Pages

Subscribe Twitter

Monday 31 October 2011

Cisco Launches Wireless TV Solution

Today Cisco announced the launch of the industry's first wireless IPTV service with AT&T . Cisco is the sole provider of this advanced wireless IPTV solution featuring new wireless receivers and wireless access points (WAPs), available across the entire AT&T U-verse TV footprint beginning Monday, October 31.
Consumers can now rely on wireless technology to deliver high-quality video services throughout the home without the need for cables or wires. With this new technology, you can watch TV in virtually any room in the home, even rooms not wired for TV-- like the kitchen, basement or indoor garage. TV content is sent from the Cisco wireless access point via in-home Wi-Fi to the Cisco    wireless receiver next to the TV. It's as easy as plugging the TV into a power source, attaching high-definition multimedia interface (HDMI) cables or other audiovisual connection to the TV and pressing two buttons to establish the wireless connection.

Highlights: The Wireless TV Solution: Cisco's wireless TV solution is the first of its kind to deliver both standard definition (SD) and high definition (HD) programming to multiple receivers with "built-in" or integrated Wi-Fi. Just one wireless access point per home can support two wireless receivers connected to TVs. Cisco's wireless TV solution features the ISB7005 wireless receiver and the VEN401 Wireless Access Point, now part of the Cisco Videoscape (TM) portfolio. Cisco's wireless receiver delivers live TV channels and interactive services ? and functions as a Total Home HD DVR, allowing consumers to view and manage DVR recordings wirelessly from a wired DVR in the home.

Video Operator Benefits: Wi-Fi-delivered video gives service providers the unique advantage of offering consumers new freedom to watch TV wherever they want in the home. With no added wiring required, Cisco's wireless TV solution offers service providers the means for faster service activations and consumer self-installation with easy-to-use WiFi kits. Integrating WiFi technology into the receiver is a more cost-effective option for service providers, as it gives technicians the ability to install receivers without running new wires. The integrated WiFi receiver also offers service providers the ability to monitor the device's performance via the network, as the receiver comes equipped with remote diagnostics. Cisco's solution is based on the 802.11n standard, and includes enhancements to manage the demanding requirements of delivering high-quality, highly secure video over Wi-Fi.

Supporting Quotes: GW Shaw, executive director of U-verse marketing, AT&T: "AT&T is bringing a new freedom to the TV experience, giving consumers the benefit of watching TV in virtually any room in the home. Cisco's wireless IPTV solution gives our customers flexibility with where they can place and watch their TVs, and offers a faster and simpler set-up process for customers and U-verse technicians." Joe Chow, vice president and general manager, Connected Home Solutions, Service Provider Video Technology Group, Cisco: "Never before has it been so easy to move your TV around the home to wherever it suits you. We are excited to reach this industry milestone, becoming the first to bring wireless TV to market with AT&T. Cisco is pleased to achieve new heights as AT&T's wireless TV technology provider." Videos: Cisco Demos Industry's First Integrated Wireless TV Solution.

The wireless TV solution can deliver both standard definition (SD) and high definition (HD) programming to multiple receivers with 'built-in' or integrated Wi-Fi. One wireless access point per home can support two wireless receivers connected to TVs, claims the company in a release. This solution is based on the 802.11n standard and features ISB7005 wireless receiver and VEN401 wireless access point, now part of the Cisco Videoscape portfolio.
AT&T Inc.’s U-Verse TV service is going wireless — inside the home. Its new set-top boxes will use the home’s Wi-Fi to get TV programming, with no need for a coaxial cable.
That means TV sets can be moved from room to room and still work.

“You could move your U-Verse to the patio for the football game if the weather’s nice or to the guest room if you have guests coming in,” said David Christopher, chief marketing officer.

That’s not really why AT&T developed it, though. The company was looking for a way to cut installation time and cost, Christopher said. With wireless boxes, installers won’t need to run cable or drill through walls.

U-Verse is delivered with Internet technology rather than standard cable technology. That makes it easier for AT&T to send the signal wirelessly. Other, smaller phone companies have used wireless set-top boxes for a few years.

The service uses standard Wi-Fi and has about the same range. The boxes will be available starting this week for a one-time fee of $49, plus the standard monthly $7 box rental fee. They’re made by Cisco Systems Inc.

A Wi-Fi hotspot can serve up to two set-top boxes wirelessly. A home can have two more set-top boxes, but they would have to be wired up, since the hotspot has limited capacity. All four could show high-definition programming simultaneously.

Combination of Cisco & Verint's

 “The combination of Cisco infrastructure and Verint’s software and services allows organizations to gain valuable insights into caller issues, guide customer service agents and back-office operations personnel toward timely first-contact resolution, improve staff productivity, and increase customer satisfaction and loyalty.”




MELVILLE, N.Y., Oct 31, 2011 (BUSINESS WIRE) -- Verint(R) Systems Inc. today announced that its 5th-generation workforce optimization (WFO) suite has successfully completed interoperability testing with Cisco's Unified Communications Manager 8.5 and Unified Contact Center Enterprise (UCCE) 8.0 applications.
The Cisco Developer Network unites Cisco with third-party developers for hardware and software to deliver tested interoperable solutions to joint customers. As a Solution Developer, Verint shares Cisco's strong commitment to customer service and satisfaction, has completed interoperability verification testing based on criteria set forth by Cisco, and provides joint customers with 24-hour, seven-days-a-week support. With solutions, such as Impact 360(R) Workforce Optimization(TM), customers can more quickly deploy a broad range of Cisco Compatible business applications, devices and/or services that can enhance the capabilities, performance and management of their Cisco network.
"Verint has a long-standing relationship with Cisco and has worked closely with the organization in deploying innovative WFO applications to joint global customers for over a decade," says John Bourne, senior vice president, global channels and alliances, Verint. "The combination of Cisco infrastructure and Verint's software and services allows organizations to gain valuable insights into caller issues, guide customer service agents and back-office operations personnel toward timely first-contact resolution, improve staff productivity, and increase customer satisfaction and loyalty."
About Verint Witness Actionable Solutions:
Verint(R) Witness Actionable Solutions(R) is the worldwide leader in enterprise workforce optimization (WFO) software and services. As the market's first 5th-Generation WFO solution, its unified Impact 360(R) suite enables organizations of all sizes to capture, analyze and act on customer, business and market intelligence, and optimize customer experiences. Impact 360 Workforce Optimization(TM)-- comprised of quality monitoring and recording, voice of the customer analytics, desktop and process analytics, workforce management, performance management, eLearning, coaching and more -- serves as a strategic asset across front- and back-office sales and service operations that help shape the customer experience. Used by thousands of organizations around the globe, Verint solutions help improve the entire customer service delivery network, powering decisions Real Time at the Right Time(TM) to advance service excellence across today's customer-centric enterprises.
About Verint Systems Inc.
Verint(R) Systems Inc. is a global leader in Actionable Intelligence(R) solutions and value-added services. Our solutions enable organizations of all sizes to make timely and effective decisions to improve enterprise performance and make the world a safer place. More than 10,000 organizations in over 150 countries--including over 85 percent of the Fortune 100--use Verint solutions to capture, distill, and analyze complex and underused information sources, such as voice, video and unstructured text. Headquartered in Melville, New York, we support our customers around the globe directly and with an extensive network of selling and support partners. Verint is listed on the NASDAQ Stock Market under the symbol "VRNT." Visit us at our website www.verint.com .
This press release contains forward-looking statements, including statements regarding expectations, predictions, views, opportunities, plans, strategies, beliefs, and statements of similar effect relating to Verint Systems Inc. These forward-looking statements are not guarantees of future performance and they are based on management's expectations that involve a number of risks and uncertainties, any of which could cause actual results to differ materially from those expressed in or implied by the forward-looking statements. For a detailed discussion of these risk factors, see our Annual Report on Form 10-K for the year ended January 31, 2011 and our Quarterly Report on Form 10-Q for the quarter ended July 31, 2011. The forward-looking statements contained in this press release are made as of the date of this press release and, except as required by law, the Company assumes no obligation to update or revise them or to provide reasons why actual results may differ.
* Interoperability testing is designed to simulate typical customer configurations, and does not replace the need for on-site testing in conjunction with actual implementation.

