Guest

Cisco Cloud Services Router 1000V Series

Cisco Cloud Services Router 1000V 3.11 Series Data Sheet

  • Viewing Options

  • PDF (546.3 KB)
  • Feedback

Cisco IOS XE Software Release 3.11

The Cisco® Cloud Services Router 1000V (CSR 1000V) is a single-tenant router in virtual form-factor that delivers comprehensive WAN gateway functions to multitenant provider-hosted clouds. Using familiar, industry-leading Cisco IOS® Software networking capabilities, the CSR 1000V enables enterprises to extend their WANs transparently into external provider-hosted clouds and cloud providers to offer their tenants enterprise-class networking services.

Businesses, small and large, are increasingly virtualizing their data center infrastructures and applications, to save costs and become more agile. Many enterprises have started deploying IT applications in virtualized data centers that are built and managed by third-party service providers. These external data centers, known as provider-hosted clouds, allow enterprises to gain infrastructure and resources on demand and become even more operationally efficient.

However, the shared-infrastructure, shared-resource cloud environment poses networking and security problems to enterprises. First, an enterprise does not have ownership of its cloud connectivity, so cannot extend its network configuration into the cloud. Next, it does not enjoy the same levels of privacy and security for its cloud deployment as it does on its premises. Third, it cannot directly connect its distributed sites to its cloud applications - instead having to backhaul all network traffic through its data center - because it lacks a network-aware endpoint in the cloud. The cloud also presents networking challenges to cloud providers. The primary concern is the scale limitations of the current network switching architecture. The cloud provider also lacks all the components of an end-to-end managed connectivity service offering to its customers, including quality of service (QoS), application visibility, and service-level agreements (SLAs).

The Cisco CSR 1000V addresses these cloud-based networking and security constraints. Built on the same proven Cisco IOS Software platform that is inside the Cisco Integrated Services Router (ISR) and Aggregation Services Router (ASR) product families, it offers a rich set of features, including routing, VPN, firewall, Network Address Translation (NAT), QoS, application visibility, failover, and WAN optimization. These functions empower enterprises and cloud providers to build highly secure, optimized, scalable, and consistent hybrid networks.

Product Overview and Benefits

The Cisco CSR 1000V is a software router that an enterprise or a cloud provider can deploy as a virtual machine (VM) in a provider-hosted cloud. It can run on Cisco Unified Computing System (Cisco UCS®) servers; on servers from leading vendors that support VMware ESXi, Citrix XenServer, or Red Hat KVM virtualization; or on the Amazon EC2 cloud. It contains Cisco IOS Software networking and security features.

A typical cloud provides IT infrastructure and resources to multiple customers or tenants. The Cisco CSR 1000V serves primarily as a router per tenant (Figure 1). That is, each tenant gets its own routing instance, hence its own VPN connections, firewall policies, QoS rules, access control, and so on.

Figure 1.      Cisco CSR 1000V - Positioned as a Single-Tenant WAN Gateway in a Multitenant Cloud Internet

Following is how you could use the Cisco CSR 1000V in a cloud:

   Secure VPN gateway: The CSR 1000V offers route-based IP Security (IPsec) VPNs (Dynamic Multipoint VPN [DMVPN], EasyVPN, and FlexVPN), and in the future, Secure Sockets Layer (SSL) VPN, along with the Cisco IOS Zone-Based Firewall and access control, enabling an enterprise to connect distributed sites directly to its cloud deployment (Table 1).

Table 1.       Cisco CSR 1000V as a Secure VPN Gateway

Customer Problem

Features

Benefits of CSR 1000V

  An enterprise needs to connect its premises securely with its off-premises cloud: A typical large enterprise has a central headquarters, a few regional hubs, two or more data centers, and hundreds to thousands of branch-office sites. The network is either hub-and-spoke or fully meshed. By extending the data center to the cloud, the enterprise wants the cloud to act as another node in its network.
  IPsec
  DMVPN
  EasyVPN
  FlexVPN
  Border Gateway Protocol (BGP)
  Open Shortest Path First (OSPF)
  Enhanced IGRP (EIGRP)
  Cisco IOS Zone-Based Firewall
  Access control list (ACL)
  Authentication, authorization, and accounting (AAA)
  NAT
  Dynamic Host Configuration Protocol (DHCP)
  Ownership: An enterprise can deploy a CSR 1000V in the cloud, access its command-line interface (CLI), and manage it using the Cisco Prime Infrastructure.
  Transparent connectivity and enterprise-class scalability: With its range of VPN and routing features, the CSR 1000V can fit into any enterprise network topology. An enterprise can directly and dynamically connect its distributed sites to its cloud deployment - avoiding the latency caused by the typical backhaul through the data center while overcoming the management complexity of point-to-point IPsec VPNs.
  Consistent WAN architecture: The Cisco IOS Software-based CSR 1000V complements the widely deployed Cisco ISRs and ASRs. Enterprises can now deploy a Cisco endpoint at every node in their network, allowing for consistent network configuration and security policies across their distributed hybrid networks.

