Welcome to:

UP-TO-SPEED-ON-CISCO
Renè Andersen TSA, Catalyst Switching
As Co-Host Karen Ritnagel

Customer & Partner Session - April 2020

 SMB and Enterprise Challenges

Catalyst Fixed Access Portfolio and

Positioning
Agenda
C1000 vs C9200 vs 9300

Q&A
Key Challenges for SMB and Enterprise Mid-Market Businesses

Digitization Shrinking IT Budget Security

Twice the devices with
Do more, easier and faster Maintain integrity of network
Twice the traffic at infrastructure
Extend the life of your investment
Twice the speed. Enable end to end security
Manage your business not
Reduce risk, cost and complexity network Prevent man in the middle attacks

Simplicity, Scalability and Security- essential for the success of SMBs

Cisco Catalyst Switching Portfolio
Refresh from Access to Core

10G mgig
1G fiber
Catalyst
9600 Series
90W
9300L mgig Catalyst
9200 9300B Catalyst
9500 Series
mgig 9300H 90W 9400 Series Catalyst
Catalyst
9300 Series
9000
Catalyst
9200 Series
Switching
Platform

Catalyst Catalyst Catalyst Catalyst Catalyst Catalyst

2960-X/XR 3650/3850 4500-E Series 3850-XS/4500-X 6840-X/6880-X 6500-E/6807-XL

Access Switching Core Switching

 Cisco Catalyst Access Switches Positioning
SMB (< 250 Users) Enterprise (> 250 users)

Cisco® Catalyst® 1000 Series Cisco Catalyst 9200 Series Cisco® Catalyst® 9300 Series

• Full SD-Access with automation and

• Entry point to Intent based networking
uniform policy for midmarket to
(IBN)
Enterprise
• Flexible out-of-closet deployments • Simple operations with
• Designed for Security, mobility, IoT and
programmability and automation and
• Basic connectivity- L2, Standalone Cloud
midmarket
• Fast Ethernet (2960P/L) to Gigabit • Extend basic automation and policy to
• Enable Fiber in a box, embedded
Ethernet Transition wireless and multi-site guest access,
branch environments
extension for IoT
• Currently using Catalyst 2960-X or
• Currently using Catalyst 3650, 3750-
2960-XR
X, 3560-X or 3850

C9K for Intent Based Networking

Catalyst Fixed Access Switching Portfolio Transitions
Open IOS-XE
• High density mGig, Modular uplinks (4x1G, 8x10G,
4xmGig, 2x25G or 2x40G) • Full SD
• 480 Gbps Stacking Bandwidth and Stackpower Access (256
• Embedded WLC (200 APs) VNs)
Catalyst Catalyst
3850*
• ETA
C9300
• App Hosting
• Macsec-256
• High density mGig, Fixed uplinks (4x10G or 2x40G) • eFSU
• 320 Gbps Stacking Bandwidth • GIR and Hot
• Embedded WLC (50 APs) patching
Catalyst Catalyst
3650 C9300L

• 8 ports of mGig
• Modular uplinks (4x1/10G, 2x25G or 2x40G) • Limited SD
• FRU silver and platinum rated PSUs and Fans Access (4VN
Catalyst Catalyst
2960-XR C9200 • 160 Gbps Stacking Bandwidth for C9200,
1VN for
C9200L)
• Macsec-128
• Fixed uplinks (4x1/10G or 2x25G)
• Cold Patching
• FRU silver and platinum rated PSU
• NBAR2
Catalyst Catalyst • 80 Gbps Stacking Bandwidth
2960-X C9200L

Classic IOS
• Fixed uplinks (2x1G, 4x1G or 4x10G)
• Standalone or single IP management On prem Web UI
Catalyst
2960-L and 2960-P
Catalyst 1000

*C3850 EOS for October 2020

 More capacity
Full SDA capability

Positioning
Many mGigs
UPoE
Application hosting

9200
Modularity, more stacking BW,
SDA 4VRF

2960X

1000
Catalyst 9200 Series
Catalyst 9200/L Series Access Switches
Simplicity without compromise- 2x performance at the same price as Catalyst 2960X/XR

2x
Double the performance High availability Improved security
Network Monitoring
Higher speeds and PoE budget, Application visibility with NBAR2, Full PSU/FAN redundancy, Perpetual Macsec-128, policy-based
Stack bandwidth, scale & more Netflow (FnF) PoE, SSO, Cold patching segmentation, trustworthy solutions

Always On IT Simplified Secure

FRU PSU, fans and uplinks and SSO Programmability and Automation with DNA-Center Policy based segmentation and
Network monitoring
 Cisco Catalyst 9200 Series
Next generation of entry-level access switches for intent-based networking
C9200L (Fixed Uplinks) C9200 (Modular Uplinks)
Recommended for small scale SDA deployments
Cisco Catalyst 9200 Series highlights

48 ports Full POE+/Data, 1G/10G Uplink UADP 2.0 mini

Security 48 ports Full POE+/Data
48 port Full POE+ with 32 VN**
Cisco IOS XE Software
48 ports Full POE+, 12xmGig, 10G Uplink
48 ports Full POE+, 8xmGig, 25G Uplink
48 ports Full POE+, 8xmGig Limited-scale SD-Access
Resiliency
MACsec-128 link encryption
24 ports Full POE+/Data, 1G/10G Uplink 24 ports Full POE+/Data
24 ports Full PoE+ with 32 VN**
Stackwise- 160/80

Application
experience 24 ports Full POE+, 8xmGig, 10G Uplink 24 ports Full POE+, 8xmGig Trustworthy solutions
24 ports Full POE+, 8xmGig, 25G Uplink
Perpetual/Fast PoE

