A service mesh is a necessary tool in your cloud native infrastructure. The era of service meshes ushers in a new layer of intelligent network services that are changing the architecture of modern applications and the confidence with which they are delivered. Istio, as one of many service meshes, but one with a vast set of features and capabilities, needs an end-to-end guide
A service mesh is a necessary tool in your cloud native infrastructure. The era of service meshes ushers in a new layer of intelligent network services that are changing the architecture of modern applications and the confidence with which they are delivered. Istio, as one of many service meshes, but one with a vast set of features and capabilities, needs an end-to-end guide
Introduction to SDN: Software Defined NetworkingAnkita Mahajan
SDN is the next big thing in networking. It focuses on separating the intelligence from the hardware. OpenFlow is one of the ways (currently the open standard followed by all Datacenters) to implement SDN.
SDN and NFV Value in Business Services - A Presentation By Cox CommunicationsCisco Service Provider
Joint presentation on behalf of the Society of Cable Telecommunications Engineers (SCTE) between Cox Communications (Mazen Khaddem) and Cisco Systems (Dr. Loukas Paraschis). Presentation covers different SDN categories, NFV examples in business services, and use cases for WAN SDN.
Generalized Virtual Networking, an enabler for Service Centric Networking and...Stefano Salsano
In this presentation we introduce the Generalized Virtual Networking (GVN) concept. GVN provides a framework to influence the routing of packets based on service level information that is carried in the packets. It is based on a protocol header inserted between the Network and Transport layers, therefore it can be seen as a layer 3.5 solution. Technically, GVN is proposed as a new transport layer protocol in the TCP/IP protocol suite. An IP router that is not GVN capable will simply process the IP destination address as usual. Similar concepts have been proposed in other works, and referred to as Service Oriented Networking, Service Centric Networking, Application Delivery Networking, but they are now generalized in the proposed GVN framework. In this respect, the GVN header is a generic container that can be adapted to serve the needs of arbitrary service level routing solutions. The GVN header can be managed by GVN capable end-hosts and applications or can be pushed/popped at the edge of a GVN capable network (like a VLAN tag). In this position paper, we show that Generalized Virtual Networking is a powerful enabler for SCN (Service Centric Networking) and NFV (Network Function Virtualization) and how it couples with the SDN (Software Defined Networking) paradigm.
Using Microservices Architecture and Patterns to Address Applications Require...Prem Sankar Gopannan
Gives an overview about MEC application requirements and microservice patters. Provides a sample app and application of patterns to better design the MEC app. Provides an overview about state management of MEC app
Technical Presentation about the MidoNet architecture and in-depth discussion about MidoNet features like Distributed Layer 2 Switching, Distributed Layer 3 Routing, Firewall, NAT and Distributed Flow State.
About MidoNet
Taking an overlay-based approach to network virtualization, MidoNet sits on top of any IP-connected network, and pushes the network intelligence to the edge of the network, in software. MidoNet makes it possible to build an IaaS cloud with fully virtualized and distributed scale-out L2-L4 networking.
Presenter: Taku Fukushima, Midokura Engineering
Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...Dan Mihai Dumitriu
OpenStack deployments for public or private clouds require overlay networking. Due to the scale and rate of change of virtual resources, it isn't practical to rely on traditional network constructs and isolation mechanims. Today's deployments require performance, resilience, and high availability to be considered truly production-ready. In this session, we deep dive into the MidoNet architecture, and process of sending a data packet across an OpenStack environment through a network overlay. A distributed architecture implements logical constructs that are used to build networks without a single point of failure, all while adding network functionality in a highly-scalable manner. Network functions are applied in a single virtual hop. By applying network services right at the ingress host, the network is free from unnecessary clogging and bottlenecks by avoiding additional hops. Packets reach their destination more efficiently with the single virtual hop. After this session, the audience will understand how distributed architectures allow efficient networking with routing decisions and network services applied at the edge. Also, the audience will understand how it is easier to scale clouds when the network intelligence is distributed.
