The document discusses network function virtualization (NFV) and its benefits, challenges, and use cases. NFV aims to implement network functions through software running on commercial off-the-shelf servers and storage, to provide benefits like reduced costs, increased agility, and flexibility compared to proprietary hardware appliances. The ETSI NFV Industry Specification Group is working on requirements and an architecture for NFV. Examples of potential applications include virtualized routers, firewalls, traffic monitoring functions and mobile network nodes. Both NFV and SDN aim to make networks more programmable and automated but through different approaches.
This document discusses network softwarization and the role of open source. It begins by defining network softwarization as the trend toward more programmable, software-defined networks achieved through SDN and NFV. It then discusses how open source has played a role in networking, particularly through projects that enable network softwarization like OpenDaylight, OpenStack, and OPNFV. The document concludes by discussing some experiences with open source networking projects at UNICAMP like RouteFlow, libfluid, and Mininet-WiFi, which aim to advance the state of SDN and network programmability through open collaboration.
Network Function Virtualization : Infrastructure Overviewsidneel
This document provides an overview of network function virtualization (NFV) infrastructure, including:
- The NFV infrastructure architecture focuses on the compute, hypervisor, and infrastructure domains. The hypervisor domain provides resources and interfaces for software appliances running as virtual machines.
- NFV infrastructure principles include defining functional blocks and their interfaces, and how network functions are divided between host functions and virtual network functions after virtualization.
- The document discusses NFV infrastructure in relation to cloud computing models like SaaS, PaaS, and IaaS and covers NFV infrastructure domains, interfaces, and challenges related to performance.
1) The document discusses network function virtualization (NFV) and how it relates to OpenStack. NFV aims to virtualize network functions through standard servers and storage to reduce costs and improve flexibility. (2) ETSI has defined NFV reference architectures, use cases, and an NFV management and orchestration framework. (3) The document outlines ongoing work by ETSI on NFV specifications and interoperability testing to advance the NFV ecosystem.
This document discusses network function virtualization (NFV), including its use cases, architecture, and virtualization requirements. It describes NFV's benefits in reducing costs and increasing flexibility compared to proprietary hardware appliances. The NFV architecture framework separates network functions into software-based virtual network functions (VNFs) that run on a shared virtualized infrastructure. It also covers NFV specifications, use cases like NFV infrastructure as a service, and virtualization requirements around performance, security, and resilience.
Network functions virtualization (NFV) decouples network functions from proprietary hardware appliances and implements them as software virtual network functions (VNFs) that run on standard commercial off-the-shelf (COTS) servers. This allows network functions to be consolidated on shared hardware and provides benefits such as reduced costs, increased flexibility and service agility, and faster innovation. The European Telecommunications Standards Institute (ETSI) is developing open standards for NFV. Orchestration is a key enabling technology that manages the lifecycle of VNFs and coordinates their placement with physical network resources to automate service provisioning.
The document outlines topics to be discussed at an NFV BOF meeting at APRICOT 2015, including advanced NFV topics like data plane connectivity models for VNFs, overlay encapsulation for MPLS operators, NFV service assurance, service chaining, and the applicability of Linux containers. It also includes basics like an NFV introduction. The organizer seeks active participation from attendees on these and other topics.
Slides introducing NFV and what is done on the subject in OpenStack and explaining the benefits of 6WIND Gate in an NFVi setup with OpenStack. Presentation done with Vincent Jardin, CTO at 6WIND.
This document discusses network softwarization and the role of open source. It begins by defining network softwarization as the trend toward more programmable, software-defined networks achieved through SDN and NFV. It then discusses how open source has played a role in networking, particularly through projects that enable network softwarization like OpenDaylight, OpenStack, and OPNFV. The document concludes by discussing some experiences with open source networking projects at UNICAMP like RouteFlow, libfluid, and Mininet-WiFi, which aim to advance the state of SDN and network programmability through open collaboration.
Network Function Virtualization : Infrastructure Overviewsidneel
This document provides an overview of network function virtualization (NFV) infrastructure, including:
- The NFV infrastructure architecture focuses on the compute, hypervisor, and infrastructure domains. The hypervisor domain provides resources and interfaces for software appliances running as virtual machines.
- NFV infrastructure principles include defining functional blocks and their interfaces, and how network functions are divided between host functions and virtual network functions after virtualization.
- The document discusses NFV infrastructure in relation to cloud computing models like SaaS, PaaS, and IaaS and covers NFV infrastructure domains, interfaces, and challenges related to performance.
1) The document discusses network function virtualization (NFV) and how it relates to OpenStack. NFV aims to virtualize network functions through standard servers and storage to reduce costs and improve flexibility. (2) ETSI has defined NFV reference architectures, use cases, and an NFV management and orchestration framework. (3) The document outlines ongoing work by ETSI on NFV specifications and interoperability testing to advance the NFV ecosystem.
This document discusses network function virtualization (NFV), including its use cases, architecture, and virtualization requirements. It describes NFV's benefits in reducing costs and increasing flexibility compared to proprietary hardware appliances. The NFV architecture framework separates network functions into software-based virtual network functions (VNFs) that run on a shared virtualized infrastructure. It also covers NFV specifications, use cases like NFV infrastructure as a service, and virtualization requirements around performance, security, and resilience.
Network functions virtualization (NFV) decouples network functions from proprietary hardware appliances and implements them as software virtual network functions (VNFs) that run on standard commercial off-the-shelf (COTS) servers. This allows network functions to be consolidated on shared hardware and provides benefits such as reduced costs, increased flexibility and service agility, and faster innovation. The European Telecommunications Standards Institute (ETSI) is developing open standards for NFV. Orchestration is a key enabling technology that manages the lifecycle of VNFs and coordinates their placement with physical network resources to automate service provisioning.
The document outlines topics to be discussed at an NFV BOF meeting at APRICOT 2015, including advanced NFV topics like data plane connectivity models for VNFs, overlay encapsulation for MPLS operators, NFV service assurance, service chaining, and the applicability of Linux containers. It also includes basics like an NFV introduction. The organizer seeks active participation from attendees on these and other topics.
Slides introducing NFV and what is done on the subject in OpenStack and explaining the benefits of 6WIND Gate in an NFVi setup with OpenStack. Presentation done with Vincent Jardin, CTO at 6WIND.
1. The document discusses the convergence of IT and telecommunications (CT) infrastructure through OpenStack and network functions virtualization (NFV).
2. It provides an overview of relevant industry trends like software-defined networking and computing. It also discusses the perspectives and interests of telco operators and NFV.
3. The document identifies challenges for deploying network functions on OpenStack clouds, such as the need for cross-data center resource scheduling and affinity scheduling to meet telco application requirements for high availability. It proposes solutions like service container-based resource allocation and an application-centric networking platform.
Network functions virtualization (NFV) is a network architecture concept that uses the technologies of IT virtualization to virtualized entire classes of network node functions into building blocks that may connect, or chain together, to create communication services.
Network Function Virtualization (NFV) BoF, by Santanu Dasgupta.
A presentation given at the APNIC 40 APNIC Network Function Virtualization (NFV) BoF session on Tue, 8 Sep 2015.
This document provides an overview of SDN, NFV, and VNF technologies. It explains that network infrastructure is transitioning from proprietary hardware devices to software-enabled commodity hardware, similar to the earlier transition of servers to virtual machines. The document discusses the definitions and concepts of SDN, NFV, and VNFs, how they provide benefits like reduced costs, increased flexibility and scalability. It also addresses why these technologies are gaining adoption now due to improvements in software, hardware, and ecosystems that support them.
Software-Defined Networking(SDN):A New Approach to NetworkingAnju Ann
This document provides an overview of Software-Defined Networking (SDN). It discusses how SDN decouples the network control plane from the forwarding plane, allowing for centralized control and programmability. The key components of the SDN architecture include OpenFlow switches, an SDN controller, and northbound and southbound APIs. OpenFlow is described as the primary southbound protocol, allowing the controller to program how packets are handled by switches. Example applications of SDN mentioned are network slicing and multi-tenancy in cloud computing. Challenges for SDN adoption are also noted.
Introduction to Network Function Virtualization (NFV)rjain51
Class lecture by Prof. Raj Jain on Introduction to Network Function Virtualization (NFV). The talk covers Four Innovations of NFV, Network Function Virtualization, NFV, Why We need NFV?, NFV and SDN Relationship, Mobile Network Functions, ETSI NFV ISG, NFV Specifications, NFV Architecture, NFV Concepts, Network Forwarding Graph, NFV Reference Points, NFV Framework Requirements, NFV Use Cases, NFV Proof of Concepts, PoCs, ETSI ISG Timeline, Introduction to, Four Innovations of NFV, Network Function Virtualization, NFV, Why We need NFV?, NFV and SDN Relationship, Mobile Network Functions, ETSI NFV ISG, NFV Specifications, NFV Architecture, NFV Concepts, Network Forwarding Graph, NFV Reference Points, NFV Framework Requirements, NFV Use Cases, NFV Proof of Concepts, PoCs, ETSI ISG Timeline. Video recording available in YouTube.
What is NFV? How does it relate to SDN, what does it mean for the telecommunications industry, and why should anyone outside of that industry care?
Presentation delivered at CloudOpen Europe, Düsseldorf, October 2014
This document discusses Network Function Virtualization (NFV) and its relationship to OpenStack. It provides an overview of NFV and the ETSI NFV specifications. It describes how ETSI NFV defines the virtualization of network functions and services. It also discusses how OpenStack addresses some of the infrastructure requirements for NFV such as multi-hypervisor support, different virtualization models, and exposing network and resource functions. The document presents examples of how NFV would virtualize a media resource function and related descriptors. It concludes by discussing the relationship between ETSI NFV and OpenStack/OPNFV and their collaborative efforts.
SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014SAMeh Zaghloul
This document provides an overview of software defined networking (SDN). It discusses how SDN enables data center teams to use software to efficiently control network resources, compared to traditional network switches. The document outlines several SDN topics and related technologies, including SDN standards, network function virtualization, use cases, sample projects, surveys, case studies, online courses, and software tools. It also includes sections on SDN architecture and how SDN is important for virtual environments and VM mobility.
This document provides an overview of Network Functions Virtualization (NFV) concepts including:
- The NFV architecture separates network functions from proprietary hardware appliances into virtualized network functions (VNFs) that run on commercial off-the-shelf servers.
- The NFV infrastructure (NFVI) provides compute, storage, and networking resources, while the NFV management and orchestration (MANO) framework manages the lifecycles of VNFs and network services.
- Common open source MANO components include OpenStack for NFVI, OpenDaylight as an SDN controller, and Open vSwitch for virtual switching between VNFs. Leading NFV vendors also offer proprietary MANO solutions.
Shaun Walsh digs into some key differences between industry acronyms that is causing confusion in the industry – aka ‘acronym soup.’ Everything from network fabric virtualization (NFV), to software defined networking (SDN), to overlay networking (OVN) to virtual network functions (VNF). He breaks through the confusion, explains the differences and the similarities between some of these industry terms, as well as how Emulex fits into the mix.
NFV is an initiative to virtualize network functions that were previously carried out by dedicated hardware. Alten Calsoft is a pioneer in the NFV space since 2012 and is a member of ETSI NFV ISG. NFV works by decoupling network functions like routers, firewalls, and load balancers from dedicated hardware devices and running them as virtual machines on commercial off-the-shelf servers. A hypervisor manages the virtual machines and allows multiple operating systems to share a single hardware processor or host. Virtual machines can imitate multiple virtual hardware platforms in an isolated manner and enable operating systems like Linux or Windows server to run on the same physical host, saving costs by reducing physical hardware systems.
The document discusses Network Functions Virtualization (NFV) and OpenStack. It provides an overview of NFV, describing what NFV is and its key benefits. It also summarizes the work completed in Phase 1 of the ETSI NFV Industry Specification Group, including published documents on NFV architecture, interfaces, and requirements. The document then presents examples of NFV proofs-of-concept involving virtualized network functions and orchestration using OpenStack. It concludes with a discussion of requirements for integrating NFV and OpenStack, such as support for multiple hypervisors, hardware acceleration, and security.
This document provides an introduction to OpenFlow, SDN, and NFV. It describes the need for new networking paradigms and outlines some of the key problems with traditional networking approaches. OpenFlow is presented as providing open interfaces and programmability to network nodes. SDN is defined as separating the control logic from the forwarding plane and enabling programmable automation through open APIs. NFV aims to virtualize network functions to improve flexibility, reduce costs, and accelerate service deployment using standard IT virtualization technologies.
The document discusses software defined networking (SDN) and network function virtualization (NFV). It outlines an agenda covering SDN and NFV, positioning SDN in infrastructure as a service, and 8 usage scenarios for SDNs and NFVs. These include scenarios from version 1 of the SDN usage model as well as new scenarios. The presentation demonstrates proof of concept work and discusses ongoing work with standards bodies and next steps around control path standardization and storage integration.
We have all heard about the Cloud and, in general, we understand its advantages and disadvantages. But what really happens behind the curtains?
More recently, the concept of Software-Defined Networks (SDN) began to interlace with the Cloud, especially on its IaaS strand (Infrastructure as a Service), for providing computer networks as a service, either as an end in itself or as a means for supplying other resources to be consumed (e.g. virtual machines or network functions).
Especially, but not exclusively, in the telecommunications operators sector, another concept emerged: Network Functions Virtualization (NFV).
NFV allows the use of Cloud, SDN and modern virtualization technologies in order to execute and manage services and network functions in standard servers, increasing homogeneity in data centers and reducing maintenance and operational costs.
At the end of this presentation, the audience will get to know the basics of these three concepts and some examples from the real world. They will know about the the present and a possible future.
The document discusses the role of OPNFV in developing open source platforms for 5G networks. Key points include:
- OPNFV aims to deliver an integrated open source platform to support NFV and cloud-native architectures for 5G networks, focusing on features like network slicing and low latency.
- It works with upstream communities to integrate components like OpenStack and aims to provide a reference platform for operators and vendors.