   MPLS WAN endpoint: The CSR 1000V can serve as an MPLS router that enables a service provider to offer end-to-end managed connectivity (customer site-to-customer cloud deployment) with performance guarantees. Also, by extending the Multiprotocol Label Switching (MPLS) WAN deeper into the cloud network, the service provider can increase network scale - more tenants and more networks per tenant (Table 2).

Table 2.       Cisco CSR 1000V as an MPLS WAN Endpoint

Customer Problem

Features

Benefits of CSR 1000V

  A service provider needs to extend MPLS connectivity to its customers’ cloud segments: Service providers that offer managed connectivity service to businesses want to help their customers connect with off-premises clouds. In order to provide end-to-end connectivity, the service providers want to extend their private MPLS WANs into the clouds right up to the edge of the customers’ segments within the clouds.
  MPLS VPN
  Virtual Route Forwarding (VRF)
  BGP
  Generic routing encapsulation (GRE)
  QoS
  IP SLA
  MPLS extension within a cloud: A service provider can manage the cloud connectivity of its customers and offer performance and reliability guarantees with the help of a dedicated CSR 1000V (serving as a customer edge [CE] router) per customer.
  Intracloud scale: A typical cloud network is highly switched - a router hands off incoming traffic to a group of switches, which assign the traffic to customer VLANs. In this network architecture, the cloud provider cannot scale beyond 4096 VLANs per router, limiting the number of customers it can support. The CSR 1000V, serving as a customer edge or provider edge (PE) extension, can help overcome these scale limitations by creating routing overlays within the cloud, minimizing the providers’ dependence on VLANs.

   Layer 2 (virtual-machine migration) or Layer 3 Extension (IP Mobility) from premises to cloud: The CSR 1000V offers features such as NAT and Cisco Locator/ID Separation Protocol (LISP) that can enable an enterprise to maintain addressing consistency across premises and cloud as it moves applications back and forth or bursts compute capacity into the cloud. The Cisco CSR 1000V Overlay Transport Virtualization (OTV) and Virtual Private LAN Service (VPLS) features enable an enterprise to extend VLAN segments from its data center into the cloud for server backup, disaster recovery, and compute scale (Table 3).

Table 3.       Cisco CSR 1000V as a Layer 2 or Layer 3 Extension

Customer Problem

Features

Benefits of CSR 1000V

  An enterprise needs to maintain IP addressing consistency when moving an application from its data center into an off-premises cloud: An enterprise does not want to reconfigure its application when it moves the application back and forth between its data center and external cloud. Change in the address of the application affects connectivity with the user accesing the application.
  NAT
  LISP
  IP Mobility: The cloud-based CSR 1000V can serve as a LISP router, building a tunnel with a LISP-enabled router in the enterprise’s data center that enables an application to be transported across the tunnel with a fixed identifier.
  An enterprise needs to replicate its virtual machines (for e.g. application servers, web servers, etc.) in an off-premises cloud: An enterprise wants to extend VLAN segments from its data center into an external cloud in order to migrate or back up virtual machines.
  OTV
  Virtual-machine migration: The cloud-based CSR 1000V can serve as an OTV router, building a bridge with an OTV-enabled router in the enterprise’s data center that enables a VLAN to be extended to the cloud.

   Control point for networking services: The CSR 1000V can redirect traffic to Cisco Virtual Wide Area Application Services (vWAAS) appliances deployed in the cloud. The Application Visibility and Control (AVC) feature of the CSR 1000V offers end-to-end application visibility, performance monitoring, and control, allowing service providers to pinpoint application performance problems and offer performance SLAs that are easily tracked (Table 4).

Table 4.       CSR 1000V as a Traffic Control Point

Customer Problem

Features

Benefits of CSR 1000V

  A cloud provider needs to offer enterprise-class networking services: The cloud provider wants to offer its customers networking services that ensure secure access and optimized, uninterrupted delivery of applications.
  AppNav (redirection)
  Zone-Based Firewall
  NAT
  DHCP
  Hot Standby Router Protocol (HSRP)
  AVC
  Rich set of networking services: The cloud provider can take full advantage of the Cisco IOS Software security, application visibility and performance monitoring, and high-availability features to provide each tenant with a comprehensive networking experience.