Cisco Aggregation Routers

Cisco 7200 Series
         
   Enterprises and service providers can meet new services aggregation requirements without expensive equipment upgrades or radical network redesigns by taking advantage of the industry’s most popular WAN and MAN aggregation platform.

SERVICES AGGREGATION IN THE WAN AND MAN
As companies deploy more services in branch offices using Cisco Integrated Services Routers, the role of the WAN aggregation router at the headend is being redefined. With more than 350,000 installed Cisco 7200 Series routers, Cisco is helping customers deploy new services and migrate to new WAN architectures using their existing networks.

NETWORK  SECURITY
The Cisco 7200 Series—which includes Cisco 7200 VXR Series routers and the 1-RU form factor Cisco 7201—plays a key role in the Cisco Self-Defending Network strategy by enabling:
• WAN and VPN aggregation: Scalable connectivity and IPSec encryption
• Data and identity protection: Perimeter defense, outbreak prevention, and
identity-based access control
• Business continuity: Network availability and uninterrupted services.

VOICE, VIDEO, AND APPLICAT ION  SUPPORT
Cisco 7200 VXR Series routers offer integrated voice, video, and applications support, which includes the TDM-enabled VXR chassis, voice port adapters, IP-to-IP gateway support and comprehensive Cisco IOS Software features supporting optimum voice and video delivery to the extended enterprise.
Both the Cisco 7200 VXR Series and the Cisco 7201 deliver exceptional versatility in a compact form factor, and are especially suitable for applications that require Gigabit Ethernet and OC3/STM-1 connectivity with services being deployed. Offering processing speeds up to two million packets per second, three built-in Gigabit Ethernet ports on the routing engine (four on the Cisco 7201), interfaces ranging from NxDS0
to OC-3 POS and STM1, and an unparalleled number of high-touch IP services, the  Cisco 7200 VXR is an ideal high-end access router for large office environments.A key strength of the Cisco 7200 VXR Series is its modularity and flexibility. It offers a selection of processors, an extensive range of LAN and WAN interfaces
with up to 48 ports per chassis, and single or dual power supplies, enabling customers to customize their systems to achieve desired levels of performance, connectivity, and capacity. With the Port Adapter Jacket Card, Cisco 7200 VXR series 4- and 6-slot chassis can be turned into a 5- and 7-slot chassis for selected high-speed WAN port and security adapters. It is typically used for WAN and MAN services aggregation, voice over IP, security, and various other IP applications due to its exceptionally broad feature offerings. As a 1-RU form factor of a Cisco 7200 VXR Series, the Cisco 7201 provides packet forwarding speeds up to 2 Mpps. It also offers extensive port and service adapter support. In comparison to the Cisco 7200 VXR Series with NPE-G2 engine, the Cisco 7201 provides an additional fourth built-in Ethernet ports (10/100/1000) with support for one port adapter. The Cisco 7201 also supports AC and DC power
supply with the option of dual DC power supply.The Cisco 7201 is most attractive to customers looking for the functionality and performance of Cisco 7200 VXR Series routers, but less concerned with port density
than a compact form factor and lower power consumption. Cisco 7301 continues to be available for applications where performance above 1 Mbps is not required.

Benefits and Advantages
Maximum ROI
A low price point makes the Cisco 7200 Series very attractive, while allowing customers to easily upgrade and redeploy their equipment as network needs change .
Connectivity/Flexibility
Providing high port density and an extensive range of LAN and WAN media, plus the three built-in GbE ports on the NPE-G1 and NPE-G2 engines, the Cisco 7200 Series dramaticallyreduces the cost per port and allows for flexible configurations to meet customers specific network needs .
Feature-Rich
Full support for Cisco IOS Software and enhancements for high-performance network services enables the Cisco 7200 to offer industry-leading network services including MPLS, broadband aggregation, quality of service,security, and voice services .
Common Port Adapters
The Cisco 7200 VXR series shares the majorityof the port adapters with Cisco 7201, Cisco7301, Cisco 7304, Cisco 7500 Series, andCisco 7600 Series routers, which simplifies inventory management and increases investment protection.
Compact Form Factor
The Cisco 7200 VXR Series can support up to seven port/service adapters when utilizing the port adapter jacket card in its fully modular 3-RU form factor chassis . Up to 16 chassis can
be supported in a 7’ rack . The Cisco 7201 is the most powerful 1-RU router solution in the industry .
Exceptional Value
As the most powerful Cisco single-processor platform, the Cisco 7200 VXR Series offers customers a superior price/performance ratio supporting high-speed media and high-density configurations with up to 2 million packets per second processing at a competitive price point .
Simplified Network Convergence
The Cisco 7200 VXR Series’ Multiservice Interchange (MIX)-enabled backplane allows for integration of data, voice, and video in a single WAN Edge device . With the latest quality-ofservice (QoS) features, the Cisco 7200 VXR Series enables enterprises to save money by bypassing their carrier’s long distance charges.
VPN Support
The dedicated VPN acceleration adapters supported in Cisco 7200 VXR and 7201 routers enable an integrated solution for routing and security including QoS, multicast, and multiprotocol traffic across the VPN . Utilizing the VPN Acceleration Module (SA-VAM2+) or VPN Services Adapter (C7200-VSA), the Cisco 7200 VXR series delivers up to 600 Mbps for the most demanding head-end, site-to-site VPN deployments .Cisco 7200 VXR and 7201 routers provide an integrated security solution whichincludes IPSec, FW, and IDS features sets .
Enhanced Security
Cisco 7200 VXR and Cisco 7201 routers help ensure the highest levels of network security .All Cisco 7200 Series routers support integrated SSL VPN, access control lists (ACLs), NetworkAddress Translation (NAT), full Netflow, firewall, intrusion prevention systems, IP Service Level Agreements (IP SLA), and a new category of IPSec Virtual Private Network (GET VPN) thateliminates the need for tunneling and enables
higher levels of scalability.      


Cisco 7301 Series    
                                               The Cisco 7301 Series Router is a compact, high-performance single-rack-unit (1-RU)  router coupled with a broad set of interfaces and Cisco IOS Software features, which makes it ideal for both service providers and enterprise applications. Cisco 7301 Series is based on the Cisco 7200 NPE-G1 engine. The Cisco 7301 packs high performance in a space- and power-efficient chassis that includes a single Cisco 7000 Series port adapter slot, three onboard Gigabit Ethernet (copper or optical) or Fast Ethernet ports, and new high-speed bus technologies.

THE KEY FEATURE S OF THE CISCO 7301 ROUTER ARE: 
• Compact, power-efficient 1-RU form factor
• Single Cisco 7000 Series port adapter slot
• Complete Cisco IOS Software feature support
• Three onboard Gigabit Ethernet (copper or optical) or Fast Ethernet ports
• Pluggable Gigabit Ethernet optics (Small Form-Factor Pluggable [SFP] optics)
• Up to 1 GB of available DRAM, supporting up to 1 million routes
• Up to 256 MB of removable compact Flash memory
• Front-to-back airflow and single-sided management.

