Networking Goes Open-Source Michael Zimmerman VP Marketing, Tilera mzimmerman@tilera.com Open Server Summit, October 23, 2013
Networking Goes Open-Source
? Networking Goes Open-Source Are they connected
Networking Operating Systems 93 percent of the deployed networking operating systems (worldwide) are proprietary IOS (Cisco) Junos (Juniper) AOS (ALU OS) SROS (ALU Routers) EOS (Arista) VRP (Huawei) and more Networking software emerged as hardware centric, optimized for high speeds, with software tightly coupled to hardware In the past, hardware dominated (software was a by-product) Then everything changed: Manycore Processors entered the networking dataplane market 4
An Evolution is Underway Modern networks are designed for datacenters (mostly servers) Economic drive: Mega cloud providers are winning Technology drive: Elasticity, cheap and powerful COTS servers Agility: Content, users and applications are unpredictable Need for programmability In modern designs, hardware is dictated by software Previously was software dictated by hardware In the past, Linux has not supported L2-4 protocols very well But Linux is pervasive for control/application plane Many initiatives to address open networking OS: Intel Open Network Platform (ONP), Open vswitch OpenFlow (SDN), Open Daylight Windriver Open Virtualization Profile OpenStack, Open Ethernet, OpenNMS 5
Openness Dictated by Cloud Economy Many initiatives to address open networking OS: Intel Open Network Platform (ONP), Open vswitch OpenFlow (SDN), Open Daylight Windriver Open Virtualization Profile OpenStack, Open Ethernet, OpenNMS 6
Cloud Economy Seizing the Infrastructure Spend Networking Equipment Serves Mature Economies: Wireline and Wireless, Enterprise, SMB, Government, Military, etc. Serves Explosive Economies: Social Networks, Mobile Applications Video, SaaS, etc. Server
Networking and Security Workloads are Moving to the Cloud Load balancing, Policy Router, Firewall, IDS/IPS, DPI, NAT, DDoS, SBC, WiFi cntrl, etc. 8
Elasticity Key Design Metric Virtualization Open, fast to develop, decouple hardware from software, Elastic Inflexible Capacity Can t scale 9
Networking and Security Workloads are Moving to the Cloud Virtualization Open, fast to develop, decouple hardware from software, Elastic Proprietary Software No community innovation 10
Open Stacks are Preferred by Cloud Providers Open Closed NPU, FPGA, ASICs, ASSP Manycore 11
Networking Open Source Hyper Growth Manycore Open Network Platform (ONP) Open vswitch OpenFlow (SDN) Open Daylight Open DPDK OpenSSL OpenStack Open Ethernet OpenNMS And more to come..
a New Problem Statement Networking Workloads x VMs x Traffic >>> Compute Networking Workload Compute Cycles / Packet L2 Forwarding 70 IP Routing 175 L2-4 Classification 750 TCP Termination 1500 Stateful Firewall 2250 OpenFlow Process 5000 IDS/IPS 5000 NextGen Firewall 8500 IPsec / SSL 9500 Firewall + SSL 18000 13
Server Processors Aren t Architected for Data Plane Open Source Control (Application) Plane doesn't scale Hypervisor Open Source Data (Security) Plane doesn't scale Tables search 33% Table Flow Actions Search 15% 22% 30% VM/Applications N-Tuple Classification Flow Rx/Tx ~ 30% Application centric processing ~ 70% Data Plane centric processing Server processor workload profile 14
Potential Solution: Buy More Servers And more ToR switches And more floor space And more power And more cooling And. Google Iowa data center This Approach will not Scale 15
Or Welcome to Heterogeneous Computing, Harnessing Manycore for Data/Security Plane Decoupled Control and Dataplane Control (Application) Plane Scales Data (Security) Plane Scales Hypervisor Control Plane Data Plane 33% 15% 22% 30% x86 VM/Applications Tables search Flow Actions N-Tuple Classification Flow Rx/Tx Networking workload profile 6% I/O DMA 7% VMM 5% 82% VM / Applications Flow Rx/Tx ~ 82% Control Plane ~ 18% Data Plane 16