- Huawei discusses its role and contributions to OPNFV, including leading projects, code commits, and staff. It also demonstrates solutions built on the OPNFV platform.
OPNFV is an open source project that aims to develop an integrated and tested open source platform for network functions virtualization (NFV) to help operators meet increasing demands on networks. The project was launched in September 2014 and is supported by telecom operators and vendors. It will integrate existing open source NFV components and develop new code to provide a carrier-grade reference platform for NFV that supports performance, scale, and reliability requirements of networks.
1. The document discusses the convergence of IT and telecommunications (CT) infrastructure through OpenStack and network functions virtualization (NFV).
2. It provides an overview of relevant industry trends like software-defined networking and computing. It also discusses the perspectives and interests of telco operators and NFV.
3. The document identifies challenges for deploying network functions on OpenStack clouds, such as the need for cross-data center resource scheduling and affinity scheduling to meet telco application requirements for high availability. It proposes solutions like service container-based resource allocation and an application-centric networking platform.
Network functions virtualization (NFV) is a network architecture concept that uses the technologies of IT virtualization to virtualized entire classes of network node functions into building blocks that may connect, or chain together, to create communication services.
Network Function Virtualization (NFV) BoF, by Santanu Dasgupta.
A presentation given at the APNIC 40 APNIC Network Function Virtualization (NFV) BoF session on Tue, 8 Sep 2015.
This document provides an overview of SDN, NFV, and VNF technologies. It explains that network infrastructure is transitioning from proprietary hardware devices to software-enabled commodity hardware, similar to the earlier transition of servers to virtual machines. The document discusses the definitions and concepts of SDN, NFV, and VNFs, how they provide benefits like reduced costs, increased flexibility and scalability. It also addresses why these technologies are gaining adoption now due to improvements in software, hardware, and ecosystems that support them.
Software-Defined Networking(SDN):A New Approach to NetworkingAnju Ann
This document provides an overview of Software-Defined Networking (SDN). It discusses how SDN decouples the network control plane from the forwarding plane, allowing for centralized control and programmability. The key components of the SDN architecture include OpenFlow switches, an SDN controller, and northbound and southbound APIs. OpenFlow is described as the primary southbound protocol, allowing the controller to program how packets are handled by switches. Example applications of SDN mentioned are network slicing and multi-tenancy in cloud computing. Challenges for SDN adoption are also noted.
Introduction to Network Function Virtualization (NFV)rjain51
Class lecture by Prof. Raj Jain on Introduction to Network Function Virtualization (NFV). The talk covers Four Innovations of NFV, Network Function Virtualization, NFV, Why We need NFV?, NFV and SDN Relationship, Mobile Network Functions, ETSI NFV ISG, NFV Specifications, NFV Architecture, NFV Concepts, Network Forwarding Graph, NFV Reference Points, NFV Framework Requirements, NFV Use Cases, NFV Proof of Concepts, PoCs, ETSI ISG Timeline, Introduction to, Four Innovations of NFV, Network Function Virtualization, NFV, Why We need NFV?, NFV and SDN Relationship, Mobile Network Functions, ETSI NFV ISG, NFV Specifications, NFV Architecture, NFV Concepts, Network Forwarding Graph, NFV Reference Points, NFV Framework Requirements, NFV Use Cases, NFV Proof of Concepts, PoCs, ETSI ISG Timeline. Video recording available in YouTube.
What is NFV? How does it relate to SDN, what does it mean for the telecommunications industry, and why should anyone outside of that industry care?
Presentation delivered at CloudOpen Europe, Düsseldorf, October 2014
This document discusses Network Function Virtualization (NFV) and its relationship to OpenStack. It provides an overview of NFV and the ETSI NFV specifications. It describes how ETSI NFV defines the virtualization of network functions and services. It also discusses how OpenStack addresses some of the infrastructure requirements for NFV such as multi-hypervisor support, different virtualization models, and exposing network and resource functions. The document presents examples of how NFV would virtualize a media resource function and related descriptors. It concludes by discussing the relationship between ETSI NFV and OpenStack/OPNFV and their collaborative efforts.
SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014SAMeh Zaghloul
This document provides an overview of software defined networking (SDN). It discusses how SDN enables data center teams to use software to efficiently control network resources, compared to traditional network switches. The document outlines several SDN topics and related technologies, including SDN standards, network function virtualization, use cases, sample projects, surveys, case studies, online courses, and software tools. It also includes sections on SDN architecture and how SDN is important for virtual environments and VM mobility.
This document provides an overview of Network Functions Virtualization (NFV) concepts including:
- The NFV architecture separates network functions from proprietary hardware appliances into virtualized network functions (VNFs) that run on commercial off-the-shelf servers.
- The NFV infrastructure (NFVI) provides compute, storage, and networking resources, while the NFV management and orchestration (MANO) framework manages the lifecycles of VNFs and network services.
- Common open source MANO components include OpenStack for NFVI, OpenDaylight as an SDN controller, and Open vSwitch for virtual switching between VNFs. Leading NFV vendors also offer proprietary MANO solutions.
Shaun Walsh digs into some key differences between industry acronyms that is causing confusion in the industry – aka ‘acronym soup.’ Everything from network fabric virtualization (NFV), to software defined networking (SDN), to overlay networking (OVN) to virtual network functions (VNF). He breaks through the confusion, explains the differences and the similarities between some of these industry terms, as well as how Emulex fits into the mix.
NFV is an initiative to virtualize network functions that were previously carried out by dedicated hardware. Alten Calsoft is a pioneer in the NFV space since 2012 and is a member of ETSI NFV ISG. NFV works by decoupling network functions like routers, firewalls, and load balancers from dedicated hardware devices and running them as virtual machines on commercial off-the-shelf servers. A hypervisor manages the virtual machines and allows multiple operating systems to share a single hardware processor or host. Virtual machines can imitate multiple virtual hardware platforms in an isolated manner and enable operating systems like Linux or Windows server to run on the same physical host, saving costs by reducing physical hardware systems.
The document discusses Network Functions Virtualization (NFV) and OpenStack. It provides an overview of NFV, describing what NFV is and its key benefits. It also summarizes the work completed in Phase 1 of the ETSI NFV Industry Specification Group, including published documents on NFV architecture, interfaces, and requirements. The document then presents examples of NFV proofs-of-concept involving virtualized network functions and orchestration using OpenStack. It concludes with a discussion of requirements for integrating NFV and OpenStack, such as support for multiple hypervisors, hardware acceleration, and security.
This document provides an introduction to OpenFlow, SDN, and NFV. It describes the need for new networking paradigms and outlines some of the key problems with traditional networking approaches. OpenFlow is presented as providing open interfaces and programmability to network nodes. SDN is defined as separating the control logic from the forwarding plane and enabling programmable automation through open APIs. NFV aims to virtualize network functions to improve flexibility, reduce costs, and accelerate service deployment using standard IT virtualization technologies.
The document discusses software defined networking (SDN) and network function virtualization (NFV). It outlines an agenda covering SDN and NFV, positioning SDN in infrastructure as a service, and 8 usage scenarios for SDNs and NFVs. These include scenarios from version 1 of the SDN usage model as well as new scenarios. The presentation demonstrates proof of concept work and discusses ongoing work with standards bodies and next steps around control path standardization and storage integration.
We have all heard about the Cloud and, in general, we understand its advantages and disadvantages. But what really happens behind the curtains?
More recently, the concept of Software-Defined Networks (SDN) began to interlace with the Cloud, especially on its IaaS strand (Infrastructure as a Service), for providing computer networks as a service, either as an end in itself or as a means for supplying other resources to be consumed (e.g. virtual machines or network functions).
Especially, but not exclusively, in the telecommunications operators sector, another concept emerged: Network Functions Virtualization (NFV).
NFV allows the use of Cloud, SDN and modern virtualization technologies in order to execute and manage services and network functions in standard servers, increasing homogeneity in data centers and reducing maintenance and operational costs.
At the end of this presentation, the audience will get to know the basics of these three concepts and some examples from the real world. They will know about the the present and a possible future.
The document discusses the role of OPNFV in developing open source platforms for 5G networks. Key points include:
- OPNFV aims to deliver an integrated open source platform to support NFV and cloud-native architectures for 5G networks, focusing on features like network slicing and low latency.
- It works with upstream communities to integrate components like OpenStack and aims to provide a reference platform for operators and vendors.
- Huawei discusses its role and contributions to OPNFV, including leading projects, code commits, and staff. It also demonstrates solutions built on the OPNFV platform.
OPNFV is an open source project that aims to develop an integrated and tested open source platform for network functions virtualization (NFV) to help operators meet increasing demands on networks. The project was launched in September 2014 and is supported by telecom operators and vendors. It will integrate existing open source NFV components and develop new code to provide a carrier-grade reference platform for NFV that supports performance, scale, and reliability requirements of networks.
OPNFV is an open source project that aims to accelerate the introduction of new NFV products and services. It provides a carrier-grade, integrated platform built from upstream open source NFV components like OpenStack, OpenDaylight, OVS, and Ceph. OPNFV's first release, Arno, provides an initial build of the NFV Infrastructure and Virtual Infrastructure Manager components. The project works with upstream communities to integrate new requirements and features on a continuous basis through collaboration, deployment and testing efforts.
Network Function Virtualization - Security Best Practices AtlSecCon 2015Winston Morton
Network Function Virtualization (NFV) introduces the concepts of control and data planes and allows network functions like routing, firewalls, and VPNs to run as software on commercial off-the-shelf servers. This makes the network more flexible and scalable. NFV is complementary to Software Defined Networking and together they allow scalable cloud applications. The ETSI NFV ISG is working to standardize NFV. Challenges include evolving standards, security risks during initial complex deployments, and ensuring security between control and data planes. Opportunities include rapid provisioning, flexibility, cost savings, and innovation. Traditional network security best practices still apply to NFV.
NFV promises to do to carrier networks what Cloud has done to enterprise computing. NFV has been a part of CloudStack in order to scale and perform effectively. This presentation gives an overview of how and why NFV is used in CloudStack. This was presented at the NFV and SDN Summit on March 20, 2014 in Paris
This document provides an overview of RYU, including its environment setup, basic operations, application development, and RESTful API. RYU is an SDN framework written in Python that supports various protocols including OpenFlow. It uses a component-based architecture that allows network applications to register to receive events from the data path. Applications can then program flow entries by communicating with OpenFlow switches via the controller.
During the OPNFV Mini Summit at the 2015 NFV World Congress, Chris Price, the OPNFV TSC chair, gave a talk detailing the community’s vision for the initial release of OPNFV, Arno, and expectations moving forward.
Dr. Christos Kolias – Senior Research Scientist
Keynote Title: “NFV: Empowering the Network”
Keynote Abstract: Network Functions Virtualization (NFV) envisions and promises to change the service provider landscape and has emerged as one of one of today’s significant trends. Although less than two years old, NFV has garnered the industry’s full attention and support. Moving swiftly, a number of key accomplishments have already taken place, and a lot more work is currently under way within ETSI NFV while we are embarking on its future phase. Various proofs-of-concepts (ranging from vEPC to vCPE, vIMS and vCDN) are being developed while issues such as open source and SDN are becoming key ingredients as the can play a pivotal role.
Dr. Christos Kolias' Bio: Christos Kolias is a senior research scientist at Orange Silicon Valley (a subsidiary of Orange). Christos is a co-founder of the ETSI NFV group and had led the formation of ONF’s Wireless & Mobile working group. He has lectured on NFV and SDN at several events. Christos has more than 15 years of experience in networking, he is the originator of Virtual Output Queueing (VOQ) used in packet switching. He holds a Ph.D. in Computer Science from UCLA.
---------------------------------------------------
★ Resources ★
Zerista: http://lcu14.zerista.com/event/member/137765
Google Event: https://plus.google.com/u/0/events/cpeksim4hr4ghhuufv5ic4viirs
Video: https://www.youtube.com/watch?v=tFDnj_342n4&list=UUIVqQKxCyQLJS6xvSmfndLA
Etherpad: http://pad.linaro.org/p/lcu14-400a
---------------------------------------------------
★ Event Details ★
Linaro Connect USA - #LCU14
September 15-19th, 2014
Hyatt Regency San Francisco Airport
---------------------------------------------------
http://www.linaro.org
http://connect.linaro.org
Evolution or Revolution? Strategies for Telecom Billing TransformationFlorian Gröne
As the telecom industry looks to improve the customer experience in all aspects of its business, the billing process is finally getting the attention it has long needed. Critical as it is to replace these old systems, the huge scale and daunting expense of such projects—easily approaching US$100 million and more—have made many operators reluctant to proceed. Operators must analyze their particular needs and business models, and then choose one of an evolutionary or a revolutionary approach.
eircom wanted to transform its billing and support systems (BSS) to offer integrated bundles and digital services. Bohill was hired as project lead to manage the complex transformation programme on time and on budget. Bohill fully integrated with eircom resources and managed vendors to help eircom realize its strategic goals. The programme was successfully delivered, transforming eircom's BSS and enabling it to offer new multi-play offers and support future business needs. The managing director of eircom praised Bohill's key role in the project's success.
Examining the Role of SDN and NFV in the Move Towards LTE-A and 5th Generation Alberto Boaventura
This document discusses the roles of SDN and NFV in enabling 5G/LTE-A networks. SDN and NFV can help address challenges of increasing traffic capacity demands through network functions virtualization and software-defined control of network resources. This allows dynamic allocation of resources through network slicing and virtualization. SDN control can also help with interference avoidance through coordination of resources across virtual base stations in a centralized RAN architecture. Overall, SDN and NFV provide mechanisms for elastic, on-demand provisioning of network capacity needed to support the high traffic demands of evolving 5G technologies.
How did KPN experience its digital transformation in cooperation with Comarch? How can other Telecom operators learn from KPN's best practices? Strenghten - Simplify - Grow are three key words describing KPN's transition.
