1. Presentation by:-
Ankita Vinod Mandekar (13MIT0108)
2nd year MTech IT(Networking),
School of Information Technology and Engineering,
VIT University
Guided by:-
Dr. Krishna Chandramouli
Associate Professor,
Division of Enterprise and Cloud Computing,
School of Information Technology and Engineering,
VIT University
VIT university and Ecodenetworks 1

2. Outline
1. Motivation
2. Literature Survey
3. Proposed System Architecture
4. VPN with SDN
5. Floodlight SDN Controller
6. Openstack Cinder
7. Owncloud
8. Result
9. Conclusion
10. Future Work
11. References VIT university and Ecodenetworks 2

3. 1. Motivation
Data Center issues
• Increase in the requirement -> Increase in Physical Infrastructure
• Maintenance of cables overhead
• Hard to Manage and detect failure in data center
• Hard to maintain the Power Effective Unit
• More Capital and Operational Expenses
VIT university and Ecodenetworks 3

4. 1. Motivation
Traditional Cloud Computing with data center issues:
1. Storage as a Service by cloud provider
2. Design cloud network in data center
3. Generation of Hybrid Cloud by interconnecting to private cloud of organization
4. Hard to secure sensitive data
5. Maintenance and Management of sensitive data by third party service provider
6. XSS attack on Amazon in 2010
7. Network traffic and signalling barrier
8. Limited IPV4 address space in each subnet VIT university and Ecodenetworks 4

5. 1. Motivation
Third Party Storage Service:- Drop Box
VIT university and Ecodenetworks 5

6. 1. Motivation
Traditional Network Complexities issues
• Distributed network
• Routing protocol as BGP,RIP
• Services, security ,ACL, QOS on single device
• Hard to detect failure in large organization
network
• Hard to manage and monitor network
• No automation of network function
• More CAPEX and OPEX
VIT university and Ecodenetworks 6

7. 1. Motivation
• Organization located in multiple location across the globe
• Employee onsite working for office
• Working from home
• No automation of creation of storage space and allocation
• Ticketing service to service provider
• No scalability automation
• No security over the private network
• Monitoring the virtual network devices and NAS device
So, We need VPN
So, We need owncloud
So, We need Cinder and
SDN
VIT university and Ecodenetworks 7

8. 2. Literature Survey
1. Open Network Foundation “Openflow Switch Specification version 1.4.0” Oct 2013
• Openflow standard design to reduce network device complexities by decoupling control
plane and data plane
• Flow forwarding
• Flow table with Match field, priority, counters, instruction, timeout, cookie entries
• Open Virtual Switch with OpenWRT OS
• Network Function Virtualization
VIT university and Ecodenetworks 8

9. 2. Literature Survey
2. Nick McKeown, Tom Anderson, and Hari Balakrishnan “OpenFlow: Enabling Innovation in Campus
Network”,December 2008.
• The network is designed with Software Defined Networking using openflow protocol
• The migration of traditional network devices to SDN using openflow enabled switches and centralized
SDN controller
3. Open Networking Foundation “ NBI Information Model – User – Experience Monitor “ , Jan 2011
• Development of Monitoring tool, load balancing tool, proactive flow entry tool using Rest API exposed by SDN
Controller
4. Openstack Foundation “OpenStack Block Storage API v2 Reference”, April 2015
• Cinder Openstack block storage module help to orchestrate the north bound API
• Automation for creating block, tenants.
VIT university and Ecodenetworks 9

10. 2. Literature Survey
5. Bruno Astuno A. Nunes and Marc Mendonca “A survey of Software-Defined Networking: Past, Present and
Future Programmable Networks”, April 2010.
• The idea of programmable network facilitates network evolution
• It promises to dramatically simplify network management and enable innovation and evolution.
• the network intelligence is logically centralized in software-based controllers (the control plane), and
network devices become simple packet forwarding devices (the data plane) that can be programmed
via an open interface
6. The Art of Service “Cloud Computing Specialist Certification Kit Virtualization”, June 2009
• Cloud Service “Storage as a Service” is elaborated
• The network infrastructure can be virtualized using network function virtualization technology
• The cloud infrastructure has been virtualized to manage PEU, CAPEX and OPEX in data center
VIT university and Ecodenetworks 10

