march 2, 2014 jeff “z” szczerbinski, ccie #4052 david spears software defined networking...

March 2, 2014

Jeff “Z” Szczerbinski, CCIE #4052

David Spears

Software Defined Networking Workshop

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.

2

We see three big infrastructure trends…..

ConvergedInfrastructur

eCloud

Software Defined

Data Center

Security

Storage

Servers

Facilities

Services

Network

Management

Network

… the Network services all three…

… and SDN drives new value


3

Software-defined Network Drivers and Impact

Private cloud is not just about cost reduction.

Agility will be a key benefit1

HUMAN MIDDLEWARE

1 Gartner G00238288, Five Things That Private Cloud Is Not, 3 August 2012,Thomas J. Bittman

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

DEVICE SECURITY

2Ericsson white paper, “More Than 50 Billion Connected Devices,” February 2011

By 2020,

50 billion devices will be connected to wireless networks2

SDN/OpenFlow market will grow to almost

$2 billion by 2016 … driven by the growing need for scalability & network programmability3PROGRAMMABILITY

3 IDC #235074, “Technology Assessment: The Impact of OpenFlow on Data Center Network Architectures” June 2012


4

Legacy network human middleware can’t scale for cloudTime and resource intensive, not suited for cloud scale

and

x

Source: HP

x

50,000 users

10,000 provisions per day

20 commands per change

200,000 commands per day

1 minute per command

3,333 hours of effort 420 network admins


5

Focus less on managing infrastructure…

…and more on quality of business experience

HP Virtual Application Network

HP’s Vision for the Future of Networking


6

Software-defined networks deliver agility

SIMPLIFICATION Aligns the network with business objectives

Flexibility in network usage

Rapid application deployment

Lower operating complexity, expense


7

HP commitment to software-defined networks

SIMPLIFICATION Software-defined Network Leadership

Open Network Foundation

OpenFlow Leadership

NFV Leadership

OpenStack Leadership


8

Defining Software-defined Networking

Open standard-based programmatic access to infrastructureInfrastructure

Control

Application

Separate control and data plane; abstract control plane of many devices

to one

Deliver open programmable interfaces to orchestrate network service

automation

SD

N A

rchi

tect

ure

Source: opennetworking.org

https://www.opennetworking.org/images/stories/downloads/white-papers/wp-sdn-newnorm.pdf


9

Delivering the functions of an SDN Architecture

Software-defined Network Components

Infrastructure

Control

Application

Separate control and data plane; abstract control plane of many devices

to one

Deliver open programmable interfaces to orchestrate network service

automation

SD

N A

rchi

tect

ure

Open standard-based programmatic access to infrastructure

Network Device

Network Device

Network Device

Controller

Open Programmable Interface

Cloud Orchestration

SDN Applications

Open Programmable APIs


10

2008

2009

2010

2011

2012

HP Continues to Deliver SDN Applications

HP Develops Lighthouse SDN Customers; Delivers SDN Controller & Applications

HP Delivers Commercial OpenFlow

HP Scales Lighthouse Customers to 60

HP Earn First 10 OpenFlow Lighthouse Customers

HP Demos OpenFlow-enabled Switch

HP Labs & Stanford Collaborate on Ethane

HP SDN investments leading the industry

2007


OpenFlow and SDN: History and Foundation


12

Standard Intel x86-based systems

Evolution of Server Architectures

Proprietary Hardware

ProprietaryOperating Systems

Proprietary Applications

Standard Operating Systems(Linux, Windows, etc)

App …

Innovation!

Standard interfaces and programming languages

Standard interfaces

App App


13

Standard “programmable” systems

Evolution of Network Architectures

Proprietary Hardware

Proprietary OS

OS-Integrated Features

RoutingMCast …QoS

Standard interfaces and control protocols

Open interfaces and programming languages

Network features (applications)

Centralized Control Plane

Innovation!


14

Definitions

14

• Software Defined Networking (SDN)

– New network architecture – Separates the network control plane from the

forwarding hardware.– Allows the data plane to be defined by a logically

centralized controller (or set of controllers).

• OpenFlow– Standard protocol used between the control and

data planes– environment that allows for experimentation of

networking protocols and traffic flows without interrupting the operation of the “production” network.

HARDWARE

NETWORK OS

APPLICATION

HARDWARE ABSTRACTION LAYER

Decouple Control Logic

SDN

Source: ONF Forum

http://www.openflow.org/


15

OpenFlow Protocol Overview

15

• OpenFlow is a protocol specification defining an API to the switch forwarding plane

• It enables selective centralization of flow control with variable grain flow control

• A controller can use this API to control or selectively modify the forwarding of traffic flows in the network

• It is a standard defined by the Open Networking Foundation (ONF)

CONTROLLER(s)

APP

APP

APP


16

16

Pro-Active and/or Reactive Flow Table

CONTROLLER

APP

APP

APP

CONTROLLER

APP

APP

APP

Pro-Active Model Reactive Model


17

17

OpenFlow 1.0 Table

Rules Action Stats

Packet + Byte Counters

1. Forward packet to zero or more ports2. Encapsulate and forward to controller3. Send to normal processing pipeline4. Modify fields5. Add extensions

Switch Port

VLAN ID

VLAN pcp

MAC src

MAC dst

Eth type

IPSrc

IPDst

IPToS

IPProt

L4sport

L4dport

+ Mask for Field Match


18

OpenFlow Switch Flow Table Example

Both fine and coarse grain flow control possible.

