SDN: New Approach to Networking

Guru Parulkarparulkar@stanford.edu

http://onrc.net/

1

Nick McKeown, Guido Appenzeller, Nick Bastin, David Erickson, Glen Gibb, Nikhil Handigol, Brandon Heller, TY Huang, Peyman Kazemian, Masayoshi Kobayashi, Jad Naous, Johan van Reijendam, Srini Seetharaman, Rob Sherwood, Dan Talayco, Paul Weissman, Tatsuya Yabe, KK Yap, Yiannis Yiakoumis and many more.

With Scott Shenker and team at Berkeley and Martin Casado at Nicira

Team at Stanford

Million of linesof source code

6000+ RFCs

Billions of gates Bloated Power Hungry

Vertically integrated, complex, closed, proprietaryNot suitable for experimental ideas

Specialized Packet Forwarding Hardware

OperatingSystem

Feature Feature

Routing, management, mobility management, access control, VPNs, …

Problem with Internet Infrastructure?

Not good for network owners & users; Not good for researchers.

Forwarding

OS

Forwarding

OS

Forwarding

OS

Problem: No Abstractions for Control Plane

• Addition of a new function to the network– Highly complex distributed system problem

• Networks too difficult to program and to reason about– no good abstractions and interfaces

4

Router/Switch/Appliance

Router/Switch/Appliance

Router/Switch/Appliance

DistributedNetwork Functions

State Distribution Mechanism

Not good for even network vendors

5

Cloud Provider Today• Assign VMs to any server without considering L2/L3 scalability• Support multiple tenants with lots of VMs interconnected • Support each tenant with its own customized network for VMs:

topology, bandwidth, security, load-balancingAnd everything is dynamic

Load balancers

Firewalls

IDS’s

?VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

Tenant-A

VM

VM

VM

VM

VM

VM

VM

VM

VM

VM

VM

VMVM

VM

VM

VM

VM

VM

Tenant-B

VM

VM

VM

VM

VM

VM VM

VM

Tenant-C

Network is the long pole

Other Descriptions of the Problem

• Network requires device oriented low level config and

management

• Network is not programmable plug-n-play component

– for private and public cloud infrastructure and services

Routing TE

Network OS

Open interface (OpenFlow) to Forwarding Abstraction: L1/L2/L3

Well-defined open API

Software-Defined Networkwith Key Abstractions in the Control Plane

PacketForwarding

PacketForwarding

PacketForwarding

Separation of Data and ControlPlane

Network MapAbstraction

Mobility

ProgrammableBasestation

Network OS

Global Network View

Abstract Network Model

Control ProgramNetwork Virtualization

Software Defined Networkwith Virtualization

9

Innovation/Research Enabled?

Nation-wide SDN InfrastructurePart of NSF’s GENI

SDN Reference

Example Research Enabled• Data center: energy conservation, routing, and management • Seamless use of diverse wireless networks• Network based load balancing• Packet/circuit convergence, traffic engineering• Simpler control plane for converged packet/circuit MPLS nets• Slicing and remote control/management of home networks • Distributed snap shot of VMs (by DOCOMO researchers) • Inter-domain routing with pathlets (by UIUC) • Redundant traffic elimination [for CDNs] (by Univ of Wisconsin)• And many more …

200+ OpenFlow/SDN deployments around the world!!

13

Example Demonstrations

Onrc.stanford.edu/videos.html

Stanford/Berkeley SDN Activities With Partners

2007 20112008 2009 2010

Ethane

Dem

oD

eplo

ymen

tPl

atfor

m D

evel

opm

ent

OpenFlow Spec v0.8.9 v1.0 v1.1

Reference Switch NetFPGA Software

Network OS NOX SNAC Beacon

Virtualization FlowVisor FlowVisor (Java)

Tools Test Suite oftrace MininetMeasurement tools

GENI software suite Expedient/Opt-in Manager/FOAM

Stanford University ~45 switch/APs ~25userIn McKeown Group

CIS/EE BuildingProduction Network

US R&E Community GENI: 8 Universities + Internet2 + NLRMany other campuses

Other countries Over 68 countries(Europe, Japan, China, Korea,Brazil, etc.)