Kubernetes Introduction. The concepts you need to understand to effectively develop and run applications in a Kubernetes environment. Focusing primarily on application developers, but it also provides an overview of managing applications from the operational perspective. It’s meant for anyone interested in running and managing containerized applications on more than just a single server.
HAProxyconf 2019 - Criteo - Transitioning from Ticketing to LBaaSpierrecdn -
At Criteo, we work at the cutting edge of commerce marketing.
On the infrastructure side, we run tens of thousands of servers, host containers that continuously move across data centers, and scale services through our managed APIs, with HAProxy playing a critical role across our fast-paced, event-driven infrastructure. This presentation describe our journey to achieve load balancing served via a user-centric API in such a large and complex environment. We share tricks and design considerations that helped us to go from a user intent expressed through an API to a scalable service running globally.
Samrat Ganguly
NEC
ONS2015: http://bit.ly/ons2015sd
ONS Inspire! Webinars: http://bit.ly/oiw-sd
Watch the talk (video) on ONS Content Archives: http://bit.ly/ons-archives-sd
Technical Deep Dive into MidoNet - Taku Fukushima, Developer at MidokuraMidoNet
This is a technical deep-dive into the MidoNet components and how to contribute code into the open source MidoNet project.
Presenter: Taku Fukushima, Developer at Midokura
BRKDCT-2445 Agile OpenStack Networking with Cisco Solutions - Cisco Live! US ...Rohit Agarwalla
One of the key areas of contributions from Cisco within OpenStack has been in the evolution and the development of the OpenStack Networking Service - Neutron. Using Neutron's Modular Layer 2 (ML2) plug-in and advanced services framework, Cisco has integrated products and solutions with the networking service to simplify the deployment of highly scalable, manageable and performant networks. Through this session we will cover and provide details of reference as well as the various OpenStack Neutron plugins/drivers for hardware and software Cisco products including the Nexus 1k/3k/5k/6k/7k/9k, UCS FI, CSR 1kv, ASR1K, CPNR and Application Policy Infrastructure Controller (APIC). The audience will also learn about Group Based Policy API in OpenStack that is based on the ACI Policy model. We will further discuss different OpenStack networking architecture, deployments and understand Cisco’s community code contribution that enable and support IPv6 and NFV related features in Neutron.
Introduction to SDN: Software Defined NetworkingAnkita Mahajan
SDN is the next big thing in networking. It focuses on separating the intelligence from the hardware. OpenFlow is one of the ways (currently the open standard followed by all Datacenters) to implement SDN.
SDN and NFV Value in Business Services - A Presentation By Cox CommunicationsCisco Service Provider
Joint presentation on behalf of the Society of Cable Telecommunications Engineers (SCTE) between Cox Communications (Mazen Khaddem) and Cisco Systems (Dr. Loukas Paraschis). Presentation covers different SDN categories, NFV examples in business services, and use cases for WAN SDN.
Generalized Virtual Networking, an enabler for Service Centric Networking and...Stefano Salsano
In this presentation we introduce the Generalized Virtual Networking (GVN) concept. GVN provides a framework to influence the routing of packets based on service level information that is carried in the packets. It is based on a protocol header inserted between the Network and Transport layers, therefore it can be seen as a layer 3.5 solution. Technically, GVN is proposed as a new transport layer protocol in the TCP/IP protocol suite. An IP router that is not GVN capable will simply process the IP destination address as usual. Similar concepts have been proposed in other works, and referred to as Service Oriented Networking, Service Centric Networking, Application Delivery Networking, but they are now generalized in the proposed GVN framework. In this respect, the GVN header is a generic container that can be adapted to serve the needs of arbitrary service level routing solutions. The GVN header can be managed by GVN capable end-hosts and applications or can be pushed/popped at the edge of a GVN capable network (like a VLAN tag). In this position paper, we show that Generalized Virtual Networking is a powerful enabler for SCN (Service Centric Networking) and NFV (Network Function Virtualization) and how it couples with the SDN (Software Defined Networking) paradigm.
