Overview of the MPLS backbone transmission technology.
MPLS (MultiProtocol Layer Switching) is a layer 2.5 technology that combines the virtues of IP routing and fast layer 2 packet switching.
IP packet forwarding is not suited for high-speed forwarding due to the need to evaluate multiple routes for each IP packet in order to find the optimal route, i.e. the route with the longest prefix match.
However, Internet Protocol routing provides global reachability through the IP address and through IP routing protocols like BGP or OSPF.
Layer 2 packet switching has complementary characteristics in that it does not provide global reachability through globally unique addresses but allows fast packet forwarding in hardware through the use of small and direct layer 2 lookup addresses.
MPLS combines IP routing and layer 2 switching by establishing layer 2 forwarding paths based on routes received through IP routing protocols like BGP or OSPF.
Thus the control plane of an MPLS capable device establishes layer 2 forwarding paths while the data plane then performs packet forwarding, often in hardware.
MPLS is not a layer 2 technology itself, i.e. it does not define a layer 2 protocol but rather makes use of existing layer 2 technologies like Ethernet, ATM or Frame Relay.
On Wed 15 January 2014, Matt VK2RQ gave a lecture on packet radio, which provided an overview of what is packet radio and how it works, and described some of the applications for which packet radio is used.
Presented by: Muhammad Yeasir Arafat
ElastixWorld 2013
Today, the session initiation protocol (SIP) is the predominant protocol for IP Telephony Signalling. The intention of this paper is to present an overview of IP Telephony security issues - both current and future – focusing on SIP. We start by presenting some fundamental differences between IP Telephony and the public switched telephone network (PSTN). We then look at specific problems for SIP signalling that arise from these differences. We summarize current activities regarding SIP security, including recent developments in the research community and standardization efforts within the IETF. Finally, the paper gives an outlook on the security issues of IP Telephony.
Download paper at: http://elx.ec/ssiipt
Overview of the MPLS backbone transmission technology.
MPLS (MultiProtocol Layer Switching) is a layer 2.5 technology that combines the virtues of IP routing and fast layer 2 packet switching.
IP packet forwarding is not suited for high-speed forwarding due to the need to evaluate multiple routes for each IP packet in order to find the optimal route, i.e. the route with the longest prefix match.
However, Internet Protocol routing provides global reachability through the IP address and through IP routing protocols like BGP or OSPF.
Layer 2 packet switching has complementary characteristics in that it does not provide global reachability through globally unique addresses but allows fast packet forwarding in hardware through the use of small and direct layer 2 lookup addresses.
MPLS combines IP routing and layer 2 switching by establishing layer 2 forwarding paths based on routes received through IP routing protocols like BGP or OSPF.
Thus the control plane of an MPLS capable device establishes layer 2 forwarding paths while the data plane then performs packet forwarding, often in hardware.
MPLS is not a layer 2 technology itself, i.e. it does not define a layer 2 protocol but rather makes use of existing layer 2 technologies like Ethernet, ATM or Frame Relay.
On Wed 15 January 2014, Matt VK2RQ gave a lecture on packet radio, which provided an overview of what is packet radio and how it works, and described some of the applications for which packet radio is used.
Presented by: Muhammad Yeasir Arafat
ElastixWorld 2013
Today, the session initiation protocol (SIP) is the predominant protocol for IP Telephony Signalling. The intention of this paper is to present an overview of IP Telephony security issues - both current and future – focusing on SIP. We start by presenting some fundamental differences between IP Telephony and the public switched telephone network (PSTN). We then look at specific problems for SIP signalling that arise from these differences. We summarize current activities regarding SIP security, including recent developments in the research community and standardization efforts within the IETF. Finally, the paper gives an outlook on the security issues of IP Telephony.
Download paper at: http://elx.ec/ssiipt
GLBP (Gateway Load Balancing Protocol) is a Cisco proprietary protocol that attempts to overcome the
limitations of existing redundant router protocols by adding basic load balancing functionality. GLBP is a
virtual gateway protocol similar to HSRP and VRRP.
