Cisco Multicloud Portfolio: overview
Cloud Connect: overview
Cloud Connect: Use cases
Direct Cloud Access
Cloud access through gateway
Cloud Connect: benefits
DIA or gateway site SaaS path performance statistics
Client site SaaS path performance statistics
Role of DNS
Validate prerequisite configuration
Verify the software version
Verify the default route to the Internet in the service VPN
Verify NAT, DNS, and default route configuration for DIA and gateway sites
Configure NAT on VPN 0 interfaces
Configure the DNS server addresses
Configure the default route for local exits
Enable Cloud onRamp for SaaS
(Required) Enable Cloud onRamp for SaaS globally
(Required) Define the SaaS applications
(Optional) Configure the DIA sites
(Optional) Configure the gateway sites
(Optional) Configure the client sites
Monitor Cloud onRamp for SaaS
View SaaS application vQoE scores and path selection
View detailed loss and latency data
CloudExpress Gateway Exits
CloudExpress Local Exits
OMP CloudExpress Routes
Appendix A: Product list
Appendix B: Cisco SD-WAN solution overview
Appendix C: Cloud onRamp example topology
Appendix D: Base vManage device template
Appendix E: Base CLI configuration
Appendix F: NAT, DNS, and VPN 0 default route configurations needed for DIA example
Appendix G: Cloud onRamp for SaaS CLI configurations
Appendix H: Cloud onRamp for SaaS CLI monitoring commands
More and more enterprises have adopted business-critical Software-as-a-Service (SaaS) applications, including Salesforce, Box, and Office 365. Many companies are still back-hauling this traffic from remote sites to a centralized location, such as a data center, for Internet access. This process can be inefficient because any data loss or latency affects application performance and, in turn, the end-user's experience. In addition, many network administrators have limited or no visibility into the performance of their SaaS applications, and when there is impairment to their applications, there may not be an easy way to move access to their applications to an alternate path.
With Cisco® Software-Defined WAN (SD-WAN), you can easily configure access to SaaS applications through a centralized GUI. Access can be either directly to the Internet from a remote site or through gateway locations, such as a regional data center or Carrier-Neutral Facility (CNF). In addition, the Cisco SD-WAN solution continuously measures and monitors the performance of each application along with each path to that application, and chooses the best-performing path for the most optimal user experience. If changes or impairments occur in the network, the solution can adjust dynamically and intelligently move SaaS traffic to the updated optimal path. This feature is called Cloud onRamp for SaaS, formerly called CloudExpress.
This guide presents an overview of the Cloud onRamp for SaaS feature, describes how it works, discusses its prerequisites, details its configuration, and finally shows how an administrator can monitor it. This document assumes that an SD-WAN deployment is already in place and the overlay is operational. It also assumes that you have a basic understanding of the Cisco SD-WAN solution and its concepts.
Please refer to Appendix A for the hardware models and software versions used in this deployment guide. Please refer to Appendix B for an SD-WAN solution overview and a brief description of its components that can aid in understanding the SaaS feature and its deployment if some of the concepts are unfamiliar. Appendix C describes the example topology used to demonstrate the Cloud onRamp SaaS configuration and monitoring.
Cisco Multicloud Portfolio: overview
In a multicloud world, growing complexity is driving a cloud gap between what your customers require and what your people, processes, and tools can support. With the Cisco Multicloud Portfolio, we make it simple: simple to connect, simple to protect, and simple to consume.
The Cisco Multicloud Portfolio is a set of essential products, software, and services supported with simplified ordering and design deployment guides to help you when it comes to multicloud adoption. The Cisco Multicloud Portfolio consists of four component portfolios (Figure 1):
● Cloud Advisory:2020欧洲杯体育官方网址 Helps you design, plan, accelerate, and reduce risk during your multicloud migration.
● Cloud Connect:2020欧洲杯体育官方网址 Securely extends your private networks into public clouds and helps ensure the appropriate application experience.
● Cloud Protect:2020欧洲杯体育官方网址 Protects your multicloud identities, direct-to-cloud connectivity, data, and applications, including Software as a Service (SaaS), and detects infrastructure and application threats on-premises and in public clouds.
● Cloud Consume:2020欧洲杯体育官方网址 Helps you deploy, monitor, and optimize applications in multicloud and container environments.