Frank Brockners, OPNFV TSC member and distinguished engineer with Cisco, presented "Deploy it, test it, run your VNF" during the OPNFV mini-summit as part of the 2015 NFV World Congress.
Summit 16: The Open Source NFV Eco-system and OPNFV's Role ThereinOPNFV
This document discusses the open source NFV ecosystem and the role of OPNFV within it. It begins by describing how various open source projects contribute pieces to the NFV puzzle. It then outlines OPNFV's goals of composing these projects to create simple and self-managing infrastructure for deploying applications and services. The document details how OPNFV releases like Arno and Brahmaputra have integrated and tested different components and scenarios. It also explains how OPNFV projects work to enhance existing open source software and integrate them in a way that brings developers closer to their goals.
Network Function Virtualization (NFV) using IOS-XRCisco Canada
Network Function Visualization (NFV) is being heavily adapted in Service Providers, Enterprise Network, and data center market segments. IOS-XRv 9000 and IOS XRv offer NFV functionality leveraging Cisco IOS-XR's already proven and time-tested deployment of this network OS in the field. The session will go over the fundamentals of NFV, introduces virtual flavors of IOS-XR and their use cases as virtual Route Reflector (vRR) and virtual Provider Edge (vPE), as well as demonstrate how these use-cases bring improvement and efficiency to the network implementation. In this session the attendees will be offered a hands-on experience of deploying IOS-XRv 9000 in a virtual environment, explore its basics, and configure it as a virtual device.
The document discusses service delivery platforms (SDPs) and their role in telecom business transformation. Some key points:
1) SDPs aim to overlay numerous service silos with a horizontal platform to reduce costs, speed up service creation, and stimulate innovation.
2) In reality, service providers must deal with multiple SDPs due to different service classes and lack of standardization.
3) SDPs can enable new business models for telecom companies and fuel their service catalogs if they overcome challenges around business cases, investments, and integrating with other systems.
Network Service Business: Transformation with Service Provider SDN, NFV and C...Ericsson
The document discusses how SDN, NFV, and cloud technologies can enable network and service transformation for telecommunications providers. It addresses how these technologies can help improve network efficiency, agility, and innovation by virtualizing network functions, scaling functions to the cloud, and using SDN for cross-domain control. The transformation will take time and coordination between SDN, NFV, and cloud platforms. Ericsson discusses various use cases, business cases, and approaches to planning the network transformation through consulting, strategy, and system integration services.
Summit 16: Automated Platform for Testing VNF Performance and Interoperabili...OPNFV
VNF sizing is one of the big issues for users, integrators and also venders/providers of VNF. In legacy system, network functions are integrated in the systems with carefully sizing by estimated performance metrics, but in NFV, performance and metrics of VNF are depends on flavors. To decide which flavor is suitable for requirements, we have to know the basic data of each metrics with variable flavors. But there are many parameters, so automatic testing is necessary. We had developed the test automation system of VNF that can automatically conducting the sequence of tests with variable parameters such as number of core, memory size, interface speed, etc. We already created the test cases that evaluate BGP interoperability of virtual router and performance test of Cisco, Juniper, Brocade, and so on. We think the activity is similar to Yardstick, so we would like to collaborate with them. In this talk, we summarize our activities and development result, and introducing our latest plan to collaborate with OPNFV.
Software defined networking(sdn) vahid sadriVahid Sadri
This document provides an overview of software-defined networking (SDN) and network functions virtualization (NFV). It discusses the motivation for SDN and NFV, including making networks more flexible and reducing costs. Key benefits mentioned are reduced equipment costs, increased speed of service deployment, and more flexible allocation of network resources. OpenFlow is introduced as an SDN protocol. The relationship between SDN and NFV is explored, noting they are complementary approaches. Examples of potential applications of NFV are listed.
This document summarizes network softwarization trends, challenges, and research efforts. It discusses how telecommunications companies are shifting their focus from hardware-centric to software-centric networks. This allows for more flexible and agile networks through technologies like Network Functions Virtualization (NFV) and Software-Defined Networking (SDN). NFV aims to virtualize network functions on commodity hardware, while SDN separates the control and data planes for increased programmability. The document outlines trends driving these changes, challenges faced by network operators, and several ongoing research projects exploring NFV, SDN, and their synergies to realize the benefits of software-defined networks.
NFV aims to reduce network operators' costs and improve service delivery speeds by using virtualization technology to consolidate network functions onto industry-standard servers and switches located in data centers. This allows functions like routing, firewalls, and load balancing to be delivered as software rather than via proprietary hardware appliances. NFV promises benefits like reduced capital and operational expenditures, increased flexibility and agility to deploy new services, and easier scaling of network functions. The ETSI NFV working group is working to define requirements and approaches for NFV implementation through industry collaboration.
Research Challenges and Opportunities in the Era of the Internet of Everythin...Stenio Fernandes
Currently there is increasing interest in scientific research on network traffic management for advanced scenarios (e.g. Internet of Everything (IoE), Everything as a Service (XaaS), Smart Cities, and the like) and their respective demands for novel network services. Such networked applications bring massive amounts of traffic data to be processed in real-time, thus driving researchers to develop affordable yet efficient network management systems. In fact, new paradigms, services, and architectures, such as Network Virtualization (NV), Software-Defined Networking (SDN), Distributed Cloud Computing, Network Functions Virtualization (NFV), Service Function Chaining (SFC), etc, will require robust and dynamic capabilities to support a myriad of possibilities for applications from the IoE and XaaS concepts. For example, there is a need for an in-depth understanding of the composition and the dynamics of Internet traffic to perform accurate capacity planning, deploy efficient management policies and pricing strategies, assess protocol performance, and detect abnormalities in such scenarios. Research on measurement, modeling, and analysis of network traffic and infrastructure always face new challenges as new applications are continuously deployed.
In this talk, I will discuss the rise of IoE and XaaS as well as the demand for advanced networking services, paradigms, and architectures (e.g., SDN, NFV). I will give an overview of some challenges, opportunities, and directions in these research topics.
This document discusses software-defined networking (SDN) and network functions virtualization (NFV) and their potential to transform communications networks. It describes how SDN/NFV can enable dynamic, on-demand provisioning of network services, reduce costs through commoditization of hardware, and support advanced network management capabilities. The document outlines Fujitsu's SDN/NFV platform and ecosystem, which provides orchestration, control, and virtualization tools to enable a flexible, interoperable, multi-layer network architecture.
This document provides a summary of Christian Esteve Rothenberg, a professor researching network functions virtualization and software defined infrastructures. It outlines his professional experience which includes positions at University of Campinas and CPqD R&D Center in Telecommunication. It also lists his research interests such as SDN, NFV, ICN and various open source projects he has led like Mininet-WiFi and libfluid. The document discusses some of his research questions around NFV/SDN including VNF benchmarking and multi-domain orchestration.
Network service providers—those with access networks like DSL, cable, or mobile—continue
to face a dual threat: rising operating expenses associated with explosive bandwidth growth
and declining revenues driven by commoditization. A true Telco cloud, featuring automation
and dynamic scalability, becomes a comprehensive delivery platform enabling network service
providers to offer differentiated services that solve their customer’s business demands.
The document discusses the promise of SDN for transport networks. It notes changing business and usage models are driving the need for more elastic, on-demand networks. SDN can help by providing programmable control of optical networks through standardized interfaces. The OIF and ONF conducted a global demo of transport SDN using an application for cloud bursting over optical networks. This identified gaps around multi-domain control and relationships between controllers and network management. Wider SDN deployment faces challenges around operational simplicity, scalability, security and continuous availability. Multiple SDOs are working on related standards but alignment is still needed.
Delivering Composable NFV Services for Business, Residential and Mobile EdgePLUMgrid
In this talk, Principal architects will share considerations in designing virtual infrastructure to deliver vCPE and vPE based services. The speakers will provide some background on service function chaining, service edge routing, Openstack clouds and discuss virtualized architectures that can solve Service Provider problems to achieve agility and richness of cloud based services
The document discusses leveraging SDN and NFV technologies to support 5G networks in emerging markets. It outlines the vision of 5G including enhanced mobile broadband, massive machine communications, and ultra-reliable low latency communications. It then describes the research group's objectives to provide thought leadership, develop human capital, drive innovation, and contextualize technologies for emerging market use cases. The group is developing an SDN/NFV testbed to demonstrate network slicing, edge computing, IoT connectivity, and more.
Future networks including cloud computing, mobile and next-generation networks
This document discusses future networks and related technologies being studied by ITU-T Study Group 13, including 5G, software-defined networking, cloud computing, big data, mobility management, and more. It provides an overview of the study group's mandate, leadership structure, and work items covering requirements, architectures, and mechanisms for future networks.
This paper focuses on the evolutionary stages for cloudification then covers the key software building blocks that will be needed to enable NFV, and ultimately ICT transformation to 5G. It describes how Intel® Open Networking Platform (Intel® ONP) Server running on innovative new networking platforms based on Intel® silicon can help reduce the cost and effort required for service providers and vendors alike to adopt and deploy SDN and NFV architectures.
Текущее состояние рынка SDN/NFV и Huawei на нём. Взгляд с трех основных напра...ARCCN
Эдуард Василенко — директор по развитию решений SDN/NFV компании Huawei с докладом «Текущее состояние рынка SDN/NFV и Huawei на нём. Взгляд с трех основных направлений: услуги, бизнес-процессы, технологии»
Achievements and future works of ITU-T Study Group 13 on Future networks including cloud computing, mobile and next-generation networks
Presented at WTSA-16 by Mr Leo Lehmann, Chairman of ITU-T Study Group 13
This presentation discusses the design and evaluation of two open-source implementations of the LTE EPC, one based on SDN principles and the other based on NFV, and presents a performance comparison of the two approaches. Speaker: Mythili Vutukuru
SDN and NFV both aim to virtualize and commoditize network hardware to reduce costs and increase flexibility. SDN separates the control plane from the data plane to allow centralized control of network behavior via software. NFV virtualizes network functions like firewalls and load balancers that were traditionally hardware appliances. Both seek to standardize networking functions through open source projects and standards bodies like ONF for SDN and ETSI for NFV. Major implementations include OpenStack for virtual infrastructure, OpenDaylight as an SDN controller, and OpenFlow as the SDN protocol. While complementary, SDN and NFV face challenges around vendor support and complexity that could slow wide adoption.
SDN and NFV both aim to virtualize and commoditize network hardware to reduce costs and increase flexibility. SDN separates the control plane from the data plane to allow centralized programming of network behavior, while NFV virtualizes network functions that were traditionally hardware-based appliances. The two technologies complement each other and are being developed through open standards and open source projects to drive industry adoption. Major challenges include developing common frameworks and ensuring interoperability between solutions.
Abstract:
Following the state of the art is paramount for sound and impact scientific practices informed strategic R&D decisions. This seminar seeks two main contributions: (i) providing a 10,000 foot view of 10 selected hot topics in networking, and (ii) Overview of recent practices in scientific events (e.g. Digitalization, Submission deadlines revisited, Open Science, Artifact Review Badging).
The 10 selected hot topics are as follows:
Intent-Based Networking (IBN)
Zero-Touch Management (ZTM)
Digital Twins (Networking for Digital Twins & Network Digital Twins)
Metaverse
Blockchain Networking
AI/ML (Network protocols meet AI/ML, Machine Learning for Networking)
High precision networking
Quantum Communications & Computing
6G (Beyond 5G)
OpenRAN
This is the welcome lecture for IA377. Topics to be addressed:
Organization
Seminar Dynamics
Evaluation
Tentative Topics and Schedule
Round of introductions
https://ia377-feec-unicamp.github.io/classes/2023/03/02/Welcome.html
This introductory lecture for IA377 will be devoted to the topic of “Literature Review”.
What is a literature review?
Methodology, best practices, tips, tools, etc.
Practical example
Application to IA377 seminar activities.
https://ia377-feec-unicamp.github.io/classes/2023/03/09/Literature-Review.html
Redes LTE Comunitárias no Brasil: Modelamento, Implantação e Manutenção Sustentáveis com base em Novos Paradigmas de Redes.
Projeto financiado pela FAPESP Processo: 18/23101-0
Resumo
Em relatório publicado pelo Comitê Gestor da Internet no Brasil (CGI.br) em 2018, em termos de acesso à Internet por banda larga no Brasil, há uma ampla desigualdade entre as classes econômicas A/B (maior) e D/E (menor), fato evidenciado nas análises entre as áreas urbanas e rural. Além de evidenciar que cerca de 34% dos brasileiros ainda não possuem acesso à Internet, o relatório também explica que o acesso à Internet é um catalisador de desenvolvimento social, econômico e tecnológico: fato consagrado em diversas pesquisas internacionais e enfatizado pela organização Internet Society. Redes sem fio comunitárias têm se tornado um meio sustentável de promover meios acessíveis de conexão à Internet,tanto em áreas rurais remotas quanto em regiões urbanas densas. Em sua ampla maioria, redes sem fio comunitárias adotam a tecnologia wifi, no entanto apenas recentemente, devido ao desenvolvimento de tecnologias de código livre e de baixo custo, o padrão Long-Term Evolution (LTE) começou a ser explorado para estes fins. Logo, não há conhecimento na literatura acadêmica de estudos que busquem utilizar e melhorar o padrão LTE aplicado à redes sem fio comunitárias. Nesse escopo, esta proposta busca trazer conceitos inovadores de novos paradigmas de redes, Redes Definidas por Software (Software Defined Networks -SDN) e Virtualização de Funções de Rede (Network Functions Virtualization - NFV), para o desenvolvimento de redes LTE comunitárias. Por meio de uma metodologia ágil de testes,conceitos de SDN e NFV serão aplicados no desenvolvimento de mecanismos que realizem o gerenciamento inteligente de recursos de redes LTE comunitárias visando desempenho eficiente e tolerância a falhas robusta, i.e., a sustentabilidade da rede. Todos estes estudos serão feitos tendo por base um levantamento de características de redes sem fio comunitárias em operação no Brasil proposto para o início do projeto. Ao final, a execução desta proposta irá produzir um material didático elucidando as formas de modelamento, implantação, e manutenção sustentável de uma rede LTE comunitária nos moldes dos estudos realizados por esta proposta (i.e., com todos os dados, avaliações, metodologias, e protótipos). Este material será utilizado como base de uma proposta de implantação de uma rede LTE comunitária no Brasil junto ao programa "Beyond the Net" da Internet Society.