NEXT GENERATION  POLICY  AND  SUBSCRIBER  SOLUTION
The Cisco 7301 supports Cisco Intelligent Services Gateway (ISG), the next-generation 
policy and subscriber management solution to deliver dynamic session awareness. 
Cisco ISG supports IP, Ethernet, ATM, Multiprotocol Label Switching (MPLS), and 
VPN architectures, whether the business model is for retail, wholesale, or business 
services. Cisco ISG allows for zero-touch provisioning, and provides the per-flow 
granularity and dynamic control required for triple-play services. Unlike some 
competitive offerings, Cisco ISG is standards-based for multi-vendor deployment. With 
RADIUS Change of Authorization (RFC 3576), subscriber profiles can be changed 
dynamically based on user self-management (through a Web portal) or through an OSS 
process. Network utilization improves because per-subscriber bandwidth needs are 
managed dynamically, increasing customer satisfaction.

Cisco ISG is a software feature set available in Cisco IOS Software Release 12.2(28)SB for the 7200 Series, and 7301 Routers. Cisco ISG takes advantage of Cisco IOS routing capabilities to provide uplink redundancy, load-balancing, and MPLS integration. Cisco ISG is highly scalable, with consistent performance regardless of the features used. It can define and enforce local policy embedded directly in the network, or interact with centralized policy-management systems. Its integral role within the Cisco IP Next-Generation Network (NGN) Service Exchange Framework helps create consistent services in a highly flexible way.

VOICE, VIDEO, AND APPLICATION  SUPPORT
The Cisco 7301 Services Aggregation Routers offer integrated voice, video, and applications support, which include the TDM-enabled VXR chassis, voice port adapters, IP-to-IP gateway support, and comprehensive Cisco IOS Software features supporting optimum voice and video delivery to the extended enterprise.
The Cisco 7301 delivers exceptional versatility in a compact form factor, and are especially suitable for applications that require Gigabit Ethernet and OC3/STM-1 connectivity with services being deployed. Offering processing speeds up to one million packets per second, three built-in Gigabit Ethernet ports on the routing engine, interfaces ranging from NxDS0 to OC-3 POS and STM1, and an unparalleled number of high-touch IP.

Benefits & Advantages 
Maximum ROI
A low price point makes the Cisco 7301 very attractive, while allowing customers to easily upgrade and redeploy their equipment as network needs change .
Feature-Rich
The Cisco 7301 delivers a full suite of Cisco IOS Software services for managing network security,
allocating quality of service (QoS) among applications and users, and providing valueadded services such as NetFlow accounting and encryption . QoS applications such as Committed Access Rate (CAR), Weighted Random Early Detection (WRED), and Weighted Fair Queuing (WFQ) can be flexibly applied to provide
precedence across IP addresses, applications, or specific users with a high level of granularity.
Common Port Adapters
The Cisco 7301 shares a majority of port adapters with the Cisco 7200 VXR, Cisco 7201, Cisco 7304, Cisco 7500, and Cisco 7600 series, which simplifies inventory management as well as provides investment protection through compatible interfaces amongst different router series.
Compact Form Factor and Low Power Consumption
With a processing performance of nearly 1 million-packets-per-second (Mpps), customers can maximize router performance where space is constrained . “Rack and stack” functionality allows customers to maximize the use of space in expensive Internet service provider (ISP) data centers . This is ideal for a dedicated security or QoS appliance at the edge of enterprise networks .
Exceptional Value
A powerful single-processor platform, the Cisco
7301 offers customers a superior price/performance
ratio supporting high-speed media and high-density
configurations with up to 1 million packets per
second processing at a competitive price point .
VPN Support
The dedicated VPN acceleration adapters supported in the Cisco 7301 enable an integrated
solution for routing and security including QoS, multicast, and multi-protocol traffic across the VPN . Utilizing the VPN Acceleration Module (SA-VAM2+), the Cisco 7301 delivers 3-Key Triple DES (168-bit)
algorithms at speeds up to 260 Mbps  for the most demanding headend, site-tosite VPN deployments  . The Cisco 7301 provides an integrated security solution, which includes IPSec, FW, and IDS features sets .
Enhanced Security
With support for SSL VPN, access control lists (ACL), Network Address Translation (NAT),
Netflow, along with firewall, intrusion prevention, service level validation features, and a new category of Virtual Private Network (GET VPN) that eliminates the need for tunnels and increases scalability, the Cisco 7301 is an ideal platform for ensuring network security.

Cisco 7304 Series
                                    Cisco 7304 Series Routers are designed for the network edge where high-performance IP services and redundancy are required to maintain profitability, service differentiation, and business agility. Using a compact, modular form factor, the Cisco 7304 delivers high-touch IP services at multi-gigabit speeds necessary for applications in the enterprise and service provider high-end customer premise equipment (CPE). This versatile platform delivers a breadth of Cisco IOS features in addition to an evolving set of hardware-accelerated IP services. Providing a range of IP connectivity up to Gigabit Ethernet/OC-48, engineered for high availability and multiprotocol support, the Cisco 7304 scales to meet critical application needs of today and in the future.

Benefits and Advantages
High-performance IP/MPLS Services 
The Cisco 7304 Series Routers take advantage of innovative Cisco adaptive network processing capabilities to power a broad set of network applications and services . The performance of the Cisco 7304 Series Routers make them ideal for high performance, multi-gigabit applications .The Cisco 7304, with modular engine support, uses the Network Service Engine (NSE-150) to power IP/MPLS services at up to 3 .5 Mbps while delivering multiple IP/MPLS features such as MPLS, NAT, QoS, and NetFlow accounting.
Highly Scalable and Available 
Cisco 7304 Series Routers can support a broad set of interfaces from DS-0 to OC-48 speeds, including built-in Fast Ethernet and Gigabit Ethernet interfaces meeting performance demands well into the future . The Cisco 7304 is designed with the necessary memory and processing power for the next generation
of applications that require large route table support, optical interfaces, and high-performance services processing . The Cisco 7304 supports dual route processors and power supplies, making it an ideal solution for providing mission critical network availability.
Exceptional Value 
Meeting today’s connectivity needs, the Cisco 7304 Series Routers deliver built-in Ethernet interfaces, while supporting a wide variety of Cisco 7000 Series port adapters .With both copper and optical Gigabit Ethernet
capabilities, these routers offer exceptional value for customers linking to high-speed LAN or Ethernet WAN connections without additional cost or interfaces.

Cisco 7600 Series

 The Cisco 7600 Series combines optical WAN/MAN networking and high-volume Ethernet aggregation with a focus on the delivery of high-touch services for the IP and MPLS edge. It combines Layer 2 and Layer 3 networking capabilities with a high-bandwidth, high-performance architecture including hardware-based forwarding of MPLS, IPv4, and IPv6. Cisco 7600 series form factors include the Cisco 7604, 7606, 7609, and 7613. Each router can deliver DS0 to OC-192 WAN and nx10-Mbps Ethernet to nx10-Gigabit Ethernet connectivity into service provider edge, metropolitan-area, and enterprise networks for a variety of triple-play and aggregation solutions.

Benefits and Advantages
The Cisco 7604 is a small form factor router that offers a wide range of interfaces ranging from DS0
to OC-192, FE, GbE, 10GbE, allowing it to be deployed in a wide range of applications .It supports redundant supervisors and high-availability features making the Cisco 7604 resilient.
Security Features
The Cisco 7604 advanced security services offer protection for the device, service, and network:
Device Protection
• Control plane protection
• User access
• Spoofed address
Service Protection
• VRF Aware IPSec VPN
• Virtualized firewall
• Virtualized intrusion detection
Network Protection
• Clean pipes
• Distributed denial of service protection
• Network Protection Access Control Lists
• Reverse Path Forwarding.                               
   
