Big corporations think big! When IBM takes on a project, you can bet that it will be global in its proportions. But called upon to revamp the networking of 250 branch offices of a multinational company, even IBM knew that it had a mammoth task on its hands. A task that could easily have taken hundreds of engineers doing lots of manual work that could be time-consuming and error prone. However, drawing on their previous experiences, IBM chose to utilize automation in order to save money and time.
The first task was to set up an SD-WAN solution linking each branch with the main campus. Each of the branches would have network connectivity through both an internet and an MPLS connection. The second task was to deploy virtualized network services in each of the branches. Servers within each branch would run virtualized routers and firewalls that would control access between the WAN and the branch LAN. Almost all branches would have redundant systems, which meant setting-up as many as 450 such servers.
Go global with network automation
Faced with this challenge, IBM turned to Cisco’s Digital Network Architecture (DNA) and DNA Center. They chose Cisco’s Enterprise Network Compute System (ENCS) as their appliance. ENCS is a compute appliance family designed for a virtualized, Software-Defined Branch (SD-Branch) network architecture.
To solve the deployment problems, IBM first defined a provisioning template within DNA Center. Using DNA Center’s open APIs, they wrote a custom Python script to retrieve this template and clone it across branches. The script then customizes each instance with its unique set of IP addresses, VLAN structure, etc. It also creates all the virtual network functions (VNFs) including virtual ISR with MPLS and internet connections, and virtual ASA, and chains them all together within ENCS.
The script accomplishes all of this programmatically, dramatically reducing deployment time while also reducing the risk of minor differences between sites that can cause problems later.
“The challenge before us was to deploy virtualized networking services on 250 sites using 450 appliances for a global customer,” said Markus Voegele, Network Architect at IBM, “It was clear that the only way we were going to be able to do this was to use automation. We found that Cisco DNA Center had the native capability to deploy and configure this set up, and with its support for open APIs, we were able to control this deployment through an application we wrote for the purpose. With simple Python scripts, we were able to deploy VLANs, virtual routers, virtual firewalls within ENCS servers at the sites, and link these together to form a service chain. Deploying and provisioning new sites, for us, is now as easy as choosing an option on a menu.”
Watch Markus demonstrate the solution.
With its application, IBM shows how easy it can be to accomplish tasks on a global scale, which could easily take several months to complete manually. They have very effectively leveraged the capabilities of DNA Center and its open APIs and combined them with network virtualization. They have fully automated a process that is typically very expensive, time consuming, and challenging to implement.
Read this white paper from IDC to see how you can leverage network as an open platform and create new revenue opportunities.
I am confusing performance of SVI and Inter VLAN routing.
I would like to know which is more best practice. I have two scenario.
1. cisco c892 have 2 x 1G WAN port and 8x 1G Switches port.we can configure one port as a trunk port and i create inte...
I was copying an pasting some configs between two nexus devices and some how fat-fingered something and the admin user can no longer login to the command line. I can still login as the root user and run an "su admin" and login to the device that way...
Per this link, the GLC-SX-MMD should be compatible with the ISR4321/K9
However, this is the e...
DNS issueso i am new to DNS, here is my problem, we have cisco umbrella forwarders on all our DNS serverswe have a marketing site hosted, externally the site works perfect however lately internally when we hit the url we get page cannot be displaye...