Higher-Efficiency AC Power Supplies Modular fans Modular uplinks

Programmability
FRU PSU FRU Fan FRU Uplinks*
Silver Platinum Cold patching
Platinum
Rated Rated Rated
Full Flexible NetFlow
4x 1G 4x 10G 2x 25G 2x 40G streaming telemetry
125W 600W 1000W

*C9200 1G skus support 1/10G uplinks while C9200 mGig will support 10/25/40G uplinks
**C9200 32 VN skus only support 1/10G uplinks and these skus cannot be stacked with other C9200 skus
Cisco Catalyst 9200- Multigigabit Models 17.1.1
Introducing Multigigabit speeds with Flexible Uplink modules

• 2 x 40 Gig
c • QSFP Transceivers
• Supported on all 9200 mGig SKUs only
40x 10M/100M/1G Ports 8x 100M/1/2.5/5/10G Ports

• 2 x 25 Gig
SFP/SFP+ Transceivers
c
•
• 1/10/25G speed support
16x 10M/100M/1G Ports 8x 100M/1/2.5/5/10G Ports
• Supported on all 9200/9200L mGig SKUs only

Highest Multigigabit Port Density with StackWise-160 for Branches

New Cisco Catalyst 9100 Series Access Points
Ideal for small to medium-sized deployments Mission critical and Scale deployment

Oct
‘19

Powered by Powered by
Cisco RF ASIC Cisco RF ASIC

9115AX 9117AX 9120AX 9130AX

• 8x8 + 4x4 ; 4x4 + 4x4 + 4x4
• 4x4 + 4x4 • 8x8 + 4x4 • 4x4 + 4x4 • Tri-radio: Dual 5GHz + 2.4GHz
• MU-MIMO, OFDMA • MU-MIMO, OFDMA (only DL) • Cisco RF ASIC for Next gen CleanAir • Cisco RF ASIC for Next gen CleanAir
• Spectrum Intelligence • Spectrum intelligence • Dual 5GHz, Next Gen HDX • Full Intelligent Capture with data packets
• 1 x 2.5 mGig • 1 x 5 mGig • RF signature capture • Dual 5GHz, Next Gen HDX
• TWT • TWT • IoT ready (Zigbee, Thread) • RF signature capture, TWT
• Integrated Antenna only • Application Hosting • Smart Antennas supporting up to 8x8
• 1 x 2.5 mGig • IoT ready (Zigbee)
• Application Hosting
• TWT
• 1 x 5 mGig
• First 8x8 AP with external antennas

Cisco DNA Assurance with Integrated or external

iCAP Bluetooth 5 USB antenna SKUs
© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public
 25G for unsurpassed investment protection
on Cisco Catalyst switches - access to core
Future-ready with dual rate
• 10G, 25G Cisco Short Reach (CSR) for multimode fiber
• 10G, 25G Long Reach (LR) for single-mode fiber

Backward compatibility with SFP+/SFP

• Continue using your 10G and 1G optics
• No adapters or breakout cables
Cisco
innovation
Lower TCO
• Single-laser low-cost optic
10/25G-CSR • Lower power and higher density
10/25G-LR
Reach Dual-strand OM3/OM4
Seamless migration from 10G 10G 300 m to 400 m

• Continue using existing fiber plant 25G 300 m to 400 m

40G 100 m to 150 m
Migrate from C2960X to C9200L- Superior functionality at same price

Essentials

• Health Dashboard- Network, Client and Application, switch

and wired client Health Monitoring

DNA License
24 port 1G PoE Sku
• Advanced Telemetry & Visibility: Full Flexible Netflow,
0%
Total Price: $3,335 $3,335 Embedded Event Manager(EEM)
• Easy Management- Software Image Management (SWIM),
$610
Discovery, inventory, topology, licensing
• Day 0: Plug-n-Play Application, Lan Automation, Host
Onboarding, Network Settings, Device credeentials.

$3,335 $2,745

HW + Network Stack
• Platform Innovations: mGig SKU’s, High Speed
C2960X C9200L-E Uplinks(4x10G/2x 25G/2x 40G), Stackwise 80, SSO with
stacking.
HW DNA-E (3Y) • Layer 2 and Routed Access: VRRP, PBR, CDP, QoS, RIP,
EIGRP stub, OSPF, PBR, PVLAN
• Security. & Segmentation: Macsec-128, App recognition,
802.1x
• Telemetry and Visibility: Model Driven Telemetry, sampled
Netflow, SPAN, RSPAN
• Automation & HA: Netfconf, Restconf, Yang, PnP Agent

Network stack is included with hardware

Win against competition with C9200/L- superior performance at <20%
premium
Innovations Feature Description Competitor X Competitor Y C9200L C9200

FRU Power Supply Redundancy √ √

FRU Fan Redundancy X √

FRU uplinks X √

24 port 1G PoE+ mGig downlinks √ √

>10G uplinks 2x25G 2x25/40G

Incl. DNA MGMT Platform
Perpetual/Fast PoE √ √
+17
% Stateful Switchover (SSO) with √ √
Stacking

$3.335 Stacking Bandwidth 80Gbps 160 Gbps

$2.855
Layer 3 Routed Access* Routed Access*

Macsec on all ports √ (macsec-128) √(macsec-128)

Trustworthy Solutions √ √
Security and
Network segmentation √ √
Monitoring
Full Netflow (FnF) √ √

App recognition with NBAR2 √ √

Programmable ASIC √ √

Automation and Policy based automation √ √

Programmability Streaming telemetry √ √

Restconf, netconf, Yang data models √ √

*Routed Access on C9200/L: VRRP, PBR, CDP, QoS, RIP, EIGRP stub, OSPF, PBR, PVLAN
Catalyst 9K - Advantage vs. Essentials
C9200 C9200L Advantage Essentials
DNA Advantage (Inclusive of DNA Essentials) 3,5,7 Year Terms DNA Essentials 3,5,7 Year Terms

