DOCSLIB.ORG

VFP: a Virtual Switch Platform for Host SDN in the Public Cloud Daniel Firestone, Microsoft

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
VFP: a Virtual Switch Platform for Host SDN in the Public Cloud Daniel Firestone, Microsoft VFP: A Virtual Switch Platform for Host SDN in the Public Cloud Daniel Firestone, Microsoft Abstract recent years has been on building scalable and flexible Many modern scalable cloud networking architectures network controllers and services, which is critical. rely on host networking for implementing VM network However, the design of the programmable vswitch is policy - e.g. tunneling for virtual networks, NAT for equally important. It has the dual and often conflicting load balancing, stateful ACLs, QoS, and more. We requirements of a highly programmable dataplane, with present the Virtual Filtering Platform (VFP) - a high performance and low overhead, as cloud programmable virtual switch that powers Microsoft workloads are cost and performance sensitive. Azure, a large public cloud, and provides this policy. In this paper, we present the Virtual Filtering Platform, We define several major goals for a programmable or VFP – our cloud scale virtual switch that runs on all virtual switch based on our operational experiences, of our hosts. VFP is so named because it acts as a including support for multiple independent network filtering engine for each virtual NIC of a VM, allowing controllers, policy based on connections rather than controllers to program their SDN policy. Our goal is to only on packets, efficient caching and classification present both our design and our experiences running algorithms for performance, and efficient offload of VFP in production at scale, and lessons we learned. flow policy to programmable NICs, and demonstrate 1.1 Related Work how VFP achieves these goals. VFP has been deployed Throughout this paper, we use two motivating examples on >1M hosts running IaaS and PaaS workloads for from the literature and demonstrate how VFP supports over 4 years. We present the design of VFP and its API, their policies and actions. The first is VL2 [2], which its flow language and compiler used for flow can be used to create virtual networks (VNETs) on processing, performance results, and experiences shared hardware using stateless tunneling between deploying and using VFP in Azure over several years. hosts. The second is Ananta [4], a scalable Layer-4 load 1. Introduction balancer, which scales by running the load balancing The rise of public cloud workloads, such as Amazon NAT in the vswitch on end hosts, leaving the in- Web Services, Microsoft Azure, and Google Cloud network load balancers stateless and scalable. Platform [13-15], has created a new scale of datacenter In addition, we make references and comparisons to computing, with vendors regularly reporting server OpenFlow [5], a programmable forwarding plane counts in the millions. These vendors not only have to protocol, and OpenVswitch [1] (OVS), a popular open provide scale and the high density/performance of source vswitch implementing OpenFlow. These are two Virtual Machines (VMs) to customers, but must provide seminal projects in the SDN space. We point out core rich network semantics, such as private virtual networks design differences from the perspective of a public with customer supplied address spaces, scalable L4 load cloud on how our constraints can differ from those of balancers, security groups and ACLs, virtual routing open source projects. It is our goal to share these tables, bandwidth metering, QoS, and more. learnings with the broader community. This policy is sufficiently complex that it often cannot 2. Design Goals and Rationale economically be implemented at scale in traditional VFP’s design has evolved over time based on our core routers and hardware. Instead a common approach experiences running a large public cloud platform. VFP has been to implement this policy in software on the was not our original vswitch, nor were its original VM hosts, in the virtual switch (vswitch) connecting functions novel ideas in host networking – VL2 and VMs to the network, which scales well with the number Ananta already pioneered such use of vswitches. of servers, and allows the physical network to be Originally, we built networking filter drivers on top of simple, scalable and very fast. As this model separates a Windows’s Hyper-V hypervisor for each host function, centralized control plane from a data plane on the host, which we chained together in a vswitch – a stateful it is widely considered an example of Software Defined firewall driver for ACLs, a tunneling driver for VL2 Networking (SDN) – in particular, host-based SDN. VNETs, a NAT driver for Ananta load balancing, a As a large public cloud provider, Azure has built its QoS driver, etc. As host networking became our main cloud network on host based SDN technologies, using tool for virtualization policy, we decided to create VFP them to implement almost all virtual networking in 2011 after concluding that building new fixed filter features we offer. Much of the focus