SOFTWARE DEFINED NETWORKING: A PATH TO PROGRAMMABLE NETWORKS. Jason Kleeh September 27, 2012

SOFTWARE DEFINED NETWORKING:

A PATH TO PROGRAMMABLE

NETWORKS

Jason Kleeh

What if you could …

© 2012 Brocade Communications Systems, Inc. PROPRIETARY AND CONFIDENTIAL— Discussed under NDA Only 2

Build your next data center optimized for highest demands in flexibility, reliability, and scale Virtualize your network starting

now for greater

responsiveness and increased asset utilization Create and deliver customized services and new

offerings at the

speed of customer need

Unlock the intelligence from

your network for

•  Network changes are

difficult, slow, and risky

•  Can’t handle rapid

swings in traffic

demands

•  New services requires

too new specialized

skills

© 2012 Brocade Communications Systems, Inc. PROPRIETARY AND CONFIDENTIAL— Discussed under NDA Only 3

Why can’t you do these things today?

•  Software abstraction layer on top of networking

infrastructure

•  Allows external “controller” to control how packets are

forwarded by routers and switches

•  Key customer benefits:

•  Decouple network application innovation from dependency on new router OS releases

•  Accelerate automation of network changes to increase service velocity

© 2012 Brocade Communications Systems, Inc. PROPRIETARY AND CONFIDENTIAL— Discussed under NDA Only 4

© 2012 Brocade Communications Systems, Inc. PROPRIETARY AND CONFIDENTIAL— Discussed under NDA Only 5

Brocade Cloud-Optimized Networking

Architecture for building the software-defined network

Enabling Technologiesn Key Benefits Cloud-Optimized Network Stack

Cloud APIs: OpenStack, VMware, Microsoft, CloudStack, etc.

Automation and orchestration

Cloud Management Layer

Programmatic Control: OpenFlow; OpenScript Personalization and monetization Services Layer Overlay Networking: VXLAN, NVGRE, STT; MPLS

Flexibility and efficient asset utilization

Network Virtualization Layer

Any-to-any connectivity:

Ethernet Fabrics; TRILL; IP routing

Reliability and simplicity

•  ONF launched publicly in March, 2011

•  Support from more than 70 major

companies

•  The ONF defines OpenFlow and API

specifications

•  Founding members of ONF:

© 2012 Brocade Communications Systems, Inc. PROPRIETARY AND CONFIDENTIAL— Discussed under NDA Only 6

Who is behind Software Defined Networking?

Open Networking Foundation (ONF)

Physical Network

OpenFlow

Network OS Virtualization

App App App App

•  “SDN Problem Statement and Use Cases

for Data Center Applications”

•  draft-pan-sdn-dc-problem-statement-and-use-cases-02.txt

•  Flexible in terms of provisioning protocols

© 2012 Brocade Communications Systems, Inc. PROPRIETARY AND CONFIDENTIAL— Discussed under NDA Only 7

Software Defined Networking and IETF

Similar Goals, Similar Architecture

SDN-enabled Network SDN Layer

(Network Virtualization, Programmability, and Monitoring Provisioning Protocols Physical Network Features OS Hardware Features OS Hardware Features OS Hardware Features OS Hardware Features OS Hardware

OpenFlow Basics

OpenFlow Overview

•  Protocol that enables communication between an OpenFlow controller and an OpenFlow router

•  Control plane routing decisions are made by the controller, which typically runs on a server

•  Data plane forwarding is still done by the router

•  Router and controller communicate via the OpenFlow protocol, which defines messages •  Router maintains flow tables, which are

maintained by the controller using APIs

© 2012 Brocade Communications Systems, Inc. 9

OpenFlow Router Operation

•  Flow table contains entries that define a flow based on the packet header •  Flows are sorted by priority as defined by the controller, highest priority flows

match first

© 2012 Brocade Communications Systems, Inc. 10

Flow Table

Flow Action Counters Flow Action Counters Flow Action Counters Flow Action Counters Flow Action Counters

?





Add, Remove, Modify VLAN Tag Forward to a Port List

Drop

Send Packet to Controller Forward Via Control Plane* Does the packet belong to this flow?

