HPC SEMINAR – DELL & INTEL, 24 APRIL 2014
OpenFlow & Software Defined Networking
Outline
Vision behind Software Defined Networking (SDN)
OpenFlow
OpenDaylight SDN controller framework
Examples of OpenFlow usage
Network Function Virtualisation (NFV)
Open Hardware
SURFnet & SDN/OpenFlow
Vision Behind Software Defined Networking
Separation of Data Plane (data forwarding) and Control Plane (policy)
Logically centralised policy (control plane)
Program (controller) that reads policy configurations, compiles it to forwarding rules and sends those to network elements à Software Defined Networking
“Dumb” switches (data plane)
Firmware does packet frame forwarding only
Standardised protocol between switches and controllers (e.g. OpenFlow) Competition on hardware, networking intelligence sits in controller
Traditional Networking
HPC Seminar, 24 April 2014
Routing and Switching Protocols
SDN Architecture
HPC Seminar, 24 April 2014
Open Southbound API(s)
---APP APP APP APP
Controller Framework (Network Operating System)
Open Northbound API(s)
Advantages of SDN
Transition from single all-in-one boxes to separate modules from different vendors
Competition between hardware vendors (switches) Competition between software vendors (controller)
More choices, more competition, faster innovation
• SDN applications
• SDN controllers and Network Operating Systems
• Switches
Faster innovation
• Much easier to upgrade software running on a server, compared to firmware in switches
• Network functions not limited by slow embedded processors in switches, software runs on
fast servers
Vertically integrated
Closed, proprietary
Slow innovation
Small industry
Specialized Operating System Specialized Hardware App App App App App App App App App App App Specialized ApplicationsHorizontal
Open interfaces
Rapid innovation
Huge industry
Microprocessor Open Interface Linux Mac OS Windows (OS) or or Open Interface (slide by NickVertically integrated
Closed, proprietary
Slow innovation
App App App App App App App App App App AppHorizontal
Open interfaces
Rapid innovation
Control Plane Control Plane Control Plane or or Open Interface Specialized Control Plane Specialized Hardware Specialized Features Merchant Switching Chips Open Interface (slide by Nick McKeown, Stanford University)Computing vs Networking
Closed Systems
Closed hardware Workstations + UNIX UNIX System Call API
Start of Open Source Software Portable applications Open Hardware Hypervisor API Portable VMs 1970 1980 1990 2000 2010 Closed Systems Closed hardware OpenFlow API
Open Source Applications Portable applications
cl
ose
d
OpenFlow
OpenFlow Protocol
OpenFlow Switch OpenFlow Controller Flow Table OpenFlow Protocol TCP SSL TLS OpenFlow API HPC Seminar, 24 April 2014 11/34Swicth Forwarding Flow Table
HPC Seminar, 24 April 2014
Matching rule #1 Counter Action #1 Matching rule #2 Counter Action #2 Matching rule #3 Counter Action #3 Matching rule #4 Counter Action #4 Matching rule #5 Counter Action #5 Matching rule #6 Counter Action #6 Matching rule #7 Counter Action #7
Header Matching
Ingress port
Ethernet source/destination address Ethernet type
VLAN ID
VLAN priority
IPv4/IPv6 source/destination address IPv4/IPv6 protocol number
IPv4/IPv6 DS field (DSCP/ECN) IP protocol number
TCP/UDP/SCTP source/destination port ICMP/ICMPv6 type/code
ARP opcode, source/target IPv4 address MPLS label, TC
PBB I-SID
Actions
Forward
1 port or multiple ports (multicast)
Drop
Used for e.g. firewalling
Set any if the match fields
Modify VLAN (VLAN rewrite), IP address (NAT), etc.
Add or remove VLAN tag / MPLS label / PBB I-TAG
Push or pop labels
OpenFlow Standardisation
Open Networking Foundation (ONF)
Non-Profit consortium
Founded in March 2011 by Deutsche Telecom, Facebook, Google, Microsoft, Verizon and Yahoo!
Mission:
Open Networking Foundation (ONF) is a user-driven organization dedicated to the promotion and adoption of Software-Defined
Networking (SDN) through open standards development.