Using Microservices Architecture and Patterns to Address Applications Require...Prem Sankar Gopannan
Gives an overview about MEC application requirements and microservice patters. Provides a sample app and application of patterns to better design the MEC app. Provides an overview about state management of MEC app
Technical Presentation about the MidoNet architecture and in-depth discussion about MidoNet features like Distributed Layer 2 Switching, Distributed Layer 3 Routing, Firewall, NAT and Distributed Flow State.
About MidoNet
Taking an overlay-based approach to network virtualization, MidoNet sits on top of any IP-connected network, and pushes the network intelligence to the edge of the network, in software. MidoNet makes it possible to build an IaaS cloud with fully virtualized and distributed scale-out L2-L4 networking.
Presenter: Taku Fukushima, Midokura Engineering
Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...Dan Mihai Dumitriu
OpenStack deployments for public or private clouds require overlay networking. Due to the scale and rate of change of virtual resources, it isn't practical to rely on traditional network constructs and isolation mechanims. Today's deployments require performance, resilience, and high availability to be considered truly production-ready. In this session, we deep dive into the MidoNet architecture, and process of sending a data packet across an OpenStack environment through a network overlay. A distributed architecture implements logical constructs that are used to build networks without a single point of failure, all while adding network functionality in a highly-scalable manner. Network functions are applied in a single virtual hop. By applying network services right at the ingress host, the network is free from unnecessary clogging and bottlenecks by avoiding additional hops. Packets reach their destination more efficiently with the single virtual hop. After this session, the audience will understand how distributed architectures allow efficient networking with routing decisions and network services applied at the edge. Also, the audience will understand how it is easier to scale clouds when the network intelligence is distributed.
Kubernetes Introduction. The concepts you need to understand to effectively develop and run applications in a Kubernetes environment. Focusing primarily on application developers, but it also provides an overview of managing applications from the operational perspective. It’s meant for anyone interested in running and managing containerized applications on more than just a single server.
HAProxyconf 2019 - Criteo - Transitioning from Ticketing to LBaaSpierrecdn -
At Criteo, we work at the cutting edge of commerce marketing.
On the infrastructure side, we run tens of thousands of servers, host containers that continuously move across data centers, and scale services through our managed APIs, with HAProxy playing a critical role across our fast-paced, event-driven infrastructure. This presentation describe our journey to achieve load balancing served via a user-centric API in such a large and complex environment. We share tricks and design considerations that helped us to go from a user intent expressed through an API to a scalable service running globally.
Samrat Ganguly
NEC
ONS2015: http://bit.ly/ons2015sd
ONS Inspire! Webinars: http://bit.ly/oiw-sd
Watch the talk (video) on ONS Content Archives: http://bit.ly/ons-archives-sd
Technical Deep Dive into MidoNet - Taku Fukushima, Developer at MidokuraMidoNet
This is a technical deep-dive into the MidoNet components and how to contribute code into the open source MidoNet project.
Presenter: Taku Fukushima, Developer at Midokura
BRKDCT-2445 Agile OpenStack Networking with Cisco Solutions - Cisco Live! US ...Rohit Agarwalla
One of the key areas of contributions from Cisco within OpenStack has been in the evolution and the development of the OpenStack Networking Service - Neutron. Using Neutron's Modular Layer 2 (ML2) plug-in and advanced services framework, Cisco has integrated products and solutions with the networking service to simplify the deployment of highly scalable, manageable and performant networks. Through this session we will cover and provide details of reference as well as the various OpenStack Neutron plugins/drivers for hardware and software Cisco products including the Nexus 1k/3k/5k/6k/7k/9k, UCS FI, CSR 1kv, ASR1K, CPNR and Application Policy Infrastructure Controller (APIC). The audience will also learn about Group Based Policy API in OpenStack that is based on the ACI Policy model. We will further discuss different OpenStack networking architecture, deployments and understand Cisco’s community code contribution that enable and support IPv6 and NFV related features in Neutron.
