Medianet Reference Guide - Cisco
Medianet Reference Guide - Cisco
Medianet Reference Guide - Cisco
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Chapter 6<br />
<strong>Medianet</strong> Management and Visibility Design Considerations<br />
Network-Embedded Management Functionality<br />
This example is not the only recommended model for enabling NetFlow within an enterprise medianet,<br />
but is an example of a methodology for collecting NetFlow data to gain some useful insight regarding<br />
video flows at various points within the network infrastructure. You can choose to selectively enable<br />
NetFlow collection at one or more strategic aggregation points in the network, such as the distribution<br />
layer within different modules of a campus, depending on the desired visibility for video flows. For<br />
example, NetFlow statistics can be collected at the ingress interfaces of the distribution layer switch<br />
pairs at each module within a campus. In other words, statistics can be collected for traffic flows exiting<br />
the core and entering each campus module. Statistics gathered from this type of NetFlow deployment<br />
can be used to determine the following video traffic flows:<br />
• Aggregated flows outbound across the corporate WAN to all the branch locations<br />
• Flows into each building within the campus<br />
• Aggregated flows outbound toward the Internet<br />
This model can be useful because many video flows emanate from a central point within a campus data<br />
center or campus service module, and flow out to users within each campus building or each branch<br />
location. For example, unicast or broadcast enterprise TV as well as video-on-demand (VoD) flows to<br />
desktop devices often follow this flow pattern. Likewise, because of the nature of TelePresence video,<br />
the majority of the video flows within a multipoint meeting are from a centralized <strong>Cisco</strong> TelePresence<br />
Multipoint Switch, potentially located within a data center or campus service module, out to the<br />
<strong>Cisco</strong> TelePresence System endpoints located within the campus buildings and branch locations.<br />
Additional flow information can be gathered by implementing NetFlow bidirectionally at the distribution<br />
layer of each module. Note that this can preferably be done by enabling NetFlow statistics collection in<br />
an ingress direction on other interfaces. Although video broadcasts, VoD, and multipoint TelePresence<br />
tend to follow a flow model where the majority of traffic emanates from a central point outward to the<br />
endpoints, <strong>Cisco</strong> IP video surveillance follows the opposite model. The majority of traffic in a <strong>Cisco</strong> IP<br />
video surveillance deployment flows from cameras deployed within the campus buildings back to the<br />
Video Surveillance Operations Manager (VSOM) server potentially deployed within a data center or<br />
campus service module. However, note that implementing NetFlow collection bidirectionally can result<br />
in some duplication of flow information when multiple collection points exist within the network<br />
infrastructure.<br />
Additional flow information can also be gathered by implementing NetFlow at the branch router itself,<br />
to gain insight into the flows into and out of individual branch locations, if that level of detail is needed.<br />
Keep in mind, however, that the NetFlow data export uses some of the available branch bandwidth. Also,<br />
NetFlow in <strong>Cisco</strong> IOS router platforms is performed in software, potentially resulting in somewhat<br />
higher CPU utilization depending on the platform and the amount of flow statistics collected and<br />
exported. The use of flow filters and/or sampling may be necessary to decrease both CPU utilization and<br />
bandwidth usage because of NetFlow flow record exports. Even with the campus distribution switches,<br />
it may be desirable to implement flow filters and/or sampling to decrease CPU and bandwidth usage.<br />
Note that data sampling may distort statistics regarding how much traffic is flowing across a single point<br />
in the network. However, the relative percentages of the flows can still be useful from a bandwidth<br />
allocation perspective. An alternative strategy may be to SPAN the flow traffic from the <strong>Cisco</strong> Catalyst<br />
switch to a separate device, such as the <strong>Cisco</strong> Service Control Engine (SCE), which can then perform<br />
analysis of the flows and export records to a centralized NetFlow collector for monitoring and reporting.<br />
NetFlow Collector Considerations<br />
The aggregation capabilities of the NetFlow collector determine to a large extent the usefulness of the<br />
NetFlow data from a medianet perspective. Most NetFlow collectors provide monitoring and historical<br />
reporting of aggregate bit rates, byte counts, and packet counts of overall IP data. Typically, this can be<br />
further divided into TCP, UDP, and other IP protocols, such as Internet Control Message Protocol<br />
(ICMP). However, beyond this level of analysis, some NetFlow collectors simply report Real-Time<br />
OL-22201-01<br />
<strong>Medianet</strong> <strong>Reference</strong> <strong>Guide</strong><br />
6-7