SDN/OpenFlow Overview UWDC Utrecht, 6 Maart 2013

Similar documents
OpenFlow & Software Defined Networking

Open Source Network: Software-Defined Networking (SDN) and OpenFlow

Software Defined Networks (SDN)

How SDN will shape networking

Funded in part by: NSF, Cisco, DoCoMo, DT, Ericsson, Google, Huawei, NEC, Xilinx

Ethernet-based Software Defined Network (SDN) Cloud Computing Research Center for Mobile Applications (CCMA), ITRI 雲 端 運 算 行 動 應 用 研 究 中 心

OpenFlow/So+ware- defined Networks. Srini Seetharaman Clean Slate Lab Stanford University July 2010

D1.2 OpenFlow. December 2011 Version 1.1 Ronald van der Pol SARA

Network Virtualization and Software-defined Networking. Chris Wright and Thomas Graf Red Hat June 14, 2013

Software Defined Networking What is it, how does it work, and what is it good for?

SOFTWARE-DEFINED NETWORKING AND OPENFLOW

Software Defined Networking & Openflow

Software Defined Networking

OpenFlow / SDN: A New Approach to Networking

What is SDN? And Why Should I Care? Jim Metzler Vice President Ashton Metzler & Associates

SOFTWARE-DEFINED NETWORKING AND OPENFLOW

Software Defined Networking & OpenFlow

Getting to know OpenFlow. Nick Rutherford Mariano Vallés

OpenFlow Technology Investigation Vendors Review on OpenFlow implementation

Software Defined Networks

SDN AND SECURITY: Why Take Over the Hosts When You Can Take Over the Network

From Active & Programmable Networks to.. OpenFlow & Software Defined Networks. Prof. C. Tschudin, M. Sifalakis, T. Meyer, M. Monti, S.

The Internet: A Remarkable Story. Inside the Net: A Different Story. Networks are Hard to Manage. Software Defined Networking Concepts

Software Defined Networking What is it, how does it work, and what is it good for?

Emerging Software Defined Networking & Open APIs Ecosystem

The State of OpenFlow: Advice for Those Considering SDN. Steve Wallace Executive Director, InCNTRE SDN Lab Indiana University

Software Defined Networking

BROCADE NETWORKING: EXPLORING SOFTWARE-DEFINED NETWORK. Gustavo Barros Systems Engineer Brocade Brasil

基 於 SDN 與 可 程 式 化 硬 體 架 構 之 雲 端 網 路 系 統 交 換 器

Cloud Networking Disruption with Software Defined Network Virtualization. Ali Khayam

Software Defined Networking

Tutorial: OpenFlow in GENI

SDN and Data Center Networks

OpenFlow Overview. Daniel Turull

SDN. What's Software Defined Networking? Angelo Capossele

Software Defined Networking (SDN) - Open Flow

OpenFlow and Software Defined Networking presented by Greg Ferro. Software Defined Networking (SDN)

How To Understand The Power Of The Internet

Open Source Tools & Platforms

Software Defined Networking Basics

Software-Defined Networking

SOFTWARE DEFINED NETWORKING: A PATH TO PROGRAMMABLE NETWORKS. Jason Kleeh September 27, 2012

Introduction to OpenFlow:

OpenFlow: Concept and Practice. Dukhyun Chang

SDN, OpenFlow and the ONF

The SDN Revolution: Empowering the People. Dan Pitt, Executive Director Open Networking Foundation

Network Virtualization for Large-Scale Data Centers

OpenFlow: History and Overview. Demo of routers

Underneath OpenStack Quantum: Software Defined Networking with Open vswitch

STATE OF THE ART OF DATA CENTRE NETWORK TECHNOLOGIES CASE: COMPARISON BETWEEN ETHERNET FABRIC SOLUTIONS

Software Defined Networking

Introduction to Software Defined Networking (SDN) and how it will change the inside of your DataCentre

Software Defined Networking (SDN) T Computer Networks II Hannu Flinck

How To Make A Vpc More Secure With A Cloud Network Overlay (Network) On A Vlan) On An Openstack Vlan On A Server On A Network On A 2D (Vlan) (Vpn) On Your Vlan

OpenFlow: Load Balancing in enterprise networks using Floodlight Controller

How To Orchestrate The Clouddusing Network With Andn

How To Understand The Power Of A Network In A Microsoft Computer System (For A Micronetworking)

Bringing OpenFlow s Power to Real Networks

OpenFlow: Enabling Innovation in Campus Networks

Palo Alto Networks. Security Models in the Software Defined Data Center

SDN Overview for UCAR IT meeting 19-March Presenter Steven Wallace Support by the GENI Program Office!

