SDN,SD-WAN,NFV,VNF– I’mconfused!
April2017
Presenter:TimSullivanCEO,Coevolve
@timsullo
2|CoevolvePtyLimited |©Copyright2017
IntroductiontoCoevolve
Ourservices:• Professional services andongoingmanagementservices inarangeof
network-relatedpracticeareas
• Integratebestofbreedvendorsandservices forourclients
Ourtargetmarket:• Weworkdirectlywithenterpriseclientsandasaspecialistpartnersitting
behind channelpartnersplayingapivotalroleintheSD-WANecosystem
• Keyindustry verticals:Professional Services,Manufacturing,Technology,Engineering,Construction, Mining, Logistics,Retail
Ourteam:• ExperiencedteambasedinUS,Australia,Singapore&Malaysia
• Extensiveglobalcontractornetwork
• Enterprisenetworkexperiencegainedatglobalserviceproviders,integrators,consultingfirms, vendors, analysts
WANOptimizationNetwork&ApplicationPerformance
Next-GenerationNetworks(SDN/SD-WAN)
InternetofThings
UnifiedCommunications
Security
CloudServicesIntegration
GlobalVendorManagement
Mobility
OurPracticeAreas
Coevolvewasestablishedin2014tohelpdriveenterpriseadoptionofnext-generationnetworkingtechnologiessuchasSD-WAN.Wecurrentlyprovideservicestoglobalenterprisesinmorethan42countriesonsixcontinents
3|CoevolvePtyLimited |©Copyright2017
ABCsofSDN– wheredowestart?
SDN
SD-WAN
NFV/VNF
Software-DefinedNetworking
Software-DefinedWideAreaNetwork
NetworkFunctionVirtualization/VirtualNetworkFunction
Separatingthecontrolanddataplanes tocreatecentrally-controlled,programmablenetworks
LooselyapplyingSDNconceptstotheWANtocreateacentrally-controlledoverlaynetworkthat
intelligentlyusesavarietyofinfrastructureoptions
AVirtualNetworkFunction isavirtualizedtaskformerlyperformed onproprietary,dedicatedhardware.NFVisthepracticeofutilizing VNFs
Whatdoestheacronymstandfor? Whatdoesitmean?
4|CoevolvePtyLimited |©Copyright2017
WhatdoesSDNactuallymean?
Device
Config
Device
Config
Device
Config
interface Ethernet0/1ip address 123.456.321.33 255.255.255.248no ip directed-broadcastno cdp enable!ip classlessip route 0.0.0.0 0.0.0.0 Ethernet0/0 123.456.321.1 permanentip route 123.456.321.40 255.255.255.248 123.456.321.34 permanentno ip http server!logging 123.456.321.3access-list 102 deny ip 123.456.321.0 0.0.0.248 anyaccess-list 102 deny ip host 255.255.255.255 any
Configuration Reporting
Traditionalnetworks– withoutSDN SDN-basednetworks
InfrastructureLayer
NetworkServices|ServiceTemplates
ControlLayer
ProgrammableInterface(OpenFlow,proprietary)
BusinessApplications
ApplicationLayer
API API API
Reporting ThresholdAlerts
SLATracking
CapacityPlanning
ControlPlane
Data
Plane
5|CoevolvePtyLimited |©Copyright2017
Whyseparatingthecontrolanddataplanesmatters
1.Transitionsthearchitecturefrombeingdevice-centric tonetwork-centric
1.2.Createstheabilitytoprogram thenetwork
1.3.Enablessignificantimprovementsincontrol andvisibility
1.4.Simplifies thenetwork– evenastrafficflowsbecomemorecomplex
1.5.Facilitatesthecreationofservices withinthenetwork
1.6.Establishesaframeworktovirtualize componentsofthenetwork
6|CoevolvePtyLimited |©Copyright2017
SDNisconstantlyinthenews– butverylittleenterprisefocus
7|CoevolvePtyLimited |©Copyright2017
HeardmuchaboutSD-WANrecently?
