Cisco® Managed Services Solution delivers a powerful combination of network management software and advanced services to help service providers deploy security services based on the Cisco Integrated Services Router platform.
Cisco Integrated Services Router delivers highly secure concurrent services for WAN access to enterprise branch offices, small and medium-sized businesses (SMBs), and remote workers. Cisco Managed Services Solution provides a cost-effective management platform for Cisco Integrated Services Router and for the additional business services that are offered on top of the WAN transport service. Cisco Managed Services Solution includes a solid device management strategy, as well as service management functions for control and surveillance of each individual service. The solution's comprehensive management platform and advanced services enable service providers to offer differentiated, revenue-generating managed security services today and to seize many service opportunities in the future.
Solution Overview
Cisco Managed Services Solution helps service providers efficiently deploy managed services based on Cisco Integrated Services Router technology. This comprehensive solution includes zero-touch provisioning, configuration, and fault and event monitoring for device management, managed firewall, managed NAT and managed IPsec VPN. The solution package is designed for service providers who want to purchase both network management software and associated Cisco advanced services. The software and service combination has been designed and pre-tested based on a managed service lifecycle model to optimize value, lower risk, and decrease time to market. For this reason, the solution is offered only as a comprehensive software and service package. For service providers who want a highly customized solution, standalone products can be purchased from Cisco and tailored to the service provider's specific requirements.
For rapid and trouble-free deployments, Cisco Managed Services Solution includes the installation and configuration of the management software. The offering begins with a foundation Element Management System (EMS) for Cisco Integrated Services Router, with optional managed security packages layered on top of the EMS. A one-year software license supports a scalable pricing model to lower service provider deployment risk.
The following components are provided in Cisco Managed Services Solution:
• Zero-touch provisioning of the Cisco Integrated Services Router platform through the Cisco Configuration Express program
• Network Management System (NMS) software platform for provisioning and fault and event monitoring of Cisco Integrated Services Router devices and managed security services
– Managed security service support includes managed firewall, managed Network Address Translation (NAT), and managed site-to-site IPsec VPN
• Cisco Managed Services Solution analysis service for managed services
– An additional Cisco Managed Services Solution security analysis service package is available for specific managed security applications
• Cisco advanced services for OSS to complete the following lifecycle phases: Prepare, Plan, Design, and Implement
– Additional advanced services can be requested for the Operate and Optimize lifecycle phases
– Advanced partner services may be available in some regions for integration to existing OSS environments and for the implementation of additional solution components
Solution Lifecycle Process
Cisco Managed Services Solution enhances the value of your Cisco Integrated Services Router-based managed security service throughout its entire lifecycle. The solution begins with the purchase of Cisco Integrated Services Router, the base Cisco Managed Services Solution system software, and the first Cisco Managed Services Solution service package, known as the OSS Solution Analysis. The initial analysis will define the set of configured software and OSS service components needed to successfully deliver a managed service to the end customer. The definition will include the components required for the Prepare, Plan, Design, and Implement phases of managed service deployment. The analysis will also define solution objectives and outline the steps to successfully meet these objectives. It includes a report and plan that describes the service provider's current state architecture, future state architecture, and the system and process requirements for managing Cisco Integrated Services Router. From this analysis, statements of work will be created and priced to deliver the appropriate level of customization to launch a managed service successfully. This includes the installation and configuration of all Cisco hardware and software components. The process is designed for service providers that require fast time to market, lower-cost deployments, and lower risk through a solution partnership with Cisco.
Key Features and Benefits
Cisco Managed Services Solution includes the following features and capabilities:
• Zero-touch provisioning for the following types of Cisco Integrated Services Router-based deployments:
– Managed router service
– Managed firewall service
– Managed NAT service
– Managed site-to-site IPsec VPN service
• Site-to-site VPN types supported:
– IPsec tunnel mode
– Generic routing encapsulation (GRE) and IPsec transport mode
– Multipoint GRE (MGRE), Next Hop Resolution Protocol (NHRP), and IPsec (Dynamic Multipoint VPN [DMVPN])
• Compatibility with Cisco Configuration Express program
Figure 1 shows an example of a managed IPsec VPN security service that can be deployed using Cisco Managed Services Solution.
