Download 06 SDN

Software Defined Network (SDN):
Cisco Open Network Environment
Robert Feng
TSA
[email protected]
Nov 2012
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
1
Industry Buzz
Customer Insights and Industry Landscape
Cisco Strategy and Innovations
Planes of Programmability
Use Cases
Q&A
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
2
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
3
“Google revamps networks with OpenFlow”
—ZDnet
“Prediction: OpenFlow Is Dead by 2014; SDN Reborn in Network Management”
—Mike Fratto, Network Computing
“Will OpenFlow commoditize networks? Impact Cisco margins?”
—Several media publications, Bloggers
“.We share a more pragmatic view, noting Cisco (for example) is likely to view SDN as a TAM
expansion opportunity…” —Deutsche Bank Research note, Wired, April 2012
“Hype around SDN/OpenFlow getting way out of Control. Where have I seen this before…”
—Ethereal mind, Blogger
“SDN needs a bigger definition”
—Lippis report, 2012
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
4
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
5
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
6
What Is Software Defined Network (SDN)?
“…In the SDN architecture, the control and data
planes are decoupled, network intelligence and
state are logically centralized, and the underlying
network infrastructure is abstracted from the
applications…”
Source: www.opennetworking.org
What is OpenStack?
Opensource software for building public
and private Clouds; includes Compute (Nova),
Networking (Quantum) and Storage (Swift)
services.
What Is OpenFlow?
“…open standard that enables researchers
to run experimental protocols in campus networks.
Provides standard hook for researchers to run
experiments, without exposing internal working of
vendor devices…”
Source: www.opennetworking.org
What is Overlay Network?
Overlay network is created on existing network
infrastructure (physical and/or virtual) using a network
protocol. Examples of overlay network protocol are:
MPLS, LISP, OTV and VXLAN
Source: www.openstack.org
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
7
Current switch/router
Vendor-specific
APIs
“SDN” Approach
Vendor-specific APIs
Emerging: Hybrid Model
Standards-based APIs??
Control Plane
Control Plane
Control Plane
OpenFlow or
Vendor-specific
Data Plane
Resilient, Scalable
© 2011 Cisco and/or its affiliates. All rights reserved.
Data Plane
Simpler (fewer nodes to manage)
Centralized Topology
Control Plane
Data Plane
Best of both worlds
Cisco Confidential
8
Preserve what’s working
• Resiliency
• Scale
• Rich feature-set
Evolve for emerging requirements
+
• Operational Simplicity
• Programmability
• Application Centricity
Augment the Network for the next wave of application requirements
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
9
Cisco's SDN Strategy? First:
Customer Insight and Industry
Landscape
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
10
Research/
Academia
Massively Scalable
Data Center
 Experimental
OpenFlow/SDN
components for
production
networks
 Customize with
Programmatic
APIs to provide
deep insight into
network traffic
Network
“Slicing”
Network Flow
Management
Cloud
 Automated
provisioning
and
programmable
overlay,
OpenStack
Scalable
Multi-Tenancy
Service
Providers
 Policy-based
control and
analytics to
optimize and
monetize
service delivery
Agile Service
Delivery
Enterprise
 Virtual workloads,
VDI,
Orchestration of
security profiles
Private Cloud
Automation
Diverse Programmability Requirements Across Segments
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
11
802.1 Overlay Networking Projects,
Cisco Innovations:
FEX Architecture
Open Network Research
Center at Stanford
University
Technical Advisory
Group Chair,
Working Groups:
Config, Hybrid,
Extensibility,
Futures/FPMOD/OF2.0
Working Groups: Quantum
API
Donabe
Cisco Innovations:
OpenStack API for Nexus
OpenStack Extensions
Open Source Cloud
Computing project
© 2011 Cisco and/or its affiliates. All rights reserved.
Overlay Working Groups:
NVO3, L2VPN, TRILL, L3VPN, LISP, PWE3
API Working Groups:
NETCONF, ALTO, CDNI, XMPP, SDNP, I2AEX
Controller Working Groups:
PCE, FORCES
Cisco Confidential
12
How to program across any device, any layer, any service?
Vendor B
Vendor A
Apps
Vendor C
Apps
Controller
APIs
Apps
Virtual Overlay
Other
Agents
Network
Juniper, Arista
OpenFlow
Device
Device w/
OpenFlow
Physical
and
Virtual
Device
SW: BigSwitch
HW: HP, Juniper, Brocade, …
Network
Nicira, VMware
Cisco Approach : Flexibility to choose - The Power of “AND”
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
13
iOS
© 2011 Cisco and/or its affiliates. All rights reserved.
Android
Skype
Cisco Confidential
14
Cisco's Broad SDN Strategy and
Innovations – Cisco ONE
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
15
Cisco Open Network Environment (ONE)
1.
Platform APIs
2.
Controller/Agents
3.
