Copyright © 2014 Juniper Networks, Inc.
1 Copyright © 2014 Juniper Networks, Inc.
ARCHITECTURE
A SIMPLE, OPEN, AND SMART NETWORK FOR THE DATA CENTER
DAVID NOGUER BAU
HEAD OF SP SOLUTIONS MARKETING
JUNIPER NETWORKS
@dnoguerCHALLENGES IN THE HOSTING WORLD
Innovation is around the Applications
NETWORKS HAVEN'T EVOLVED FAST ENOUGH
Prevented By Status Quo Architecture And Operations
SERVICES
STATIC
Limited analytics,
fixed policies, months
DATA CENTER MYTHS
Networks are built for a single data center
Data centers are 100% virtualized
VM
VM
VM
Virtual PhysicalVM
VM
VM
Virtual PhysicalVM
VM
VM
Virtual PhysicalVM
VM
VM
Virtual PhysicalINTRODUCING METAFABRIC
My on-premises
data center
My hosted
service provider
My cloud
service provider
My managed
service provider
VM
VM
VM
VirtualVM
VM
VM
VirtualGUIDING PRINCIPLES FOR A NEW ARCHITECTURE
Accelerate time to value, maximize value over time
“Easy to deploy & use”
“Save time,
improve performance”
“Maximize flexibility”
METAFABRIC ARCHITECTURE
Most nimble and available top of rack switch
Switching
Extending the DC edge to the universal DC gateways
Routing
Smart management: visualize, analyze, and control
Management
Simple, open, and agile SDN
SDN
Adaptive security to counter data center threats
VIRTUAL CHASSIS FABRIC GENESIS
QFabric
Optimized for 10/40GbE environments
Optimized for 1GbE environments
Virtual Chassis
Virtual Chassis Fabric
Optimized for mixed
1/10/40GbE
environments
QFX5100 DEPLOYMENT OPTIONS
Spine-Leaf…
QFX5100, QFX3x00 or EX4300 leaf QFX5100 or EX9200 spine QFX5100 QFX5100, QFX3x00 & EX4300 members Virtual Chassis Up to 10 members QFX5100, QFX3x00 EX4300 membersVirtual Chassis Fabric Up to 20 members QFabric QFX5100, QFX3x00 QFabric Nodes Up to 128 members
OPEN ARCHITECTURES
JUNIPER ARCHITECTURES
Managed as a Single Switch
Layer 3
L3 Fabric
INTRODUCING QFX5100
Industry’s most nimble TOR switch
QFX5100 Family
10GbE / 40GbE Access Switches
Rich L2/L3, MPLS │ Low latency│ FCoE │ SDN protocols
Any Fabric
architecture
– one switch, any deployment
Topology-independent ISSU (
TISSU
)
– hitless operations
Insight
Technology
– data for smart analytics
Rich
Junos
features
– ease of deployment, manageability
QFabric gets a major upgrade with QX5100:
MX SERIES ENHANCEMENTS
The most flexible data center gateway
Universal SDN gateway
– “connecting islands”
Open, standards-based DCI
– EVPN, MPLS, VPLS
Seamless workload mobility
– efficient traffic forwarding
VM VM VM VM VM VM VM VM VM Contrail “New” Encaps Bare Metal NSX Bare Metal VM VM VM
MX SERIES ENHANCEMENTS
Connecting islands within and across data centers and clouds
“Flexible SDN enabled programmable
silicon to provide seamless workload
mobility and connections between private
and public cloud infrastructures”
ORE
(Overlay Replication Engine)
A hardware based, high performance services node for broadcast and multicast replication for SDN networks
The most advanced and flexible SDN bridging and routing gateway to connect
L2, L3, MPLS and SDN
USG
(Universal SDN Gateway)
Next Generation technology for connecting multiple data
centers and providing seamless workload mobility
EVPN
(Ethernet VPN)
VMTO
(Virtual machine traffic Optimizer
)
Creating the most efficient network paths for mobile
1
Network Director
SMART WORKLOAD MIGRATION
1. New Application is Launched
2. Automatically Map Virtual and Physical Network Policies
3. Automatic Migration of Virtual And Physical Network Policies
4. Advance Analytics Providing feedback about Network State
5. Applications Location
OPEN API FOR SERVICE ORCHESTRATION
Complete Abstraction
of Network Elements
Network Director Tenant A Tenant B Tenant D Tenant C L2 + L3 Services Policy APIsOpen North Bound RESTful APIs
JUNOS SPACE NETWORK DIRECTOR
SINGLE PANE OF GLASS TO …
Smarter and Proactive Networks
Built-in Collection and Correlation Engine
Hot Spot and Root Cause Analysis
Capacity Planning
Analyze
Customizable Multi-Point Navigation
Virtual and Physical Integration
End to End Network Visibility
Available on Any Device Anywhere
Visualize
Lifecycle and Workflow Automation
Open orchestration APIs
OpenStack and Cloud Stack integration
Extending advanced networking into the virtual world
CONTRAIL ENHANCEMENTS
Physical Network (no changes) Analytics CONTRAIL CONTROLLER Control Configuration Physical Host with Hypervisor vRouter VM VM VM VM Physical Host with Hypervisor vRouter VM VM VM VM WAN, Internet GatewaySimple, open, and agile
– virtual network overlay
New hypervisor support
– ESXi
DATA CENTER SECURITY
DEFEND, DETECT AND RESPOND TO ATTACKS
High-performance
Across physical and virtual
Simplicity
Single, scalable platform across
all use cases
Attack protection
unique intrusion deception technology
RAPID THREAT IDENTIFICATION AND PREVENTION
Leading high-end firewall
Proven data center scale
Integration with WebApp Secure
Virtual host and perimeter security Smart groups—
automatic policy control Optimized for
performance
Low-and-slow and volumetric
Signature free: stops new attacks
No tuning or thresholds
vGW and Firefly
DDoS Secure
SRX Series Firewall
WebApp Secure
Intrusion Deception stops hacking Actionable—beyond IP address No tuning or WebApp changes VM VM VM Virtual Physical VM VM VM Virtual Physical
METAFABRIC ARCHITECTURE
DATA CENTER
NETWORK
NETWORK VIRTUALIZATION
NETWORK SERVICES
JUNOS CONTRAILNETWORK AUTOMATION
SCRIPTING NETWORK DIRECTORDATA CENTER ORCHESTRATION
CLOUD SOLUTIONS CAN BE IMAGINED FOR
YOUR BUSINESS NOW
• IP VPN/DIA/Ethernet • Remote Access • LAN • CDN • WAN Optimization • Unified Comms • Mobile Device Management • WiFi/HotSpot Mgmt • Hosting • Data Center • IaaS and PaaS
Intelligent Cloud
Self-Service Customer Portal
Networking Services • Firewall-aaS • IPS/IDP • Web Filtering • Anti-DDoS • SIEM
Security Services Mobile Services Storage and Compute Services
• SaaS • M2M
• API Exposure • Big Data Platform
Application Services
Cloud Services Brokerage
METAFABRIC: WHAT WILL IT ENABLE?
VM VM VM VM VM VM VM VM VM VM VM VM VM VM VMSIMPLE
OPEN
SMART
@dnoguer
