.Performs

21、scheduling tasks when PODs are instantiated based on resources/load and maintains state of the cluster.3 nodes of same form factor.Can replace 1 master node at any timeWorker node:Horizontal scaling-out and execute containers applications.Additional 4 nodes(needs to be same type as master)Standby no

22、de:Increasing HA in case of Master node failure.Only a Standby node can be promoted to Master.NDFC tolerates failure of up to 1 Master node.The ND/NDFC cluster goes into read-only when 2 Master nodes are down.Nexus DashboardDistributed Cluster DeploymentBRKDCN-292915Nexus Dashboard Orchestrator 2023

23、 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveNDO offers multisite networking orchestration and policy management,disaster recovery and high availability,as well as provisioning and health monitoring.Private Cloud,Hybrid Cloud,Multiple Cloud Data CentersPrivate Cloud,Hybrid

24、Cloud,Multiple Cloud Data CentersMultisite Network AdministrationDisaster Recovery and AgilityMulticloud OrchestrationAutomate Network OrchestrationBRKDCN-292917Nexus Dashboard OrchestratorMultisite Orchestrator 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLive18BRKDCN-2929

25、Cisco Nexus Dashboard OrchestratorCentralized visibility and provisioningDisaster Recovery and High AvailabilityBusiness Continuity Single Point of Network OrchestrationLarge Scale Data Center Deployment 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveBRKDCN-292919Benefits

26、Flexible geo-redundancy for Cisco DCNMNetwork policy consistencyChange control domains separationIncreased scalability valuesCisco Nexus Dashboard OrchestratorCisco NDFC Integration Capabilities&ScalabilityVirtual routing and forwarding stretchL2/L3 network stretchOverlay BGP EVPN/VXLAN connectivity

27、 across sitesFull-meshCentralized to route-serverInter-site connectivity automation through BGWsStatic port/VLAN provisioningVisibilityFault information for NDFC objects within NDOTunnel and NDFC object health within NDOScale out 30 Cisco NDFC VXLAN-EVPN fabrics(starting NDO 4.0)500 VRFs and network

28、s(L21500,L31000)Cisco Nexus Dashboard Fabric Controller instance 1 ScalabilitySite 1Site 2MultisiteSite 3Site 4Cisco Nexus Dashboard Fabric Controller instance 2 Cisco Nexus Dashboard OrchestratorMultisiteNDFCNDFCNexus Dashboard Fabric Controller 2023 Cisco and/or its affiliates.All rights reserved.

29、Cisco Public#CiscoLiveIn depth Management and control for all network deploymentsManagementGet Centralized Visibility and Monitoring viewsVisibilityAutomationAccelerate provisioning and simplify deploymentsComplete life cycle automation for VXLAN-EVPN,LAN,SAN,and Media fabrics for Cisco NX-OS Nexus

30、and MDS infrastructureBRKDCN-2929Cisco Nexus Dashboard Fabric ControllerNDFC Key Pillars21 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveFabric controller for LAN and IPFM DeploymentsFabric discovery for LAN DeploymentsSAN controllerOnboard NX-OS switches for InsightsOnb

31、oard NX-OS switches for automation including insights Onboard MDS switches for automation and SAN insights BRKDCN-2929Cisco Nexus Dashboard Fabric ControllerOperational Modes22 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveMulti-Domain,Multi-PlatformLAN,SAN,IPFMNexus 2k/

32、5k/6k/7k/9k,MDS,IOS-XE,IOS-XR,Non-Cisco3-stage&5-stage CLOS,3-Tier Hierarchical,Collapsed Core,Routed AccessMulti-ArchitectureMulti-Topology,Multi-ProtocolFor example In Legacy networks,choose from 3 Tier or Collapsed Core,choose to run IGP or BGPWhy NDFC?BRKDCN-292923 2023 Cisco and/or its affiliat

33、es.All rights reserved.Cisco Public#CiscoLiveDevice typeMonitorManual Config*AutomateAutomate IFC IFC Nexus 9000 Classic LANNexus 9000 VXLAN EVPNCatalyst 9000 Classic LANCatalyst 9000 VXLAN EVPNASR 1000 series IOS-XEASR 1000 series IOS-EX SD-WANISR 1100 series IOS-EX SD-WANASR 9000 series IOS-XRNon-

34、Cisco platformsArista*based on NDFC release 12.1BRKDCN-2929NDFC and Other Network Device Operations24 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveUsed to automate Used to automate deployment of VXLAN EVPNdeployment of VXLAN EVPN3 use3 use-cases:cases:-N9k/N3k IGP/iBGP-