Evento: https://www.lasse.ufpa.br/co5gam/
Video: https://www.youtube.com/watch?v=5dEb9oIAaPY
3rd Workshop on Advances in Slicing for Softwarized Infrastructures (S4SI 2020)
Panel: Network Slicing is multifaceted but does its approach and understanding need to be fragmented?
Abstract: Network Slicing keeps growing in significance in the academic and industrial communities. Network Slicing can be defined from different functional or behavioral perspectives, as well as from different viewpoints depending on the stakeholder (e.g., verticals, solution providers, infrastructure owners) and the technical domain (e.g. cloud data centers, radio access, packet/optical transport networks). Standardization bodies and open source projects are being involved in some forms of network slicing support. How far are these views from each other? Is fragmentation leading to incompatible approaches or is there some hope of convergence, at least at conceptual levels? What is the next frontier in Network Slicing? These and other questions will be thrown to our panel experts after introducing their lightning viewpoints.
Moderator: Christian Esteve Rothenberg, University of Campinas, Brazil
Panel Members
Constantine Polychronopoulos, Juniper Networks, USA
Uma Chunduri, Futurewei, USA
Slawomir Kuklinski, Orange Poland and Warsaw University of Technology, Poland
Stuart Clayman, University College London, UK
Augusto Venancio Neto, Federal University of Rio Grande do Norte, Brazil
The document summarizes several demos of a cloud network slicing platform called NECOS. It describes demos of multi-tenant network slicing with two example services, a scalability demo over Fed4Fire, lightweight slicing with VIM, and intelligent orchestration of slices using machine learning. The goals are to create two end-to-end cloud network slices between Brazil and Europe, one for an IoT service using the Dojot platform and one for a touristic CDN video service. It demonstrates the slices, services, and horizontal elasticity functionality.
The document provides a summary of the NECOS Project Technical Highlights from an industrial workshop held on October 18th, 2019. It discusses the following key points:
- The NECOS approach of Lightweight Slice Defined Cloud (LSDC) to abstract, isolate, orchestrate, and separate logical behaviors from physical network and cloud resources.
- Results and achievements of the project including developing the LSDC platform, Slice-as-a-Service model, use case specifications and scenarios, architecture design, and five prototype demos.
- Dissemination efforts including numerous publications, contributions to standards bodies, workshops organized, keynotes sponsored, and tutorials held to promote the project outcomes.
The document proposes a network slicing technique for IEEE 802.11ah networks that dynamically manages radio resources by reconfiguring Restricted Access Window (RAW) parameters over time. A Virtual Network Slicing Broker is introduced as a virtual network function that defines network slices based on service features and quality of service restrictions. It communicates with an IEEE 802.11ah access point to monitor network statistics and enforce slicing configurations using a static or dynamic approach. Simulation results show the dynamic approach allows the broker to reallocate resources between slices by updating the RAW configurations, improving overall network performance.
The 5G-RANGE project aims to provide broadband internet access to remote and rural areas using unused TV white space spectrum in an economically viable way. The project involves developing a new 5G access network architecture that uses cooperative spectrum sensing to identify unused TV channels and allows 5G signals from a base station to opportunistically transmit in the vacant channels. The project has 10 partners and will run for 30 months, developing a proof-of-concept using software-defined radios to demonstrate the new cognitive MAC layer and dynamic spectrum access capabilities.
5G technology will connect the world through a wireless infrastructure and multifunctional platform using multiple spectrum bands to meet various requirements and use cases. 5G enables innovations like mobile network architecture evolution towards cloud RAN and network virtualization. It utilizes a 5G core, network slicing to partition resources, and multi-access edge computing to help reduce latency, which is important for applications like AR/VR. Optical transport networks will be essential for 5G given maximum transport distances of 20 km.
Network slicing allows building logical networks on a shared infrastructure. Each slice is designed for a business purpose and comprises all required resources. Slices are created, changed, and removed by management functions. Slices are defined using Network Slice Templates that describe the structure, components, and configuration. Network Slice Instances are realized by configuring and instantiating resources and network functions. Automation is key to managing the complexity of multiple slices.
Nokia's network slicing automation vision involves hierarchical closed-loop management across domains using a unified data model. This includes end-to-end service orchestration, assurance, and slice-specific network functions and data layers managed by domain controllers and an NFV orchestrator. AI/ML is used across various layers for tasks like capacity planning, inventory, and experience assurance.
RNP is the national advanced network for higher education, research, and innovation institutions in Brazil. It connects over 600 organizations and 1,500 campuses across Brazil. RNP developed a software defined infrastructure (SDI) composed of an overlay SDN and nationwide distributed edge cloud with an orchestration platform to provision remote computing and networking resources using open source solutions. The SDI supports evolving RNP's existing applications and services to a hybrid cloud model and allows new methods of validation, testing, and provisioning. Current activities with the SDI include improving network and application architectures, automation, security, and advanced services like CDN and video delivery.
5G networks and cloudification enable network slicing, which provides logical network segments tailored for specific use cases and customers. Key points:
- 5G requirements like high bandwidth, low latency, and reliability, combined with network virtualization through cloudification, allow networks to be sliced for different customer needs.
- Slicing provides dedicated virtual networks on a shared physical infrastructure for various use cases like enhanced mobile broadband, massive IoT, and critical communications.
- An end-to-end network slice spans the radio access network, core network, transport network, and edge computing resources, and is orchestrated as one unified product for customers.
Towards Deep Programmable Slicing. IEEE Netsoft'19 Distinguished Expert Panel Theme: Barriers and Frontiers of Softwarization for the Network of 2030, Paris, 2019. https://netsoft2019.ieee-netsoft.org/program/distinguished-expert-panel/
This document provides an overview of network refactoring and offloading trends, including fluid network planes. It discusses the evolution of SDN from 2009 to 2019 and concepts like network softwarization. Instances of fluid network planes are described, such as RouteFlow, NFV layers, and VNF offloading to hardware or multi-vendor P4 fabrics. The document also covers slicing for IoT analytics and references recent works on in-network computing, fast connectivity recovery, and scaling distributed machine learning with in-network aggregation.
The NECOS project focuses on cloud slicing as a novel approach to provide uniform management and automation over federated data centers and network domains. It introduces lightweight processes and technologies to deliver simplified and resource-efficient usage of currently separated computing, connectivity, and storage domains. The goal is to address limitations of current cloud infrastructures and respond to new service demands through a reference implementation of "Slice as a Service" based on resource virtualization.
Talk at WRNP/SBRC on 5-May-2018 (https://wrnp.rnp.br/programacao) presenting the state of affairs on Network Service Orchestration (NSO) and its role in the evolving landscape of network softwarization. Based on the NSO survey; https://arxiv.org/abs/1803.06596
Honeypots Unveiled: Proactive Defense Tactics for Cyber Security, Phoenix Sum...APNIC
Adli Wahid, Senior Internet Security Specialist at APNIC, delivered a presentation titled 'Honeypots Unveiled: Proactive Defense Tactics for Cyber Security' at the Phoenix Summit held in Dhaka, Bangladesh from 23 to 24 May 2024.
Securing BGP: Operational Strategies and Best Practices for Network Defenders...APNIC
Md. Zobair Khan,
Network Analyst and Technical Trainer at APNIC, presented 'Securing BGP: Operational Strategies and Best Practices for Network Defenders' at the Phoenix Summit held in Dhaka, Bangladesh from 23 to 24 May 2024.
HijackLoader Evolution: Interactive Process HollowingDonato Onofri
CrowdStrike researchers have identified a HijackLoader (aka IDAT Loader) sample that employs sophisticated evasion techniques to enhance the complexity of the threat. HijackLoader, an increasingly popular tool among adversaries for deploying additional payloads and tooling, continues to evolve as its developers experiment and enhance its capabilities.
In their analysis of a recent HijackLoader sample, CrowdStrike researchers discovered new techniques designed to increase the defense evasion capabilities of the loader. The malware developer used a standard process hollowing technique coupled with an additional trigger that was activated by the parent process writing to a pipe. This new approach, called "Interactive Process Hollowing", has the potential to make defense evasion stealthier.
1. Minicurso 1
Network Function Virtualization:
Perspectivas, Realidades e Desafios.
Autores:
Raphael Rosa (UNICAMP)
Marcos Siqueira (UNICAMP)
Emerson Barea (UFSCar)
Cesar Marcondes (UFSCar)
Christian Rothenberg (UNICAMP)
XXXII Simpósio Brasileiro de
Redes de Computadores e Sistemas Distribuídos
Florianópolis, 5 a 9 de Maio de 2014
2. A joint operator push to the IT and Telecom industry,
to provide a new network production environment,
based on modern virtualization technology,
to lower cost, raise efficiency and to increase agility.
Network Functions Virtualisation (NFV)
A joint operator initiative and
call-for-action to industry
We believe Network Functions Virtualisation is applicable to any data plane packet processing
and control plane function in fixed and mobile network infrastructures (WP)
3. Agenda
• Motivation;
– Problem Statement, Trends in IT & Telecom challenges
• Network Functions Virtualization
– Vision; Approach; Benefits & Promises
– The ETSI NFV ISG; WG; Architecture
• NFV Requirements and Challenges
• Use Cases, Proof-of-Concepts
• Enabling Technologies
• DEMO: Vyatta
4. Motivation
Problem Statement
• Complex carrier networks
– with a large variety of proprietary nodes and hardware appliances.
• Launching new services is difficult and takes too long
– Space and power to accommodate
– requires just another variety of box, which needs to be integrated.
• Operation is expensive
– Rapidly reach end of life
– due to existing procure-design,-
integrate-deploy cycle.
Network functionalities are based on specific HW&SW
One physical node per role
Traditional Network model
5. Sisyphus on Different Hills
Telco Operators
Equipment
Vendors
SDOs
2-6 Years
Demand
Drive
Standardise
Implement
Sell
Deploy
Critical mass of
supporters
Develop Deploy Publish
2-6 Months
Telco Cycle Service Providers Cycle
2-6 years 2-6 months
Service Providers
AVAILABLE AVAILABLE
Idea !! Idea !!
Source: Adapted from D. Lopez Telefonica I+D, NFV
6. • Very intensive
in hardware
• Software not at
the core
• Very intensive
in software
• Hardware is a
necessary base
x
HARDWARE SOFTWARE+
-
+
-
Traditional telcos Internet players
Adapt to survive: Telco evolution focus shifting from hardware to software
Source: Adapted from D. Lopez Telefonica I+D, NFV
Enter the Software-Defined Era
Google, FacebookAT&T, Telefonica,
Telebras
7. • Manual Switching
• Very intensive in
human resources
• Era dominated by
hardware
Early twentieth century
• Electromechanical
Switching
• Less intensive in
human resources
• Era dominated by
complex hardware
x
Mid-twentieth century
x
• Digital Switching
• Much less intensive in
human resources
• Era dominated by
complex and specific
hardware. Software
appears and is important
• Services defined by telco
Second half of the twentieth century
• Internet connectivity
opens the door to the
development of OTT
services (without
operator)
• Software becomes a
differentiation asset
x
Early twenty-first century
Virtualization technologies enables
overcoming physical constraints and
generating multiplexing gains…
Scale and Virtualization in the Timeline
Source: Adapted from D. Lopez Telefonica I+D, NFV
8. Observation
• Commercial-off-the-shelf IT-platforms
– allow to host a large variety of applications.
• New virtualization technology allows to abstract HW,
– enables elasticity, scalability and automation.
• Network Technology suppliers already use such vTech,
– but in a proprietary way.
Source: NFV
Net functionalities are SW-based over well-known HW
Multiple roles over same HW
Virtualised Network Model
SW-defined
functionalities
Common &
shared HW
architecture
Early adopters offer virtualized
versions of their products
9. Trends
• High performance industry
standard servers shipped in very
high volume
• Convergence of computing,
storage and networks
• New virtualization technologies
that abstract underlying hardware
yielding elasticity, scalability and
automation
• Software-defined networking
• Cloud services
• Mobility, explosion of devices and
traffic
Challenges
• Huge capital investment to deal with
current trends
• Network operators face an increasing
disparity between costs and revenues
• Complexity: large and increasing
variety of proprietary hardware
appliances in operator’s network
• Reduced hardware lifecycles
• Lack of flexibility and agility: cannot
move network resources where &
when needed
• Launching new services is difficult and
takes too long. Often requires yet
another proprietary box which needs to
be integrated
Source: Adapted from D. Lopez Telefonica I+D, NFV
10. A means to make the network more flexible and simple by
minimising dependence on HW constraints
v
Network Functions are SW-based over well-known HW
Multiple roles over same HW
ORCHESTRATION, AUTOMATION
& REMOTE INSTALL
DPI
BRAS
GGSN/
SGSN
Firewall
CG-NAT
PE Router
VIRTUAL
APPLIANCES
STANDARD
HIGH VOLUME
SERVERS
Virtualised Network Model:
VIRTUAL APPLIANCE APPROACHv
Network Functions are based on specific HW&SW
One physical node per role
DPI
BRAS
GGSN/SGSN
Session Border
ControllerFirewall CG-NAT
PE Router
Traditional Network Model:
APPLIANCE APPROACH
The NFV Concept
Source: Adapted from D. Lopez Telefonica I+D, NFV
11. BRAS
FirewallDPI
CDN
Tester/QoE
monitor
WAN
Acceleration
Message
Router
Radio Access
Network Nodes
Carrier
Grade NAT
Session Border
Controller
Network Virtualisation Approach
PE RouterSGSN/GGSN
Independent Software Vendors
Standard High Volume
Ethernet Switches
Standard High Volume Storage
Standard High Volume Servers
Orchestrated,
automatic &
remote install.