Advanced Persistent Threat (APT) is a term given to attacks that specifically and persistently target an entity. The security community views this type of attack as a complex, sophisticated cyber-attack that can last months or even years. However, new research indicates that these attacks are actually being achieved by much simpler methods.
Imperva's Application Defense Center (ADC) has discovered that data breaches commonly associated with APT require only basic technical skills. As a result, security teams need to fundamentally shift their focus from absolute prevention of intrusion to protecting critical data assets once intruders have gained access to their infrastructure.
This presentation will:
- Expose some powerful, yet extremely simple techniques that allow attackers to efficiently expand their reach within an infected organization
- Show how attackers achieve their goals without resorting to zero-day vulnerabilities and sophisticated exploits
- Discuss how organizations can protect themselves against the advance of such attacks
Introduction to the Helium release of OpenDaylightSDN Hub
"Helium" is the second release of OpenDaylight made on Oct 2, 2014. This release has more expanded support for Yang, modeling and autogeneration of REST API, improved performance of MD-SAL datastore using Tree-based Akka storage, better integration with OpenStack Neutron API, support for Group-based Policy and support for Service Function Chaining.
Designed for IT professionals looking to expand their OpenStack Networking knowledge, “Navigating OpenStack Networking” is a comprehensive and fast-paced session which provides an overview of OpenStack Networking, its history, its predecessor (Nova Networks), its components and then dives deep into the architecture, its features and plugin model and its role in building an OpenStack Cloud.
Quantum - Virtual networks for Openstacksalv_orlando
An overview of Quantum, the soon-to-be default Openstack network service.
These slides introduce Quantum, its design goals, and discusses the API. It also tries to address how quantum relates to Software Defined Networking (SDN)
This presentation of mine gives basic idea about SDN, use of SDN in different fields, cause of evolution of a new network architecture, openFlow standard and Architectural components.
Network Hypervisor is a critical component in the development of service-centric networks. It enables carriers to develop virtual networks that support multi-tenancy and single customer ownership on a shared underlying physical infrastructure.
Stuart Elby
VP, Network Architecture & Technology
Verizon
ONS2015: http://bit.ly/ons2015sd
ONS Inspire! Webinars: http://bit.ly/oiw-sd
Watch the talk (video) on ONS Content Archives: http://bit.ly/ons-archives-sd
Clearing a Path to Wide-Scale Transport SDN DeploymentDeborah Porchivina
OIF vice president of marketing, Dave Brown of Alcatel Lucent, moderated a panel at Globcom 2015 discussing Transport SDN technical work in taking place in the OIF.
In this session, OIF panelists will review findings from its Global Transport SDN Prototype Demo and outline components of a tool kit aimed at clearing a path to wide-scale transport SDN deployment.
Use SDN and NDV for Carrier-class orchestration. SDN and NFV will be used to build carrier services across the network, but orchestration must reflect additional requirements. It's not enough to think of it as the same as traditional orchestration focused on the data center.
SDN most commonly means that networks are controlled by software applications and SDN controllers rather than the traditional network management consoles and commands that required a lot of administrative overhead and could be tedious to manage on a large scale
“What is SDN? The physical separation of the network control plane from the forwarding plane, and where a control plane controls several devices.”
Too soft[ware defined] networks SD-Wan vulnerability assessmentSergey Gordeychik
The software defined wide-area network is technology based on SDN approach applied to branch office connections in Enterprises. According to Gartner's predictions, more than 50% of routers will be replaced with SD-WAN Solutions by 2020.
The SD-WAN can have firewalls and other perimeter security features on board which makes them attractive targets for attackers. Vendors promise "on-the-fly agility, security" and many other benefits. But what does "security" really mean from a hand-on perspective? Most of SD-WAN solutions are distributed as Linux-based Virtual Appliances or a Cloud-centric service which can make them low-hanging fruit even for script kiddie.
This presentation will introduce practical analysis of different SD-WAN solutions from the attacker perspective. Attack surface, threat model and real-world vulnerabilities in SD-WAN solutions will be presented.