However, unlike its little brothers, GLBP is capable of using multiple physical gateways at the same time.
As we know, a single HSRP or VRRP group represents one virtual gateway, with single virtual IP and MAC
addresses. Only one physical gateway in a standby/redundancy group is responsible for packet
forwarding, others remain inactive in standby/backup state.
VRF (Virtual Routing and Forwarding) is a technology that allows multiple instances of a routing table to
co-exist within the same router at the same time. This increases functionality by allowing network paths
to be segmented without using multiple devices. Because traffic is automatically segregated, VRF also
increases network security and can eliminate the need for encryption and authentication. Internet
service providers (ISPs) often take advantage of VRF to create separate virtual private networks (VPNs)
for customers; thus the technology is also referred to as VPN routing and forwarding. Because the
routing instances are independent, the same or overlapping IP addresses can be used without
conflicting with each other.
GLBP (Gateway Load Balancing Protocol) is a Cisco proprietary protocol that attempts to overcome the
limitations of existing redundant router protocols by adding basic load balancing functionality. GLBP is a
virtual gateway protocol similar to HSRP and VRRP.
However, unlike its little brothers, GLBP is capable of using multiple physical gateways at the same time.
As we know, a single HSRP or VRRP group represents one virtual gateway, with single virtual IP and MAC
addresses. Only one physical gateway in a standby/redundancy group is responsible for packet
forwarding, others remain inactive in standby/backup state.
VRF (Virtual Routing and Forwarding) is a technology that allows multiple instances of a routing table to
co-exist within the same router at the same time. This increases functionality by allowing network paths
to be segmented without using multiple devices. Because traffic is automatically segregated, VRF also
increases network security and can eliminate the need for encryption and authentication. Internet
service providers (ISPs) often take advantage of VRF to create separate virtual private networks (VPNs)
for customers; thus the technology is also referred to as VPN routing and forwarding. Because the
routing instances are independent, the same or overlapping IP addresses can be used without
conflicting with each other.
Automating the Enterprise with CloudForms & AnsibleJerome Marc
Automating the Enterprise with CloudForms & Ansible:
- Self-service IT requests and automated delivery of IT services.
- Automated configuration and policy enforcement of deployed systems.
- Operational visibility and control.
Pedal to the metal: Red Hat CloudForms for workload & infrastructure managementAlex Baretto
Enterprise IT professionals have unique cloud resource challenges. To deploy and manage an enterprise application today, you need a solution that ensures compliance with corporate IT governance requirements and has predictable and repeatable performance and costs. Plus, business users want solutions that can be deployed quickly.
In this session, you’ll learn how to overcome these enterprise-class cloud deployment challenges. See how Red Hat CloudForms can automate OpenStack reference architecture design creation, deployment, and management for workloads and infrastructures.
Learn how to visually inventory deployed OpenStack reference architectures and monitor OpenStack usage, including how to budget for platform usage by project, department, or program, and track and allocate costs in a similar way.
CloudForms is a comprehensive IaaS cloud management platform that improves your virtual and cloud infrastructures with advanced capacity planning and resource management features.
Scalar & RedHat present a technical session to learn about CloudForms as the experts in cloud management!
Discussion Topics:
Red Hat and the Open Hybrid Cloud
Cloud Management & Orchestration using Cloud Forms
Openstack Cloud Management and Automation Using Red Hat Cloudforms 4.0Prasad Mukhedkar
To success in Private Cloud, You have to have develop management and automation
strategy. Cloudforms is CPM (Cloud Platform Management) software that provides framework to develop management and automation strategy with its flaxible automation
module
Considerations for Your Next Cloud Project – CloudForms & OpenStack Do’s and Don’ts
In this Session we will discuss Organizational and Operational Considerations on how to move into Infrastructure as a Service Environments and showcase how Enterprises today address different aspects of Cloud Management.
Focus of this session is on Design and Operational Aspects of running an Open Hybrid Cloud. The session will also touch on Process and Organizational Aspects.
