Technology Analysis of Service Chaining Approaches

Similar documents
SDN CONTROLLER. Emil Gągała. PLNOG, , Kraków

Authors contact info: Paul Quinn Distinguished Engineer Cisco Systems 55 Cambridge Parkway Cambridge, MA

Software-Defined Network (SDN) & Network Function Virtualization (NFV) Po-Ching Lin Dept. CSIE, National Chung Cheng University

WHITE PAPER. Network Virtualization: A Data Plane Perspective

ODL: Service Function Chaining

The following normative disclaimer shall be included on the front page of a PoC report:

Dynamic Service Chaining for NFV/SDN

Virtualization, SDN and NFV

Outline. Why Neutron? What is Neutron? API Abstractions Plugin Architecture

OVERLAYING VIRTUALIZED LAYER 2 NETWORKS OVER LAYER 3 NETWORKS

Software Defined Network (SDN)

Data Center Network Virtualisation Standards. Matthew Bocci, Director of Technology & Standards, IP Division IETF NVO3 Co-chair

Qualifying SDN/OpenFlow Enabled Networks

SDN-NFV Open Source. Landscape, Scaling, Use-Cases Sharon Barkai Cofounder, ConteXtream. Santa Clara, CA USA April 2015

Challenges and Opportunities:

An Open Approach to Enhancing Networking for OpenStack

Software Defined Networking (SDN) - Open Flow

Enabling Solutions in Cloud Infrastructure and for Network Functions Virtualization

SOFTWARE DEFINED NETWORKS REALITY CHECK. DENOG5, Darmstadt, 14/11/2013 Carsten Michel

Utility Computing and Cloud Networking. Delivering Networking as a Service

Cloud Networking Disruption with Software Defined Network Virtualization. Ali Khayam

L4-L7 Service Function Chaining Solution Architecture

CORD Fabric, Overlay Virtualization, and Service Composition

White Paper. Contrail Architecture

Palo Alto Networks. Security Models in the Software Defined Data Center

Agile VPN for Carrier/SP Network. ONOS- based SDN Controller for China Unicom MPLS L3VPN Service

Introduction to Software Defined Networking

VXLAN Bridging & Routing

How To Make A Vpc More Secure With A Cloud Network Overlay (Network) On A Vlan) On An Openstack Vlan On A Server On A Network On A 2D (Vlan) (Vpn) On Your Vlan

BGP L3VPN Virtual PE Framework

What is SDN? And Why Should I Care? Jim Metzler Vice President Ashton Metzler & Associates

Extending Networking to Fit the Cloud

Surviving the SDN Wars. Curt Beckmann Chair of Forwarding Abstractions WG, ONF and EMEA CTO

SOFTWARE DEFINED NETWORKING

Bring your virtualized networking stack to the next level

Using SouthBound APIs to build an SDN Solution. Dan Mihai Dumitriu Midokura Feb 5 th, 2014

Transition to IPv6 in Service Providers

WHITEPAPER. Bringing MPLS to Data Center Fabrics with Labeled BGP

Designing Virtual Network Security Architectures Dave Shackleford

Leveraging ONOS SDN Controller for SD-WAN Experiment

How To Orchestrate The Clouddusing Network With Andn

Network Virtualization

SDN Controller Requirement

Overlay networking with OpenStack Neutron in Public Cloud environment. Trex Workshop 2015

Service Chaining in Carrier Networks

AT&T Managed IP Network Service (MIPNS) MPLS Private Network Transport Technical Configuration Guide Version 1.0

Defining SDN. Overview of SDN Terminology & Concepts. Presented by: Shangxin Du, Cisco TAC Panelist: Pix Xu Jan 2014

Testing Software Defined Network (SDN) For Data Center and Cloud VERYX TECHNOLOGIES

Transport SDN Directions. March 20, 2013 Lyndon Ong Ciena

VXLAN, Enhancements, and Network Integration

Network Virtualization Network Admission Control Deployment Guide

SDN PARTNER INTEGRATION: SANDVINE

Cisco Virtual Topology System: Data Center Automation for Next-Generation Cloud Architectures

SOFTWARE-DEFINED NETWORKING AND OPENFLOW

MPLS VPN Services. PW, VPLS and BGP MPLS/IP VPNs

Building an Open, Adaptive & Responsive Data Center using OpenDaylight

Telecom - The technology behind

Transform Your Business and Protect Your Cisco Nexus Investment While Adopting Cisco Application Centric Infrastructure

