JUNOSPHERE: NETWORK VIRTUALIZATION IN THE
CLOUD
Junosphere delivers Junos on-demand via the cloud
§ Enables real network modeling and education using virtual Junos
routers
§ Accessed on demand via the Internet to a Juniper-hosted DC
Learn, model and test Junos features with the flexibility,
cost-efficiency and simplicity inherent of a cloud based delivery model
JUNOSPHERE CLASSROOM
Junosphere Classroom is the first service
offered from the Junosphere Cloud
Use virtual networks to provide hands-on
education and experience with Junos
§ Universities, technical training institutes; Juniper
customers and channel
Cloud-based delivery model brings many
benefits over physical labs
§ Reduced capital costs – no need to purchase
networking elements
§ Lower operational costs – power, space, cooling
and maintenance
§ Increased flexibility – rapidly scale up or down § Realistic experience – exact same Junos running
Junosphere cloud
Juniper-hosted datacenter
User Interface
Accessed via web browser
JUNOSPHERE COMPONENTS
Virtual Network Elements • VJX Series – Junos Routers • CentOS • Other images as needed Virtual Machine Manager• Create, manage and modify
INTRODUCING VJX SERIES
VJX Series is a new Junos platform that runs in a hypervisor on standard x86 hardware.
§ Full control plane, management plane and forwarding plane features
§ Includes v6, Multicast, MPLS, L2 & L3 VPNs, full protocol suite
VJX1000 is the first product in this series, built to run in Junosphere
§ First release based on Junos 10.3; full alignment with release train starting with Junos 12.1
VJX series product enhancements include
§ More features: Junos switching , BRAS features…..
§ Chassis emulation: Virtual instances of Juniper systems such as MX-Series and SRX-Series
Hypervisor = KVM / QEMU HOST OS = CentOS COTS x86 hardware “N” VJX Virtual Machine Guest OS VJX Virtual Machine Guest OS VJX Virtual Machine Guest OS
Junosphere Connector Junosphere Connector University A Physical Lab University B Physical Lab
JUNOSPHERE CONNECTOR
Enables the interconnection of physical and virtual networks
§ Including partner institutions
Powerful tool for collaboration, research, and experimentation
Enables collaborative, large-scale experiments more readily and
HOW WE MODEL A NETWORK
Build diagram
Convert to Junosphere config
HOW WE MODEL A NETWORK
Upload configuration files
Start Virtual Routers
Connect to Virtual Network
VMM EXAMPLE
// description – bind global definitions
#include "/vmm/bin/common.defs” config "config" {
display "NULL";
vm "vrouter001" {
// description – hostname of set on VM
hostname "vrouter001”;
// description – Operating system image to load –
VJX_DISK
// description – ge 0/0/0 interface to the outside world
interface "em0" { EXTERNAL;};
// description - ge 0/0/1 link between vrouter001 and vrouter002
interface "em1" { bridge "private0"; };
// description - configuration file to load on the router
install "ENV(HOME)/active/configset/vrouter001.conf" "/root/junos.conf"; }; vrouter001 vrouter002 vrouter003 private0 private1 VM running Junos Named Ethernet segment – OOB MGMT segment external Named Ethernet segment – vrouter002<->vrouter003 Named Ethernet segment – vrouter001<->vrouter002
VMM EXAMPLE
vm "vrouter002" {
hostname "vrouter002" ; VJX_DISK
//description - interface to the outside world
interface "em0" { EXTERNAL;};
// description - link between vrouter002 and vrouter001
interface "em1" { bridge "private0"; };
// description - link between vrouter002 and vrouter003
interface "em2" { bridge "private1"; };
// description - configuration file to load on the router install "ENV(HOME)/active/configset/vrouter002.conf" "/root/ junos.conf";
};
vm "vrouter003" {
hostname "vrouter003" ; VJX_DISK
//description - interface to the outside world
interface "em0" { EXTERNAL;};
// description - link between vrouter003 and vrouter002
interface "em1" { bridge "private1"; };
