2015/6/9

1

SDN for Future Internet: part 2

Jun Bi

Tsinghua University

2015 Spring：Future Internet Class

2015.6.9Outline

The Driving Force for Transforming the Network Architecture

Considering the "Genes" of the Success of the Internet

Software Defined Networking (SDN)

SDN Has Attracted High Attention from the International Academic Society

What's SDN？

SDN Standards

SDN Research Overview2

Outline

Software Defined Networking (SDN)

SDN is Hot!

What's SDN？

Four Important Relations about SDN

SDN Standards

SDN Research Overview

3

• 6Wind• A10 Networks• Active Broadband• ADVA Optical• Alcatel-Lucent/Nuage• Alibaba• Aricent Group• Arista• Beijing Internet Inst.• Big Switch Networks• Broadcom• Brocade• Centec Networks• Ceragon• China Mobile• Ciena• Cisco• Citrix• CohesiveFT• Colt• Coriant• Corsa Technology• Cyan• Dell/Force10• Deutsche Telekom• Ericsson• ETRI

• Extreme Networks• F5 / LineRate Systems• Facebook• Fiberhome Technologies• Freescale Semi• Fujitsu• Gigamon• Goldman Sachs• Google• Hitachi• HP• Huawei• IBM• Infinera• Infoblox/FlowForwarding• Intel• Inst. for Info. Industry• Intune Networks• IP Infusion• Ixia• Juniper Networks• KDDI• Kemp Technologies• Korea Telecom• L-3 Comms-East• Lancope• Level3 Comms

• LSI• Luxoft• MarvelI• MediaTek• Mellanox• Metaswitch Networks• Microsoft• Midokura• NCL Comms K.K.• NEC• Netgear• Netronome• Netscout Systems• Nokia Siemens Netw.• NoviFlow• NTT Communications• Optelian• Oracle• Orange• Overture Networks• Pica8• Plexxi• Procera Networks• Qosmos• Rackspace• Radware• Riverbed Technology

• Samsung• SK Telecom• Spirent • Sunbay AG• Swisscom• Tail-f Systems• Tallac • Tekelec• Telecom Italia• Telefonica• Tellabs• Tencent• Texas Instruments• Thales• Tilera• TorreyPoint• Transmode• Turk Telecom/Argela• TW Telecom• Vello Systems• Verisign• Verizon• Virtela• VMware/Nicira• Xpliant• Yahoo!• ZTE

ONF Members

ONF Members ONF OrganizationBoard

TAG

Chip Makers Advisory Board

WG/DG

Research Assocaite

6

2015/6/9

2

ONF WG Extensibility WG -ＨP/VMare

Config & Management WG -Microsoft/NTT

Testing & Interop WG -Ixia/IU

Architecture & Framework WG -NEC

Forwarding Abstractions WG -Brocade

Migration WG (2013 Apr） -Huawei

NBI WG (2013 Oct） -HP/Huawei

Wireless & Mobility WG (2013 Oct） -Huawei

Optical Transport WG -Ｃiena

Market Education Committee -Ｃiena/Netronome

Two Member’s Work Days

7

ONF DG Security DG -Goldman Sachs

Carrier Grade SDN DG

Layer 4-7 DG (ETSI NFV)

East-west Interface

8

Mature Industrial Standard OpenFlow

(1) The control plane and data plane are

separated.

(2) Protocols run on an independent

controller.

(3) A switch is abstracted into the

processing procedures of multiple flow

tables (matching + action).

(4) External protocols interact with the

device through the OpenFlow protocol

running on the controller.

9

OpenFlow1.0 Flow Table

OpenFlow1.3 Table

Packets are matched against multiple tables.

