Arista Any Cloud Solution

Arista Cloud Builders Beijing China 2018

Confidential. Copyright © Arista 2017. All rights reserved.

 Session Agenda

• Motivation
• Technical Overview
• Any Cloud Design
• Demo

2 Confidential. Copyright © Arista 2017. All rights reserved.

 Motivation

3 Confidential. Copyright © Arista 2017. All rights reserved.

 Closed Silos Preventing a Unified Solution?
Private Cloud Public Cloud Branch Datacenter

● On-premise and/or ● Elastic demand-based ● MPLS / IPSEC driven ● Open leaf & spine
hosted models service models VPN architectures cloud networking
● Hypervisor centric ● Extremely agile ● High vendor lock-in ● Siloes breaking
down

● Hard to integrate ● Provider centric – hard ● Too many competing ● Gradually dying off
across hypervisor to tie to on-premise and vendor proprietary remaining legacy
vendor platforms DC architectures niches (i.e., SD-WAN) hold-outs (e.g., ACI)

Disparate solutions at all of the Places in the Cloud (PICs)

4 Confidential. Copyright © Arista 2017. All rights reserved.
 CIOs are Looking to the Cloud
The adoption of
• Optimize costs Avg. 2%
cloud workloads
100%
/
est. work year is increasing
load mig

• Improve efficiency
on-prem ration fr
ise to clo om
ud

% of software on premise
80%

~3
• Innovate faster mi % / y
gr
ati ear
on

• Balance legacy 50%

• Scale capacity
• Improve service availability
0%

1999 2006 2009 2010 2011 2017 2025

Source: Credit Suisse

Cloud infrastructure is fundamentally better

5 Confidential. Copyright © Arista 2017. All rights reserved.
 Enterprise Multi-Cloud Strategy

Network Considerations:
• Network architecture for growth
• Expertise in cloud platforms
• Networking policies across clouds
• Automation across clouds
• Visibility across clouds
• Compliance across clouds
• Etc…

However, IT remains challenged with multi-cloud integration

6 Confidential. Copyright © Arista 2017. All rights reserved.
 Playing out the Multi-Cloud Reality
‘Shadow IT’ Origins Arista Universal Cloud Network approach

Public Cloud 1 Public Cloud 2 Public Cloud 3 Public Cloud 1 Public Cloud 2 Public Cloud 3

Network instances
Uniform networking
grow ad-hoc and
operate in isolation across clouds
Enterprise DC Private Cloud

• Limited compliance impacts security • Enterprise IT compliance reduces risk

• Inconsistent operational models • Common operations saves OpEx
• Disparate management and visibility • Improved service delivery
• No network architecture considerations • Proven network architecture scales over time

7 Confidential. Copyright © Arista 2017. All rights reserved.

 Arista’s Approach: The 5 A’s

Available Any Any Cloud

Automation Analytics
Architecture Work-X API

The Universal Cloud Network: Across Public, Private, & Hybrid Clouds
8 Confidential. Copyright © Arista 2017. All rights reserved.
 Arista Any Cloud Platform

9 Confidential. Copyright © Arista 2017. All rights reserved.

 Introducing Arista Any Cloud Platform

Arista EOS CloudVision

Universal Cloud Network Architecture

Private Public Cloud Enterprise Any

Clouds Clouds Exchanges Datacenters Place-In-the-Cloud

Any Cloud, Any Workload, Any Location

10 Confidential. Copyright © Arista 2017. All rights reserved.

 Cloud-Grade Routing
Arista vEOS Router:
• Proven Routing

• Secure Tunneling

• High Availability

• Traffic Engineering

• APIs and Programmability

• Multi-hypervisor and cloud-native packages

Hypervisors Public Clouds

Single EOS image across all use-cases

11 Confidential. Copyright © Arista 2017. All rights reserved.
 CloudVision for the Hybrid Cloud
• Zero Touch Provisioning:
Enterprise
DC1 Quickly spin up routing services
Azure
West
• Automated Change Management:
Amazon
East Streamlined NetOps across clouds
Amazon
West
• State Streaming: Real-time
telemetry across any EOS use-case
Azure
Enterprise
DC2
East • Analytics Engine: for historic event
correlation and anomaly detection
Equinix
Private Cloud • Visualization Apps: common
Cloud Exchange
dashboard for advanced telemetry
Any Site