SWITCH

actionsmatch rules

Forward to IDS Tunnel Port

Rate Limit, Forward Normal

Forward Normal

TCP Port 16384

TCP Port 80 from 01:23:45:67:89:ab

* (wildcard)

CONTROLLER

http://www.openflow.org/


19

OpenFlow Protocol Version History

Version Release Date Key Enhancements

1.0 December 2009 First Official Specification

1.1 February 2011 MPLS, QinQ, multi-table

1.2 December 2011 IPv6, more extensibility

1.3 April 2012 QoS, Tunneling


20

OpenFlow 1.0 and 1.3Features Benefits

OpenFlow 1.0- Single Table Simple programming model, validation of SDN value proposition, early proof of concepts

OpenFlow 1.3

Multiple table Increase performance and scalability.

Groups Allows for multipathing or redundancy.

Tags: MPLS & VLAN Flexibility in programing

Virtual Ports additional flexibility in programing the forwarding plane with rules that can match against more information contained in Ethernet packets.

Controller connection Failure

Simpler modes to deal with the loss of connectivity with the controller

Extensible Match support Dramatically increases flexibility.

Controller role-change mechanism

allows the switch to be aware of a controller’s role – eg failover from primary controller to the secondary

IPV6 Support OpenFlow 1.3 provides IPV6 support

Per-flow meters Measure and control the rate of packets.

© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.

Transforming the Industry with Software-defined Networks

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.23

HP leads in software-defined networking

2H 2012

Infrastructure

Control

Application

SD

N A

rchit

ect

ure

25 OpenFlow switchesOver 15M installed ports

Virtual Cloud

SentinelLoad

Balancing

WAN Bursting

UC&C

1H 2013

40 OpenFlow switchesOver 20M installed ports

Virtual Application NetworksSDN Controller

Virtual Cloud

SentinelLoad

Balancing

Virtual Application NetworksSDN Controller


Industry’s most complete software-defined data center network fabric

Virtual Application Networks deliver automation, agility

40 Switches – over 20 million ports

Virtual Application Networks SDN Controller

Virtual Cloud

Sentinel

Load Balancing

Management

Traditional &3rd party

VAN Server Connect Manager

Inte

lligent

Managem

en

t C

ente

r

VAN SDNManager

VAN Resource Automation Mgr

UC&C

WAN Bursting

Infrastructure

Control

Application

SD

N A

rchit

ect

ure


Tenant 1

Network virtualization for scalable multitenant data centers

Virtual Cloud Network application

Infrastructure

Control

Application

SD

N A

rchit

ect

ure

• Scalable cloud automation

• Scalable cloud multitenancy

• Private-public cloud integration

VAN SDN Controlle

r

Tenant 2Virtual Cloud

Network App


Delivering new revenue opportunities for service provider cloud data centers

Dynamic WAN bandwidth provisioning

Infrastructure

Control

Application

SD

N A

rchit

ect

ure • Automated

provisioning

• On-demand scalability

• Disaster avoidance

HP Operations Orchestrati

on

Service Provider DC

HypervisorVM VM VM

Customer DC

HypervisorVM VM VM

VAN SDN Controlle

r


Automating policy for campus enterprise business applications

UC&C SDN application for Lync

Infrastructure

Control

Application

SD

N A

rchit

ect

ure • Simplified policy

Deployment

• Dynamic prioritization

• Enhanced user experience

UC&C SDN Application

VAN SDN Controlle

r

Watch Demo

SDN

API

POC

http://www.youtube.com/watch?v=byMtYpmh1xQ


Enabling real-time threat detection across enterprise campus networks

Portscope security application

Infrastructure

Control

Application

SD

N A

rchit

ect

ure • Secure BYOD

• Unprecedented Visibility

• Better than antivirus alone

RepDVDatabase

Malicious-site.com

Sentinel Security

App

VAN SDN Controlle

r

TippingPoint


Open and extensible platform

Virtual Application Network SDN ControllerHP VAN SDN Controller: • Extensible, scalable, resilient platform • Provides centralized automation for your SDN-enabled network• Controls policy and forwarding decisions• Compliant with OpenFlow 1.0 and 1.3 protocols• Enables HP and 3rd party SDN applications


The REST interfaces that external applications use to interact with the network

Northbound API

RESTful APIs enable the VAN SDN controller to have support for:• Third party applications• Open-source applications• Unified communications

and control application• OpenStack virtual cloud

applications• Full management platforms

such as IMC

UC&C applicatio

n

VAN SDN Controllerxx

OpenStack virtual

cloud

Northbound APIs (RESTful)

