Inside the Cisco Live 2019 Network Operations Center

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

[Music] hello everyone Jacob has here from next-gen tea and I am here with David Hunt from Cisco Systems he's a network architect for Cisco's events and David architected actually the entire Cisco live network for Cisco live 2019 here in the San Diego Convention Center and also elsewhere you see we have stuff at the Marriott Hilton spread out all over the place so this is a very large network anyway this is David Hunt and he's going to take us through the Cisco live 2019 Network Operations Center set up so let's start up do you want me to take the mic you can go and grab the mic yeah sure all right here we go all right let's start up here we'll go clockwise right so you know we're learning from our mistakes you know if it's all right that I can even say that we we put in a new wireless distribution block and in that wireless distribution block we have two pairs of 85 40 s and also our 9800 the 9800 run in our Wi-Fi six that we're running over at the Hilton over there we've got our what we joined our whisper Suites but we bring in customers and talk about products that are yet to be released and come out with our 285 40s we we run the major convention area which is the majority of our clients and more damage or 'ti of our traffic swear are all our breakouts are are run the walkways the breakfast areas and then of course we have keynote keynote so we don't just leave it in in you know you know cold standby it's literally servicing clients in the keynote we and it's a different area so you've got a high density traffic so we tune that you know at the same time now should something happen with our primary pair of controllers we will failover now that is over built let me not fool you I really even believe that myself I mean that's a lot of 85 40 s to be putting into one network but you know we're Cisco so we can correct the one other thing I want to point out you see that we have this you know core that comes in from smart city that's actually our drop and instead of putting all our own our Cisco owned access points like we did in Orlando each access point was sitting up on a mount we we took over the access points and I don't know if you want to pan all the way up to the top but you'll see the access points of the you know throughout the Convention Center and around and you also know that's that yellow cable somehow we actually cut that cable this entire network goes down right so also that feed coming in so we put all the convention center access points on on a specialized VLAN and we suck in all those access points and manage them ourselves so they're no longer managed by the Convention Center and then as we move in you can see our core our core infrastructure still using the nexxus 7706 s and we have the 9300 the firepower sitting there at our Internet edge and David will get to see what all this equipment really looks like right here in a second right because we have everything in the racks like we traditionally do at Cisco live exactly we got to showcase what we do you know people don't want to see boxes you can look over here on the wall and you'll find all our in brand-new boxes but people don't want to see just boxes they want to actually see this is really manage this stuff really works and that's the important thing so we call it the network is the demo right and then with with ru we have our two pipes coming in via CenturyLink right and you know on the internet as we're running ibgp out there in and then OSPF throughout our entire network business are all all layer three routed all to our IDF's or our MDS i should say and then up to the up to our data center where we also have we firewall off our data center outdated Center is really the heart and soul of the networks where we have over a hundred separate VMs running management applications our maze map and and of course you know I mean gosh DHCP all your basic services everything is in your data center block and we're running you know hyper flex in there as well as as well as our as well as our NetApp storage solution then if you look here we've got our our SDC you know roof statement that's actually connecting us to the Hyatt here in San Diego there is no fiber connection all the way down to high and we stretch we stretch from from Bay front here at the hilton bay front all the way down to the high it's a mile and in that mile microwave shot or so that you're right that's a that's a microwave link across giving us a one gig a one gig connection in a licensed band and we were just talking about the military right yeah well you know there's some floating airports that kind of you kind of cruise by and you know one sweep of that SPS forty-eight and that takes out pretty much everything right you know if you're doing commercial band microwave helps save us that doesn't say that it completely isolates us from that vulnerability but nonetheless it is does give us a somewhat of a secured link and because it's licensed band it gives us a connected that but I will note that is not a piece of Cisco equipment we we buy that separately that brings us into a pair of media converters and over here at the Hyatt a separate layer three routed so layer three routed this is a layer two connection until we get to the Hyatt which is a layer three connection back to our core and from there we have all our IDF switches and then hundreds of access switches connected to if right behind you is our Meraki Wi-Fi six access points that are loaded there to display our Wi-Fi our Wi-Fi solution Wi-Fi six being very important yeah okay yeah I know I throw you all over the place then we're coming this is what is servicing this entire area here yes this is the world of solutions and just above it another layer three routed to what's called the Showcase so this right here where we're sitting showing off just Cisco equipment is the showcase and the larger space where all our event