Advanced Automation Assurance & Analytics Basic Automation Basic Assurance

▪ SD-Access ▪ Global Insights, Trends, ▪ PnP Application ▪ Health Dashboards – Network, Client,
▪ Application Policy* ▪ Compliance, Custom Reports ▪ LAN Automation Application
▪ Fabric Enabled Wireless* ▪ Switch 360 & Wired Client 360 ▪ Embedded Event Manager ▪ Basic Switch & Wired Client Health
▪ SD-Access and Switch Insights Monitoring
▪ Application Health, Application 360,
Performance (Loss, Latency, Jitter)

Element Management Telemetry & Visibility Element Management Telemetry

▪ Patch Lifecycle Management ▪ Limited AVC* ▪ Software Image Management ▪ Full Flexible NetFlow
▪ Discovery, Inventory, Topology

Network Advantage (Inclusive of Network Essentials) Perpetual Network Essentials Perpetual

Full Routing Functionality High Availability & Resiliency Essential Switch Capabilities DevOps Integration
HSRP, OSPF, ISIS,GLBP Cold Patching (CLI) Layer 2, ▪ Netconf, Restconf, gRPC
Routed Access(RIP, EIGRP Stub, OSPF ▪ Yang Data Models
(1000 routes)), ▪ PnP Agent
PBR, PIM Stub Multicast (1000 routes)
Flexible Network Segmentation Optimize Bandwidth Utilization PVLAN, VRRP, PBR, CDP, QoS,
VRF, VXLAN, LISP, SGT with Multicast FHS, 802.1x, Macsec-128, CoPP, Telemetry & Visibility
MSDP, mVPN, AutoRP SXP, IP SLA Responder, SSO on
▪ Model-driven Telemetry
Stacking
▪ Sampled NetFlow
▪ SPAN,RSPAN

▪ C9K HW includes the Perpetual Network Stack - Network Essentials or Network Advantage *Roadmap
▪ Mandatory to attach DNA License when ordering C9K
▪ DNA License includes Switch and DNA Center Features
 Cisco Catalyst
9400 Series
Catalyst access switching Cisco
Scalability for all campus use cases Catalyst 9300
(C9300 models)

Cisco Catalyst 9300

(C9300L models) PLATFORM
PLATFORM + 9Tbps system bandwidth
Cisco Catalyst + 480G stack bandwidth + Centralized Switching Arch
+ Built-In stacking
9200 Series + Macsec-256
+
+
Macsec-256
90W UPOE+ (802.3bt)
+ 90W* UPOE+ (802.3bt) + 25G/40G Uplink on Supervisor
PLATFORM + 25G/40G NM Uplinks + High Density mGig
+ High Density mGig + 256 VRFs (User VNs)
+ 360G stack bandwidth + 256 VRFs (User VNs)
+ Macsec-256 HIGH AVAILBILITY
+ 60W UPOE HIGH AVAILIBILITY + Redundant Supervisors
PLATFORM + 40G*/10G fixed Uplinks + eFSU, GIR + Stackwise Virtual support
+ 160G stack bandwidth + mGig support* + StackPower
+ Macsec-128 + In-Service Software Updates
+ 256 VRFs (User VNs) + Flexible Power redundancy
+ 30W Full PoE+ 1G FIBER SWITCH
+ mGig support* HIGH AVAILIBILITY + Collapsed Access use case 10G FIBER LINE CARDS
+ 4 VRF (User VNs) + eFSU, GIR + High density 10G & 1G Fiber use cases
* Roadmap

Entry Point for

intent-based networking Choose Catalyst 9300 or 9400 for innovations in intent-based networking

SD-Access, Fabric Edge, Full SD-Access, Fabric-in-a- Wired Assurance, ETA, On-box App HA, Hot Patching,
Full NetFlow Box, Embedded wireless SD-Access, AVC MacSec256 Hosting Stackpower,
controller UPOE+
 Catalyst 9200 Catalyst 9200L

35.2 cm 28.8 cm

1RU 1RU

Catalyst 9200 Addresses the Compact and Tight Rack Space Deployments
Cisco Catalyst 9200 Series with 32 VNs
addresses 3650 mini SDA use cases with shallow depth requirements

• 24 and 48 port PoE+ SKUs

24-port – C9200-24PB
• Transition Catalyst 3650
mini
• C3650-24PDM
• C3650-48FQM
• Common with C9200
48-port – C9200-48PB • Supports same optics
• Common uplink modules
• Common power supplies,
fans, cables
• Cannot be stacked with
existing C9200 with 4 VNs
• C9200 Chassis Dimension
Modular Higher-efficiency AC and • 1.73 x 17.5 x 13.8
Modular uplinks
fans power supplies
• C9200 Chassis + FEP +
FRU Fan
Fan Dimensions (HxWxD):
FRU Uplinks Platinum Platinum
Rated • 1.73 x 17.5 x 15.4
Rated

600W 1000W
4x 1G 4x 10G
Priced in line with C3650
Mini
 Software and platform feature comparison
Intent-based networks for everyone
Fixed/Stackable Modular

Features C9200L C9200 C9300L C9300 C9400

Fixed/Stackable Modular
24P/48P x 1G √ √ √ √ √

√ Features C9200L C9200 C9300L C9300 C9400

√
√ (12xmGig + (Up to
mGig (12xmGig + √* √* 36x2.5G, Full L3/L2 √ √ √ √ √
24xmGig
36x1G) 48x5G),
per slot)
24xmGig Full Netflow √ √ √ √ √
PoE+ √ (Full) √ (Full) √ (Full) √ (Full) √ (Full) Patching √ (cold) √ (cold) √ √ √
√*
UPOE × × √ √ √ √ √ √ √
(mGig only) MACSec (256-bit)
(128-bit) (128-bit) (256-bit) (256-bit)
PoE Budget per Software
1440W 1440W 1800W 1800W 4320W NSF × × √ √ √
slot/1RU
Platform
Power Redundancy 1+1 1+1 1+1 1+1 N+N/N+1 ETA × × √ √ √

