Bring new levels of visibility to your datacenter with Cisco Tetration Microsoft Ignite 2016 9/12/2018 6:10 AM BRK3247 Bring new levels of visibility to your datacenter with Cisco Tetration @remiphilippe (remi@cisco.com) Technical Marketing Engineer Cisco INSBU © 2016 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

What we’ll be talking about What’s happening in our Datacenters What is Cisco Tetration Analytics Architecture Don’t worry, you don’t need Cisco hardware But adding Cisco hardware makes it better! Use Cases & Demo

What’s Happening in our Datacenters?

Datacenters are becoming increasingly complex Rapid App Deployment Big And Fast Data Hybrid Cloud Increase in east-west traffic Expanded attack surface Open source Zero trust model Multi cloud orchestration Application portability Continuous development Application mobility Micro services

What is Cisco Tetration Analytics?

Every Packet, Every Flow, Every Speed Network Pervasive Visibility and Forensics Application Insight Policy Compliance Cisco Tetration Analytics™

Architecture

Solution Overview Data Collection Analytics Engine Server/Host Sensors Embedded Network Sensors 3rd Party Sources Analytics Engine Tetration Analytics Cluster User Access Web GUI REST API Push Events Self Managed Cluster One touch Deployment No Hadoop / Data science background needed Easy integration via Open interfaces No external storage needed

Sensors

Pervasive Sensors Host Sensors Network Sensors 3rd Party Linux Microsoft Ignite 2016 9/12/2018 6:10 AM Pervasive Sensors Host Sensors Linux Windows Server Hypervisors Containers Network Sensors Nexus 9200-X Nexus 9300-EX 3rd Party DNS CMDB IPAM Load Balancers … Available Now Next Generation Nexus 9000 Future Releases 3rd party Data Sources Low CPU Overhead (SLA enforced) Low Network Overhead (SLA enforced) Highly Secure (Code Signed, Authenticated) Every flow (No sampling), NO PAYLOAD © 2016 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Sensor Features Do not sit in the data path Full flow information No fingerprinting (cannot be seen) No performance hit No latency hit Full flow information No Sampling All Packets Secure TLS encrypted Collect information based on metadata (no payload)

Sensor Operations & Security Centrally Managed Upgrade and Configuration is done by the Tetration Cluster Secure Mutual Certificate Authentication Cluster inserts a Certificate in the installer Sensor can only talk to this specific Cluster

Use Cases

Forensics Ability to go back in time Detailed flow visibility Continuous running network capture Detailed flow visibility Based on per packet information Policy Analysis Detect out of policy flows

Troubleshooting Flow Visibility Flow Exploration Wireshark on steroids (headers only) Flow Exploration Leverage machine learning to identify outliers Identify non-compliant behaviors Application Latency External DNS servers

Policy Management White List Policy model Based on ADM topology Policy monitoring and compliance Map network to policy and detect discrepancies ACI application profiles, end point groups, and contracts based on applications Ease ACI (and others) policy management

Policy View

Application Mapping Identify a single point of failure Missing service at DR Non redundant servers Identify Services Dependencies What should I move together What makes sense to be in the Cloud Understand Undocumented Applications How can I rebuild an application from it’s flows … And more!

Application Map 4945 endpoints 30k+ IPs

and… Demo! Microsoft Ignite 2016 9/12/2018 6:10 AM © 2016 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Summary VM Pervasive flow telemetry that supports infrastructure for multiple data centers at scale Ready-to-use solution to address critical data center operational use cases Self-monitoring and eliminate the need for in-house big data expertise Open platform and northbound APIs enable transparent integration Accelerated adoption and comprehensive Solution support with Services

For more information Product documentation and whitepapers Visit us! https://www.cisco.com/go/tetration Visit us!

Please evaluate this session 9/12/2018 6:10 AM Please evaluate this session Your feedback is important to us! From your PC or Tablet visit MyIgnite at http://myignite.microsoft.com From your phone download and use the Ignite Mobile App by scanning the QR code above or visiting https://aka.ms/ignite.mobileapp © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Free IT Pro resources To advance your career in cloud technology Microsoft Ignite 2016 9/12/2018 6:10 AM Free IT Pro resources To advance your career in cloud technology Plan your career path Microsoft IT Pro Career Center www.microsoft.com/itprocareercenter Cloud role mapping Expert advice on skills needed Self-paced curriculum by cloud role $300 Azure credits and extended trials Pluralsight 3 month subscription (10 courses) Phone support incident Weekly short videos and insights from Microsoft’s leaders and engineers Connect with community of peers and Microsoft experts Get started with Azure Microsoft IT Pro Cloud Essentials www.microsoft.com/itprocloudessentials Demos and how-to videos Microsoft Mechanics www.microsoft.com/mechanics Connect with peers and experts Microsoft Tech Community https://techcommunity.microsoft.com © 2016 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

9/12/2018 6:10 AM © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.