• No results found

SDN/OpenFlow. Outline. Performance U!, Winterschool, Zurich. SDN to OpenFlow. OpenFlow a valid technology!

N/A
N/A
Protected

Academic year: 2021

Share "SDN/OpenFlow. Outline. Performance U!, Winterschool, Zurich. SDN to OpenFlow. OpenFlow a valid technology!"

Copied!
15
0
0

Loading.... (view fulltext now)

Full text

(1)

SDN/OpenFlow

Performance U!, Winterschool, Zurich

Zurich, 08. March 2013

Kurt Baumann

[email protected]

www.openflow.org

© 2013 SWITCH

• SDN to OpenFlow

• OpenFlow a valid technology !

–  Basic Concept

–  How it works

• GÉANT OpenFlow Facility (GN3-JRA2T5)

Outline

(2)

© 2013 SWITCH

Software Defined Networking (SDN)

is transforming networking architecture. In the SDN architecture:

•  Control and data planes are decoupled.

•  Network intelligence and state are logically centralized.

•  The underlying network infrastructure is abstracted from the applications. •  …

•  and OpenFlow, is the first standardized interface designed specifically for SDN

Source: ONS Whitepaper: “Software-Defined Networking – The new Norm for Networks, 13. April 2012

SDN

© 2013 SWITCH

!

OpenFlow

Basic Concept and how it works

Source: OpenFlow tutorial, ONS, Santa Clara Marriot, April 16, 2012

(3)

© 2013 SWITCH

OpenFlow in a Nutshell

“OpenFlow is created and hosted at the University of Stanford in 2008 for evangelizing and supporting the OpenFlow Community”

What it is:

•  An open standardized interface approaching SDN architectures

•  L2 communication protocol - gives access to the forwarding plan of a network switch,

router. (www.openflow.org)

Motivation:

•  The improvement of research and innovation in networking,

•  To encourage networking vendors to implement OpenFlow to their switching products.

Basic Idea:

•  OpenFlow, is based on an Ethernet switch with an internal-flow table and a standardized interface to add and remove flow entries.

•  Delivering a shared data & forwarding plane and a sliced, user-managed control plane at L2.

Regulation of the SDN (OpenFlow) Standards:

•  Open Network Forum (ONF) (www.opennetworking.org)

© 2013 SWITCH

The Network Industry today

Specialized Packet Forwarding Hardware Operating System Feature Feature' Rou*ng,'management,'mobility'management,'' access'control,'VPNs,'…' Million of lines

of source code 5400 RFCs Barrier to entry

Billions of

(4)

© 2013 SWITCH

Data Path (Hardware)

Control Path OpenFlow

OpenFlow Controller

OpenFlow'Protocol'(SSL/TCP)'

© 2013 SWITCH

OpenFlow Basics: Entities /

Functionalities

(5)

© 2013 SWITCH

OpenFlow!Basics!!

Flow!Table!Entries!OF!v1.1!

Switch'

Port' VLAN'ID' MAC'src' MAC'dst' Eth'type' IP'Src' IP'Dst' IP'Prot' L4'sport' L4'dport'

Rule' Ac*on' Stats'

1.  Forward'packet'to'ports''

2.  Encapsulate'and'forward'to'controller'

3.  Drop'packet''

4.  Send'to'normal'processing'pipelene'

5.

Any'extensions'you'add!'

+'mask'what'fields'to'match'

Packet'+'byte'counters'

VLAN' pcp' IP' ToS' < Match | Action > © 2013 SWITCH

Packet!Flow!

!

Packet IN Start at Table 0 Match in table n? Update Counters, Executive Instructions: -  Update action set -  Update packet/

match set fields

Go table n?

Based on table configuration, do one:

-  Send to the controller -  Drop it

-  Continue to the next table

Execute action set.

YES

YES

(6)

© 2013 SWITCH

OpenFlow!–!Rule!

Examples!(1)!!

Switching'

*' Switch'

Port' MAC'src' MAC'dst' Eth'type' VLAN'ID' IP'Src' IP'Dst' IP'Prot' TCP'sport' TCP'dport' Ac*on' *' 00:1f:..' *' *' *' *' *' *' *' port6'

Flow'Switching'

port3' Switch'

Port' MAC'src' MAC'dst' Eth'type' VLAN'ID' IP'Src' IP'Dst' IP'Prot' TCP'sport' TCP'dport' Ac*on' 00:20..' 00:1f..'0800' vlan1' 1.2.3.4' 5.6.7.8' 4' 17264' 80' port6'

Firewall'

*' Switch'

Port' MAC'src' MAC'dst' Eth'type' VLAN'ID' IP'Src' IP'Dst' IP'Prot' TCP'sport' TCP'dport' Ac*on' *' *' *' *' *' *' *' *' 22' drop' 11 © 2013 SWITCH

OpenFlow!–!Rule!!