partners are that's the world of solutions and that's what this spare pair of 9500 is feeding these again ninety three hundred ninety five ninety three very important brand new products that you seen on the wall over there in use and functioning over here right and then like I pointed out the showcase this is the showcase feeds you know the New Orleans van the the Rapid Response right that also feeds all of these you'll see all these displays here these are live demos even this over here is our D neck which sadly there's not a keyboard loved to drive that for you we have a sensor on the wall that sensors also connected to this now way sensor being a Wi-Fi it's a small Wi-Fi device that goes out connects to the infrastructure talks about how many times we transmitted packet the latency that observed how long it took to get a DHCP address so we've got a lot of assurance going on here so we know exactly what's happening you know in the environment hopefully before someone comes and tells us and sadly you know I mean it's hard to avoid those incidents but at least we're working on it when someone comes up and says we know of a problem and it's it's yet we've yet with luckily we've had problems but we have been working on and before people notified us which has been fantastic so you guys have like all the bells and whistles in this network right it's a pretty amazing network and you have all these different IDF spread across Marriott Hilton all across this convention center also just servicing this area even over at the Hyatt and then we have basically your entire core network and edge services right and all that is over here all of that basically all of this here almost all of it obviously except for the IDF's oh okay here you go I'm gonna give it I'm gonna give it back to you so let me you know let me finish so this is the major Convention Center and then of course our Hilton and there's a lot of stories there but here at the Marriott this is the campus of the future so at the Marriott unlike up here you have your wireless distribution here it's all the fabric connected instead of in the old days we've got basically our legacy deployment model this is where we're looking at instead of you know we do segmentation we do have all our you know just basically the the the whole fabric Channel and then coming back through and feeding into our core right so I can't show you this equipment but this is you know this is this is one of those risk areas we looked at to to to actually you know to deploy to show off so this is the largest appointment of SD access you know so far today right yeah we need to cover here before we leave Cisco live with you guys right yeah you definitely need to and actually we should get rid of all in front of you he has worked so hard to deploy that over there and it's done an incredible job so we went through all that so at the very top is we we started before we had that Wireless our wireless distribution that represented by those 7702 s in there and then of course our 85 40 s and there's our 9800 - 40 that we got off the very top feeding the Convention Center on the other side also Wi-Fi six but but arrow net Wi-Fi six which is on the other side we won't go over there and then we've got our data broker this is a we get we have so many it's it's not just about service than the network it's about learning from what we're doing so we've got a lot of projects going on we've got on our Samsung phones we're running new software that is hopefully going to go back to ie the IETF - to make a new standard we're gonna have we're looking at how we can better perform with ipv6 over Wi-Fi as a client goes to sleep it's not able to receive you know a router router announcement so how does it keep its IP address and still be able to go to sleep so a device will last more than you know an hour or two right you want it to be able to to survive so many people many vendors shut off ipv6 so we think we have an answer we're gonna find out as soon as as soon as they analyze all that data that comes in from the Samsung phones right then you see our 7706 you know feeding into our fire power devices right above it so that is that was that's our core and then of course at the bottom we talk about DNA assurance so right over here we have our excel appliance that's what's running the major the most of the network the Convention Center the Hyatt and Hilton over here we have another DNA appliance this one actually runs our our SD access in the marriott that's the only thing here both of these though they're sitting in the core rack are actually physically connected to our data center the with with the nine case the Nexus 9 case and and that is to protect those services services there right here in the middle you have our wane edge router we were supposed to receive two 100 Gig connections like we did last year in Orlando however San Diego was against allowing us to dig up the roads during baseball season to bring in that to bring in that fiber so we are running on two ten gigs and then smart city allows us to fail back if should we have disaster another ten gig circuit we are using some of smart cities connection though to give us that extra bit of security allow us to come in out of band via VPN also to be able to connect to our terminal server so we do have that kind of running in the background but we never that was just our disaster you know all things don't work we have another way to connect to our gear if we're not physically on site to be able to run to that piece of equipment right and then of course you know we've got flexpod with it that is part of NetApp that that is running with our basically 113 terabytes of data which 60 gives us 1616 Terra 60 terabytes of information we have five copies of every session every breakout session captured two of them off-site and three of them here on-site and of course the majority of it going right in there and at night we're running it back so it does take kind of a nuclear