3rd party applicatio

n…

Network Virtualizati

on

Flow based

traffic eng

Partner Dev

application

…Internal

Applications

External Applicatio

ns

Internal APIs (Java)

Southbound API

HP

VA

N S

DN

C

on

troll

er

SDN Protocols


The Java interfaces that the internal applications use to control the network

Internal API

Internal APIs enable VAN SDN controller to have support for: • Partner developed

applications• Security service

applications• Flow based traffic

engineering• Optimized data path

selection

UC&C applicatio

n


OpenStack virtual

cloud



n…

Network Virtualizati

on

Flow based

traffic eng

Partner Dev

application

…Network Control

Applications

SDN Business Applicatio

ns


Southbound API

HP

VA

N S

DN

C

on

troll

er

SDN Protocols


The interface that the controller uses to interact with the infrastructure

Southbound API

VAN SDN controller supports OpenFlow enabled infrastructure:• HP 50 OpenFlow enabled

devices• Compliant with OpenFlow 1.0

& 1.3• Available to work with any

OpenFlow enabled switch from other vendors

• Extensible to support future SDN standards

UC&C applicatio

n


OpenStack virtual

cloud



n…

Network Virtualizat

ion

Flow based

traffic eng

Partner Dev

application

…Network Control

Applications

SDN Business Applicatio

ns


Southbound API

HP

VA

N S

DN

C

on

troll

er

SDN Protocols


Industry’s first comprehensive SDN management tool

IMC Virtual Application Networks SDN Manager

• Completes the SDN architecture with management

• Configuration, monitoring & policy mgmt for all SDN

layers

• OpenFlow switch management

• SDN controller performance management

• One application for managing SDN and traditional

environments

1Compared with Cisco Nexus 1010 Virtual Services Appliance

50% less management

complexity

10X acceleration of

SDN deployments

Infrastructure

SD

N

Arc

hit

ect

ure

Controller

Application

IMC SDN Manager


• Controller management

uses the HP REST API to

manage the OpenFlow

infrastructure

• Management functionality

includes managing

OpenFlow resources , flow

policies, traffic monitor,

reporting,

troubleshooting, and APP

management

OpenFlow Network Management


35

SD

N &

Netw

ork

V

irtu

aliz

ati

on

Open, interoperable solution unifying physical and virtual

HP-VMware Networking Solution

HP Cloud OS

SDN apps

Federation

ConvergedControl

Overlay

Underlay

Unifies underlay & overlay visibility & control

Delivers dynamic cloud orchestration

d orchestration

SDN Manager

Intelligent Management Center (IMC)

vCenterPlug-in

Provides single

pane-of-glass

management for

physical & virtual

networksServer

VAN SDN Controller

VMware NSXEnables interoperability and SDN extensibility via

federation

Extends network virtualization to physical servers


SDN Ecosystem: Why?

The value of a platform is dependent on the applications that exist within that

ecosystemWe have to build the best ecosystem for

developersand drive SDN standards to ensure the

ecosystem grows the market for all vendors and developers


HP SDN Software Development Kit (SDK)

• RESTful APIs • Developer

guide• Sample code

Develop• Community

portal• Knowledge

base• Training,

services

Collaborate

• SDN simulator• SDN virtual lab• Validation test

Simulate & Certify


Virtual Application Networks SDN Controller

Infrastructure

Control

SD

N A

rchit

ect

ure

Programmable network aligned to business application delivers agility

Open SDN portfolio, SDK, App Store enable Ecosystem

Application

Virtual Cloud

Sentinel

Load Balancing

Partner Apps

UC&C

ConvergedControl

Design Implementation & Support

Services

Over 25 million ports across 50 Switches10 Routers


Simplify, Transform, Evolve

Software-Defined Network Services

Network Cloud Optimization Service

Virtual Network Protection Service

Network Infrastructure Optimization Services

Transformation Experience Workshop

SDN Baseline Discovery

Virtual Application NetworkProof of Concept

SDN Strategy & Roadmap Services

SDN Design and Implementation Services

Cloud-ready Network Services

Support Services


Open standard-based programmatic access to infrastructure

Deliver open programmable interfaces to automate orchestration of network services

HP Software-Defined Network Ecosystem Vision

Network DeviceNetwork DeviceInfrastructure Layer

Business Applications

SDN ControllerControl Layer

SDN ControllerApplication Layer Network

VirtualizationSecurity UC & C

Campus/BranchWANData Center

VAN SDN Controller

OpenFlow-enabled

Infrastructure

3rd-party Infrastructu

re

Visibility & Control

WAN bursting

HP 3rd Party Ecosystem

3rd-party Controllers

vSwitches

Customer & PartnerApps

3rd-partyApps

FederationAPIs


Make it SimpleMake it MatterMake History

Thank you

march 2, 2014 jeff “z” szczerbinski, ccie #4052 david spears software defined networking...

Documents