• Fragmented non-commodity hardware.
• Physical install per appliance per site.
• Hardware development large barrier to entry for new
vendors, constraining innovation & competition.
Classical Network Appliance Approach
Target
Source: NFV
12. Network Functions Virtualization
• Network Functions Virtualization is about implementing network
functions in software - that today run on proprietary hardware -
leveraging (high volume) standard servers and IT virtualization
• Supports multi-versioning and multi-tenancy of network functions, which
allows use of a single physical platform for different applications, users
and tenants
• Enables new ways to implement resilience, service assurance, test and
diagnostics and security surveillance
• Provides opportunities for pure software players
• Facilitates innovation towards new network functions and services that
are only practical in a pure software network environment
• Applicable to any data plane packet processing and control plane
functions, in fixed or mobile networks
• NFV will only scale if management and configuration of functions can be
automated
• NFV aims to ultimately transform the way network operators architect and
operate their networks, but change can be incremental
Source: Adapted from D. Lopez Telefonica I+D, NFV
13. Benefits & Promises of NFV
• Reduced equipment costs (CAPEX)
– through consolidating equipment and economies of scale of IT industry.
• Increased speed of time to market
– by minimising the typical network operator cycle of innovation.
• Availability of network appliance multi-version and multi-tenancy,
– allows a single platform for different applications, users and tenants.
• Enables a variety of eco-systems and encourages openness.
• Encouraging innovation to bring new services and generate new
revenue streams.
Source: NFV
14. Benefits & Promises of NFV
• Flexibility to easily, rapidly, dynamically provision and
instantiate new services in various locations
• Improved operational efficiency
• by taking advantage of the higher uniformity of the physical network
platform and its homogeneity to other support platforms.
• Software-oriented innovation to rapidly prototype and test
new services and generate new revenue streams
• More service differentiation & customization
• Reduced (OPEX) operational costs: reduced power, reduced
space, improved network monitoring
• IT-oriented skillset and talent
Source: Adapted from D. Lopez Telefonica I+D, NFV
15. Network functionalities are based on specific HW&SW
One physical node per role
Traditional Network model
Net functionalities are SW-based over well-known HW
Multiple roles over same HW
Virtualised Network Model
SW-defined
functionalities
Common &
shared HW
architecture
Setting the Ground
Effect of scale (better
statistical multiplexing)
Reduction of geographical
dispersion of HW
Reuse same HW for different
role when no longer
applicable
CAPEX OPEX
EVOLUTIONARY APPROACH
- New specific needs for different nodes
- Reuse of equipment still in amortization
- Leverage on new planned elements in
architecture
BY RELEVANT USE CASES
- Virtualised PoP
- Traffic analysis
- SW-defined datacenter
- Pervasive security
Telco industry is optimised to work with the
Telco cycle, and this cannot be changed
overnight
Source: Telefonica I+D
16. So, why we need/want NFV(/SDN)?
1. Virtualization: Use network resource without worrying about where it is
physically located, how much it is, how it is organized, etc.
2. Orchestration: Manage thousands of devices
3. Programmable: Should be able to change behavior on the fly.
4. Dynamic Scaling: Should be able to change size, quantity
5. Automation
6. Visibility: Monitor resources, connectivity
7. Performance: Optimize network device utilization
8. Multi-tenancy
9. Service Integration
10. Openness: Full choice of modular plug-ins
Note: These are exactly the same reasons why we need/want SDN.
Source: Adapted from Raj Jain
17. NFV and SDN
• NFV and SDN are highly complementary
• Both topics are mutually beneficial but not dependent on each other
Network
Functions
Virtualization
Software
Defined
Networking
Open
Innovation
Creates competitive
supply of innovative
applications by third
parties
Creates network
abstractions to
enable faster
innovation
Reduces CAPEX, OPEX,
Space & Power
Consumption
Source: NFV
18. NFV vs SDN
• NFV: re-definition of network equipment architecture
• NFV was born to meet Service Provider (SP) needs:
– Lower CAPEX by reducing/eliminating proprietary hardware
– Consolidate multiple network functions onto industry standard
platforms
• SDN: re-definition of network architecture
• SDN comes from the IT world:
– Separate the data and control layers,
while centralizing the control
– Deliver the ability to program network behavior using well-
defined interfaces
19. Network equipment as
Black boxes
Open interfaces (OpenFlow) for
instructing the boxes what to do
SDN
Boxes with autonomous
behaviour Decisions are taken out of the box
FEATURE FEATURE
OPERATING SYSTEM
SPECIALIZEDPACKET
FORWARDINGHARDWAREFEATURE FEATURE
OPERATING SYSTEM
SPECIALIZEDPACKET
FORWARDINGHARDWARE
FEATURE FEATURE
OPERATING SYSTEM
SPECIALIZEDPACKET
FORWARDINGHARDWAREFEATURE FEATURE
OPERATING SYSTEM
SPECIALIZEDPACKET
FORWARDINGHARDWARE
SDN
Adapting OSS to manage black boxes
Simpler OSS to manage the SDN
controller
SDN
FEATURE FEATURE
OPERATING SYSTEM
SPECIALIZED PACKET
FORWARDING HARDWAREFEATURE FEATURE
OPERATING SYSTEM
SPECIALIZED PACKET
FORWARDING HARDWARE
FEATURE FEATURE
OPERATING SYSTEM
SPECIALIZED PACKET
FORWARDING HARDWAREFEATURE FEATURE
OPERATING SYSTEM
SPECIALIZED PACKET
FORWARDING HARDWARE
Software Defined Networking
Source: Adapted from D. Lopez Telefonica I+D, NFV
22. (Network Virtualization)2 = SDN + NFV
SDN: Software Defined
Networking
NFV: Network Functions
Virtualisation
Source: Adapted from D. Lopez Telefonica I+D, NFV
23. Home simplification
VirtualCPE
• Simplification or even supression (STB)
• No need for home router replacement as it is
updated by configuration
• Fast deployment for new services
• Inexpensive IPv6 migration maintaining legacy
home routers
CPE
IPv4 NAT
Não é possível exibir
esta imagem no
momento.
SwitchAccess Point Modem
Não é possível exibir
esta imagem no
momento.
DHCP
FW
TR-069
UPnP
STB
Home environment Network environment
SwitchAccess Point Módem
CPE FW
TR-069
NAT
UPnP
DHCP
IPv4/IPv6
STBHome environment
Network environment
VirtualIPEdge
DHCP
UPnP
TR-069
SW-
BASED
BRAS
IPv4 /
IPv6
Sessio
n
mgmt
VIRTUALISATION
CONTROL
NAT
NAT
ctrl.
SW-
BASED
CG-NAT
Pool
admin
HW POOL
MANAGEMENT
A unified software IP Edge
Complex home environment
Multiple IP Edges
• An IP Edge for each service (voice,
video content, Internet)
• Scattered and not well integrated
control functions (e.g. DPI, BRAS,
PCRF)
Some Drivers
Source: Adapted from D. Lopez Telefonica I+D, NFV
24. …More Drivers…
MobileNetworkVirtualisation
•All the network concentrated in the base
station
•C-RAN: All the base station
functionalities, except for the antennas
and power amplifiers, concentrated in a
centralized location
BBU
RRH
RRH
RRH
S-GW/MMEPOPINTERNET
BBU
S-GW/MME
Central Office
RRH2
RRH2
Radio over Fiber link
RRH1
Having the flexibility of moving functionalities between different
locations may help to network to adopt the best option in each case
S-GW/MME1
Central Office
RRH
RRH
BBU2BBU1
BTS hostel
Medium capacity
bachkhaul
S-GW/MME2
Functional mobility
Monitoring/enforcementloop
External data
RAW USER TRAFFIC
xDRs
RELEVANT
PACKETS
POLICY
DECISIONS
REAL-TIME
ANALYSIS
RAW USER TRAFFIC ENFORCEMENT
POINT OF PRESENCE (x100s)
DPI
Current DPI Everything replicated in 100s of boxes
which need to be orchestrated!
RAW USER TRAFFIC
OF Controller
OF Switch
Deeper
REAL-TIME
ANALYSIS
Network
Big Data
RELEVANT
PACKETS
Metadata interface
RAW USER TRAFFIC
ENFORCEMENT
Copy
POLICY
DECISIONS
Security
Alarms
OpenFlow
Other data
xDRs
POINT OF PRESENCE (x100s)
Virtual DPI Centralised intelligence
& orchestration
Source: Adapted from D. Lopez Telefonica I+D, NFV
25. … And a Couple More
• NAT44 function, extensible to IPv6 transition
• 40 Gbps full-duplex line rate per server
• Support of overlapping addresses and tunnelling
• Auto-provisioning of NAT sessions per access line
VirtualizedCGNATOptimizedQuaggadataplane
• Leverage on open source routing project as
rich and widely tested protocol suite while
assuring data plane performance
•Common routing protocols supported and
extended by open source project
•High-performance line-rate data plane
•Running in separate process, does not lead to
licensing issues
Source: Adapted from D. Lopez Telefonica I+D, NFV
26. Some Use Case Examples
…not in any particular order
• Switching elements: BNG, CG-NAT, routers.
• Mobile network nodes: HLR/HSS, MME, SGSN, GGSN/PDN-GW.
• Home networks: Functions contained in home routers and set top boxes to
create virtualised home environments.
• Tunnelling gateway elements: IPSec/SSL VPN gateways.
• Traffic analysis: DPI, QoE measurement.
• Service Assurance: SLA monitoring, Test and Diagnostics.
• NGN signalling: SBCs, IMS.
• Converged and network-wide functions: AAA servers, policy control and
charging platforms.
• Application-level optimisation: CDNs, Cache Servers, Load Balancers,
Application Accelerators.
• Security functions: Firewalls, virus scanners, intrusion detection systems,
spam protection.
Source: NFV
27. History of NFV
• Network operators had independently discovered that NFV
technology now has sufficient performance for real-world
network work loads
• Informal discussions on cooperation to encourage industry
progress began at ONS in San Francisco in April 2012
• At an operator meeting in Paris in June 2012 we coined the
new term “Network Functions Virtualisation (NFV)”.
• We decided to convene a new industry forum, and publish a
joint white paper to galvanise the industry
• At a meeting in San Francisco in September 2012 we
decided to parent the new forum under ETSI
• In October 2012 we published the first joint-operator NFV
white paper as a “call to action”.
• This paper is widely regarded as the seminal paper heralding
this new approach for networks.
• The first NFV ISG plenary session was held in January 2013
• In October 2013 the first NFV ISG documents were released
after only 10 months, and a second joint-carrier NFV white
paper published to provide our perspectives on progress.
Source: Adapted from D. Lopez Telefonica I+D, NFV
28. The ETSI NFV ISG
• Global operators-led Industry
Specification Group (ISG) under the
auspices of ETSI
– ~150 member organisations
• Open membership
– ETSI members sign the “Member
Agreement”
– Non-ETSI members sign the
“Participant Agreement”
– Opening up to academia
• Operates by consensus
– Formal voting only when required
• Deliverables: White papers
addressing challenges and operator
requirements, as input to SDOs
– Not a standardisation body by itself
• Currently, four WGs and two EGs
– Infrastructure
– Software Architecture
– Management & Orchestration
– Reliability & Availability
– Performance & Portability
– Security
Source: Adapted from D. Lopez Telefonica I+D, NFV
30. Architectural Working Groups
• Related to functional requirements
• Have a clear location in the NFV architecture
– Keep consistency with both requirements and architecture
• INF: Supporting infrastructure interfaces and elements
• MANO: External interfaces and behaviour of a VNF
• SWA: Internals of a VNF
• Refining the architecture
• Addressing use cases
• Mostly oriented to produce reference documents
Source: Adapted from D. Lopez Telefonica I+D, NFV
31. Transversal Working and Expert Groups
• Related to non-functional requirements
• Transversal to the architecture
– And influencing the architectural groups
• PER: Predictability in the data plane and function portability
• REL: Specify resiliency requirements, mechanisms , and
architectures
• SEC: Function by function and infrastructure
• Refining the requirements
• Assessing use cases
• Mostly concerned with recommendations and arch models
Source: Adapted from D. Lopez Telefonica I+D, NFV
38. NFV Concepts
• Network Function (NF): Functional building block with a well defined
interfaces and well defined functional behavior
• Virtualized Network Function (VNF): Software implementation of NF that
can be deployed in a virtualized infrastructure
• VNF Set: Connectivity between VNFs is not specified,
e.g., residential gateways
• VNF Forwarding Graph: Service chain when network connectivity order is
important, e.g., firewall, NAT, load balancer
• NFV Infrastructure (NFVI): Hardware and software required to deploy,
mange and execute VNFs including computation, networking, and storage.
• NFV Orchestrator: Automates the deployment, operation, management,
coordination of VNFs and NFVI.
Source: Adapted from Raj Jain
39. NFV Concepts
• NFVI Point of Presence (PoP): Location of NFVI
• NFVI-PoP Network: Internal network
• Transport Network: Network connecting a PoP to other PoPs or external
networks
• VNF Manager: VNF lifecycle management e.g., instantiation, update, scaling,
query, monitoring, fault diagnosis, healing, termination
• Virtualized Infrastructure Manager: Management of computing, storage,
network, software resources
• Network Service: A composition of network functions and defined by its
functional and behavioral specification
• NFV Service: A network services using NFs with at least one VNF.
Source: Adapted from Raj Jain
40. Network Forwarding Graph
• An end-to-end service may include nested forwarding graphs
Source: Adapted from Raj Jain
41. NFV Concepts
• User Service: Services offered to end users/customers/subscribers.
