Newsletter BIZIP A TIMES 1 - 北陸銀行 · パソコン講座 「Excel」のパソコンスキルを学ぶ1日講座。社員3名まで参加可能!社員のスキルアップの底上げに!
Software Defined Network Briefs & Trendspas.csie.ntu.edu.tw/SDN2015Workshop/SDN_info/講員- … ·...
Transcript of Software Defined Network Briefs & Trendspas.csie.ntu.edu.tw/SDN2015Workshop/SDN_info/講員- … ·...
Copyright 2015 ITRI 工業技術研究院
軟體定義網路簡介與發展趨勢
Software Defined Network
Briefs & Trends
ITRI/ICL 楊明曉
Copyright 2015 ITRI 工業技術研究院
Outlines
網路問題&SDN緣起
SDN & Openflow 簡介
NFV with SDN
Reference
Copyright 2015 ITRI 工業技術研究院
Outlines
網路問題&SDN緣起
SDN & Openflow 簡介
NFV with SDN
Reference
Copyright 2015 ITRI 工業技術研究院
Modern Networking Complexity
4Source: Adopted from Javvin
Copyright 2015 ITRI 工業技術研究院
Telco
Operators
Equipment
Vendors
Std. Org.
2-6 Years
Demand
Drive
StandardiseImplement
Sell
Deploy
Critical mass of
supporters
Develop Deploy Publish
2-6 Months
Telco Cycle Wished Providers Cycle
2-6 years 2-6 months
Service Providers
AVAILABLE AVAILABLEIdea !! Idea !!
Source: Adapted from D. Lopez Telefonica I+D, NFV 5
Slow Technology Deployments
Copyright 2015 ITRI 工業技術研究院
Slow Network Tech. Innovation Trend
6
~ Source From Google 2012
(2012)
Copyright 2015 ITRI 工業技術研究院 7
Copyright 2015 ITRI 工業技術研究院 8
Copyright 2015 ITRI 工業技術研究院 9
~from : Rohit Mehra "SDN In The Enterprise Campus: Early Adoption"
Copyright 2015 ITRI 工業技術研究院
Stanford Clean Slate Program
10
1. With what we know today, if we were
to start again with a clean slate, how
would we design a global
communications infrastructure?
2. How should the Internet look in
upcoming 15 years?
Martin Casado Nick Mckeown Scott Shenker
https://en.wikipedia.org/wiki/Clean_Slate_Program (2006~2012)
Copyright 2015 ITRI 工業技術研究院
Converged Infrastructure Neededfor Cloud
Compute
Storage
Network
~from “Introduction to OpenFlow, SDN & NFV” by Kingston Smiler. S
11
Copyright 2015 ITRI 工業技術研究院
Traditional Computing
vs Modern Computing
12
Copyright 2015 ITRI 工業技術研究院
Traditional Vs Modern Computing
Provisioning Methods
Source: Adopted from Transforming the Network With Open SDN by Big Switch Network
13
Copyright 2015 ITRI 工業技術研究院
Traditional vs Modern Networking
Provisioning MethodsSource: Adopted from Transforming the Network With Open SDN by Big Switch Network
14
Copyright 2015 ITRI 工業技術研究院
Telnet
Computing vs Networking Evolution
15
Source: Adopted from Transforming the Network With Open SDN by Big Switch Network
Copyright 2015 ITRI 工業技術研究院http://www.slideshare.net/junipernetworks/interop-tokyo-2013-davidson-keynote-sdnvfinal?related=1 16
Copyright 2015 ITRI 工業技術研究院
Outlines
網路問題&SDN緣起
SDN & Openflow 簡介
NFV with SDN
Reference
Copyright 2015 ITRI 工業技術研究院
ITU-T SDN Concept [Q.21/SG13]
A technology to networking which allows Centralized, Programmable Control Planes so
that network operators can control and manage directly their own Virtualized Networks
(ITU-T sg13 Q21 draft Recommendation Y.FNsdn, 2013)
Software-defined networking
現今網路 SDN網路
Northbound API(尚未標準化)
Southbound APIOpenflow
12
Copyright 2015 ITRI 工業技術研究院
Key SDN concepts Separation of Control and Data plane