The Cisco IOS XE Software Advantage

The Cisco CSR 1000V contains the same operating system, Cisco IOS XE Software, which runs inside the Cisco ASR 1000 product line. Providing control- and data-plane separation, multicore forwarding, and a modular architecture that allows for smooth insertion of networking features, Cisco IOS XE Software is well-suited for dynamic cloud environments. The software is based on the stable, robust, and feature-rich Cisco IOS Software that has powered Cisco ISRs and other hardware routers in demanding enterprise, service provider, and government networks for more than two decades.

The key benefits of Cisco IOS XE Software follow:

   Proven functions: Industry-leading Cisco IOS Software networking and security features

   Operational efficiency: Rapid integration into any Cisco IOS Software environment (branch office, WAN, data center, and cloud)

   Consistent user experience: Same Cisco IOS CLI and management tools across all Cisco IOS Software platforms - Cisco ISR, Cisco ASR, and Cisco CSR 1000V

Product Specifications

Table 5 lists the features the Cisco CSR 1000V offers in Cisco IOS XE Software Release 3.11.

Table 5.       Cisco CSR 1000V Features

Features

Description

Cisco IOS XE Software version

  Cisco IOS XE Software Release 3.11 (CSR Edition with selected Cisco IOS XE Software features)
  The software is available in ISO, BIN, and OVA formats.

Hypervisors supported

  VMware ESXi 5.1
  Citrix XenServer 6.1
  Red Hat KVM (Red Hat Enterprise Virtualization 3.1 and Red Hat Enterprise Linux 6.3)
  Amazon Machine Instance

Virtual-machine specifications

The CSR 1000V can run on Cisco UCS servers, servers from leading vendors that support VMware ESXi, Citrix XenServer or Red Hat KVM, or the Amazon EC2 cloud.

The server must support at least the following:

  Intel Nehalem or AMD Barcelona CPU with clock frequency 2.0 GHz
  Gigabit Ethernet interfaces

The CSR 1000V requires the following from the virtualized server hardware:

  CPU: 1 to 4 virtual CPUs (depending on the throughput and feature set)
  Memory: 2.5 to 4 GB (depending on the throughput and feature set)
  Disk space: 8 GB
  Network interfaces: Two or more virtual network interface cards (vNICs), up to maximum allowed by hypervisor

Cisco IOS XE Software networking

  Routing: BGP, OSPF, EIGRP, Policy-Based Routing, IPv6, VRF-Lite, IP Multicast, LISP, and GRE
  MPLS: MPLS VPN, VRF, and Bidirectional Forwarding Detection (BFD)
  Addressing: DHCP, Domain Name System (DNS), NAT, 802.1Q VLAN, Ethernet Virtual Connections (EVC), and Virtual Extensible LAN (VXLAN)
  High availability: HSRP, Virtual Router Redundancy Protocol (VRRP), and Gateway Load Balancing Protocol (GLBP)
  Traffic redirection: AppNav (to Cisco WAAS) and Web Cache Control Protocol (WCCP)
  Application visibility, performance monitoring, and control: QoS and AVC
  Hybrid cloud connectivity: OTV, VPLS, and Ethernet over MPLS (EoMPLS)

Cisco IOS XE Software security

  VPN: IPsec VPN, DMVPN, EasyVPN, and FlexVPN
  Firewall: Zone-Based Firewall
  Access control: ACL, AAA, RADIUS, and TACACS+

Management

  Virtual-machine creation and deployment: VMware vCenter and VMware vCloud Director
  Provisioning and management: Cisco IOS XE CLI, Secure Shell (SSH) Protocol, Telnet, Cisco Prime Infrastructure, Cisco Prime Network Services Controller, and OpenStack Configdrive
  Monitoring and troubleshooting: Simple Network Management Protocol (SNMP), syslog, NetFlow, IP SLA, and Embedded Event Manager (EEM)
  RESTful application programming interfaces (APIs): License Install, Interfaces, Routing, IPsec VPN, Firewall, ACL, NAT, Configuration Import/Export, Reports (CPU Utilization, Interface Stats, Routing Table, VPN and Firewall Sessions, etc.)

Ordering and Support

The Cisco CSR 1000V is licensed based on throughput and feature set and can be purchased for a term of 1 or 3 years, or perpetual.

The Cisco IOS XE Software Release 3.11 of the CSR 1000V offers six throughput options: 10 Mbps, 50 Mbps, 100 Mbps, 250 Mbps, 500 Mbps, and 1 Gbps. Upon activation of a particular option, the CSR 1000V limits its aggregate bidirectional throughput to that option.

