Download Towards Wide-Area Network Virtualization

Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
Panagiotis Papadimitriou
Leibniz Universität Hannover
With acknowledgments to
Zdravko Bozakov, David Dietrich, Amr Rizk (Leibniz Universität Hannover)
Laurent Mathy (University of Liege)
Christoph Werle, Roland Bless (Karlsruhe Institute of Technology)
Introduction

Increasing need for wide-area network service deployment

Network service deployment in the existing Internet infrastructure:



Wide-area deployment without any performance or reliability guarantees
Performance and reliability for services deployed at an ISP
 Deployment limited to the ISP’s geographic footprint
How can we enable the coexistence of multiple service-tailored
networks at large scale?
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
2
Network Virtualization: An Enabler
Physical
Infrastructure
Virtualization of Resources
(partitioning of physical infrastructure into “slices”)
Virtualized
Substrate
Provisioning of Virtual Networks
(on-demand instantiation of virtual networks)
Virtual
Network
Virtual
Network
Management of Virtual Networks
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
3
Roles and Actors


Service Provider (SP)

Deploys services on VNs
Service Provider
Infrastructure Provider (InP)


Owns and manages the physical
infrastructure
Leases resources for VNs
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
4
Roles and Actors

Service Provider (SP)

Deploys services on VNs
Service Provider
VN Request

Infrastructure Provider (InP)


Owns and manages the physical
infrastructure
Leases resources for VNs
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
5
Roles and Actors

Service Provider (SP)

Deploys services on VNs
Service Provider
VN Request
?

Infrastructure Provider (InP)


Owns and manages the physical
infrastructure
Leases resources for VNs
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
6
Roles and Actors

Service Provider (SP)

Deploys services on VNs
Service Provider
VN Request


Virtual Network Provider (VNP)

Assembles resources from one or
multiple InPs into a VN
VN Provider
Infrastructure Provider (InP)


Owns and manages the physical
infrastructure
Leases resources for VNs
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
7
Challenges

Limited knowledge of the substrate
network:



Service Provider
Substrate network topology
Substrate resource availability
VN Request
Interoperability between InPs:

Inter-domain virtual link setup
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
VN Provider
8
Substrate Network Visibility

VN Provider‘s visibility on substrate
network topology and resources is
limited to:
?
?
?
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
9
Substrate Network Visibility

VN Provider‘s visibility on substrate
network topology and resources is
limited to:

Offered virtual node types
(similar to Amazon EC2)
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
10
Substrate Network Visibility

VN Provider‘s visibility on substrate
network topology and resources is
limited to:


Offered virtual node types
(similar to Amazon EC2)
Location of peering nodes
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
11
Substrate Network Visibility

VN Provider‘s visibility on substrate
network topology and resources is
limited to:



Offered virtual node types
(similar to Amazon EC2)
Location of peering nodes
Cost for sending traffic between
peering nodes
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
12
VN Request Description


VN topology (undirected weighted graph) as VN request description:


Introduces constraints in VN embedding
SPs may prefer a higher level of abstraction
Alternative VN request descriptions:


Bandwidth demands expressed by a traffic matrix
Hose model
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
13
Multi-Domain Virtual Network Embedding
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
14
Multi-Domain Virtual Network Embedding
VN Request
Resource Matching
VN Provider
VN Request Partitioning
Resource Assignment
InP
Resource Allocation
VN Setup
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
15
Multi-Domain Virtual Network Embedding
VN Request
Resource Matching
VN Provider
VN Request Partitioning
Resource Assignment
InP
Resource Allocation
VN Setup
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
16
Resource Matching

VN Provider matches requested to
advertised resources
 Candidates for each requested
resource are identified
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
17
Resource Matching

VN Provider matches requested to
advertised resources
 Candidates for each requested
resource are identified
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
18
Resource Matching

VN Provider matches requested to
advertised resources
 Candidates for each requested
resource are identified
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
19
Resource Matching