Automating security compliance for physical, virtual, cloud, and container en...Lucy Huh Kerner
In this slide deck of my 2017 Red Hat Summit talk, you'll learn how to easily provision a security-compliant host and quickly detect and remediate security and compliance issues in physical, virtual, cloud, and container environments. We’ll discuss possible compliance challenges and show how a combination of Red Hat CloudForms, Red Hat Satellite, and Ansible Tower by Red Hat can help you quickly achieve compliance, automate security , and complete remediation. You’ll learn how you can integrate Red Hat CloudForms with Red Hat Satellite and Ansible Tower by Red Hat, as well as use the OpenSCAP integration in Red Hat Satellite, to perform audit scans and remediations at the push of a button on your systems and automate security to ensure compliance against various profiles, such as:
The U.S. Government Configuration Baseline (USGCB).
The Defense Information Systems Agency Security Technical Implementation Guide (DISA STIG).
The Centralized Supercomputing Facility (CSCF) baseline.
The U.S. Government Commercial Cloud Services (C2S) baseline.
The Certified Cloud and Service Provider (CCSP) baseline.
Center for Internet Security (CIS) Benchmarks.
The Payment Card Industry Data Security Standard (PCI DSS) Custom policies.
You'll also learn how you can use the control and policy engine in Red Hat CloudForms to detect and fix vulnerabilities, such as Shellshock, and learn how to do proactive security and automated risk management with Red Hat Insights.
To see the video replay of this talk, please visit: https://www.youtube.com/watch?v=8V1iDgOTWFA&t=1s
Telco Cloud - 02. Introduction to NFV - Network Function VirtualizationVikas Shokeen
http://telecomtutorial.info
Covering Introduction & Tutorial for Virtualization & NFV in Telco Networks . Covering Difference between NFV & SDN or How they work . Both architectures use network abstraction, they do so differently. While NFV covers Softwarization , Virtualization and makes building blocks ready , SDN forwards data packets from one network device to another. At the same time, SDN's networking control functions for routing & policy definition
• NFV : Network function Virtualization : Introduction & Basics
• Why we need NFV & Features of NFV
• ETSI Framework & Specs
• NFV Architecture
• Need of SDN
Connect Me @ Linkedin : www.linkedin.com/in/vikas-shokeen
Network functions virtualization (NFV) is a network architecture concept that uses the technologies of IT virtualization to virtualized entire classes of network node functions into building blocks that may connect, or chain together, to create communication services.
NFV is "network function virtualization" and is a hot topic in virtualization and cloud infrastructure. This presentation walks through what NFV is and how the ManageIQ community could potentially integrate with various NFV implementations.
For more on ManageIQ, see http://manageiq.org/
This presentation gives a summary of SDXCentral 2017 Report on NFV Industry and its trends. The presentation gives jump start for beginners to navigate through NFV forest by getting necessary details and expand understanding elaborating each piece of puzzle.
Presented at TM Forum Live ! on May 16th 2017
by Red Hat - François Duthilleul Telco Solutions Architect
For the past few decades, telecommunications networks have been built using closed-source monolithic products from network equipment vendors. Today, Network Functions Virtualization (NFV) and Software Defined Networking (SDN) are disrupting the way telecommunications networks are being built and operated and are gradually becoming the foundation of modern networking. The introduction of virtualisation, automation and orchestration provides the basis from which the networks will evolve towards a Zero-touch Orchestration, Operations and Management (ZOOM) target.
This presentation highlights the prominent role of open source and Red Hat’s portfolio in the implementation of future networks.
Don't hesitate to contact me at: fduthill@redhat.com
Dr. Christos Kolias – Senior Research Scientist
Keynote Title: “NFV: Empowering the Network”
Keynote Abstract: Network Functions Virtualization (NFV) envisions and promises to change the service provider landscape and has emerged as one of one of today’s significant trends. Although less than two years old, NFV has garnered the industry’s full attention and support. Moving swiftly, a number of key accomplishments have already taken place, and a lot more work is currently under way within ETSI NFV while we are embarking on its future phase. Various proofs-of-concepts (ranging from vEPC to vCPE, vIMS and vCDN) are being developed while issues such as open source and SDN are becoming key ingredients as the can play a pivotal role.