FRU PS and Fans √ (Only FRU PS) √ √ √ √ SD Bonjour × × √ √ √

FRU Uplinks × √ × √ √ ERSPAN × × √ √ √
1G/10G uplinks √ √ √ √ √
AVB, PTP 1588 × × √ √ √
40G uplinks × × √* √ √
User VNs √(1) √(4) √(256) √(256) √(256)
25G uplinks √ √* × √ √
Fabric Enabled Wireless × √ √ √ √
Stacking 80G 160G 320G 480G 480G
√ √ √
Stackpower × × × √ × SD-Access 9800 Embedded Wireless × ×
(50APs) (200APs) (200APs)
Netconf/Restconf APIs √ √ √ √ √ Fabric in a Box × × √ √ √

ZTP, PnP Agent

√
√ √ √ √ Extended Node × × √ √ √
(Only PnP Agent)
Fabric, Network, Client √ √ √ √ √
Programmability Streaming Telemetry √ √ √ √ √

Guestshell/Python Assurance Application √ √ √ √ √

× √ √ √ √
Scripting
√(Full √ (Full √(Full √ (Full* On roadmap
√ (Full
AVC
Application Hosting × × √ (limited) √ √ NBAR) NBAR) NBAR) NBAR) NBAR)
Catalyst 1000 Series
Introducing Cisco Catalyst 1000 Series
Enterprise grade sized for small deployments

Simplicity Flexibility Security

Reliable, easy-to-manage Compact, fanless design makes Quickly adopt new technologies
technology that lets you focus it easy to deploy in workspace while maintaining security over
on your business. environment. your network.

Set, forget and never regret

Introducing Cisco Catalyst 1000 Series Switches
Next generation of simple access switches for small deployments

8 and 16 Port Models 24 and 48 Port Models Cisco® Catalyst®

1000 Series highlights
2x 1G SFP uplinks 4x 1G SFP uplinks
Fanless*, compact form factor

Cisco IOS® Software

16 Port Switch 16 Port Switch with External PS 24 Port Switch • 48 Port Switch Over The Air (OTA) with Bluetooth
• Data • Data • Data, • Data,
• Partial PoE (120W) • Partial PoE (120W) • Partial PoE (195W) • Partial PoE (370W)
• Full PoE (240W) Perpetual PoE
• Full PoE (370W) • Full PoE (740W)

Managed with CLI or WebUI

2x 1G SFP/RJ45 copper uplinks (Combo) 4x 10G SFP+ uplinks
Single IP management

Advanced Layer 2 features

8 Port Switch 8 Port Switch with External PS 24 Port Switch 48 Port Switch
• Data, Partial • Data • Data, • Data Trustworthy Solutions
• PoE (67W) • Partial PoE (67W) • Partial PoE (195W) and • Partial PoE (370W)
• Full PoE (120W) • Full PoE (120W) • Full PoE (370W) • Full PoE (740W) IPv6 First Hop Security

Environmental resiliency

Security Simplicity Flexibility

* All except 24 Port Full PoE and 48 Port models

Single IP device management
Ease of device management

Aggregation
switch

• Manage up to eight
switches through single IP
• Mix and match models
• Management can be done
over 10G SFP+/1G
SFP uplinks
Ease of device management

Application Details

• Management over • Supported on all SKUs

standard fiber – Longer • 10G SFP+/1G SFP configured as for device management (up to two)
distances
• Eight units managed via single IP
• Unit functions as a single
switch – Unified • One unit functions as master
management and control • Single IP address, SNMP agent, configuration etc.
• Holds configuration of the unit
• New unit can automatically join – Auto upgrade of firmware
• Mix between SFP/SFP+ is not supported
Topology – fiber ring, SFP/SFP+ uplink
10G/1G fiber
Aggregation switch/
Multigigabit switch
Configure device for management
Switch1(config)#switch 1 hstack-port 1 tenGigabitEthernet 0/1
Do you want to continue? [confirm]
New horizontal stack port will be effective after next reload
Network port Switch1(config)#switch 1 hstack-port 2 tenGigabitEthernet 0/2
Do you want to continue? [confirm]
New horizontal stack port will be effective after next reload

Status of port prior to reload

Switch1#show switch hstack-ports
Horizontal stack port status:
Te ports Stack port Operational status Next reload status Media type
------- ---------- ---------------- ---------------- ----------
Te0/1 NA N/W Port Stack Port Fiber
Te0/2 NA N/W Port Stack Port Fiber

Status of port after to reload

Switch1#show switch hstack-ports
Horizontal stack port status:
Network port Te ports Stack port Operational status Next reload status Media type
------- ---------- ---------------- ---------------- ----------
Te0/1 1 Stack Port Stack Port Fiber
Te0/2 2 Stack Port Stack Port Fiber
Monitoring devices
C1K-1#show switch detail C1K-1#show switch stack-ring speed
Switch/Stack Mac Address : 6c5e.3b94.3c00
H/W Current
Switch# Role Mac Address Priority Version State Stack Ring Speed : 10G
---------------------------------------------------------- Stack Ring Configuration: Full
*1 Master 6c5e.3b94.3c00 1 0 Ready Stack Ring Protocol : FlexStack
2 Member 6c5e.3bb8.6d80 1 0 Ready
C1K-2#show switch stack-ring speed

