Welcome to the Cisco Networking Professionals Ask the Expert conversation. This is an opportunity learn how Cisco AXP enables you to integrate the branch network, applications, and IT infrastructure with Cisco experts Srinivas Kotamraju and Anurag Gurtu. Srini is a solutions marketing manager in the network systems marketing team focusing on the Cisco integrated services router platform at Cisco. He has over 10 years of experience in the networking industry working in various capacities (engineering, business development, marketing) at Google Inc, Bell Labs, and Cisco Systems. He holds a master of business administration degree from University of California Berkeley, a master of computer science from University of Minnesota, and a bachelor of technology from Indiana Institute of Technology. Anurag is a technical marketing engineer currently focusing on the Cisco integrated services router platform at Cisco. He brings in over five years of experience in network and security. Prior to Cisco he worked with nCircle Network Security and Sun Microsystems as a solutions architect responsible for software design & development. He holds a masters in computer networks from University of Southern California, a bachelors in electrical engineering from Pune University and has obtained CISSP certification.
Remember to use the rating system to let Srini and Anurag know if you have received an adequate response.
Srini and Anurag might not be able to answer each question due to the volume expected during this event. Our moderators will post many of the unanswered questions in other discussion forums shortly after the event. This event lasts through February 13, 2009. Visit this forum often to view responses to your questions and the questions of other community members.
AON is very much like AXP except that it ships with integration/middleware software in addition to a version of Cisco Linux.
Unlike AXP, AON does not have a virtualized operating system. So all applications/configurations share the same runtime environment. The only way to virtualize the deployment is to deploy additional hardware specific to that application/configuration.
In addition, AON is a much more closed environment from a development perspective. While developers can write code and deploy it to AON, only Java and C is supported, and the environment is sandboxed off preventing developers from installing packages/utilities directly into the Linux operating system. In fact, certain 3rd party/open source packages (e.g., hybernate) simply will not run at all on AON because AON enforces a set of Java policies that restrict some functions the java app. code can perform on the system.
Developers must basically re-write their applications to run within the "containers" provided through the AON API/SDK. E.g. unlike AXP, you can't just package up a Java app running on say, Tomcat, and deploy it to AON. Instead, you'd need to take your Servlet/JSP/Bean code and re-write it so that it could live within either a "adapter" runtime environment (basically a protocol listener/daemon) or inside a "bladelet" which would get invoked at runtime whenever a message is processed that utilizes a flow that incorporates that bladelet code.
The other main difference is that AON runs on multiple hardware form factors in addition to NMEs - i.e., a 1U low cost appliance and a 2U high performance 8 core appliance. So it supports both branch deployment models as well as deployment in the data center.
In addition, AON does not really have much capability in terms of accessing/configuring IOS. Some interaction can be done with the router by programmatically telnetting/sshing into the router and issuing commands, but there is no real IOS API available. The only thing that makes it truly "network aware" is that it supports WCCP for clustering out of the box as well as some support for processing and framing promiscuous packet traffic re-directed through the SPAN port of another router/switch.
So AON is really like an integration server or middleware application running on something like AXP, but without the IOS APIs or the virtualized operating system.
Will it be possible to manipulate the IP header fields in transit packets, which are forwarded by the AXP?
Yes you can. You can intercept the packet at the router and redirect it to AXP module. Once the packet is received by AXP module your application can grab it from RAW Socket, do packet manipulation and then put the packet back on the wire.
We have application management tools provided by various vendors, however the default application management is supported using our extensive CLI framework which is extensible.
I'd like to know the key differences between ASA and PIX firewall systems, besides the antiquity of the first.Which is best whatsoever?
This forum is dedicated to AXP related questions.
However here are the links to ASA: http://www.cisco.com/en/US/products/ps6120/index.html and PIX: https://www.cisco.com/en/US/products/sw/secursw/ps2120/index.html
From AXP module you issue a software install add url command along with specifying location of FTP server where your application package resides.
e.g. software install add url ftp://machine_name/package_name.pkg username xxxx password yyyy
Yes you can use iptables on AXP. They are not preinstalled. However you can port the binaries and package prebuilt Kernel modules available to the developers.
I have small network wich is connected Cisco router 2801,and I need to controll the Banwidth to each computer in the network and to assign specific banwidth Downlink and Uplink to each computer, i can't see that the 2801 router is supporting this feature.
Please advice me if the 2801 router can support this feature, or advice me any other Cisco product that can support this feuture.
Please visit the following link: http://www.cisco.com/web/partners/pr46/axp/axpp-dev-process.html
I would highly suggest that you should also take a look at the AXP contest URL: www.cisco.com/go/thinkinside
You can download AXP Virtual Blade and host it on your laptop. Hence wouldn't need a router. However if you want to host your application on physical hardware then you will need a router.
URL from where you can download AXP Virtual blade is as follows: http://developer.cisco.com/web/axp/docs
You will need to register with Cisco, only then will you have permissions to download the file.
Interesting question. In current release of AXP no, however it will be available in upcoming release.
Please up to what JDK version is supported for developing on the Cisco ISR? Also which JVM vendor's JDK is being used? Sun? IBM?
You as a developer can install any version of JDK. AXP comes with IBM J9 (JVM), however that shouldn't matter since once you install your JDK (IBM / SUN, etc) and set JAVA_HOME, you should be all set.