Dr. Christos Kolias' Bio: Christos Kolias is a senior research scientist at Orange Silicon Valley (a subsidiary of Orange). Christos is a co-founder of the ETSI NFV group and had led the formation of ONF’s Wireless & Mobile working group. He has lectured on NFV and SDN at several events. Christos has more than 15 years of experience in networking, he is the originator of Virtual Output Queueing (VOQ) used in packet switching. He holds a Ph.D. in Computer Science from UCLA.
---------------------------------------------------
★ Resources ★
Zerista: http://lcu14.zerista.com/event/member/137765
Google Event: https://plus.google.com/u/0/events/cpeksim4hr4ghhuufv5ic4viirs
Video: https://www.youtube.com/watch?v=tFDnj_342n4&list=UUIVqQKxCyQLJS6xvSmfndLA
Etherpad: http://pad.linaro.org/p/lcu14-400a
---------------------------------------------------
★ Event Details ★
Linaro Connect USA - #LCU14
September 15-19th, 2014
Hyatt Regency San Francisco Airport
---------------------------------------------------
http://www.linaro.org
http://connect.linaro.org
An introduction to the key concepts of SDN and NFV with visuals of:
- How SDN is transforming the Data Center
- How NFV is transforming the Service Provider domain and the End-customer domain
- Objectives
- Origin
- Ambassadors
- Applicability
- Analogies
- Benefits
- Industry Standards
- Drivers
- Obstacles
- Growth
- Resources and Events
Demystifying Network Function Virtualization (NFV) Service AssuranceZenoss
Presented by SOPRIS Technologies and Zenoss by SOPRIS' David Stevenson (CSO), and Zenoss' Kent Erickson (Senior Manager, Channel Marketing) and Laszlo Bojtos (Staff Sales Engineer).
Access the full presentation recordings for GalaxZ17 here: http://ow.ly/WyBu30cakk0
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualityInflectra
In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring.
Learn about:
• The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks.
• Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective.
• Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification.
• Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process.
Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Search and Society: Reimagining Information Access for Radical FuturesBhaskar Mitra
The field of Information retrieval (IR) is currently undergoing a transformative shift, at least partly due to the emerging applications of generative AI to information access. In this talk, we will deliberate on the sociotechnical implications of generative AI for information access. We will argue that there is both a critical necessity and an exciting opportunity for the IR community to re-center our research agendas on societal needs while dismantling the artificial separation between the work on fairness, accountability, transparency, and ethics in IR and the rest of IR research. Instead of adopting a reactionary strategy of trying to mitigate potential social harms from emerging technologies, the community should aim to proactively set the research agenda for the kinds of systems we should build inspired by diverse explicitly stated sociotechnical imaginaries. The sociotechnical imaginaries that underpin the design and development of information access technologies needs to be explicitly articulated, and we need to develop theories of change in context of these diverse perspectives. Our guiding future imaginaries must be informed by other academic fields, such as democratic theory and critical theory, and should be co-developed with social science scholars, legal scholars, civil rights and social justice activists, and artists, among others.
"Impact of front-end architecture on development cost", Viktor TurskyiFwdays
I have heard many times that architecture is not important for the front-end. Also, many times I have seen how developers implement features on the front-end just following the standard rules for a framework and think that this is enough to successfully launch the project, and then the project fails. How to prevent this and what approach to choose? I have launched dozens of complex projects and during the talk we will analyze which approaches have worked for me and which have not.
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other?
Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams.
Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
2. 2
Leif Madsen
● DevOps team lead of the NFVPE team,
working with strategic NFV partners to help
them understand how to automate and test
deployments using common open source
tools.
● Blog: https://blogs.leifmadsen.com
Who are these guys!?
