Show 49 – Cisco Nexus 1000v

A show about Cisco Nexus 1000V where we poke and prod at some of it’s inner workings.

1. Virtual Machine Networking – the Nexus 1000V VEM data plane, port profiles, etc. VSM control plane (Nexus 1010)

2. Virtual Security Gateway (VSG) – VM-level firewall for multi-tenant environments

3. VM-FEX – 802.1Qbg/h comparison – Virtual Machine – aware networking

add link to borg/big brother article on IOSHints http://www.ioshints.info/Data_Center_Fabric_Architectures

Q&A

1. Why do we need a technology like VM-FEX? What’s the relation of VM-FEX to Adapter-FEX?

2. What’s the status of the standardization efforts?

3. HP is proposing VEPA? What’s different about what Cisco is doing?

4. Seems like there’s some proprietary stuff in VN-Link, maybe on the physical switch side? Is that the case? Can you elaborate?

5. VSG runs on vmware hypervisor. Why do we need VSG if vmware also offers vShield?

6. What about other virtual services beside firewall? Any plans for L4-7 stuff?

7. How do you get all this stuff provisioned and orchestrated in cloud environments?

IP QoS on NX1KV.

* Does it do policing or shaping on VM NICs? * How does that compare to what vSwitch is doing? * Will it get better queuing on pNIC … like ACL or QoS group classification mechanisms? * How about PFC/ETS support on pNIC (from Kurt Bales)

Ivan has blogged extensively about the 802.1Qbg / Qbh and VN-Tag in these three blog (and probably even more by now)

http://blog.ioshints.info/2011/05/edge-virtual-bridging-evb-8021qbg-eases.html http://blog.ioshints.info/2011/05/evb-8021qbg-s-component.html http://blog.ioshints.info/2011/06/vn-tag8021qbh-basics.html

and a good campfire story about N1K development: http://blogs.cisco.com/datacenter/the_past_and_the_future_of_the_cisco_nexus_1000v/

Listener Questions

We took the following listeners questions – hopefully we answered them during the show.

 

Ian Castleman (with donation!!) : I have N5K’s at top of rack, budget for N1KV’s, VMWare in the blade chassis and a server team I can’t convince to try UCS or HP so I’m stuck with the Dell dog awful M6220s in between them. My question for Cisco is can we still deploy the N1KVs and if so what functionality do I lose with a non Nexus “switch” in the middle. Question for you guys,any way you know of that I can get around having to have those Dell “switches” in the chassis? I’m not too familiar with the Dell range but the server guys tell me there are no pass through options that don’t result in cabling explosions..

John McManus – who should manage the 1000v switch server engineers or network engineers

Matt Keller – I’d like to know if Cisco plans to support other hypervisors such as Microsoft’s HyperV.

Matt Norwood – So do you see a bunch of N1k clones from other vendors in the future

Hosts

Tom Hollingsworth Web: http://networkingnerd.wordpress.com | Twitter: @NetworkingNerd

Name: Ivan Pepelnjak Web: http://blog.ioshints.info Twitter: @ioshints

Ethan Banks Web: http://packetattack.org | Twitter: @ecbanks

and last, and the very least:

Greg Ferro http://etherealmind.com| Twitter @etherealmind

Feedback

Follow the Packet Pushers on Twitter (@packetpushers | Greg @etherealmind | Tom Hollingsworth), and send your queries & comments about the show to [email protected].  We want to hear from you!

Subscribe in iTunes and RSS

You can subscribe to Packet Pushers in iTunes by clicking on the logo here.

Media Player and MP3 Download

You can subscribe to the RSS feed or head over to the Packet Pushers website to download the MP3 file directly from the blog post for that episode.

 

Greg Ferro
Greg Ferro is a Network Engineer/Architect, mostly focussed on Data Centre, Security Infrastructure, and recently Virtualization. He has over 20 years in IT, in wide range of employers working as a freelance consultant including Finance, Service Providers and Online Companies. He is CCIE#6920 and has a few ideas about the world, but not enough to really count. He is a host on the Packet Pushers Podcast, blogger at EtherealMind.com and on Twitter @etherealmind and Google Plus.
Greg Ferro
Greg Ferro
Greg Ferro
  • http://thomasjefferson357z.myopenid.com/ Thomas Jefferson

    Excellent show.  Bravo!  You’re a genius Greg Ferro.  A bloody genius.

  • Jaakko Rautanen

    Hi, there isn’t so much discussion about Nexus 1000v drawbacks. It is great product when it is up and running but installation needs much more skills than just basic networking skills. You need to get familiar with vSphere and Vmware networking in general. Also vSphere updates need to be planned carefully and you have to check that Nexus1000v also supports these updates. Someone could say that this is not big deal but if you compare this to basic hardware switch installation and maintenance it is much more complicated.