12 Confidential. Copyright © Arista 2017. All rights reserved.

 #1 Consistency
1 N
AZ1 AZ2 AZ1 AZ2

Arista EOS
Internet

Single EOS Binary

Packaged for
Any Cloud

Transit Internet
Industry-Standard
AZ1 AZ2 AZ1 AZ2
CLI and SNMP

Programmable with
identical APIs

Every Place in the

Cloud, Any Cloud
Data Center

13 Confidential. Copyright © Arista 2017. All rights reserved.

 #2 Dynamic Routing with Scale
VPCs
What is Cloud
Native Networking?
Scale:
Arista EOS
Network Interfaces Optimized for Internet- 600k IP Routes
facing
applications
8 VRFs Standard BGP
16 NICs
Subnets Static configuration of Designed for Scale
route tables in GUI, 200 Tunnels
not good at scale Reduces Complexity
128 VPN tunnels

No Transitive Routing, Standard IPsec/GRE

Route Tables 100k NAT
all full-mesh peering connections overlay on cloud-native
expands complexity networking
Up to 10 Gbps
Limited Routes per VPC Scalable, Consistent
Virtual Machines limits designs and Predictable
Everywhere
Scale 6 VPCs → 20 VPCs
or up to 100s of VPCs? NO

14 Confidential. Copyright © Arista 2017. All rights reserved.

 Challenges with Cloud Provider Networking options
• Inability to create a leaf/spine network for inter VPC routing
• Manual configuration of route tables, network interfaces, ACLs, etc
• Complexity increases exponentially with increasing number of VPCs

Cloud Native Option Arista Solution

• Easy to Manage and Configure

• Manageability nightmare • Scalable
• Very Expensive • Much less TCO
• Centralized Internet Gateways Internet Gateway
• Not Scalable
• Every VPC needs a Gateway VPC peering

15 Confidential. Copyright © Arista 2017. All rights reserved.

 #3 Transitive Routing
1 N
R1 R2 R1 R2

Internet
Arista EOS

Standard BGP
Designed for Scale

Reduces Complexity Transit Internet

R1 R2 R1 R2

Standard IPsec/GRE
Spine-Leaf in the Cloud
overlay on cloud-native
networking
Scalable, Consistent
and Predictable
Everywhere
Data Center Spine-Leaf Designs

16 Confidential. Copyright © Arista 2017. All rights reserved.

 Why vEOS for Transit routing?

• The native AWS/Azure virtual router does NOT support transitive routing
• Transit VPC/Hub can only be done via a 3rd party router such as vEOS
• Manage differences in networking stacks between providers (i.e. no GRE in Azure)
• Apply ACLs at edge with policy in CloudVision to reduce cost and improve security

17 Confidential. Copyright © Arista 2017. All rights reserved.

 #4 Visibility and Automation Across Any Cloud

Any CloudVision Analytics Platform and Automation

R1 R2 Cloud

Complete State Streaming Architecture

18 Confidential. Copyright © Arista 2017. All rights reserved.

 Multi-Cloud Visibility with Cloud Tracer
NEW

vEOS Router in AWS East

Cloud Tracer
Integrated with vEOS Router in AWS West
CloudVision Enterprise DC
Telemetry

Arista Router at
Equinix Cloud vEOS Router in Azure West
Exchange

End to End Visibility across Clouds

19 Confidential. Copyright © Arista 2017. All rights reserved.
 How Customers are using Arista’s Hybrid Cloud Solution
Extend DC to Public Cloud Interconnecting VPCs Interconnecting Regions
With Consistent Operational Model With Rich Routing Features With Automated Tunnel Management

Manage Private and Telemetry and Track Public/Private Cloud

Public Cloud Analytics Connectivity
With Single CloudVision Platform With state streaming & event correlation With Cloud Tracer