Virtual Overlay
Networks
Nexus 1000V
onePK
Proof-of-concept
Controller software
for SDN research
OpenStack and REST API
Multi-Hypervisors
Comprehensive
Developer Kit across IOS,
IOS-XR and NX-OS
OpenFlow v1.0 Agent on
Catalyst 3570-X and 3560-X
VXLAN Gateway
Security, Services Chaining
Industry’s broadest approach for Network Programmability
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
16
Industry’s Most Comprehensive Networking Portfolio
Hardware + Software
Physical + Virtual
Network + Compute
Applications
Platform
APIs
Network
onePK
© 2011 Cisco and/or its affiliates. All rights reserved.
Virtual
Overlays
a
Controllers and
Agents
N1KV Enhancements
SDN:
SW Controller
OpenFlow on C3K
www.cisco.com/go/one
Cisco Confidential
17
Planes of Programmability
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
18
Network
Infrastructure
Any
Entity
• Switch, Router
• Service appliances
• Fabric, Compute
• Physical, Virtual
© 2010 Cisco and/or its affiliates. All rights reserved.
Any
Service
Any
Layer
• Layers 1 – 7
• Control/Data/Transp
• HW/ASICs, SW/OS
• Cloud
• Security
• Mobility
• Collaboration
• Video
Cisco Confidential
19
The Network
Application Developer Environment
Any
Entity
Mgmt. &
Orchestration
Analysis and Monitoring, Performance and Security
Program
Policies for
Optimized
Experience
Control Plane
SDN
Any
Layer
Harvest
Network
Intelligence
Cisco
Network Services
Forwarding Plane
Network Elements and Abstraction
Any
Service
© 2010 Cisco and/or its affiliates. All rights reserved.
Transport
Cisco Confidential
20
Flexibility in Deriving Abstractions
Application Developer Environment
Management and Orchestration
Analysis and Monitoring, Performance and Security
Network Services
Harvest
Network
Intelligence
Open
Network
Environment
Program for
Optimized
Experience
Control Plane
OpenFlow/
SDN
Forwarding Plane
z
Network Elements and Abstraction
Transport
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
21
Use Cases
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
22
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
23
Application Developer Environment
Mgmt / Orchestration
Shipping
Cisco Prime
Network Services Mgr (NSM)
Cisco Intelligence Automation for Cloud (CIAC)
Analysis and Monitoring, Performance and Security
Network Services
Control Plane
Forwarding Plane
Network Elements and Abstraction
Transport
© 2010 Cisco and/or its affiliates. All rights reserved.
• Most enterprise DC and SPDC
customers are resonating with our
management strategy
• Must fully implement physical/
virtual network & network services
• Continue to support 3rd party
management ecosystem
• Future: OpenStack Support
Cisco Confidential
24
Joint Cisco and NetApp Solution for Virtualized
Infrastructure and Cloud
• Platform that hosts infrastructure software
FlexPod
and business applications in a virtualized
and bare-metal environment
• Tested and validated by Cisco and
NetApp against wide range of
hypervisors, management platforms,
applications
• Benefits
Right-sized for scale
Efficiency via unified storage,
management, and networks
Secure multitenancy
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
25
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
26
• OpenStack is open source software for building highly scalable public
and private clouds
• Over 150 companies involved - moving to a foundation-led governance model
• Rapidly gaining in popularity, setting the standard for cloud computing
•
OpenStack Projects
•
•
•
•
Nova: Compute Service (i.e. EC2)*
Swift: Object Store: Massive scale, key-value storage (i.e. S3)*
Glance: Image Service: VM disk image store
Quantum: Network Service (to be core in folsom)*
• Cisco participation: Quantum Network Service to extend basic model
with a developer-friendly network abstraction
• Cisco 1 of only 2 Quantum Services available now (Nexus, UCS Palo) – other
is Nicira
• Moving into OpenStack core – Oct 2012
• Developing L3 model and support for OverDrive, VXLAN (when Linux-1Kv
available) subject to additional resourcing requirement
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
27
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
28
Application Developer Environment
Mgmt / Orchestration
Analysis and Monitoring, Performance and Security
Network Services
Control Plane
Programmatic API on IOS/NX-OS
C++, JAVA, REST, …
Switches, Routers
Forwarding Plane
Network Elements and Abstraction
Transport
© 2010 Cisco and/or its affiliates. All rights reserved.
Programmatic access to
internal states, counters,
forwarding tables, …
Cisco Confidential
29
A program that enables you to develop applications
that leverage and/or extend Cisco routers and
switches
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
30
C, JAVA, REST
Program
Process Hosting
Blade Hosting
End-Point Hosting
API Presentation
Network
OS
One PK
Network
OS
Container
Blade
App
API Infrastructure
Catalyst
Nexus
Network OS
Container
One PK App
One PK
Apps
ASR
Write once, run anywhere
OnePK advantages:
• Rapidly develop, test and deploy applications for Cisco routers and switches
• Complete developer’s kit made available through Cisco Developer Network
• C, Java, REST, et al. programs can be securely hosted on or off-box
• Flexible deployment: write once, run anywhere on all Cisco platforms
• Direct programmatic access to most features within Cisco’s OS
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
31
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
32
Application Developer Environment
Mgmt / Orchestration
Analysis and Monitoring, Performance and Security
OpenFlow is evolving…
Cisco-specific extensions can
offer access to richer
functionality beyond OpenFlow
Network Services
Control Plane
Controller*
Forwarding Plane
OpenFlow Agent*
Network Elements and Abstraction
Transport
© 2010 Cisco and/or its affiliates. All rights reserved.