Centralizing network ‘Intelligence’
Through one or more Controller device(s)
Enabling a ‘Programmable’ network
Through a control protocol, running between the controller and the
underlying network devices
e.g. using OpenFlow as the control protocol
Highly dynamic,Rapid provisioning
Can be per-flow, On Demand
Network Virtualization enable Network Resource Sharing
19
Copyright 2015 ITRI 工業技術研究院
SDN網路虛擬化特色 SDN VN Management可全由Controller 控管,可避免傳統網路需要複雜地逐一設定每台Switch或
每個網路設備
SDN可以達到 VN Bandwidth Control,確保VN所需的BW (傳統網路僅能設定Queue / Priority等等)
SDN針對VN可以更具彈性地提供Topology Control 以及 Flexible Traffic Control,例如網路發生故障,可以容易動態調整VN Topology達到Protection/Restoration
可大幅度提升網路頻寬使用效率,不受限於Spanning Tree Protocol限制,可大幅提高Link Utilization (e.g. : Close to 100% in Google G-Scale Network )
Network Virtualization are the killer applications for SDN ~ from Nick Lippis (Enterprise IT Industry Analyst)
實體網路
虛擬網路 VN#1 虛擬網路 VN#2 虛擬網路 VN#3
PN : Physical NetworkVN : Virtual Network
20
Copyright 2015 ITRI 工業技術研究院
ONF Openflow Protocol Spec. Roadmap
2010 2011 2012
V1.0.0
資料來源: https://www.opennetworking.org
2013 2014
V1.1
V1.2
V1.3.0
V1.4
V1.0.2V1.0.1
V1.3.1 V1.3.3V1.3.2
V1.3.4
V1.5.1
2015
21
V1.5
Copyright 2015 ITRI 工業技術研究院
Controller
OpenFlow Switch
Flow
Table
Secure
Channel
PC
hw
sw
OpenFlow Switch specification
Components of OpenFlow
Network
~From OpenFlow Switch Specification 22
Copyright 2015 ITRI 工業技術研究院
OpenFlow Basics
(Flow Table Entries)
SwitchPort
MACsrc
MACdst
Ethtype
VLANID
IPSrc
IPDst
IPProt
L4sport
L4dport
Rule Action Stats
1. Forward packet to zero or more ports2. Encapsulate and forward to controller3. Send to normal processing pipeline4. Modify Fields5. Any extensions you add!
+ mask what fields to match
Packet + byte counters
23
VLANpcp
IPToS
~From OpenFlow Switch Specification
Copyright 2015 ITRI 工業技術研究院
SDN - Opportunity for Value Migration
and Industry Chain Restructuring• SDN can eliminate vendor lock-in
• SDN transforms the vertical networking model into a PC-like horizontal one
• Industry Value : lead by commodity or by high end SI’s or by new network apps
• SDN = commodities ($) + system integration & SDN Services ($$$)
Now
User
SDN
User
Network App
SDN Controller
App軟體
Linux/Windows
PC Hardware box
CPU
~~~~
PC-like Industry Chain
SDN Network Device
SDN Network Chip
Chip
Equipment
System
ASP/SI
SpecializedControlPlane
SpecializedHardware
SpecializedFeatures
Vendor Lock-In
Vertically integrated one-box switch
24
Copyright 2015 ITRI 工業技術研究院
NEC SDN Solution Benefits (1/2)
25~Source from NEC
Copyright 2015 ITRI 工業技術研究院 26
NEC SDN Solution Benefits (2/2)
~Source from NEC
Copyright 2015 ITRI 工業技術研究院
Easy VM Migration
27~Source from NEC
Copyright 2015 ITRI 工業技術研究院
Easy Scale out Initial cost is reduced and scale-out can be realized.
28~Source from NEC
Copyright 2015 ITRI 工業技術研究院
Easy Resource Optimization The complicated data center configuration is simplified by the combination of virtual
servers (VM), virtual switches (VS) and virtual NW appliances. Also dynamic resource
operation can be possible.