11. 3. Proposed Network Architecture
VIT university and Ecodenetworks 11

12. 4. Deployment of VPN using SDN
• Channel from Host to VOS is data channel
from VOS to FSC is control channel
• Data channel is secure by Layer 2
tunnelling protocol
• Control channel is secure by Generic
outing Encapsulation tunnelling protocol
• Host from one private network can
communicate over the internet
• Flow entries in VOS is managed by
centralized FSC
VIT university and Ecodenetworks 12

13. 5. Floodlight SDN Controller
• Floodlight is the centralized SDN
controller developed by Big Switch
in 2012
• Opensource FSC have topology, flow
forwarding, device details module
• It exposes topology, switch details,
host details, control statistics, link
statistics, Firewall rest API
• The northbound API can be develop
to monitor, secure the network
• Easy to overcome any network
failure
VIT university and Ecodenetworks 13

14. 6. Openstack Cinder
• Openstack is the opensource project developed by NASA and Rackspace for management of network,
storage and network virtual function devices
• Allows the orchestration of north bound API for management and monitoring network and storage
• Cinder is the block storage module developed to allocate block storage for organization
• Virtualizes pools of block storage devices and provides end users with a self-service API to request
• With the help of Cinder Rest API the creation, deletion and allocation of block of LVM is automated,
simulated and managed.
• To allocate the block on the NAS device the following functions are automated using Java programs:
1. Creation of token ID
2. Creation of tenant
3. Creation of storage volume
4. Endpoint
VIT university and Ecodenetworks 14

15. 1. Creation of token ID
6. Openstack Cinder
JSON request:
{
"auth": {
"tenantName": "demo",
"passwordCredentials": {
"username": "demo",
"password": "secretsecret"
}
}}
http://<openstack IP>:35357/v2.0/token
JSON response:
{
"access": {
"token": {
"issued_at": "2014-01-30T15:30:58.819584",
"expires": "2014-01-31T15:30:58Z",
"id": "aaaaa-bbbbb-ccccc-dddd",
"tenant": {
"description": null,
"enabled": true,
"id": "fc394f2ab2df4114bde39905f800dc57",
"name": "demo"
}
}
VIT university and Ecodenetworks 15

16. 2. Creation of tenant
6. Openstack Cinder
JSON request:
{
"tenant": {
"name": "ACME corp",
"description": "A description ...",
"enabled": true
}
}
JSON response:
{
"tenant": {
"name": "ACME corp",
"description": "A description ...",
"enabled": true
}
}
URL: http://<openstack IP>: 35357/v2.0/user. VIT university and Ecodenetworks 16

17. 3. Creation of Storage volume
6. Openstack Cinder
JSON request:
{
"volume": {
"availability_zone": “Nova”,
"source_volid": null,
"description": “ecode storage”,
"snapshot_id": “test123”,
"size": 1,
"name": "ecode",
"volume_type": NTFS,
"metadata": {test}
}
}
http:// <OpenStack IP>:8776/v2/<tenant ID>/volume
JSON response:
{
"volume": {
"status": "creating",
"name": "ecode",
"availability_zone": "nova",
"created_at": "2014-02-21T19:52:04.949734",
"description": "ecode storage",
"volume_type": "NTFS",
"source_volid": null,
"id": "93c2e2aa-7744-4fd6-a31a-80c4726b08d7",
"size": 1
}
}VIT university and Ecodenetworks 17