• Deployment Behavior: NFVI resources that a VNF requires, e.g., Number of
VMs, memory, disk, images, bandwidth, latency
• Operational Behavior: VNF instance topology and lifecycle operations, e.g.,
start, stop, pause, migration, …
• VNF Descriptor: Deployment behavior + Operational behavior
Source: Adapted from Raj Jain
43. Reference Point:
Points for inter-module specification
• (Os-Ma) Operation Support System (OSS)/Business Support Systems (BSS) –
NFV Management and Orchestration
• (Se-Ma) Service, VNF and Infrastructure Description – NFV Management and
Orchestration: VNF Deployment template, VNF Forwarding Graph, service-
related information, NFV infrastructure information
• (Or-Vnfm) Orchestrator – VNF Manager
• (Vi-Vnfm) Virtualized Infrastructure Manager – VNF Manager
• (Ve-Vnfm) VNF/ Element Management System (EMS) – VNF Manager
• (Or-Vi) Orchestrator – Virtualized Infrastructure Manager
• (Nf-Vi) NFVI-Virtualized Infrastructure Manager
• (VI-Ha) Virtualization Layer-Hardware Resources
• (Vn-Nf) VNF – NFVI
44. The NFV Entities
Network Service (NS):
• Described by the NS descriptor, orchestrated by NFVO
• May cover 1 or more VNF Graphs, VNFs and PNFs
VNF Forwarding Graph (VNFFG):
• Described by the VNFFG descriptor, orchestrated by NFVO
• May cover VNFFGs, VNFs and NFs
VNF:
• Described by the VNF descriptor, instantiated by the
VNF Manager
• Covers VNF components each mapped to a VM and
described as a Virtual Deployment Unit
VNF
NetworkService
1..n
VNF Forwarding Graph
1
1..n
0..n
45. Architectural Use Cases
• Network Functions Virtualisation Infrastructure as a Service
– Network functions go to the cloud
• Virtual Network Function as a Service
– Ubiquitous, delocalized network functions
• Virtual Network Platform as a Service
– Applying multi-tenancy at the VNF level
• VNF Forwarding Graphs
– Building E2E services by composition
46. XaaS for Network Services
NFVI Provider
IaaS NaaS NaaS SaaS
NFVIaaS
Hosting Service Provider
VNF
VNF
VNF
VNF
VNF
VNF
VNF
VNF
VNF
VNF Tenants
NSP
VNF VNF
VNF
VNF
VNF
VNF Forwarding Graph
Admin
User
Admin
User
VNFaaS
User
PaaSPaaS
VNPaaS
48. Infrastructure Network Control Hierarchy
• An E2E controller with global view
• Virtual switches are added to
infrastructure
• VNF applications may need to see
and/or control their own topology,
internal, external or both
Network
Controller C
Network Controller A
NE view
B/E
C F
A
D
Network A
Network B
Network C
Physical (NE)
control
Physical (NE)
control
physical (NE)
control
Network Controller B
E2E controller
Virtual Network
control I/F
Abstracted
View
Virtual Network
control I/F
VNF App1 Client
Controller
Network Slice
Toplogy View
A
Indirect
control I/F
VNF on VM
B C
Ext IF on
INF net
Ext IF on
INF net
Virtual Switch
control
Virtual switch
VNF App2 Client
Controller
Indirect
control I/F
Ext IF on
INF net
Ext IF on
INF net
Ext IF on
INF net
50. The Road to NFV
Source: Gabriel Brown, Heavy Reading
51. Two Approaches to NFV
(to be pursued simultaneously)
Source: Gabriel Brown, Heavy Reading
52. Recommendation / Call-for-action
Invitation towards IT and Telecom industries
to combine their complementary expertise and resources
in a joint collaborative effort, to reach broad agreement
on standardised approaches and common architectures,
and which are interoperable and have economies of scale.
A new carrier-led Industry Specification Group (ISG) is being setup under
the auspices of ETSI.
Initial face-to-face meeting of the ISG NFV is planned for Jan 2013, and
will be announced via the usual ETSI procedures.
Deliverables: White papers addressing challenges and operator
requirements, as input to standardisation bodies.
Source: NFV
53. NFV Myths
• The ETSI NFV ISG is a standards body.
• NFV equates to “The Cloud.”
• NFV is about CAPEX.
• NFV winds down in January 2015.
55. Challenges
• Achieving high performance virtualised network appliances
– portable between different HW vendors, and with different hypervisors.
• Co-existence with bespoke HW based network platforms
– enabling efficient migration paths to fully virtualised network platforms.
• Management and orchestration of virtual network appliances
– ensuring security from attack and misconfiguration.
• NFV will only scale if all of the functions can be automated.
• Appropriate level of resilience to HW and SW failures.
• Integrating multiple virtual appliances from different vendors.
– Network operators need to be able to “mix & match” HW,
– hypervisors from different vendors,
– and virtual appliances from different vendors
– without incurring significant integration costs and avoiding lock-in.
Source: NFV
57. NFV Requirements
• Too many
– Based on the environment
• Specifically bounded
New abstractions,
but new and some already old challenges and
requirements
58. NFV Framework Requirements
1. General: Partial or full Virtualization, Predictable performance
2. Portability: Decoupled from underlying infrastructure
3. Performance: Conforming and proportional to NFs
specifications and facilities to monitor
4. Elasticity: Scalable to meet SLAs. Movable to other servers.
5. Resiliency: Be able to recreate after failure.
Specified packet loss rate, calls drops, time to recover, etc.
6. Security: Role-based authorization, authentication
7. Service Continuity: Seamless or non-seamless continuity after
failures or migration
59. NFV Framework Requirements
8. Service Assurance: Time stamp and forward copies of
packets for Fault detection
9. Energy Efficiency Requirements: Should be possible to put a subset
of VNF in a power conserving sleep state
10. Operational and Management Requirements: Incorporate
mechanisms for automation of operational and management functions
11. Transition: Coexistence with Legacy and Interoperability among
multi-vendor implementations
12. Service Models: Operators may use NFV infrastructure
operated by other operators
Where should we go?
60. Two Approaches to NFV
(to be pursued simultaneously)
Arising of challenges
Source: Gabriel Brown, Heavy Reading
61. First: A Few Challenges
• Achieving high performance virtualised network
appliances
– portable between different HW vendors, and with different
hypervisors.
• Co-existence with bespoke HW based network platforms
– enabling efficient migration paths to fully virtualised network
platforms.
• Management and orchestration of virtual network appliances
– ensuring security from attack and misconfiguration.
• NFV will only scale if all of the functions can be automated.
• Appropriate level of resilience to HW and SW failures.
• Integrating multiple virtual appliances from different vendors.
– Network operators need to be able to “mix & match” HW,
– hypervisors and virtual appliances from different vendors,
– without incurring significant integration costs and avoiding
lock-in.
• NFV and SDN But... Based on what?
Use Cases
Then... More challenges!
62. Challenging Path upfront:
Not as simple as cloud applied to telco
The network differs from the computing environment in
2 key factors…
Data plane workloads
(which are huge!)
Network requires shape
(+ E2E interconnection)
HIGH PRESSURE ON
PERFORMANCE
GLOBAL NETWORK VIEW IS
REQUIRED FOR MANAGEMENT
1
2
…which are big challenges for vanilla cloud computing.
AN ADAPTED VIRTUALISATION ENVIRONMENT IS NEEDED
TO OBTAIN CARRIER-CLASS BEHAVIOUR
63. NFV Forwarding Graphs
• Network Service Chaining
– Networks paths: old stratified vs. dynamic new
Source: Ericsson, EU UNIFY
64. NSC and NFV-FG
• Constitution of NSC
– NF Set to NFV-FG
• NFs well defined interfaces and behavior
• NFV-FGs topics:
– Processing semantics
– Performance guarantees
– Chargings
65. Is NFV Technology Good Enough?
Time Source: Gabriel Brown, Heavy Reading
68. Scalability
• Real world vs. virtualized perspective
– Network devices: FIB size, queue length, # of ports
• NFVI existence?
– Distributed: storage, processing, connecting
– Distributed NFs
• Latency and Bandwidth requirements (e.g., BRAS, DPI)
Source: Ericsson, EU UNIFY
69. Performance and Scalability
• PFs and NFs
– Lack of performance -> Scalability decreased
• Performance
– NF vs. NFV-FG
• Proportional performance of NFs and services
according to available:
– Network latency and bandwidth
– Compute capacity
71. Management and Orchestration
• The key: Elasticity!
– Pieces at all infrastructure layer
– Need to go beyond to just fit them together
– Multi-technology support, and open interfaces
Source: Raj Jain
73. Orchestration
• Automated deployment
of NFV applications
– OpenStack, CloudStack...
• NFVI profile for NF
– Select and start host, VM
• Applications (NFs)
– Service address
– Location specific
configuration
Source: Bob Briscoe, BT
74. Overall Management & Orchestration
• Control functions and state in all network levels
– Heterogeneous environments and services
Source: IEEE PIMRC, 2013
75. Portability
• Move VNF across N-PoPs
• Decoupled NFV
framework from NFVI
• Optimize VNF resources:
– Location
– Allocation
– Reservation
• Compatibility
– Integration/internetworkin
g
– Meeting SLA requirements
• Example: NfV hypervisors
Source: Bob Briscoe, BT
76. Interoperability and Legacy Networks
• End-to-end network services
– Transparent management and orchestration
• No place for one-size-fits-all solutions
– Dynamic and heterogeneous new technologies
• Handle different old and new characteristics
– Impact on the other requirements:
• Performance, resilience, security...
• Maintain SLAs
• Avoid disruptions!
77. Security
• New Threats
– Virtualization Network Layer
– Several identity layers and accounting
• Protection of interfaces exposed by NFV architecture
principles.
• Secure separation and management of NF entities.
• Heterogeneous network domains
• NFVI shared resources
– Isolation of VNF sets
– User privilege resources access (APIs)
• Mechanisms:
– Control and verify the configuration of soft/hardware
78. Resilience
• Different Levels
– PFs, NFs, NFVI, NFV-FG
• Monitoring, synchronisation and trigger
mechanisms in the event of failure of NFs
• Correlated failures in NFV-FG
– Chained resilience plans
• Service Continuity
– SLA minimum insurance
• Zero impact vs. Measurable impact
• Orchestration: NOT a single point of failure
85. NFV Challenges for Networking Research
NFV Resiliency
• NFV-based service continuity.
• Coexistence of virtualised and non-virtualised Network Functions (NFs)
• Virtual Network Functions (VNF) Software (VM, Hypervisor) failure or congestion
protection.
• Monitoring, synchronisation and trigger mechanisms in the event of failure of NFs.
NFV Control & Orchestration
• Providing automation and elasticity.
• NF Instance instantiation, scaling and migration.
• End-to-end service setup, operation and monitoring.
• Multi-technology support, and open interfaces.
NFV Security
• Securing VNF instances.
• Vulnerabilities introduced in the new virtualisation layer.
• Protection of interfaces exposed by NFV architecture principles.
• Secure separation and management of NF entities.
Source: D. King, Comnnet Workshop
87. NFV ISG Use Cases
• First use case proposal: 2010
• Main idea: contribute to thrive NFV
– Real Scenarios
• Fast service inovation based on software and
operational end-to-end NFs
– Operational eficiency
– Energy consumption reduce (workloads migration)
– Open and standard interfaces
– Flexibility between VNF and hardware;
– Eficient revenues return
88. Use Cases Matrix
Use Case Matrix – 4 big horizontal themes, and 9 use cases
ETSI NFV POC
89. NFV Infrastructure as a Service
(NFVIaaS)
• Cloud Computing Services are typically offered to
consumers in one of three service models
– Infrastructure as a Service (IaaS)
– Platform as a Service (PaaS)
– Software as a Service (SaaS)
• IaaS is defined as the capability to offer to consumers
processing, storage and fundamental computing resources
• Some literature also refers to a capability to offer network
connectivity services as Network as a Service (NaaS). One
application for NaaS appears to be the on demand creation
of network connectivity between Cloud Service Provider
and Customer
ETSI NFV POC
90. NFV Infrastructure as a Service
(NFVIaaS)
NFV Infrastructure :
• provide the capability or
functionality of providing an
environment in which Virtualized
network functions (VNF) can
execute
• NFVIaaS provides compute
capabilities comparable to an IaaS
cloud computing service as a run
time execution environment as
well as support the dynamic
network connectivity services
that may be considered as
comparable to NaaS
92. VNFaaS Motivation: CPE e PE
Pre-NFV service provider networks include a Provider Edge (PE) router at the
edge of the core, facing the Customer Premises Equipment (CPE) device
93. Virtual Network Functions as a Service
(VNFaaS)
• Substantial saving may be possible by moving routing functionality
from purpose-built routers to equivalent functionality
implemented in COTS hardware environments providing cloud
computing capabilities such as the NFVI
• Rather than the Enterprise investing its own capital in deployment
of networking infrastructure, the service provider may be able to
provide advanced networking features as a measured service
• The service provider could operate a VNF instance using its NFVI
which provides the functionality required to implement the
enterprise CPE and potentially another VNF instance for the control
plane of the PE router improving its scalability
94. VNFaaS
Physical CPE & vE-CPE
(routing, VPN termination, QoS
support, DPI, NG-FW and a WOC
(WAN Optimization Controller)
vCPE functionality in many locations
95. Virtual Network Platform as a Service
(VNPaaS)
• Network resources are more and more often not
exclusively used by the operator
• Platform as a Service (PaaS) as the possibility for
the consumer to deploy his own applications using
the computing platform supported by the provider
• Service Provider provides a toolkit of networking
and computing infrastructure as well as
potentially some VNFs as a platform for the
creation of virtual network
i.e. a Virtual Network Platform as a Service
96. VNPaaS
The VNPaaS is similar to
the VNFaaS, but differs
mainly in the scale of
the service and
programmability
VNPaaS provides a
larger scale service
typically providing a
virtual network rather
than a single virtual
network function.
97. Service Chains
(VNF Forwarding Graphs)
• VNF FGs are the analogue of connecting existing
Physical Appliances via cables as described in the NFV
• Cables are bidirectional and so are most data
networking technologies that will be used in Virtualised
deployments in the near term (e.g. Ethernet). In other
words, a VNF Forwarding Graph provides the logical
connectivity between virtual appliances (i.e. VNFs).
