BRKARC-2814 - Enterprise Network Trends & Implications (2016 Las Vegas)This breakout session examines enterprise trends and makes planning suggestions to prepare for change. The session will walk through a selection of high-impact enterprise application, software, use-case and technology changes & trends that may change your network planning. For example, Enterprise IoT Digital Ceiling and Digital Asset policy, what might be the implications for your role in network planning and deployment? Each trend is accompanied by planning suggestions. These ideas will help us prepare for change. The breakout is focused on the trends and how to begin planning for change. Therefor, it is not a deep technical explanation of each trend or the technologies behind each trend.
BRKVIR-2931 - End-to-End Application-Centric Data Center (2016 Las Vegas)Although automation and virtualization have been of important use at Data Centers for resource optimization, the evolution of how applications are built nowadays demand for a new application-centric approach, mainly due to the current mobile-cloud application development reality; the fast growingBigData way" of building scale-out applications and the upcoming Internet of Everything effect. Because applications' outcome and associated data are the ultimate asset that - altogether with the network - touches multiple layers within the Data Center, an application-centric approach to its infrastructure is what's really needed, even further as almost all Data Centers do run legacy, traditional and cutting edge applications side-by-side, each of them with distinct infrastructure requirements. This session will cover Cisco Application-Centric Infrastructure (ACI), its elements and how it actually works. However, this session will approach this by inviting you to aend-to-end journey" inside an Application Centric environment. This ACI environment will be a full policy-based forwarding infrastructure and the journey will go through a secure multi-tenant implementation inclusive of both physical and virtual workloads as well as inclusive of storage, L4-L7 services and WAN connectivity. All these elements together will then become the sources for a ACI policy-based forwarding required for effective Data Center planning, design and deployments. Our journey will also cover system management & automation, orchestration tools and how to drive the ACI via API calls and its native Application Policy Infrastructure Controller (APIC). Considerations on how to adopt ACI when coming from the current network environment and how these technologies interact are on the scope of this session as well. Please 'Fasten your seat belts' and welcome to the End-to-End Application-Centric DataCenter! See you there !
BRKARC-1222 - Cisco MDS/Nexus SAN Portfolio: Next phase of Storage Networking (2016 Las Vegas)This session presents a detailed analyses of the Cisco MDS and Nexus Storage Networking portfolio, demonstrating their performance, reliability and flexibility. Topics include architectural design and enhanced capabilities of Cisco MDS 9700, 9396S, 9250i and 9148S, their typical use cases and interoperability with the other MDS 9000 family members as well as Nexus switches. This session is designed for storage engineers involved in FC and FCoE network design and Data Center storage architecture. An understanding of FC and FCoE switching technologies and benefits is assumed.
BRKACI-2102 - ACI Troubleshooting (2016 Las Vegas)Did you know what are all the troubleshooting tools and methods available with APIC/ACI? Come to this session to learn how you can troubleshoot effectively with ACI and how you can easier get to the root cause of the issue you're facing.
PSOEWN-2000 - WiFI Considerations for the Open Workspace (2016 Las Vegas)�Organizations are moving to the workplace of the future: It is open. Wireless is the primary access method of things (yes, as in the �Internet of Things�).� Users are untethered from their desks, enabling them to work anywhere.� In this session we will examine some of the considerations and potential pitfalls that come with delivering wireless in new open workspaces and how Wi-Fi and IT have a bigger role to play than ever before.
LABIPM-2007 - Intermediate - IPv6 Hands on Lab (2017 Berlin)This hands-on lab (no theory will be covered) session offers two distinct tracks to cater students of varying IPv6 knowledge levels: Track 1: IPv6 Hands-on lab for Beginner Level Students Track 2: IPv6 Hands-on lab for Intermediate to Advanced Level Students This hands-on lab will provide students with an opportunity to get a jump start on configuring and troubleshoot basic to advanced IPv6 features on dual-stack routers, analyze their functionality using Cisco IOS configuration, show commands and debugs. Students will get a chance to experience IPv6 features such as IPv6 Addressing, Stateless Address Auto-configuration (SLAAC), Neighbor Discovery, Tunneling, IPv6 Routing Protocols (RIPng, EIGRP, OSPFv3, ISIS), IPv6 PIM, MP-BGP, MPLS 6PE, MPLS 6VPE. Students MUST have a basic understanding of IPv6 Addressing, Neighbor Discovery, Routing Protocols and familiarity with Cisco IOS and CLI
BRKCRS-2002 - IWAN Design and Deployment Workshop (2017 Berlin)This session compliments all other Cisco IWAN sessions by reviewing the fundamental building blocks of IWAN Foundation through live verification and review. This session is intended for individuals who are interested in understanding how the APIC-EM IWAN App accommodates: Transport Independent Design Intelligent Path Control Simplified Management The presenter will reference the same topology throughout the session and leverage GUI management interfaces such as APIC-EM IWAN App and Cisco Prime Infrastructure as well as CLI to understand configuration details that are hidden as a result of solution simplification. Concepts covered include: Virtual Routing Forwarding (VRF) (VRF-Lite and Front Door VRF) Dynamic Multipoint Virtual Private Networks (DMVPN) Overlay Routing Performance Routing Version 3 (PfRv3) Application Visibility & Control (AVC) Simplified Management (APIC-EM IWAN App and Cisco Prime) If you learn best through a combined approach of PowerPoint and live verification use case review, then this session is for you.