Figure 1. Multicloud Portfolio: Cloud Advisory, Cloud Connect, Cloud Protect, and Cloud Consume
Cloud Connect: overview
2020欧洲杯体育官方网址Cloud Connect consists of essential products that help securely extend your private networks – including data center, branches, and campuses – to public clouds and to help ensure that the application experience is optimal:
● 2020欧洲杯体育官方网址Cisco Cloud Services Router (CSR) 1000V Series
● Viptela® vEdge with Cisco Umbrella™
For detailed use cases, see the section about Cloud Connect on the portfolio’s solution page at http://kelpqueenpress.com/go/multicloud.
Step 1. From the left navigation menu of vManage GUI, browse Configuration > Devices.
Step 2. Confirm that the targeted vEdge routers are set to vManage mode. If yes, then you have finished.
Step 3. If a device is set to CLI mode, select that row. The row should be highlighted.
Step 4. Select Change Mode > vManage mode. You will then be prompted to attach a template to the device.
Step 5. Click the Template button, and you will be sent to the Configuration > Templates page, where you can attach a device to an existing template, or you can create new device/feature templates, if desired.
Step 2. Choose Administration > Settings. In the CloudExpress row, click Edit.
Step 3. Select the Enabled radio button, and click Save.
Step 4. Validate that CloudExpress is now enabled.
For a complete list of all of our design and deployment guides for the Cisco Multicloud Portfolio, including Cloud Connect, visit http://kelpqueenpress.com/go/clouddesignguides.
About Cisco design and deployment guides
Cisco design and deployment guides consist of systems and/or solutions designed, tested, and documented to facilitate faster, more reliable, and more predictable customer deployments. For more information visit: http://kelpqueenpress.com/go/designzone.
ALL DESIGNS, SPECIFICATIONS, STATEMENTS, INFORMATION, AND RECOMMENDATIONS (COLLECTIVELY, "DESIGNS") IN THIS MANUAL ARE PRESENTED "AS IS," WITH ALL FAULTS. CISCO AND ITS SUPPLIERS DISCLAIM ALL WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE. IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THE DESIGNS, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
THE DESIGNS ARE SUBJECT TO CHANGE WITHOUT NOTICE. USERS ARE SOLELY RESPONSIBLE FOR THEIR APPLICATION OF THE DESIGNS. THE DESIGNS DO NOT CONSTITUTE THE TECHNICAL OR OTHER PROFESSIONAL ADVICE OF CISCO, ITS SUPPLIERS, OR PARTNERS. USERS SHOULD CONSULT THEIR OWN TECHNICAL ADVISORS BEFORE IMPLEMENTING THE DESIGNS. RESULTS MAY VARY DEPENDING ON FACTORS NOT TESTED BY CISCO.
2020欧洲杯体育官方网址CCDE, CCENT, Cisco Eos, Cisco Lumin, Cisco Nexus, Cisco StadiumVision, Cisco TelePresence, Cisco WebEx, the Cisco logo, DCE, and Welcome to the Human Network are trademarks; Changing the Way We Work, Live, Play, and Learn and Cisco Store are service marks; and Access Registrar, Aironet, AsyncOS, Bringing the Meeting To You, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, CCVP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unified Computing System (Cisco UCS), Cisco UCS B-Series Blade Servers, Cisco UCS C-Series Rack Servers, Cisco UCS S-Series Storage Servers, Cisco UCS Manager, Cisco UCS Management Software, Cisco Unified Fabric, Cisco Application Centric Infrastructure, Cisco Nexus 9000 Series, Cisco Nexus 7000 Series. Cisco Prime Data Center Network Manager, Cisco NX-OS Software, Cisco MDS Series, Cisco Unity, Collaboration Without Limitation, EtherFast, EtherSwitch, Event Center, Fast Step, Follow Me Browsing, FormShare, GigaDrive, HomeLink, Internet Quotient, IOS, iPhone, iQuick Study, LightStream, Linksys, MediaTone, MeetingPlace, MeetingPlace Chime Sound, MGX, Networkers, Networking Academy, Network Registrar, PCNow, PIX, PowerPanels, ProConnect, ScriptShare, SenderBase, SMARTnet, Spectrum Expert, StackWise, The Fastest Way to Increase Your Internet Quotient, TransPath, WebEx, and the WebEx logo are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
2020欧洲杯体育官方网址All other trademarks mentioned in this document or website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0809R)
© 2018 Cisco Systems, Inc. All rights reserved.