Virtualization, SDN and NFV

Using Network Virtualization to Scale Data Centers

THE REVOLUTION TOWARDS SOFTWARE- DEFINED NETWORKING

Software Defined Networking Subtitle: Network Virtualization Terry Slattery Chesapeake NetCraftsmen Principal Consultant CCIE #1026.

Information- Centric Networks. Section # 13.2: Alternatives Instructor: George Xylomenos Department: Informatics

DCB for Network Virtualization Overlays. Rakesh Sharma, IBM Austin IEEE 802 Plenary, Nov 2013, Dallas, TX

Ten Things to Look for in an SDN Controller

The Lagopus SDN Software Switch. 3.1 SDN and OpenFlow. 3. Cloud Computing Technology

VXLAN, Enhancements, and Network Integration

Programmable Networking with Open vswitch

The 2013 Guide to Network Virtualization and SDN

OVERLAYING VIRTUALIZED LAYER 2 NETWORKS OVER LAYER 3 NETWORKS

Why Software Defined Networking (SDN)? Boyan Sotirov

SDN CONTROLLER. Emil Gągała. PLNOG, , Kraków

SDN Architecture and Service Trend

HP OpenFlow Protocol Overview

Network Virtualization for the Enterprise Data Center. Guido Appenzeller Open Networking Summit October 2011

An Overview of OpenFlow

Open Fabric SDN The Comprehensive SDN approach. Jake Howering, Director SDN Product Line Management Bithika Khargharia, PhD, Senior Engineer

Software Defined Network (SDN)

Software Defined Networking technology details and openlab research overview

MASTER THESIS. Performance Comparison Of the state of the art Openflow Controllers. Ahmed Sonba, Hassan Abdalkreim

OpenFlow network virtualization with FlowVisor

Stanford SDN-Based Private Cloud. Johan van Reijendam Stanford University

ONOS [Open Source SDN Network Operating System for Service Provider networks]

Brocade SDN/OpenFlow. Norival Figueira Office of the CTO. January 9, /2015 BROCADE COMMUNICATIONS SYSTEMS, INC. ALL RIGHTS RESERVED.

Surviving the SDN Wars. Curt Beckmann Chair of Forwarding Abstractions WG, ONF and EMEA CTO

Multiple Service Load-Balancing with OpenFlow

Real-World Insights from an SDN Lab. Ron Milford Manager, InCNTRE SDN Lab Indiana University

Cloud Networking From Theory to Practice" Ivan Pepelnjak NIL Data Communications"

YI-CHIH HSU & JEI-WEI ESTINET TECHNOLOGIES

9/8/14. Outline. SDN Basics. Concepts OpenFlow Controller: Floodlight OF- Config Mininet. SDN Concepts. What is socware defined networking? Why SDN?

Roman Hochuli - nexellent ag / Mathias Seiler - MiroNet AG

How To Write A Network Plan In Openflow V1.3.3 (For A Test)

OpenStack/Quantum SDNbased network virtulization with Ryu

Transcription:

SDN/OpenFlow Overview UWDC Utrecht, 6 Maart 2013 Ronald van der Pol Ronald.vanderPol@SURFnet.nl 1/55

Outline Why was OpenFlow developed? How does OpenFlow work? StandardisaKon (ONF) Some examples of how OpenFlow is used Data Centre Campus Networks Google Data Network Some of the OpenFlow Players Conclusions 2/55

Why OpenFlow? OpenFlow is a form of SoSware Defined Networking (SDN) Enable network innovakon (again) Reducing operakonal costs (OPEX) AlternaKve for protocol soup Applying compukng model to networking 3/55

Enable Network InnovaKon OpenFlow was developed at Stanford University as part of Clean Slate program University network needs to have 24x7 availability PotenKal disrupkve network tests impossible OpenFlow enables slicing the network in produckon and experimental part 4/55

OPEX in Networking Adding routers and switches to your network increases the operakonal cost Each new device needs to be configured manually via the CLI and its neighbours need to be configured too Firmware updates on routers and switches with slow CPUs takes a long Kme, but much faster on a centralised SDN computer cluster Changes usually involves configurakon ackons on all devices 5/55

OPEX in CompuKng Scales much be_er Adding servers to a computer grid or cloud cluster does not increase the operakonal cost Middleware sosware with centralized policy (OpenStack, etc) controls the servers Configure the sosware once and push the bu_on to apply the changes to all servers 6/55