GENKEY-1002 - Cisco Live Las Vegas Security Keynote (2017 Las Vegas)With special guest Theresa Payton, Former White House CIO & Cybersecurity Authority on CBS’s New TV Program, 'Hunted'.
In the digital era, business thrives on the free and open exchange of information and insight – and ensuring the security of data and communications is now a mission-critical priority that dictates broader strategy and investment decisions. This session will examine the current state of network security and the emerging solutions that will give businesses freedom and flexibility while protecting the integrity of the network and information assets.
LTRSEC-2200 - Practicing Breach Detection and Mitigation with Cisco Advanced Security Portfolio (AMP, CTA, TG...) (2017 Berlin)If you have watched closely as we have built our advanced security portfolio and wondered how all the individual components will help you deal with breaches, try this lab. We will walk you through the whole process of sample breach detection, containment and mitigation, and explain the critical functionality of each technology. We will start with Cognitive Threat Analytics as a breach detection technology. We will be receiving breach alerts directly into our SIEM. AMP for Endpoint and it's retrospection capabilities will lead to infected processes and underlying files to automatically unload those from memory. Optionally Cisco ISE is used to quarantine that user and updates are sent to IPS to block the command and control infrastructure. We will continue with targeted investigation utilizing SIEM and AMP for endpoint once again in order to find patient zero and the root cause. Revealing the weakness will prevent further exploitation for the future.
BRKGEN-9898 - Cisco Live 2017 Melbourne - BroadcastKeynotes and Innovation Talks*
• Cisco Live Melbourne Opening Keynote• Unleashing the Power of Technology to Deliver Business Capabilities
• The Smart Network Powering the Workplace of the Future • Go Beyond Automation: Advancing Your Next Gen Data Centre • Transformation through Innovation • Enterprise Networking for the Digital Economy
• Designing Next Generation Collaboration Experiences: From Team Collaboration to SparkBoard – and Beyond • Cisco Live Melbourne Technology Keynote• Employee Engagement Driving Workplaces of the Future • Is the CCIE dead? Programming not Configuring Future IT Innovation Talk • Pervasive Security at the Heart of Digital Transformation
PSODCT-2088 - Building out your Data Center and Cloud Strategy (2017 Berlin)As the acceleration of the digital business continues, CIOs and Line of Business owners continue to map their data center and cloud strategy to deliver better business outcomes. There are a number of new technologies and trends at play and architectural choices made today will dictate how well the data center can continue to play a transformative role in the organization. SDN, Policy-Driven Infrastructure, Hybrid Cloud, xAAS, Big Data/Analytics and IoT/IoE are all coming together to create a compelling architectural play. This session will explore some of the top strategies organizations can factor into their planning cycles for building the next generation data center over the next 3-5 years.
BRKNMS-1040 - IWAN and AVC Management using Cisco Prime Infrastructure and APIC-EM (2016 Las Vegas)Cloud and Data center consolidation along with BYOD has changed the how enterprise services are delivered by IT. The network plays an important role in providing visibility into users, their devices and their application experience. AVC enables the network administrators gain to get visibility into applications and user experience. This session will focus on planning and deployment of Application Visibility and Control (AVC) which consists of NBAR2, FNF, PA, QoS, PfR and Performance Monitor using Cisco Prime Infrastructure 2.0. We will go through the deployment architectures for AVC and how to incorporate AVC at the various points in the network. This session will also walk though the use cases with respect to voice/video troubleshooting and end user experience and how AVC helps with troubleshooting and remediation.
BRKSPV-1222 - IP Fabric Architectures for Video Production and Broadcast workflows (2017 Berlin)This session will focus on best practices for building network fabric for next gen media DC to accommodate live and file based workflows. We will provide an overview of the current migration from SDI to IP for live Video, discuss fabric architecture building blocks around spine/Leaf architectures and the benefits they would bring to a broadcast facility to address high throughput and high availability requirements. We will discuss topics specific to Video processing applications around Non-blocking architecture, buffering considerations, Time and Genlock over Ethernet, network load balancing and multicast concepts We will also discuss ACI network policy model and how it is relevant in building a fabric that accommodates the combination of virtual and bare-metal workflows while maintaining simplicity of operation through automation. We will then cover operational aspect of the fabric and ability to troubleshoot and identify network performance for applications
BRKCLD-1009 - Deconstructing Micro-Service Application Architecture and Design (2017 Berlin)Does this sound familiar... "Our application is Cloud Native and won't work in the data center". Ever wonder why that might be? Or what exactly "Cloud Native” and “Micro-Service" means? This session deconstructs an actual Micro-Service Application to help you understand how it is architected and developed. We’ll also look at the demands the application places on the infrastructure platform on which it runs. During the presentation several demonstrations will be delivered illustrating concepts such as CICD, Containerization, and other DevOps topics where the audience will be encouraged to participate live with the presenter.