100. Mobile Core Network and IMS
• Mobile networks are populated with a large
variety of proprietary hardware appliances
• Flexible allocation of Network Functions on such
hardware resource pool could highly improve
network usage efficiency
• Accommodate increased demand for particular
services (e.g. voice) without fully relying on the
call restriction control mechanisms in a large-
scale natural disaster scenario such as the Great
East Japan Earthquake
101. V-EPC
• Examples of Network
Functions include MME,
S/P-GW, etc
• This use case aims at
applying virtualization to
the EPC, the IMS, and these
other Network Functions
mentioned above
102. Other use cases for v-IMS
VNF relocation
Partial NFV Deployment
103. Virtualization of Mobile Base Station
• Mobile network traffic is significantly increasing by the
demand generated by application of mobile devices, while
the ARPU (revenue) is difficult to increase
• LTE is also considered as radio access part of EPS (Evolved
Packet System) which is required to fullfil the requirements
of high spectral efficiency, high peak data rates, short
round trip time and frequency flexibility in radio access
network (RAN)
• Virtualisation of mobile base station leverages IT
virtualisation technology to realize at least a part of RAN
nodes onto standard IT servers, storages and switches
104. Virtualization of Mobile Base Station
LTE RAN architecture evolution by centralized BBU pool
(Telecom Baseband Unit)
Functional blocks in C-RAN
105. Virtualization of CDNs
• Delivery of content, especially of video, is one of the
major challenges of all operator networks due to
massive growing amount of traffic to be delivered to end
customers of the network
• Integrating nodes of Content Delivery Networks into
operator networks can be an effective and cost-efficient
way to answer to the challenges of Video Traffic Delivery
• CDN providers ask operators to deploy their
proprietary cache nodes into the ISP network (e.g.
Netflix OpenConnect program, Akamai Aura CDN). This
comes with benefits for both sides but also with the
challenge that eventually the operators will host a zoo
of different cache devices side by side in their premises
107. Home Environment
• Current network operator provided home
services are architected using network-located
backend systems and dedicated CPE devices
located as part of the home network.
• These CPE devices mark the operator and/or
service provider presence at the customer
premises and usually include:
– Residential Gateway (RGW) for Internet
– VOIP services, and a
– Setup Box (STB) for Media services normally
supporting local storage for PVR services
108. Virtualization of the Home Environment
Virtualização das funções do ambiente doméstico. A criação do vRGW e vSTB permitiu a
transferência de funções de rede e mídia para o centro da rede
109. CPE
IPv4 NAT
SwitchAccess Point ModemDHCP
FW
TR-069
UPnP
STB
FROM…
Home environment Network environment
SwitchAccess Point Módem
CPE FW
TR-069
NAT
UPnP
DHCP
IPv4/IPv6
STB
… TO
Home environment
Network environment
Simplification removes all
incompatibilities with IPv6
IPv6 only needed in
network environment
Operation and service
deployment are greatly
simplified
Simplifying Operation and
Service Deployment
Source: Telefonica I+D
111. Fixed Access NFV
• Main costs and bottlenecks in a network often
occur in the access.
– For the wireline fixed access network, the most
prevalent broadband access technologies today are
based on DSL, with the most widely deployed variant
being ADSL2+ which has a maximum downstream bit
rate of ~26 Mb/s.
• The trend however is to replace exchange-based
equipment with equipment based on VDSL2 in
new street cabinets with fibre backhaul (FTTcab)
112. Access Networks Virtualisation
Access Network Functions Virtualisation will be
initially applied to hybrid fibre-DSL nodes such as FTTcab and FTTdp
Target Network functions
for virtualisation may
include control functions
from:
OLT
DSLAM
ONU
ONT
MDU
DPU
113. Home simplification
VirtualCPE
• Simplification or even supression (STB)
• No need for home router replacement as it is
updated by configuration
• Fast deployment for new services
• Inexpensive IPv6 migration maintaining legacy
home routers
CPE
IPv4 NAT
SwitchAccess Point ModemDHCP
FW
TR-069
UPnP
STB
Home environment Network environment
SwitchAccess Point Módem
CPE FW
TR-069
NAT
UPnP
DHCP
IPv4/IPv6
STBHome environment
Network environment
VirtualIPEdge
DHCP
UPnP
TR-069
SW-
BASED
BRAS
IPv4 /
IPv6
Sessio
n
mgmt
VIRTUALISATION
CONTROL
NAT
NAT
ctrl.
SW-
BASED
CG-NAT
Pool
admin
HW POOL
MANAGEMENT
A unified software IP Edge
Complex home environment
Multiple IP Edges
• An IP Edge for each service (voice,
video content, Internet)
• Scattered and not well integrated
control functions (e.g. DPI, BRAS,
PCRF)
More Use Cases
114. …More …
MobileNetworkVirtualisation
•All the network concentrated in the base
station
•C-RAN: All the base station
functionalities, except for the antennas
and power amplifiers, concentrated in a
centralized location
BBU
RRH
RRH
RRH
S-GW/MMEPOPINTERNET
BBU
S-GW/MME
Central Office
RRH2
RRH2
Radio over Fiber link
RRH1
Having the flexibility of moving functionalities between different
locations may help to network to adopt the best option in each case
S-GW/MME1
Central Office
RRH
RRH
BBU2BBU1
BTS hostel
Medium capacity
bachkhaul
S-GW/MME2
Functional mobility
Monitoring/enforcementloop
External data
RAW USER TRAFFIC
xDRs
RELEVANT
PACKETS
POLICY
DECISIONS
REAL-TIME
ANALYSIS
RAW USER TRAFFIC ENFORCEMENT
POINT OF PRESENCE (x100s)
DPI
Current DPI Everything replicated in 100s of boxes
which need to be orchestrated!
RAW USER TRAFFIC
OF Controller
OF Switch
Deeper
REAL-TIME
ANALYSIS
Network
Big Data
RELEVANT
PACKETS
Metadata interface
RAW USER TRAFFIC
ENFORCEMENT
Copy
POLICY
DECISIONS
Security
Alarms
OpenFlow
Other data
xDRs
POINT OF PRESENCE (x100s)
Virtual DPI Centralised intelligence
& orchestration
115. … And a Couple More
• NAT44 function, extensible to IPv6 transition
• 40 Gbps full-duplex line rate per server
• Support of overlapping addresses and tunnelling
• Auto-provisioning of NAT sessions per access line
VirtualizedCGNATOptimizedQuaggadataplane
• Leverage on open source routing project
as rich and widely tested protocol suite
while assuring data plane performance
•Common routing protocols supported and
extended by open source project
•High-performance line-rate data plane
•Running in separate process, does not lead to
licensing issues
116. Some Other Use Case Examples
…not in any particular order
• Switching elements: BNG, CG-NAT, routers.
• Mobile network nodes: HLR/HSS, MME, SGSN, GGSN/PDN-GW.
• Home networks: Functions contained in home routers and set top boxes to
create virtualised home environments.
• Tunnelling gateway elements: IPSec/SSL VPN gateways.
• Traffic analysis: DPI, QoE measurement.
• Service Assurance: SLA monitoring, Test and Diagnostics.
• NGN signalling: SBCs, IMS.
• Converged and network-wide functions: AAA servers, policy control and
charging platforms.
• Application-level optimisation: CDNs, Cache Servers, Load Balancers,
Application Accelerators.
• Security functions: Firewalls, virus scanners, intrusion detection systems,
spam protection.
Source: NFV
117. Virtualisation of legacy home routers: inexpensive IPv6 migration
VIRTUALEDGE
• Cost-effective solution for massive IPv6 migration
No need of CPE replacement as it is updated by remote configuration
SW-based DPI over general-purpose HW
CUSTOMDPI
• Advanced traffic analysis
• Multidimensional reports
“Off-the-shelf” hardware working at line rate
SW-NODE
Soft-Node
Escape from telco cycle in IP network
• Software-defined network over COTS equipment
• Effective reuse of HW resources after NAT use declines
SW-defined IP nodes (BRAS/CG-NAT) over general-purpose HW
OPENFLOW
Smooth coordination between network and cloud services
• Minimise network management complexity at large-scale
infrastructures
SW-controlled connectivity in datacenter environments
Current Use Cases
DS vCPE
Source: Telefonica I+D
124. Service Chaining for NW Function
Selection in Carrier Networks
vDPI: CSR 1000v (Cisco Systems)
vCPE: VSR1000 (Hewlett-Packard)
vFW: FireFly (Juniper Networks)
VIM (NW Controller): Service Chaining
Function (prototype) + Ryu (NTT) Source: ETSI Ongoing PoC
125. Virtual Function State Migration and
Interoperability
• Different Hardware BUT Portable Software
• Open Source + Linux + KVM
• Recompiling with GCC or LLVM - Low Level Virtual Machine
Source: ETSI Ongoing PoC
126. Virtual Function State Migration and
Interoperability: x86 e MIPS-64
PoC Details:
• 1. Show vEPC with video traffic
flowing through to the simulated
BTS running on x86 system.
• 2. VNF on the x86 will be placed in
a standby state, and the state
information will be frozen.
• 3. VNF state will be moved from
the x86 blade to the XLP MIPS-64
blade.
• 4. VNF will be restarted on the
MIPS-64 blade with the
transitioned state.
• 5. Traffic will flow will be rerouted
to the vEPC running on the XLP
MIPS-64
VNF state migration from x86 to Broadcom XLP MIPS-64 based blade server
Source: ETSI Ongoing PoC
127. Distributed-NFV
PoC are being developed based on
centralized NFVI architectures and
centralized VNF deployment
However, there is also a need to
deploy some functions out at the
customer edge. The ability to
support the deployment of
virtualized functions at the customer
edge requires a Distributed NFV
(D-NFV) architecture
Omniscient D-NFV orchestrator
handles all VNFs and virtual
machine (VM) infrastructure,
wherever they may be located, and
exploits SDN-like mechanisms to
achieve optimal VNF placement
Source: ETSI Ongoing PoC
128. Multi Vendor on-boarding of vIMS on
Cloud Management Frame
Scenario 1 – One-click service deployment.
IMS service is provided by several 3GPP Network
Functions, such as CSC, HSS, MMTel, etc. These functions, all
from Huawei, are virtualized. With the pre-defined
templates and scripts, all functions can be deployed
automatically, onto the cloud platform provided by DT and
ALU.
Scenario 2 – Auto-scaling of VNF
Traffic load generator by a simulator increases and pushes
up the workload of the VNF. When the workload exceeds
the pre-defined threshold, additional resources (VM) are
automatically allocated. In situations of reducing VNF
capacity due to decreasing traffic load, similar in reverse
direction
Scenario 3 – Automated healing of VNF
When a VM containing a component of a VNF (VNFC) fails, a
new VM will be automatically allocated and created with
appropriate component instantiated on it. This process heals
the VNF with no service interruption.
CloudBand is the Alcatel-
Lucent Cloud PlatformSource: ETSI Ongoing PoC
130. OpenNaaS
• OpenNaaS is an open source platform for provisioning network resources.
– It allows the deployment and automated configuration of dynamic network
infrastructures and defines a vendor-independent interface to access services
provided by these resources
• OpenNaaS provides support for a variety of resources such as:
– optical switches, routers, IP networks and Bandwidth on Demand domains,
– but, more importantly, it is easy to add new resources and their capabilities as
an extension
• The core development team is part of Professional Services of the DANA
department at i2CAT Foundation (Mantychore FP7)
131. OpenNaaS Architecture
The platform is based on a OSGI (Open Service
Gateway initiative) R4 component container
Single CLI for Resources
Reusable Building Blocks
Abstract Resource Layer
NaaS resides
Intelligence Layer
common web services
connectors for open source
cloud management
132. EANTC-NFV Showcase
• European Advanced Networking Test Center
(EANTC Berlin, Germany)
– Vendor independent network quality assurance
since 1991
– Test and certification of network components for
manufacturers
– Network design consultancy and proof of concept
testing for service providers
134. NFV Requirements Verified During the
Tests
• Instantiation and
Provisioning
– Creation and
configuration of virtual
network functions
• Portability
– Moving VNF across
hardware
• Elasticity
– Adjusting resources to
the VNF load
135. EANTC – NFV ShowCases
Huawei VNF
Forwarding Graphs
and Carrier Grade NAT
• The CG-NAT service intends to
provide a solution for the
increasing shortage of IPv4
addresses and transition to
IPv6, by implementing nearly
any NAT and IPv4-via-IPv6
technique. The Service Chains
make it possible to chain DPI,
Parental Controls or other
similar functions for flexible
services.
Metavswitch
Perimeta Session
Border Controller
• Metaswitch selected to
showcase their Perimeta
Session Border Controller
(SBC) Virtual Network
Function as a Service use
case.
• It uses the concept behind
NFV to provide
independent distribution
and scaling of its signaling
(SSC) and media (MSC)
components.
Procera Deep
Packet Inspection
• Procera explained that the
Virtualized PacketLogic
solution enable network
operators to deploy
Internet Intelligence
pervasively throughout
their infrastructure.
• The solution demonstrated
the policy enforcement
capabilities of the
PacketLogic solution
including application
identification, traffic
management, and
intelligent charging in an
NFV environment.
138. Intel/HP/Wind River Accelerated
vSwitch
• Combined Intel
DPDK, Wind River
OVP, and HP
hardware
• Reported 10x
performance gain in
packet switching by
bypassing the
vSwitch in the Linux
kernel
• Provides a
"horizontal"
platform that can be
used across multiple
use cases emerging
for both SDN and
NFV
140. Remarkable Enabling Technologies
• Minimalistic OS
– ClickOS
• Improving Linux i/O
– Netmap, VALE, Linux NAPI
• Programmable virtual switches / bridges
– Open vSwitch
• Exploiting x86 for packet processing
– Intel DPDK
• Some example start-ups
– LineRate Systems, 6WIND, Midonet, Vyatta (bought by BCD)
Image source: NEC
154. ClickOS boot costs and performance
Martins, J. et al. Enabling Fast, Dynamic Network Processing with ClickOS. HotSDN 2013.