VM Migration(Best Demo)

Trans-PacificVM Migration

Baby GENI Nation Wide GENI “The OpenFlow Show” – IT World

SDN Concept(Best Demo)

SIGCOMM08 GEC3 SIGCOMM09 GEC6 GEC9Interop

2011

+Broadcom

Not Just Research

All parts of networking industry embracing OpenFlow and SDN

65+ companies joined ONF in a year

65+ companies from across the industry

“IBM & NEC Team Up to Enable Industry Innovators Tervela & Selerity to Transform their Networks w/ OpenFlow”

“NEC Adds 10/40GbE OpenFlow Switch to Award-Winning ProgrammableFlow Product Line.”

“Nicira Comes Out Of Stealth Mode With “Game-Changing” Network Virtualization Platform”

“Brocade Leads OpenFlow Adoption to Accelerate Network Virtualization and Cloud Application Development.”

“Pica8 launches 3920.”

“HP Simplifies Networking with Broadest Choice of OpenFlow-enabled Switches, Feb. 2, 2012”

SDN Exhibits by 20+ Companies at ONS-12

Why does the industry care?

21

Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties except by written agreement. 22

Why Does Verizon Care?

© 2011 Verizon. All Rights Reserved.

Stu Elby @Open Networking Summithttp://OpenNetSummit.org/

23

Carrier Networks TodayThey want to offer• VPN Services• Traffic EngineeringAnd other value added services

Router Operating

System

DistributedNetwork Functions

IGP- Route Advert, Link-State

TE Label Distribution

VPN-IPv4 Route Advert

E-BGP learned Route Advert

PE Label Distribution

Distributed Network Functions each with their own

State Distribution Mechanisms

OSPFv2

RSVP-TE

MP-BGP

I-BGP + RRLDP

State Distribution Mechanisms

Go to vendors and ask them for solutions:

Vendors find it hard to develop solutionsProviders find it too slow and too expensive

to deploy and operate Providers depend too much on vendors

Carrier Networks (MPLS) with SDN

24

Routing Discovery Label Distribution RecoverySimpler

Control Plane(2)

Simpler Cheaper

Multi-VendorData Plane

(1)

SWAP POPPUSH

Vendor-agnostic Open Interface

NETWORK OPERATING SYSTEM

TE 2.0

Services / Network Applications

(3) VPN

~4K vs. ~600k lines of code

Video of a Demonstration

showing MPLS-TE service with the Map Abstraction

Onrc.stanford.edu/videos.html

25

Transport Network

IP Network

26

Converged Packet/Circuit with SDN

27

Network OS

Interface: OpenFlow Protocol

Packet & Circuit Switches

Converged Network

Unified ControlPlane

1. Common Flow Abstraction

2. Common Map Abstraction

Converged Packet/Circuit with SDN

28

Network OS

Interface: OpenFlow Protocol

Packet & Circuit Switches

Converged Network

Unified ControlPlane

1. Common Flow Abstraction

2. Common Map Abstraction

Routing TE QoS Application across packet and circuits

Prototype

29

Hybrid Packet-Circuit Switches

Packet switches

NOX

Video of a Demonstration

of network applicationon Prototype

Onrc.stanford.edu/videos.html

30

Capex Savings with Converged SDN

67%

Architecture:

1. Replace BRs with hybrid MPLS-OTN (packet-optical)

switches

2. Full mesh topology of variable bandwidth circuits used for recovery and BoD

3. Use of SDN based unified control plane

Urs Hölzle, SVP, Google at ONS 2012

http://OpenNetSummit.org/

NTT To Offer Global IaaS Leveraging OpenFlow TechnologyBy Chad Berndtson, CRN

June 11, 2012 9:46 AM ET

35

Enterprise Networking

Enterprise network operators want..