Similar to Multi-tenant Framework for SDN Virtualization (20)
Understanding User Behavior with Google Analytics.pdfSEO Article Boost
Unlocking the full potential of Google Analytics is crucial for understanding and optimizing your website’s performance. This guide dives deep into the essential aspects of Google Analytics, from analyzing traffic sources to understanding user demographics and tracking user engagement.
Traffic Sources Analysis:
Discover where your website traffic originates. By examining the Acquisition section, you can identify whether visitors come from organic search, paid campaigns, direct visits, social media, or referral links. This knowledge helps in refining marketing strategies and optimizing resource allocation.
User Demographics Insights:
Gain a comprehensive view of your audience by exploring demographic data in the Audience section. Understand age, gender, and interests to tailor your marketing strategies effectively. Leverage this information to create personalized content and improve user engagement and conversion rates.
Tracking User Engagement:
Learn how to measure user interaction with your site through key metrics like bounce rate, average session duration, and pages per session. Enhance user experience by analyzing engagement metrics and implementing strategies to keep visitors engaged.
Conversion Rate Optimization:
Understand the importance of conversion rates and how to track them using Google Analytics. Set up Goals, analyze conversion funnels, segment your audience, and employ A/B testing to optimize your website for higher conversions. Utilize ecommerce tracking and multi-channel funnels for a detailed view of your sales performance and marketing channel contributions.
Custom Reports and Dashboards:
Create custom reports and dashboards to visualize and interpret data relevant to your business goals. Use advanced filters, segments, and visualization options to gain deeper insights. Incorporate custom dimensions and metrics for tailored data analysis. Integrate external data sources to enrich your analytics and make well-informed decisions.
This guide is designed to help you harness the power of Google Analytics for making data-driven decisions that enhance website performance and achieve your digital marketing objectives. Whether you are looking to improve SEO, refine your social media strategy, or boost conversion rates, understanding and utilizing Google Analytics is essential for your success.
Italy Agriculture Equipment Market Outlook to 2027harveenkaur52
Agriculture and Animal Care
Ken Research has an expertise in Agriculture and Animal Care sector and offer vast collection of information related to all major aspects such as Agriculture equipment, Crop Protection, Seed, Agriculture Chemical, Fertilizers, Protected Cultivators, Palm Oil, Hybrid Seed, Animal Feed additives and many more.
Our continuous study and findings in agriculture sector provide better insights to companies dealing with related product and services, government and agriculture associations, researchers and students to well understand the present and expected scenario.
Our Animal care category provides solutions on Animal Healthcare and related products and services, including, animal feed additives, vaccination
Meet up Milano 14 _ Axpo Italia_ Migration from Mule3 (On-prem) to.pdfFlorence Consulting
Quattordicesimo Meetup di Milano, tenutosi a Milano il 23 Maggio 2024 dalle ore 17:00 alle ore 18:30 in presenza e da remoto.
Abbiamo parlato di come Axpo Italia S.p.A. ha ridotto il technical debt migrando le proprie APIs da Mule 3.9 a Mule 4.4 passando anche da on-premises a CloudHub 1.0.
Gen Z and the marketplaces - let's translate their needsLaura Szabó
The product workshop focused on exploring the requirements of Generation Z in relation to marketplace dynamics. We delved into their specific needs, examined the specifics in their shopping preferences, and analyzed their preferred methods for accessing information and making purchases within a marketplace. Through the study of real-life cases , we tried to gain valuable insights into enhancing the marketplace experience for Generation Z.
The workshop was held on the DMA Conference in Vienna June 2024.
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024APNIC
Ellisha Heppner, Grant Management Lead, presented an update on APNIC Foundation to the PNG DNS Forum held from 6 to 10 May, 2024 in Port Moresby, Papua New Guinea.