35、N9k/N3k eBGP-C9k OSPF/iBGPAutomation for Brownfield/Greenfield Fabrics(Refresh Platforms)Templatized Best PracticesMonitor or Managed ModeMonitor or Managed ModeCisco Nexus switchesConfiguration complianceBackup or restoreNetwork InsightsPerformance monitoringVMMTopology viewKubernetes visualization

36、RBACLAN ClassicEasy FabricIGP/iBGPeBGPFabric GroupSimilar to LAN Classic+Similar to LAN Classic+VXLAN EVPN(manual)Multi-Site IFC VRF-lite IFCNX-OS family devicesOS-XE family devicesIOS-XR family devicesArista 4.2(any model)External FabricMultiMulti-Site DomainSite DomainMulti-Fabric containerSingle

37、Point of Control for Overlay networks&VRF shared across members(Fabrics)Easy Fabric are members for Multi-site creationToR,External Fabric,can also be members to automate overlays networks(ToR)and underlay(IFC)MSD FabricNX-OS Nexus familyNX-OS,IOS-XE,IOS-XR,non-CiscoNexus N3kN9kCatalyst 9000Used to

38、automate Used to automate deployment of Classic LAN deployment of Classic LAN Investment protection for existing networksAutomation for Brownfield/Greenfield Fabrics(Refresh Platforms)Templatized Best PracticesEasy ClassicNX-OS Nexus familyDifferent Types of Fabric TemplatesBRKDCN-292925 2023 Cisco

39、and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveBRKDCN-2929Benefits of NDFC Easier scalability with adding extra nodes to the cluster dynamicallyEasier implementation of various personas namely LAN,SAN,IPFM controllerSimple download and installation from the Cisco App StoreSingle Exp

40、erience with a common Web GUI which simplifies adoption across the entire Cloud Networking Product PortfolioJoins the ecosystem of services that runs natively on top of Nexus DashboardComplete Cloud-Native Micro-services architecture on ND with Active Active HA Cluster26 2023 Cisco and/or its affili

41、ates.All rights reserved.Cisco Public#CiscoLiveFabric FeaturesImage Mgmt&POAPIOS-XR/IOS-XE FeaturesEnhanced Topology ViewAbility to modify switch discovery IPFlexible CLI option config profile or native NXOS CLIPerformance Programmable reportsGranular RBACSecure POAP UserSimplified and flexible Imag

42、e ManagementServer Smart LicensingAutomate IOS-XR configurationAutomate VXLAN EVPN fabric deployment with Cat9kBRKDCN-2929Complete Cloud-Native Micro-services architecture on ND with Active Active HA ClusterNew Look&Feel with Modern Topology View,Consistent UI across all Cisco ND AppsWhats New with

43、NDFC 27VXLAN/EVPN Fabric 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveVXLAN EVPN Operation for Multiple Cisco PlatformsEasy Fabric Template for Nexus 9000 seriesNX-OSEasy Fabric Template for Catalyst 9000 seriesIOS-XEBRKDCN-2929VXLAN EVPN FabricNexus 9000 Series and Cat

44、alyst 9000 Series29 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveReal-Time Network Topology&Fabric HealthCompute Stack Visualizer3rdParty integrationPerformance Monitoring&ReportsEvent AnalyticsConfiguration ComplianceImage Management,Upgrades and RMAEnhanced RBAC suppo

45、rtBackup&Restore ConfigurationE2E Network ProvisioningVisibility&MaintenanceGUI/API-based Auto-provisioningClassic LAN,VXLAN EVPN FabricBrownField import and GreenField creationMultiple Fabrics&Multi-Site Advanced Network servicesExternal Layer 3 connectivity(VRF-Lite,MPLS,SR)NDFCBRKDCN-2929NDFC Fab

46、ric Management&Operations 30 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveRapid Deployment with Fabric Builder best practice templates for VXLAN-EVPN Enhanced ProgrammabilityDevOps friendlyEasy to understand approach to auto-bootstrapping of entire fabricScale within an

47、d across data centers with Nexus Dashboard OrchestratorAccelerate provisioning from days to minutesBenefitsSimplify fabric deploymentsDeveloper agilityMulti-siteNDFC Automation AutomationBRKDCN-292931 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveManagementSingle point f