OPEX with OpenFlow Run networks similar to compukng grids and clouds Individual CLI configurakon moved to centralised OpenFlow controller configurakon ApplicaKon defines policy, translates it to forwarding entries which are sent via the OpenFlow protocol to the OpenFlow switches 7/55

Protocol Soup Current way to handle new funckonality in networking is to define a new protocol ExponenKal growth in network protocol standards Standards seem to become larger and more complex Vendors implement all standards, which increases costs and decreases stability Do you need all those standards? 8/55

IETF RFC PublicaKon Rate 500 450 Data by Jari Arkko 400 350 Number of RFCs 300 250 200 150 100 50 0 1988 1991 1994 1997 2000 2003 2006 2009 2012 year 9/55

Total Number of RFCs Published 6000 5000 Data by Jari Arkko Total number of RFCs 4000 3000 2000 1000 0 1988 1991 1994 1997 2000 2003 2006 2009 2012 Year 10/55

IEEE 802.1Q Simple VLAN standard? Not really, original version amended by at least 14 addikonal standards 802.1Q- 1998 had 211 pages 802.1Q- 2011 has 1365 pages, and includes: 802.1u, 802.1v, 802.1s (mulkple spanning trees), 802.1ad (provider bridging), 802.1ak (MRP, MVRP, MMRP), 802.1ag (CFM), 802.1ah (PBB), 802.1ap (VLAN bridges MIB), 802.1Qaw, 802.1Qay (PBB- TE), 802.1aj, 802.1Qav, 802.1Qau (congeskon management), 802.1Qat (SRP) 11/55

Number of Supported Protocols in a Modern Ethernet Switch (random example, but they are all the same) 12/55

(slide by Nick McKeown, Stanford University) App App App App App App App App App App App Specialized Applications Specialized Operating System Specialized Hardware Windows (OS) Open Interface or Linux or Open Interface Microprocessor Mac OS Vertically integrated Closed, proprietary Slow innovation Small industry Horizontal Open interfaces Rapid innovation Huge industry 13/55

(slide by Nick McKeown, Stanford University) App App App App App App App App App App App Specialized Features Specialized Control Plane Open Interface Control or Plane Control or Plane Control Plane Open Interface Merchant Switching Chips Specialized Hardware Horizontal Open interfaces Rapid innovation Vertically integrated Closed, proprietary Slow innovation UWDC, Utrecht, 6 maart 2013 14/55

How Does OpenFlow Work? Control Plane moved out of the switch Standardised protocol between Data Plane and Control Plane à OpenFlow OpenFlow controller typically connects to many switches Centralised view of the whole network Centralised does not mean a SPOF; The SDN applicakon can run on a (distributed) computer cluster 15/55

Data and Control Plane SeparaKon Control Plane OpenFlow protocol Control Plane Data Plane Data Plane Ethernet Switch OpenFlow Switch 16/55

OpenFlow Controlled Network OpenFlow Application OpenFlow Controller OpenFlow Protocol 17/55

OpenFlow Protocol Insert flow forwarding entries in switches Send packets to OpenFlow switch Receive packets from OpenFlow switch Receive traffic stakskcs from OpenFlow switch Retrieve flow tables from OpenFlow switch Retrieve parameters from OpenFlow switch E.g. number of ports 18/55

OpenFlow Components OpenFlow Controller OpenFlow Protocol TCP SSL TLS OpenFlow API OpenFlow Switch Flow Table 19/55

Flow Table Header Fields Counters Actions Header Fields: match against packets Counters: count matching packets Ac:ons: AcKons to take when packet matches 20/55

Header Matching (OF 1.0) Ingress port Ethernet source/desknakon address Ethernet type VLAN ID VLAN priority IPv4 source/desknakon address IPv4 protocol number IPv4 type of service TCP/UDP source/desknakon port ICMP type/code 21/55

Counters (1/3) Per table: AcKve entries (32 bits) Packet lookups (64bits) Packet matches (64 bits) Per flow: Received packets (64 bits) Received bytes (64 bits) DuraKon <seconds> (32 bits) DuraKon <nanoseconds> (32 bits) 22/55

Counters (2/3) Per port: Received/Transmi_ed packets (64 bits) Received/Transmi_ed bytes (64 bits) Receive/Transmit drops (64 bits) Receive/Transmit errors (64 bits) Receive frame alignment errors (64 bits) Receive overrun errors (64 bits) Receive CRC errors (64 bits) Collisions 23/55