around SDN in drivers for host networking functions was not scalable or desirable. Instead, we created a single platform based such as OVS have added virtualization functionality on the Match-Action Table (MAT) model popularized outside of the MAT model. For example, constructing by projects such as OpenFlow [5]. This was the origin virtual networks is accomplished via a virtual tunnel of our VFPAPI programming model for VFP clients. endpoint (VTEP) schema [29] in OVSDB [8], rather VFP’s core design goals were taken from lessons than rules specifying which packets to encapsulate learned in building and running both these filters, and (encap) and decapsulate (decap) and how to do so. the network controllers and agents on top of them. We prefer instead to base all functionality on the MAT 2.1 Original Goals model, trying to push as much logic as possible into the The following were founding goals of the VFP project: controllers while leaving the core dataplane in the vswitch. For instance, rather than a schema that defines 1. Provide a programming model allowing for what a VNET is, a VNET can be implemented using multiple simultaneous, independent network programmable encap and decap rules matching controllers to program network applications, appropriate conditions, leaving the definition of a minimizing cross-controller dependencies. VNET in the controller. We’ve found this greatly Implementations of OpenFlow and similar MAT models reduces the need to continuously extend the dataplane often assume a single distributed network controller that every time the definition of a VNET changes. owns programming the switch (possibly taking input The P4 language [9] attempts a similar goal for switches from other controllers). Our experience is that this or vswitches [38], but is very generic, e.g. allowing new model doesn’t fit cloud development of SDN – instead, headers to be defined on the fly. Since we update our independent teams often build new network controllers vswitch much more often than we add new packet and agents for those applications. This model reduces headers to our network, we prefer the speed of a library complex dependencies, scales better and is more of precompiled fast header parsers, and a language serviceable than adding logic to existing controllers. We structured for stateful connection-oriented processing. needed a design that not only allows controllers to independently create and program flow tables, but 2.2 Goals Based on Production Learnings would enforce good layering and boundaries between Based on lessons from initial deployments of VFP, we them (e.g. disallow rules to have arbitrary GOTOs to added the following goals for VFPv2, a major update in other tables, as in OpenFlow) so that new controllers 2013-14, mostly around serviceability and performance: could be developed to add functionality without old 4. Provide a serviceability model allowing for controllers needing to take their behavior into account. frequent deployments and updates without 2. Provide a MAT programming model capable of requiring reboots or interrupting VM connectivity using connections as a base primitive, rather than for stateful flows, and strong service monitoring. just packets – stateful rules as first class objects. As our scale grew dramatically (from O(10K) to O(1M) OpenFlow’s original MAT model derives historically hosts), more controllers built on top of VFP, and more from programming switching or routing ASICs, and so engineers joined us, we found more demand than ever assumes that packet classification must be stateless due for frequent updates, both features and bug fixes. In to hardware resources available. However, we found Infrastructure as a Service (IaaS) models, we also found our controllers required policies for connections, not customers were not tolerant of taking downtime for just packets – for example end users often found it more individual VMs for updates. This goal was more useful to secure their VMs using stateful Access Control challenging to achieve with our complex stateful flow Lists (ACLs) (e.g. allow outbound connections, but not model, which is nontrivial to maintain across updates. inbound) rather than stateless ACLs used in commercial 5. Provide very high packet rates, even with a large switches. Controllers also needed NAT (e.g. Ananta) number of tables and rules, via extensive caching. and other stateful policies. Stateful policy is more Over time we found more and more network controllers tractable in soft switches than in ASIC ones, and we being built as the host SDN model became more believe our MAT model should take advantage of that. popular, and soon we had deployments with large 3. Provide a programming model that allows numbers of flow tables (10+), each with many rules, controllers to define their own policy and actions, reducing performance as packets had to traverse each rather than implementing fixed sets of network table. At the same time, VM density on hosts was policies for predefined scenarios. increasing, pushing us from 1G to 10G to 40G and even Due to limitations of the MAT model provided by faster NICs.