Announcing TILE-IQ TILE-Gx + SW Tools + Applications TILEncore-Gx Intelligent Application Adapter family Scales from 9 to 72 cores, 10G to 80G of networking Standard C/Linux programming COTS Servers compliant Networking-optimized reference applications Optimized x86 driver suite (DPDK) Exceptional performance/watt 17
Requirements for Intelligent Application Adapter TILEncore-Gx9 1 x 10Gbps TILEncore-Gx16 2 x 10Gbps TILEncore-Gx36 4 x 10Gbps High performance Low power C/C++ and Linux programming High throughput Scale (low to high) and Future Proof TILEncore-Gx72 8 x 10Gbps TILEncore-X 4 x 40Gbps 1 x 100G 18
TILE-IQ Fact Sheet In Production Product TILEncore-Gx9 TILEncore-Gx16 TILEncore-Gx36 TILEncore-Gx72 Ethernet Ports 2 x 10G 2 x 10G 4 x 10G 8 x 10G SR-IOV Support Yes Yes Yes Yes PCIe 1 x 8 Gen 2.0 1 x 8 Gen 2.0 1 x 8 Gen 2.0 1 x 8 Gen 3.0 On Board Memory 4GB 4GB 8GB 16GB Packet Throughput 15Mpps 30Mpps 60Mpps 120Mpps PCIe throughput (64B) 20Gbps 20Gbps 20Gbps 40Gbps L2-4 classification 10Gbps (@4-cores) 20Gbps(@8-cores) 20Gbps(@16-cores) 40Gbps (@30-cores) L4-7 DPI 5Gbps 10Gbps 20Gbps 40Gbps TCP/IP Performance 10Gbps (@4-cores) 20Gbps(@8-cores) 40Gbps(@16-cores) 80Gbps (@30-cores) OpenVswitch 5Gbps 10Gbps 20Gbps 40Gbps 19
TILE-IQ Architecture Hypervisor PCIe Open Source for Control (Application) Plane Scales TILE-Gx VF VF VF VF VF VF VF VF VF Monitoring L4-7 Load Balance N-Tuple Linux Classifier/Action TCP/IP IDS/IPS SSL IPsec Open vswitch DPI SR-IOV Open Source for Data (Security) Plane Scales 1-8 10Gbps Interfaces 20
64 x 10G NFV/SDN Appliance C/Linux programmable at levels L2 L7 with x86 application plane & eco-system 640Gb L2-7 Appliance 11 16 4x 10Gbps TILEncore Adapters Commodity dual-socket x86 server 21
1RU Programmable NFV/SDN Appliance Handles L2-L7 Networking/Security Workloads with 8x 10Gb Ports TILEncore-Gx72 with 8 10Gb ports 22
TILE-Gx72 Processor: At-a-Glance Seventy two 64-bit RISC cores, 3-wide VLIW 259 Billion operations per second 18MB coherent L3, 23MB total cache 1.2GHz, TSMC 40nm HPM 75W TDP Wirespeed C-programmable packet processing, and load balancing engine Dynamic flow affinity Crypto Offload (AES, SHA, RSA, EC, etc.) 45K RSA per second (1Kb), no core resources 8x 10GbE XAUI ports Configurable as 32 ports of 1GbE 6x PCIe ports 96 Gbps of dedicated PCIe support (SR-IOV) 4x DDR3 controllers @ 1866 60GB/s main memory BW Standard SMP Linux, C/C++, gdb, Java, World s Highest single chip CoreMark score 276,234 24-Lanes MiCA UART x2, USB x2, JTAG, I2C, SPI PCIe 2.0 8 Lanes PCIe 2.0 4 Lanes PCIe 2.0 4 Lanes PCIe 2.0 8 Lanes Flexible I/O MiCA TRIO DDR3 Controller DDR3 Controller DDR3 Controller DDR3 Controller 45 x 45mm BGA package In Production mpipe Network I/O 4x GbE SGMII 10 GbE XAUI 4x GbE SGMII 10 GbE XAUI 4x GbE SGMII 10 GbE XAUI 4x GbE SGMII 10 GbE XAUI 4x GbE SGMII 10 GbE XAUI 4x GbE SGMII 10 GbE XAUI 4x GbE SGMII 10 GbE XAUI 4x GbE SGMII 10 GbE XAUI SerDes SerDes SerDes SerDes SerDes SerDes SerDes SerDes 32-Lanes 23
Wireless/4G RNC/Controller VF Hypervisor PCIe VF VF VF VF VF VF VF VF WiFi/4G Network Controller 40Gbps SDN Forwarding Plane TILE-Gx Monitoring L4-7 Load Balance N-Tuple Linux Classifier/Action TCP/IP IDS/IPS SSL IPsec Open vswitch DPI 1-8 10Gbps Interfaces 24
Network Analytics/Monitoring Hypervisor PCIe Big Data Analytics 40Gbps L4-7 DPI VF VF VF VF VF VF VF VF VF TILE-Gx Monitoring L4-7 Load Balance N-Tuple Linux Classifier/Action TCP/IP IDS/IPS SSL IPsec Open vswitch DPI 1-8 10Gbps Interfaces 25
L4-7 Load Balancing VF Hypervisor PCIe VF VF VF VF VF VF VF VF L4-7 Logic 40Gbps SSL/TCP Termination TILE-Gx Monitoring L4-7 Load Balance N-Tuple Linux Classifier/Action TCP/IP IDS/IPS SSL IPsec Open vswitch DPI 1-8 10Gbps Interfaces 26
Network Monitoring/Recording (Cyber Security) VF Hypervisor PCIe VF VF VF VF VF VF VF VF Recording and offline/online Cyber Security 80Gbps L2-4 Classification and Filtering TILE-Gx Monitoring L4-7 Load Balance N-Tuple Linux Classifier/Action TCP/IP IDS/IPS SSL IPsec Open vswitch DPI 1-8 10Gbps Interfaces 27
Next Phase: Infrastructure-as-a-Datacenter Flow of innovation: Manycore, networking open source, decoupling of control and data plane Server Appliance