1 / 15

Cloudlens

Cloudlens. Visibility Platform for Private, Public and Hybrid Clouds. Christophe Olivier – Sr. Product Manager – Visibility & Virtualization. Agenda. Virtualization - Trends and Challenges CloudLens Explained CloudLens vTap – OpenStack

rfrancine
Download Presentation

Cloudlens

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Cloudlens • Visibility Platform for Private, Public and Hybrid Clouds Christophe Olivier – Sr. Product Manager – Visibility & Virtualization

  2. Agenda • Virtualization - Trends and Challenges • CloudLens Explained • CloudLens vTap – OpenStack • Demo – East West Traffic Monitoring in OpenStack Environment

  3. Ixia’s Strength and Global Reach TOTAL $517 MILLION 1ST 6,000+ TO MARKET INNOVATIONS • HISTORY • Founded: 1997 • Publically Traded: XXIA • Key Acquisitions: • 2009 Catapult Comm. • 2011 Veriwave • 2012 Anue Systems • 2012 BreakingPoint • 2013 Net Optics • 2017 Ixia is now part of Keysight Technologies GLOBAL CUSTOMERS

  4. Enterprise network evolution More data is created and accessed everywhere now Then Now Internet of Things Distributed Network Mobile Devices Private & Public Cloud SSL APIs  Virtualization

  5. the network perimeter is vanishing More cloud. More mobility. More data. • 25% of corporate data traffic will bypass traditional security defenses and flow directly from mobile devices to the cloud by 2018 – Gartner ’13 • 48% of companies have workload portability across public and private cloud resources – Verizon 2016 • Cloud security at AWS is the highest priority …Built to meet the requirements of the most security-sensitive organizations. • By 2018, the 60% of enterprises that implement appropriate cloud visibility and control tools will experience one-third fewer security failures ~ Gartner 2017 SaaS IoT Cloud Mobile Devices Public Cloud Branch Office Private Cloud SP Network Virtual DC

  6. virtual data center – the Challenge Most Virtual traffic is not seen by security and analytics tools • Harder to enforce security policies with dynamic environment Host Security and Performance Monitoring Tools App DB Web DB APP IDS • End-to-end monitoring involves multiple locations IDS Production Network Forensics Tool • East-west traffic between VMs is Hidden from tools Forensics Tool DLP East-West Traffic NOTSeen by Network Monitoring Tools ? • Virtual Workloads move – can’t track by IP address, protocol and port Most East-West Traffic is NOT Seen by Security/Analytics

  7. Ixia virtual security fabric The Security and Monitoring Fabric • Monitor virtual traffic at the branch office, data center or cloud • Capture and send packets and flows of interest to monitoring tools • Support both physical and virtual environments • Limit amount, type of data sent to monitoring tools, adjust dynamically • Tenant aware Virtual Visibility Fabric Data Access Anywhere Context Aware Data Processing Intelligent AdaptiveMonitoring Public Cloud Branch Office Private Cloud Cloud SP Network Virtual Data Center

  8. Cloudlens Visibility across all your cloud environments - Public, Private, and Hybrid clouds

  9. Cloudlens - Visibility intelligence CloudLens – Virtual Tapping – Packet & Application Intelligence Processing Public Cloud Branch Office Private Cloud Cloud SP Network Virtual Data Center

  10. CloudLens (private cloud) solutions Ixia Application & Threat Intelligence 3rd Party Analytics and Monitoring Apps ClouldLens Management Adaptive, Intelligent Monitoring API Splunk Plixr Scrutinizer Application Filtering De-duplication Data Masking SSL Decryption Intelligent Packet Processing AdaptivePacket Filtering Vision ONE NPB Packet Trimming GRE Tunnel Termination NetFlow Generation API NTO 7300 NPB Packet Capture Time Stamping Load Balancing Geo Location Virtual Packet Broker Data Access Everywhere API CloudLens Virtual Tap (vTap)

  11. CloudLens Virtual tapping - vtap 2 Virtual Tapping (vTap) Methods for OpenStack Environment KVM/OVS • Integrates with Nova Services • Dependent on OVS – Compute access from Administrator • Well suited for infrastructure monitoring • No tenant footprint (tapping occurs in OVS) • Less virtual infrastructure overhead Tap As A Service (TaaS) • Integration with OpenStack Nova and Neutron Services • No Compute Access Needed • Requires OpenStack updates (TaaS) • Per Tenant Service Deployment using Heat Template • Service VM implementation – Controlled Resource Allocation • Monitoring at the Tenant level (Multi-tenancy Support) • Efficient and Easier integration with virtual Probes – More End Point Monitoring

  12. Benefits Multi Tenant Support - Aware of OpenStack Objects Integrated Solution for Physical, and Virtual Environments Uses Best Network Capabilities for Monitoring – Flexible Solution IXIA Service Manager can Work Across Many Platforms and Control other IXIA Services for Better Integration REST API Available for Automation Scale to Monitor Large Environments Integration with OpenStack, Event, Metadata Systems (Tags) React to VM Migration and Dynamic Compute and Network Changes

  13. DEMO

  14. CloudLens – Demo East West Visibility Monitoring in Openstack Service Manager 1 Setup OpenStack + TaaS 1 Install vTap Environment 2 vTap Lifecycle Mgmt. Policy Management HA Event Handling Automation 3 Tap Traffic 2 Send Monitored Traffic to Aggregator 4 NetFlow sent to Netflow Collector 5 Controller Node Monitoring Node Compute Node 3 5 CloudLens PacketStack vTap Svc CloudLens AppStack Monitored VM Monitored VM Monitored VMs: Traffic generated by Ixia IxChariot TaaS TaaS 4 E/W Traffic Monitoring Tools SPLUNK-Scrutinizer NTOP Selective mirror Traffic GRE Tunnel Production Network

  15. Thank You

More Related