BRKSDN-2935 - From Zero to Network Programmability in 90 minutes - APIC-EM, Prime Infrastructure, UCSD, Spark and Tropo (2017 Berlin)Network Programmability and Software Defined Networking (SDN) have changed the way network engineers look at infrastructure and operations. Conversations about configuring networks are increasingly focused on the new Application Programming Interfaces (APIs), and less around the familiar Command Line Interface (CLI). Many engineers have questions about how this can be applied to existing environments.
This session will showcase the use of the open REST API's available in APIC-EM, Cisco Prime Infrastructure (PI), Cisco UCS Director, Spark and Tropo to dynamically provision secured remote access to Enterprise resources for a third party entity. The code will configure firewalls, routers, switches, and Data Center compute resources.
Participants will learn how using APIs may provide new ways to interact with network infrastructure to deliver easy to deploy solutions to complex challenges.
The session will include the Python code and the lab testing results of the use case.
BRKCOL-2011 - HCS & Cloud Collaboration Services (2016 Berlin)This is an intermediate session aimed at both Cisco Partners who are interested in offering Cisco hosted UC services and end customers that are interested in buying those services. This session focuses on Cisco Hosted Collaboration Solution, the integration with Cisco Cloud Services like Spark, CMR, WebEx and other hosted / managed services. We will review the architectures within the provider & consumption of those services by their customer. This will include how intercloud strategy, cloud fusion, ACI are positioned to enhance and diversify the solutions.
BRKCOL-1015 - Collaboration and the future of work - are we stuck in the noughties? (2016 Berlin)It's easy to predict that in 10 years everything in our industry will be faster, smaller and cheaper, but how will our relation to the office change? How will we work? ...and where? In this introductory session we will first look back at why we work the way we do and then combine our technology vision with a bit of crystal ball staring to discuss what effect advancing collaboration and networking technologies will have on work and the office of tomorrow. Please note - this session is not a Cisco product session, roadmap or commitment to any of the technologies discussed.
BRKCLD-3000 - Intermediate - Demystifying Cloud Security Architectures (2016 Berlin)As the Cloud Compute phenomenon is changing the landscape of IT services with technologies such as virtualisation and multi-tenancy; the fundamental ways to access and use applications as well as data are changing. Securing confidential data in accordance with regulatory requirements, fortifying application software, having federated identity management, and ensuring data is not stored or backed-up in an insecure geography really mandates a fresh look at the underlying Security Principles . In order to secure the Cloud, it becomes necessary to work with the Cloud, not against it. This session will look the which security requirements Cloud computing makes, explain new approaches in building secure Cloud Computing architectures and cover some of the new tools and technologies which are used to secure the path to the Cloud. The target audience for this session are security, data center, IT, and DevOps administrators. The attendees will also benefit from the following session: BRKSEC-2205 "Security and Virtualization in the Data Center".
BRKNMS-2032 - YANG Data Modeling and NETFCONF: Cisco and Industry Developments (2016 Berlin)This session covers the data modeling driven configuration as a way to configure our network elements in a SDN environment. After an introduction about the issues with the way we've all been doing configuration management, we will cover the latest industry trends, the YANG and NETCONF basics, the different YANG data models. The latest developments in the different standard development organizations (IETF, IEEE, MEF, etc...) and opensource projects (opendaylight) will complete the picture, along with the Cisco strategy. note1: the abstract is up to discussion with Dirk Anteunis.
BRKEXH-1010 - Real World Designs and Deployments with Cisco ACI using F5 LTM Service Insertion (2016 Berlin)Cisco ACI + F5 deployments are growing everyday. Come and learn about the ACI and BIG-IP Local Traffic Manager (LTM) integrations, designs and use cases. Dive into the inner workings of how F5 BIG-IP LTM and BIG-IQ brings L4-L7 services into Cisco ACI through the F5 device package. Hear how real customers took the solution from a POC in the lab and moved it into production. Understand the lessons learned from early deployments in the field. We explore how customers are deploying the ACI + F5 solution and the best practices that they have implemented. 20 Minutes in Length
BRKDCT-2378 - VPC Best Practices and Design on NX OS (2016 Berlin)This session is targeted to Network Engineers, Network Architects and IT administrators who have deployed or are considering the deployment of vPC to improve Layer 2 scalability and the network operational efficiency. Session introduces basic concepts and terminology of the virtual Port-Channel technology & also covers actual designs and best practices of the vPC technology. Designs are targeted for aggregation/access layer and also for Data-Center Interconnect. VPC+ will be briefly covered in this session Nexus 2000 (FEX) will only be addressed from vPC standpoint. vPC troubleshooting will not be covered in this session The presentation includes hidden and reference slide
BRKOPT-2102 - Software Innovations and Control Plane Evolution in the new SDN Transport Architectures (2016 Berlin)In this session, we identify the important software innovations, and SDN control-plane evolution, that jointly enable better network automation, more efficient capacity utilization, and enhanced SLA for IP/MPLS and WDM transport.