Cisco Catalyst 6500 Series
                               
                                                    
 The Cisco Catalyst
 6500 sets the new standard for IP Communications, MPLS
networks and application delivery in enterprise campus and service provider
networks. The Catalyst 6500 Series delivers scalable, secure, converged, L2 and L3
services, from the data center and campus to the WAN aggregation and the Internet edge.
Delivering scalable performance and port density with investment protection across
several chassis configurations and LAN, WAN, and MAN interfaces, the Catalyst
6500 Series switches feature an unparalleled range of integrated services modules,
including multi-gigabit network security, content switching, telephony, and network
analysis modules.
The Catalyst 6500 Series delivers a consistent network operating environment
through an architecture that uses a common set of modules and Cisco IOS software
across all models.  This helps to optimize IT infrastructure usage and enhance return
on investment. With connectivity for services ranging from DS0 to OC-192, and
nx10-MbpsEthernet to high-density 10-Gigabit Ethernet, the Catalyst 6500 Series
with IOS software modularity maximizes network uptime with stateful failover
capability between redundant routing and forwarding engines.
The Cisco Catalyst 6500 Series demonstrates an ongoing commitment to innovation
with numerous industry-leading features. Support for Flexible Packet Matching and
Application Intelligence in hardware is the latest example of Catalyst 6500 Series
innovation, benefiting WAN service aggregation and Internet edge deployments by
securing the enterprise network against attack, as well as monitoring and prioritizing
mission-critical applications versus discretionary traffic for maximum business efficiency.

Benefits and Advantages                                                                      
Maximum Network Uptime
Cisco IOS Software Modularity, together with platform, power supply, supervisor engine, switch fabric,
and integrated services redundancy provides one-to-three second stateful failover, and delivers application and services continuity in a converged network, .  The Cisco Catalyst 6500 Series with Cisco IOS Software Modularity boosts operational efficiency and minimizes downtime by enabling modular Cisco IOS subsystems to run in independent processes .  This minimizes unplanned downtime through self-healing processes, simplifies software changes through subsystem In-Service Software Upgrades (ISSU), and enables process-level, automated policy control by integrating Cisco Embedded Event Manager (EEM).
Integrated Security
A comprehensive portfolio of proven and integrated multi-gigabit security services modules are available with the Catalyst 6500 Series .  Integrated network security simplifies operations and reduces total cost of ownership .Cisco Catalyst 6500 security service modules include intrusion detection, firewall, scalable IPSec VPN solutions and Secure Sockets Layer (SSL) .
Services Integration and Flexibility
Catalyst 6500 Series application intelligence with PISA technology helps ensure application performance and security in converged data, voice, video, and wireless Campus and WAN environments . Catalyst 6500 supports a wide range of integrated and advanced services such as security, wireless LAN, and Layer 4-7 content services; provides the widest range of interfaces and densities from 10/100/1000 Ethernet to 10
Gigabit, and DS-0 to OC-192; and performs in deployments from the data center, to the Campus and WAN edge.
Scalable Performance
Cisco Catalyst 6500 Series provides up to 400 Mbps performance with a distributed forwarding architecture that supports a mix of Cisco Express Forwarding implementations and switch-fabric speeds for optimal data center, campus, and WAN edge deployments, as well as service provider networks .  Catalyst 6500 Series
provides consistent and scalable routing services to maximize application performance to branch
offices over the WAN with advanced IOS routing solutions .
Operational Consistency
Featuring 3-, 4-, 6-, 9-, and 13-slot chassis configurations, Catalyst 6500 Series shares a common set of modules, Cisco IOS Software, Cisco Catalyst Operating System Software, and network management tools .  Catalyst 6500 Series can be deployed across the network from the core network to the WAN and Internet edge, simplifying network operations and reducing spares expense .
Validated Solutions
 All Cisco Catalyst 6500 Series applications are tested in Safe Harbor, with the recent addition of enterprise WAN applications for an End-to-End tested solution.

Cisco Integrated Services Routers

Cisco 850 Series



The Cisco 850 Series of secure broadband and wireless routers is part of the Cisco Integrated Services Router portfolio. Designed for small offices, the routers provide secure WAN connectivity with optional integrated 802.11b/g WLANs in a single device. Easy setup allows the Cisco 850 Series to be deployed at small remote offices and small businesses, and remote management features enable IT managers and service providers to better support remote sites.

Benefits and Advantages
Integrated Services 
Cisco 850 Series Integrated Services Routers are fixed-configuration routers that support
broadband cable and Asymmetric DSL (ADSL) over analog telephone line connections in small offices . They provide the performance needed to run concurrent services, including firewall and encryption for VPNs . An optional 802 .11b/g wireless option offers a secure broadband router and wireless access point for WLAN sina single device . The stateful inspection firewall and IP Sec VPN support provide secure access when connecting to the Internet or connecting small offices to a central site . High-speed LAN ports connect multiple devices to the small office network.
Easy Setup and Deployment
The Cisco Router and Security Device Manager (SDM) Web-based configuration tool simplifies setup and deployment, and centralized management capabilities give network managers visibility and control of router configurations at the remote site . Cisco Configuration Express Service supports factory-loaded configurations
in high-volume deployments . Support for the Cisco Configuration Engine enables plug-andplay installations with centralized configuration management .
Remote Management
Cisco 850 Series routers are ideally suited for small office and remote office deployments .Out-of-band management with an external modem through the auxiliary port allows IT managers to remotely manage routers at small office sites to quickly troubleshoot any network issues . Optional integrated secure WLAN connectivity simplifies the number of devices that need to be managed at the remote site .Cisco SDM helps resellers and customers to quickly and easily deploy, configure, and monitor a Cisco access router without knowledge of the Cisco IOS Software comma(CLI).


        Cisco 870 Series


                                                        
The Cisco 870 Series Integrated Services Routers extend to small offices the highperformance Cisco Integrated Services Router capabilities of running secure concurrent services, including firewall, VPNs, and WLANs, at broadband speeds.Easy deployment and centralized management features enable the Cisco 870 Series to be deployed in small office or teleworker sites as part of an enterprise network,
by small to medium-sized business customers for secure WAN and WLANconnectivity, or used by service providers to offer business-class broadband and WLAN services.

Benefits and Advantages
Increased Performance to Run Concurrent Services The performance in a Cisco 870 Series router allows customers to take advantage of broadband network speeds while runningsecure, concurrent data, voice, and video services .
Advanced Security
The Cisco 870 Series delivers enterprise-class security services, including an Integrated Stateful Inspection Firewall for network perimeter security, high-speed IP Security (IPSec), Triple Data Encryption Standard(3DES) and Advanced Encryption Standard (AES) encryption for dataprivacy over the Internet, Intrusion Prevention System (IPS), and antivirus support through Network Admission Control (NAC) to enforce security policy in a larger enterprise or service provider network .
Four-port 10/100 Mbps Managed Switch
Allows multiple devices to be connected in a small office, with the ability to designate a port as network DMZ  An optional external PoE adapter is available for powering IP phones to avoid individual power supplies or power injectors .VLANs allow for secure segmentation
of network resources
Optional 802.11b/g WLANs with Support for Multiple Antennas
•  Broadband router with secure WLAN in a
single device
•  Diversity antennas for optimizing coverage in
a small office
•  Options for replaceable external antennas,
to get wireless coverage in areas away from
where the router is located.