OpenFlow Standards- EXT WG

OpenFlow 1.0.0 2009.12.31 OpenFlow 1.0.1 2012.6.7 OpenFlow 1.0.2 2013.10.04

OpenFlow 1.1.0 2011.02.28 Pipeline （Not compatible with OF1.0)

OpenFlow 1.2 2011.12 OXM（Based on OF1.1)

OpenFlow 1.3.0 2012.06.25 （Based on OF1.2 and 1.1）

Stable target for hardware vendors /long term support ONF Extensions for 1.3.X : new features

OpenFlow 1.3.1 2012.09.06 OpenFlow 1.3.2 2013.04.25

OpenFlow 1.3.3 2013.10.18 OpenFlow 1.3.4 2014.03.27

OF 1.3.5 2015.4

OpenFlow 1.4.0 2013.10.15 OF 1.4.1 2015.4

OpenFlow 1.5.0 2014.12.19 OF 1.5.1 2015.4

2015/6/9

3

Config WG

OF-Config 1.0 2009.12.23

OF-Config 1.1 2012.01.25

OF-Config 1.1.1 2013.03.23

OpenFlow Notifications Framework 1.0 2013.10.15

OF-Config 1.2 2014.1.9

Logical switch NDM (Negotiable Datapath Models)

Test WG

Conformance Test Specification for OpenFlow Switch Specification 1.0.1 2013.08.13

2013.10.17, the 1st certified: NEC ProgrammableFlow® Switches PF5248

OpenFlow v1.3 Switch Certification

Plugfest

In USA and China

Certifiation Center

IU InCNTRE (USA)

BII (China)

UNH-IOL (USA)

POF/PIF

Programming Languages

Compiler

Flow Instruction Set

Application API

• Programmable• Network

optimized

• Runtime & Remote reprogrammable

• Table driven & protocol blind

• Flow instruction set

• Flexible• Generic• Standard• Low level

instruction set

NPU

CPU

• High performance

Flex Flow Processor

ASIC

Novel Applications &Services

Protocol SpecificApplication

Protocol AgnosticTables/Instructions

Controller

FlowTables

POFInstructions

POF Data Path

OpenFlow+ Hardware Abstraction Layer

Driver

Con

trol

ler

For

war

ding

Ele

men

ts

Outline

Software Defined Networking (SDN)

SDN is Hot!

What's SDN？

Four Important Relations about SDN

SDN Standards

SDN Research Overview

16

IRTF SDNRG• Areas of Interest• Classification of SDN models, including

• Definitions• Taxonomies• Relationship to work ongoing in the IETF and other SDOs

• SDN model scalability and applicability• Multi-layer programmability and feedback control systems• System Complexity• Network description languages, abstractions, interfaces and

compilers• Including methods and mechanisms for (on-line) verification of correct

operation of network/node function.

• Security• Potential Work Items• Survey of SDN approaches and Taxonomies• Open Issues in Software-Defined Networking Research 17

SDN ResearchArchitecture Ethane: Taking Control of the Enterprise, SIGCOMM07

OpenFlow: Enabling Innovation in Campus Networks, CCR08

The Future of Networking, and the Past of Protocols, Scott Shenker’s PPT at ONS11

Software-Defined Internet Architecture: Decoupling Architecture from Infrastructure, HotNet12

SDN 2.0

Theory

Using Routers to Build Logic Circuits: How Powerful is BGP?, ICNP13 (BGP has the same computing power as a

Turing Machine)18

2015/6/9

4

SDN Research

SDN Correctness: system platform based

Data plane

• Header Space Analysis: Static Checking For Networks, NSDI12 (Header Space Bits，not real-time)

• Real Time Network Policy Checking using Header Space Analysis (NetPlumber, based on graph, real-time), NSDI13

• Veriflow: Verifying Network-Wide Invariants in Real Time, NSDI13 (Veriflow, trie tree based)

Control plane based: verifying APPs

• A NICE Way to Test OpenFlow Applications, NSDI12 (Nice，model checker based)

19

SDN Research

SDN Correctness: Programming based Programming language based

• Frenetic: A Network Programming Language, ICFP11 (Frenetic)

