• Like

Chris Swan's CloudExpo Europe presentation "The networking declaration of independence – how overlay networking gives you control of your networks"

  • 331 views
Uploaded on

Chris Swan's CloudExpo Europe presentation originally given 26 Feb in the Software Defined Data Centre and Networks Theatre. …

Chris Swan's CloudExpo Europe presentation originally given 26 Feb in the Software Defined Data Centre and Networks Theatre.
The networking declaration of independence – how overlay networking gives you control of your networks

More in: Technology
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
    Be the first to like this
No Downloads

Views

Total Views
331
On Slideshare
0
From Embeds
0
Number of Embeds
8

Actions

Shares
Downloads
1
Comments
0
Likes
0

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide

Transcript

  • 1. The networking declaration of independence How overlay networking gives you control of your networks Chris Swan, CTO @cpswan the original cloud networking company copyright 2014 1
  • 2. Agenda What is NFV? Declaration of Independence NFV Capabilities Preview: Waves of Adoption copyright 2014 2
  • 3. What is Network Function Virtualization? copyright 2014 3
  • 4. Positioning - NFV and SDN copyright 2014 4
  • 5. NFV can be a networking Swiss Army knife Application SDN (Software Defined Network) Appliances • Allow control, mobility & agility by separating network location and network identity • Control over end to end encryption, IP addressing and network topology NFV Router IPsec/SSL VPN concentrator Switch Firewall Protocol Redistributor Dynamic & Scriptable SDN copyright 2014 Hybrid virtual device able to extend to multiple sites 5
  • 6. Networking Declaration of Independence copyright 2014 6
  • 7. Nicira’s “declaration of independence” from metal, freed NFV from OpenFlow + http://nicira.com/sites/default/files/docs/Nicira%20-%20The%20Seven%20Pr copyright 2014 7
  • 8. These same properties free NFV from the “constraints” of OpenFlow (technology, timing and target) Nicira defined the 7 Properties of network virtualization as: 1. Independence from network hardware 2. Faithful reproduction of the physical network service model 3. Follow operational model of compute virtualization 4. Compatible with any hypervisor platform 5. Secure isolation between virtual networks, the physical network, and the control plane 6. Cloud performance and scale 7. Programmatic networking provisioning and control copyright 2014 8
  • 9. Independence from network hardware Public Cloud Region 1 Overlay Network Cloud Server Cloud Server Overlay IP: 172.31.11.xx NFV Standard IPsec Tunnel Firewall / IPsec Device LAN IP: 192.168.1.xx Data Center Servers Customer Data Center With VM-based network devices you can use the cloud network as “bulk transport” and are indifferent to all else. copyright 2014 9
  • 10. Reproduction of physical network model Public Cloud1 Region Overlay Network Cloud Server Cloud Server NFV Standard IPsec Tunnel Virtual Network Data Center Servers Data Center Servers Customer Data Center NFV devices “look” and “feel” like the same networking devices customers have used for ever, without boundaries copyright 2014 10
  • 11. Follow operational model of compute virtualization NFV NFV NFV NFV NFV functions can be dynamically brought on-line, up to the elastic limits of the total infrastructure available (!!) copyright 2014 11
  • 12. Compatible with any hypervisor platform Private Clouds Public Clouds Virtual Infrastructure NFV does more than “follow” the model of compute virtualization, it exists via compute virtualization. copyright 2014 12
  • 13. Secure isolation US East 1 APAC EMEA Overlay Network Subnet: 172.31.0.0/22 Cloud Server C Cloud Server A Cloud Server B Overlay IP: 172.31.1.1 Overlay IP: 172.31.1.5 NFV Overlay IP: 172.31.1.9 Cloud Server D Overlay IP: 172.31.1.17 Peered Peered Public IP: 184.73.174.250 Overlay IP: 172.31.1.250 Cloud Server E Overlay IP: 172.31.1.13 Active IPsec Tunnel Public IP: 54.246.224.156 Overlay IP: 172.31.1.246 192.168.3.0/24 - 172.31.1.0/24 User Workstation LAN IP: 192.168.3.50 192.168.4.0/24 - 172.31.1.0/24 Failover IPsec Tunnel Firewall / IPsec Cisco 5505 Firewall / IPsec Cisco 5585 Data Center Server User Workstation LAN IP: 192.168.4.50 LAN IP: 192.168.3.100 Overlay IP: 172.31.1.21 Public IP: 192.158.29.143 Overlay IP: 172.31.1.242 NFV Active IPsec Tunnel Cloud Server F Data Center Server LAN IP: 192.168.4.100 Customer Data Center Customer Remote Office London, UK Chicago, IL USA Remote Subnet: 192.168.4.0/24 Remote Subnet: 192.168.3.0/24 Isolation takes many forms: from underlying infra, allow my protocols, keep my “chattiness” in, keep others out, etc.. copyright 2014 13
  • 14. Cloud performance and scale NFV Data Center Server User Workstation User Workstation Where NFV really shines today: create a WAN in minutes, use cloud as points of presence for your business copyright 2014 14
  • 15. Programmatic networking provisioning & control Private Clouds Public Clouds Virtual Infrastructure + http://maxoffsky.com/code-blog/building-restful-api-in-laravel-start-here/ Cloud Compute and Network APIs + NFV Device APIs allow previously unimaginable flexibility and power copyright 2014 15
  • 16. Preview: Waves of Adoption copyright 2014 16
  • 17. Waves of NFV Adoption Tomorrow 11:25 - 11:50 in DCIM / Software Defined Datacentres and Networks Stream Public Cloud Region 1 Public Cloud Region 1 Overlay Network Overlay Network Cloud Server Encrypted Overlay network in VPC Cloud Server Overlay IP: 172.31.11.xx Cloud Server Cloud Server Web App 1 Web App 2 Web App 3 NFV NFV Standard IPsec Tunnel Encrypted Connections Standard IPsec Tunnel Multiple IPsec Devices Firewall / IPsec Device IP: 192.168.1.xx LAN Customer Customer Customer Site N Site 1 Site 2 Data Center Servers Customer Data Center Bursting and Containment Hubs and Spokes copyright 2014 “Winning back control” 17
  • 18. Questions? Paddington, London, UK ContactMe@cohesiveft.com   +44 20 8144 0156 copyright 2014 18