VN Provider matches requested to
advertised resources
 Candidates for each requested
resource are identified
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
20
Resource Matching

VN Provider matches requested to
advertised resources
 Candidates for each requested
resource are identified
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
21
VN Request Partitioning

VN Provider partitions the VN request
among InPs


Objective: Minimize the
expenditure for the Service
Provider
Output: VN segment requests
(virtual nodes assigned to peering
nodes, bandwidth demands)
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
22
VN Request Partitioning

VN Provider partitions the VN request
among InPs


Objective: Minimize the
expenditure for the Service
Provider
Output: VN segment requests
(virtual nodes assigned to peering
nodes, bandwidth demands)
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
23
VN Request Partitioning

VN Provider partitions the VN request
among InPs


Objective: Minimize the
expenditure for the Service
Provider
Output: VN segment requests
(virtual nodes assigned to peering
nodes, bandwidth demands)
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
24
Resource Assignment

Each InP maps its assigned VN
segment onto its substrate network:

VN segment mapping should
comply with the virtual node to
peering node bindings
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
25
VN Embedding Efficiency with LID

Comparison method:

Limited information disclosure (LID) vs. full information disclosure (FID)
 VN embedding cost
 VN request acceptance rate
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
26
Extra Cost under LID

LID incurs15-30% extra cost
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
27
Origins of Extra Cost


Extra cost is correlated with extra link cost
Extra link cost is due to longer paths
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
28
VN Request Acceptance Rate

Lower VN acceptance rate and revenue for InPs under LID
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
29
Virtual Link Setup
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
30
Virtual Link Setup



Objective:

Interoperable solution for virtual link setup with QoS guarantees across
InPs
Approach:

Couple virtual link setup signaling with QoS reservation signaling for
efficiency
 Rely on existing QoS resource reservation protocol (IETF NSIS)
 Add new object to NSIS QoS NSLP to carry the required information
for virtual link setup
Requirements:



NSIS support in routers
IP-based substrate
New QoS NSLP object support (only) in virtual link end-points
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
Virtual Link Setup Protocol (VLSP)