We analyze the significant benefits of future programmable WAN architectures that leverage these SDN innovation to advance operations, and traffic engineering, extending to multi-layer transport optimization with novel restoration techniques.
The session also reviews the main SDN transport technologies becoming available in the market place, including SDN controllers, Open Day Light, and protocols like NETCONF/YANG, PCE-P/C, BGP-LS, Open Flow, Segment Routing, and GMPLS/WSON.
BRKNMS-2037 - Administration, monitoring and automation of the Cisco Cloud Networking Manager and Cisco Prime DCNM (2016 Berlin)Cisco Prime DCNM is a comprehensive management solution for stand-alone (non-ACI) fabrics in the DataCenter. It provides a comprehensive set of management features for LAN and SAN across the whole range of NX-OS platforms, and down to the Virtual Machines. Features include underlay automation with POAP, discovery, inventory, configuration and change management, NX-OS s/w management, template and API-based provisioning, performance monitoring and capacity planning, topology views and troubleshooting tools. This session will explore LAN management and stand-alone programmable fabric automation For example: VXLAN Underlay provisioning on Nexus 9K, N7K and N5K. Highlights will include best practices for using DCNM to achieve efficient deployments for cloud automation and software defined networking. A basic understanding of the underlying technologies is needed, together with some network management skills.
BRKDCT-1890 - Network visibility using advanced Analytics in Nexus switches (2016 Berlin)Learn how to get the most visibility from your Nexus-based network with new monitoring capabilities and advanced enhancements to traditional features like SPAN, ERSPAN and NetFlow.
We will delve deeper into platform specific features like ERSPAN, Virtual SPAN to leverage multi destination SPAN, SPAN filters, InBand SPAN, Extended SPAN/ERSPAN, Rule based SPAN, SPAN with MTU truncation, SPAN rate limiting, Exception SPAN on Nexus 7000 & Microburst monitoring, latency monitoring, line rate SPAN, SPAN on drop, SPAN on latency, buffer usage histogram etc. in Nexus 5000/6000. NetFlow and its unique aspects on Nexus switches will be discussed as well. These features help you understand the network and the applications running on the network better, and quickly pinpoint trouble spots in the network. We will go over what each feature is capable of, what proper real world use cases are, proper configurations, how to interpret the outputs and use the data collected. This session will focus on analytics and monitoring. It will not focus on other management aspects like SNMP, Syslog, RMON etc.
BRKUCC-2270 - Advanced - Network Media Recording and Streaming with Cisco MediaSense (2015 Milan)Cisco MediaSense is an open-standards, network-based platform that supports recording, playback, live streaming, and storage of media, including audio and video, with rich recording metadata. MediaSense's network-based architecture allows for quick availability of the captured media for different applications, regardless of location. This session will cover the uses and architecture of deploying Cisco MediaSense. Topics will include call recording architectures for entire sites or specific phones, Video Greetings with Cisco Unity Connection, Video In Queue, Video on Hold, and API uses for Cisco MediaSense. The session will include the business cases, design guidelines, scaling, and deployment of these topics. After this session, attendees should be able to understand the capabilities of Cisco MediaSense and how it could be leveraged in collaboration deployments.
BRKNMS-3132 - Advanced NetFlow (2015 Milan)This advanced session presents the latest NetFlow developments: new features, NetFlow version 9, and its standardization at the IETF. The new Flexible NetFlow feature is covered in detail. Technical details of the new features are addressed with configuration examples, show commands, tricks, and best practice advice. Scenarios such as NetFlow for security and NetFlow for application visibility are covered. The NetFlow performance impact is also discussed, as well as the support matrix of all NetFlow features. This session is for enterprise, service provider, and NREN experts engaged in designing, maintaining, and troubleshooting security, capacity planning, and accounting solutions. Attendees should be familiar with network management basics and should already have some understanding of NetFlow, perhaps by already having taken the introductory session.
BRKEWN-2011 - Intermediate - Managing an Enterprise WLAN with Cisco Prime Infrastructure (2015 Milan)This session focuses on Cisco Prime Infrastructure for mobility deployments. Topics covered in this session are, but not limited to: deployment options (templates, auto-provisioning); operational insights, system dashboards, trends, alarms; drill-downs, cross-linked intuitive workflows to monitor client related information; enhanced reporting interface design and customization abilities. This session should be complemented with BRKEWN-2010 to get a complete overview of the advanced management and mobility services offered for a Cisco Wireless LAN.
BRKARC-2021 - Advanced troubleshooting of IOS-XE key features (2015 Milan)In this session, we will explain the software architecture of IOS-XE; its mapping to hardware and demonstrate advanced troubleshooting techniques for tracing packets and flows throughout the forwarding path.