Select Switch/Router
Platforms
*Customer Proof-of-Concept
Cisco Confidential
33
• For prototyping, testing, evaluation
• Programmability for:
• Topology
• Devices
• Forwarding
• Flows
• Network Slices
• OpenFlow Agent*
Platforms*
Description
Target
ASR9K
ASR 9K Agent EFT
2H CY12
Cat3K
Cat3K Agent EFT
2H CY12
N3K & N7K
N3K and N7K Agent EFT
1H13
• Cisco Controller SW* (CPoC support for only Cisco devices)
• Engaged with few academic institutions
© 2010 Cisco and/or its affiliates. All rights reserved.
* For customer proof of concept ; No TAC support
Cisco Confidential
34
Controllers
Entire Network (Super user view)
SDN Agents for Each Switch
Red Slice (Red Slice Operator view)
© 2010 Cisco and/or its affiliates. All rights reserved.
Green Slice (Green Slice Operator view)
Cisco Confidential
35
http://newsroom.cisco.com/video-content?type=video&videoId=166002
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
36
• Openflow currently focused on
providing an interface to the dataplane
• Not functionally complete in its
current iteration
Required additions include: High
availability, security, L3-forwarding
model, management infrastructure,
testing and certification framework,
hybrid deployment capability
• Cisco active on ONF and will
continue to support development
of OF
Level of
Abstraction
OF 2.0?
Future
OF 1.3
802.1ah PBB
OF 1.1
OF 1.2
-mult. tables -IPv6 matching
-MPLS
-Implementation
-Multicast
improvements
-TTL
OF 1.0
- Layer 2 focused
today
David Ward – Vice President, Cisco Fellow
Technical Advisory Group Chair
Jan Medved – Director of Engineering
Hybrid Working Group Chair
David Meyer – Distinguished Engineer
Active technical contributor to several WGs
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Internal and Confidential
Cisco Confidential
37
“While OpenFlow has enjoyed much industry
discussion, privately, many firms, both large and
small, expressed that OpenFlow is all but one
approach or mechanisms available to program
switches.”
http://lippisreport.com/2012/04/lippis-report-191-what-i-learned-at-the-open-networking-summit-about-software-defined-networking/
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
38
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
39
Application Developer Environment
Mgmt / Orchestration
Analysis and Monitoring, Performance and Security
Network Services
VSG, vWAAS, ASA1KV – shipping
CSR1000v, vACE
Control Plane
Nexus 1000V – VSM
Openstack/REST APIs, 30K+ ports
Forwarding Plane
Nexus 1000V – VEM
vPath, VXLAN, VXLAN-VLAN GW
Network Elements and Abstraction
Transport
© 2010 Cisco and/or its affiliates. All rights reserved.
Multi-hypervisor:
VMware, Microsoft, Xen/KVM
Cisco Confidential
40
• Move VMs, Tenants anywhere,
across Layer-3
Makes POD deployment simpler,
scalable, efficient
• Allow physical servers in the
No Changes
to FW
L3
Network
same LAN segment
Simplifies P  V transition
Connect brown-field to private cloud
• No changes to FW rules (in
general network services)
• Scalability (SP requirement)
More than 4K LAN segments
Manage tens of thousands of ports
Virtual
Virtual
Virtual
Machines
Machines
Machines
Physical
Physical
Physical
Machines
Machines
Machines
• Hot/Cold Migration
• Liquid Compute
(add, delete, burst)
LAN Segment
• Programmatic APIs
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
41
Logical Nework Spanning
Across Layer 3
VM
VM
VM
VM
VM
VM
VM
Utilize All Links in
Port Channel w/ UDP
Workload Anywhere
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
42
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
43
Industry’s Most Comprehensive Networking Portfolio
Hardware + Software
Physical + Virtual
Network + Compute
Applications
Platform
APIs
Network
onePK
© 2010 Cisco and/or its affiliates. All rights reserved.
Virtual
Overlays
a
Controllers and
Agents
N1KV Enhancements
SDN:
SW Controller
OpenFlow on C3K
www.cisco.com/go/one
44
Cisco Confidential
• Customers are exploring various forms of network programmability
Cisco Open Network Environment is a strategic approach that can offer the industry’s most
comprehensive
Strategy includes (1) network overlay virtualization (2) programmatic device APIs (3) agents and
controllers
• Evolution to SDN concepts will be a multi-year journey
Cisco Open Network Environment offers the best evolutionary path to get there
Use-case driven approach will customize solution
• Cisco will continue to participate in and lead standards activities
Remember, OpenFlow is a protocol, not an architecture, and is not complete for mainstream production
Cisco will work with industry to evolve capabilities of various protocols and APIs
Leading the way for Network Evolution
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
45
Q& A?
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
46
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
47