• Composing Software-Defined Networks, NSDI13 (Pyretic)

• A Compiler and Run-time System for Network Programming Languages, POPL13 (NetCore, declarative language)

• Machine-Verified Network Controllers, PLDI13 (over NetCore)

• Maple: Simplifying SDN Programming Using Algorithmic Policies, SIGCOMM13 (Maple, new algorithmic language)

• Participatory Networking: An API for Application Control of SDNs, SIGCOMM13 (PANE, tree based)

Update mechanism based• Abstractions for Network Update, SIGCOMM12 20

Freneticre SDN Research

Controller Design

Onix: A Distributed Control Platform for Large-scale Production Networks, OSDI10 (distributed database)

Scalable Flow-based Networking with DIFANE, SIGCOMM10 (special switch）

DevoFlow: Scaling Flow Management for High-performance Networks, SIGCOMM11 （flow aggregation)

Data Plane Design

Forwarding Metamorphosis: Fast Programmable Match-Action Processing in Hardware for SDN, SIGCOMM13

22

SDN Research

Testing, Debugging, and Management

A SOFT Way for OpenFlow Interoperability Testing, CoNEXT12

Software Defined Traffic Measurement with OpenSketch, NSDI 13

StEERING: A Software-Defined Networking for Inline Service Chaining, ICNP2013

23

SDN Research

Application in Campus Can the Production Network Be the Testbed?, OSDI10

Application in Network Security FRESCO: Modular Compostable Security Services for Software-

Defined Networks, NDSS13

Application in MiddleBox SIMPLE-fying MiddleBox Policy Enforcement Using SDN,

SIGCOMM13

Application in Private WAN B4: Experience with a Globally-Deployed Software Defined

WAN, SIGCOMM13

Achieving High Utilization with Software-Driven WAN, SIGCOMM13

24

2015/6/9

5

SDN ResearchApplication in Data Centers Hedera: Dynamic Flow Scheduling for Data Center Networks,

NSDI10

ElasticTree: Saving Energy in Data Center Networks, NSDI10

ServerSwitch: A Programmable and High Performance Platform for Data Center Networks, NSDI11

zUpdate: Updating Data Center Networks with Zero Los, SIGCOMM13

ElasticSwitch: Practical Work-Conserving Bandwidth Guarantees for Cloud Computing, SIGCOMM13

Application in Video Streaming

OpenSession: SDN-based Cross-layer Multi-stream Management Protocol for 3D Teleimmersion, ICNP13

25

SDN deployment-Google Private WAN

26

SDN deployment-Google Private WAN

27

SDN deployment-Microsoft Private WAN

28

SDN deployment-Internet2

29

Summary

The "genes" of the Internet are openness and innovation.

The Internet has become a success because the excellent network architecturesupports the openness and innovation of network applications.

The driving force for transforming the network architecture is the ever-changing requirement. The Internet Plus era has put forward new requirements for the network core layer.

SDN is playing an important role in the new round network architecture transformation, and inherits Internet's openness and innovation at the network core layer.

The success of Internet applications is created by PC programmers.

The success of the network core layer in the Internet Plus era will be created by network programmers!

2015/6/9

6

OutlineSDN Research @ Tsinghua -- FINE Project

Project Overview

Project Research Progress

Conclusion

31

Joint SDN Research

• Tsinghua-Stanford University (Since 2010)

• OpenFlow Extension for IPv6, SAV, etc.