You can purchase both term and perpetual licenses (see Table 8) and use them with the Cisco CSR 1000V when deployed as a bring-your-own-license (BYOL) instance on the Amazon EC2 cloud. Hourly billing on the Amazon EC2 cloud will be available in future releases.

The Cisco CSR 1000V comes in three technology packages or feature sets (Table 6).

Table 6.       Cisco CSR 1000V Packaging

Features

Description

Standard

  Routing: Routing Information Protocol (RIP), BGP, EIGRP, OSPF, Intermediate System-to-Intermediate System (IS-IS), GRE, IPv6, and VRF-Lite
  Addressing: DHCP, DNS, NAT, 802.1Q VLAN, and EVC
  Basic security: ACL, AAA, RADIUS, and TACACS+
  High availability: HSRP, VRRP, and GLBP
  Management: SSH, Telnet, SNMP, syslog, NetFlow, and EEM

Advanced

  Standard features
  Advanced security: IPsec, route-based VPNs (DMVPN, EasyVPN, and FlexVPN), and Zone-Based Firewall

Premium

  Advanced features
  MPLS: MPLS VPN, VRF, and BFD
  Application experience: AppNav, WCCP, AVC, and IP SLA
  IP Mobility: LISP, OTV, VPLS, EoMPLS, and VXLAN

Table 7 specifies the server resource requirements per Cisco CSR 1000V license.

Table 7.       Server Resource Requirements per CSR 1000V License

Throughput

Technology Package

 

Standard

Advanced

Premium

10 Mbps

1 vCPU, 2.5-GB RAM

1 vCPU, 2.5-GB RAM

1 vCPU, 2.5-GB RAM

50 Mbps

1 vCPU, 2.5-GB RAM

1 vCPU, 2.5-GB RAM

1 vCPU, 2.5-GB RAM

100 Mbps

1 vCPU, 2.5-GB RAM

1 vCPU, 2.5-GB RAM

1 vCPU, 2.5-GB RAM

250 Mbps

1 vCPU, 2.5-GB RAM

1 vCPU, 2.5-GB RAM

1 vCPU, 2.5-GB RAM

500 Mbps

4 vCPU*, 4-GB RAM*

4 vCPU*, 4-GB RAM*

4 vCPU*, 4- and 8-GB RAM* **

1 Gbps

4 vCPU*, 4-GB RAM*

 

 

*Subject to change in future releases
**8-GB licenses require 8 GB of RAM

Table 8 specifies the Cisco CSR 1000V licenses compatible with the Amazon EC2 cloud, for Cisco IOS XE Software Release 3.11.

Table 8.       Supported CSR 1000V Amazon EC2 Licenses

Throughput

Technology Package

 

Standard

Advanced

Premium

10 Mbps

Supported

Supported

Supported

50 Mbps

Supported

Supported

Supported

Additional throughput levels available in future releases

Table 9 contains the ordering information for the Cisco IOS XE Software Release 3.11 for the Cisco CSR 1000V.

