OpenFlow/So+ware- defined Networks Srini Seetharaman Clean Slate Lab Stanford University July 2010
Outline MoFvaFon OpenFlow - Technical details Overall ecosystem Deployments
We have lost our way RouFng, management, mobility management, access control, VPNs, App App App OperaFng System Million of lines of source code 5500 RFCs Barrier to entry Specialized Packet Forwarding Hardware 500M gates 10Gbytes RAM Bloated Power Hungry VerFcally integrated Many complex funcfons baked into the infrastructure OSPF, BGP, mul,cast, differen,ated services, Traffic Engineering, NAT, firewalls, MPLS, redundant layers, Looks like the mainframe industry in the 1980s
Current Internet Closed to InnovaFons in the Infrastructure App App App Closed OperaFng System Specialized Packet Forwarding Hardware Ap p Ap p OperaFng System Ap p App App App OperaFng System Specialized Packet Forwarding Hardware App App App OperaFng System Specialized Packet Forwarding Hardware App App App Specialized Packet Forwarding Hardware OperaFng System Specialized Packet Forwarding Hardware 4
So+ware Defined Networking approach to open it App App App Network OperaFng System App App App OperaFng System Specialized Packet Forwarding Hardware Ap p Ap p OperaFng System Ap p App App App OperaFng System Specialized Packet Forwarding Hardware App App App OperaFng System Specialized Packet Forwarding Hardware App App App Specialized Packet Forwarding Hardware OperaFng System Specialized Packet Forwarding Hardware
The So+ware- defined Network 3. Well- defined open API App App App Network OperaFng System 2. At least one good operafng system Extensible, possibly open- source 1. Open interface to hardware Simple Packet Forwarding Hardware Simple Packet Forwarding Hardware Simple Packet Forwarding Hardware Simple Packet Forwarding Hardware Simple Packet Forwarding Hardware
Trend App App App App App App Windows Windows Windows (OS) (OS) (OS) Linux Linux Linux Mac Mac Mac OS OS OS NOX Controller Controller 1 1 (Network OS) Controller Controller Network 22 OS VirtualizaFon layer x86 (Computer) VirtualizaFon or Slicing OpenFlow Computer Industry Network Industry
Consequences Reduced cost and improved control for exisfng apps More innovafon in network services Owners, operators, 3 rd party developers, researchers can improve the network E.g. energy management, data center management, policy roufng, access control, denial of service, mobility Lower barrier to entry for compeffon Healthier market place, new players Trend is towards an open- source, vendor- independent, so+ware- defined network
What is OpenFlow?
Ethernet Switch
OpenFlow Protocol (SSL/TCP)
OpenFlow Flow Table AbstracFon So+ware Layer Hardware Layer OpenFlow Firmware MAC src MAC dst Flow Table Src Dst TCP sport TCP dport AcFon * * * 5.6.7.8 * * port 1 Controller PC port 1 OpenFlow- enabled switch port 2 port 3 port 4 5.6.7.8 1.2.3.4
OpenFlow usage Alice s OpenFlow Rule Switch Alice s code Controller PC Decision? OpenFlow Protocol Alice s OpenFlow Rule Switch Alice s OpenFlow Rule Switch OpenFlow offloads control intelligence to a remote software
Usage examples Alice s code: Simple learning switch Per Flow switching Network access control/ firewall StaFc VLANs Her own new roufng protocol: unicast, mulfcast, mulfpath Home network manager Packet processor (in controller) valice VM migrafon Server Load balancing Mobility manager Power manangement Network monitoring and visualizafon Network debugging Network slicing and much more you can create!
MAC learning switch Switch MAC MAC Port src dst Flow Matching Examples Eth type VLAN ID Src Dst Prot TCP sport TCP dport AcFon * * 00:1f:.. * * * * * * * port6 Flow Switching Switch MAC MAC Port src dst Eth type VLAN ID Src Dst Prot TCP sport TCP dport AcFon port3 00:20.. 00:1f.. 0800 vlan1 1.2.3.4 5.6.7.8 4 17264 80 port6 Firewall Switch MAC Port src MAC dst Eth type VLAN ID Src Dst Prot TCP sport TCP dport Forward * VLAN Switching Switch MAC Port src * * * * * * * * * 22 drop MAC dst Eth type VLAN ID Src Dst Prot TCP sport * 00:1f.. * vlan1 * * * * * TCP dport AcFon port6, port7
Where are we?
OpenFlow building blocks o+race oflops openseer Monitoring/ debugging tools ENVI (GUI) LAVI Stanford Provided n- CasFng GENI Aggregate Manager ApplicaFons FlowVisor Console Nicira NOX Commercial Switches HP, NEC, Pronto, Juniper.. and many more FlowVisor Stanford Provided So+ware NetFPGA Ref. Switch OpenWRT SNAC PCEngine WiFi AP Broadcom Ref. Switch OpenVSwitch Controller Slicing So+ware OpenFlow Switches 18
Core Router OpenFlow Vendor Hardware Prototype Cisco Catalyst 6k (prototype) Juniper MX- series Product Enterprise Campus Data Center Arista 7100 series (Q4 2010) NEC 8800 Pronto HP ProCurve 5400 and others Circuit Switch Ciena CoreDirector WiMAX (NEC) more to follow... Wireless 19
Other partners in the ecosystem OpenFlow Switch/router prototypes to come: Dell, Netgear, Huawei Service Providers and carriers involved in deployments/trials: Google, Internet2, JGN- Plus, NLR, Deutsche Telekom, BriFsh Telecom, France Telecom, NTT Further, there is acfve parfcipafon from: BigSwitch, Broadcom, Brocade, Docomo, Ericsson, Extreme, Marvell and many more!!
Ecosystem coming together Academy Vendors (Hardware/So+ware) Providers Researchers Research & EducaFon Networks Chip Vendors Switch/Router Vendors - Enterprise & Backbone - Packet & Circuit - Wireless New Class Data Center Google, Amazon, Microso+,.. NW Provider DT, DoCoMo (Level3, BT, Verizon,..) Disclaimer: level of the interest differs 21
Deployments worldwide
OpenFlow as GENI Networking Substrate Eight universities and two national research backbones
OpenFlow Deployment at Stanford OpenFlow- enabled buildings Gates Computer Science Building CIS EE Building Packard EE Building (soon) 20 switches from NEC, HP and Pronto 50 OpenFlow enabled WiFi APs WiMAX OpenFlow Service 24
Current Trials 68 trials/deployments spanning 13 countries
Final Takeaway Interest from providers/data centers Deployments Support from vendors Disclaimer: level of the interest differs Are you ready to join the trend of SDN?