Images of a revamped IOS become clearer

Cisco's plan for the next half decade

Cisco over the next five years plans to radically change how it sells and delivers router and switch software, in part by making that software more virtualized and modular.

Cisco's intention is to decouple IOS software from the hardware it sells, which could let users add enhancements such as security or VOIP more quickly, without having to reinstall IOS images on routers and switches. The vendor also plans to virtualize many of its network services and applications, which currently are tied to hardware-specific modules or appliances.

This shift would make network gear operate more like a virtualized server, running multiple operating systems and applications on top of a VMware-like layer, as opposed to a router with a closed operating system, in which applications are run on hardware-based blades and modules. Ultimately, these changes will make it less expensive to deploy and manage services that run on top of IP networks, such as security, VOIP and management features, Cisco says.

High-level details of the road map were delivered in a session at Cisco's C-Scape analyst conference last week in San Jose by Cliff Metzler, senior vice president of the company's Network Management Technology Group.

"The way we've sold software in the past is we've bolted it onto a piece of hardware, and we shipped [customers] the hardware," Metzler said. "We need more flexibility to allow customers to purchase software and to deploy it according to their terms."

IOS upgrades require a reinstall of the new software image on the router or switch -- which causes downtime -- or, "we say, not a problem, UPS will arrive soon, here's another blade" to run your new service or application, Metzler said. "This adds months to the deployment cycle, which is not good for customers or Cisco's business."

Because IOS code releases are a superset of features in previous versions, Metzler added, users must also go through lengthy testing processes to ensure new features don't interfere with existing network services. The most recent IOS release, for example (12.4(11)T), has 31 new features, ranging from intrusion-prevention system (IPS) and VPN upgrades, to VOIP, Border Gateway Protocol, load-balancing and VoiceXML features.

"What's going to happen? What else was in this software image that I just loaded?" are common questions when upgrading IOS, Metzler said. "It's not a natural, graceful way to go through a software upgrade."

The evolution of Cisco's software model was first mentioned by CEO John Chambers in June at the company's North American customer event.

"More than half of our engineers are software engineers, yet we sell [software] like a hardware product," Chambers said.

Cisco is not starting from square one in its effort to transform its IOS and network software technology and business. Cisco already has a modular IOS version, IOS-XR, which runs on its carrier-class routers, and provides a more flexible and resilient system for routing and advance services. A modularized IOS version for the enterprise Catalyst 6500 switch also provides more separation of processes running on top of the operating system kernel, which makes the switch more stable, Cisco says. A Linux-based Services Engine blade is also used in Cisco's Integrated Services Routers, to offload nonrouting applications and services, such as VOIP or security services. Taking these processes out of the core IOS software and router CPU adds a level of modularity and resiliency as well, Cisco says.

Join the newsletter!

Error: Please check your email address.

More about CiscoGatewayIntelIPSVMware Australia

Show Comments

Market Place