48、or management for data center operationsEnsure consistency and reliability of data center fabricsRole based access control(RBAC)to reduce administrative workflowsLicense managementOptimized for both large deployments and traditional deployment modelsManagement for non-Nexus platforms BenefitsReliabi

49、lityComplianceSecureNDFC Management BRKDCN-292932 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveVisibility and monitoringVisibility and MonitoringGet comprehensive monitoringOAM support with NDFCObtain detailed inventory,health,resource consumption information on devices

50、Compute and endpoint visibilityEnd-to-end visibility,monitoring and troubleshootingEnhanced topology viewsIntegrate with Day 2 operationsBenefitsIntuitiveDeep VisibilityEnhanced monitoringBRKDCN-2929NDFC Visibility and Monitoring 33 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#C

51、iscoLiveBenefitVXLAN FabricWithin NDFC select fabric builderUn-provisioned switchesFast,automated processCisco best practice implementedSupport for both brownfield and greenfield deploymentsAccelerate fabric deploymentsAutomated consistencyMinimize riskSupport for both Greenfield and Brownfield depl

52、oymentAutomate VXLAN EVPN DeploymentsProvision a New Fabric in MinutesBRKDCN-292934 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveCampus VXLAN EVPNData Center VXLAN EVPNLayer-3 MSDC FabricTraditional 3-Tier LAN VXLAN EVPN Multi-SiteFabric Builder 35 2023 Cisco and/or its

53、 affiliates.All rights reserved.Cisco Public#CiscoLiveStep 2Step 2DiscoverStep 1Step 1CreateStep 3Step 3Recalculate and DeployGenerates config based on intentPreview side by side diffsDefine fabric settings(Underlay,Overlay)-AS#,Replication Mode,IGP,IP Pools,etc.Import switches with POAP or Day-0 co

54、nfigDefine switch Roles(Border,Leaf,Spine,etc)Optional Create vPC pairsCisco best practice implementedFast,automated processNot on VXLAN EVPN Today?NDFC Fabric Controller ModeBuild VXLAN fabric in few minutesTemplates alreadyembed best practicesIP addresses,overlay pool,routing profiles,replication

55、attributes all taken care by NDFC 36VXLAN FabricVXLAN EVPN Greenfield Setup BRKDCN-2929 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveStep 2Step 2DiscoverStep 1Step 1CreateStep 3Step 3Recalculate and DeploySanity checks for mis-config and Normalizes configuration to best

56、 practicesDefine fabric settings(Underlay,Overlay)-MatchMatch AS#,Replication Mode,IGP,etc.Import switches with Preserve ConfigPreserve ConfigDefine switch Roles(Border,Leaf,Spine,etc)Already using VXLAN?Want to use NDFC for managing your fabric?NDFC fully supportsBrownfieldNon-disruptive importof e

57、xisting VXLAN EVPN deploymentsLearns topology,allconfiguration,associated resources,IP subnets,VNIs,VLANs,etc.Start Managing fabric as ifprovisioned fromNDFCVXLAN EVPN Brownfield Migration BRKDCN-292937 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLive38BRKDCN-2929Your VXLA

58、N EVPN Underlay/Routed fabric is ready in a few minutesCreate Define Fabric Settings1Discover and Import Switches2Recalculate the Configurations3Preview(Optional)4Deploy Configurations5Day in the Life of NDFCUnderlay Using Fabric Builder 2023 Cisco and/or its affiliates.All rights reserved.Cisco Pub

59、lic#CiscoLiveCreate Network&VRFAttach multiple SwitchesPreview Configuration(Optional)DeployAttach multiple InterfacesFabric SelectionTop-Down deployment via GUI or REST APIsNetwork/VRF Creation with custom Overlay Policies Attach Network to Switches and InterfacesPer Network/Per Switch deployment H

60、istoryCentralized Overlay Resource Manager Tracking for VNIs,VLANs etc.BRKDCN-2929Day in the Life of NDFCOverlay Network Management39Multi Site Domain 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveBorder GatewayLayer 3 based Anycast BGW deployed at the leaf LayervPC Bord

61、er GatewayUsed to locally dual-attach Layer 2 networks or Endpoints Allows Distributed Anycast Gateway(DAG)Border Gateway SpineLayer 3 based Anycast BGW deployed at the Spine LayerVXLAN Multi SiteDifferent Roles for Border Gateway(BGW)BRKDCN-292941 2023 Cisco and/or its affiliates.All rights reserve