Cisco SDM and Cisco IOS Software for Remote Management
Using smart wizards and task-based tutorials, Cisco Security Device Manager (SDM) helps resellers and customers quickly and easily deploy, configure, and monitor a Cisco access router without requiring knowledge of the Cisco IOS Software command-line interface (CLI) . Dial backup and out-of-band management allow IT managers to remotely manage the router at small office and teleworker sites . Cisco Configuration Express Service supports factory-loaded configurations in high-volume deployments .
Support for the Cisco Configuration Engine enables plug-and-play installations with centralized configuration management.

       Cisco 1800 Series(Fixed configuration)
Cisco is redefining best-in-class enterprise and small- to medium-sized business routing with a new line of Integrated Services Routers that are optimized for the secure delivery of data services. Founded on 20 years of leadership and innovation, the Cisco 1800 Series Integrated Services Routers intelligently embed data, security, and wireless technology into a single, resilient system for fast, secure, scalable delivery of mission-critical business applications. The Cisco 1800 Series architecture has been specifically designed to meet requirements of small- to medium-sized businesses (SMBs), small enterprise branch offices, and service provider-managed services applications for delivery of concurrent services for broadband access. The integrated secure systems architecture of the Cisco 1800 Series delivers maximum business agility and investment protection.

Benefits and Advantages
Cisco 1800 Series Integrated Services Routers are the next evolution of the award-winning Cisco 1700 Series modular and fixed-configurationrouters . The Cisco 1801, 1802, 1803, 1811, and 1812 Integrated Services Routers are fixedconfiguration, while the Cisco 1841 Integrated Services Router is modular . The routers are designed for secure broadband, Metro Ethernet, and wireless connectivity, and provide significant performance improvements, feature capability, versatility, and additional value compared to prior generations of Cisco 1700 Series . The Cisco 1800 Series fixed-configuration routers provide:
•  Secure broadband access with concurrent services for branch and small offices
• Integrated ISDN Basic Rate S/T Interface (BRI), analog modem, or Ethernet backup port for
redundant WAN links and load balancing
•  Secure wireless LAN option for simultaneous 802 .11a and 802 .11b/g with use of two dualmode antennas
•  Advanced security including: Stateful Inspection Firewall, IP Security (IPSec) VPNs (Triple Data Encryption Standard [3DES] or Advanced Encryption Standard [AES]), Intrusion Prevention System (IPS), Antivirus support through Network Admission Control (NAC) and enforcement of secure access policies
•  8-port 10/100 managed switch with 802 .1q VLAN support and optional Power over Ethernet (PoE)
•  Easy deployment and remote-management capabilities through Web-based tools and Cisco IOS Software Cisco 1801, 1802, and 1803 routers provide high-speed DSL broadband access through asymmetric DSL (ADSL) over basic telephone service (Cisco 1801), ADSL over ISDN (Cisco 1802), or Symmetrical High-Data-Rate DSL (G .SHDSL) (Cisco 1803) while helping to ensure reliable networking with integrated ISDN S/T BRI backup . The Cisco 1811 and 1812 provide highspeed broadband or Ethernet access through two 10/100BASE-T Fast Ethernet WAN ports and also provide integrated WAN backup through a V .92 analog modem (Cisco 1811) or ISDN S BRI interface (Cisco 1812).

Wireless
Integrated Wireless LAN Capability Cisco 1800 Series of fixed-configuration routers includes models with an integrated wireless access point, providing secure router and secure wireless LAN services in one device, helping businesses reduce total cost of ownership with simplified WLAN deployment and management capabilities . The integrated wireless access point supports IEEE 802 .11a/b/g simultaneously
to provide high-speed wireless capability and flexibility to support 2 .4-GHz and 5-GHz dualband simultaneous operation, making them ideal choices for hotspot deployments and wireless office solutions . Wi-Fi Certified client devices including Cisco Aironet, Wi-Fi Certified and Cisco Compatible client devices are fully supported .The Cisco 1800 Series routers with integrated wireless access points are Wi-Fi certified and
support WPA and WPA2 providing secure mutual authentication and encryption via Cisco IOS Software features to meet the strict demands of today’s businesses . These products also provide support for multiple BSSIDS (8) and multiple wireless VLANs (16 with 8 encrypted) that can be configured to provide additional security, segmentation, and separation of user groups .When using the routers in conjunction with the Cisco Service Selection Gateway (SSG) and Subscriber Edge Services Manager (SESM), managed service providers can incorporate service-based authorization and accounting, and service and subscriber management for customizable, on-demand wireless services such as hotspots . Additional features such as Universal Client mode allow the router to wirelessly connect to an AP (such as an outdoor wireless Mesh network) and local authentication allow users to maintain wireless connectivity to the router in the event that a remote authentication server goes down . Quality of Service (QoS) via Wi-Fi Multimedia (WMM) is also supported.
                                           
       cisco 1800 series (modular)


       
Cisco is redefining best-in-class enterprise and small- to medium-sized business (SMB) routing with a line of Integrated Services Routers that are optimized for the secure, wire-speed delivery of data services. Founded on 20 years of leadership and innovation, Cisco 1800 Series Integrated Services Routers intelligently embed data and security into a single, resilient system for fast, scalable delivery of mission-critical business applications. The Cisco 1800 Series architecture has been specifically designed to meet requirements of SMBs, small enterprise branch offices, and serviceprovider-managed services applications for delivery of concurrent secure data services at wire-speed performance. The integrated, secure systems architecture of 
the Cisco 1800 Series delivers maximum business agility and investment protection.

Benefits and Advantages
Enhanced Architecture The Cisco 1841 Integrated Services Router provides secure data connectivity at up to one T1/E1/xDSL WAN connectivity rates . It provides significant additional value compared to prior generations of Cisco 1700 Series routers by offering more than a five-fold performance increase, integrated on board hardware-based encryption enabled by an optional Cisco IOS Software security image, and a dramatic increase in interface card slot performance and density . Support for one internal Advanced Integration Module (AIM) slot is provided for additional hardware-accelerated encryption and 
scalability . The modular architecture on the Cisco 1841 router also supports two high-speed WAN interface card (HWIC) slots which significantly increase data-throughput capability (up to 800 Mbps aggregate) . The Cisco 1841 also offers integrated dual high-speed Ethernet LAN ports to allow LAN segmentation and to help enable connectivity speeds up to 100BASE-T Ethernet technology . Ample default memory (Flash, SDRAM) is provided to support deployment of concurrent services.
Flexibility and Investment Protection
The modular architecture of the Cisco 1841 router offers a wide variety of LAN and WAN options; interface cards and modules are field-upgradable to accommodate future technologies . The Cisco 1841 delivers investment protection with support for more than 30 modules and interface cards, including existing WICs and voice WAN interface cards (VWICs—on the Cisco 1841 router for data support only) as well as Advanced Integration Modules (AIM) . This Integrated Services Router provides 2 slots that are WIC/HWIC/VWIC (data) capable and enables multiple services on an integrate-as-you-grow basis .
Market-leading Integrated Security
A primary component of the Cisco Selfdefending Network, the Cisco 1841 Integrated Services Router ships with the industry’s most comprehensive security services embedded  within the router that can be enabled with a Cisco IOS Security Image . This provides customers with a single, resilient platform to rapidly deploy secure networks and applications .The Cisco 1800 Series was designed with integrated security to provide a tight coupling among security, routing, and other integrated services throughout the network . With a Cisco IOS Software-based VPN, firewall, and intrusion prevention system (IPS), as well as optional enhanced VPN acceleration, and Network.