We will also see how flows are created by the control plane processes, typically on IOS and installed in the forwarding plane on the ESP. Those troubleshooting techniques will be applied to various feature such as packet forwarding, Firewall, Crypto VPN etc.
In particular, we will focus on finding the needle in the haystack in debugging a live router forwarding hundreds of thousands of flows learn how to isolate a specific flow for debugging.
We will also see how to monitor IOS-XE resources in a simple way, regardless of the actual hardware platform (ASR1K, 4400 and 4300 series).
This session does not enumerate tips and tricks but rather demonstrates powerful troubleshooting tools and introduces a tried and true methodology used by TAC engineers.
BRKARC-2019 - Operating an ASR1000 (2016 Las Vegas)The Cisco ASR1000 Series Routing platform running IOS XE has by now been deployed by the vast majority of our customer base. This session focuses more on the operational aspects of deploying an ASR 1000, including operation simplification and automation, provides details on the critical system resources monitoring, as well as the best practices to ensure secure and reliable operation experiences.
LTRDCN-1700 - Deployment and operation of Cisco Hyperflex HX Data Platform (2017 Berlin)Cisco HyperFlex Systems are part of a complete data center strategy that uses hyperconvergence architecture models to solve basic business challenges of data optimization, operational efficiency, and adaptability. Because it is built on the Cisco UCS platform, it allows unified network management using skillsets that are already present in the organization. It is scalable, adaptable, and completely hyperconverged - providing the three layers of Network, Compute & Storage intelligently integrated into a single solution for faster application deployment
BRKDCT-2025 - Maximizing Network Programmability and Automation with Open NX-OS (2016 Berlin)As Data Center operations teams look to improve the efficiency of provisioning and managing the physical infrastructure, they have begun to apply the tools and approaches they have leveraged for server management to the network. This is the application of DevOps to the network.
Open NX-OS is a set of new Nexus 9000 software features that greatly increase the DevOps capabilities of the Nexus 9000 in standalone mode.
It enables you to dramatically accelerate configuration and deployment of your network, and get greater network visibility.
This session walks through the complete Open NX-OS toolbox including:
- REST-based APIs, object-based configuration and monitoring.
- Ability to install any Linux third-party tool into either the native Linux shell or a Linux container.
- Access to the front-panel interfaces as Linux network devices.
- Chef, Puppet and OpenStack support.
- Power on Auto Provisioning.
BRKRST-2362 - IWAN - Implementing Performance Routing (PfRv3) (2016 Berlin)Cisco Performance Routing is a key component of Intelligent WAN (IWAN).
This session explains Performance Routing (PfRv3) technology and covers the recommended deployment options as well as the latest advanced topologies that are now supported.
PfR allows network administrators to enable intelligent load distribution, improve application performance, and deploy dynamic failure detection at the WAN access edge. Cisco PfR makes real-time routing adjustments based on criteria other than static routing metrics such as delay, packet loss, jitter, path availability, and traffic load distribution.
BRKCOL-2616 - QoS Strategies and Smart Media Techniques for Collaboration Deployments (2016 Berlin)In this session we will discuss the network infrastructure and application requirements to ensure a high-quality experience for interactive voice and video collaboration sessions. Quality of Service (QoS) tools in the network are a key component to providing a solid and consistent collaboration experience, but they are only one of the aspects needed for an end-to-end solution. Recent trends such as mobility, BYOD, B2B/B2C, cloud services and the evolution of branch offices have the consequence that voice and video collaboration sessions increasingly traverse unmanaged networks such as the Internet. Therefore, other techniques such as media resilience and rate adaptation are required to preserve the quality of experience end-to-end. This 2-hour session is divided in two main sections: In the Collaboration Media section we will discuss video and voice traffic characteristics and requirements and introduce 'smart' media techniques such as media resilience and rate adaptation, showing how they help mitigate the impact of network impairments such as packet loss and delay. In the QoS Architecture and Design section we will describe the three main QoS functions in the context of Collaboration: media identification and classification (trust boundaries, DSCP marking) queuing and scheduling (CBWFQ, WRED) provisioning and resource control (planning, bandwidth allocation) We will look at how these functions are applied to all types of Collaboration endpoints (hardware, software, mobile) in differents parts of the network (LAN, WLAN and WAN) and provide configuration examples to illustrate the concepts. We will also take into account the â€œsmartâ€ media techniques introduced in the previous section to introduce new queuing and provisioning models that simplify operations and maximize resource usage. We will also provide design best practices for common deployment scenarios. Note: This session is a more concise version of technical seminar TECCOL-2999, A Deep Dive on QoS Strategies and Smart Media Techniques for Collaboration Deployments. All the topics covered in this session are also covered in the TECCOL-2999 seminar (which also contains other unique topics), so Cisco Live attendees are advised to choose only one of these two sessions based on their needs and interests.