Using SDN-OpenFlow for High-level Services

Network Virtualization and Software-defined Networking. Chris Wright and Thomas Graf Red Hat June 14, 2013

DREAMER and GN4-JRA2 on GTS

MPLS VPN over mgre. Finding Feature Information. Prerequisites for MPLS VPN over mgre

VNF & Performance: A practical approach

Cisco Prime Network Services Controller. Sonali Kalje Sr. Product Manager Cloud and Virtualization, Cisco Systems

The Hybrid- Open ( HOpen ) router architecture. Brian Field / Comcast

MPLS over Various IP Tunnels. W. Mark Townsley

SDN Architecture and Service Trend

IPv6 over IPv4/MPLS Networks: The 6PE approach

Introducing Basic MPLS Concepts

CGN Deployment with MPLS/VPNs

Definition of a White Box. Benefits of White Boxes

HAWAII TECH TALK SDN. Paul Deakin Field Systems Engineer

SDN v praxi overlay sítí pro OpenStack Daniel Prchal daniel.prchal@hpe.com

Group-Based Policy for OpenStack

IxNetwork TM MPLS-TP Emulation

MPLS Basics. For details about MPLS architecture, refer to RFC 3031 Multiprotocol Label Switching Architecture.

Quantum Hyper- V plugin

Leveraging SDN and NFV in the WAN

MPLS is the enabling technology for the New Broadband (IP) Public Network

How To Write A Network Plan In Openflow V1.3.3 (For A Test)

Software Defined Networking (SDN) OpenFlow and OpenStack. Vivek Dasgupta Principal Software Maintenance Engineer Red Hat

DEMYSTIFYING ROUTING SERVICES IN SOFTWAREDEFINED NETWORKING

SDN AND SECURITY: Why Take Over the Hosts When You Can Take Over the Network

Leveraging Advanced Load Sharing for Scaling Capacity to 100 Gbps and Beyond

MPLS Layer 3 and Layer 2 VPNs over an IP only Core. Rahul Aggarwal Juniper Networks. rahul@juniper.net

WAN Topologies MPLS. 2006, Cisco Systems, Inc. All rights reserved. Presentation_ID.scr Cisco Systems, Inc. All rights reserved.

Open Transport Switch:

DCB for Network Virtualization Overlays. Rakesh Sharma, IBM Austin IEEE 802 Plenary, Nov 2013, Dallas, TX

Cisco Which VPN Solution is Right for You?

Getting started with O3 Project Achievement ~ Innovating Network Business through SDN WAN Technologies~

SDN. Roadmap to Operating SDN-based Networks Workshop July 15, Kireeti Kompella CTO, JDI. Copyright 2014 Juniper Networks, Inc.

MPLS-based Virtual Private Network (MPLS VPN) The VPN usually belongs to one company and has several sites interconnected across the common service

Charter Text Network Design and Configuration

MP PLS VPN MPLS VPN. Prepared by Eng. Hussein M. Harb

CERN Cloud Infrastructure. Cloud Networking

Transcription:

Technology Analysis of Service Chaining Approaches Bin Hu AT&T

Content Key Concepts MPLS/BGP VPN Approach VxLAN-GPE NSH Approach Open Stack Projects related to SFC / MPLS VPN / BGP Open Daylight Projects related to SFC / MPLS VPN / BGP OPNFV Projects related to SFC / MPLS VPN / BGP Key Takeaways References 3/17/2016 Open Network Summit 2016 2

Key Concepts Classification Policy-based function to identify / select / match traffic flow with a specific service function chain Customer / network / service specific policies Service Function Chain (aka Service Chain) An ordered set of service functions and ordering constraints that must be applied to packets and/or frames selected as a result of Classification As simple as a linear chain; or as complex as a service graph with multiple branches Service Function Forwarding Function (VRF or SFF) Forward traffic to one or more connected SF(s) traffic to another VRF/SFF or classifier Terminate SFC 3/17/2016 Open Network Summit 2016 3

MPLS/BGP VPN Approach (1 of 2) L3VPN as the overlay encapsulation tunnel for routing and traffic flow over SFC topology VM(s) attached to L3VPN Controller manages SFC topology, instantiation of SFC, VRF creation and configuration, and route installation Support use of existing protocols and PE devices with current capabilities BGP is used for route advertising NETCONG/YANG or XMPP can be used for controller to create and configure VRFs, set up RTs and install routes into service instance interfaces Support both physical and virtual deployment Multiple Control Plan Protocol (e.g. L3VPN, EVPN) and Multiple Data Plane Encapsulation (MPLS/GRE, VxLAN etc.) supported 3/17/2016 Open Network Summit 2016 4