Counters (3/3) Per queue: Transmit packets (64 bits) Transmit bytes (64 bits) Transmit overrun errors (64 bits) 24/55

AcKons Forward Required: All, Controller, Local, Table, IN_PORT OpKonal: Normal, Flood Enqueue (OpKonal) Drop (Required) Modify Field (OpKonal) 25/55

Required Forward AcKons All Sent packet out on all interfaces, not including incoming interface Controller Encapsulate and send the packet to the controller Local Send the packet to the switch local network stack Table Perform ackon in flow table (for packet_out) IN_PORT Send the packet out to the input port 26/55

OpKonal Forward AcKons Normal Process the packet using the tradikonal forwarding path supported by the switch Flood Flood the packet along the spanning tree, not including the incoming interface 27/55

OpKonal Modify Field AcKon Set VLAN ID (or add VLAN tag) Set VLAN priority Strip VLAN header Modify Ethernet source/desknakon address Modify IPv4 source/desknakon address Modify IPv4 type of service bits Modify TCP/UDP source/desknakon port 28/55

Flow InserKon ProacKve Flow entries are inserted in the OpenFlow switches before packets arrive ReacKve Packets arriving at an OpenFlow switch without a matching flow entry are sent to OpenFlow controller. They examined by the controller aser which flow entries are inserted in the switches 29/55

Example of ProacKve Flow Entries Forward all packets between port 1 and 2 ovs- ofctl add- flow br0 in_port=1,ackons=output:2 ovs- ofctl add- flow br0 in_port=2,ackons=output:1 Forward all packets between access port 4 and trunk port 6 using VLAN ID 42 ovs- ofctl add- flow br0 in_port=4,ackons=output:6,mod_vlan_id:42 ovs- ofctl add- flow br0 in_port=6,ackons=output:4,strip_vlan 30/55

OpenFlow StandardisaKon Open Networking FoundaKon (ONF) Non- Profit consorkum Founded in March 2011 by Deutsche Telecom, Facebook, Google, MicrosoS, Verizon and Yahoo! Mission: promokon of SoSware Defined Networking (SDN) 31/55

OpenFlow Switch SpecificaKon Defines OpenFlow protocol OpenFlow Switch SpecificaKon 1.0.0 (Dec 31, 2009) Most widely used version today OpenFlow Switch SpecificaKon 1.1.0 (Feb 28, 2011) QinQ and MPLS support Skipped by most vendors OpenFlow Switch SpecificaKon 1.2 (Dec 2011) IPv6 support, extensible matches OpenFlow 1.3.0 (Jun 25, 2012) Flexible table miss, per flow meters, PBB support OpenFlow 1.3.1 (Sep 6, 2012) 32/55

OF- Config ConfiguraKon protocol for sevng up ports, controller IP address, etc. Netconf based OF- Config 1.0 (Sep 2012) OF- Config 1.1 (Jun 25, 2012) 33/55

OpenFlow in Data Centres Cloud middleware (OpenStack, etc) handles compute & storage resources (VMs, disks) Now also including network resources (OpenStack Quantum) SDN and OpenFlow perfect match in this ecosystem 34/55

Fat Tree Data Centre Network 1 2 3 4 1,2 3,4 1,2 3,4 1,2,3,4 1,2,3,4 Insert flow entries to use mulkple path through network Support mulkple virtual networks (mulkple tenants) Adjust flow entries when VMs migrate (move network with VMs) 35/55

Fat Tree Topologies Three stage fat tree with k- port switches Non- blocking forwarding between k^3/4 servers 5K^2/4 switches need with k ports E.g. 4- port switches: 16 servers 20 switches 128- port switches: 524,288 servers 20,480 switches 36/55

Forwarding in Campus Networks VLAN configurakon and maintenance complex and error prone Spanning Tree Protocol (STP) results in sub- opkmal link usage Link usage difficult to control with STP Related data centre fabric technologies: Cisco FabricPath Juniper Qfabric IETF TRILL Brocade Virtual Cluster Switching (VCS) IEEE 802.1aq Shortest Path Bridging (SPB) NVGRE, VXLAN 37/55

Security in Campus Networks Complex and difficult to maintain firewalling Hard to get an overview of what traffic is allowed/blocked Difficult to get consistent policy when mulkple ACL/firewalls are used Traffic is somekmes forwarded inside campus and dropped at faculty edge SDN/OpenFlow has several advantages Only forward allowed traffic Centralised policy that is compiled and pushed to the switches Central SDN applicakon can be combined with other policy databases (AcKve Directory, LDAP, radius, user database, etc) 38/55