62、d.Cisco Public#CiscoLiveL3Standalone Fabric-1Standalone Fabric-2Fabric-1Fabric-2Layer 3BGWBGWBGWBGWMultiSite FabricInterconnect Multiple VXLAN EVPN FabricsVXLAN EVPN Multi Site Domain(MSD)BRKDCN-292942 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveS1S2Leaf-1Leaf-2Leaf-3L

63、eaf-4MemberFabric-1S2Leaf-1Leaf-2Leaf-3Leaf-4MemberFabric-220202020Multisite FabricCreate a Multi-Site DomainBGWBGWBGWBGWBRKDCN-2929Create and Deploy the Multi-Site Domain 43External Connectivity 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveVXLAN EVPNDot1QClassic LANDot

64、1QEndpoints locally attached at Layer 2(e.g.Servers,IPS,Service Node in Bridge mode)Classic LAN to Border Leaf nodes at Layer 2(Hot live Motion,Migration,Ops simplicity)12Border LeafVXLAN EVPNExternal Layer 2 ConnectivityBRKDCN-292945 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public

65、#CiscoLiveLayer 3 CoreVXLAN EVPNBorder LeafEdge RouterTenant-123Service BTenant-123App AVRF-Lite Hand-offVRF Lite is used for connecting the fabric to an external Layer 3 domain(N-S)Each Tenants(VRF)can connect outside the Fabric via a Borders Leaf NodeThe WAN Edge router can be any Layer 3 deviceVX

66、LAN EVPNExternal Layer 3 ConnectivityBRKDCN-292946 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveThe target router must be part of an External Fabric or Easy Fabric1External FabricEasy FabricThe Role of the border device must be Border Advertise Default Route is enough f

67、or ext.L3 conn35NDFC auto deployment of VRF-Lite rulesVRF-Lite hand-off must be initiated from an Easy Fabric2The Role of the Target router must be Edge Router or Border node4NDFCBorder RoleEdge Router roleVXLAN EVPN External Layer 3 ConnectivityPrerequisites and GuidelinesBRKDCN-292947 2023 Cisco a

68、nd/or its affiliates.All rights reserved.Cisco Public#CiscoLiveMPLS LDP or SR-MPLSLeafLeafLeafLeaf.SpineSpineBorderBorderCollapsed Border+PELayer 3MPLS LDP or SR-MPLSLeafLeafLeafLeaf.SpineSpineBorderBorderSeparated Border+PE(Inter-AS Option A)VRF-lite withSub-InterfaceIntra SiteMPLS/IPVPNIP/VRF-lite

69、Seamless Data-Plane Stitching between VXLAN,MPLS and Segment RoutingSeamless Protocol GatewayVarious ModelsBRKDCN-292948L4-L7 Service Insertion 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveL4-L7 Service Insertion Use Cases BRKDCN-292950Virtual&Physical Form FactorStatic

70、&Dynamic PeeringvPC/Non-vPC AttachmentsInter-TenantTenant-Edge FirewallTenant ATenant BPBR Use-Cases(no SNAT)Intra-TenantPBRPBR Use-CasesTenant APBROne-ArmPBRTenant APBRTwo-ArmsPBRTenant APBR 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveSupported on VXLAN EVPN with the

71、Easy_Fabric TemplateEnabled on CloudScale based Switches(Cisco Nexus 9300-EX/-FX)Leaf,Border Leaf,Border Spine,Border Super Spine,Border GatewayL4-L7 Service node automation using NDFC UI or NDFC REST APIL4-L7 Services generate Kafka Notification for Real-Time InteractionDisplay Cumulative statistic

72、s From the Service Policy and Redirected FlowsBRKDCN-292951L4-L7 Service Node Guidelines Network Programmability 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDay-0 Operations involve One-time stepsDay-1 Operations involve Multiple-time stepsNDFC Offers Features and Tool

73、s in addition to its Web UI NDFC Programming with IaCNDFC Bulk Attachment and DetachmentoAPI-Docs(formerly Swagger)oPostman,Boomi,Oracle API MgroAnsible Playbooks,Terraform BRKDCN-2929NDFC Automation ToolsOverlay Networks&VRF Deployment53Infrastructure as Code(IaC)2023 Cisco and/or its affiliates.Al