• CERNET-INTERNET2 (Since 2012)

• Inter-domain SDN

• Tsinghua-China Telecom (Since 2014)

• SDN-TE, SDN-NFV

• Tsinghua-Cisco (Since 2014)

• SDN-TE, ODL

• Tsinghua-Huawei (Since 2011)

• SDN-IPv6/IPv4 transition / E-W interfaces

• Tsinghua-Certusnet (Since 2014)

• Stateful Forwarding Abstraction

• Tsinghua-HP (Since 2011)

• Scalability of controller

• Tsinghua-Samsung (Since 2013)

• Flow rule conflicts

• Tsinghua-H3C (Since 2013)

• Distributed controller

• Tsinghua-DCN (Since 2011)

• OpenRouter: OpenFlow+ upgrade for legacy routers

32

Basic InformationProject Info. Future Internet Architecture and INnovation Environment

(FINE)

Supported by China MOST High-tech Research and Development Program (“863” Program)

Approved in 2012, officially funded in 2013

Project Members Universities/National Research Institutes: Tsinghua Univ.,

ICT Chinese Academy of Science (CAS), BUPT, SEU,PKU, China Academy of Telecommunication Research (CATR), PLAIEU, NUDT, XJTU, IOA of CAS, NIC of CAS, etc

Service Providers: CERNET, China Mobile, B-STAR (Broadcasting)

Vendors: ZTE, H3C, Huawei, Ruijie, DCN, etc.

Basic Information

Project Goals (end of 2015) A architecture to achieve an Open Experimental

Environment

New open devices, new software (NOS and virtualization platform)

An experimental platform with 10-20 networks (universities, carriers)

Research on new network architectures or Innovations on IP protocols (as applications)

• New architectures: NDN/ICN, PTDN (New ITU-T standards), ADN(Address Driven Network), etc

• New IPv6 protocols: Intra-domain and inter-domain IPv6 source address validations, IPv6 new lD for trustworthy and mobile, Two-dimensional forwarding and routing, etc

Design Concept - 4D Openness

ForwardingHardware

App

APP

APP

ForwardingHardware

App

APP

APP

ForwardingHardware

App

App

App

ForwardingHardware

App

APP

APP Forwarding

Hardware

OS

OSOS

OS

OS

App

APP

APP

Netowrk OS

App App App

Traditional Network：New protocols rely on vendors to implement (long term)Traditional Network：New protocols rely on vendors to implement (long term)Oepnness 1：Netowork Operating System provides global physical view and APIsOepnness 1：Netowork Operating System provides global physical view and APIs

Openness 1Network OS

Openness 2：Separation of control (Apps such as new arch / proto) and devices Openness 2：Separation of control (Apps such as new arch / proto) and devices

Openness 2Multiple new

Arch & ProtocolVirtualization Platform

Openness 2：Separation of control (Apps such new arch and proto) and devicesOpenness 2：Separation of control (Apps such new arch and proto) and devices

ForwardingHardware

ForwardingHardware Forwarding

Hardware

ForwardingHardware

ForwardingHardware

Network OS

App App App

Openness 3：Virtualization platform and development tools for new AppsOpenness 3：Virtualization platform and development tools for new AppsOpenness 4：Enabling multiple data plane abstractions and open devicesOpenness 4：Enabling multiple data plane abstractions and open devices

Openness 3Virtualization

Platform & Tools

Openness 2Multiple new

Arch & Protocol

Open Device

Open Device Open

Device

Open Device

Open Device

Openness 1Network OS

Openness 4Open Data Plane

Abstractions

Design Concept - 4D Openness

2015/6/9

7

Proposed a Four-layer FINE (Future Internet iNnovation Environment) Network

Architecture

FINE Network Architecture

DPA1

Open Data Plan Devices

Local ViewAPI

Global Physical View API

Logical ViewAPI

AS-1 (Doman 1)

DPA2 DPAn

APP-1 APP-2 APP-n

DPA1

AS-2 (Domain 2)

DPA2 DPAn

APP-1 APP-2 APP-n

IDN

IDN

IDN

IDN

Open Data Plan Devices

NOS-1 NOS-2

VCP-1 VCP-2

WE-Bridge

Typical new network architectures NDN/ICN, PTDN (New ITU-T standards), Content Distribution