NSIS QoS NSLP extension with new Virtual Link Setup Protocol (VLSP) object:
 Virtual link setup at the end-points via VLSP
 Resource reservation and QoS via NSLP object at the intermediate nodes
NSLP
64
0
127
QoS
VLSP
NSLP
Virtual Network ID
Source Virtual Node ID
Destination Virtual Node ID
Source Virtual Interface ID
Destination Virtual Interface ID
Virtual Link ID (optional)
Virtual Link Type (optional)
VLSP object
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
GIST
NTLP
TCP/UDP/…
IP
NSIS QoS NSLP/VLSP
Virtual Link Setup Workflow
InP
Management
Node
Router A
Router B
Management
Daemon
NSIS
Daemon
VM1
NSIS
Daemon
VM2
Management
Daemon
NSIS
Daemon
Router X
vif1
VM1
VM2
vif1
IP forwarding
Multiplexing/QoS
eth0
IP in IP tunnel
eth0
eth1
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
Multiplexing/QoS
eth0
Virtual Link Setup Workflow
1. Setup virtual link from
VM1@A  VM1@B
InP
Management
Node
Router A
Router B
Management
Daemon
NSIS
Daemon
VM1
NSIS
Daemon
VM2
Management
Daemon
NSIS
Daemon
Router X
vif1
VM1
VM2
vif1
IP forwarding
Multiplexing/QoS
eth0
IP in IP tunnel
eth0
eth1
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
Multiplexing/QoS
eth0
Virtual Link Setup Workflow
1. Setup virtual link from
VM1@A  VM1@B
2. Initialize virtual link setup
VM1@A  VM1@B
InP
Management
Node
Router A
Router B
Management
Daemon
NSIS
Daemon
VM1
NSIS
Daemon
VM2
Management
Daemon
NSIS
Daemon
Router X
vif1
VM1
VM2
vif1
IP forwarding
Multiplexing/QoS
eth0
IP in IP tunnel
eth0
eth1
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
Multiplexing/QoS
eth0
Virtual Link Setup Workflow
1. Setup virtual link from
VM1@A  VM1@B
InP
Management
Node
2. Initialize virtual link setup
VM1@A  VM1@B
3. RESERVE
+ VLSP Object
Router A
Management
Daemon
NSIS
Daemon
VM1
Router B
NSIS
Daemon
VM2
Management
Daemon
NSIS
Daemon
Router X
vif1
VM1
VM2
vif1
IP forwarding
Multiplexing/QoS
eth0
IP in IP tunnel
eth0
eth1
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
Multiplexing/QoS
eth0
Virtual Link Setup Workflow
1. Setup virtual link from
VM1@A  VM1@B
InP
Management
Node
2. Initialize virtual link setup
VM1@A  VM1@B
4. Ignore VLSP
object, perform
admission control
3. RESERVE
+ VLSP Object
Router A
Management
Daemon
NSIS
Daemon
VM1
Management
Daemon
NSIS
Daemon
Router X
NSIS
Daemon
VM2
Router B
vif1
VM1
VM2
vif1
IP forwarding
Multiplexing/QoS
eth0
IP in IP tunnel
eth0
eth1
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
Multiplexing/QoS
eth0
Virtual Link Setup Workflow
1. Setup virtual link from
VM1@A  VM1@B
InP
Management
Node
2. Initialize virtual link setup
VM1@A  VM1@B
4. Ignore VLSP
object, perform
admission control
3. RESERVE
+ VLSP Object
Router A
Management
Daemon
NSIS
Daemon
VM1
Router B
Management
Daemon
NSIS
Daemon
Router X
NSIS
Daemon
VM2
5. RESERVE
+ VLSP Object
vif1
VM1
VM2
vif1
IP forwarding
Multiplexing/QoS
eth0
IP in IP tunnel
eth0
eth1
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
Multiplexing/QoS
eth0
Virtual Link Setup Workflow
1. Setup virtual link from
VM1@A  VM1@B
InP
Management
Node
2. Initialize virtual link setup
VM1@A  VM1@B
4. Ignore VLSP
object, perform
admission control
3. RESERVE
+ VLSP Object
Router A
Management
Daemon
NSIS
Daemon
VM1
5. RESERVE
+ VLSP Object
Router B
Management
Daemon
NSIS
Daemon
Router X
NSIS
Daemon
VM2
6. Setup virtual link
VM1@A  VM1@B
vif1
VM1
VM2
vif1
IP forwarding
Multiplexing/QoS
eth0
IP in IP tunnel
eth0
eth1
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
Multiplexing/QoS
eth0
Virtual Link Setup Workflow
1. Setup virtual link from
VM1@A  VM1@B
InP
Management
Node
2. Initialize virtual link setup
VM1@A  VM1@B
Management
Daemon
NSIS
Daemon
VM1
5. RESERVE
+ VLSP Object
4. Ignore VLSP
object, perform
admission control
3. RESERVE
+ VLSP Object
Router A
6. Setup virtual link
VM1@A  VM1@B
NSIS
Daemon
vif1
VM1
7. RESPONSE
IP forwarding
Multiplexing/QoS
eth0
IP in IP tunnel
eth0
Management
Daemon
NSIS
Daemon
Router X
VM2
Router B
eth1
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
VM2
vif1
Multiplexing/QoS
eth0
Virtual Link Setup Workflow
1. Setup virtual link from
VM1@A  VM1@B
InP
Management
Node
2. Initialize virtual link setup
VM1@A  VM1@B
Management
Daemon
NSIS
Daemon
VM1
5. RESERVE
+ VLSP Object
4. Ignore VLSP
object, perform
admission control
3. RESERVE
+ VLSP Object
Router A
6. Setup virtual link
VM1@A  VM1@B
NSIS
Daemon
vif1
VM1
7. RESPONSE
IP forwarding
Multiplexing/QoS
eth0
IP in IP tunnel
eth0
Management
Daemon
NSIS
Daemon
Router X
VM2
Router B
eth1
8. Reserve
resources
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
VM2
vif1
Multiplexing/QoS
eth0
Virtual Link Setup Workflow
1. Setup virtual link from
VM1@A  VM1@B
InP
Management
Node
2. Initialize virtual link setup
VM1@A  VM1@B
Management
Daemon
NSIS
Daemon
VM1
5. RESERVE
+ VLSP Object
4. Ignore VLSP
object, perform
admission control
3. RESERVE
+ VLSP Object
Router A
6. Setup virtual link
VM1@A  VM1@B
NSIS
Daemon
vif1
VM1
7. RESPONSE
IP forwarding
Multiplexing/QoS
eth0
IP in IP tunnel
9.
RESPONSE
eth0
Management
Daemon
NSIS
Daemon
Router X
VM2
Router B
eth1
8. Reserve
resources
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
VM2
vif1
Multiplexing/QoS
eth0
Virtual Link Setup Workflow
1. Setup virtual link from
VM1@A  VM1@B
InP
Management
Node
2. Initialize virtual link setup
VM1@A  VM1@B
Management
Daemon
VM1
NSIS
Daemon
5. RESERVE
+ VLSP Object
4. Ignore VLSP
object, perform
admission control
3. RESERVE
+ VLSP Object
Router A
6. Setup virtual link
VM1@A  VM1@B
NSIS
Daemon
vif1
10. Setup virtual link
VM1@A  VM1@B
Multiplexing/QoS
9.
eth0
IP in IP tunnel RESPONSE
VM1
7. RESPONSE
IP forwarding
eth0
Management
Daemon
NSIS
Daemon
Router X
VM2
Router B
eth1
8. Reserve
resources
virtual link
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
VM2
vif1
Multiplexing/QoS
eth0
SDN Virtualization
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
44
SDN Virtualization

