Cisco Cisco Prime Network Services Controller 3.0
2
Cisco Prime Network Services Controller 3.0 Release Notes
OL-28177-01
Introduction
Introduction
Prime Network Services Controller is the primary management element for Cisco Nexus 1000V (Nexus
1000V) Series Virtual Switches and Services. Working together, they enable a transparent, scalable, and
automation-centric network management solution for virtualized data center and hybrid cloud
environments. Nexus 1000V switches and services deliver a highly secure multi-tenant environment by
adding virtualization intelligence to the data center network. These virtual switches are built to scale for
cloud networks. Support for Virtual Extensible LAN (VXLAN) helps enable a highly scalable LAN
segmentation and broader virtual machine (VM) mobility.
1000V) Series Virtual Switches and Services. Working together, they enable a transparent, scalable, and
automation-centric network management solution for virtualized data center and hybrid cloud
environments. Nexus 1000V switches and services deliver a highly secure multi-tenant environment by
adding virtualization intelligence to the data center network. These virtual switches are built to scale for
cloud networks. Support for Virtual Extensible LAN (VXLAN) helps enable a highly scalable LAN
segmentation and broader virtual machine (VM) mobility.
Prime Network Services Controller enables the centralized management of Cisco virtual services to be
performed by an administrator through its GUI, or programmatically through its XML API. Prime
Network Services Controller is built on an information-model architecture in which each managed
device is represented by its subcomponents (or objects), which are parametrically defined. This
model-centric approach enables a flexible and simple mechanism for provisioning and securing
virtualized infrastructure using Cisco VSG (VSG) and Cisco ASA 1000V (ASA 1000V) Cloud Firewall
virtual security services.
performed by an administrator through its GUI, or programmatically through its XML API. Prime
Network Services Controller is built on an information-model architecture in which each managed
device is represented by its subcomponents (or objects), which are parametrically defined. This
model-centric approach enables a flexible and simple mechanism for provisioning and securing
virtualized infrastructure using Cisco VSG (VSG) and Cisco ASA 1000V (ASA 1000V) Cloud Firewall
virtual security services.
details the primary features and benefits of Prime Network Services Controller.
Table 1
Features and Benefits
Feature
Description
Benefits
Multiple-Device
Management
Management
Central management of VSG and ASA 1000V for
Nexus 1000V series switches.
Nexus 1000V series switches.
Simplifies provisioning and troubleshooting in a
scaled-out data center.
scaled-out data center.
Security Profiles
Representation of VSG and ASA 1000V security
policy configuration in a profile.
policy configuration in a profile.
•
Simplifies provisioning.
•
Reduces administrative errors during security
policy changes.
policy changes.
•
Reduces audit complexities.
•
Helps enable a highly scaled-out data center
environment.
environment.
Stateless Device
Provisioning
Provisioning
The management agents in VSG and ASA 1000V
are stateless, receiving information from Prime
Network Services Controller.
are stateless, receiving information from Prime
Network Services Controller.
•
Enhances scalability.
•
Provides robust endpoint failure recovery
without loss of configuration state.
without loss of configuration state.
Security Policy
Management
Management
Security policies are authored, edited, and
provisioned centrally.
provisioned centrally.
•
Simplifies the operation and management of
security policies.
security policies.
•
Helps ensure that security intent is accurately
represented in the associated security
policies.
represented in the associated security
policies.
Context-Aware
Security Policies
Security Policies
Prime Network Services Controller obtains virtual
machine contexts from VMware vCenter.
machine contexts from VMware vCenter.
Allows a security administrator to institute highly
specific policy controls across the entire virtual
infrastructure.
specific policy controls across the entire virtual
infrastructure.