Examples!(2)!

Rou*ng' *' Switch'

Port' MAC'src' MAC'dst' Eth'type' VLAN'ID' IP'Src' IP'Dst' IP'Prot' TCP'sport' TCP'dport' Ac*on' *' *' *' *' *' 5.6.7.8'*' *' *' port6'

VLAN'Switching'

*' Switch'

Port' MAC'src' MAC'dst' Eth'type' VLAN'ID' IP'Src' IP'Dst' IP'Prot' TCP'sport' TCP'dport' Ac*on' *' *' vlan1' *' *' *' *' *'

port6,'' port7,' port9' 00:1f..'

Details see: OF Switching Specification

(7)

© 2013 SWITCH

OpenFlow Implementations

• Hardware Vendors

–  Commercial -> NEC, HP, Pronto, Toroki, IBM, Pica8 –  Experimental -> Juniper, Cisco

• Software

–  OF switches

•  Stanford's software reference design (user-space implementation) •  Open vSwitch (user-space and kernel module implementation) •  NetFPGA-based switch (hybrid solution based on Stanford's ref. sw) –  OF controllers

•  NOX •  Beacon

•  Trema (modular framework for developing OF controllers) •  Other NOX-based implementations

•  NEC Programmable Flow

•  FlowVisor (Proxy Controller for slicing)

© 2013 SWITCH ICT Focus 2012 14

!

SDN/OpenFlow Application

(8)

© 2013 SWITCH Specialized Packet Forwarding Hardware Ap p App App Specialized Packet Forwarding Hardware Ap p App App Specialized Packet Forwarding Hardware Ap p App App Specialized Packet Forwarding Hardware Ap p App App Specialized Packet Forwarding Hardware Operating System Operating System Operating System Operating System Operating System Ap p App App

Today'we'have''

Closed'Boxes,'Fully'Distributed'Protocols'

Closed' © 2013 SWITCH Specialized Packet Forwarding Hardware Ap p App App Specialized Packet Forwarding Hardware Ap p App App Specialized Packet Forwarding Hardware Ap p App App Specialized Packet Forwarding Hardware Ap p App App Specialized Packet Forwarding Hardware Operating System Operating System Operating System Operating System Operating System Ap p App App

Global Control Plan or Network Operating System

Appl

Appl

Appl

“SoCware!Defined!Networking”!approach!

to!open!it!

(9)

© 2013 SWITCH

Appl

Simple Packet Forwarding Hardware Simple Packet Forwarding Hardware Simple Packet Forwarding Hardware

Appl

Appl

Simple Packet Forwarding

Hardware Simple Packet Forwarding

Hardware

Global Control Plan or Network Operating System

1.'Open'interface'to'hardware'

3.'Well`defined'open'API' 2.'At'least'one'good'opera*ng'system'Extensible,'possibly'open`source'

The!“SoCwareKdefined!Network”!

!

© 2013 SWITCH Simple Packet Forwarding Hardware NOS or Controller System 1 Open'interface'to'hardware'

Virtualization or “Slicing” Layer

NOS or Controller System 2 NOS or Controller System 3 NOS or Controller System 4 Ap p Ap p Ap p Ap p Ap p Ap p Ap p Ap p Many'versions'of'OS/Controller' Open'interface'to'hardware' Isolated'“slices”' Simple Packet Forwarding Hardware Simple Packet Forwarding Hardware Simple Packet Forwarding Hardware Simple Packet Forwarding Hardware

(10)

© 2013 SWITCH

FlowVisor!Creates!Virtual!Networks!

OpenFlow Switch OpenFlow Switch OpenFlow Switch OpenFlow' Protocol' FlowVisor' OpenPipes' Slice'' OpenRoads' Slice' OpenFlow' Protocol' PlugNServe' Load`balancer' OpenPipes Policy © 2013 SWITCH

Conclusion in Graphics

R. Sherwood, et. al, “Carving research slices out of your production networks with OpenFlow”, ACM SIGCOMM Computer Communications Review, 40-1, 2010

(11)

© 2013 SWITCH

The!SDN!Stack!–!in!pracNce!

Controller'

NOX'

Slicing'

Sodware'

FlowVisor' FlowVisor' Console' 21'

Applica*ons'

LAVI' ENVI'(GUI)' n`Cas*ng' …' NetFPGA' Sodware''

Ref.'Switch' Ref.'Switch'Broadcom''

OpenWRT' PCEngine'''WiFi'AP'

Commercial'Switches'

OpenFlow'

Switches'

…'

Monitoring/'

debugging'tools'

oflops' odrace' openseer' Open'vSwitch' HP,'NEC,'Pronto,' Juniper..'and' many'more''

Beacon' Trema' Maestro'

© 2013 SWITCH

!