Figure 1. Managed IPsec VPN Security Service
ISC = IP Solution Center
AAA = Authentication, authorization, and accounting
ANA = Cisco Active Network Abstraction
Cisco Active Network Abstraction
One of the primary Cisco Managed Services Solution components is the Cisco Active Network Abstraction (ANA) software, which creates a virtual network model to help service providers effectively manage and offer multiple services and technologies, including:
• Multiple access technologies (IP, Layer 2 and 3 VPN, XDSL, ATM, Frame Relay, optical, and so on)
• Open interfaces to multiple OSS/BSS applications
The Cisco ANA software capabilities include the discovery and identification of the basic network components; end-to-end visibility of the network resources, connections, and dependencies; and the capability to manage and analyze network behavior. The basic components of the Cisco ANA concept are:
• Interoperable interfaces (such as physical and logical ports)
• Protocol stacks
• Forwarding entities (such as switching or routing tables)
• Adjacencies (physical and service links)
By identifying and modeling these four basic components, Cisco ANA gains complete end-to-end understanding of the network structure and interoperability, across vendors, technologies, and network layers.
The virtual network model within is always maintained up to date (in near real time) and enables a powerful OSS functionality, provided through the Cisco applications and GUI clients as well as used for empowering higher-level systems. Following are some examples of Cisco OSS functionality enabled by the virtual network model:
• Real-time discovery and reporting of complete device inventory (physical and logical) and multilayer network connectivity
The multipurpose design of the Cisco ANA management platform provides flexibility to support future network evolution and enables service providers to quickly respond to new network elements, technologies, and services.
Cisco IP Solution Center and Cisco CNS Configuration Engine
Automating the managed services configuration and deployment process is accomplished within Cisco Managed Services Solution by the integration of two software technologies: Cisco IP Solution Center and Cisco CNS Configuration Engine. They both work together to provide automated provisioning of Cisco Integrated Services Routers, sometimes referred to as "zero-touch" deployment. The solution also includes the ongoing configuration management of these devices.
Cisco IP Solution Center is a family of intelligent element management applications that help reduce overall administration and management costs by providing automated resource management and rapid profile-based provisioning capabilities, accelerating deployment. Cisco IP Solution Center has most commonly been used by service providers for establishing connections between routers at a central site and routers at various client locations. Cisco CNS Configuration Engine works in conjunction with IP Solution Center, downloading configuration and policy information to remote routers.
Cisco Configuration Express
One component of Cisco Managed Service Solution that adds value to your business is the Cisco Configuration Express service. The optional service is available to Cisco service provider customers as part of their Cisco Integrated Services Router purchase. Cisco Configuration Express is an e-commerce application that takes advantage of enterprise resource planning systems to reduce time and costs for equipment setup. Tasks such as receiving, customizing, repackaging, and shipping equipment are automated, and incorporating them into the manufacturing process reduces labor costs and shortens order lead time. Cisco Configuration Express simplifies order entry and order fulfillment processes to facilitate swift and cost-effective delivery of customized equipment. The front-end order entry system is an extension of the Web-based Cisco Ordering Tool used for ordering standard equipment. The back-end order fulfillment provides the customization required in the manufacturing process and is virtually transparent to the customer and the end user receiving the equipment. The end result is the router shipped by Cisco has the service provider bootstrap configuration loaded and is ready to be installed at the target managed service customer site.
System Requirements
Table 1 lists the minimal system requirements for Cisco Managed Services Solution 1.0. The Cisco Managed Services Solution Analysis service component will identify the steps necessary to meet customer requirements for scalability and performance.
Table 1. System Requirements for Cisco Managed Services Solution
Cisco Managed Services Solution Software Server Requirements
Disk Space
Two 73 GB hard disks
Hardware
Sun V490 (preferred)
Memory
• Sun V490 (preferred)
• Four 1.5 GHz UltraSPARC IV processors
• One DVD drive
Software
• Solaris 2.8
• Revision 23 kernel patches
• Java patch bundle
• Customer-supplied Oracle 9i
Server Configurations
• Minimum two server configurations for lab evaluation
• Minimum three server configurations for small pilots
• Based on the number of devices managed, the total number of servers required and the server configuration can vary
• Configuration recommendations are delivered as part of the Cisco Managed Services Solution Analysis service component
Ordering Information
Cisco Managed Services Solution includes both software and services. This solution package provides a more focused, comprehensive alternative to purchasing standalone products and services, so service providers can deliver their managed services more quickly, with less deployment cost and fewer risks. Customers who want to purchase Cisco Managed Services Solution must follow these purchasing guidelines:
• Software and services are both delivered as a single package and include all base software and service components that can be further configured for Cisco Integrated Services Router-based managed security services.
• The Cisco Managed Services Solution system uses components from various Cisco standalone products (Cisco IP Solution Center, Cisco ANA software, Cisco CNS Configuration Engine). The customer must use all of the software in the recommended system configuration to receive full support and solution benefits.