OpenDaylight SDN controller framework
HPC Seminar, 24 April 2014
Developed by an open consortium as a Linux Foundation Collaborative Project
Many large vendors as members
Most active members: Cisco, IBM, NEC, Ericsson, VMware, Red Hat
First release: February 2014 (hydrogen)
• Base edition (controller + OpenFlow)
• Virtualisation edition (base + affinity + OpenDOVE + OVSDB + VTN +
Defense4All)
• Service Provider edition (base + affinity + BGP/PCEP + LISP
FlowMapping)
OpenDaylight Architecture
Example of OpenFlow Usage
Data Centre
WAN network
Open vSwitch
HPC Seminar, 24 April 2014
Software switch that implements the OpenFlow protocol
• Open Source project
• Included in the Linux kernel, OpenStack, OpenNebula, …
Developed by Nicira (startup founded in 2007)
• Martin Casado (Stanford University)
• Nick McKeown (Stanford University)
• Scott Shenker (UC Berkeley)
Nicira was acquired by VMware in 2012 for USD 1.26 billion
Open vSwitch in a Cloud Environment
Google Data Network
Google has two networks:
I-Scale: User facing services (search, YouTube, Gmail, etc), high SLA
G-Scale: Data centre traffic (intra and inter), lower SLA, perfect for OpenFlow testing
OpenFlow introduced in G-Scale network since mid 2010 Experience/benefits of introducing OpenFlow:
Better Traffic Engineering (global view of network)
Centralised Traffic Engineering much faster on a 32 core server (25-50 times as fast) than on slow CPUs inside switches
Software development for a high performance server with modern software tools (debuggers, etc) much easier and faster and produces higher quality software than development for an embedded system (router/switch) with slow CPU and little memory
Google Data Network
Google OpenFlow Switch (source Google)
Google’s OpenFlow Deployment
Almost 100% Link Utilization
NFV
(Network Functions Virtualisation)
Network Functions Virtualisation
HPC Seminar, 24 April 2014
ETSI Industry Specification Group
Goal:
Provide Network Functions through virtualisation techniques using general purpose servers and storage devices
How:
Replace proprietary hardware network appliances by consolidating the network functions as applications running on virtual machines
Open Hardware
Open Compute Project
HPC Seminar, 24 April 2014
Started by Facebook in April 2011
Build servers and data centres following the Open Source model
Open Networking Project announced in May 2013
Build an open network switch
Current Projects:
• Intel: switch specification
• Mellanox: switch specification
• Cumulus Networks: ONIE (Open Network Install Environment)
• Broadcom: switch specification
SDN and SURFnet
SURFnet OpenFlow Activities
HPC Seminar, 24 April 2014
RoN 2011: OpenFlow technology assessment RoN 2011: OpenFlow Ethernet OAM demo (SC11)
RoN 2012: MPTCP multipath OpenFlow demo (GLIF, SC12, TNC2013) RoN 2012: Testbed with Pica8 OpenFlow switches
March 2013: OpenFlow workshop by Steve Wallace 2013: Partner in GN3plus JRA2 T1 SDN
2013: Partner in EU-JP FELIX interdomain OpenFlow testbeds
2013: OpenFlow testbed connected to i2, GÉANT3, StarLight, UvA
SURFnet OpenFlow Testbed
HPC Seminar, 24 April 2014
All switches in testbed Amsterdam (Science Park)
4x Pica8 3290 (48x 1GE UTP ports & 4x 10GE SFP+ ports) 1x Pica8 3920 (48x 10GE SFP+ ports & 4x 40GE QSFP+ ports)
3x Supermicro servers (one used for OpenStack & Neutron netwerk module testing)
External connections:
iCAIR @ StarLight Internet2
GN3plus OpenFlow Facility UvA
2014 Activities
HPC Seminar, 24 April 2014
Extend OpenFlow testbed to Groningen, Enschede, Utrecht, Delft
Evaluate OpenFlow controller frameworks (DONE: OpenDaylight)
GN3plus CoCo Open Call (TNO & SURFnet)
Build an international on-demand L2 virtual network service
Research on Networks Project with UTwente, RUG and UvA
Continue work in GN3plus JRA2 T1 SDN and EU-JP FELIX
Ronal van der Pol