BRKOPT-2118 - Multi-Layer Network Architectures (2017 Berlin)Multi-Layer network architectures aim to use tighter integration between IP and Optical technologies from a hardware, software and control plane point of view to improve the overall efficiency of Service Provider and Large Enterprise network infrastructures and will be key to address the exponential bandwidth growth challenge faced by the industry in the next several years. This session will describe the key technologies involved in building Multi-Layer networks: IP/MPLS, OTN, DWDM, WSON, GMPLS-UNI; the role of each technology will be revisited in the context of the Multi-Layer Architecture and then the impact of Software Defined Networks (SDN) will be discussed. The session will end by exploring use cases and the expected benefits for each one.
BRKACI-2003 - Cisco ACI MultiPod/MultiSite Deployment Options (2017 Berlin)The need to deploy ACI in multiple DC rooms and sites to provide redundancy is a common requirement for both Enterprise and Service Providers. This session introduces the application, operation and availability considerations for Multi-POD/Multi-Site designs, starting from the definition of POD vs. Site and the positioning between single APIC Controller cluster vs. dual Controller cluster approaches. Stretched and Dual Fabric designs are quickly reviewed as examples of each category. The focus then shifts to the upcoming ACI Multi-POD solution, leveraging a single APIC Controller Cluster across separate rooms. The session presents additional considerations including how to provision consistent Multi-Site policies, optimize traffic inside and outside of the DC sites, integrate Service network appliances and others. This level 2 (intermediate) session is a companion of the level 3 (advanced) session BRKACI-3503, which covers in detail (including configuration specifics) the deployment of the currently available ACI Stretched Fabric and Dual Fabric design options.
BRKSEC-3697 - Advanced ISE Services, Tips and Tricks (2015 Milan)Cisco's Identity Services Engine (ISE) delivers context-based access control for every endpoint that connects to your network. This advanced session will focus on the advanced services of ISE, successful deployment strategies, integration with Cisco as well as third party network infrastructure, as well as deployment tips and tricks. We will examine best practices for Bring Your Own Device (BYOD) deployments with the most common mobile platforms, including multiple tiers of registered devices. We will perform a detailed examination of certificate usage including integration of ISE with your enterprise certificate authority (CA), endpoint certificate usage, and wildcard certificates. There will be a detailed examination of advanced topics such as configurations for certificate renewal. Lastly, attendees will be introduced to troubleshooting and serviceability tips. Attendees will also benefit from the following related sessions: BRKSEC-3699 Designing ISE for Scale and High Availability, BRKSEC 2698 Building an Enterprise Access Control Architecture using ISE and TrustSec
BRKSEC-2134 - Building a Highly Secure Internet Edge (2016 Las Vegas)The Internet Edge is a critical functional module of the Enterprise network, acting as a well-defined yet increasingly complex construct, providing a secure perimeter between the Internet Peering, Internal Network, DMZs, Remote Sites and Mobile Users. Thus, in order to achieve a highly secure demarcation, control and threat protection of the traffic traversing the Internet Edge, we will employ a rich set of Cisco Security technologies. These will include but will not be limited to: ASA Firewall with 9.5 Software and the new FirePOWER 9300 hardware, FirePOWER Next-Generation Firewall and Next-Generation IPS with 6.0 Software, Web Security Appliance 9.0, Email Security Appliance 9.5, Advanced Malware Protection and ThreatGRID, Identity Services Engine 2.0 with pxGrid and Cisco AnyConnect Secure Mobility 4.2, as well as Cyber Threat Defense with Lancope. We will analyze most interesting scenarios by identifying common traffic patterns involving Inside, DMZ, Remote and Guest Users, in order to achieve superior visibility, combat threats and deliver meaningful ways to provide attack mitigation mechanisms in a systematic step-by-step fashion. This Intermediate Session is an ideal food for thought spanning a broad set of challenges encompassing the life of Security Engineers, Architects, Officers and Incident Responders responsible for securing the Enterprise IT. It is also designed to be a platform to grasp new ideas of Cisco recent and upcoming innovations. It is recommended to get the most of the Cisco Live! Security Track experience by attending more advanced sessions on specific subjects of interest as a follow up to this breakout.
CIN-WS244 - Technical Overview of New Cisco Catalyst Multigigabit SwitchesThe new 802.11AC wave 2 standard combines multiple channels on the 5GHz frequency band to provide a wide 160MHz bandwidth and up to eight spatial streams to deliver superfast wireless offerings (up to 6.8 Gbps), which is faster than the gigabit speed supported by most existing cabling systems (Cat 5e). Without addressing the need for the superfast wireless speed, the Ethernet connection between 802.11 AC wave 2 access points and the switch port will become a bottleneck.
The new Cisco Catalyst Multigigabit Switches solve this challenge with Cisco technology innovation that allows support of 802.11 AC wave 2 speeds without replacing the current Cat 5e cabling system. The multigigabit switches also support Power over Ethernet (PoE) for energy-efficient wireless access point deployments.