Google Data Network Google has two networks: I- Scale: User facing services (search, YouTube, Gmail, etc), high SLA G- Scale: Data centre traffic (intra and inter), lower SLA, perfect for OpenFlow teskng Google uses custom built switches with merchant chip sets (128 ports of 10GE) Custom build just because such switches were not commercially available yet Next (commercial) switch will probably have 1000+ ports of 40GE (2013) 39/55

Google Data Network Slide by Google 40/55

Google Data Network Goal: Improve backbone performance Reduce complexity and cost Cost per bit/s should go down when scaling up Today there is a quadrakc increase (N nodes talking to each other) ConfiguraKon cost of adding a node Broadcast traffic required more expensive hardware Control Plane on commodity hardware Faster and be_er TE decisions TE decisions with global knowledge about network instead of local knowledge 41/55

Google Data Network Issues with current equipment Internet protocols are box centric, not fabric centric Monitoring added as an aserthought 42/55

Google Data Network MulKple controllers 3, 5, 7 with Paxos majority vokng (my assumpkon) The whole network can be emulated in a simulator New sosware revisions can be tested in the simulator Network events (e.g. link down) are sent to produckon servers + testbed TesKng in simulator but with real network events 43/55

Google Data Network Slide by Google 44/55

Google Data Network Experience/benefits: SoSware development for a high performance server with modern sosware tools (debuggers, etc) much easier and faster and produces higher quality sosware than development for an embedded system (router/switch) with slow CPU and li_le memory Centralised Traffic Engineering much faster on a 32 core server (25-50 Kmes as fast) 45/55

Some OpenFlow Players Startups Big Switch Networks Nicira (aquired by VMware for 1 Billion USD in 2012) Pica8 ONRC ON.LAB 46/55

Stanford University Startups Big Switch Networks FloodLight (open source OpenFlow controller) Guido Appenzeller (CEO/Co- Founder) Former head of Stanford University Clean Slate program Kyle Forster (Co- Founder, ex- Cisco, ex- Joost) Nicira Open vswitch (open source sosware switch) Steve Mullaney (CEO) MarKn Casado (CTO, Co- Founder) SDN was graduate work at Stanford University, supervised by Nick KcKeown & Sco_ Shenker Nick McKeown (Co- Founder) Former faculty director of Stanford University Clean Slate program Sco_ Shenker (Chief Scientest, Co- Founder) University of California at Berkeley 47/55

Pica8 Founded in 2008 Open the switch and router plazorms High quality sosware with commodiksed switches PicOS based on: XORP (open source roukng project) Open vswitch (open source OpenFlow switch) 48/55

49/55

Pica8 (Pronto) Switches Pica8 3290 48x 10/100/1000 BASE- T RJ45 & 4x 10GE SFP+ USD 2,750 Pica8 3780 48x 10GE SFP+ USD 9,950 Pica8 3920 48x 10GE SFP+ & 4x 40GE QSFP USD 13,500 50/55

Open Networking Research Center Located at Stanford University & UC Berkeley Sponsors: CableLabs, Cisco, Ericsson, Google, Hewle_ Packard, Huawei, Intel, Juniper, NEC, NTT Docomo, Texas Instruments, Vmware People: Nick McKeown @ Stanford University Sco_ Shenker @ UC Berkeley 51/55

ON.LAB Headed by Guru Parulkar Professor at Stanford University Build open source OpenFlow tools and plazorms Beacon, NOX, FlowVisor, Mininet 52/55

Conclusions OpenFlow has got a lot of a_enkon in 2011/2012 Centralised programmable control makes network management easier (write policy instead of detailed switch/router configurakons) Possible disrupkve (network) technology (Kme will tell) Very likely it will be used within data centres combined with cloud middleware Could be the start of an open hardware/open sosware network ecosystem 53/55

CompuKng vs Networking closed open Open Hardware Hypervisor API Closed hardware Portable VMs WorkstaKons + UNIX UNIX System Call API Start of Open Source SoSware Portable applicakons Closed Systems Closed Systems Closed hardware OpenFlow API Open Source ApplicaKons Portable applicakons 1970 1980 UWDC, Utrecht, 1990 6 maart 2013 2000 2010 54/55

Thank You Ronald.vanderPol@SURFnet.nl 55/55

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information