155. Network Function
Virtualisation - NFV
Intel DPDK
Fonte: Intel Data Plane Development Kit (Intel DPDK) Overview – Packet Processing on Intel Architecture
156. Network Function
Virtualisation - NFV
Intel DPDK
Supported since Intel Atom up to latest Intel Xeon
32-bit and 64-bit with or without NUMA
No limit on the number of cores or processors
Ideal DRAM allocation for all packets pipelines
Bunch of examples of networking softwares that show the
performance improvement
– Best practices for software architecture
– Tips on modeling and storing data structures
– Help compiler to improve the network code
– Reach levels up to 80Mpps per socket of CPU
157. Network Function
Virtualisation - NFV
Intel DPDK
Optimized NIC Drivers in the user-space
– Drivers 1/10Gbps
BSD License
Source code available in Intel website (and others)
158. Network Function
Virtualisation - NFV
Intel DPDK
Buffer and Memory Manager
– Manage the allocation of objects non-NUMA using
hugepages through rings, reducing TLB access,
also, perform a pre-allocation of fixed buffer space
for each core
Queue Manager
– Implements lockless queues, allow packets to be
processed by different software components with no
contention
Flow Classification
– Implements hash functions from information tuples,
allow packets to be positioned rapidly in their flow
paths. Improves throughput
Pool Mode Driver
– Temporary hold times thus avoiding raise NIC
interruptions
159. Network Function
Virtualisation - NFV
Installing Intel DPDK
Verify CPU
– cat /proc/cpuinfo
Hugepages
– cat /proc/meminfo
vi /etc/default/grub
GRUB_CMDLINE_LINUX=... default_hugepagesz=1G hugepagesz=1G
hugepages=4”
vi /etc/default/grub
GRUB_CMDLINE_LINUX=...hugepages=4096
160. Network Function
Virtualisation - NFV
Installing Intel DPDK
Loading Kernel Module IGB_UIO
– modprobe uio
– insmod kmod/igb_uio.ko
Free Intel NICs to use IGB_UIO
– ./tools/pci_unbind.py –status
– ./tools/pci_unbind.py --bind=igb_uio <device>
Desabling CPU powersave
– cat /sys/devices/system/cpu/*/cpufreq/scaling_governor
– for gov in
/sys/devices/system/cpu/*/cpufreq/scaling_governor ; do
echo performance >$gov ; done
161. Installing Intel DPDK
Execute Helloworld
– ./helloworld -c f -n 4
Parameter -c f describes the number of cores and -n the hugepages mem
Network Function Virtualisation - NFV
163. Network Function
Virtualisation - NFV
Vyatta vRouter (5400 e 5600)
Vrouter 5400
Licensing bare metal, VM and Amazon
Features:
– Network Conectivity
– Firewall
– IPv6
– CLI, GUI and Brocade Vyatta Remote Access API
– Authentication (TACACS+, RADIUS)
– Monitoring and log
– IPSec VPN
– QoS
– High-Availability
164. Network Function
Virtualisation - NFV
Vyatta vRouter (5400 e 5600)
Vrouter 5600
Licensing bare metal, VM and Amazon
Features:
– Network Conectivity
– Firewall
– IPv6
– CLI, GUI and Brocade Vyatta Remote Access API
– Authentication (TACACS+, RADIUS)
– Monitoring and log
– IPSec VPN
– QoS
– High-Availability
– vPlane
165. Network Function
Virtualisation - NFV
vPlane
L3 Forwarding Plane is separated from control plane
Based on Intel DPDK
Allow the allocation of the forwarding plane to specific and
multiple cores
By isolating forwarding plane to specific x86 cores and
cut-through using DPDK (zero copy), allowed vRouter
reach 10Gbps per core
Source: Kelly Herrel (Brocade)
170. Network Function
Virtualisation - NFV
Vyatta vRouter 5600
Using Intel >= 2 cores, NIC Intel (DPDK enabled)
Otherwise
Without the vPlane, the networking interfaces (even using Intel hardware, thus
the need for DPDK) are not recognized by the dataplane, thus vRouter doesn’t
work.
Obs.: dataplane is a network interface for the vPlane
172. Network Function
Virtualisation - NFV
Openstack
OpenStack is a global collaboration of developers and cloud computing
technologists producing the ubiquitous open source cloud computing platform for
public and private clouds. The project aims to deliver solutions for all types of
clouds by being simple to implement, massively scalable, and feature rich. The
technology consists of a series of interrelated projects delivering various
components for a cloud infrastructure solution.
Source: Openstack.org
174. Network Function
Virtualisation - NFV
Openstack
Releases
Series Status Date
Juno Under development October 2014
Icehouse Current stable release Apr 17, 2014
Havana Security-supported Apr 03, 2014
Grizzly EOL Mar 20, 2014
Folsom EOL Apr 11, 2013
Essex EOL Oct 12, 2012
Diablo EOL Jan 19, 2012
Cactus Deprecated Apr 15, 2011
Bexar Deprecated Feb 3, 2011
Austin Deprecated Oct 21, 2010
175. Network Function
Virtualisation - NFV
OpenStack Distro
www.openstack.org
Download, compile, install (module by module) – not that easy
All in One Distros
RDO, Fuel, Trystack, DevStack, Rackspace etc
181. Video Playlist
• Installing OpenStack
• Accessing CLI and GUI
• Setup OVS Bridges
• Download Openstack Images
• Vyatta 5600 Instance
• Iperf Experiments between virtual machines
• Iperf Experiments between physical machines
182. Ex: Telco Use Case:
Virtual BGP Route Reflector
• BGP Route Reflectors (RR) do not
participate in BGP data plane
• BGP RRs today deployed by H/W
routers capable of handling data
forwarding
• High cost associated in H/W with
larger scale – limited memory in
custom H/W
• Reduce H/W costs with better scale
using S/W based routers
Source: Kelly Herrel (Brocade)
183. Future Work: Path Ahead
Networking’s Path Into The Server
Source: Kelly Herrel (Brocade)
184. Conclusions
1. NFV aims to reduce OpEx by automation and scalability provided
by implementing network functions as virtual appliances
2. NFV allows all benefits of virtualization and cloud computing
including orchestration, scaling, automation, hardware
independence, pay-per-use, fault-tolerance, …
3. NFV and SDN are independent and complementary. You can do
either or both.
4. NFV requires standardization of reference points and interfaces
to be able to mix and match VNFs from different sources
5. NFV can be done now. Several of virtual functions have already
been demonstrated by carriers.
185. References / Acknowledgements
• ETSI NFV ISG, http://portal.etsi.org/portal/server.pt/community/NFV/367
• Diego R. Lopez, Telefónica I+D, NFV ISG Technical Manager, Network Functions Virtualization -
Beyond Carrier-grade Clouds
• Raj Jain, Introduction to Network Function Virtualization (NFV),
http://www.cse.wustl.edu/~jain/cse570-13/m_17nfv.htm
• M. Cohn, “NFV Insider’s Perspective, Part 2: There’s a Network in NFV –The Business Case for SDN,”
Sep 2013, http://www.sdncentral.com/education/nfv-insiders-perspective-part-2-theres-network-nfv-
business-case-sdn/2013/09/
• M. Cohn, “NFV Group Flocks to Proof-of-Concept Demos,” Aug 2013,
http://www.sdncentral.com/technology/nfv-group-flocks-to-proof-ofconcept-models/2013/08/
• W. Xu, et al., “Data Models for NFV,” IETF Draft, Sep 2013, http://tools.ietf.org/html/draft-xjz-nfv-
model-datamodel-00
• CloudNFV, http://www.cloudnfv.com/page1.html
• Project Clearwater, http://www.projectclearwater.org/
• B. Briscoe, et al., “NFV,” IETF, March 2012, http://www.ietf.org/proceedings/86/slides/slides-86-sdnrg-
1.pdf
• Intel, “Open simplified Networking Based on SDN and NFV,” 2013, 7 pp.,
http://www.intel.com/content/dam/www/public/us/en/documents/whitepapers/sdn-part-1-
secured.pdf
• J. DiGiglio, and D. Ricci, “High Performance, Open Standard Virtualization with NFV and SDN,”
http://www.windriver.com/whitepapers/ovp/ovp_whitepaper.pdf
186. Acronyms
• API Application Programming Interface
• BRAS Broadband Remote Access Server
• BSS Business Support Systems
• CapEx Capital Expenditure
• CDN Content Distribution Network
• CGNAT Carrier-Grade Network Address Translator
• CGSN Combined GPRS Support Node
• COTS Commercial-off-the-shelf
• DDIO Data Direct I/O Technology
• DHCP Dynamic Host control Protocol
• DPI Deep Packet Inspection
• EMS Element Management System
• ETSI European Telecom Standards Institute
• GGSN Gateway GPRS Support Node
• GPRS
• HLR Home Location Register
• IaaS Infrastructure as a Service
187. Acronyms
• IETF Internet Engineering Task Force
• IMS IP Multimedia System
• INF Architecture for the virtualization Infrastructure
• IP Internet Protocol
• ISG Industry Specification Group
• LSP Label Switched Path
• MANO Management and orchestration
• MME Mobility Management Entity
• NAT Network Address Translation
• NF Network Function
• NFV Network Function Virtualization
• NFVI Network Function Virtualization Infrastructure
• NFVIaaS NFVI as a Service
• NIC Network Interface Card
• OpEx Operational Expences
• OS Operating System
188. Acronyms
• OSS Operation Support System
• PaaS Platform as a Service
• PE Provider Edge
• PGW Packet Data Network Gateway
• PoC Proof-of-Concept
• PoP Point of Presence
• PSTN Public Switched Telephone Network
• QoS Quality of Service
• REL Reliability, Availability, resilience and fault tolerance group
• RGW Residential Gateway
• RNC Radio Network Controller
• SaaS Software as a Service
• SBC Session Border Controller
• SDN Software Defined Networking
• SGSN Serving GPRS Support Node
• SGW Serving Gateway
189. Acronyms
• SIP Session Initiation Protocol
• SLA Service Level Aggrement
• SWA Software architecture
• TAS Telephony Application Server
• TMF Forum
• vEPC
• VM Virtual Machine
• VNF Virtual Network Function
• VNFaaS VNF as a Service
• vSwitch Virtual Switch
• VT-d Virtualization Technology for Direct IO
• VT-x Virtualization Technology
191. NFV ISG PoC NFV Use Case Operators Vendors
CloudNFV Open NFV Framework Use Case #5 Virtualization of the Mobile
Core and IMS
Sprint
Telefonica
6Wind, Dell
Enterprise Web
Huawei, Mellanox
Overture, Qosmos
Service Chaining for NW Function
Selection in Carrier Networks
Use Case #2
Virtual Network Function as a Service
(VNFaaS)
Use Case #4
Virtual Network Forwarding Graphs
NTT Cisco, HP
Juniper
Virtual Function State Migration and
Interoperability
Use Case #1
NFV Infrastructure as a Service (NFVIaaS)
AT&T
BT
Broadcom
Tieto
Multi-vendor Distributed NFV Use Case #2
VNFaaS
Use Case #4
Virtual Network Forwarding Graphs
CenturyLink Certes
Cyan
Fortinet
RAD
E2E vEPC Orchestration in a multi-vendor
open NFVI environment
Use Case #1
NFVIaaS
Use Case #5 Virtualization of the Mobile
Core and IMS
Sprint
Telefonica
Connectem
Cyan
Dell
Intel
Virtualised Mobile Network with
Integrated DPI
Use Case #2
VNFaaS
Use Case #5 Virtualization of the Mobile
Core and IMS Use Case #6 Virtualisation
of Mobile base station
Telefonica HP
Intel
Qosmos
Tieto
Wind River
C-RAN virtualisation with dedicated
hardware accelerator
Use Case #6 Virtualisation of Mobile base
station
China Mobile Alcatel-Lucent
Intel
Wind River
Automated Network Orchestration Use Case #1
NFVIaaS
Deutsche Telekom Ericsson
x-ion
VNF Router Performance with DDoS
Functionality
Use Case #2
VNFaaS
AT&T
Telefonica
Brocade
Intel
194. VNF Forwarding Graph:
- E2E Service Description & KPIs
- Info about Component VNFD ,
PNFD, and associated Links
- Inter NF KPIs with dependent VNFs
/PNFs in service graph
VNFFG
Virtual VNF Link Descriptor:
- Link type (eg Point to Point ,
Multipoint) , Inter VNF, & VNF to
legacy network links, SAN
- KPIs (eg Bandwidth , QoS , Latency)
- Network type (Hypervisor vSwitch,
NIC eSwitch, Cluster VEPA or
FCoE/IB, WAN)
VVLD
Virtual Network Function Descriptor:
• Compute requirements and SLAs
• For each Component sub functions,
(eg Processing, memory, Storage
access requirements & SLAs)
• Reliability SLAs/class
• Intra VNF component links
VNFD
Physical Network Function Descriptor:
• Reliability SLAs/class
• Legacy network links
…
PNFD
Service
catalog
VNF
catalog
O
r
c
h
e
s
t
r
a
t
o
r
NFV instances
Service Instance
• Services
customized from
templates by
NFVO
• Each service
having
component
VNFDs, service
graph definition,
and real time
status of service
graph
Link Instance
• VNLs
instantiated
in NFVI by
NFVO & VIM
VNF Instance
- VNFs
instantiated
by NVFO,
VNFM &
VIM
PNF Instance
- PNFs
incorporated
by NVFO
Service Chain
Record
Virtual
VNF
Link
Record
Virtual
Network
Function
Record
Physical
Network
Function
Record
Element
catalog
VNFIDs VVLIDsNSIDs
Service order with parameters
Resource orders with parameters
NSD
VNFFGID
Descriptor Information Model