Network Technologies for Next-generation Data Centers

(1)

Network Technologies for

Next-generation Data Centers

SDN-VE: Software Defined Networking for Virtual

Environment

(2)

2 _{System Technologies and Services Department, Haifa Research Lab}

Data Center Network

Management, control &

configuration of the

infrastructure

Endpoint connectivity

in a large scale dynamic

environment

Defining and deploying

multi tenant network

application (NaaS)

(3)

Back to the 80's...

Unicast = Broadcast

Dealing with unknown

(4)

Early 90's...

ARP Control Learning telnet> open 10.0.0.1 Trying 10.0.01...

(5)

Today Yesterday

VLAN, STP, 802.3, ARP, STP, TRILL, SNMP, ACL, MPLS, DCB, OSPF, RIP, RSVP, ... STP, VLAN, 802.3, ARP, STP, TRILL, SNMP, ACL, MPLS, DCB, OSPF, RIP, RSVP, ... STP, VLAN, 802.3, ARP, STP, TRILL, SNMP, ACL, MPLS, DCB, OSPF, RIP, RSVP, ... STP, VLAN, 802.3, ARP, STP, TRILL, SNMP, ACL, MPLS, DCB, OSPF, RIP, RSVP, ... STP, VLAN, 802.3, ARP, STP, TRILL, SNMP, ACL, MPLS, DCB, OSPF, RIP, RSVP, ... STP, VLAN, 802.3, ARP, STP, TRILL, SNMP, ACL, MPLS, DCB, OSPF, RIP, RSVP, ... STP, VLAN, 802.3, ARP, STP, TRILL, SNMP, ACL, MPLS, DCB, OSPF, RIP, RSVP, ... STP, VLAN, 802.3, ARP, STP, TRILL, SNMP, ACL, MPLS, DCB, OSPF, RIP, RSVP, ...

(6)

Data Center Network

Server 1 Server 2 Server 3 Server 4

Router

LB WS1 DB1 WS2 WS3

Virtual Switch Virtual Switch Virtual Switch DB2 SSL FW Comp Virtual Switch Specific location of network appliance – Policy is enforced by sending data through the router (bump in the wire)

APP WS3

SoftSwitch are used to connect VM's to the

(7)

Data Center Networking (cont.)

● Large scale

● The number of endpoints (virtual machines) is significantly larger than the number of

physical servers

● Each switch should manage large number of VM's

– Increasing the flooding and broadcasting – Increasing the size of the flow tables

● Dynamic

● Endpoints are dynamically created terminated and migrated from one location to another ● Switches are constantly reconfigured (VLAN, flow tables, etc.)

● Artificial constraints may be enforced (e.g. VM cannot be migrated to a different Rack due

to VLAN setting)

● Multi tenancy

● Many independent tenants each with his own network requirement are collocated on the

(8)

Data Center Networking (cont.)

●

Large scale

● The number of endpoints (virtual machines) is significantly larger than the number of

physical servers

● Each switch should manage large number of VM's

– Increasing the flooding and broadcasting – Increasing the size of the flow tables ●

Dynamic

● Endpoints are dynamically created terminated and migrated from one location to

another

● Switches are constantly reconfigured (VLAN, flow tables, etc.) ● Artificial constraints may be enforced (e.g.

VM cannot be migrated to a different Rack due to VLAN setting)

●

Multi tenancy

● Many independent tenants each with his own

(9)

NaaS – Network as a Service

●

Typical network Consists

of several type of servers

with different connectivity

criteria

●

Defined in a natural

language

●

Depends of an underlying

technology and topology

●

Deployment is based on

low level network control

(rather than the application

functionality)

I need a three-tier application comprising a set of Web servers connected to the public Internet through an Application Delivery Controller and using a set of DB2 servers as a back-end data storage.

(10)

NaaS (cont.)

_Routing

configuration

Firewall deployment

and path isolation Topology: two IPv4 subnets

(11)

NaaS (cont.)

●

Any modification is subject to misconfiguration

●

Hardware , Instances, services

●

Validation and

(12)

NaaS – Network as a Service

I need a three-tier application comprising a set

of WebSpheres connected to the pblic Internet through an Application Delivery Controller and using a set of DB2 as a back-end data store.

By the way, all the traffic between the Internet and the ADC must pass through a set of firewall rules, and all the SSL traffic between the

WebSpheres and the ADC must be acceleratedusing an SSL accelerator. The stored data must be compressed, and I must have an external bandwidth of at least 5Gbps....

