Network vs application-centric is the key design topic whenever you plan for Cisco’s ACI. However, most of the adopters are not very clear about the use cases. The following questions were asked.
Does ACI automatically capture the application details? also, does it identifies my applications?
Can ACI automate the application connectivity configurations!
What is the additional licensing required for application-centric design?
Obviously, the answer to all the above questions is “NO”. Also, I end up clarifying customers on how ACI can be used for doing the policy for their application. Which definitely is one of the differentiators with other SDN solutions. ACI configurations are policy-oriented and when it comes to the policy constructs. On ACI you can use three different methods.
Network-Centric Approach
Application-centric approaches.
Or a combination of network and application-centric
Application Centric Approach
Cisco ACI application network profile (ANP) policy on the APIC controller represents the application, related tiers, and security requirements. The example below shows how a typical three-tier Whatsapp application would be set up with its EPGs( Endpoint Groups). For example, for Whatsapp ANP, it could have EPGs such as WhatsApp’s WEB servers, APP servers, DB servers, etc, and its provider and consumer contracts.
In short, the approach is called application-centric if the policies are created based on application details such as required port-for communication between the tiers, etc. The idea is to give the network administrator a view of the application, its connectivity & security requirements from the ACI controller.
Furthermore for creating ANP, the key requirement is to have the application visibility and its dependencies. If you have Cisco Tetration, it is one of the solutions which could help you to get visibility and application dependency mapping ( ADM) into each of the flows.
Network-Centric Approach
On the other hand, Network-centric uses the constructs like VLANs and subnets. The network-centric is the preferred approach for legacy migration scenarios. This could ensure that during applications migration unknown traffic types are not blocked. In the Network-centric approach the EPG mapping will be equivalent to the following:
For instance, the above mapping represents that the connectivity of the servers under VLANs mapped to corresponding EPG’s. furthermore, different EPG endpoints traffic can be controlled using contracts. Clearly, doing a network-centric approach is the easiest way to model the policies. of course, here the key requirement is to have the customers VLAN and related connectivity details
Combination of Network & Application Centric
Depends on the use cases, you can also combine the network & application-centric model. Usually, the newly deployed applications could make use of application-centric and the exiting application can be done using network-centric. In addition, it is also possible to migrate from the network to the application-centric model. However, it requires careful planning as the VLAN, subnetting details on the server-side may require modification. Above all, as stated earlier, it requires, ADM to formulate required security policies
Recommendation
If there is an option to use Tetration or any other ADM tool use them to create an application profile on ACI
If the above is not an option – make it as simple as VLAN to EPG mapping
Conclusion
So it is not a question of network vs application-centric. Clearly, “application-centric” is a design approach, which heavily depends on the ADM. Additionally, proper profiling of it may require re-designing of server-side connectivity. However, no additional features or advance licensing is required.
Expert in the field of SDN, cloud computing, virtualization, active-active data center design & migration. Passionate about helping organizations to achieve their digital transformation objectives with strong 15+ years of experience in design, deployment, and managing heterogeneous network solutions across the industry verticals. Major Industry Certifications: Cisco CCIE, CCDP, VMware VCAP-NV_DESIGN, TOGAF, ITIL, NUTANIX NCSE, Google Cloud Architect, Azure FundamentalsMore info please visit my page @ LinkedIn: https://www.linkedin.com/in/contactmm/
While Network Centric mode considers traditional approach of retaining concept of Sub netting and using VLANs and VRFs. In contrast Application Centric approach hides traditional network related terminologies (such as VRFs, VLANs, and subnets).
Net-Centric is a way to manage your data, applications, and infrastructure in the cloud. Net-centric cloud computing can be considered an evolution of Software as a Service (SaaS). It leverages the power of the Internet to provide an environment for data, applications, and infrastructure on demand.
Focusing on the application as the foundation or starting point. In an application-centric system, the program is loaded first, which in turn is used to create or edit a particular data structure (text document, spreadsheet, image, etc.). Contrast with document centric.
The network-centric is the preferred approach for legacy migration scenarios. This could ensure that during applications migration unknown traffic types are not blocked. In the Network-centric approach the EPG mapping will be equivalent to the following: ACI EPG-A mapped to VLAN 10.
A network-centric organization is a network governance pattern which empowers knowledge workers to create and leverage information to increase competitive advantage through the collaboration of small and agile self-directed teams. It is emerging in many progressive 21st century enterprises.
In the application-centric framework, data originates from an application silo and trickles its way down the value chain with little context. To extract value from this data is a painful or expensive process. Combining this data with other data is an almost impossible task.
Network-centric warfare allows our forces to develop speed of command. Network-centric warfare enables forces to organize from the bottom up—or to self-synchronize—to meet the commander's intent.
Amazon is one of the best data-driven web application examples out there. It utilizes data to provide suitable product recommendations based on previous searches and buyer interests. They estimate what their potential customers will buy and when.
Cisco ACI (Application Centric Infrastructure) is a software-defined networking solution, designed to help organizations manage complex environments by delivering network automation—increasing operational efficiencies.
App-centric refers to a view that provides visibility into an application's need in terms of resource requirements. It can be for example memory, CPU or bandwidth. This view is allows to capture the metrics that help ensure applications have the optimal resource level to run seamlessly.
Application-centric. Docker is optimized for the deployment of applications, as opposed to machines. This is reflected in its API, user interface, design philosophy and documentation.
Cisco Application Centric Infrastructure (ACI) is a software-defined networking (SDN) solution designed for data centers. Cisco ACI allows network infrastructure to be defined based upon network policies – simplifying, optimizing, and accelerating the application deployment lifecycle.
ACI consists of three key components: the Application Policy Infrastructure Controller (APIC), the leaf switches, and the spine switches. The APIC is a centralized controller that manages all aspects of the ACI fabric.
ACI improves application performance by providing a network infrastructure that is optimized for application delivery. The platform uses a policy-based approach to ensure that applications receive the necessary resources, such as bandwidth and quality of service (QoS), to perform at their best.
App-centric refers to a view that provides visibility into an application's need in terms of resource requirements. It can be for example memory, CPU or bandwidth. This view is allows to capture the metrics that help ensure applications have the optimal resource level to run seamlessly.
Amazon is one of the best data-driven web application examples out there. It utilizes data to provide suitable product recommendations based on previous searches and buyer interests. They estimate what their potential customers will buy and when.
Enterprise networking has shifted from focusing on infrastructure to concentrating on the delivery of the applications that help users do their jobs. Uncover how networking professionals view applications and how their jobs have changed as a result of a network-centric view.
Address: 787 Elvis Divide, Port Brice, OH 24507-6802
Phone: +9779049645255
Job: Senior Healthcare Specialist
Hobby: Cycling, Model building, Kitesurfing, Origami, Lapidary, Dance, Basketball
Introduction: My name is Sen. Emmett Berge, I am a funny, vast, charming, courageous, enthusiastic, jolly, famous person who loves writing and wants to share my knowledge and understanding with you.
We notice you're using an ad blocker
Without advertising income, we can't keep making this site awesome for you.