Doug Smith
● Member of the NFVPE DevOps team with a
focus on analyzing gaps in containerized
workloads for NFV, including container
networking & orchestration (e.g. Kube &
OpenShift)
● Blog: https://dougbtv.com
We’re from the NFV Partner Engineering Team @ Red Hat
@leifmadsen@dougbtv
4. 4
VNF-Asterisk is a VNF utilizing Asterisk (an
Open Source telephony framework) and
intended to be used for validating environments,
and exploring topics such as:
● VNFs in Kubernetes / OpenShift
● Container Networking
● Scale
● High Availability
● And more.
SO, WHAT IS VNF-ASTERISK?
A demo VNF in Kubernetes that YOU can try out!
redhat-nfvpe/vnf-asterisk
5. BEGIN THE WHITEBOARD OF
ACRONYMS!
(If we use an acronym you don’t know,
don’t be shy, point at the whiteboard!)
7. 7
High Level pod layout (plan)
voip/asterisk
homer/capt-agent
Asterisk A
voip/asterisk
homer/capt-agent
Asterisk B
homer/capture-server
homer/mariadb
homer/web-ui
Homer
SIPp
voip/sipp
SIPp
voip/sipp
Controller
management/controller
10. 10
● Purpose is to take your traditional hardware network devices (routers, switches,
firewalls, etc) and deploy them virtually, like a computer running as a virtual machine.
● Defined by ETSI in September 2012 via seven of the world’s largest
telecommunication network operators.
○ Conceived by the world’s seven largest telecommunications operators in 2012,
lead to the creation of ETSI NFV in January 2013; ETSI NFV would create the
momentum and hype in the industry.
● Telecommunications operators vendors historically would
○ develop,
○ test,
○ and schedule deployment of ASICs on a multiple year trajectory
○ ROI heavily factored into the development and deployment of new hardware.
What is NFV?
Network Functions Virtualization
13. 13
What is NFV?
Virtualized Network Function
= an application stack :)
Often delivered as virtual appliance
forklifted from a physical appliance.
Often a distributed application running
across dozens of different processing
blades VMs.
14. 14
What is NFV?
Element Manager
= an application that does FCAPS
(Fault, Config, Accounting, Performance, Security)
management for one or more (V)NFs.
Many EMs PXE-booted the OS on all
blades, installed/upgraded software,
then provided standard north-bound
interface for FCAPS.
15. 15
What is NFV?
Business Support System(s) and
Operations Support System(s)
= handle business resp. operations
logic for fulfilling and assuring
services end-to-end
Offer, e.g., product and service
catalogs, service and resource
orchestration, resource inventory,
workflow engine, policy engine,
root-cause analysis & analytics, ...
16. 16
What is NFV?
new: NFV Infrastructure
= compute, storage and networking
resources and their virtualization
18. INSERT DESIGNATOR, IF NEEDED18
What is NFV?
new: Virt. Infrastructure Manager
= manage the lifecycle of compute,
storage and (data center) network
infrastructure resources
e.g. OpenStack, VMware, RHEV
virt. infrastructure
abstraction
19. INSERT DESIGNATOR, IF NEEDED19
What is NFV?
new: VNF Manager
= provisions and manages the
lifecycle of one or more VNF
applications
e.g. OpenStack Tacker, Cloudify, K8s
virt. infrastructure
abstraction
application
abstraction
20. INSERT DESIGNATOR, IF NEEDED20
What is NFV?
new: NFV Orchestrator
= provisions and manages the
lifecycle of one or more Network
Services
e.g. OpenStack Tacker, Rift.io
virt. infrastructure
abstraction
application
abstraction
composed service
abstraction
22. 22
● A VNF, or Virtualized Network Function, is made up of one or more components inside
an NFV-based (or SDN-based) network.
What is a VNF?
A VNF is a Virtual Network Function
23. 23
● An example of a virtualized network function might be a virtual router (vRouter),
virtualized network switch (vSwitch), deep packet inspection (vDPI), virtual firewall,
etc
○ It’s the virtualized version of a dedicated physical component in your network
○ Only the most simple VNFs, such as vRouters, vDPI, etc are single
component/single-VM
○ More interesting deployments contain multiple components (load-balancer
component, signaling-processor component, data-plane processor component);
each of which can independently scaled by instantiating more instances.