Architecture, SOFIA

Typical new IP protocols Intra/Inter Domain SAV, ILNP, Next Generation Broadcasting, Two-

dimensional Routing

NDN

VCP

TUNOS

CPFPTDN ILNP

ContentChannel OpenFlow+ Edge/CoreDev

Other New Archs

Intra-Domain Apps Inter-Domain Apps

casting

FINE Project APPs for Experiments

TUNIE Portal

Virtualization platform

TUNOS TUNOS TUNOS

App A

App B

App C

TopoA

TopoB

TopoC

Open Devices

（OpenRouter、OpenNode、OpenBlock、OpenDevice）

FINEPortal

FINE Platform and Usage Outline SDN Research @ Tsinghua -- FINE Project

Project Overview

Project Research Progress

Conclusion

40

Integrated Protocol: To takes placeof SNMP/xFlow/Telnet in order toreduce the complication caused bymultiple control interfaces withOpenFlow protocol.

Central Control: To get a globalforwarding path and then resolve falsepositive of filtering information caused byasymmetric routing more than ingressfiltering.

SDN APP #1 Demonstrated on INFOCOM2012

InSAVO: Intra-AS IPv6 Source Address Validation Solution with OpenRouter

Evolvable Deployment: To provide software-defined abilities by extendingOpenFlow, but also give a tradeoff between existing hardware and evolution cost.

2015/6/9

8

SDN APP #1 SDN based Mobility

0

2e+006

4e+006

6e+006

8e+006

1e+007

1.2e+007

0 2 4 6 8 10 12

TC

P s

eq

ue

nce

Time

ILNPPMIPv6

SDN-based

0

0.2

0.4

0.6

0.8

1

1.2

0 2 4 6 8 10 12

RT

T(s

)

Time

ILNPPMIPv6

SDN-based

TCP Sequence & RTT Throughput & Packet loss

0

1

2

3

4

5

6

7

8

9

10

0 0.5 1

TC

P t

hrou

ghpu

t (M

bps)

Mobility frequency

SDNMIP

ILNP

2

4

6

8

10

12

14

16

18

20

22

0.5 1

Pa

cke

t lo

ss r

ate

(%

)

Mobility frequency

SDNMIP

ILNP

ActionAction

SDN Improvement #1：SFA SFA-NFV  Jun Bi, et.al., Supporting Virtualized Network Functions with Stateful Data Plane Abstraction, IEEE Network Magazine

SDN Improvement #2： FlowInsight

“FlowInsight: Decoupling Visibility from Operability in SDN Data Plane”wins SIGCOMM2014 Student Research Competition

SDNAS

traditional AS

SDNAS

traditional AS

SDNAS

SDN-IP

SDN Overlay

SDX traditional AS

traditional AS

SDN IXP

SDNAS

SDNAS

SDNASAll SDN

Inter-domain SDN：Three Stages

SIGCOMM13 demo

SIGCOMM14

We-bridge: TodayINFOCM14 demoIEEE ComMag, Feb. 2015

We-bridge: Future

2015/6/9

9

IEEE Communications Magazine, Vol.53, No.2, pp190-197, 2015

http://netarchlab.tsinghua.edu.cn/~junbi/IEEEComMag-2015.pdf

WE-Bridge: Inter-domain SDN

Virtual View for Inter-domain NegotiationCANS14 Demo：inter-domain service-specific

multi-dimental fine-grained routing

VIP flow selects another pathSrc =101.6.30.53Dst =149.165.130.212Udp port =100

Streaming Server1Port 101

Streaming Server1 Port 100 (VIP port)

Client 2149.165.130.212

Client 1149.165.130.210

Link failure

WE-Bridge is the new SDN EWBI

Internet2 CTO

2015/6/9

10

Conclusions

FINE is the R&D project in China to support a nationwide open environment for future network innovation

In this project, we proposed and designed FINE architectureMultiple data plan abstractions and open devices NOS, VP, and Management System prototypes Selected applications started to run on the

testbed