Load more

Recommended publications
  • White Box Networking in Remote and Branch Offices
    White Box Networking in Remote and Branch Offices WHITEPAPER White Box Networking in Remote and Branch Offices With hundreds or thousands of locations to be connected, managing network services in remote or branch offices can be a significant challenge. Network services support everything from internal and guest Wi-Fi to Internet access, internal data networking, VoIP phones and video. All of these services have to be delivered and managed in a cost-effective way, but many solutions require rolling an IT truck to each location (prohibitively expensive) or adopting expensive proprietary hardware along with onerous support contracts. Pica8 offers a different solution – white box switches and networking software that support all the features a branch office needs with remote management, but without the high cost and without vendor lock-in. This paper describes Pica8’s approach to remote and branch office networking. Remote and Branch Office Networking Challenges Branch office networks have several common elements. Branches are hundreds or thousands of miles away from the corporate headquarters, and there are typically no trained IT people on site in each branch. Rather, these networks are centrally controlled and administered from the corporate data center. Recognizing the need for trouble-free, centrally-managed networking infrastructure many years ago, branch office equipment vendors built proprietary, fully-integrated systems to handle networking chores. The problem with this approach is that entrenched vendors with proprietary hardware/software architectures demand high costs as they extend their contracts with locked-in enterprise customers. In addition, full-service 24x7 solution support (hardware, software, interoperability and applications) adds to the cost, exacting the steepest possible pricing from enterprise customers.
    [Show full text]
  • APPLICATION LAYER FIREWALL USING OPENFLOW by ALAAUDDIN SHIEHA B.E., Telecommunication Engineering University of Aleppo, 2009
    APPLICATION LAYER FIREWALL USING OPENFLOW by ALAAUDDIN SHIEHA B.E., Telecommunication Engineering University of Aleppo, 2009 A thesis submitted to the Faculty of the Graduate School of the University of Colorado in partial fulfillment of the requirement for the degree of Master of Science Department of Interdisciplinary Telecommunication Program 2014 Certificate of Completion This thesis entitled: Application Layer Firewall Using OpenFlow written by Alaauddin Shieha has been approved for the Department of Interdisciplinary Telecommunication Program University of Colorado at Boulder Dr. Douglas Sicker (Thesis Chair) Dr. Jim Lansford (Thesis Committee) Mark Dehus (Thesis Committee) Date The final copy of this thesis has been examined by the signatories, and we Find that both the content and the form meet acceptable presentation standards Of scholarly work in the above mentioned discipline ABSTRACT Shieha, Alaauddin (M.S., Telecommunication Engineering [Interdisciplinary Telecommunication Program]) Application Layer Firewall Using OpenFlow Thesis directed by Endowed Full Professor Douglas Sicker Security is one of the most important aspects in networking. Companies and service providers spend much money on expensive firewalls to enforce security. Software-Defined Networking (SDN) is a new architecture that can save companies and service providers money, reduce provisioning time from weeks to minutes, provide centralized management, promote innovation, and allow programmability. SDN achieves this by decoupling the control plane from the data plane. This paper demonstrates the benefits of implementing an application layer firewall using OpenFlow protocol, which is one way of implementing SDN. The firewall is capable of detecting application layer traffic, such as BitTorrent and YouTube, and of preventing some Denial-of-Service Attacks.
    [Show full text]
  • Openflow in a Day
    Openflow in a day Indiana Center for Network Translational Research and Education the research arm of Instructors Steven Wallace Uwe Dahlmann Ron Milford Chris Small Tools that we'll be using today... Amazon Web Services Mininet - virtual network environment, includes OpenFlow capable switch Open VSwitch - the OpenVSwitch distribution includes an OF controller (i.e., ovs-controller) and a useful command- line utility ovs-ofclt. FlowVisor - FV supports the virtual "slicing" of OF networks. WireShark - an open source network "sniffer" Teaching HTML to explain the WWW <h1>OpenFlow's promise is its application, not its internal workings</h1> Yet much of today is about OpenFlow's internal workings, and very little will be polished examples of its application. OpenFlow's Value Enterprise Data Center WAN What can OpenFlow bring to the enterprise ● Automated configuration of new equipment in your enterprise network (think controller-based wireless) ● Choose from a marketplace of solutions for common network requirements (e.g., PCI-DSS compliance, NAC network access control, etc.) ● Delegate control of network slices to their proper steward (e.g., CCTV, door locks, etc.) ● Address new requirements (e.g., bonjour printing, guest access, BYOD) through new software, not new equipment What can OpenFlow bring to the data center ● Standard API for network provisioning (i.e. orchestration) ● Integration with VM-based switches (e.g. Open vSwitch) ● New network behaviors that permit scaling to million-VM data centers ● Potential for ODMs to provide more cost effective solutions What can OpenFlow bring to the wide area network ● Standard API for network provisioning of bandwidth-on- demand services (e.g.