Stack Port Status Neighbors

Switch# Port 1 Port 2 Port 1 Port 2 Stack Ring Speed : 1G
-------------------------------------------------------- Stack Ring Configuration: Half
1 Ok Ok 2 2 Stack Ring Protocol : FlexStack
2 Ok Ok 1 1

C1K-1#show switch stack-ports C1K-1#show switch hstack-ports

Switch # Port 1 Port 2 Horizontal stack port status :
-------- ------ ------ Gi Ports Stack Port Operational Status Next Reload Status Media Type
1 Ok Ok --------- ------------ -------------------- ------------------- ---------
2 Ok Ok Gi1/0/25 1 Stack Port Stack Port Fiber
Gi1/0/26 2 Stack Port Stack Port Fiber
Gi1/0/27 NA N/W Port N/W Port Fiber
C1K-1#show switch neighbors Gi1/0/28 NA N/W Port N/W Port Fiber
Switch # Port 1 Port 2 Gi2/0/25 1 Stack Port Stack Port Fiber
-------- ------ ------ Gi2/0/26 2 Stack Port Stack Port Fiber
1 2 2 Gi2/0/27 NA N/W Port N/W Port Fiber
2 1 1 Gi2/0/28 NA N/W Port N/W Port Fiber
SMB Enterprise
UADP & IOS-XE
Architectural simplicity with powerful innovations
Investment Protection
Flexible Pipeline

Enhanced Scale/Buffering
Multicore resource share Embedded
CPU

1/2.5/5/10/40G
100GE 6MB
Supports Different
Bandwidth Packet Buffer
Speeds

16K Flexible SDM Templates

Netflow Records Programmable Modules Flexibility

160/80G Up to 2X to 4X
Stacking Capacity forwarding + TCAM
Cisco IOS XE Lite:
Powering the Catalyst 9200 Series switches
Optimized for Catalyst 9200 Series switches Consistent Light

• Same code base of • Optimized for lower memory on

Cisco IOS XE Catalyst 9200 Series switches
• Reduced image size by 50%

Optimized Modern
Cisco IOS
XE Lite • Removed unused libraries • Model-driven programmability
• IOSd optimizations • Streaming telemetry
• Bash Optimizations • Network monitoring
Cisco IOS XE

Highly available

• Modularized feature block

Same image across all Catalyst 9200 Series switches • Status Recovery
• Failure Isolation
Cisco IOS XE Release Schedule
3 Releases Annually (every 4 months)

16.6.1 16.9.1 16.12.1 17.3.1

SLR2 SLR1 SLR2 SLR1 SLR2 SLR1 SLR2

CY17 CY18 CY19 CY20

Extended Maintenance Release (“EMR”) – 36 months support.

Recommended for wide-scale production deployments

Short Lived Release (“SLR”) – 12 months support

Cisco IOS XE Maintenance Rebuilds – Cisco and customer found defects
Restricted Rebuilds – Customer found detects + PSIRTs
Release Schedule PSIRT Rebuilds – PSIRTs only

16.5.1 16.5.2

16.6.1

16.7.1

16.8.1

16.9.1

16.10.1

16.11.1

16.12.1

CY17 CY18 CY19 CY20 CY21

High Availability
StackWise-160/80 with SSO C9200/9200L

Up to 8
member stack

Stacking Kit Ordered

• StackWise-160 supported on all modular Catalyst 9200 Series Separately

switching models
• StackWise-80 supported on all fixed Catalyst 9200 Series
switching models Stack Adapters Stacking Cable

• Same Cisco IOS XE and license required on all members

Stacking cable comes with three options:
50cm, 1m, 3m

*Mix stacking not supported between StackWise-160 and StackWise-80

Hardware Redundancy
Silver Platinum
Platinum
Rated Rated
Rated

125W 600W 1000W

For 1G Supported only on 24 port Supported only on 48 port
SKU’s PoE+ SKU’s PoE+ SKU’s

Thermal Can operate Hot Front-to- Non-stop Hot Easy field Redundancy
Sensors with Swappable back airflow power in 1 Swappable replacement in combined
individual RU mode
Detect fan failure Insert and Irreversible Insert and of failed PSU
ambient Remove Fan flow Optional Remove PS PoE budget
temperature Up to 45 °C on go power on go gets doubled
and adjust ambient redundancy with second
fan speeds temperature with dual PS
, no need to supplies
RMA the
box
Patching
SMU is an emergency point fix positioned for
Cold Patching: Install of a SMU will require a system
expedited delivery to a customer in case of a network
reload. It is traffic impacting.
down or revenue affecting scenario.

Commit Patch
Reload
Add Patch

Activate Patch
Mission-Critical Resiliency across the portfolio
Your business stops if the network is down
UADP 2/3

Cisco Catalyst 9600 Series Cisco Catalyst 9400 Series

1 ASIC, 1 Image
Cost of only one hour of
downtime to an average
enterprise > $300,000**

Cisco Catalyst 9500 Series Cisco Catalyst 9300/L Series

Architecture Operating system Platform

In-Service Software Upgrades Hot Patching Redundant Supervisors
• Upgrade software with • No downtime for bug fixes (no reboot) • For Modular Switches with NSF/SSO
minimal to no traffic loss Graceful Insertion/Removal • Quad-SUP RPR New
StackWise® Virtual • No downtime when device in maintenance Redundant Fan and Power Supplies
• Redundant system for xFSU on C9300/L Stack New • In case of any hardware failure
high availability, simplified configuration
• <30 sec traffic downtime - Stack upgrade
** Based on industry reports from Gartner and ITIC

Eliminate downtime with high availability designed at every level

40
Security
 Trustworthy solution
Catalyst 9200 Series switches provides strong resistance against today’s
threats
Design/ Plan/ Service/end
Source Make Quality Delivery
develop order of life (EOL)