       Cisco 2800 Series


                                                       
Cisco is redefining best-in-class enterprise and small- to medium-sized business routing with a new line of Integrated Services Routers that are optimized for the secure, wire-speed delivery of concurrent data, voice, and video services. Founded on 20 years of leadership and innovation, Cisco 2800 Series integrated services routers intelligently embed data, security, and voice services into a single, resilient system for fast, scalable delivery of mission-critical business applications. The unique integrated systems architecture of the Cisco 2800 Series delivers maximum business agility and investment protection.

Benefits and Advantages
Enhanced Architecture The Cisco 2800 Series features support for new interface cards . Depending on the router model, this can include up to four high-speed WAN interface card (HWIC) slots, up to one Enhanced 
Network Module (NME) slot, and up to one Extension Voice Module (EVM) slot . Embedded 
on the motherboard of the router is a hardwarebased VPN accelerator, up to three PVDM (Packet Voice DSP Module) slots for integrated digital signal processor (DSP) modules, two advanced integration module (AIM) slots, up to two USB 1 .1 ports, and two Fast Ethernet 10/100 ports (Cisco 2801, 2811) or two Gigabit Ethernet 10/100/1000 ports (Cisco 2821, 2851) .Additionally, optional support for inline power 
(including 802 .3af) is offered .
Investment Protection and Versatility
The Cisco 2800 Series provides significant additional value compared to prior generations of Cisco routers such as the Cisco 1700 and 2600 Series routers at similar price points by offering up to a five-fold performance improvement, up to a ten-fold increase in security and voice performance, new embedded service options, and dramatically increased slot performance and density while maintaining support for most of the more than 90 existing modules that are available today for the Cisco 1700 Series and Cisco 2600 Series .
Integrated Switching
With support of up to 64 ports of integrated switching with inline power, the Cisco 2800 Series offers an excellent platform for combining two of the most common components of any network infrastructure . Additionally, with support for the 802 .3af (Power over Ethernet [PoE]) standard, the 4- and 9-port Cisco EtherSwitch HWICs and the 16-, 24-, and 48-port EtherSwitch Service Modules can provide power to any 
802 .3af-compliant devices, greatly expanding the number and types of devices that can be powered from the router’s integrated switch ports .An optional upgrade to the internal power supply provides power to the integrated switch ports .
Integrated Services
With the optional integration of numerous services modules, the Cisco 2800 Series offers the ability to easily integrate the functions of standalone network appliances and components into the Cisco 2800 Series chassis itself . Many of these modules, such as the Cisco Network Analysis Module, Cisco Unity™ Express Voicemail Module, Cisco Intrusion Prevention Module, and Cisco Content Engine Module, have embedded processors and hard drives that allow them to run largely independently of the router while allowing management from a single management interface ans flexible greatly.

   Cisco 3800 Series

                   Based on 20 years of innovation, Cisco 3800 Integrated Services Routers extend 
Cisco’ leadership in multiservice routing by providing customers with unparalleled network agility, performance, and intelligence. The Cisco 3800 Series is the flagship platform in a portfolio of next-generation routers that integrate advanced technologies, adaptive services, and secure enterprise communications. 
These new routers offer the performance and reliable packet delivery necessary to deliver mission-critical network capabilities efficiently, including real-time applications such as voice over IP (VoIP), business video, and collaborative communications. Architectural enhancements include embedded security processing, 
significant platform performance and memory improvements, and new high-density interface types. These design achievements complement the Cisco IOS Software features and superior investment protection that this platform inherits from the Cisco 3700 Series. The Cisco 3800 Series, comprised of the Cisco 3825 and Cisco 3845, serves as a catalyst for midsize organizations and enterprise branch offices that want to 
gracefully scale their enterprise edges and take advantage of converged business services, while minimizing the cost and complexity of network upgrades.     

Benefits and Advantages
Enhanced Architecture
The Cisco 3800 Series offers two modular platforms optimized for the secure delivery of concurrent voice, video, and data . The integrated services architecture of the Cisco 3800 Series builds on the highly successful Cisco 3700 Series design, and adds embedded security and voice processing to a highly modular system that is optimized for rapid deployment of intelligent network services and converged communications . The Cisco 3800 Series supports the bandwidth requirements for multiple Fast Ethernet interfaces per slot, timedivision multiplexing (TDM) interconnections, and fully integrated power distribution to modules supporting 802 .3af Power over Ethernet (PoE), while supporting the existing portfolio of modular interfaces .
Integrated Switching
With support for up to 112 ports of integrated switching with inline power, the Cisco 3800 Series offers an excellent platform for combining two of the most common components of any network infrastructure . The Cisco 3800 Series supports the 16-, 24-, and 48-port Cisco EtherSwitch  Service Network Modules which 
adhere to the 802 .3af (PoE) standard . When partnered with the optional internal power supply upgrade, the EtherSwitch Service Network Modules and high-density WAN interface cards (HWICs) power any 802 .3af compliant device through their integrated switch ports .
Investment Protection and Versatility
The Cisco 3800 Series provides significant additional value compared to prior generations of Cisco routers at similar price points by Dynamic Multipoint VPN (DMVPN), Cisco offers the industry’s most robust and adaptable security solution for branch office routers .
IP Telephony
The Cisco 3800 Series allows network managers to provide scalable analog and digital telephony without investing in a one-time solution, giving enterprises greater control of their converged telephony needs . Using voice and fax modules, the Cisco 3800 Series can be deployed for applications ranging from VoIP and Voiceover-Frame Relay (VoFR) transport to robust, centralized solutions using the Cisco Survivable Remote Site Telephony (SRST) solution or distributed call processing using Cisco CallManager Express (CCME) . The architecture is highly scalable with the ability to support up to 168 IP phones with the 3825 router and 240 IP phones with the 3845 router, 24 T1/E1s trunks, 88 foreign-exchange-station (FXS) ports, or 56 
foreign-exchange-office (FXO) ports concurrent with data routing and other services .offering up to three times the performance, new embedded service options, and dramatically increased slot performance and density while maintaining support for most of the more than 90 existing modules that are available today for the Cisco 3700 Series . This helps to ensure continuing investment protection to accommodate network expansion or changes in technology as new services and applications are deployed . By integrating the functions of multiple separate devices into a single, compact unit, Cisco 3800 Series Integrated Services Routers dramatically reduce the cost and complexity of managing remote networks . The Cisco 3800 Series delivers multiple concurrent services at wire-speed performance of up to T3/E3 speeds . The Cisco 3845 features a removable motherboard, fan assembly, and supports highavailability features such as online insertion and removal (OIR) of like network modules, and redundant integrated system and inline power 
supplies .
Integrated Services
With the optional integration of numerous services modules, the Cisco 3800 Series offers the ability to easily integrate the functions of standalone network appliances and components into the Cisco 3800 Series chassis itself . Many of these modules, such as the Cisco Network Analysis Module, Cisco Unity Express™ Voice Mail Module, Cisco Intrusion Prevention Module, and Cisco Content Engine Module, have embedded processors and hard drives that allow them to run largely independently of the router while allowing management from a single management interface . This flexibility greatly expands the potential applications of the Cisco 3800 Series beyond traditional routing, while maintaining the benefits of integration . The Cisco 
3845 Integrated Services Router is optimized for the concurrent delivery of voice, video, and data at T3 wire-rate performance . The architecture provides high-performance embedded security and voice processing for reliable delivery of mission-critical traffic such as VoIP, business video, and collaborative communications .
The Cisco 3845 is engineered to help customers effectively scale deployment of services, offering 
the following hardware features:
• Two built-in autosensing 10/100/1000 Ethernet ports 
• One small form-factor pluggable (SFP) slot gigabit Ethernet
• Two built-in USB ports
• Four network module slots for single-wide or extended network modules, two double-wide or extended double-wide network modules (NME-XD), or two extension voice/fax modules (EVM-HD) 
• Four single-wide or two double-wide HWICs
• Two advanced integration modules (AIMs)
• Four Packet Voice DSP Modules (PVDM) slots for voice processing
• Onboard IP Security (IPsec) acceleration
• 802 .3af-compliant inline power for IP phones or wireless access points The Cisco 3825 is engineered to help customers effectively scale deployment of services, offering the following hardware features:
• Two built-in autosensing 10/100/1000 Ethernet ports
• One SFP slot gigabit Ethernet
• Two built-in USB ports
• Two network module slots for single-wide or extended network modules, one double-wide or extended double-wide network module (NME-XD), or one extension voice/fax module (EVM-HD) 
• Four single-wide or two double-wide HWICs
• Two AIMs
• Four PVDM slots for voice processing
• Onboard IPSec encryption acceleration
• 802 .3af-compliant inline power for IP phones 
or wireless access points 
• External Redundant Power Supply (RPS) for system power and external redundant inline power for IP phones.
Secure Networking 
Integrated on the motherboard of every Cisco 3800 Series router is hardware-based encryption acceleration that offloads the encryption processes to provide greater IPSec throughput with less overhead for the router CPU when compared with software-based solutions .The integration of optional VPN modules (for enhanced performance and tunnel count), content-engine network modules for URL filtering, or intrusion prevention network modules, combined with the rich Cisco IOS Software security feature set that includes firewall, 
Network Access Control (NAC), voice- and videoenabled VPN (V3PN), intrusion prevention.

