vsr update 14.0r6 and beyond - articsnokia.artics.com/materials/virtual_routing_vsr_vnf_update.pdf-...
TRANSCRIPT
1 © Nokia 2016
VSR update14.0R6 and beyond
Confidential
Mini SReXperts Russia – December 2016• James Cumming, PLM• 07-12-2016
@nokia_jcumming
2 © Nokia 2016
Agenda
Confidential
Product highlights
Customer update
Future developments Summary
© Nokia 20163
Product highlights
Confidential
• Throughout 2016
4 © Nokia 2016
• VSR released in 2014- Simulator
- Route-Reflector
• vFP enabled VSR released 2016 (29th July)- Provider Edge (Incl. DCGW)
- Broadband Network Gateway (Incl. LNS)
- Security Gateway- Network Address Translation (CGN)
- Application Assurance
• Even more in 2016- Wireless LAN Gateway
- MAP-T Gateway
Confidential
Product highlightsThroughout 2016
VSR
At the heart of your cloud
5 © Nokia 2016
Product highlights
Confidential
Throughout 2016
Available now
vFP enabled Route-Reflector (RR)
SR Simulator (SIM) Broadband Network Gateway (BNG)
Provider Edge (PE)
Application Assurance (AA)
Data Centre Gateway (DCGW)
Security Gateway (SeGW)
Network Address Translation (NAT)
L2TP Network Server (LNS)
Wireless LAN Gateway (WLGW)
Route-Reflector Appliance (VSR-a RR)
MAP-T Gateway(MAP-T)
6 © Nokia 2016
VSR-D
VSR
Confidential
Product highlightsOne product, two personalities, unlimited potential
One VM = One VSR
Target specific apps
No fabric connectivity
One VM = One linecard
Control-plane resiliency
Independent scaling
VSR-I
7 © Nokia 2016
• Deployment scenarios- On-Net Business Edge• Emerging Markets
• Rapid Expansion
• Legacy Device Replacements (tackle EOL issues)
- Off-Net Business Edge• Internet Services with Local Internet Breakout
• Business VPRNs
• Layer-2 VPNs
Confidential
Product highlightsProvider Edge throughout 2016
DataCentre
Operator Network
IntermediateOperator
IPSec
MPLSoIPSec
VSR PE
VSR PE
VSR PE
VSR PEVSR PE
CPE
CPE
CPE
CPE CPE
CPE CPE
CPE
PE
PE
DCGW
8 © Nokia 2016
• VSR provides a vEPC Border Gateway application (vBGW)• Can be combined with the Nokia vEPC solution• VSR provides- NAT- Statefull firewall
- Deployment flexibility
Confidential
Product highlightsEPC Border Gateway (BGW) Router throughout 2016
vEPCMobile
Backhaul Network
VSR BGWRAN PE
CMG
CMM
9 © Nokia 2016
• x86 processors are specifically manufactured for this type of high CPU application
• Common deployment models- Off-Ramp AA
• Desire to use the physical hardware for high performance forwarding without burning slots for ISA cards
• No ability to insert ISA cards (such as on the SR-a platform)
- In-Line AA
• Transit traffic between the network and the BNG
• Transparent Application Assurance
- Integrated service AA• The vBNG and the vAA device are the same VSR
Confidential
Product highlightsApplication Assurance throughout 2016
Steered traffic
Non Steered traffic
Blacklist FTP server, ICAP server, …
Gx or Radius
AAA or PCRF 5620 SAM
VSR
Access Node 7750 SR BNG
CP
DP
AAA or PCRF NFM-P (SAM)
Access Aggregation
ESM or Legacy BNG
AA application
Traffic not requiring AA is fast-tracked
without touching AA
10 © Nokia 2016
• Layer 4 – Layer 7 application detection• Control, prioritisation and metering• HTTP redirection• In-browser notification and header enrichment
• Parental control and blacklisting• Reporting
Confidential
Product highlightsApplication Assurance throughout 2016
Aggregate Application download BW
Daily Recurring PatternGoogle+Facebook+Youtube = 50% of traffic
WhatsApp = 8%
Top visited Domains