// description - configuration file to load on the router install "ENV(HOME)/active/configset/vrouter002.conf" "/root/ junos.conf"; }; PRIVATE_BRIDGES }; Named Ethernet segment – vrouter002<->vrouter003 Named Ethernet segment – vrouter001<->vrouter002 Connect to OOB MGMT segment Named Ethernet segment – vrouter003<->vrouter002 Per-VM Junos configuration file
Macro call to enable Ethernet bridge
13 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
JUNOSPHERE TRIAL OVERVIEW
Goal:
§ Replace existing student router testbed with virtualized
environment
§ Original environment - 4 testbeds composed of PC’s running
Quagga and Ethernet switches
Cloud.juniper.net provided:
§ 24 testbeds of ten virtual machines (8 Junos, 2 Centos)
§ Enabled much improved student to equipment ratios (3:1 vs 20:1)
§ Distance Learning: Students connecting from UK, Portugal, Spain
and China
§ Courseware shared and reused by other Universities in other
ELE403 – ROUTING EXERCISE IN JUNOSPHERE
Centos Host private1 private2 private3 private4 private5 private6 private7 private8 private9 200.0.1.15 200.0.9.11 Centos Host• Testbed cloned and scaled according to the numbers of students
• Testbeds spun-up / spun-down in a matter of minutes • Impossible to achieve with physical equipment
CONNECTOR IN ACTION
Physical Cisco routers in the Lab JS Connector software loaded on customer site Secure Tunnel acrossthe Internet to Junosphere Connector end-point in
Junosphere Virtual Juniper
routers in Junosphere
Interoperating with…
JUNOSPHERE FOR R&D
Roma Tre University, Italy
§ Existing JUNOS SDK development-partner
§ Well-respected by companies such as Telecom Italia,
FastWeb, WIND et al
Research team were trying to develop a new methodology for monitoring and troubleshooting VPN services in Service
Provider or Enterprise networks
Problem - How do you develop and test new tools in a lab of only 2 physical routers?
NETWORK
LA-pop NY-pop WAS-pop SEA-pop ATL-pop CHI-pop DEN-pop Internet RR1.DEN RR1.CHI RR1.ATL RR2.SEA RR2.LAX RR2.HOU RR2.WAS RR2.NYC• Environment for service tools
development
• VPLS connections signaled
between PE devices via Route-reflector hierarchy
• L3VPN services signaled via
RR-hierarchy
• Live Internet BGP feed – Full
BGP ROUTE-REFLECTION LA-pop NY-pop WAS-pop SEA-pop ATL-pop CHI-pop DEN-pop Internet RR1.DEN RR1.CHI RR1.ATL RR2.SEA RR2.LAX RR2.HOU RR2.WAS RR2.NYC pe1.SEA pe1.LAX pe1.NYC iBGP mesh Route Reflection pe2.LAX
VPLS SERVICE
LA-pop NY-pop WAS-pop SEA-pop HOU-pop ATL-pop CHI-pop DEN-pop Internet vpls-lax-se aSite ID: 2 (lax)
Site ID: 3 (lax2) Site ID: 1 (sea)
lsi.1048576 262146 á 262153 â lsi.1048577 262147 á 262153 â RD 12345:1 RT 12345:1 RD 12345:2 RT 12345:1 vpls-sea-lax RD 12345:3 RT 12345:2
Site ID: 2 (lax)
lsi.1048581 262146 á 262153 â lsi.1048579 262146 ä 262147 å Site ID: 3 (nyc)
Site ID: 4 (lax2)
lsi.1048576 262148 ã 262146 æ lsi.1048577 262155 á 262154 â RD 12345:3 RT 12345:1 RD 12345:5 RT 12345:2 vpls-lax-nyc lsi.1048576 262148 á 262146 â lsi.1048579 262148 ä 262147 å lsi.1048581 262147 á 262153 â RD 12345:4 RT 12345:2 lsi.1048577 262146 à 262147 ß lsi.1048576 262148 ä 262147 å
MANAGEMENT TOOLS
Can take tools that you use in you physical network and deploy
into the virtual
§ MRTG monitoring SNMP stats and generating graphs
Centos running MRTG
ROUTE INSIGHT MANAGER – VIRTUAL INSTANCE OF
REAL-WORLD APPLIANCE
SPIRENT ROUTER TESTER INTEGRATION
Spirent Test Center Virtual is a software package that extends &
complements the capabilities of Spirent Test Center to benchmark & optimize performance of virtual devices.
Network operators can:
§ Run real-world traffic and control-plane events over virtualized networks
STCV Manager
SUMMARY
Junosphere enables the creation of networks of virtual Junos
routers
§ Enables education and research using virtual networks
§ Supplement or replace physical network lab
§ Lowering the cost of entry to develop solution on JUNOS SDK
Junosphere is an enabling platform for a range of activities
§ Teaching
§ Lab virtualization
§ Development activities with remote partners