○ A VNF can be made up of one or more components (VNFCs)
What is a VNF?
A VNF is a Virtual Network Function
24. 24
● Software Defined Networking is a way of programmatically defining your network from
a central location, and disseminating that definition to your networking nodes
● The idea is to separate the control plane (where you program how you want the
network to be designed) from the data plane (where the actual networking data flows)
● By separating the control plane from the data plane, you’re able to more centrally
control the definition of the network (what you would typically do from, say, a Cisco
router CLI) from the physical hardware that performs the packet processing and
forwarding
What is SDN?
SDN is Software Defined Networking
25. 25
● With a centralized control plane, you can scale it independent of the data plane, and
build additional functionality, like programming it through an API
● Forwarding tables and data plane information is then compiled out of the control
plane, and pushed down into the data plane, that then is able to act on the packets
without the overhead of also dealing with the control plane.
What is SDN?
SDN is Software Defined Networking
26. 26
1There are several definitions of cloud nativeness.
We chose the CNCF to use here for two reasons:
What is cloud native?
This definition fits best to the examples we
would like to share here.
The CNCF’s definition represents a wide
body of professionals.
2
The following Cloud Native definition is used in
the Cloud Native Computing Foundation Charter
27. 27
1
What is cloud native?
Container packaged. Running applications and processes in software containers as an isolated unit of application deployment, and as a
mechanism to achieve high levels of resource isolation. Improves overall developer experience, fosters code and component reuse and
simplify operations for cloud native applications.
Dynamically managed. Actively scheduled and actively managed by a central orchestrating process. Radically improve machine
efficiency and resource utilization while reducing the cost associated with maintenance and operations.
2
Cloud native systems will have the following properties
3Micro-services oriented. Loosely coupled with dependencies explicitly described (e.g. through service endpoints). Significantly increase
the overall agility and maintainability of applications. Uses ubiquitous and easily available through reliable interfaces.
28. 28
● A standard Back2Back User Agent (B2BUA) setup where we generate traffic with SIPp
VNF-Asterisk Architecture
Basic Subsystem
29. 29
● Extending the basic subsystem to start building out a control and data plane
● Controller pushes configuration into newly instantiated Asterisk instances
● (Enter Sorcery)
VNF-Asterisk Architecture
Extended Basic Subsystem
30. 30
● In the initial implementation of this demonstration VNF, our “controller” may be so
primitive as to be a script that pushes a simple configuration into our Asterisk
instances
VNF-Asterisk Architecture
Extended Basic Subsystem
31. 31
● In our expanded subsystem, we add sipcapture via the HOMER encapsulation protocol
(HEP).
VNF-Asterisk Architecture
Expanded Subsystem
32. 32
● One of the more interesting tidbits of information we’re hoping to tease out is metrics
● Understanding our baseline metrics will allow us to determine what happens as we
start changing the infrastructure
● If our metrics get significantly worse as we containerize the system, we’ll be better
armed to understand
○ if it’s the containerization
○ our network
○ architecture
○ other unknown issues
VNF-Asterisk Architecture
Expanded Subsystem
33. 33
● Next step is to start breaking our monolithic deployment into more fungible
components
VNF-Asterisk Architecture
Containerized PoC (e.g. in Docker)
34. 34
● Controller may be expanded to include dynamic configuration through service
discovery (such as etcd)
● Pave the way for using discovery services to find and configure the containers
VNF-Asterisk Architecture
Containerized PoC (e.g. in Docker)
36. 36
● Orchestrating the pods using Kubernetes (optionally, on top of OpenShift) and
validating that all our components are still operating
● Breaking the containers into pods
● Getting ready to change the underlying network
VNF-Asterisk Architecture
Orchestrated PoC (e.g. in Kubernetes)
38. 38
● Start splitting the components into their own related networks
● Gives network separation between the various planes
● Kubernetes currently only allows for a single interface
○ CNI
○ Multus-CNI
VNF-Asterisk Architecture
Service Networking & Networking Topology