    [Show full text]
  • Network Innovation Using Openflow: a Survey Adrian Lara University of Nebraska-Lincoln, [email protected]
    University of Nebraska - Lincoln DigitalCommons@University of Nebraska - Lincoln CSE Journal Articles Computer Science and Engineering, Department of 2014 Network Innovation using OpenFlow: A Survey Adrian Lara University of Nebraska-Lincoln, [email protected] Anisha Kolasani University of Nebraska-Lincoln Byrav Ramamurthy University of Nebraska-Lincoln, [email protected] Follow this and additional works at: http://digitalcommons.unl.edu/csearticles Lara, Adrian; Kolasani, Anisha; and Ramamurthy, Byrav, "Network Innovation using OpenFlow: A Survey" (2014). CSE Journal Articles. 118. http://digitalcommons.unl.edu/csearticles/118 This Article is brought to you for free and open access by the Computer Science and Engineering, Department of at DigitalCommons@University of Nebraska - Lincoln. It has been accepted for inclusion in CSE Journal Articles by an authorized administrator of DigitalCommons@University of Nebraska - Lincoln. IEEE COMMUNICATIONS SURVEYS & TUTORIALS, VOL. 16, NO. 1, FIRST QUARTER 2014 493 Network Innovation using OpenFlow: A Survey Adrian Lara, Anisha Kolasani, and Byrav Ramamurthy Abstract—OpenFlow is currently the most commonly deployed intermediate layer between the switch and the application. Software Defined Networking (SDN) technology. SDN consists of Another motivation is to move part of the complexity of the decoupling the control and data planes of a network. A software- network to the software-based controller instead of relying based controller is responsible for managing the forwarding in- formation of one or more switches; the hardware only handles the only on the hardware network devices. forwarding of traffic according to the rules set by the controller. OpenFlow [1] was proposed to standardize the communi- OpenFlow is an SDN technology proposed to standardize the cation between the switches and the software-based controller way that a controller communicates with network devices in in an SDN architecture.
    [Show full text]
  • Software-Defined Networking with Windows Server 2012 R2 and System Center 2012 R2
    With Windows Server 2012 R2 and System Center 2012 R2 Virtual Machine Manager, your network becomes a pooled resource that can be defined by software, similar to servers, managed centrally through automation, and extended beyond your datacenter. o End-to-end network virtualization using Software-defined networking Network Generic Routing Encapsulation (NVGRE), which enables virtual machine with Windows Server 2012 R2 isolation. o Live migration of virtual machines across and System Center 2012 R2 different physical networks while automatically maintaining the virtual Modern workloads require flexible and agile machine’s IP address and networking information technology environments. Increasingly, policies. organizations need virtualization, automation and o A foundation for disaster recovery to other the ability to incorporate cloud-related technologies. sites and in the cloud, by enabling mobility of virtual machines, network configurations, This means that traditional, rigid, physical networking and policies. infrastructures need to evolve to keep pace. o Enhanced diagnostics for troubleshooting network configurations and policies across With software-defined networking (SDN) from Microsoft, multiple network boundaries. you move control of the network from hardware to The Hyper-V Extensible Switch is a software, which reduces operational rigidity and enables foundational component of network device new levels of efficiency, flexibility and scale. Windows virtualization in Hyper-V. It powers flexible Server 2012 R2 and System Center 2012 R2 help make networking in some of the largest datacenters in your network a pooled, automated resource that the world, including the Microsoft Azure global supports isolated networks and virtual machines and networking infrastructure. The extensible allows you to seamlessly integrate across datacenter software switch enables partners to provide switch functionality to more effectively manage boundaries and into the cloud.