11 © Nokia 2016 Confidential
Product highlightsBroadband Network Gateway throughout 2016
Aggr
egat
ion
Aggr
egat
ion
VSR BNG
PE
DCGW
VSR BNG
VSR BNG
VSR BNG
TOR switch
TOR switch
TOR switch
Internet / Corporate VPN
Carriers network
12 © Nokia 2016
Corporate VPN
Confidential
Product highlightsData-Centre Gateway throughout 2016
EVPNoVXLAN
XMPP
MPLS VPN
Continuousfeedback
NSP
Compute Server
SR-IOV /PCI-PT
EVPNoVXLANMPLS VPN
Stitch
Customer VPN
Core Network
Internet
13 © Nokia 2016
Wireless packet core
IP edge
Enterprise
Small Cell
Hotspot
Homespot
Mobile Wi-Fi Hotspot
Policy & Subscriber management
Captive Portal& Analytics
AAA
PGW
MDMHLR/HSS
PCRF
Product highlightsWireless LAN gateway
Carrier cloud
Airscale Wi-Fi
VSR WLGWInternet
Confidential
14 © Nokia 2016
• Potential use cases
• Community Wi-Fi- Widely deployed for both open and closed SSID, where a clear move is visible
towards closed SSID
• Hotspot aggregation- Mainly in combination with Ruckus, Aruba, Cisco, Xirrus, …. field-proven
interworking
• Mobile off-load- Not so much of a success in Europe, more present in Africa
• Machine-2-machine- Domestic metering, IoT
• Upcoming use-cases:- Offering Wi-Fi for enterprises (lends itself well the virtualised solution)
- Camera systems (in case Wi-Fi mesh present)
- IoT evolution (Wi-Fi Halow, sub-1Ghz WiFi)
• Targeted features
• Access over soft-GRE, soft-L2TPv3, and L2-AP
• Dual-stack sessions (DSM and ESM)
• Central and Distributed RADIUS-Proxy for EAP
• L2-aware NAT
• HTTP-Redirect (vFP and ISA based)
• Migrant user support
• Data-triggered mobility
• Data-triggered UE creation (IPv4 ESM, IPv4/IPv6 DSM)
• L2-Wholesale
• 256k DSM UEs per WLAN-GW DP-VM
• Control plane triggered mobility
• Inter WLAN-GW Redundancy Confidential
Product highlightsWireless LAN gateway
VSR-D
15 © Nokia 2016
• Mapping of Address and Port (MAP)- MAP-E (RFC 7597): Original IPv4 packet is encapsulated in an IPv6 packet based on RFC 2473
(Generic Packet Tunnelling in IPv6)
- MAP-T (RFC 7599): Original IPv4 packet header is translated into an IPv6 packet header
• MAP-T designed to enable IPv4 CE devices to connect to IPv4 destinations over an intermediate IPv6 network by translating the packet from IPv4 into IPv6 (not encapsulating it)- Translation based on NAT64 (RFC 6145)
• Within a MAP domain- MAP-T capable CPE• Statefull NAT44 (NAPT) & Stateless MAP-T based on NAT64
- Border Relay (BR) device• Stateless MAP-T gateway based on NAT64
Confidential
Product highlightsMAP-T Gateway (vMAPT)
16 © Nokia 2016
AFTR
CPE
CPE
CPEIPv4
RFC1918
IPv4RFC1918
IPv4RFC1918 IPv6 only
network
Stateless NAT64
Statefull NAT44 + MAP-T
Statefull NAT44 + MAP-T
Statefull NAT44 + MAP-T
MAP-T
Confidential
Product highlightsMAP-T Gateway (vMAPT)
CPE
CPE
CPEIPv4
RFC1918
IPv4RFC1918
IPv4RFC1918
IPv4 in IPv6 tunnels
IPv6 only network Statefull
NAT44IPv4 public
network
IPv4 public network
• Improvements over DS-lite- No tunnelling to central point (AFTR)
- No statefull NAT at centralised point in the providers network
- Allows CE-CE traffic within a MAP domainwithout traversing centralised AFTR/BR
DS-lite
VSR MAP-T GW
MAP DomainInternet
Internet
17 © Nokia 2016 Confidential
Product highlightsRoute-Reflector appliance
Host Machine• 1U rack server• Intel E5-2640v4 Broadwell CPU (10 core, 2.4 GHz)• Dual hot-swappable 750W AC PSU• 32 GB DDR4 DRAM• 2-port 10GE SFP+ (Intel X520)• 2-port 10GE BaseT (Intel X540)• GE management port• 2x USB ports• Hot swappable 1TB HDD