PnP SUDI Physical security practices + Security technology innovations + Logical security processes Secure boot
support Boot sequence
Two-way trust check

Integrity
Image signing
Authentic OS
verification
Malware protection

Hardware Runtime
authenticity defenses
Genuine hardware 64-bit ASLR

Cisco trustworthy solutions use industry best practices to help ensure full development lifecycle integrity and end-to-end security
MACsec-128
Securing the network via link encryption

Encrypt Encrypt Encrypt

MACsec MACsec MACsec

Downlink Uplink Downlink

Decrypt Decrypt Decrypt

MACSEC Catalyst 9200 Catalyst 9200

• Packets are encrypted on egress, decrypted on ingress modular SKU fixed SKUs
• Offers line-rate encryption on all ports and speeds (1G, 10G, 25G,
40G) Switch to 128 Bits SAP Network Network
• Transparent to all upper-layer protocols Switch Essentials Essentials

• Supports switch-to-switch and switch-to-host MACsec 128 Bits MKA Network Network
Essentials Essentials
• 128-bit MACsec capable between switches
Host to 128 Bits MKA Network Network
• Manual or 802.1X modes supported Switch Essentials Essentials
 Cloud and Branch Security
Umbrella Security Solution Integrated on the C9K

Registration & Policy Enforcement Enabling DNSCrypt Splitting of Traffic

Visibility into your network

Catalyst 9200

Detect threats automatically

Deploy and manage easily

Direct Cloud Access to optimize bandwidth

Direct Internet Access for

trusted Cloud Apps

PC Mac
DNS Queries for
Trusted Cloud Apps
Protected by Cisco
Linux Mobile
Umbrella

Cable Modem

MSP Router

Untrusted Internet
Traffic tunneled through
HQ
Netflow & Application
Visibility and Control
Full flexible NetFlow
Key Differences – Catalyst 9200 Series switches vs Catalyst 2960X/XR Series switches

Catalyst 9200 Series switches Catalyst 2960X/XR Series switches

✓ Both ingress and egress ✓ Only ingress

✓ 16K Flows/ASIC ✓ 8K Flow/ASIC
✓ Match on Layer2 VLAN header as well ✓ No match on Layer2 VLAN Header
Layer 2, IPv4 and IPv6 capable
4 banks in ASIC, 2 ingress, 2 egress
Ipv4 flows: 8k per direction
Layer 2 and Ipv6 flows: 4k per direction

Ingress and Egress FnF supported on all ports, VLANs

Application Visibility and Control
Granular Detection, Advanced Monitoring & Business Logic Based Policies

Know Your Applications Monitor Your Applications Control Your Applications

Granular App Detection Fault Isolation, Troubleshooting Prioritized Applications,

Encrypted Application Performance Assessment Bandwidth Management
QOS
Key differences – Catalyst 9200 Series switches
vs Catalyst 2960X/XR Series switches
Catalyst 9200 Series switches Catalyst 2960X/XR Series switches

✓ MQC ✓ MLS QoS

✓ Trust by Default ✓ Untrust by Default
✓ 8 Queues per Port ✓ 4 Queues per Port
✓ 6 MB Buffer per ASIC ✓ 4 MB Buffer per ASIC
✓ HQoS – 2 Level Hierarchical Policy ✓ No HQoS
PoE Innovations
Cisco innovations in PoE deliver a robust low
voltage infrastructure

2-event
Perpetual PoE Fast PoE
classification
• Fast power negotiation • Uninterrupted PoE • Bypasses IOS control
without LLDP power during control plane boot
• Physical layer plane reboot • Restores power to PD
negotiation < 1s within 30 sec of power
resumption
Programmability and
Automation
Simplify network operations
open-standards APIs
Day 0 Day 1 Day N
Device onboarding Model-driven configuration mgmt Monitoring, analytics, SW management

PXE Model-
Yang data
ZTP PnP driven
models
Telemetry

Automatic device bring-up using Open-source tool support for Model-driven telemetry for monitoring and
industry-standard interface configuration and provisioning analytics;On-Box python

Plug in to operational in minutes

Day 0 Provisioning

Turn Key Solution Do it Yourself Device by Device Device by Device

Zero Touch
Plug n Play PXE Boot Day 0 Wizard
Provisioning
✓ Use Cisco DNA Centre ✓ Any workflow ✓ Boot from bootloader ✓ Don’t need an expert on site
✓ Complete UI Workflow ✓ Self Managed Certs ✓ Cheaper ✓ Cheaper
✓ Automated certificate ✓ Option 67 ✓ Less resources ✓ Less resources
✓ DHCP/DNS/Cloud discovery ✓ Script execution using
Guestshell
Large Scale Deployments Medium Scale Deployments Small Scale Deployments Small Scale Deployments
Manageability
 Active switch
UP Ports

Switch Stack
Standby switch
POE status

DNAC WebUI
Part of the Larger Network Small Branch - CPC Migration

Catalyst 9200 can be Managed multiple ways

Embedded WebUI
Build Troubleshooting
Ease of Access Intuitive Interface Switch View
configurations made fun
Switch view

Active switch
UP Ports

Switch Stack

Standby switch
POE status
Troubleshooting made fun !!
Check the Core files

Ping and traceroute View Syslogs

 Cisco Catalyst 9300 Increased Scale Platform
Fixed access optimized for Media Distribution and IP Storage Networks

Cisco Catalyst 9000

leadership
UADP 2.0 XL
Cisco IOS® XE Software
2x C9300-48UB: 48 Port 1G switch with UPOE Cisco SD-Access
Buffers Expanded x86 CPU and containers
Packet Buffers Encrypted Traffic Analytics (ETA)
AES-256/MACsec-256