MPLS/BGP VPN Approach (2 of 2) Control Plane Controller Steering Traffic into SFC: Service Plane Network-A IP B BGP / NetConf YANG / XMPP MPLS/ IP B GRE VRF R-A I-VRF SF-1 Data Plane R-1 Entrance MPLS/ IP B GRE E-VRF SF-n MPLS/ IP B GRE I-VRF E-VRF R-n MPLS/GRE or VxLAN (Encapsulation Tunnel) BGP / NetConf YANG / XMPP VRF R-B Exit Network-B IP B Destination-based Flow-classification based Classifier Traffic Flow through SFC: VPN Forwarding Multiple VPN control protocol supported Multiple data plane encapsulation supported LB ensures consistent traffic paths Notes Controller NETCONF-YANG / XMPP BGP Description Manage instantiation of SFCs by (1) building a model of the desired topology (SFs, # of instances, connectivity); (2) instantiating of SF instances; (3) calculating routes and instantiating VRFs that will form virtual networks between SF instances; and (4) installing routes to cause traffic to flow into and between SF instances. Controller uses NETCONF-YANG and XMPP to create and configure VRFs, set up RTs and install routes into service instance interfaces Controllers implements RR. Routers uses BGP RR to advertise routes, and interacts with Controller for updates 3/17/2016 Open Network Summit 2016 5 Load Balancing Combined I-VRF/E-VRF LB and Forward/Reverse Flow LB (for stateful SF) is supported so that each SF in SFC can be separately scaled

NSH Approach (1 of 4) Focus on virtualized SF deployment Encapsulation is based on NSH, and tunneling is based on VxLAN-GPE or GRE or Ethernet VM is attached to OVS (L2), and assumes appropriate setup available Multiple tunneling protocols can be applied Flow-based classification allows for flexible classification criteria Classifier is required 3/17/2016 Open Network Summit 2016 6

NSH Approach (2 of 4) Control Plane Control Plane Functions Steering Traffic into SFC: Classifier Service Plane Data Plane SFC-enabled Domain Service Classifier SFC Encap SF-1 SF Forwarder SFC Encap Metadata SF-n SF Forwarder SFC Encapsulation (e.g. NSH over VxLAN-GPE) Service Classifier Traffic Flow through SFC: Traffic from the network that satisfies classification criteria is encapsulated and directed into an SFP SFF delivers packets to SFs based on SFC Encap Metadata may be added and passed between nodes Transit routers/switches forward based on outer encapsulation Notes Description Control Plane Function Manage instantiation of SFCs by (1) domain-wide view of available SF resources; (2) use policies to construct SFCs and associated SFPs; (3) select specific SFs for requested SFCs; (4) provides SFC dataplane info to other components, e.g. SFF; (5) provides metadata and usage info for Classifier; (6) provide info including policy info for other SFC elements to properly interpret metadata Service Classifier SF Forwarder Determine what traffic needs to be chained based on policy Deliver packets / frames to SFs based on info in SFC Encapsulation, e.g. an overlay switch like OVS 3/17/2016 Open Network Summit 2016 7 SFC Encapsulation Carry explicit information used to identify SFP; also enable metadata and context information. It is transport independent

NSH Approach (3 of 4) SFC-unaware SF SF Proxy SF-n Data Plane SFC-enabled Domain Service Classifier SFC Encap SF Forwarder SFC Encap Metadata SF Forwarder SFC Encapsulation (e.g. NSH over VxLAN-GPE) Service Classifier SF Proxy Supports SFC-unaware SFs, e.g. legacy SFs Removes and inserts SFC encapsulation on behalf of an SFC-unaware service function Component Insert NSH Remove NSH Select SFP Decrement Service Index Update Context Header Classifier SF Forwarder Service Policy Selection Service Function 3/17/2016 Open Network Summit 2016 8 SF Proxy

NSH Approach (4 of 4) Base HDR Info about service header and payload protocol O: OAM oackets C: critical metadata TLV present. MD Type 2 only Next Protocol: protocol type of original packets (IPv4, IPv6, Ethernet) Service Path HDR path id and location Service Index: 255 by classifier, and decrement after SF has processed packets Control plane may set different initial value Context HDRs Opaque metadata TLV Class: the scope of Type field, e.g. a specific vendor, or specific SDO-allocated Type: specific type of information being carried within the scope of given TLV class Combined TLV.C: 0-127 for non-critical, and 128-255 for critical options 3/17/2016 Open Network Summit 2016 9