Table 9.       CSR 1000V Ordering Information

Product ID

Description

L-CSR-10M-STD-1Y=

CSR 1000V e-PAK 1-year subscription 10Mbps Standard Package

L-CSR-10M-STD-3Y=

CSR 1000V e-PAK 3-year subscription 10Mbps Standard Package

L-CSR-10M-STD=

CSR 1000V e-PAK 10 Mbps Standard Package

L-CSR-10M-ADV-1Y=

CSR 1000V e-PAK 1-year subscription 10Mbps Advanced Package

L-CSR-10M-ADV-3Y=

CSR 1000V e-PAK 3-year subscription 10Mbps Advanced Package

L-CSR-10M-ADV=

CSR 1000V e-PAK 10Mbps Advanced Package

L-CSR-10M-PRM-1Y=

CSR 1000V e-PAK 1-year subscription 10Mbps Premium Package

L-CSR-10M-PRM-3Y=

CSR 1000V e-PAK 3-year subscription 10Mbps Premium Package

L-CSR-10M-PRM=

CSR 1000V e-PAK 10Mbps Premium Package

L-CSR-50M-STD-1Y=

CSR 1000V e-PAK 1-year subscription 50Mbps Standard Package

L-CSR-50M-STD-3Y=

CSR 1000V e-PAK 3-year subscription 50Mbps Standard Package

L-CSR-50M-STD=

CSR 1000V e-PAK 50Mbps Standard Package

L-CSR-50M-ADV-1Y=

CSR 1000V e-PAK 1-year subscription 50Mbps Advanced Package

L-CSR-50M-ADV-3Y=

CSR 1000V e-PAK 3-year subscription 50Mbps Advanced Package

L-CSR-50M-ADV=

CSR 1000V e-PAK 50Mbps Advanced Package

L-CSR-50M-PRM-1Y=

CSR 1000V e-PAK 1-year subscription 50Mbps Premium Package

L-CSR-50M-PRM-3Y=

CSR 1000V e-PAK 3-year subscription 50Mbps Premium Package

L-CSR-50M-PRM=

CSR 1000V e-PAK 50Mbps Premium Package

L-CSR-100M-STD-1Y=

CSR 1000V e-PAK 1-year subscription 100Mbps Standard Package

L-CSR-100M-STD-3Y=

CSR 1000V e-PAK 3-year subscription 100Mbps Standard Package

L-CSR-100M-STD=

CSR 1000V e-PAK 100Mbps Standard Package

L-CSR-100M-ADV-1Y=

CSR 1000V e-PAK 1-year subscription 100Mbps Advanced Package

L-CSR-100M-ADV-3Y=

CSR 1000V e-PAK 3-year subscription 100Mbps Advanced Package

L-CSR-100M-ADV=

CSR 1000V e-PAK 100Mbps Advanced Package

L-CSR-100M-PRM-1Y=

CSR 1000V e-PAK 1-year subscription 100Mbps Premium Package

L-CSR-100M-PRM-3Y=

CSR 1000V e-PAK 3-year subscription 100Mbps Premium Package

L-CSR-100M-PRM=

CSR 1000V e-PAK 100Mbps Premium Package

L-CSR-250M-STD-1Y=

CSR 1000V e-PAK 1-year subscription 250Mbps Standard Package

L-CSR-250M-STD-3Y=

CSR 1000V e-PAK 3-year subscription 250Mbps Standard Package

L-CSR-250M-STD=

CSR 1000V e-PAK 250Mbps Standard Package

L-CSR-250M-ADV-1Y=

CSR 1000V e-PAK 1-year subscription 250Mbps Advanced Package

L-CSR-250M-ADV-3Y=

CSR 1000V e-PAK 3-year subscription 250Mbps Advanced Package

L-CSR-250M-STD=

CSR 1000V e-PAK 250Mbps Advanced Package

L-CSR-250M-PRM-1Y=

CSR 1000V e-PAK 1-year subscription 250Mbps Premium Package

L-CSR-250M-PRM-3Y=

CSR 1000V e-PAK 3-year subscription 250Mbps Premium Package

L-CSR-250M-PRM=

CSR 1000V e-PAK 250Mbps Premium Package

L-CSR-500M-STD-1Y=

CSR 1000V e-PAK 1-year subscription 500Mbps Standard Package

L-CSR-500M-STD-3Y=

CSR 1000V e-PAK 3-year subscription 500Mbps Standard Package

L-CSR-500M-STD=

CSR 1000V e-PAK 500Mbps Standard Package

L-CSR-500M-ADV-1Y=

CSR 1000V e-PAK 1-year subscription 500Mbps Advanced Package

L-CSR-500M-ADV-3Y=

CSR 1000V e-PAK 3-year subscription 500Mbps Advanced Package

L-CSR-500M-ADV=

CSR 1000V e-PAK 500Mbps Advanced Package

L-CSR-500M-PRM-1Y=

CSR 1000V e-PAK 1-year subscription 500Mbps Premium Package

L-CSR-500M-PRM-3Y=

CSR 1000V e-PAK 3-year subscription 500Mbps Premium Package

L-CSR-500M-PRM=

CSR 1000V e-PAK 500Mbps Premium Package

L-CSR-500M-PRM-8G=

CSR 1000V e-PAK 500Mbps Premium Package w/ 8GB Memory for Route Reflection

L-CSR-1G-STD-1Y=

CSR 1000V e-PAK 1-year subscription 1Gbps Standard Package

L-CSR-1G-STD-3Y=

CSR 1000V e-PAK 3-year subscription 1Gbps Standard Package

L-CSR-1G-STD=

CSR 1000V e-PAK 1Gbps Standard Package

You can purchase software updates, 24-hour support from the Cisco Technical Assistance Center (TAC), and access to the Cisco.com support website that includes technical documentation separately.

   The 1- and 3-year term licenses require purchase of corresponding 1- and 3-year Cisco Software Application Support plus Upgrades (SASU).

   The perpetual licenses require purchase of 1-year SASU only. SASU renewal is optional and can be done on an annual basis.

Please contact your local Cisco sales representative for more information.

For More Information

For more information about the Cisco Cloud Services Router 1000V, please visit http://www.cisco.com/go/cloudrouter.