SDN on WAN

transcript

UNM Electrical and Computer Engineering DepartmentUNM Electrical and Computer Engineering Department

Advanced Computer Networks ECE 540

TeamHusain Al YusufAlejandro Flores

Mustafa Al Mashhadani

Applying Software-Defined Networking to the Telecom

Domain

What is SDN ?

What is SDN Magic ?!

Wikipedia• …. decoupling the

system that makes decisions about where traffic is sent (control plane) from the underlying systems that forwards traffic to the selected destination (data plane)….

NetworkWorld• … focuses somewhat

less on decoupling and more on providing programmatic interfaces into network equipment, whether or not there is a separation of the control and forwarding planes

CISCO• Simplified Operation

• Enhanced Agility

• New Business Opportunity

SDN Definition

What is SDN Magic ?!

$$ Operational Cost $$

SDN Components• Programmable approach to network

multi-tenancy within the datacenterNetwork

Virtualization

• Software that makes policy decisions within the network. (Control Plane)Controller

• Programing interfaces between ‘applications’ and Controller.

Application API(Northband API)

• Programming interfaces between Controller and physical or virtual network device (OpenFlow)

Data Plan API(Southband API)

Application API

OpenFlow Protocol

Virtualization

Controller

Forwarding

Applying SDN to the Telecom Domain

• Objective• Apply SDN on telecommunication domain

• Main Challenges• Legacy infrastructure constrains• Others…

• How to Implement SDN• “ SDN - Vertical Forwarding “• Definition: extend the concept of SDN to controller-programmed

en-/de-capsulation operations on top of IP

Gateway-based Architecture

-vs-SDN-based Architecture

ControlPlaneDataPlane

Limitations of the Gateway-based Architecture?

Gateway-based Architecture LimitationsComplexity

Complexity that leads to stasis: any change must be done everywhere. (ACLs, QOS, FW … )• ScalabilityInability to scale; causing new investment! Must upgrade hardware to get new features.• Proprietary Vendor dependence (i.e. proprietary) or lack of openness.

Gateway-based Architecture Limitations

Slow failure recovery time.

Gateway-based Architecture Limitations

Inflexible and hard to upgrades (takes time)

What is the alternative?

Alternative to Gateway-based Architecture

SERVER

STORAGE

Separation of functions:

SDN-based Architecture

Separate functionality into two:• Control Plane - Makes the forwarding

decisions (brain) • Data Plane – Does the actual forwarding

(workhorse)ControlPlane

DataPlane

• Optimized for high throughput • Control function can be virtualized• Ease of upgrading the control

plane without affecting the FE’s.• Omits all inter-gateway signaling

protocols • Reduces routing update and

network status traffic

Why SDN?

Faster failure recovery timeController

Offers the option to distribute the controller function over multiple nodes.

How do we fade out the old

technology?

SDN and Gateway-based Architecture

Can interoperates with legacy gateways and allows incremental deployment.

What is OpenFlow?

OpenFlow

What is OpenFlow?• It defines the open communications protocol in SDNs that enables the Controller to interact with the forwarding plane and make

adjustments to the network.

OpenFlow

•Basic Idea: Separate Control from Data pathThe switch and controller communicate via

OpenFlow protocol.

OpenFlow

•Does all routers and switches support OpenFlow?OpenFlow is option that you can add to switch or router

Most of today routers and switches support OpenFlow

OpenFlow With Vertical SDN

•Do we need to make changes to OpenFlow in order to support Vertical SDN ?•Header

Additional flow match typesWith the corresponding flow match fields on encapsulation headers.

•Do we need to make changes to OpenFlow in order to support Vertical SDN ?

•ProtocolExtensions to enable en- and decapsulation operations.

Represented as actions after flow matching.

•Push and POP operations

When pushing or popping ESP and AH, information about the flow’s security policies and security associations have to be provided. Some of this information is already supplied by OpenFlow

•Integrate Distributed routing protocols into openflow’s controller operation.

Use Cases

•Does the vertical SDN applicable only with telecom domain?• We can benefit from this architecture in other

applications:I. IETF Mobility protocolII. 3GPP UMTS & SAEIII. Wireline Broadband networksIV. Virtual Private Networks and Secure

LinksV. IP protocol transition

• VPN’s are used to interconnect individual hosts with a security gateway (Tunnel).

VPN• Using SDN architecture:

The signaling protocol falls into the realm of the controller

The keys will not be exchanged over the network.

Final Thoughts on SDN

Implications of Change

$$ Marketing $$

Vulnerability

SDN on WAN

Technology