Tenants are granted virtual networks with limited control and access
on network devices
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
45
SDN Virtualization

Tenants are granted virtual networks with limited control and access
on network devices

Solution: Virtual networks programmable as SDNs (vSDNs)

SDN virtualization benefits:
 Tenants:
 Advanced control and access on network slices
 Providers:
 New cloud computing model:
 SDN as a Service (SDNaaS)
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
46
SDN Virtualization Challenges

Automation of vSDN setup




Transparent vSDN operation



vSDN mapping
Transparent allocation of isolated flowspaces
 Selection of identifiers
Generation and installation of flow entries for packet forwarding and
encapsulation
 Binding traffic to logical context using tagging
Translation of references to logical/physical resource identifiers to
appropriate context
Policy control to prevent access to unauthorized vSDN resources
Scalability of hypervisor

Distribution of vSDN configurations across multiple controllers
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
47
SDN Hypervisor Overview


Distributed hypervisor

Multiple autonomous controller
proxies
 Coordinated by management
module
Dataplane segmentation


Multiple SDN domains
Switches within a domain controlled
by the same controller proxy
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
48
SDN Hypervisor Design Challenges




Collaboration among controller proxies
for operations across multiple SDN
domains
Dynamic segmentation of SDN as
vSDNs are provisioned or released
Support for arbitrary vSDN topologies
Suitability of existing virtual network
embedding algorithms for vSDN
mapping
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
49
Conclusions

Multi-domain VN embedding with VNPs:




Suboptimality due to limited information disclosure
One example of emerging business models that require separation
between the network operations and the physical infrastructure
Will VNPs materialize or a single InP will prevail (Amazon)?
New cloud computing models may emerge from SDN virtualization

Scalable SDN hypervisor design entails significant challenges
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
50
Thank you!
Panagiotis Papadimitriou
E-mail: [email protected]
WWW: http://www.ikt.uni-hannover.de/
Towards Wide-Area Network Virtualization
Dagstuhl Seminar on Future Internet
51