• The initial purchasing phase contains three solution components:
– Cisco Integrated Services Router
– Cisco Managed Services Solution base network management software
– Cisco Managed Services Solution Analysis
• Additional milestone phases will include the following add-on solution components:
– Additional OSS advanced services for the Prepare, Plan, Design, and Implementation phases (provided by the Cisco Advanced Services team or by Cisco certified advance service partners)
– Additional one-year right-to-use licenses for each Cisco Integrated Services Router deployed in the managed service
For Cisco customers who do not want the entire solution, individual product or service offerings are available on a standalone basis. Consult your Cisco sales staff to determine the appropriate Cisco offering for your managed service requirements.
The Cisco Managed Services Solution package begins with the foundation Element Management System for Cisco Integrated Services Router, with optional managed security packages layered on top of the EMS. The base package consists of one-time, fixed-priced media components with add-on one-year licenses for each device managed. A one-year software license supports a pay-as-you-grow model to lower deployment risk. To support managed security services on top of the managed CPE service, a base security license can be added for a one-time fixed fee along with additional one-year licenses for each device that supports the managed security service.
Table 2. Ordering Information for Cisco Managed Services Solution
Part Number
Description
Contents
Foundation EMS for Cisco Integrated Services Router
MSS-CPE1.0BASE-K9
Cisco Managed Services Solution Media Kit (one-time fee)
Base system software and right-to-use (RTU) license for 50 managed CPE devices in the Group 1 category (RTU licenses have a one-year term).
Basic analysis to define solution objectives and outline the requirements to complete the managed services solution implementation. Includes a report and plan that describes the current state architecture, future state architecture, and both system and process requirements for managing Cisco Integrated Services Router.
MSS-100CPE-GP1RTU
Cisco Managed Services Solution Managed CPE RTU license for 100 Group 1 devices (one-year term license per device)
One-year RTU license for 100 devices in the Group 1 category. The Cisco 800, 1800, and 2800 Series Integrated Services Routers are included in this category.
MSS-100CPE-GP2RTU
Cisco Managed Services Solution Managed CPE RTU license for 100 Group 2 devices (one-year term license per device)
One-year RTU license for 100 devices in the Group 2 category. The Cisco 3800 Series Integrated Services Routers are included in this category.
Managed Services Solution Managed Security for Cisco Integrated Services Router
Base system license for managed firewall, managed NAT, and managed IPsec VPN, and 25 RTU licenses (Group 1) for managed security (Firewall, NAT) and 25 RTU licenses (Group 1) for managed IPsec VPN (RTU licenses have one-year term).
AS-CNSLT-OTHER
Cisco Managed Services Solution Security Analysis
Defines managed security solution objectives and outlines the requirements to complete the solution implementation (including managed firewall, managed NAT, and/or managed IPsec VPN). Includes a report and plan that describes the current state architecture, future state architecture, and specific requirements for the Cisco Integrated Services Router-based managed security services.
MSS-100SEC-GP1RTU
Cisco Managed Services Solution Managed Security RTU license for 100 Group 1 devices (one-year term)
One-year RTU license for managed firewall and managed NAT for 100 devices in the Group 1 category. The Cisco 800, 1800, and 2800 Series Integrated Services Routers are included in this category.
MSS-100SEC-GP2RTU
Cisco Managed Services Solution Managed Security RTU license for 100 Group 2 devices (one-year term)
One-year RTU license for managed firewall and managed NAT for 100 devices in the Group 2 category. The Cisco 3800 Series Integrated Services Routers are included in this category.
MSS-100VPN-GP1RTU
Cisco Managed Services Solution Managed IPsec VPN RTU license for 100 Group 1 devices (one-year term)
One-year RTU license for managed IPsec VPN for 100 devices in the Group 1 category. The Cisco 800, 1800, and 2800 Series Integrated Services Routers are included in this category.
MSS-100VPN-GP2RTU
Cisco Managed Services Solution Managed IPsec VPN RTU license for 100 Group 2 devices (one-year term license)
One-year RTU license for managed IPsec VPN for 100 devices in the Group 2 category. The Cisco 3800 Series Integrated Services Routers are included in this category.
Service and Support
Cisco offers a wide range of services programs to accelerate customer success. These innovative services programs are delivered through a unique combination of people, processes, tools, and partners, resulting in high levels of customer satisfaction. Cisco services help you to protect your network investment, optimize network operations, and prepare the network for new applications to extend network intelligence and the power of your business. For more information about Cisco services, see Cisco Technical Support Services or Cisco Advanced Services.
For More Information
For more information about Cisco Managed Services Solution, visit http://www.cisco.com/go/mss or contact your local account representative.