2-4x C9300-24UXB: 24 Port Multigigabit switch with UPOE Trustworthy systems

Cisco StackWise-480
Scale
Increased IEEE1588 and AVB*

Network Scale NBAR2

C9300-24UB: 24 Port 1G switch with UPOE Perpetual/Fast PoE

Model-driven programmability
Patching/GIR
Modular Higher-efficiency AC New
Modular uplinks Platinum Streaming telemetry
fans and DC power supplies rated

StackWise-480

8x 10G 2x 40G 4x Multigigabit 4x 1G 2x 25G 315W AC 715W AC/DC 1100W AC Stackpower

61
Catalyst 9300 Series scale differences
Feature C9300 w/ Increased Scale C9300
Routes supported 64k 32k
MAC addresses 64k 32k
STP Instances 1024 128
Total switched virtual interfaces (SVIs) 4094 2048
Multicast Routes 16k 8k
Total buffer per ASIC Core 16 MB 8 MB
QoS TCAM 18k 5k
ACL TCAM 18k 5k

64 MB (C9300-24UXB) 32 MB (C9300-24UX)
Total Buffer per Platform 32 MB (C9300-48UB) 16 MB (C9300-48U)
32 MB (C9300-24UB) 16 MB (C9300-24U)
 Cisco Catalyst 9300 Series
1G Fiber models - Expanding to FTTD and 1G fiber aggregation applications
24-port – C9300-24S • 24 and 48 port SFP SKUs
• Transition Catalyst 3850 1G
SFP
to Catalyst 9300 1G SFP
• Wire-speed, non-blocking
performance
• Seamlessly integrates
48-port – C9300-48S with Cisco Catalyst 9300
Series copper
• Supports same optics
• Common stacking –
StackWise-480
• Common power stacking –
StackPower
• Common uplink modules
Modular Higher-efficiency AC and
Modular uplinks • Common power supplies,
fans DC power supplies fans, cables

Platinum
Fiber to the desktop
rated

1G fiber aggregation

8x 10G 2x 40G 4x Multigigabit 4x 1G 2x 25G 315W AC 715W AC/DC 1100W AC

Collapsed access
Cisco Catalyst 9300 Series Switches
Introducing 90W UPOE+ Models
• 24- and 48-port Copper SKUs
24-port 1G Copper: C9300-24H • Wire-speed, non-blocking
performance
• Seamlessly integrates
with Cisco Catalyst 9300
Series copper
• Supports same optics

48-port 1G Copper: C9300-48H • Common stacking –

StackWise®-480
• Common power stacking –
StackPower
• Common uplink modules
• Common power supplies,
fans, cables

Modular Higher-efficiency AC Platinum

Modular uplinks
fans and DC power supplies rated

PoE/PoE+/UPOE/UPOE+
2880W max power budget:
• 32x 90W ports
8x 10G 2x 40G 4x Multigigabit 4x 1G 2x 25G 315W AC 715W AC/DC 1100W AC • 48x 60W ports

64
 Catalyst 9300 Stacking Support
Modular Uplink Increased Scale Fixed Uplink
C9300 (non –B) SKUs C9300-B SKUs C9300L SKUs

8 switches

8 switches
8 switches

Stacking supported among C9300 SKUs Stacking supported among C9300-B SKUs Stacking supported among C9300L SKUs only

Mixed stacking is not supported between above SKUs

 Catalyst 90W UPOE+
The Industry’s Highest UPOE+ scale to power latest intelligent devices
Expanded Portfolio Investment Protection with 90W UPOE+ Customer Success

C9400-LC-48UX 30 - 60 Watt devices 90 Watt devices

New
Existing Devices
Devices “90W enables… office of the future by
letting me daisy-chain… light fixtures …
flexibility …while saving money …We've
seen a 60% cost savings …"
- Eric Madeson, SVP Head of Infrastructure
Smart Wall USB-C PTZ UHD 4K Daisy chained
Lighting switch dongles Cameras Displays Light arrays

• Up to 260* x 90W concurrent power

"90W offers flexibility for our
…manufacturing space without having to

Catalyst
• PoE HA with dual supervisors on C9400

9400
rely on electricians every time ... I can
Catalyst 9400 • 48 x 1G Ports per line card
power my lights, put in new digital
displays…anything needed.” -Ron Grohman,
Sr. Network Engineer

• Up to 8 x 3200W AC/DC PSU

• Perpetual PoE on C9300 standalone or Stack “We are making the system intuitive and
Catalyst

smart… the sky is the limit … Network

9300

infrastructure should be taken seriously… as

• 48/24 x 1G ports per 1RU the fourth utility” -Farukh Aslam, President,
Sinclair Holdings, LLC
• Dual Power and Stackpower support
Catalyst 9300 *10-slot chassis w/o power redundancy. Subject to available PoE power budget in chassis

Industry’s first Enterprise Modular and Stackable switches with 90W UPOE+ 66
 Cisco Catalyst 9600 Series
Chassis

Dual-serviceable 4 line card slots

fan tray

2 supervisor slots
Built-in RFID (dedicated)

6.4 Tbps per slot

Blue Beacons from each
(system/fan tray, sup, supervisor slot
line cards)

Dimensions
Modular power (HxWxD inches)
supplies 13.95 x 17.4 x 16.1
(8RU)
 IOS-XE 17.1.1
Cisco Catalyst 9600 Series
mGig Line Card – C9600-LC-48TX

For collapsed core deployment and connectivity to application servers NEW

• All 48 ports can support 10G/5G/2.5G/1G/100M

• Line rate on all ports. Any port, any supported speed.
• No PoE
• Port reference is “Ten<slot#>/0/<port#>” and port speed is auto (default).
 IOS-XE 17.2