Host OS• Red Hat Linux 7.x• Virtualization packages: libvirt, qemu-kvm• Kernel optimizations: huge pages, isolcpus
VSR-I Virtual Machine• 24GB vRAM• 8 cores • 1 vCPU for datapath• 14 vCPUs for control plane• 1 management port (VirtIO)• 1 console port• 10GE network ports (VirtIO)• 1 CF3 disk
SR OS• IGP protocols• Static routes• BGP, MP-BGP route reflection• Add-Paths• Route policies• Disable route table install• Multi-core SMP• Massive RIB scale (100M+ paths)
18 © Nokia 2016
• KVM support initially with VMware to follow*
• Major Linux distributions supported: CentOS, RedHat, Ubuntu• Intel Ivy-Bridge (E5-26xx v2), Haswell (E5-26xx v3) and Broadwell (E5-26xx v4) processors
supported
• Flexibility with virtualised I/O methods- PCI-Passthrough, SR-IOV, OVS, OVS-DPDK and Linux Bridging
• Openstack support currently- RDO project Kilo and Liberty
- RedHat OSP 7 (Kilo) and 8 (Liberty)
- NUMA topology awareness, vCPU pinning, SR-IOV, Hugepages, Config drive metadata support
• Full LCM support with Nokia’s SAM and CloudBand products Server 1
VSRVSRVSR
Confidential
Virtualised Service Router (VSR)Cloud Friendly
* R15 candidate
KVM
Bridge / OVS
NIC
Port
VF VF
DPDK-OVS
Port Port Port
19 © Nokia 2016
Platform highlightsHigh performance NIC support throughout 2016
* Only one port of the dual-port card is usable for PCI pass-through
NIC Vendor NIC Models SR-IOV PCI pass-through
Intel X520-DA2 (10G)X540 (10G)X710 (10G)XL710 (40G)
14.0R4FutureFutureFuture
14.0R4FutureFutureFuture
MellanoxConnectX3 Pro
MCX313A-BCCTMCX314A-BCCT*MCX353A-FCCTMCX354A-FCCT*
No 14.0R4
MellanoxConnectX4
MCX416A-CCAT (40/56/100G)MCX4121A-ACAT (25G)MCX-414A-BCAT (40/56/100G)
14.0R6 (40Gbps)14.0R6 (25Gbps)14.0R6 (40Gbps)
14.0R6 (40Gbps)14.0R6 (25Gbps)14.0R6 (40Gbps)
Confidential
20 © Nokia 2016
• VSR documentation available on OLCS & WWW
Confidential
Product highlightsThroughout 2016
Item Link
Installation and Setup Guide http://alu.tl/pnm
VSR datasheet http://resources.alcatel-lucent.com/asset/182483
VSR RR datasheet https://resources.nokia.com/asset/200484
VSR PE datasheet https://resources.nokia.com/asset/200483
VSR BNG datasheet https://resources.nokia.com/asset/200485
VSR NAT datasheet https://resources.nokia.com/asset/200487
VSR SeGW datasheet https://resources.nokia.com/asset/200488
VSR AA datasheet https://resources.nokia.com/asset/200486
Introduction to Virtualised Service Routing whitepaper
https://resources.alcatel-lucent.com/asset/200482
Rapid deployment with the VSR video
https://youtu.be/wIaWqxePFrY
21 © Nokia 2016
Future developments
Confidential
• Through 2017 and beyond
22 © Nokia 2016
Product highlights
Confidential
Throughout 2017
Release 15.0R1
Residential Gateway (RGW)
VSR Appliance Portfolio
Release 15.0R4
Candidate15.0R1
Candidate 15.0R4
LCM Integration with CloudBand and NSP
Scale and resilience enhancements
23 © Nokia 2016
• Additional visibility into the home- Per MAC/Per user policies, features and value-add services
• Home LAN extension- Join multiple homes together on a single network segment
Confidential
Key feature developments - 2017Residential Gateway
Home 2
• Intra-home traffic locally bridged
• Non-home traffic tunneled to vRGW
Home Wi-Fi+ Ethernet
Home 1
Home Wi-Fi+ Ethernet
• Intra-home traffic locally bridged
• Non-home traffic tunneled to vRGW
• Intra-home traffic locally bridged
• Non-home traffic tunneled to vRGW
Home 3
Home Wi-Fi+ Ethernet
7750 SR
vRGW
Access Network
MANAGEMENT CLIENT
L2oGREL2TPv3 encap.
