Three years ago, Cisco started our journey to Software Defined Access at the trough of the Software Defined Networking (SDN) hype cycle. Our mission was to bridge the divide between our Enterprise customer’s demands for powerful networking capabilities and their need to simplify operations and lower their costs. We believed capitalizing on the networking standards innovations and the technology stack at that time provided us with an unprecedented opportunity to accomplish this. Those last four years have indeed been an exhilarating experience. I’ve worked alongside some of the brightest minds and most experienced engineers. I believe we have delivered the most elegant and comprehensive solutions for modern enterprise networking needs in the market. Since we launched Intent Based Networking at Cisco Live Las Vegas in 2017 with Cisco Software Defined Access (SD-Access) as a key solution of it, the journey has evolved from building technology to helping customers deploy SDA and realize all its many benefits. Our early customers – global enterprises, universities, state/local governments – have been true early adopters - taking one step after another where no one had ventured before. Seeing customers eyes light up with possibility as we detail the architecture and explain how it addresses their most critical network challenges has been truly energizing. Nothing is more rewarding than building a solution that meets a specific customer need. Our early adopter customers were truly partners, going back to the drawing with us sometimes to create the perfect solution. One of these customers was a large healthcare provider who had hundreds of medical centers all over the US. It was common for the medical staff to move between the medical centers as needed in the same local geography. It created a challenge for the IT staff however trying to provision end-to-end policies across the medical centers. In addition, the customer had critical areas of their network like Emergency Rooms that had stringent requirements around resiliency and availability. This was the genesis of what came to be a Multi-Site deployment model for Software Defined Access. By overlaying Software Defined Access control and dataplane for the interconnectivity between the various fabric enabled sites and automating that interconnectivity with the controller, we could seamlessly connect 100s of sites while at the same time enforce a consistent end-to-end policy across all multiple sites. In addition, every fabric site was provided with its own local control planes and borders so that a site could be isolated into its own independent failure domain that was more limited in size. Multiple control planes and borders per-fabric site also provided the desired availability/resiliency characteristics. A side benefit of this was that traffic that was egressing the fabric site no longer had to be necessarily backhauled to the main HQ where the external borders were connected to. Every site could have its own local external borders for direct internet breakouts and optimal site-site traffic forwarding. This also provides for improved site survivability. Through an extended customer co-development engagement over a period of 6 months, we were able to refine the SD-Access Multi-Site solution iteratively to something that could be deployed in even the most mission-critical IT environments. As we were solving consistent multi-site end-to-end segmentation and site resiliency, we also found customers who wanted to extend Software Defined Access consistently to distributed environments where some locations could have as few as 50 endpoints and others as many as 50,000 endpoints. As a part of the Software Defined Access Multi-Site deployment architecture, we deliver a seamless scaling mechanism that enables customers to take a common architecture building block and consistently, cost effectively scale it to any number of locations and endpoints. In addition, our customer engagement in manufacturing, oil & gas, state and government utility infrastructure and even some airports identified a need to provide a similar Software Defined experience for their networks. As a result, we are also building an SD-Access Extended Node deployment model for industrial and workspace networks to interconnect with the SD-Access fabric. This will extend the same policy-based automation and segmentation functionalities of SD-Access to those environments. While it’s a continuous delight for me to work on cutting edge networking technologies, the last 8 months have reinforced my belief that innovation is most powerful when driven by customer needs. If customer and partner feedback is a true indicator, I am convinced that we are just starting on the innovation journey for Software Defined Access.
... View more
It’s an amazing time to be a student these days. I remember when I was growing up as a kid, we did not have the type of resources today’s kids have. At the click of a button or swipe of a finger students now have access to information we could have only dreamt of. Teachers used black boards and chalks and bound paperbacks as primary teaching instruments in the classroom. Those were the fun days of learning but without access to Internet, iPads and Chromebooks, information moved slowly both in the classrooms and at home. Today’s classrooms are highly connected and digitization in the education industry is changing learning and teaching to a great extent. As educators, our experiences using technology also have a huge impact on how inclined we are to using it regularly and enthusiastically in the classroom. If a teacher has to struggle to simply project his or her laptop on to a large screen, he or she is likely to give up easily and go back to using the whiteboard, leading to a frustrating experience. On the other hand, kids (and adults) expect the same ease of use and intuitive experiences at their educational institutions as they do at their homes. Fortunately, companies like Cisco and Apple care deeply about making technology usable in fostering enhanced learning experiences in schools and universities. One such example is the use of Apple Bonjour® and Cisco DNA Service for Bonjour® in the classroom. Bonjour® protocol was designed by Apple to simplify connectivity and communication between Bonjour® enabled devices in small networks. When you use AppleTV to share your iPad screen on a large TV or wirelessly print to a printer using AirPrint, you are using Bonjour® within your network. However, Bonjour® was not meant for large institutions spanning multiple buildings and campuses. This is where Cisco DNA Service for Bonjour® comes to the rescue. Cisco DNA Service for Bonjour® is a part of the Cisco Digital Network Architecture (DNA) initiative that enables Intuitive Networking at scale. Using Cisco DNA Service for Bonjour® schools and universities (and any mid-large enterprise), can now easily scale their Bonjour® deployments across entire school districts and campuses with access control and centralized management of services. Read how St. Vrain School District has successfully deployed Apple Bonjour® services across their 42 schools and enabled approx. 32,000 students and teaching staff with connected and personalized learning. It is not only an amazing time to be a kid, it is interesting time to be a parent, a teacher, policy maker and definitely an IT admin these days. With blended learning on the rise, meticulous planning and execution in the use of right technology and solution partners will determine which side of the digital divide you will end up on. Additional Information: Cisco Digital Network Architecture (DNA) Cisco DNA Center Cisco DNA Service for Bonjour Cisco Switching Portfolio Cisco Wireless Portfolio
... View more