war before we lose all that that's the you know that's the goal right we've got enough resiliency to keep that in line and then again we protect that data center with fire powers again between the core and the data center it's the heart and soul of our network so that is the core network there nice all right in in David yeah this is beautiful stuff thank you so much for that detailed explanation of all the gear and whatnot and the whole entire network I mean it is so super cool and it's super cool to to see the topology we looked at and how perfectly designed it is and and and just how awesome it looks right and then to translate that into the physical equipment it's just an amazing thing but can you tell me some of the differences between this setup and what we had in 2017 at the 600 live in Vegas because we went there we actually interviewed with Ryan de Souza there and he gave us kind of a tour do you want to talk on that for say dad you know and you know I wouldn't say perfect everything's learning no when no one does anything perfect let's save it straight up but one thing you'll notice that we talked about you know the biggest change that we had to the core part of the infrastructure has to be our wireless distribution we move that off of our 6807 which is an MDF that we have still sitting sitting in the in in our MDF about 20 yards from here where that yellow cable that we pointed out early goes to that's where all those fiber connections are however you know given that it doesn't have those deep cam cables got those broad you know those broad arms to reach out and touch all the equipment does 40 gig 10 gig interfaces that we so badly need you know but it does give us those nice kamme tables in so we're very happy this versus last year we're running 60 you know 80 and finally a hundred percent were rolled over on us you know because we're putting so many entries into the cam table versus this is like running at five ten percent I mean we're I mean these little they're smaller boxes you know they're made for a completely different cause to put the right you know ruse the right tool for the right job right that was the biggest thing that we had in there plus our routed a routed approach giving us you know a way to isolate any failures so if we had a failure at the Hyatt it wasn't gonna affect anything at the Convention Center we had a failure of course in the world of solution it wasn't going to wasn't gonna affect the Hilton I mean that's the important thing we want to isolate our failures to a small small store main possible so those were there are two biggest things the most exciting difference of course being running SD access I mean that that's being something big plus on top of all this I don't know if you've noticed open roaming right did any you know I'm assuming you played with open roaming perchance I tried that out that is going to be something we hope to leverage not just on on mobile devices but to be able own leverage on our on our compute devices so we can run just one secure network and no more no more needing to touch and figure out what s this idea just joint you you load the Cisco of in app and when you get on site it works right yeah that's the goal yeah thank you so much David that was a really cool explanation to between the differences would you like to maybe go over to your monitoring systems and wrap it up with some of the cool visualizations surprise all right here I'll hand it back over to you again all right let's see I'm not even sure I'm not even you know oh oh this is this is our cell phone this is what's called our threat wall right this actually analyzes all the threats we have in there we also we have we have umbrella that that goes out and and make sure anyone trying to get to a nefarious site is is you know prevented going to that nefarious site our network is completely open we are mostly a service provider we prevent you from reaching resources that we own and preventing anything from getting in there to corrupt what we have but we you know we we do very little you know if you want to go hit whatever site you want to hit and I won't call any of those sites out you can do it there there's nothing stopping you on that and we chawl so try to protect what we have internal you know we we run a lot of security on our different interfaces but this talks about our security threats the biggest sites of traffic by port that we're hitting the biggest sites so you know what is what is our traffic really you know what it what are the number one applications out there analyzes the operating systems right yeah oh fire power right right you know and but getting in there you can see that this is the this is actually connected into our core and it's it's all about it it's all about securing securing your experience and securing our network while at the same time allowing you to do pretty much whatever you want that's the important thing right yeah all right pretty much whatever you want oh no you're good I just noticed that I wanted since you were saying that pretty much what everyone it looked like when the screen a second ago I saw some crypto mining going on across the network so really you're not stopping anything right people are people are doing some crypto mining it looks like right hey you're probably right there so yeah thank you thank you so much so this is basically this Security Center and this kind of wraps things up now thanks again David it was really a pleasure talking with you well thanks so much again it was awesome Jacob Hess here thank you guys for viewing the video I hope you really enjoyed it and I'd also like to remind you that if you're truly serious about your career in information technology be sure to check out our career blueprint and engineer training program at ww0 to engineer calm you

Info

Channel: NexGenT

Views: 3,591

Rating: 5 out of 5

Keywords:

Id: Pw-STmSWUSo

Channel Id: undefined

Length: 17min 35sec (1055 seconds)

Published: Mon Jun 24 2019