#CiscoLive

Cisco Catalyst 8300 series

Platforms
Technical Deep Dive

Shameel Ummer , Technical Marketing Engineer

@Twitter_handle
BRKARC-3003

#CiscoLive
Agenda
• Introduction to Catalyst 8000 Platform
Family
• Key Building Blocks
• Solution and Use-cases
• User Centric Design
• Connectivity Richness
• Platform Architecture
• Platform Comparison
• Conclusion
#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 3
Introduction
Catalyst 8000
Platform
Family
Technology transformations
Top digital business initiatives in the cloud age

SASE/Multicloud 5G/IOT Edge Computing

Cloud migration will continue to accelerate By 2022, 5G Infra in Branch expected 37% of enterprise customers plan to implement
the adoption of SD-WAN to grow to $1.9 billion SD-Branch in some way in next 5 years
- Markets & Markets Research - IDC Report
- IDC Report

Predictable 75%
Reducing 43%
Increasing 50%
Scale Risk Agility
believe SaaS/Cloud are of teams identified embedded of all workloads run outside of
important to WAN choice network security as priority enterprise DC by 2021
IDC Report Cisco Global Networking Report Cisco Global Networking Report

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 5
 Catalyst 8000V

SRIOV
Hypervisor/Cloud

Hypervisor / Multi-Cloud

Catalyst 8500 Series Catalyst 8300 Series Catalyst 8200 Series

Catalyst 8000 Edge Platforms Family

Built for New Age of Intent Based WAN

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 6
Catalyst 8300
Key Building
Blocks
x86 Multi-core SoC Architecture X86 Multi-core CPU

Key Datapath Innovations

Hosted Hosted IPS URL-F AMP

App1 App2 UTD Engine

KVM — Hypervisor LXC Container

Quick Assist Technology (QAT)

PPE SP SP I/O PPE PPE PPE I/O

Dynamic Core
PPE SP CP I/O Allocation PPE PPE CP I/O
I/O I/O Core

Service Plane Optimized Data Plane Optimized PPE Data Plane Core

CP Control Plane Core

SP Service Plane Core

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 8
Easy Operations with Single Image Open and Extensible
IOS XE

IOS XE
IOS XE Single
SD-WAN
IMAGE Image IMAGE
universalk9 universalk9 ucmk9

IOS XE
IOS XE
SD-WAN
‘Autonomous’
‘Controller’
mode
mode

Accelerate SD-WAN Simplify Deployments Cloud-scale Applications

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 9
 TAm

Secure Platform with Trustworthy Solutions

Step 1 Step 2 Step 3 Step 4 Step 5 Step 6

TAm

Hardware CPU CPU CPU CPU CPU

Anchor Microloader
Microloader Bootloader
Bootloader OS
OS OS
OS OS
OS
Microloader
Microloader Bootloader OS launched Authenticity and Trust Anchor
checks Bootloader checks OS license checks module provides
critical services

First instructions run on CPU stored in tamper-resistant hardware

Confidentiality Integrity Authenticity

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 10
Single Offer with common DNA Subscription
Systems DNA Subscription

Cisco DNA Premier

Cisco DNA Advantage

Catalyst 8300 Edge

Cisco DNA Essentials

Performance, Flexibility & Investment Protection

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 11
Solution and Use
Cases
Catalyst 8300 Series Edge Platforms Use Cases

Deployment
Enterprise WAN Edge Use-case Managed Service Providers
Traditional & SD-WAN Managed CPE and Core Routing
High Performance WAN Wireless WAN
Voice and Compute SLA Monitoring and Management

Secure Access Services

Internet Gateway
High Speed VPNs
Edge (SASE)
Advanced Cryptography Cloud OnRamp for IaaS & SaaS
Network Address Translation Umbrella SIG Integration
Catalyst 8300 Series
Multi-layer security
Edge Platforms