    [Show full text]
  • Picos Overview TABLE of CONTENT
    PicOS Overview WHITEPAPER TABLE OF CONTENT 1 PicOS: A Bare-Metal, White-Box Switching Operating System (OS) 1 2 General Architecture 2 3 Provisioning: Standard Network CLI, DevOps and SDN 3 - PicOS Provisioning - Using the Best Tool for the Job 4 Traditional Routing and Switching 4 - High-Level Architecture - Robustness - Fast Convergence 5 SDN: OpenFlow and OVSDB 5 6 Mixing SDN and Traditional Routing and Switching 6 - CrossFlow Mode 7 Summary 7 TOC WHITEPAPER 1 PicOS: A Bare-Metal, White-Box Switching Operating System (OS) Until now, all the switching and routing vendors would sell their software and hardware bundle together. This “system-based” sale was very similar to the server sales model 20 years ago. Today, the model has evolved to where it is now typical to buy the server hardware (for example, Dell, HP, Lenovo, Quanta) and software (Red Hat, Microsoft, Ubuntu) from different vendors. At Pica8, we believe a similar evolution will occur with networking. The advantages of moving away from system-style sales are: Lower cost of ownership – Because switching hardware is becoming standardized through multiple original design manufacturers (ODMs) offering similar platforms, and which all leverage merchant Silicon from vendors such as Broadcom, Mellanox, Intel and others, the combination enables the industry to view the hardware as commoditized similar to what we see on the server side. No lock-in solution – It will be possible to change the OS and keep buying from the same hardware vendor. At the same time, you will be able to keep the OS and change the hardware vendor. Faster innovation – Today, if we want a vendor to sell a revolutionary ASIC, they would have to build a full routing and switching stack to compete against incumbent networking vendors.
    [Show full text]
  • Analysis of Openflow Protocol in Lans
    KHATRI VIKRAMAJEET ANALYSIS OF OPENFLOW PROTOCOL IN LOCAL AREA NET- WORKS Master of Science Thesis Examiners: Professor Jarmo Harju M.Sc. Matti Tiainen Examiner and topic approved in the Computing and Electrical Engineer- ing Faculty Council meeting on 6.2.2013 II ABSTRACT TAMPERE UNIVERSITY OF TECHNOLOGY Degree Programme in Information Technology KHATRI, VIKRAMAJEET: Analysis of OpenFlow Protocol in Local Area Net- works Master of Science Thesis, 62 pages, 4 Appendix pages August 2013 Major: Communication Networks & Protocols Examiners: Professor Jarmo Harju, M.Sc. Matti Tiainen Keywords: Software Defined Networking, SDN, OpenFlow, LAN The traditional networking infrastructure is still static in nature due to its complexity, vendor dependence and QoS requirements. Software Defined Networking (SDN) is aimed at surpassing the limits of traditional networking infrastructure and making it a dynamic network. In SDN, for a single change in network, the network configurations are changed only at central or some specific controller(s) rather than touching individual network devices. One of the SDN protocols ‘OpenFlow’ is a normal application layer protocol, which is encapsulated inside TCP, IPv4 and Ethernet format. In this thesis, the integration and benefits of OpenFlow protocol in LAN environment have been analyzed. OpenFlow controller is the heart of the OpenFlow network, and in centralized hierarchy it poses a single point of failure and risk of DoS attacks. In an OpenFlow network, the switch fol- lows its flow table to make forwarding decisions and rejects its traditional forwarding table. The flows must be carefully configured, since a mismatch leads to packets being forwarded to OpenFlow controller that may decide to broadcast packets, and lead to a drastic reduced throughput from 941 Mbps to approx.