18. 4. Endpoint
6. Openstack Cinder
• Endpoint is created for each storage block
• It provides public URL, internal URL for usage in automation program
JSON request:
{
"OS-KSCATALOG:endpointTemplate": {
"id": 1
}
}
JSON response:
{
"endpoint": {
"id": 1,
"tenantId": 1,
"region": "North",
"type": "compute",
"publicURL": "https://compute.north.public.com/v1",
"internalURL": "https://compute.north.internal.com/v1",
"adminURL": "https://compute.north.internal.com/v1",
}
}
URL: http://<Openstack IP>:35357/v2.0/tenants/{tenantId}/OS-KSCATALOG/endpoints
VIT university and Ecodenetworks 18

19. 7. Owncloud
• Owncloud is the opensource software which can integrate to external storage device or service
• It can automate the integration of cinder block to the VPN user and provides network attached storage
(NAS)
• Java Script Object Notification (JSON) is used for integration
VIT university and Ecodenetworks 19

20. 7. Owncloud
• Cinder automation program on owncloud
VIT university and Ecodenetworks 20

21. 7. Owncloud
• Integration of WebDAV (remote.php) to windows VPN connected host
• Following steps are automated in program:
VIT university and Ecodenetworks 21

22. 8. Result
• New registered organization will get the NAS immediately after connecting to
virtual private network
• Network engineer can get the output for cinder as:
• Easy to manage the NAS device memory space and for billing purpose to
organization
VIT university and Ecodenetworks 22

23. 8. Result
• The centralized FSC and openflow enabled virtual switches forward the cloud storage traffic over data channel
towards Openstack with NAS instance.
• The registered storage space is given to user.
• The space allocation is automate using owncloud software.
• The WebDAV file of windows operating gives access to openflow WebDAV program to create network drive.
VIT university and Ecodenetworks 23

24. 9. Conclusion
• The private network is virtualized and provision the services to authorized company’s employee across the
globe. The cloud Storage as a Service is provision using Software Defined Network, Virtual Private Network
and Network Attached Storage technology.
• Using SDN, the reachability to the network attached drive in the cloud is speed up without delay in the
service. The programmability of network and storage automate their security and maintenance.
• The increase in security using L2TP, GRE, AES and Monitoring NBI makes the network robust to failure and
prevent from interpretation of malicious user.
• The project decreases the Operational Expenditure (OPEX) and Capital Expenditure (CAPEX) for NaaS and
StaaS provider and customers also.
VIT university and Ecodenetworks 24

25. 10. Future Work
• Nowadays, data centers are facing problem in management and maintenance of physical
infrastructure. Maintenance of Power Effective Unit is getting costly. Virtualization technology used
in this project can decrease the PEU and increase CPU usage by 40-60 %.
• The Firewall, load balancing Northbound API for SDN controller should be develop for security and
management in the VPN.
• During a disaster or other emergency, Organization may face the problem of physical infrastructure
loss. The SDN controller can initiate the live migration to safe instance upon intimation of any
disaster. The SDN controller will increase the priority (port) to high for making migration fast and
safe.
VIT university and Ecodenetworks 25

26. 11. References
1. In May 2014, Centralization of network using Openflow Protocol.
2. Owncloud Architecture overview
https://www.google.co.in/url?sa=t&rct=j&q=&esrc=s&source=web&cd=6&cad=rja&uact=8&ved=0CC8QFjA
F&url=https%3A%2F%2Fowncloud.com%2Fwp-
ontent%2Fuploads%2F2013%2F08%2Foc_architecture_overview.pdf
3. Nick McKeown, Tom Anderson, and Hari Balakrishnan “OpenFlow: Enabling Innovation in Campus
Network” ,December 2008
4. Bruno Astuno A. Nunes and Marc Mendonca “A survey of Software-Defined Networking: Past, Present
and Future Programmable Networks”, April 2010.
5. Openflow-spec-v1.3.3.pdf https://www.opennetworking.org/images/stories/downloads/sdn-
resources/onf-specifications/openflow/openflow-spec-v1.3.3.pdf
VIT university and Ecodenetworks 26