Purpose built edge platforms centered around cloud, services & SD-WAN
#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 13
Catalyst 8300 Series Edge Platforms
One platform, many solutions
SD-WAN & SASE Internet Gateway Secure WAN
Site-to-site
Cloud OnRamp for SaaS High Throughput
Remote Access VPN
Cloud OnRamp for IaaS Performance
GETVPN, DMVPN, FlexVPN
Umbrella SIG High Scale NAT44, NAT64
Zone Based Firewall
Multi-layer Security 10/1G Port Offering
256-bit WAN MACsec
UC SD-WAN Firewall DDoS protection
Encryption Traffic Analysis

Managed SP CPE SD-Access

MPLS, Segment Routing

Control Plane node
L2VPN, L3VPN
Border node
AVC, NBAR2, QoS/HQoS
Fabric edge node (roadmap)
MP-BGP

Inherits all IOS XE innovation from Day-1, ISR4K feature parity

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 14
Enterprise Branch Office SD-WAN

SD-WAN Controller Cloud/On-Prem Fabric

AWS/Azure
cloud

Cloud OnRamp for

SaaS (DIA) Security Stack
Branch Ent. FW SD-WAN Fabric
App Aware
On-Prem

IPS
SD-WAN
MPLS
MPLS
AMP
FABRIC
Data Center
DNS/web
layer
security

URL
Filtering

Catalyst 8300
Secure Network Edge SD-WAN Transport ManagedProvision
Zero-touch Services

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 15
SASE Cloud Adoption with SD-WAN
Cloud-
Secure web delivered FW DNS/web
gateway layer security
Interactive Cloud access
Threat Intel Security broker

Branch SaaS

Cisco
Umbrella
Internet

SD-WAN

Regional
Hub/Co-lo IaaS
Catalyst 8300 Cisco SD-WAN + Umbrella SIG = SASE

Seamless cloud access for SASE applications

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 16
AppQoE with SD-WAN

Branch
ISP2

DIA Regional
Data center
SD-WAN
MPLS
Fabric
Critical
Applications
Forward Error
TCP Optimization
Correction (FEC)

Packet Duplication DRE & Caching *

Catalyst 8300
Data Center

Enhanced Application Quality experience

* Roadmap
#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 17
 Internet Gateway for DIA

Direct Internet Access (DIA) Security Stack

Branch Ent. FW
App Aware
ISP1
IPS

LTE
AMP

DNS/web ISP2
layer
security

Primary IaaS/SaaS traffic

URL
Filtering Secondary IaaS/SaaS traffic
LTE Cellular as backup links
Catalyst 8300
Managed Services
High speed internet access at the service edge

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 18
Enterprise Branch Office
Traditional Routing
Branch Security Stack
Ent. FW
App Aware

Data Center

IPS
MPLS WAN
DNS/web
layer
security

DNA Center

Catalyst 8300

Secure Network Edge Traditional Transport Managed

Zero-touch Services
Provision

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 19
Managed Service Providers
CPE Use Case
Security Stack QFP

Branch Ent. FW
App Aware SP Managed
MPLS BB
QFP
CPE QFP

IPS
Data Center
Enterprise Data Managed
Applications
Services
QFP

DNS/web
layer SP Managed
security Internet BB
QFP
QFP

DC Traffic
Employee Internet Traffic
Employee SAAS Traffic

High Performance SP Managed Network SP Managed Services Services

Managed

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 20
Cisco SD-WAN Unified Communications, Voice Integration
Benefits
Catalyst 8300

Telephony Integration
Only vendor to natively Telephony survivability
integrate analog/digital IP
Prevent internal and external
directly into the CPE
phone outages using SRST
enabling branch router to
assume role of call control
Reduced OpEx and CapEx PBX.
Cisco SD-WAN now supports
UC and SD-WAN within a
Middle-mile Optimization
single CPE
Only vendor actively
partnering with colocation and
Reduced Complexity SDCI Partners for optimization
vManage can orchestrate with cloud applications
scalable/consistent UC (WebEx, UCM Cloud and
configuration across the entire more)
enterprise via templates

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 21
Catalyst 8300
New Age Branch

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 22
Cisco Catalyst 8300 Series Edge Platforms
Foundation for the Secure Cloud Scale SD-WAN branch
Integrated Rich Services Scale
Voice Survivability, Forward Error Correction Up to 5x IPsec and IP CEF Performance
& Packet Duplication, TCP Optimization Core Availability for 3-4x Services
Performance
Higher IPSec Tunnel Scale