BGP VPN v.s. NSH MPLS / BGP VPN Separate Control Plane, Service Plane and Data Plane Classifier not required L3VPN as overlay encapsulation tunnel Both physical and virtual deployment VM attached to L3 NSH Separate Control Plane, Service Plane and Data Plane Classifier required Encapsulation based on NSH, and overlay tunnel based on VxLAN or GRE or Ethernet Virtual deployment VM attached to L2 (OVS) 3/17/2016 Open Network Summit 2016 10

OpenStack Projects related to SFC / MPLS VPN / BGP Project Name Neutron MPLS VPN-as-a-Service Description A Neutron extension that introduces MPLS VPN feature set. APIs for creating, deleting, listing, showing and updating VPN services of a tenant APIs for creating, deleting, listing, showing and updating MPLS Access VPNConnection APIs for creating, configuring, deleting and showing MPLS access connection Neutron APIs for Service Chaining Port Chain concept which is an ordered list of Neutron ports that defines the chain Flow Classifier concept which specifies what traffic flow enters the service chain Blueprint is proposed to address common SFC API independent of backend implementation Northbound Intent Based Service Chaining API and Intent Engine Neutron API Extension for Service Chaining Common Service Chaining Driver API Service Registration API Driven by the need of OPNFV s OpenStack-based VNF Forwarding Graph project 3/17/2016 Open Network Summit 2016 11

OpenStack Projects related to SFC / MPLS VPN / BGP Project Name BGP-MPLS VPN Extension for OpenStack Networking Description Provides an API and Framework to interconnect BGP/MPLS VPNs to Openstack Neutron networks, routers and ports. Allow attachment of Neutron networks and/or routers to carrier provided WANs using standard protocols of BGP and MPLS. A vendor neutral API and data model are provided to allow multiple back-ends that can be "plugged in Support both L3VPN and EVPN 3/17/2016 Open Network Summit 2016 12

Open Daylight Projects related to SFC / MPLS VPN / BGP Project Name Group-based Policy (GBP) Service Function Chaining VPN Service Description A policy framework and engine for ODL Used as Classifier in the setup of ODL SFC and OPNFV SFC (based on VxLAN-GPE NSH) Provides the infrastructure (chaining logic, APIs) needed for ODL to provision a service chain in the network Based on VxLAN-GPE NSH approach Implement the infrastructure services required to support L3 VPN service Implementation of L2 VPN and L3 VPN services for data center tenants using technologies like BGP-MPLS VPN and EVPN Build L3 VPN Services using L3VPN based on BGP-MPLS (RFC 4364) in the first Phase (targeted for Lithium). L2 VPN Service based on EVPN (draft-ietf-l2vpn-evpn) is planned for a future ODL release. 3/17/2016 Open Network Summit 2016 13

OPNFV Projects related to SFC / MPLS VPN / BGP Project Name OpenStack-based VNF Forwarding Graph Service Function Chaining SDN Distributed Routing and VPN Description Integrate OpenStack SFC related components in order to demonstrate an OpenStack based and OpenFlow compliant solution which will dynamically set up VNFFG Deliverables include vendor-neutral SFC requirement and Interface specification, and development of components such as VNFFG Manager, SDN Controller, VNFFG Classifier Provides the infrastructure to install the upstream ODL SFC implementation project in an NFV environment so as to allow ODL to create SFCs across OPNFV VNFs VxLAN-GPE NSH approach Dependent on ODL GBP and SFC projects Address integration and deployment of VIM and Virtual networking components to provide Layer 3 VPN services in the OPNFV platform. In collaboration with the related BGPVPN project in OpenStack and supported implementations in SDN controllers (e.g. VPN in ODL) 3/17/2016 Open Network Summit 2016 14

Key Takeaways Diversity is healthy, but not fragmentation For end user, more interests are: Common APIs that can leverage diversified backend implementations A method can support inter-domain/end-to-end SFC use cases across heterogeneous networks A deployment that can leverage existing network capabilities to minimize TCO 3/17/2016 Open Network Summit 2016 15

References Service Function Chaining (SFC) Architecture, IETF RFC 7665 Service Chaining using Virtual Networks with BGP VPNs, IETF Internet-Draft Network Service Header, IETF Internet-Draft Generic Protocol Extension for VXLAN, IETF Internet-Draft Generic Routing Extension, IETF RFC 2784 and 2890 3/17/2016 Open Network Summit 2016 16

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information