The Case of GÉANT – TaaS

Source: – GÉANT JRA2T5 – GÉANT OpenFlow Facility Design, GN3-09-331/ Joint Research Workshop JRA1/JRA2T5 in Utrecht NL, and Vienna AT.

(12)

© 2013 SWITCH

Implementation over GÉANT (1)

23

!

© 2013 SWITCH

Implementation over GÉANT (2)

24

!

Shared data and forwarding plane

Sliced,

user-managed control

(13)

© 2013 SWITCH

Design Principles

•  5 OpenFlow PoPs interconnected with a full mesh of L2VPNs over GÉANT

–  Co-located with GÉANT PoPs

•  2 general purpose servers per PoP for:

–  1x Open vSwitch providing OpenFlow functionality

–  1x XEN hypervisor delivering user VMs and hosting services

•  Using OpenFlow v1.0 -> VLAN-based slicing

–  Limited capabilities for non-VLAN slicing for VLAN-based experimentation

•  Orchestration software: FP7 OFELIA Control Framework (OCF)

–  Resource allocation and instantiation (per slice)

–  Authentication/Authorization (AA) and policy framework –  Web-based user interface for slice access and management

–  Robustness, stability and scalability in terms of number of users, support for concurrent experiments and number of managed resources.

–  Monitoring of slices and the OCF components themselves

25 © 2013 SWITCH

Operations

Virtualization

Servers Proxy Controller OCF

Monitoring

Data plane Management & Control Plane Controllers User VMs OCF Services

Resiliency

OVS Controllers/ Proxy Controller OCF

AAI

Authorization schema Integration with Directory

Source: Layer 123, SDN& OpenFlow Wolrd Congress, Darmstadt, Presentation Application of SDN in Research Networks, Michael Enrico, Chief Technology Officer DANTE, Afrodite Sevasti,Chief

(14)

© 2013 SWITCH

Use Cases – Categories / Activities

•  Using OpenFlow as a traffic engineering mechanism, managing backbone capacity and paths, for instance MPTCP and

•  Using OpenFlow to deliver ‘vanilla’ layer 2 slices researching on layer 2 (and above) and experimentation on the actual data and control plane network technologies, for instance research on new protocols or capabilities •  Current activities on the OF Facility:

•  Contest Winner

•  “Improving resiliency and throughput of transport networks with OpenFlow and Multipath TCP” – Budapest University of Technology and Economics, MTA- BME Future Internet Research Group,

22.03.2013

© 2013 SWITCH

OpenFlow and Performance

Performance Tests: On Mockup@grnet Results:

-  1st Test – OVS mac forwarding without OpenFlow

-  2nd Test – MAC forwarding functionality provided by OpenFlow controller

(15)

© 2013 SWITCH

References

•  OpenFlow – www.openflow.org •  OpenFlow – White paper:

•  http://www.openflow.org/documents/openflow-wp-latest.pdf

•  SDN(OpenFlow) activities Internet 2

•  http://www.internet2.edu/network/ose/

•  OFELIA: http://www.fp7-ofelia.eu/

•  GÉANT – GN3, JRA2 Multidomain Network Service Research, T5

•  https://intranet.geant.net/sites/Research/JRA2/pages/home.aspx

•  Standards of OpenFlow: Open Network Forum (ONF)

•  http://www.opennetworking.org

•  SDNRG (IRTF) - http://irtf.org/sdnrg •  JGN-X: RISE – http://www.jgn.nict.go.jp

•  Deployment and Operation of Wide-area Hybrid OpenFlow Networks

• 

http://hiroshi1.hongo.wide.ad.jp/hiroshi/papers/2013/Kanaumi_e96-b_1_108.pdf

© 2013 SWITCH

Questions?

Thank you for your attention!

References

Related documents

Any European decision will have to take notice of the priority of the cultural aspect over the competition aspect, hence the main question that has to be addressed is exactly

The classic factor analysis is another popular dimension re- duction technique which shares similar interpretation problems and could greatly benefit from sparse

3 The Viminacium archaeological site is included in the Spatial Plan of the Republic of Serbia from 2010 to 2020 as a priority cultural area and strategic priority in the field

THE COUNTRY’S LEADER IN TEACHING AND RESEARCH The University of Warsaw, the largest institution of higher education in Poland , is the country’s leader in teaching and research.

Prediction of apple fruit firmness and solid soluble content using characteristics of multispectral scattering images.. Prediction of texture in green asparagus by near

• ProgrammableFlow SDN, featuring the first enterprise- class OpenFlow controller, separates the network control plane from the data plane to abstract network intelligence and

OpenFlow Controller Control Plane Control Plane Router OS Data Plane Flow Table OpenFlow Client.. OpenFlow

There is a significant main effect on sexual identity and the types of support individuals seek, Post-hoc corrected comparisons indicated that heterosexual individuals