Edge Intelligence Multi-layer Security

Compute SSL Acceleration
Container based Apps Application Firewall
IPS/IDS, URL Filtering
AMP, Threatgrid
Umbrella SIG

Connectivity Manageability

YES Higher Pluggable vManage DNA Center

Default 10G w/
Modularity WAN Port NVMe 5G Ready
8G DRAM MACsec
density Storage
Open APIs Analytics

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 23
 Cisco Catalyst 8300 Series Edge Platforms
Introducing 10G in Access with higher port density
C8300-2N2S-4T2X
C8300-1N1S-4T2X
10G WAN Ports ‘X’ 4 RJ45
& 5G IPsec 2 SFP+

C8300-2N2S-6T
C8300-1N1S-6T
1G WAN Ports ‘T’ 4 RJ45
& 2G IPsec 2 SFP

M.2 USB/ UADP-based switch User Centric Design Higher-efficiency AC

NVMe Storage modules/10G WAN module (RFID, QR label, FRUs) and DC power supplies

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 24
 Cisco Catalyst 8300 Series Edge Platforms
The leading SD-WAN high performance branch router with rich services

C8300-2N2S-4T2X
C8300-2N2S-6T (10G WAN Ports)
(1G WAN Ports)
Performance and Rich Services

(2 RU, Up to 12 Gbps CEF

(2 RU, Up to 10 Gbps CEF Up to 5 Gbps IPsec) Cisco IMIX traffic (352 Bytes)
Up to 2 Gbps IPsec) CEF: Autonomous mode Routing
IPsec: Autonomous & Controller/SDWAN
C8300-1N1S-4T2X mode
C8300-1N1S-6T (10G WAN Ports)
(1G WAN Ports)

(1 RU, Up to 12 Gbps CEF

(1 RU, Up to 10 Gbps CEF Up to 5 Gbps IPsec)
Up to 2 Gbps IPsec)

Flexible SoC Architecture with Multiple Cores

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 25
C8300 Storage Options
External M.2 storage

Storage Options Use Case

8 GB default bootflash SD-WAN storage

16G default M2. USB

32 GB M.2 USB options App Hosting
600 GB M.2 NVMe SSD options

Logging local

Guest Shell/Python

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 26
C8300 Power Supply
Dual AC, DC, POE PSUs

HVDC PSU support

PoE, PoE+ & UPOE Capable

PoE Boost with 500W and 1000W

Power AC DC DC Dual AC Dual DC AC + POE AC + DC

Device Model
Supply 250W 400W 400W HV PSU PSU 500W Mix mode PoE Supported Modules

C8300-1N1S-6T Internal NIM-ES2-8-P

C-SM-40G8M2X
C8300-1N1S-4T2X Internal C-SM-16G4M2X

Power AC DC DC 650W Dual AC Dual DC PoE AC + DC

Device Model
Supply 650W 650W NEBS PSU PSU Adaptor Mix mode

C8300-2N2S-6T Internal

C8300-2N2S-4T2X Internal

1 + 1 Redundancy with Inline Power

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 27
C8300 Field Replaceable FAN Module
Replaceable fan tray, 4 Internal Fans assembly module for Chassis cooling + PSU fan

Field Replaceable Fan Tray

Reverse Airflow (NEBS)

Front-to-Back Airflow

Fixed Fan tray, 3 Internal Fans assembly module for Chassis cooling + PSU Fan

Internal Fan tray

Front-to-Back Airflow

FAN Module Build N+1 Redundancy for Cooling

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 28
User Centric
Design
Label Tray Label Tray is a Plastic strip that can be pulled out

Label Tray contains:

Product ID
PID version ID
CLEI
TAN
Serial Number

Label tray contains a QR code with above information

encoded in it:
Device Family, Base PID
Device MAC
Vendor
Serial Number
QR Label Tray HW Version

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 30
Radio Frequency Identification (RFID)

Front Facing Passive UHF RFID

Ultra High Frequency (UHF) Specs

860 to 960 MHz
1-to-4-meter Distance
Supply Chain Applications

UHF Benefits:
Good read range
Low cost
Industry adopted standard
RFID

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 31
Industrial Design and Ergonomics