    [Show full text]
  • Virtual Switching in Windows
    Virtual Switching in Windows Maximilian Endraß Betreuer: Daniel Raumer, Sebastian Gallenmüller Seminar Future Internet SS2016 Lehrstuhl Netzarchitekturen und Netzdienste Fakultät für Informatik, Technische Universität München Email: [email protected] ABSTRACT Section 3 and have a look at Open vSwitch running on In the field of virtualization, network virtualization tries to Hyper-V and (partly) replacing the integrated Hyper-V ensure mobility and flexibility of virtual machines. One of virtual switch in Section 3.3. the key concepts of network virtualization is virtual switching, i.e. emulating the behavior of hardware switches 2. VIRTUAL SWITCHES in software for general purpose servers or computers; two Before we compare the virtual switch solutions on of those virtual switches are Microsoft’s Hyper-V virtual Windows, we will explain what virtual switches are and in switch, used in the Hyper-V hypervisor and Open vSwitch which particular environments they are used. which also supports Hyper-V (among other hypervisors). In this paper we are going to analyze and compare them with focus on aspects relevant for performance and 2.1 Concept evaluate the functionality and performance aspects of In virtualized environments, virtual machines created and running Open vSwitch as a virtual switch for Hyper-V. managed by hypervisors (like VMware ESXi, Microsoft Hyper-V, Xen or KVM) share the same physical environment (i.e. they reside on one physical machine) Keywords [20]. To be able to communicate with each other (and with Virtual switch, Open vSwitch, Hyper-V Virtual Switch, the network outside of the hypervisor) with the same SDN, Network virtualization, OpenFlow protocols that are used in physical networks, the VMs usually have one or more virtual network interface cards 1.
    [Show full text]
  • Open Vswitch Release 2.16.0
    Open vSwitch Release 2.16.0 Aug 16, 2021 Contents 1 Project 1 1.1 Community................................................1 1.2 Contributing...............................................1 1.3 Maintaining................................................1 1.4 Documentation..............................................2 1.5 Getting Help...............................................2 2 Getting Started 3 2.1 What Is Open vSwitch?.........................................4 2.1.1 Overview............................................4 2.1.2 What’s here?..........................................5 2.2 Why Open vSwitch?...........................................5 2.2.1 The mobility of state......................................6 2.2.2 Responding to network dynamics...............................6 2.2.3 Maintenance of logical tags...................................6 2.2.4 Hardware integration......................................6 2.2.5 Summary............................................7 2.3 Installing Open vSwitch.........................................7 2.3.1 Installation from Source....................................7 2.3.2 Installation from Packages................................... 50 2.3.3 Others.............................................. 58 3 Tutorials 63 3.1 OVS Faucet Tutorial........................................... 63 3.1.1 Setting Up OVS......................................... 63 3.1.2 Setting up Faucet........................................ 64 3.1.3 Overview............................................ 65 3.1.4 Switching...........................................
    [Show full text]
  • Introduction to Openflow
    IntroductionIntroduction toto OpenFlowOpenFlow . Raj Jain Washington University in Saint Louis Saint Louis, MO 63130 [email protected] These slides and audio/video recordings of this class lecture are at: http://www.cse.wustl.edu/~jain/cse570-13/ Washington University in St. Louis http://www.cse.wustl.edu/~jain/cse570-13/ ©2013 Raj Jain 14-1 OverviewOverview 1. Planes of Networking 2. OpenFlow 3. OpenFlow Operation 4. OpenFlow Switches including Open vSwitch 5. OpenFlow Evolution 6. Current Limitations and Issues Note: SDN and NFV are discussed in later modules of this course. Washington University in St. Louis http://www.cse.wustl.edu/~jain/cse570-13/ ©2013 Raj Jain 14-2 PlanesPlanes ofof NetworkingNetworking Data Plane: All activities involving as well as resulting from data packets sent by the end user, e.g., Forwarding Fragmentation and reassembly Replication for multicasting Control Plane: All activities that are necessary to perform data plane activities but do not involve end-user data packets Making routing tables Setting packet handling policies (e.g., security) Base station beacons announcing availability of services Ref: Open Data Center Alliance Usage Model: Software Defined Networking Rev 1.0,” http://www.opendatacenteralliance.org/docs/Software_Defined_Networking_Master_Usage_Model_Rev1.0.pdf Washington University in St. Louis http://www.cse.wustl.edu/~jain/cse570-13/ ©2013 Raj Jain 14-3 PlanesPlanes ofof NetworkingNetworking (Cont)(Cont) Management Plane: All activities related to provisioning and monitoring of the networks Fault, Configuration, Accounting, Performance and Security (FCAPS). Instantiate new devices and protocols (Turn devices on/off) Optiona l May be handled manually for small networks. Services Plane: Middlebox services to improve performance or security, e.g., Load Balancers, Proxy Service, Intrusion Detection, Firewalls, SSL Off-loaders Optional Not required for small networks Washington University in St.