29~Source from NEC
Copyright 2015 ITRI 工業技術研究院
NEC SDN Enterprise Solution
可大幅節省網路佈建成本 NEC運用虛擬網路技術讓單一個實體網路可以產生多個子公司所需之虛擬網路
相較傳統各個子公司單獨建置各自網路,SDN 網路虛擬化可大幅降低網路建置成本
~Source adapted from NEC http://goo.gl/NcQu21
網路所需設備大幅降低50%~80%
30
Copyright 2015 ITRI 工業技術研究院
Inter-DC WAN Google use SDN on G-Scale backbone network (2012)
Load balancing
Inter-DC Traffic Engineering
Improve availability & fault tolerance
>95% utilization (original 30%~40%)
http://gigaom.com/cloud/googles-next-openflow-challenge-taking-sdns-to-the-consumer/ 31
Copyright 2015 ITRI 工業技術研究院
OpenFlow - Over the Past Five Years…
Version Date # Headers
OF 1.0 Dec 2009 12
OF 1.1 Feb 2011 15
OF 1.2 Dec 2011 36
OF 1.3 Jun 2012 40
OF 1.4 Oct 2013 41
Proliferation of header fields
• Multiple stages of heterogeneous tables
• Still not enough (e.g., VXLAN, NVGRE, STT, …)32
Copyright 2015 ITRI 工業技術研究院
“Classic” OpenFlow (1.x)
33
Target Switch
SDN Control Plane
Installing and
querying rules
Copyright 2015 ITRI 工業技術研究院
“OpenFlow 2.0”
34
Target Switch
SDN Control Plane
Populating:
Installing and
querying rules
Compiler
Configuring:
Parser, tables,
and control flow
Parser & Table
Configuration
Rule
Translator
Copyright 2015 ITRI 工業技術研究院
Protocol Independent Layer
35
Copyright 2015 ITRI 工業技術研究院
Two Stage: Configuration & Run-Time
36
Copyright 2015 ITRI 工業技術研究院 37~from http://p4.org/
Copyright 2015 ITRI 工業技術研究院
P4 Language’s Three Goals Protocol independence
Configure a packet parser
Define a set of typed match+action tables
Target independence
Program without knowledge of switch details
Rely on compiler to configure the target switch
Reconfigurability
Change parsing and processing in the field
38http://p4.org/
Copyright 2015 ITRI 工業技術研究院
OpenSource SDN Controller Project
39
Copyright 2015 ITRI 工業技術研究院
SDN Controller Landscape
40Pica8
Copyright 2015 ITRI 工業技術研究院 41
Copyright 2015 ITRI 工業技術研究院 42~Source from OpenDaylight
Copyright 2015 ITRI 工業技術研究院 43
Copyright 2015 ITRI 工業技術研究院
www.opendaylight.org
Project comparisons (ohloh.net)
LoC Contributors
OpenStack 1.67M 1,974
CloudStack 1.5M 250
Eclipse platform 2.67M 404
OpenDaylight 1.05M 154
Floodlight 97K 52
contrail-vrouter
contrail controller
19K
258K15
53
44
(Hydrogen)
Copyright 2015 ITRI 工業技術研究院
SDN - A New Net
45
Making all
Kinds of
Internet
Services
Smarter,
Faster, and
Cheaper “
~ from Nicira
Source from:
http://www.technologyreview.com/featuredstory/426803/a-new-net/ ~Source from InformationWeek
Copyright 2015 ITRI 工業技術研究院
Barriers to SDN
46
Cost. Analysis done (different time, different company) showed commercial offering DOUBLED the per-hour cost of a VM
Security. Need to show very conservative IT organizations that SDN security == VLAN security.
Vendor neutrality. No lock-in.
Vendor support. As things go into production, enterprises need “single throat to choke” support.
Performance. Encap/Decap overhead. Needs to be ZERO、Scalability of flow-match (Limits of T-CAM)
Interoperability. SDN & non-SDN、Inter-Controller
Copyright 2015 ITRI 工業技術研究院
Future SDN Research Works
SDN Debugging
SDN Fault Tolerant
Security
Inter-Domain Routing, e.g.: SDX
Flow Revision control
SDN Meet Big-Data
47
Copyright 2015 ITRI 工業技術研究院
Outlines
網路問題&SDN緣起
SDN & Openflow 簡介
NFV with SDN
Reference
Copyright 2015 ITRI 工業技術研究院
Network Functions Virtualization
49
v
Network Functions are SW-based over well-known HW
Multiple roles over same HW
ORCHESTRATED, AUTOMATIC
& REMOTE INSTALL
DPI
BRAS
GGSN/
SGSN
Firewall
CG-NAT
PE Router
VIRTUAL
APPLIANCES
STANDARD HIGH
VOLUME SERVERS
Virtualised Network Model:
VIRTUAL APPLIANCE APPROACHv
Network Functions are based on specific HW&SW
One physical node per role
DPI
BRASGGSN/SGSN
Session Border
ControllerFirewall CG-NAT
PE Router
Traditional Network Model:
APPLIANCE APPROACH
A means to make the network more flexible and simple by minimising dependence on HW constraints
Copyright 2015 ITRI 工業技術研究院 50
NFV vs SDNfrom http://www.overturenetworks.com/blog/2013/04/12/network-function-virtualization-and-software-defined-networking-whats-difference
Copyright 2015 ITRI 工業技術研究院
NEC Networking with SDN & NFV
51~Source adapted from NEC
Traditional Networking SDN (Openflow) Networking SDN +NFV Networking
NFV DistributedService Cloud
Copyright 2015 ITRI 工業技術研究院
ETSI NFV Architecture
52
OPNFV
Copyright 2015 ITRI 工業技術研究院
About OPNFV
53~Source from OPNFV
Copyright 2015 ITRI 工業技術研究院
SDN+NFV Example : vCPE
54~Source from ONF
Copyright 2015 ITRI 工業技術研究院 55
Copyright 2015 ITRI 工業技術研究院
NFV Services Chaining
56~Source from ONF
Copyright 2015 ITRI 工業技術研究院
NFV Summary
57
NFV provides virtualization, orchestration, scaling,
automation, hardware independence etc..