Cisco Data Center Architecture

The data center is home to the computational power, storage, and applications necessary to support an
enterprise business. The data center infrastructure is central to the IT architecture, from which all content
is sourced or passes through. Proper planning of the data center infrastructure design is critical, and
performance, resiliency, and scalability need to be carefully considered.
Another important aspect of the data center design is flexibility in quickly deploying and supporting new
services. Designing a flexible architecture that has the ability to support new applications in a short time
frame can result in a significant competitive advantage. Such a design requires solid initial planning and
thoughtful consideration in the areas of port density, access layer uplink bandwidth, true server capacity,
and oversubscription, to name just a few.
The data center network design is based on a proven layered approach, which has been tested and
improved over the past several years in some of the largest data center implementations in the world. The
layered approach is the basic foundation of the data center design that seeks to improve scalability,
performance, flexibility, resiliency, and maintenance.

Basic Layered Design




The layers of the data center design are the core, aggregation, and access layers. These layers are
referred to extensively throughout this guide and are briefly described as follows:
• Core layer—Provides the high-speed packet switching backplane for all flows going in and out of
the data center. The core layer provides connectivity to multiple aggregation modules and provides
a resilient Layer 3 routed fabric with no single point of failure. The core layer runs an interior
routing protocol, such as OSPF or EIGRP, and load balances traffic between the campus core and
aggregation layers using Cisco Express Forwarding-based hashing algorithms.
• Aggregation layer modules—Provide important functions, such as service module integration,
Layer 2 domain definitions, spanning tree processing, and default gateway redundancy.
Server-to-server multi-tier traffic flows through the aggregation layer and can use services, such as
firewall and server load balancing, to optimize and secure applications. The smaller icons within the
aggregation layer switch in represent the integrated service modules. These modules
provide services, such as content switching, firewall, SSL offload, intrusion detection, network
analysis, and more.
• Access layer—Where the servers physically attach to the network. The server components consist
of 1RU servers, blade servers with integral switches, blade servers with pass-through cabling,
clustered servers, and mainframes with OSA adapters. The access layer network infrastructure consists
of modular switches, fixed configuration 1 or 2RU switches, and integral blade server switches. Switches
provide both Layer 2 and Layer 3 topologies, fulfilling the various server broadcast domain or administrative requirements.
This chapter defines the framework on which the recommended data center architecture is based and introduces the primary data center design models: the multi-tier and server cluster models.

Data Center Design Models
The multi-tier model is the most common design in the enterprise. It is based on the web, application,
and database layered design supporting commerce and enterprise business ERP and CRM solutions. This
type of design supports many web service architectures, such as those based on Microsoft .NET or Java
2 Enterprise Edition. These web service application environments are used by ERP and CRM solutions
from Siebel and Oracle, to name a few. The multi-tier model relies on security and application
optimization services to be provided in the network.
The server cluster model has grown out of the university and scientific community to emerge across
enterprise business verticals including financial, manufacturing, and entertainment. The server cluster
model is most commonly associated with high-performance computing (HPC), parallel computing, and
high-throughput computing (HTC) environments, but can also be associated with grid/utility computing.
These designs are typically based on customized, and sometimes proprietary, application architectures
that are built to serve particular business objectives.
“Data Center Multi-Tier Model Design,” provides an overview of the multi-tier model, and “Server Cluster Designs with Ethernet,” provides an overview of the server cluster model.
Later chapters of this guide address the design aspects of these models in greater detail.

Multi-Tier Model
The multi-tier data center model is dominated by HTTP-based applications in a multi-tier approach. The
multi-tier approach includes web, application, and database tiers of servers. Today, most web-based
applications are built as multi-tier applications. The multi-tier model uses software that runs as separate
processes on the same machine using interprocess communication (IPC), or on different machines with
communications over the network. Typically, the following three tiers are used:
• Web- server
• Application
• Database
Multi-tier server farms built with processes running on separate machines can provide improved
resiliency and security. Resiliency is improved because a server can be taken out of service while the
same function is still provided by another server belonging to the same application tier. Security is
improved because an attacker can compromise a web server without gaining access to the application or
database servers. Web and application servers can coexist on a common physical server; the database
typically remains separate.
Resiliency is achieved by load balancing the network traffic between the tiers, and security is achieved
by placing firewalls between the tiers. You can achieve segregation between the tiers by deploying a
separate infrastructure composed of aggregation and access switches, or by using VLANs.


Physical Segregation in a Server Farm with Appliances (A) and Service Modules (B)



 VLANs to segregate the server farms. The left side of the illustration (A) shows the physical topology, and the right side (B) shows the VLAN allocation across the service modules, firewall, load balancer, and switch. The firewall and load balancer, which are VLAN-aware, enforce the VLAN segregation between the server farms. Note that not all of the VLANs require load balancing. For example, the database in the example sends traffic directly to the firewall.


Logical Segregation in a Server Farm with VLANs




Physical segregation improves performance because each tier of servers is connected to dedicated
hardware. The advantage of using logical segregation with VLANs is the reduced complexity of the
server farm. The choice of physical segregation or logical segregation depends on your specific network
performance requirements and traffic patterns.
Business security and performance requirements can influence the security design and mechanisms
used. For example, the use of wire-speed ACLs might be preferred over the use of physical firewalls.
Non-intrusive security devices that provide detection and correlation, such as the Cisco Monitoring,
Analysis, and Response System (MARS) combined with Route Triggered Black Holes (RTBH) and
Cisco Intrusion Protection System (IPS) might meet security requirements. Cisco Guard can also be
deployed as a primary defense against distributed denial of service (DDoS) attacks.