Bridged 1:1; N:1 VLAN
DHCP LAN(Home aware)
SUBSCRIBERCONTEXT
SUBSCRIBER NAT
UPnP IGD
Application assurance
SERVICE CHAINING
HOME LAN EXTENSION
VSR RGW
24 © Nokia 2016 Confidential
Key feature developments - 2017Optimal Route-Reflection
*Release 16 candidate
VSR RR
VSR RR
VSR RR
VSR RR
VSR RR
LINX
SFINX
DECIX
MIX
ESPANIX
• Minimise the number of route-reflectors in the network- Reduce CapEx
- Reduce network management complexity
• BGP Optimal Route-Reflection enables a centralised VSR route-reflector to perform best-path calculations from a reference point (IP address) elsewhere in the network
• Optimal Route-Reflection will enable this both interand intra IGP area/level/domain for ISIS and OSPF as well as being able to use routing information obtainedusing BGP-LS
• LSDB information is loaded into the TEDB and thebest-path calculation is run from there- Enables inter-AS ORR for multi-AS networks and
confederations in the future*
© Nokia 201625
Summary
Confidential
26 © Nokia 2016
• Cloud model
• What we sell: a disk image containing VSR software and software licenses to use that software
• VSR virtual machines are deployed (with other workloads) on generic NFVI using MANO solution (VIM, VNFM, orchestration)
• Support is focused on VSR software stack• Available for all applications
• Appliance model
• What we sell: an Airframe server pre-loaded with host OS, hypervisor and VSR software (or installed from USB after delivery)
• VSR is the only guest• No VIM, VNFM or orchestration needed• Top-to-bottom validation and support• Available for VSR-RR in 14.0R6, other applications in 2017
Confidential
Product highlightsVSR delivery models
Nokia Airframe Compute ServerVSR
Compute Storage Network
NFVIOther VSR Virtual Machine
27 © Nokia 2016
SummaryDelivery models to support your cloud
requirements
Management and Orchestration through
the entire lifecycle
Embracing openness to deliver flexible
integration
Operational consistency across the portfolio
Best in class performance for mobile
and fixed
Full range of business, residential and mobile
applications
Confidential
28 © Nokia 2016
https://networks.nokia.com/products/virtualized-service-router
29 © Nokia 2016 Confidential
Copyright and confidentiality
The contents of this document are proprietary and confidential property of Nokia. This document is provided subject to confidentiality obligations of the applicable agreement(s).
This document is intended for use of Nokia’s customers and collaborators only for the purpose for which this document is submitted by Nokia. No part of this document may be reproduced or made available to the public or to any third party in any form or means without the prior written permission of Nokia. This document is to be used by properly trained professional personnel. Any use of the contents in this document is limited strictly to the use(s) specifically created in the applicable agreement(s) under which the document is submitted. The user of this document may voluntarily provide suggestions, comments or other feedback to Nokia in respect of the contents of this document ("Feedback").
Such Feedback may be used in Nokia products and related specifications or other documentation. Accordingly, if the user of this document gives Nokia Feedback on the contents of this document, Nokia may freely use, disclose, reproduce, license, distribute and otherwise commercialize the feedback in any Nokia product, technology, service, specification or other documentation.
Nokia operates a policy of ongoing development. Nokia reserves the right to make changes and improvements to any of the products and/or services described in this document or withdraw this document at any time without prior notice.
The contents of this document are provided "as is". Except as required by applicable law, no warranties of any kind, either express or implied, including, but not limited to, the implied
warranties of merchantability and fitness for a particular purpose, are made in relation to the accuracy, reliability or contents of this document. NOKIA SHALL NOT BE RESPONSIBLE IN ANY EVENT FOR ERRORS IN THIS DOCUMENT or for any loss of data or income or any special, incidental, consequential, indirect or direct damages howsoever caused, that might arise from the use of this document or any contents of this document.
This document and the product(s) it describesare protected by copyright according to theapplicable laws.
Nokia is a registered trademark of Nokia Corporation. Other product and company names mentioned herein may be trademarks or trade names of their respective owners.