• Firewall and access control

• Delegate management to departments

• Lots of VLANs that stretch across buildings

• By-pass bottlenecks/check points for specific applications

• Host web services with load balancing

• Easy guest wireless access with security

And more

How do they do it today?

36

Enterprise Network: Today’s solution

• Proliferation of appliances• Increased management complexity

- Device oriented management- Each device type has its own management

• High Capex, high Opex• Too much reliance on vendors

Load balancer

IDS

Firewall Load balancer

IDS

Firewall

ACL

ACL

ACL

ACL

ACL

Enterprise Network with SDN

Load balancer

IDS

Firewall Load balancer

IDS

Firewall

ACL

ACL

ACL

ACL

ACL

NETWORK OPERATING SYSTEM

LoadBalancing IDS Access

ControlPolicy

Routing

Vender-agnostic Open Interface

Simple, CheaperMulti-vendorData Plane

CentralizedControl Plane

NETWORK OS

IDS AccessControl

Financial Department

NETWORK OS

Policy Routing

Research Labs

And you can even delegate control to someone else

What Stanford IT and others are exploring …

38

Data Center Provider Today• Assign VMs to any server without considering L2/L3 scalability• Support multiple tenants with lots of VMs interconnected • Support each tenant with its own customized network for VMs:

topology, bandwidth, security, load-balancingAnd everything is dynamic

Load balancers

Firewalls

IDS’s

?VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

Tenant-A

VM

VM

VM

VM

VM

VM

VM

VM

VM

VM

VM

VMVM

VM

VM

VM

VM

VM

Tenant-B

VM

VM

VM

VM

VM

VM VM

VM

Tenant-C

39

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VM

VM VM VMVM

VM

VM

VM

VM

VM

VM

VM

VM

VM

VM

VMVM

VM

VM

VM

VM

VM

VM

VM

VM

VM

VM

VM VM

VM

Cloud Provider with SDN

VMVMVMVM VMVMVMVM VMVMVMVM

LoadBalancing Firewall

Tenant-A

NETWORK OS

VM VM VM VM VM VM

Tenant-B

NETWORK OS

LoadBalancing IDS

VM VM VMVM VM VM VMVM

Tenant-C

NETWORK OS

Firewall IDSLoadBalancing

Berkeley and Stanford establish Open Networking Research Center (onrc.net)

with 12 founding members

Scope of Activities

OF Switch

OpenRadio

FlowVisor ProgSystems

Mininet& Tools

Scalability

Reliability

Security

Flow Space

Network Map

Virtual Network

Big Connector

NetworkOS-wireless

Systems

Abstractions

Xlities

NetworkOS

Feature

Network OS

OFSwitch

OFSwitch

OFSwitch

OFSwitch

Logical Map of Network

Network HyperVisorVirtual Network

Programming System/Tools

Big ConnectorFeature Feature

OpenRadio

Domains of Use

Enterprise Networks

Datacenter Networks

Service Provider Networks

Cellular Networks

Home Networks

Scope of Activities Cont.

OF Switch

OpenRadio

FlowVisor ProgSystems

Mininet& Tools

Scalability

Reliability

Security

Flow Space

Network Map

Virtual Network

Big Connector

NetworkOS-wireless

Systems

Abstractions

Xlities

NetworkOS

OFSwitch

ONRC: Open Networking Research Center

BerkeleyScott Shenker

Open Network LabExec Director: GuruVP Eng: Bill Snow

12-15 Engineers/Tech Leads

Open Source SDN Stack for Growing Community

Develop, Deploy, Support Open Source SDN

PhD/Postdocs

Research

StanfordNick McKeownGuru ParulkarSachin Katti

ON.LAB is Recruiting

Motivated talented software engineers who are passionate about• working with SDN leaders• developing open source SDN

stack • changing the world of

networking and also• working at a very nice fun

facility in Palo Alto down town

Interested? Visit http://onlab.us/

“OpenFlow and Software Defined Networking (SDN) are not only here to stay, but they will

define the future of networking.”

Network World, 10/18/2011