Circle Pattern Satin Aluminum Based Rounded Frame

Hex Packing Textured Finish 4 mm

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 32
Connectivity
Richness
C8300 Connectivity Richness
Next-gen modules and backward compatibility

70+ varieties
Slot type Module type of Modules and
Interfaces
Pluggable Interface
LTE
Module (PIM)

Network Interface LAN, WAN, LTE, VOICE,

Module (NIM) DSL, UCS-E, ASYNC

LAN, WAN, VOICE,

Services Module (SM)
UCS-E, ADAPTOR

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 34
 Catalyst 8300 Supported Modules * IOS XE is supported, SD-WAN support is in the
roadmap
Blue color: new modules

LAN WAN LTE Voice DSL Storage

NIM-ES2-4 C-NIM-1X NIM-LTEA-EA SM-X-PVDM-3000 NIM-2FXSP NIM-VAB-A SSD-M2NVME-600G

NIM-ES2-8 NIM-1T NIM-LTEA-LA SM-X-PVDM-2000 NIM-4FXSP NIM-VA-B* M2USB-16G
NIM-ES2-8-P NIM-2T* P-LTE-VZ SM-X-PVDM-1000 NIM-2FXS/4FXOP NIM-VAB-M M2USB-32G
C-SM-40P8M2X NIM-4T* P-LTE-NA SM-X-PVDM-500 NIM-2FXO NIM-4SHDSL-EA*
C-SM-16P4M2X SM-X-1T3/E3* P-LTE-US SM-X-24FXS/4FXO NIM-4FXO
NIM-2BRI-S/T* P-LTE-JN SM-X-16FXS/2FXO NIM-4E/M*
NIM-4BRI-S/T* P-LTE-GB SM-X-8FXS/12FXO NIM-2BRI-NT/TE*
P-LTE-IN SM-X-72FXS NIM-4BRI-NT/TE*
WAN + Voice: P-LTE-AU NIM-PVDM-32
Async NIM-1MFT-T1/E1 P-LTEA-EA NIM-PVDM-64 ADAPTOR UCS-E
NIM-2MFT-T1/E1 P-LTEA-LA NIM-PVDM-128
NIM-16A* NIM-4MFT-T1/E1 P-LTEAA-EA NIM-PVDM-256 C-SM-NIM-ADPT UCS-E160S-M3/K9
NIM-24A* NIM-8MFT-T1/E1 P-LTEAP18-GL UCS-E1120D-M3/k9
SM-X-64A* NIM-1CE1T1-PRI CG418-E UCS-E180D-M3/K9
NIM-2CE1T1-PRI CG522-EE
NIM-8CE1T1-PRI
5G
(1H, CY21 : Roadmap)

5G sub-6GHz PIM

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 35
Platform
Architecture
 Catalyst 8300 Built for Service Optimization
CPU Core Allocation

Service Optimized mode Data Optimized mode

5 5
4 5 4

Number of Cores
Number of Cores

2 3 2
1 2 2 1 2
1 1
0

CP I/O PPE SP CP I/O PPE SP

C8300-1N1S, C8300-2N2S-6T C8300-1N1S, C8300-2N2S-6T

C8300-2N2S-4T2X C8300-2N2S-4T2X

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 37
C8300-2N2S Block Diagram

DDR4 USB 3.0

DPDK
x86 SoC CPU
NVMe 12 Cores (4T2X) TAM 2.0
8 Cores (6T)
QAT
Flash Engine Console and USB

Crossbar Switch PCIe USB 3.0 PCIe PCIe Gen3 X4

2 x10GE 1 x10GE

2 x 1G(6T)
SM0 SM1 NIM0 NIM1 PIM 4 x1GE
2x 10G (4T2X)

DRAM 8/16/32 GB SoC with High QAT for Crypto Rich

Scalability Performance 4 x1GE Acceleration Connectivity

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 38
C8300-1N1S Block Diagram