I need a three-tier application comprising a set of WebSpheres connected to the pblic Internet through an Application Delivery Controller and using a set of DB2 as a back-end data store.

(13)

NaaS (cont.)

●

Multi tenant virtual networking

●

Enabling users to control not only their computation resources

but also their network

●

Isolation and independency between virtual networks

●

Flexibility and decoupling

–

Provide network service which is decoupled from the physical

infrastructure and topology

●

Scalability

●

Users do no have any access to the network infrastructure

(14)

DOVE SDN-VE

SDV-VE: Software Defined

Networking for Virtual

Environment

(15)

SDN-VE

Virtual Network Abstraction Management

(16)

SDN-VE Network Abstraction

●

Network functionality are best described in

terms of the connectivity between endpoints

and the policies associated with the

connectivity

●

Network modeling (or network intention) is

(17)

SDN-VE Network Abstraction (cont.)

External ADC WebSphere DB2 FW, 5Gbps SS_L A cc ele ra tio_n Compression, 20us latency

(18)

SDN-VE Network Abstraction (cont.)

(19)

SDN-VE Network Abstraction (cont.)

●

Formal modeling of the network

●

Network intention prior to any instantiation

●

Topology and hardware independent

●

Dealing only with the network functionality

●

Easy to modify

(20)

SDN-VE Network Abstraction (cont.)

(21)

SDN-VE Virtual Network Platform

●

Overlay connectivity

●

Data sent from one VM to another is encapsulated and sent from the

source to the destination hosting server

●

Decouples the physical infrastructure from the virtual domain

– The physical infrastructure should handle much less of static entities

(physical servers)

– The physical infrastructure can consist of many subnets and technologies

●

Enables full isolation and in-dependency (including IP address

overlapping between different tenants)

●

Centralized controller

(22)

SDN-VE Virtual Network Platform

●

Provides connectivity without reproducing L2

complexity

●

A centralized controller is used to create and maintain

the overlay infrastructure

●

Designed in a distributed fashion

●

Does not require any flooding and broadcasting (therefore

does not inherit any L2 scalability limitation)

●

Fully hardware independent

–

Does not requires any hardware support (e.g. multicast)

●

Provides a powerful abstraction supporting both

(23)

Physical Infrastructure

SDN-VE Data Flow

SDN-VE Distributed Connectivity Service SDN-VE Distributed Connectivity Service Host 1 _{Host 2} FW-I IPS-II FW-II IPS-I VM-1 VM-2 _VM-3 _VM-4 dSwitch _dSwitch

1. Data is sent from VM-1 to VM-3 and intercepted by the local dSwitch

2. The dSwitch acquires the policy using the DCS (Ditributed Connectivity Service)

– A caching mechanism is used

3. Based on this service the dSwitch

encapsulates the packet and sends it to the destination host through FW-I and ISS-I

4. The Packet is decapsulated by the dSwitch on the destination host and sent to the appropriate VM

(24)

SDN-VE

● Software Defined Network

● End user does not deal with network

configuration (VLAN, Ports, etc.)

● Provides an abstraction of the network

functionality

● Physical network complexity should not

be reproduced in the virtual domain

● Overlay Based Solution

● VM are not client of the physical network ● Physical switches should handle only

smaller number of static server

● Independent from the physical topology

and technology

● Enables multi tenant support

● Network as a Service

● Multi tenant virtual networking

● Enabling users to control not only their

computation resources but also their network

● Isolation and independency between virtual

networks

● Scalability

● RAS (Reliability, Availability, Serviceability) ● Users do no have any access to the network

infrastructure

(25)

Optical Network and DCN

?

●

Packet switching

based network

●

Dynamic

●

Large scale with

millions endpoint

●

Typical data center

switch may support

more than 100K flows

●

Circuit switching like

●

Static configuration

●

Small number of

(26)

Optical Network and DCN

●

Low power and latency using optical switching

technology

●

Memory less switching

●

High bandwidth using SDM technology

●

From GB to TB

●

May completely

change Data Center

including network

(27)

Combining Optics and SDN In next Generation data center Networks Venture Photonics

Ltd

(28)

Optical Network and DCN

●

COSIGN - Combining Optics and SDN In next

Generation data center Networks

●

400Gb per port ToR switch

–

Based on Multi-Core Fibres (NCFs) to support SDM within data

center interconnect

–

Enabling multiple data channels to be simultaneously multiplexed

in a single fiber

●

Flat data center network based on highly scalable SDN

core switching nodes reducing latency and improving

connectivity

(29)