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024
Multi-tenant Framework for SDN Virtualization
1. An Elementary Multi-tenant Framework
on the Northbound Side of SDN
HAO JIANG
Advisor: Prof. Ahmed Bouabdallah
1
2. Agenda
• State of the Art
- Software-defined Networking (SDN)
- Multi-tenant Networking
- Multi-tenancy in SDN
• Existing Solution
- OpenDaylight’s Approach (Virtual Tenant Network)
• Our Proposal
- Research Content
- Comparison with Existing Solution
- Future Work
2
3. “An network architecture that decouples the control and data planes,
moving the control logic to an external entity called SDN controller.”
Software-defined Networking
Network Orchestrations & Services
Southbound APIs
Northbound APIs
Application Layer
Controller Control Layer
Data Layer
3
4. We define ‘Multi-tenancy’as a property of a network infrastructure
which is transparently shared by multiple tenants, while still being
able to present as an individually managed network to each tenant.
Multi-tenancy in Networking
• A tenant could be ..
4
A user of a network testbed
A department of a campus network
A virtual network operator (VNO)
Service
Provider
5. A Property of a network adopting SDN architecture, where multiple
tenants transparently share the underlying resources in data plane,
without any knowledge of others’existence.
Multi-tenancy in SDN
5
6. A virtual network environment created in the container of OpenDaylight
controller. VTN is set up by configuring virtual network nodes and links.
Multiple VTNs can be created and managed as individual networks.
OpenDaylight’s Approach - Virtual Tenant Network (VTN)
6
8. • VTN Function Conclusion
- Centralized Administration in Application Layer
- Differentiated Management and Monitoring
- Physical Resources Isolation and Allocation
- Layer 2 and Layer 3 Functionalities (vBridge, vRouter)
- Flow Filter and QoS Control
- Multiple SDN Controller Coordination
OpenDayLight’s Approach
8
9. To develop a multi-tenant framework on the northbound of SDN,
enabling multiple organizational entities transparently share the
data plane resources of a SDN provider, with controlling services
offered through NBIs to control and monitor their own network.
A Proposal for Operator Network
9
11. Network Services Network Services
Southbound APIs
Northbound APIs
Application Layer
Controller of SDN Provider Control Layer
Data Layer
Backbone SDN Architecture
Tenant BTenant A
1
12. Work Flow
• Service Subscription
- SDN provider register tenants to network with an account
• Tenant Authentication and Authorization
- Tenants use the account to access the controller
• Tenant Network Initiation
- A tenant network domain is initiated
• Service Monitoring and Debugging
- Tenants modify network to their needs and monitor stats
1
13. General Goal
• Openness
- Tenant Network Control and Monitoring
• Security and Privacy
- Tenant Access Control, Tenant Network Isolation
• Connectivity
- Intra/inter Tenant and External Communication
• Elasticity
- Resource and Service Management
1
14. Services & Control
Tenant A
Network Admin
SDN Provider Tenant B
Services & Control
Tenant C
Services & Control
Data Plane Controller
AccessService Orchestrator Resource
OrchestratorTopology Lifecycle MonitorTenant Manager Mapping&AllocationStatsPolicy
AAA
Southbound APIs
Northbound APIs
1
1. User Access & Verification
2. Service Compilation
3. Resource Reservation and
Configuration Instruction
4. Service & Resource
Monitoring
15. Comparison
VTN MTN framework
Network Scope Campus Backbone
SDN Administrator Campus Owner SDN Provider
Possible Tenant Departmental network of
a campus
a virtual network operator
Functionality Management Commercial Services
Virtual Network
Management
Centralized in
Administrator
Outsourced to tenants
Tenant Authority No controlling abilities Monitoring & Management
Multi-controller
Coordination
Yes Not considered
1
16. My Future Work
1
1.Definition of an elementary multi-tenant framework for SDN 1-Dec
Objectives and requirements plan 1-Dec
Determine the constraints to be satisfied 4-Dec
Specification of the framework 8-Dec
Architecture definition 8-Dec
Specification of AAA services 15-Dec
Phase report and planning 18-Dec
17. 1
2.Controller selection and testbed installation (Mininet) 20-Dec
Comprehensive comparison among existing SDN controllers 20-Dec
Selection and Installation of the controller 27-Dec
Phase report and planning 30-Dec
3.Development and test 1-Jan
Development and test 1-Jan
Results analysis and validation 22-Jan
Draft - final report 29-Jan
4.Conclusion work 1-Feb
My Future Work
Hello everyone. My name is Hao Jiang, I am a second year master student from EIT Digital Master School. I am currently majoring Internet of Things in Telecom Bretagne. My project is to develop an elementary multi-tenant framework on the northbound side of SDN. Prof. Ahmed is my supervisor.