DDR4 USB 3.0

DPDK

NVMe x86 SoC CPU TAM 2.0

8 Cores
QAT
Flash Engine Console and USB

MAC PCIe USB 3.0 PCIe PCIe Gen3 X4

1 x10GE 1 x10GE

2 x 1G(6T)
SM NIM PIM 4 x1GE
2x 10G (4T2X)

DRAM 8/16/32 GB SoC with High QAT for Crypto Rich

Scalability Performance Acceleration Connectivity

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 39
Catalyst 8300 and Life of a Packet
Native Container Data Plane
IOSd VMs
Apps Services
Punt/Inject DPDK netmap

Linux Kernel LXC KVM

Punt/Inject MEMIF Service Packet Path Punt/Inject

LTE LTE
USBnet LSMPI Ctrl Data

NGIO NGIO NGIO NGIO NGIO NGIO

USB FPGE/FPTE Data USB
Ctrl Data Ctrl Data Ctrl Data

X86 SoC CPU QAT

2 X 10G 2 X 10G Engine
USB2.0 2 X 10G MAC USB3.0
MAC MAC

2x10G
NGIO module Data traffic 4x1G MAC
MAC
Front Panel GE & TE traffic MGMT
LTE
Routing Cntrl traffic NIM NIM SM SM
PIM

FPGE0
FPGE1
FPGE2
FPGE3

FPTE4
FPTE5
Container/Native svc traffic

LTE PIM module Data traffic

Crypto offload

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 40
Platform
Comparisons
ISR 4451 vs C8300-2N2S
Product Comparison
Up to 4000 IPsec Tunnels Up to 6000 IPsec Tunnels

Up to 1.4Gbps SD-WAN IPsec Up to 2-5Gbps SD-WAN IPsec

Up to 3.8Gbps CEF, 2Gbps Crypto Up to 10-12Gbps CEF, 2-5Gbps Crypto

240Mbps IPS/IDS + URL-Filtering 900Mbps IPS/IDS + URL-Filtering

4GB to 16GB upgradable DRAM 8GB to 32GB upgradable DRAM

Ports/Slots: 4P , 3NIM/2SM Ports/Slots:4P+2xGE/TE, 2NIM/2SM/1PIM

Split CP/DP, 4C+6C X86 SoC, 12C/8C Cores, HW Crypto

All perf numbers are IMIX of aggregate throughput

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 42
ISR 4431 vs C8300-1N1S
Product Comparison
Up to 3500 IPsec Tunnels Up to 6000 IPsec Tunnels

Up to 750Mbps SD-WAN IPsec Up to 2-5Gbps SD-WAN IPsec

Up to 3.4Gbps CEF, 1Gbps Crypto Up to 10-12Gbps CEF, 2-5Gbps Crypto

150Mbps IPS/IDS + URL-Filtering 600Mbps IPS/IDS + URL-Filtering

4GB to 16GB upgradable DRAM 8GB to 32GB upgradable DRAM

Ports/Slots: 4P , 3NIM Ports/Slots:4P+2xGE/TE, 1NIM/1SM/1PIM

Split CP/DP, 4C+6C X86 SoC, 8C Cores, HW Crypto

All perf numbers are aggregate IMIX for Crypto throughput

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 43
Conclusion
Cisco Catalyst 8300 Series Edge Platform
Foundation for the Secure Cloud Scale SD-WAN branch

Ready for the Agile Cloud Journey 10G, 1RU Crypto Hardware
Up to 12Gbps
High Speed Cloud Access CEF Aggregate
SD-WAN Platform Acceleration
Throughput
Multi-Cloud Application Optimization
Compact, Powerful 1RU Platforms

Accelerated Multi-Layer Security

QAT chip for Crypto offload
SASE driven Feature Innovations
Full-stack On-premise security

5G Ready Edge Intelligence

Future proof for 5G high speed WAN
Multi-Domain Intent Based Networking

User Centric Design

Operational Ease for better Tracing
Passive UHF Radio Frequency ID High WAN High Performance Highly
Easy Access Label Tray port-density IPsec, MACsec Programmable
Field Replaceable FAN Tray

#CiscoLive BRKARC-3003 © 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public 45
Thank you

#CiscoLive
#CiscoLive