20 Confidential. Copyright © Arista 2017. All rights reserved.

 Hybrid Cloud Competitive Landscape
Arista Cisco Juniper

Single code base

Consistent workflow
Orchestration

Consistent Visibility
and Telemetry

Consistent APIs,
Programmability

Arista has the ONLY consistent platform offering

21 Confidential. Copyright © Arista 2017. All rights reserved.
 Data Sheet (Phase 1)
Layer 3 Features Advanced Monitoring and Provisioning
• Routing Protocols: OSPF, OSPFv3, BGP, MP-BGP, IS-IS, and RIPv2 • Zero Touch Provisioning (ZTP)
• Equal Cost Multipath Routing (ECMP) • Port Mirroring
• VRRP • Enhanced Remote Port Mirroring
• Virtual ARP (VARP) • SPAN/TAP M:N Aggregation
• Policy Based Routing (PBR) • L3/4 Filtering
• Route Maps • Advanced Event Management suite (AEM)
• Network Address Translation (NAT) • CLI Scheduler
• MPLS • Event Manager
• Generic Routing Encapsulation (GRE) • Event Monitor
• Bidirectional Forwarding Detection (BFD) • Linux tools
• Integrated packet capture/analysis with tcpdump
• RFC 3176 sFlow

Security Features Extensibility

• Linux Tools
• IPSec VPNs
• Bash shell access and scripting
• Ingress/Egress ACLs using L2, L3, L4 fields
• RPM support
• ACL Logging and Counters
• Custom kernel modules
• PDP
• Programmatic access to system state
• TACACS+
• Python
• RADIUS
• C++
• Stateful and Zone based firewall
• Go

https://www.arista.com/assets/data/pdf/Datasheets/vEOS_Router_Datasheet.pdf
22 Confidential. Copyright © Arista 2017. All rights reserved.
Arista Any Cloud
Design

Confidential. Copyright © Arista 2017. All rights reserved.

 1. Spin workloads in public cloud and connect to
private cloud over Internet using IPSEC VPN
AWS Azure
1 1
AZ1 AZ2 R1 R2

Internet

Data Center
Data Center

24 Confidential. Copyright © Arista 2017. All rights reserved.

 2. Multiple applications to talk to each other in same cloud
AWS
1 N
AZ1 AZ2 AZ1 AZ2

Internet

Transit
VPC AZ1 AZ2

Data Center

25 Confidential. Copyright © Arista 2017. All rights reserved.

 3) Extend Routes, VRFs & Network topology for seamless connectivity
over dedicated links for workload mobility
AWS Azure
1 N 1 N
AZ1 AZ2 AZ1 AZ2 R1 R2 R1 R2

Internet

Transit Internet Internet Transit

VPC AZ1 AZ2 AZ1 AZ2 VPC AVN R1 R2 R1 R2 AVN

Dedicated circuits, Dedicated circuits,

routing via BGP, VRF routing via BGP, VRF
extension, NAT, extension, NAT,
IPSEC, GRE IPSEC, GRE
connectivity connectivity
Data Center

26 Confidential. Copyright © Arista 2017. All rights reserved.

 4) Same Provisioning, Visibility, Automation,
Integration with ANY CLOUD

27 Confidential. Copyright © Arista 2017. All rights reserved.

 Arista UCN Any Cloud Solution

28 Confidential. Copyright © Arista 2017. All rights reserved.

 Routing Design

29 Confidential. Copyright © Arista 2017. All rights reserved.

 vEOS Demo

Confidential. Copyright © AristaCopyright

Confidential. 2017. All©rights
Aristareserved.
2017. All rights reserved.
31 Confidential. Copyright © Arista 2017. All rights reserved.
 Questions?

32 Confidential. Copyright © Arista 2017. All rights reserved.

 Thank You

www.arista.com
33 Confidential. Copyright © Arista 2017. All rights reserved.
34 Confidential. Copyright © Arista 2017. All rights reserved.