Join this webcast to master the technical knowledge to prepare for faster and more powerful 802.11AC wave 2 wireless deployments, without having to rip and replace your existing cabling system.
Topics to be discussed include:
• Get ready for 802.11AC wave 2 with Cisco Multigigabit Switches • Learn about the multigigabit switch architecture • Learn how Cisco Multigigabit Switches support wave 2 speed
BRKSPG-2602 - IPv4 Exhaustion: NAT and Transition to IPv6 for Service Providers (2012 Cancun)Agotamiento de IPV4: NAT y transición a IPv6 para proveedores de servicioTo continue adding subscribers after IPv4 exhaustion service providers will need to use NAT while also deploying IPv6. This talk discusses some transition mechanisms for service providers including 6rd NAT44 (Carrier Grade NAT) and NAT64.
En la actualidad el consumo y agotamiento del espacio de direcciones IPv4 ha generado gran interés en IPv6, el sucesor del actual protocolo de la Internet, que a través de un espacio de direccionamiento extendido promete resolver la necesidad de crecimiento de la red global. Sin embargo la incorporación de IPv6 deberá ser gradual y planificada, incorporando especial énfasis en la compatibilidad con los actuales servicios basados en el actual protocolo IPv4. Esta sesión está orientada a examinar los diferentes mecanismos y modelos de adopción que están evaluando y comenzando a adoptar diferentes Proveedores de Servicios de Banda Ancha móvil y fija con el fin de migrar desde IPv4 hacia IPv6. Durante esta sesión se cubrirán técnicas tales como Carrier Grade NAT (o LSN, Large Scale NAT) y softwires (tunneling de v4 y v6) que permitirán, por un lado, extender el tiempo de vida del actual protocolo IPv4, como así mismo introducir gradualmente IPv6, que promete convertirse en el protocolo que dominara en el futuro la Internet.
BRKRST-2051 - Software Defined Networks and OpenFlow (2012 Cancun)Software Defined Networking (SDN) is a new approach to networking, complementing traditional network architectures. SDN aims at the normalization of network configuration and control through open programmatic interfaces to individual network devices as well as to the whole network SDN incorporates concepts for network and network topology virtualization, and enables customized control planes. The latter allows close alignment of the network forwarding logic to the requirements of applications. OpenFlow is a specification being developed by the ONF that defines a flow-based forwarding infrastructure and a standardized application programmatic interface (API) that allows a controller to direct the functions of a switch through a secure channel. This was OpenFlow complements SDN. This session supplies an overview of the different concept present in SDN, discusses contributing technologies, and reviews OpenFlow as a protocol. The SDN concept is put into perspective with existing and evolving network architectures and principles.
Redes definidas por software (SDN: Software Defined Networks) y OpenFlow
Software Defined Networking (SDN) o Redes Definidas por Software es un nuevo acercamiento a las redes, que complementa las arquitecturas tradicionales. SDN apunta hacia la normalización de configuración y contro de redes via interfaces abiertas programables y dispositivos de red individuales. SDN incorpora conceptos de red, virtualizacion y planes de control más customizados. Openflow es una especificación en desarrollo por parte de ONF que define una infraestructura basada en flujos y la estandarización de interfaces abierta de programación API que permite a un controlador dirigir las funciones de un switch por un canal seguro. SND y Openflow se complementan. En esta sesión presentaremos el concepto de SDN, discutiendo las tecnologías que contribuyen a Openflow como un protocolo. El concepto de SDN se pone en perspectiva con las arquitecturas y principios existentes de red.
BRKITM-1214 - Connected Transformation Industries: Secure Network from the Corporate Offices, Supply Chain and the Floor Plant (2012 Cancun)Manage costs by improving supply chain efficiency, maximizing asset utilization, and accelerating operational innovation towards increased profitability are driving the change for legacy systems to be connected to plant-wide network infrastructure to enable capture and analysis of real-time data and process optimization. Help your internal customers address challenges of profitability, productivity and regulatory compliance with Cisco technology and solutions that help customers Work Their Way.
We help manufacturers improve machine productivity while reducing maintenance costs in the areas of factory networks, mobility and industrial intelligence by integrating mission critical applications supported by Cisco UCS and Borderless Networks. Also Collaboration technologies are critical to accelerate business decisions, reduce costs and improve connections with stakeholders across the supply chain.
Administrar los costos mediante la mejora de la eficiencia de la cadena, lo que maximiza la utilización de activos, y la aceleración de la innovación operativa hacia una mayor rentabilidad están impulsando el cambio de los sistemas heredados para ser conectados a la infraestructura de red de toda la planta para permitir la captura y análisis de datos en tiempo real y optimización de procesos. Ayude a sus clientes retos de direcciones internas de rentabilidad, productividad y cumplimiento normativo con tecnología de Cisco y soluciones que ayudan a los clientes a trabajar a su manera.