NFV and SDN are complementary and independent
frameworks.
NFV doesn’t mandate control plane and Data plane
separation and hence OpenFlow is not mandated in NFV.
Lot of Network function has been demonstrated by carriers
already.
Copyright 2015 ITRI 工業技術研究院
Keys to Networking Evolution Trend Open Innovation
Creates competitive supply of innovative applications by
3rd Parties
NFV: Re-definition of Network Equipment
Architecture
SDN: Re-definition of Network Architecture
Open
Innovation
Network
Functions
Virtualization
• SDN treats the network’s control plane as a
programmable function,
• NFV Treats the network’s data plane as a
programmable function~From: Dr. Larry Peterson
~Source: Adapted from Cesar Marcondes, SBRC/2014
Software
Defined
Networking
58
Copyright 2015 ITRI 工業技術研究院
SDN & NFV Hype Cycle
59~Source from Gartner
Copyright 2015 ITRI 工業技術研究院
企業SDN 全球市場預估
60
Ref: http://www.ithome.com.tw/article/93828
Copyright 2015 ITRI 工業技術研究院
SDN&NFV 2015~2020 全球市場預估
61
SDN&NFV Networking Spend By Use Case Categories
• SDxCentral預估2020年全世界網路通訊設備市場將超過1仟3百億美元,其中SDN與NFV市場總產值約佔其80%,將從2015年預估180億成長到2020年超過1
仟億美元。* Source from: 2015 SDxCentral SDN and NFV Market Size Report (2015/05)
Copyright 2015 ITRI 工業技術研究院
Reference Open Networking Foundation (ONF) https://www.opennetworking.org/
OpenDaylight https://wiki.opendaylight.org
Mininet http://mininet.org/
Open vSwitch http://openvswitch.org/
Early OpenFlow paper (2008): http://archive.openflow.org/documents/openflow-wp-latest.pdf
SDN white paper (2012): https://www.opennetworking.org/images/stories/downloads/sdn-resources/white-
papers/wp-sdn-newnorm.pdf
OFELIA presentation http://www.fp7-ofelia.eu/assets/Publications-and-Presentations/SDN-The-Next-Wave-
of-Networking.pdf
Coursera https://www.coursera.org/course/sdn
Google http://googlecloudplatform.blogspot.co.uk/2014/04/enter-andromeda-zone-google-cloud-platforms-
latest-networking-stack.html
B. Martinussen (Cisco), “Introduction to Software Defined Networks (SDN),” April 2013,
http://www.cisco.com/web/europe/ciscoconnect2013/pdf/DC_3_SDN.pdf
ETSI, “NFV - Update White Paper,” Oct 2013, http://portal.etsi.org/NFV/NFV_White_Paper2.pdf
62
Copyright 2015 ITRI 工業技術研究院http://www.slideshare.net/rkeahey/softwaredefined-networking-14760819?related=1 63
SDN Learning Network
(UC Berkeley)
Copyright 2015 ITRI 工業技術研究院
Backup
64
Copyright 2015 ITRI 工業技術研究院
OpenSource Project for SDN/NFV
65~from ONF
Copyright 2015 ITRI 工業技術研究院
SDN Uses Cases
Cloud Computing Data Center
Intra-Data Center, Inter-Data Center
Broadband Network Services
Smart Network
Network Virtualization
Virtualization of the CPE functions
Enterprise Network
Campus Network
Wireless & Mobile Network
Traffic Strings/Steering
Content Delivery Traffic routing
Security on Demand
Network as a service
SDNcentral.com 2013
68
Copyright 2015 ITRI 工業技術研究院
Data Center Network Architectures專用網路,專用網路設備,專用伺服器
專用網路,專用網路設備,共用伺服器
共用網路,共用網路設備,共用伺服器
Network virtualization Network Function virtualization
69
Copyright 2015 ITRI 工業技術研究院 68~Source from ONLab