C9600 Quad SUP RPR – StackWise Virtual

SSO

StackWise-A StackWise-S ICS StackWise-A

RPR ICS ICS StackWise-S ICS

Chassis-1 Chassis-2 Chassis-1 Chassis-2

• Active supervisor in chassis-2 become StackWise Active

• Warm standby supervisor in chassis-1 continue the boot process to become StackWise
standby while the line cards in chassis-1 get reset

RPR: Route Processor Redundancy

SSO: Stateful Switchover
StackWise-A: StackWise Virtual Active
StackWise-S: StackWise Virtual Standby
ICS: In-chassis Warm Standby
Cisco 9600 Series
1G Fiber Line card – Catalyst9600-LC-48S

• All 48 ports support 1G

• Hardware capable of 10M*/100M*
• Line rate with 1G (any packet size with 1G)
• Port reference is always ”Gig<slot#>/0/<port#>”.
• Fiber to the Desktop Ready Line card

* Roadmap
IOS-XE Amsterdam 17.2.1
March 2020
 IOS-XE 17.2.1 Key Feature Summary

▪ MTU 9216 on C9400

▪ Breakout Support on 9600 Routing/ ▪ Hierarchical VPLS
▪ Support for Multiple Admin VLAN in REP Platform ▪ VPLS IRB*
▪ Loop Detection Guard
MPLS/ ▪ EVPN to MPLS Handoff via Spine
and Infra
▪ Flexible SDM Template* BGP EVPN Border Role
▪ gPTP/ PTPv2 support on Ether-Channel* ▪ VxLAN Tunnel and Perforrmance
▪ gPTP/ PTPv2 support on Cat9400* Run, Grow Enhancement
and
Transform
▪ Flexlink+ with VLAN Load Balancing the Business
▪ Quad Sup Support (RPR) – 9600 SVL ▪ NAT – VRF Aware
▪ StackWise Virtual BUM traffic Optimization ▪ Factory Reset – DoD Standards
▪ xFSU Standalone – LACP, MAB, Dot1x, High
Web Authentication Security
Availability
▪ xFSU Stacking - 9300/9300L*

* - Limited Availability with Direct support from BU not from TAC

 Simplified Factory Reset 17.2.1

• Restores to Factory settings

• Removes all changes from factory
settings
C9300# factory-reset ?
• Clears: all All
✓ Configuration factory reset operations
boot-vars Reset user added
✓ Log files boot variables
config Reset config
✓ Boot variables secure 3-pass* Erases all the content
✓ Credentials from the device as per DoD 5220.22-M standard

✓ Images stored on flash

✓ Secure storage and keys
✓ As per DoD 5220.22-M standard *

* Note: secure 3-pass was added in 17.2.1

Extended Fast Software Upgrade on Standalone
17.1.1

#Install add file image activate reloadfast commit

< 30 seconds of
traffic impact
Software Defined
Access
 Fabric Edge Node for SD-Access
• B – Border Node NCP
• C – Control Plane Node Fabric Edge Nodes – A fabric device that
• E – Edge Node ISE NDP connects wired endpoints to the SD-Access
• X – Extended Node Cisco DNA Fabric
Center
• - EWLC on a Switch. Provides first-hop services for Users/Devices
• FiaB – Fabric in a Box connected to a fabric
• OTT – Over the top Supports:
• LISP
B B
• VxLAN

C Scale:

SKUs Number of VN’s

SD-Access
9300 256
Fabric
Edge Nodes
Fabric 9300L 256
9200-PB 32
9200 4
9200L 1
Cisco DNA Premier TCO Comparisons
Q4 Promotion
 Switching: Security Lead Motion vs. DNA Premier
3Y TCO Comparison
Before Promotion With Promotion 92%
3YR TCO Savings!!
$10,398
List Price USD

Stealthwatch 3Y
$9,190
100 Flows
3YR TCO -92%
$2,900
List Price USD

3YR TCO
Stealthwatch 3Y
$850
$2,297 List Price USD
25 Flows

ISE Base/Plus 3Y
50 Endpoint Sessions $1,208 Incremental StealthWatch – 100 flows
ISE Base/Plus 3Y DNA Premier $850
$603 ISE - 50 endpoint sessions
25 Endpoint Sessions 3Y

ISE + Stealthwatch ISE + Stealthwatch DNA Premier – Incremental

A-La-Carte A-La-Carte (per Switch)

DNA Premier: More Value at Lower Price

Switch with Stealthwatch Lead Motion
3Y TCO Comparison

3YR TCO
$24,010 Savings!!
List Price USD

3YR TCO
Stealthwatch $9,190
$15,670
3Y List Price USD

Stealthwatch – 100 flows

ISE - 50 endpoint sessions $1,208 Extra Value!

DNA Advantage DNA Premier $9,190 Extra
$3,770 $4,620 Stealthwatch – 100 flows
3Y 3Y Value!
DNA Advantage DNA Advantage

C9300-48U-A C9300-48U-A
$11,050 $11,050
(switch only) (switch only)

Network Advantage Network Advantage

C9300 with DNA Advantage C9300 with DNA Premier

and ISE Base/Plus A-La-Carte

C9300 Switch with DNA Premier: More Value at Lower Price

Large IB up for refresh with C9K + Cisco DNA
Catalyst 3850 (excluding Fiber SKUs) Catalyst 9300
End of Sale in 2020

Catalyst 4500E (excluding Sup9-E)

Catalyst 9400
Catalyst 4500X Series
Catalyst 9500
Catalyst 6880 and 6840 Series

Catalyst 6500* (6/9/13 slots Chassis/Sup2T) Catalyst 9600

* Currently no plans to EoS Catalyst Modular C6800 Series

10/31/2019 10/30/2020 10/30/2021 10/30/2023 10/31/2025

External End of Sale End of SW Last Day of

End of PSIRT Support
Announcement Date Maintenance Support