    [Show full text]
  • Tutorial on Openflow, Software Defined Networking ( SDN), and Network Function Virtualization (NFV)
    OpenFlow,OpenFlow, SoftwareSoftware DefinedDefined NetworkingNetworking (SDN)(SDN) andand NetworkNetwork . FunctionFunction VirtualizationVirtualization (NFV)(NFV) SDN=Standard Southbound API SDN = Centralization of control plane SDN=OpenFlow SDN = Separation of Control and Data Planes Raj Jain Washington University in Saint Louis Saint Louis, MO 63130, [email protected] Tutorial at 2014 IEEE 15th International Conference on High Performance Switching and Routing, Vancouver, Canada, July 1, 2014 These slides and audio/video recordings of this tutorial are at: http://www.cse.wustl.edu/~jain/tutorials/sd_hs14.htm Washington University in St. Louis http://www.cse.wustl.edu/~jain/tutorials/sd_hs14.htm ©2014 Raj Jain 1 OverviewOverview 1. OpenFlow and Tools 2. Software Defined Networking (SDN) 3. Network Function Virtualization (NFV) Washington University in St. Louis http://www.cse.wustl.edu/~jain/tutorials/sd_hs14.htm ©2014 Raj Jain 2 PartPart I:I: OpenFlowOpenFlow andand ToolsTools Planes of Networking OpenFlow OpenFlow Switches including Open vSwitch OpenFlow Evolution OpenFlow Configuration Protocol (OF-Config) OpenFlow Notification Framework OpenFlow Controllers Washington University in St. Louis http://www.cse.wustl.edu/~jain/tutorials/sd_hs14.htm ©2014 Raj Jain 3 PartPart II:II: SoftwareSoftware DefinedDefined NetworkingNetworking What is SDN? Alternative APIs: XMPP, PCE, ForCES, ALTO OpenDaylight SDN Controller Platform and Tools Washington University in St. Louis http://www.cse.wustl.edu/~jain/tutorials/sd_hs14.htm ©2014
    [Show full text]
  • Software- Defined Networking
    Software- Defined Networking Contents 1 New Choices 2 Taking Stock of Software-Defined Networking 8 Solution in Plain Sight 11 Networking Across all Environments 13 Charting the Path Forward 14 Resources © 2015 Microsoft Corporation. All rights reserved. This document is provided “as-is.” Information and views expressed in this document, including URL and other Internet Web site references, may change without notice. You bear the risk of using it. This document does not provide you with any legal rights to any intellectual property in any Microsoft product. You may copy and use this document for your internal, reference purposes. You may modify this document for your internal, reference purposes. Microsoft Software-Defined Networking An IT pro today must keep one eye on ROI, but the prize is elsewhere — the ability to deliver IT services fast enough to New Choices support modern applications that help business find and serve customers. IT faces mounting pressure to reduce CAPEX and OPEX. They operate on legacy in-house networks strained by mounting usage demands and growing complexity while also sorting out the best path to modernizing. Meanwhile, inflexible physical networks mean every new request takes longer and longer to fulfill. And new requests keep coming. Mergers and acquisitions create head-on collisions between competing networks, and it’s the IT professional’s job to build bridges. The use of streaming video, social media, virtual reality and games, and line of business applications and databases is expanding rapidly, a growing burden for private and public cloud implementations. More and more employees are working remotely in increasingly complex situations.
    [Show full text]