Server Cluster Model
In the modern data center environment, clusters of servers are used for many purposes, including high
availability, load balancing, and increased computational power. This guide focuses on the high
performance form of clusters, which includes many forms. All clusters have the common goal of combining
multiple CPUs to appear as a unified high performance system using special software and high-speed
network interconnects. Server clusters have historically been associated with university research,
scientific laboratories, and military research for unique applications, such as the following:
• Meteorology (weather simulation)
• Seismology (seismic analysis)
• Military research (weapons, warfare

Server clusters are now in the enterprise because the benefits of clustering technology are now being
applied to a broader range of applications. The following applications in the enterprise are driving this
requirement:
• Financial trending analysis—Real-time bond price analysis and historical trending
• Film animation—Rendering of artist multi-gigabyte files
• Manufacturing—Automotive design modeling and aerodynamics
• Search engines—Quick parallel lookup plus content insertion
In the enterprise, developers are increasingly requesting higher bandwidth and lower latency for a
growing number of applications. The time-to-market implications related to these applications can result
in a tremendous competitive advantage. For example, the cluster performance can directly affect getting
a film to market for the holiday season or providing financial management customers with historical
trending information during a market shift.

HPC Cluster Types and Interconnects.
In the high performance computing landscape, various HPC cluster types exist and various interconnect
technologies are used. The top 500 supercomputer list at www.top500.org provides a fairly
comprehensive view of this landscape. The majority of interconnect technologies used today are based
on Fast Ethernet and Gigabit Ethernet, but a growing number of specialty interconnects exist, for
example including Infiniband and Myrinet. Specialty interconnects such as Infiniband have very low
latency and high bandwidth switching characteristics when compared to traditional Ethernet, and
leverage built-in support for Remote Direct Memory Access (RDMA). 10GE NICs have also recently
emerged that introduce TCP/IP offload engines that provide similar performance to Infiniband.
The Cisco SFS line of Infiniband switches and Host Channel Adapters (HCAs) provide high
performance computing solutions that meet the highest demands.
Although high performance clusters (HPCs) come in various types and sizes, the following categorizes
three main types that exist in the enterprise environment:
• HPC type 1—Parallel message passing (also known as tightly coupled)
– Applications run on all compute nodes simultaneously in parallel.
– A master node determines input processing for each compute node.
– Can be a large or small cluster, broken down into hives (for example, 1000 servers over 20 hives)
with IPC communication between compute nodes/hives.
• HPC type 2—Distributed I/O processing (for example, search engines)
– The client request is balanced across master nodes, then sprayed to compute nodes for parallel
processing (typically unicast at present, with a move towards multicast).
– This type obtains the quickest response, applies content insertion (advertising), and sends to the
client.
• HPC Type 3—Parallel file processing (also known as loosely coupled)
– The source data file is divided up and distributed across the compute pool for manipulation in
parallel. Processed components are rejoined after completion and written to storage.
– Middleware controls the job management process (for example, platform linear file system
[LFS]).
The traditional high performance computing cluster that emerged out of the university and military
environments was based on the type 1 cluster. The new enterprise HPC applications are more aligned
with HPC types 2 and 3, supporting the entertainment, financial, and a growing number of other vertical
industries.

Logical View of a Server Cluster



The components of the server cluster are as follows:
• Front end—These interfaces are used for external access to the cluster, which can be accessed by
application servers or users that are submitting jobs or retrieving job results from the cluster. An
example is an artist who is submitting a file for rendering or retrieving an already rendered result.
This is typically an Ethernet IP interface connected into the access layer of the existing server farm
infrastructure.
• Master nodes (also known as head node)—The master nodes are responsible for managing the
compute nodes in the cluster and optimizing the overall compute capacity. Usually, the master node
is the only node that communicates with the outside world. Clustering middleware running on the
master nodes provides the tools for resource management, job scheduling, and node state monitoring
of the computer nodes in the cluster. Master nodes are typically deployed in a redundant fashion and
are usually a higher performing server than the compute nodes.
• Back-end high-speed fabric—This high-speed fabric is the primary medium for master node to
compute node and inter-compute node communications. Typical requirements include low latency
and high bandwidth and can also include jumbo frame and 10 GigE support. Gigabit Ethernet is the
most popular fabric technology in use today for server cluster implementations, but other
technologies show promise, particularly Infiniband.
• Compute nodes—The compute node runs an optimized or full OS kernel and is primarily
responsible for CPU-intense operations such as number crunching, rendering, compiling, or other
file manipulation.
• Storage path—The storage path can use Ethernet or Fibre Channel interfaces. Fibre Channel
interfaces consist of 1/2/4G interfaces and usually connect into a SAN switch such as a Cisco MDS
platform. The back-end high-speed fabric and storage path can also be a common transport medium
when IP over Ethernet is used to access storage. Typically, this is for NFS or iSCSI protocols to a
NAS or SAN gateway, such as the IPS module on a Cisco MDS platform.
• Common file system—The server cluster uses a common parallel file system that allows high
performance access to all compute nodes. The file system types vary by operating system (for
example, PVFS or Lustre).
Physical Overview
Server cluster designs can vary significantly from one to another, but certain items are common, such as
the following:
• Commodity off the Shelf (CotS) server hardware—The majority of server cluster implementations are
based on 1RU Intel- or AMD-based servers with single/dual processors. The spiraling cost of these
high performing 32/64-bit low density servers has contributed to the recent enterprise adoption of
cluster technology.
• GigE or 10 GigE NIC cards—The applications in a server cluster can be bandwidth intensive and
have the capability to burst at a high rate when necessary. The PCI-X or PCI-Express NIC cards
provide a high-speed transfer bus speed and use large amounts of memory. TCP/IP offload and
RDMA technologies are also used to increase performance while reducing CPU utilization.
• Low latency hardware—Usually a primary concern of developers is related to the message-passing
interface delay affecting the overall cluster/application performance. This is not always the case
because some clusters are more focused on high throughput, and latency does not significantly
impact the applications. The Cisco Catalyst 6500 with distributed forwarding and the Catalyst
4948-10G provide consistent latency values necessary for server cluster environments.
• Non-blocking or low-over-subscribed switch fabric—Many HPC applications are
bandwidth-intensive with large quantities of data transfer and interprocess communications between
compute nodes. GE attached server oversubscription ratios of 2.5:1 (500 Mbps) up to 8:1(125 Mbps) are
common in large server cluster designs.
• Mesh/partial mesh connectivity—Server cluster designs usually require a mesh or partial mesh
fabric to permit communication between all nodes in the cluster. This mesh fabric is used to share
state, data, and other information between master-to-compute and compute-to-compute servers in
the cluster.
• Jumbo frame support—Many HPC applications use large frame sizes that exceed the 1500 byte
Ethernet standard. The ability to send large frames (called jumbos) that are up to 9K in size, provides
advantages in the areas of server CPU overhead, transmission overhead, and file transfer time.
                                       
Physical View of a Server Cluster Model Using ECMP


                           


The recommended server cluster design leverages the following technical aspects or features:
• Equal cost multi-path—ECMP support for IP permits a highly effective load distribution of traffic
across multiple uplinks between servers across the access layer. Although Figure 1-6 demonstrates
a four-way ECMP design, this can scale to eight-way by adding additional paths.
• Distributed forwarding—By using distributed forwarding cards on interface modules, the design
takes advantage of improved switching performance and lower latency.
• L3 plus L4 hashing algorithms—Distributed Cisco Express Forwarding-based load balancing
permits ECMP hashing algorithms based on Layer 3 IP source-destination plus Layer 4
source-destination port, allowing a highly granular level of load distribution.
• Scalable server density—The ability to add access layer switches in a modular fashion permits a
cluster to start out small and easily increase as required.
• Scalable fabric bandwidth—ECMP permits additional links to be added between the core and access
layer as required, providing a flexible method of adjusting oversubscription and bandwidth per
server.
In the preceding design, master nodes are distributed across multiple access layer switches to provide
redundancy as well as to distribute load.