Ingress

Port MAC DA MAC SA Ether Type

VLAN ID

IP

Src Dst IP Protocol IP TCP/UDP Src Port

TCP/UDP Dst Port

802.1p

Bits DSCP IP

•  OpenFlow itself does not define or mandate any specific application •  OpenFlow enables a large set of applications due to its flexibility

•  Supported applications should increase over time as new functionality is added to the OpenFlow specification

•  E.g., flow policing/rate limiting

•  Ideal for automating common operations

•  E.g. security via ACLs, isolation via VLANs or VRFs etc.

© 2012 Brocade Communications Systems, Inc. PROPRIETARY AND CONFIDENTIAL— Discussed under NDA Only 11

SDN USE CASE

WAN Traffic Engineering with OpenFlow

© 2012 Brocade Communications Systems, Inc. PROPRIETARY AND CONFIDENTIAL— Discussed under NDA Only 12

13

© 2012 Brocade Communications Systems, Inc. PROPRIETARY AND CONFIDENTIAL— Discussed under NDA Only

Internet2

BROCADE OPENFLOW ENABLED 100G NATIONWIDE BACKBONE

Exchange Point

Internet 2

•  49 Custom Location Facilities

•  15,500 miles of dark Fiber •  8.8 Tbps of Optical Capacity •  Hybrid Mode with protected

OpenFlow traffic Seattle Kansas City Chicago (3) Salt Lake City Los Angeles Houston (2) Atlanta Washington DC

Cleveland New York (2)

Boston Albany Philadelphia Pittsburgh Buffalo Detroit Raleigh Charlotte Jacksonville Baton Rouge Jackson Chattanooga Nashville Louisville Cincinnati Ashburn Indianapolis St. Louis Memphis Tulsa Dallas Madison Minneapolis San Antonio El Paso Albuquerque Denver Bismarck Fargo Dickinson Miles City Billings Bozeman Missoula Spokane Boise Las Vegas Phoenix Tucson San Diego IP router node Optical add/drop facility

Reno Olympia Portland Eugene Sacramento Sunnyvale

Research and Education Network (REN) WAN Use

Case

•  Hybrid port mode •  OpenFlow overlay runs

concurrently with traditional MPLS/IP routing

•  OpenFlow enabled on existing production network without disruption

•  Protected

•  OpenFlow experimentation by researchers does not affect production traffic

•  OpenFlow/Production traffic isolation in hardware

“Protected” Production IP Network with OpenFlow Overlay

WAN Physical Infrastructure

Features (Applications) Network Controller

OpenFlow Overlay

Traditional MPLS/IP Routing Protection

Layer

SDN USE CASE

Large-Scale Data Center and

Network Virtualization

© 2012 Brocade Communications Systems, Inc. PROPRIETARY AND CONFIDENTIAL— Discussed under NDA Only 16

Cloud-Optimized Networks via SDN

are the Solution

Brocade delivers a clear path to Software Defined Networking

• Network changes are quick and easy

• Rapid deployment of new services

© 2012 Brocade Communications Systems, Inc. PROPRIETARY AND CONFIDENTIAL— Discussed under NDA Only 17

Cloud Providers Will Face Same

Challenges

Increasing virtualization in cloud providers’ environments

Number of VMs in Use as Service Providers’ Cloud IaaS Offerings

© 2012 Brocade Communications Systems, Inc. PROPRIETARY AND CONFIDENTIAL— Discussed under NDA Only 18

Network Virtualization Using L2 over L3 Tunnels

An Industry Trend for Hyper-Scale Data Centers

SP Physical Infrastructure

 Network Virtualization

created using L2 over L3 tunnels

 Programmatic interface

may use OpenFlow

 Requires additional

management protocols beyond OpenFlow to provision tunnels

L2 over L3 Tunnels

Tunnels Tunnels Tunnels

Network Virtualization Using L2 over L3 Tunnels

•  VxLAN (IETF draft, August 2011)

• Author: VMware

•  NVGRE (IETF draft, September 2011)

• Author: Microsoft

•  STT (IETF draft, March 2012

• Author: Nicira

TUNNEL TECHNOLOGY: RECENT INDUSTRY PROPOSALS

© 2012 Brocade Communications Systems, Inc. PROPRIETARY AND CONFIDENTIAL— Discussed under NDA Only 19

BROCADE SOLUTIONS WILL BE TUNNEL AGNOSTIC

L2 over L3 tunnel

L2 L2 L3 L2

Thank You