Ayudamos a los fabricantes a mejorar la productividad de la máquina al tiempo que reduce los costes de mantenimiento en las áreas de redes de fábrica, la movilidad y la inteligencia industrial mediante la integración de aplicaciones de misión crítica soportados por Cisco UCS y Borderless Networks. También tecnologías de colaboración son fundamentales para acelerar las decisiones de negocio, reducir costes y mejorar las conexiones con las partes interesadas en la cadena de suministro.
BRKDCT-2951 - Deploying Nexus 7000 in the Data Center (2012 Cancun)This session is targeted to Network Engineers, Network Architects and IT administrators who have deployed or are considering the deployment of the Nexus 7000.
The session begins with a Nexus 7000 hardware overview and primarily focuses on Data Center related features and implementation best practices. The session also covers recent hardware enhancements to Nexus 7000 product line such as the new Nexus 7004 chassis, the new supervisors modules (SUP2/2E) and the new high-performance 10/40/100G linecards (M2 and F2e). The session also discusses some of the Data Center design examples and its best practices section will cover features such as VDC, VPC, Layer-2, Layer-3, Fabric Extenders(FEX), etc.
Attendee should have a basic knowledge of the Nexus 7000 hardware platform and software features as well as good understanding of L2 and L3 protocols.
Implementando Nexus 7K en Centros de Datos
BRKSPV-1919 - Video Transport Architectures (2012 Cancun)Arquitecturas de Transporte de VideoThis intermediate level session covers the requirements and challenges of transporting broadcast grade Video over IP networks. These linkages are technologies that enable the IP network to be Video-aware encompassing IP/MPLS Multicast, QoS, Security, High-availability and Admission control mechanisms. Network resiliency/availability mechanisms enabling minimal disruption of Video services are covered in detail. These include Unicast & Multicast Fast convergence, advanced traffic engineering, Multicast-only Fast Reroute (MoFRR), Video Source redundancy among others. Lossless transport is introduced using Live/Live with packet merge capabilities for uncompressed video. An overview of the application-level techniques that minimize packet losses such as Forward Error correction (FEC) and dynamic packet error repair using Cisco Visual Quality of Experience (VQE) are also covered. New developments in the Video monitoring space such as In-line monitoring are briefly covered as well as network management tools. It is expected that the attendee is familiar with IP/MPLS, Multicast and QoS concepts.
Esta sesion de nivel intermedio cubre los diferentes retos y requisitos de transportar video de alta calidad en redes IP. La relacion entre diferentes tecnologias que permiten a la red IP saber de la existencia de trafico de video, cubriendo IP/MPLS Multicast, QoS, Seguridad, Alta disponibilidad y mecanismos de control de admision. Mecanismos de disponibilidad de red para ofrecer servicios con disrupcion minima son cubiertos a detalle, algunos son: Unicast & Multicast Fast convergence, advanced traffic engineering, Multicast-only Fast Reroute (MoFRR), Video Source redundancy. El concepto de transporte sin perdidas es introducido utilizando la capacidad de Live/Live en video no comprimido. Tambien cubriremos tecnicas a nivel aplicacion para minimizar perdida de paquetes, como son Forward Error correction (FEC) y dynamic packet error repair utilizando Cisco Visual Quality of Experience (VQE) . Nuevos desarrollos en monitoreo de video, como monitoreo en linea son brevemente cubiertos junto con herramientas de gestion. El participante debe tener experiencia basica en conceptos de MPLS/IP, Multicas y QoS
BRKRST-2042 - Highly Available Wide Area Network Design (2013 Melbourne)This session will include a detailed discussion of a full range of WAN design options incorporating multiple paths. The primary goal is to provide design guidance and share best practices around building reliable WAN networks. The discussion will focus primarily on network survivability and effective utilisation of all available paths. The session will review IOS routing concepts relevant to route selection and load sharing options as well as proper selection and use of various routing protocols. Various WAN topologies will be analyzed to understand potential failure scenarios. These topologies will include combinations of traditional hub and spoke based networks, Ethernet WAN, Internet VPN options, as well as multiple carrier managed MPLS. The specific technologies discussed include bidirectional forwarding detection (BFD), first hop redundancy protocols (including HSRP & GLBP) as deployed at the WAN edge, IP SLA with object tracking, and path optimisation techniques supported through Performance Routing (PfR). Case studies will be analysed to compare traditional IP routing to PfR for end to end convergence. This session is applicable for attendees responsible for the design, deployment, operations, and management of highly available Wide Area Networks.
BRKEVT-2803 - Designing and deploying multipoint conferencing for telepresence video (2013 London)Over the last few years video adoption in Enterprises has increased remarkably, for both internal and external calls. This session is intended for Cisco partners and customers who have already deployed Cisco Telepresence and Video Conferencing for point-to-point video calls and want to add an architecture for multipoint video in an environment made of H.323 and SIP endpoints, HD and SD systems, with single or triple screens. The purpose is to learn how to build a multipoint architecture in order to provide a seamless experience to devices with different video capabilities. As a part of this architecture, this session will focus on the Cisco MCU, Cisco TelePresence Server and Cisco TelePresence Conductor infrastructure products.