74、l rights reserved.Cisco Public#CiscoLiveEnd-userNDFC Mgmthttps:/ND-Mgmt-IP/https:/ND-Mgmt-IP/apidocs/https:/ND-Mgmt-IP/appcenter/cisco/ndfc/api/*Plugin:NDFC HTTPAPI/IaCOOB MgmtIssue commands through NDFC on each Device To Operate and TroubleshootNDFCGUINDFCREST APINDFCTerraformAnsible*https:/ND-Mgmt

75、-IP/appcenter/cisco/ndfc/api/v1/lan-fabric/rest/control/fabricsBRKDCN-2929NDFC Elements Management Config Options 55 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveSelect the definition of interest and Expand itTry it out And fill-up the variables with the desired values

76、NDFC REST APIEmbedded API Docs 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveNDFC API-DocsLeverage NDFC API-DocsSelect the POST operation you want to execute Typically,given examples provide the JSON script Copy the example to reuse it by a REST API 3rd party tool BRKDCN

77、-2929NDFC and REST API 57 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveCustom PlaybooksVRFTemplateRoute PeeringService PolicyService Node RESTPolicyNetworks Inventory InterfaceModuleTarget Hosts InventoryController nodes&CredentialsVariablesBRKDCN-2929https:/ and Infras

78、tructure as CodeAnsible Collection58 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveUse-case:You have been asked to urgently build and deploy about twenty networks across multiple Leaf nodes and interfaces,and you want to use the Ansible collection to speed up deployment

79、while mitigating the risk of errors.VXLAN EVPNVRF BleuVRF GreenVRF OrangeInstall Cisco Ansible DCNM Collection*version 2.0.1 for both DCNM&NDFC Run the Ansible Playbook command associated with the Environment Configure the controller(NDFC)reachability information Configure the Network Playbook to me

80、rge new Networks&VRF*$ansible-galaxy collection install cisco.dcnmBRKDCN-2929NDFC and REST APIDemo Using Ansible Playbooks59NDFC Demos 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveNDFC Demo61BRKDCN-2929NDFC Dashboard WalkthroughNDFC VXLAN FabricNDFC and NDO MultiSite 20

81、23 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveNDFC Dashboard Walkthrough62BRKDCN-2929New RedesignEnhanced End Point Capabilities24-hour Snapshots 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLive63BRKDCN-2929The intent of the DashboardDashboard is

82、 to enable network and storage administrators to focus on areas of concern around the health and performance of data center switching.2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEnhanced End Point Capabilities64BRKDCN-2929Viewing Kubernetes PodsViewing vCenter VMsNDFC

83、Provides Superior Visibility to the End Points 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEnhanced End Point Visualization65BRKDCN-2929 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEnhanced Endpoint Locator66BRKDCN-2929 2023 Cisco and/or

84、its affiliates.All rights reserved.Cisco Public#CiscoLiveNDFC VXLAN Multisite67BRKDCN-2929Easy to ImplementEnd-to-End VisibilityFollow Best Practices 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveNDFC VXLAN Fabric68BRKDCN-2929 2023 Cisco and/or its affiliates.All rights

85、reserved.Cisco Public#CiscoLiveNDFC and NDO MultiSite70BRKDCN-2929Multicloud orchestrationAutomate network orchestrationSingle Pane of Glass 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveNDFC and NDO MultiSite71BRKDCN-2929Conclusion 2023 Cisco and/or its affiliates.All r

86、ights reserved.Cisco Public#CiscoLiveNDFC SummaryNeed new IconsStreamlined lifecycle managementAutomate and configure your networks with ease Maintain compliance and detect errorsExtensive visibility,monitoring and modernized topology viewsExpand your network with integrations with NDO and NDIBRKDCN

87、-292973 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveFill out your session surveys!Attendees who fill out a minimum of four session surveys and the overall event survey will get Cisco Live-branded socks(while supplies last)!74BRKDCN-2929These points help you get on the

88、leaderboard and increase your chances of winning daily and grand prizesAttendees will also earn 100 points in theCisco Live Challenge for every survey completed.2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicContinue your educationVisit the Cisco Showcase for related demosBook your

89、 one-on-oneMeet the Engineer meetingAttend the interactive education with DevNet,Capture the Flag,and Walk-in LabsVisit the On-Demand Library for more sessions at www.CiscoL you#CiscoLive 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveGamify your Cisco Live experience!Get

90、 points Get points for attending this session!for attending this session!Open the Cisco Events App.Click on Cisco Live Challenge in the side menu.Click on View Your Badges at the top.Click the+at the bottom of the screen and scan the QR code:How:1234 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicBRKDCN-292977#CiscoLive