How To Orchestrate The Clouddusing Network With Andn

(1)

ORCHESTRATING THE

CLOUD

USING SDN

Joerg Ammon <jammon@brocade.com>

Systems Engineer Service Provider

2013-09-10

1

(2)

SDN Update - Openflow

(3)

OpenFlow 1.1 (.2, .3) added multiple tables

Plus “group tables” and various new actions for IPv6 support, MPLS, etc

3

• Forward packet to a port list

• Add/remove/modify VLAN Tag

• Drop packet

• Send packet to the controller

• ADDED A “GOTO TABLE N” action

Packet counters, byte counters,

and etc

OpenFlow-Enabled

Router

OpenFlow

Client

Control Plane

Data Plane

Matching Fields

Actions Stats

Flow Entry

Controller

OpenFlow

Ingress

Port

MAC

DA

MAC

SA

EtherType

VLAN

ID

P-bits

_Src

IP

_Dst

IP

_Protocol

IP

_DSCP

IP

TCP/UDP

src port

TCP/UDP

dst port

(4)

Example of a multi-table Openflow forwarding plan

9/16/13

4 Ingress VLAN

TTL exception

Ingress ACLs

Router MAC

L3 demux

V4L3

V6L3

L2 Switching

Egress VLAN

TTL exception

Drop

Send to Contrllr

Drop

Send to Contrllr

Drop disallowed VLANs or untagged on trunk ports. Assign VLAN

by port. Send special protocols (LLDP?) to controller

Drop as directed by ACLs (table miss means “keep”)

Check if MAC matches Router… if not go to L2, else check

protocol

Check protocol.

Send some to controller, others to correct L3 table, drop

remaining

Route using IPv4.

Handle TTL exception in controller

Route using IPv6.

Handle TTL exception in controller

Use DMAC address to send to correct port

Handle VLAN correctly,.

Do the right things with ECMP, multicast, floods, etc

Table 0

Table 1

Table 2

Table 3

Table 4

Table 5

Table 6

Table 7

Lots of existing

hardware can support

this example. Good!

Innovators would

naturally like to be

able to tweak such

“models” on the fly.

(5)

OpenFlow Market Status

•  19 vendors participated in October ‘12 plugfest

•  Certification in Pilot phase now

•  Many customers engaging in codevelopment and trials

•  Ongoing progress to:

• Expand the capabilities of OpenFlow

• Make interoperability more robust

•  In short: OpenFlow is maturing quickly

(6)

(7)

SDN Target Use Cases

7 WAN Network Virtualization

WAN Virtualization

App & SDN Controller

DC 1

10/100G WAN

DC 2

Customer 1

Customer 2

DC Network Virtualization

DC Network Fabric

VM VM VM PHY PHY VM VM VM PHY PHY VM VM VM PHY PHY

DC Virtualization

App & SDN Controller

DC 1

Optical

DC 2

Packet-Optical Integration

APP & SDN Controller

SDN Packet-Optical Integration

MPLS/IP

DC1 SDN

Cloud Orchestration

DC2 SDN

OTN

Network Analytics

App & SDN Controller

Production

10/100G WAN

Analytics

Network

Tool 1

Tool 2

Tool 3

Network Analytics

Services Creation & Insertion

Services Insertion

App & SDN Controller

ADC

FW

Cache

AAA

Existing Infrastructure Network (Physical) Brocade ADX VxLAN Gateway

Internet

Virtualized VXLAN Environment (Logical)

VXLAN Segment VNI 5001 VXLAN Segment

VNI 6001

(8)

Introducing Openflow

•  OpenFlow as an overlay to existing

network

• Allows for new revenue-generating features

on top of existing production network

•  “

Hybrid port mode

”

• OpenFlow and traditional features enabled

concurrently on same router ports

•   Protected

Hybrid Port Mode

• OpenFlow does not affect Traditional traffic

• Protection in hardware

• Allows for initial OpenFlow overlay service

development without risk

Traditional L2/L3VPN-IP Network with OpenFlow Overlay

WAN Physical Infrastructure

Traditional L2/L3VPN, IP

Protection

Layer

DC 1

DC 2

8 WAN SDN Controller

Traditional WAN

Management

(9)

OpenDaylight SDN Consortium

•  Open source SDN project under the Linux Foundation

•  Open controller framework for SDN implementation

•  Brocade to use OpenDaylight Controller as foundation for a rich set

of SDN offerings

• Storage networking, Ethernet Fabric, virtual routing and L4-7 services

•  Brocade’s SDN commitment

• Board Member and Chair, Technical Steering Committee

Brocade: Founding Member

9

(10)

SDN Update - Openstack

(11)

Cloud Orchestration—OpenStack

• Open source cloud management framework

for private and public clouds

• Created by Rackspace and NASA in July 2010

• Capturing the hearts and minds of the industry

• Rapidly becoming the de facto open source

standard for cloud computing

• ~200 participants and 6,000+ developers

• Allows any organization to create and offer cloud

computing capabilities using open source

software, rapidly and at a low cost

11

(12)

OpenStack CONCEPTUAL Architecture

(13)

NFV – Network Functions Virtualization

(14)

Different Views of SDN

•  Not all SDN is “OpenFlow”

•  Not all SDN handled by ONF

•  If there is orchestration,

combined with networking it is

SDN

(15)

Network Functions Virtualization (NfV)

•  Vision is to implement network functions in

software that

• Can run on industry standard x86 server hardware

• Can be moved to, or instantiated in, various locations

in the network as required

• … without the need for installation of new network

equipment

•  NFV + SDN = Greater Value

• NFV can support SDN by providing the infrastructure

upon which SDN can run

White Paper, October 2012

– DO NOT DISTRIBUTE

15

(16)

Virtual routing - Use Cases

(17)

17 Virtual Compute Changes Networking

Application Density Drives New Traffic Patterns

VM-to-VM Traffic Dominates

Network Topologies Within The Server

Networks Must Adapt To Virtualized Compute

By 2014, 80% of networking traffic

_{will be between servers.}

(18)

18 The Value of Software Networking

Network infrastructure with the

flexibility & economics of software

•   Rely on industry standard hardware

•   Reduce capital and operational

expenses

• Move, scale-up and scale-down

network resources with the click of a

mouse

• Hypervisor & Cloud agnostic

Scale Up

& Down

Users

Speed

Leverage Intel

(19)

The Size and Scope Of Data Center Have Expanded

19 C

LO

UD H

O

ST

IN

G

Internet

PRIVATE CLOUD

ON-PREMISE

(20)

Software

Defined Data

Center

§

 

Virtual N-Tier

Architecture

§

 

Massive Scalability

§

 

On-Demand

Deployment

20 Use Cases

Public Cloud

§

 

Amazon AWS,

Rackspace and other

public clouds

§

 

Advanced routing

inside the cloud

§

 

Secure remote

access

§

 

Layer 2 Cloud

Bridging

§

 

Advanced Routing

§

 

Site-to-Site IPSec/

SSL VPN

Cloud Bridging

§

 

Routing within &

(21)

21 Summary

Simplify Through Solution Layers

SDN

Network Layer

Virtualization Layer

Application Layer

Cloud Management

Layer

Ethernet Fabrics,

Core Routing

Virtual Routing

OpenFlow Hybrid Mode

(22)

Remember When You Used

to Get Excited about Networking?

It’s that time again