My presentation will be given in this three parts. First I will give a short introduction to the state of the art on multi-tenancy in SDN, and then I will provide an example of existing solution, which is the Virtual Tenant Network function on the OpenDaylight controller. After that, I will introduce another kind of possible solution, that I am currently working on in SDN multi-tenancy, and illustrate the difference between those two solutions. At last, I will introduce the plan of my future work.
SDN has become a promising solution for future network. It brings flexibility and programmability in network management by extracting the control plane out of forwarding devices. Up to now, a lot of works have been done on the southbound side, but on the other hand, the full potential of SDN is far from being reached especially when considering the huge work we need to do on the northbound.
One particular issue is to support diverse tenants and policies for different needs on the northbound. In traditional network, it is quite common that multiple virtual networks transparently share the same infrastructure by different technologies. Such kind of multi-tenancy could be different users sharing a same network testbed, different department sharing a same campus network, or different organizations sharing a same backbone network of service provider.
Based on those technologies, how to realize multi-tenancy in SDN, especially how to satisfactorily support it on the northbound, is the research that I am currently working on.
OpenDaylight provides a solution for multi-tenancy in campus network. It creates a container for each virtual network on the controller, and the administrator can set up a VTN by configuring virtual network elements. Those virtual networks are mapped into same infrastructure but different slices and managed as individual isolated networks.
This is the overall architecture of VTN.
VTN Coordinator is an External Application that provides a REST interface to user to use the VTN Virtualization. It interacts with VTN Manager plugin to implement the user configuration. It is also capable of multiple controller orchestration.
VTN Manager is implemented as OSGI bundle of Controller. It interacts with other modules to implement the components of the VTN model. It also provides a REST interface to configure VTN components in OpenDaylight controller.
To conclude, the VTN of OpenDaylight has the following functions. It creates multiple logically isolated virtual networks, and provides centralized but differentiated management and monitoring policies with satisfactory isolation. It also support Layer 2 and Layer 3 functions, flow filter, QoS control and multiple controller coordination. It is a very good example as a solution for multi-tenancy in campus networks.
But we can make some difference when we considering multi-tenancy for Operator Network. I am currently trying to …
In this case, a possible tenant could be a Virtual Network Operator, who rents the infrastructure resourses from the SDN provider, and customize their own virtual network services and sell them to their customers. Also a tenant could be a bank who is directly renting services from the SDN provider.
This is the overall architecture for Operator Network Multi-tenancy, with delegated controlling functions for multiple tenants to customize and monitor their own virtual network services on the northbound.
This is a general four-step work flow for a typical tenant service.
The general goal of design is listed as the following four points. It should provide a mechanism with a secure level of openness for tenants to control and monitor their own virtual network. In addition, it need to provide a satisfactory level of isolation and policy-based connection among each. Last but not least, it should be scalable in terms of resource and service management.
This is a general architecture, where tenants first access and start a two-way verification with the controller in order to send service requests. Then the tenant manager will compile the service request and generate configuration instructions for Service and Resource Orchestrators. After that, the orchestrator will accordingly generate Network Configuration and Resource Reservation messages to underlying devices. And after the service is initiated, the tenant can monitoring the service and resource status of the virtual network. My development work will mainly focus on multi-tenant access function on the northbound.
This is a brief comparison between the proposal and VTN of OpenDaylight.
This is the plan of my future work. For the next month I will try to reach a detailed specification of the framework.