Network Analytics for
More Intelligent SDN
Derek Granath
Sr. Director, Product Line Management
Santa Clara, CA USA
April 2015
©2015 Extreme Networks, Inc. All rights reserved.
Agenda
The Network as a Strategic Business Asset
Network Analytics
Information About the Network
Information From the Network
Using SDN to Improve the Lync User Experience
Customer Example
3
•
Organizations require technology to make better business decisions
•
Innovative CIOs contribute to business transformation
•
Data traversing the network can be a source of strategic intelligence
•
Network Analytics can improve user experience, security, business transformation
STRATEGIC CONNECTIVITY
©2015 Extreme Networks, Inc. All rights reserved. 4
NETWORK ANALYTICS
BUSINESS
TRANSFORMATION
NETWORK ANALYTICS
BETTER USER
EXPERIENCE
NETWORK ANALYTICS
BETTER
SECURITY
• Understand application usage
to increase revenue
• Transform unknown or unrelated
info into business intelligence
• Measure strategic applications to
assure adoption and productivity
• Streamline troubleshooting
with application and network
performance visibility
• IT business planning for improved
productivity
• Optimize network and server
architecture for bandwidth-hungry
applications
• Help assure security
compliance
• Detect malicious applications
• Understand shadow IT or
unapproved applications
“As CIO, I’m now invited back to
the business table with my CEO
and lines of business”
“We are able to improve application
response time thus increasing
productivity”
“I have committed to increase
productivity by 30% over 5 years
using Purview
”
“We fixed performance issues on 6
servers in less than 20 minutes”
“We can open 1 trouble ticket
instead of 3 (server, network,
application)”
“We now schedule downtime based
on low application usage periods”
“We quickly located and
correlated application use”
“I can now tell if students are
using applications that meet our
security requirements”
Information about the Network
5Analyze
Implement
Monitor
Design/Optimize
• APs, Switches, Ports
• IP, Mac Addresses
• Topology
• Bandwidth Utilization
• Alarms & Alerts
Keeps the lights on, but
doesn’t contribute to
business transformation
©2015 Extreme Networks, Inc. All rights reserved.
Information from the Network
Context
Policy
Guest
Contractor
Employee
Employee
Owned
Vstng_Emp
Device
Personal
Device
Corporate
Device
Guest
Device
Conference
Rooms
Allow
Single
SSID/VLAN
Weekends
Holidays
Rate Limit
Contain
Web based
MAC
Multiple VLANs
Deny
M–S
8 am–6 pm
Time
Location
Access
Method
Device
User/Role
Outside the
agency
5ft from an
Acess Pt
Anytime
Hall way
Class room
Wired
802.1x
IF
$User_Identity
AND
$Device
AND
$Access
AND
$Location
AND
$Time
THEN
$Permission_Allowed
HTTP
Salesforce
Youtube
Application*
Oracle
Privileged
user
Auth.
Method
VDI
Service
personnel
Box
Wireless
Network Analytics for More Intelligent SDN
Optimize application performance to
improve user experience
Ensure SLAs for business critical
applications
Ensure business ROI on new
Applications
Better utilize network resources
Eliminate issues before they occur
7
More Intelligent SDN to
Improve User Experience
Access Type(s)
Application Provision
Authentication
Virtual Device
Identity(s)
Device Type(s)
Physical Device
Identity(s)
Location
Time of Day
Authorization
Health
User Identity – Joe
Smith
Apple Lion OSX v10.7 Android v4.0.4 Wednesday, April 11, 2012 9:41:00 AM EST Building-A Floor-2 Conference Room-7b Apple MacBook Air Samsung Galaxy Note Windows v7.5.3
MAC-Auth: 28:37:37:19:17:e6 PWA: 00:00:f0:45:a2:b3 802.1X: 00:0D:3A:00:a2:f1 Wireless
Associated AP: wifi-243 SSID: Prod-Guest BSSID: 0-1a-e8-14-de-98
Role: Sponsored Guest Sponsor: Jane Doe Internet Access
Shared Engineering Servers Web (HTTP): 5Mb download Email (SMTP): 2Mb download
All other Services: DISABLED
Symantec Anti-Virus: Enabled Signature Update – v10.4.3 OS Patches – Up to date Peer2Peer Service: DISABLED 43 Services Running
©2015 Extreme Networks, Inc. All rights reserved.
if this then that
Trigger
Action
Recipe
Ingredients
Ingredients
If I get an email with
a PowerPoint
attachment then
save it to Google
Drive
If my favorite stock hits my
target price then send me
a phone Notification
If I’m within 500m from
home, then open the
garage door, set the heat
to 20C and turn on the
kitchen light
If I send a text msg to IFTTT
containing the string ‘#help’
then ring my cell phone
©2015 Extreme Networks, Inc. All rights reserved.
So what does this have to do
with SDN?
DNS/DHCP
SDN
AAA
Topology
Services
Firewall
Skype for
Business
Analytics
SIEM
Orchestration
Business
Applications
Location
Services
VPN
If a medical device
connects to the
network then send
its traffic through the
firewall
If a Skype (Lync) video
call is initiated then apply
dynamic priority and
optimal network path for
the call
If a device is found
with a vulnerability
then automatically
redirect traffic to the
firewall
If network demand
from business
applications is high
then rate limit any
Netflix traffic
©2015 Extreme Networks, Inc. All rights reserved.
Skype for Business SDN Int
egration
(formerly known as Lync)
SDN to Deliver Improved User Experience
Automated End-to-End QoS for Skype for Business Clients
In-depth, Contextual Visibility into Performance, Call Quality
Qualified for Wired and Wireless
Lync Solution Architecture with Open SDN Platform
13
Leverages Open Daylight
‘OneController’
OpenFlow, OVSDB and other
protocols
QoS prioritization across mixed
switch infrastructures
Frees customers from proprietary
lock-in
SDN solution designed to broaden
market applicability
©2015 Extreme Networks, Inc. All rights reserved.
Visibility - Voice and Video Call Quality in Context
MOS
Start, End, Duration
Caller, Callee, URI
Location Info
Session Info
Prioritized Session Info
Analytics – Custom Reporting
©2015 Extreme Networks, Inc. All rights reserved.
City of Bellevue
16