SD-WANhasquicklyemergedasaneasilyaccessibleapplicationofSDNthatisrelevantfortheenterprise,notjustinverylargescale/carrier-likeenvironments
NFV
SDN
SD-WAN
Source:GoogleTrends
SD-WAN:<2years
SDN/NFV:5-6years
SD-WANhasquicklydominatedSDNdiscussions• Morethan$500MinVCfunding inlast5years
• Morethan25vendorsnowclaimtohaveSD-WANproducts
• ExistingvendorshavereinventedthemselvestofocusonSD-WAN
• Severalvendorsclaimdeployments inexcessof50,000units
8|CoevolvePtyLimited |©Copyright2017
SD-WAN:Overlaynetworks
MPLS
InternetBranchoffice
Branchoffice
Datacenter
Branchoffice Branch
office
Datacenter
Overlay
Infrastructure(“Underlay”)
• Fiber• Ethernet• Broadband• TDM• 4G• Satellite• WiMAX• Microwave
9|CoevolvePtyLimited |©Copyright2017
What’sdrivingenterpriseinterestinSD-WAN?
ManySD-WANbenefitscomefrombetterpackaging!It’snotallnew.Wehearthefollowingdriversonaregularbasis:1. Costsavingsfromtheabilitytouselow-costInternetcircuitsforenterpriseWAN2. Simplified,securebranchofficeconnectivityoverany(andall)transporttypes3. NomanualVPNkey/certificate/IPaddressmanagement4. Transportagnostic,withtheabilitytointelligentlyusecircuitssimultaneouslywithouttraditional
PBR/ACLs/objecttrackingcomplexity5. Application-layerpoliciesandforwardingdecisions6. CentralizedconfigurationandmanagementofentireWAN7. Detailedinsightsintopathperformance,applicationusage,toptalkers,etc.
10|CoevolvePtyLimited |©Copyright2017
InternetMPLS
Overlay
VNFsandservicechaining
TrafficfromLAN
DeepPacketInspectionengine
TrafficforwardedwithnoVNF Forwardingengine
InternetMPLS
OverlayTrafficfrom
LANDeepPacket
InspectionengineForwardingengine
VNFintegratedusingServiceChaining– next-genfirewall
• Centrally-definedpolicyapplied• Anytrafficmatchingpolicywillbe
automaticallypushedtotheVNF
• Non-matchingtrafficbypassesVNF
Securitypolicy
11|CoevolvePtyLimited |©Copyright2017
Oldvs.newworldofnetworking
Switch Programmable,highportdensitywhitebox appliance
Router Programmablesoftwareimagerunning ondedicatedorvirtualedgehardware
Netflow/IPFIX Network-widereportingdataextractedfromcontrolplaneusingAPIcalls
SNMPalerts Network-widealertdatapushed fromcontrolplaneusingAPIbasedonavarietyofthresholdsandconditions
Firewall /WANOp VirtualNetworkFunction integratedusingservicechaining
Network-basedQoS Businesspoliciesimplemented through controlplaneandreal-timecommunicationbetweendevices
12|CoevolvePtyLimited |©Copyright2017
Conclusion
• SDNisdrivingsignificantchangesinhownetworksarearchitected,managedandupdated
• “True”SDNdeploymentshavemostlybeenincarrierorverylargeenterpriseenvironmentswherethereisareturnontheengineeringinvestment
• SD-WANhasseenarapidincreaseinenterpriseadoptionbutisonlylooselyrelatedtothetextbookdefinitionofSDN;itisdeliveringadifferentsetofbenefitsinmanycases
• Virtualizationinthenetworkislongoverdue– itisoneofthelastcomponentsoftheITstacktoseethischange
• Network-basedserviceswillbecomeincreasinglysophisticated asenterprisesadoptmoreSD-WANattheedge,combinedwithotherNFVsforcommonfunctions
ReadourCTO’slatestpostsonNetworkWorld: networkworld.com/author/Ciaran-Roche
FORMOREINFORMATION:
coevolve.com @[email protected] coevolve
Thankyou