The document provides an overview of the ViSION project, which aims to develop a traffic orchestrator using an HP SDN controller and OpenFlow. It discusses:
- The ViSION project started in 2012 as CERN openlab-HP collaboration on SDN research using OpenFlow. The goal later shifted to traffic orchestration.
- An outline of the topics covered, including Software Defined Networking, the ViSION traffic orchestrator components, and the development environment.
- The ViSION software stack sits above the HP SDN controller and includes a core framework, balancer, health monitor and UI. It aims to orchestrate traffic between client networks and resource pools.
This is an overview of OpenFlow Networking. Derived from a talk presented at the Open Networking Summit, it talks about the motivations for OpenFlow, the details of the protocol, and the current state of hardware and software.
Class lecture by Prof. Raj Jain on Introduction to OpenFlow. The talk covers Planes of Networking, Data vs. Control Logic, OpenFlow: Key Ideas, History of OpenFlow, Separation of Control and Data Plane, OpenFlow V1.0, Matching, Counters, Actions, Hardware OpenFlow Switches, Software OpenFlow Switches, Open vSwitch, Open vSwitch Features, OVSDB, OpenFlow V1.1, OpenFlow Hardware Implementation, OpenFlow V1.2, OpenFlow 1.3, OpenFlow V1.4, Implementation Issues, Current Limitations of OpenFlow, OpenFlow Current Activities, Introduction to OpenFlow, Planes of Networking, Data vs. Control Logic, OpenFlow: Key Ideas, History of OpenFlow, Separation of Control and Data Plane, OpenFlow V1.0, Matching, Counters, Actions, Hardware OpenFlow Switches, Software OpenFlow Switches, Open vSwitch, Open vSwitch Features, OVSDB, OpenFlow V1.1, OpenFlow Hardware Implementation, OpenFlow V1.2, OpenFlow 1.3, OpenFlow V1.4, Implementation Issues, Current Limitations of OpenFlow, OpenFlow Current Activities. Video recording available in YouTube.
The dark side of SDN and OpenFlow
Security & Dependability issues, challenges, and research opportunities.
Attack vectors and threats.
Practical security assessment of OpenFlow-enabled networks.
Vulnerabilities of current Network Operating Systems (e.g., Cisco IOS).
Software Load Balancer for OpenFlow Complaint SDN architecturePritesh Ranjan
Download this presentation and view in Microsoft powerpoint. Animation effects make it difficult to understand on Slideshare.
REFERENCE:
R. Wang, D. Butnariu, and J. Rexford, “OpenFlow-based server load balancing gonewild,” In Hot-ICE, 2011.
The Challenges of SDN/OpenFlow in an Operational and Large-scale NetworkOpen Networking Summits
Jun Bi
Professor & Director
Tsinghua University
Outline
• Intra-AS (campus level) IPv6 source address validation using OpenFlow (with extension)
– Good for introducing new IP services to network
• Planning next step if we run SDN as a common infrastructure for new services and architectures
– Some personal viewpoints and thoughts on design challenges
– Forwarding abstraction for Post-IP architectures
– Control abstraction for scalable NOS and programmable/manageable virtualization platform
– Inter-AS policies negotiation abstraction
ONS2015: http://bit.ly/ons2015sd
ONS Inspire! Webinars: http://bit.ly/oiw-sd
Watch the talk (video) on ONS Content Archives: http://bit.ly/ons-archives-sd
This is an overview of OpenFlow Networking. Derived from a talk presented at the Open Networking Summit, it talks about the motivations for OpenFlow, the details of the protocol, and the current state of hardware and software.
Class lecture by Prof. Raj Jain on Introduction to OpenFlow. The talk covers Planes of Networking, Data vs. Control Logic, OpenFlow: Key Ideas, History of OpenFlow, Separation of Control and Data Plane, OpenFlow V1.0, Matching, Counters, Actions, Hardware OpenFlow Switches, Software OpenFlow Switches, Open vSwitch, Open vSwitch Features, OVSDB, OpenFlow V1.1, OpenFlow Hardware Implementation, OpenFlow V1.2, OpenFlow 1.3, OpenFlow V1.4, Implementation Issues, Current Limitations of OpenFlow, OpenFlow Current Activities, Introduction to OpenFlow, Planes of Networking, Data vs. Control Logic, OpenFlow: Key Ideas, History of OpenFlow, Separation of Control and Data Plane, OpenFlow V1.0, Matching, Counters, Actions, Hardware OpenFlow Switches, Software OpenFlow Switches, Open vSwitch, Open vSwitch Features, OVSDB, OpenFlow V1.1, OpenFlow Hardware Implementation, OpenFlow V1.2, OpenFlow 1.3, OpenFlow V1.4, Implementation Issues, Current Limitations of OpenFlow, OpenFlow Current Activities. Video recording available in YouTube.
The dark side of SDN and OpenFlow
Security & Dependability issues, challenges, and research opportunities.
Attack vectors and threats.
Practical security assessment of OpenFlow-enabled networks.
Vulnerabilities of current Network Operating Systems (e.g., Cisco IOS).
Software Load Balancer for OpenFlow Complaint SDN architecturePritesh Ranjan
Download this presentation and view in Microsoft powerpoint. Animation effects make it difficult to understand on Slideshare.
REFERENCE:
R. Wang, D. Butnariu, and J. Rexford, “OpenFlow-based server load balancing gonewild,” In Hot-ICE, 2011.
The Challenges of SDN/OpenFlow in an Operational and Large-scale NetworkOpen Networking Summits
Jun Bi
Professor & Director
Tsinghua University
Outline
• Intra-AS (campus level) IPv6 source address validation using OpenFlow (with extension)
– Good for introducing new IP services to network
• Planning next step if we run SDN as a common infrastructure for new services and architectures
– Some personal viewpoints and thoughts on design challenges
– Forwarding abstraction for Post-IP architectures
– Control abstraction for scalable NOS and programmable/manageable virtualization platform
– Inter-AS policies negotiation abstraction
ONS2015: http://bit.ly/ons2015sd
ONS Inspire! Webinars: http://bit.ly/oiw-sd
Watch the talk (video) on ONS Content Archives: http://bit.ly/ons-archives-sd
SDN (Software Defined Networking) ControllerVipin Gupta
SDN is going to redefine networking and cloud world. This is the biggest thing that has happened in networking field in last 30 years. SDN is a New Way to Design, Build and Operate Networks. Here we are discussing about SDN Controllers.
The document is a scientific composition about the
system architecture of OpenFlow and describes their principles of data handling, the types of messages and operations on the network.
본 발표에서는 OCP 하드웨어 및 소프트웨어에 대한 소개를 진행할 예정이다. 특히 페이스북에서 제공한 Wedge ToR 스위치, Open Network Linux, FBOSS, Indigo OpenFlow agent 를 갖고 삽질한 지난 두달 간의 경험을 공유할 예정이다.
This presentation is an overview of OpenFlow and why it is relevant in creating programmable networks. Included are details on the protocol and examples of how applications and services can benefit from this.
Industrial Internet of Things: Protocols an StandardsJavier Povedano
Presentation for the Distributed Systems Master at the University of Cordoba (Spain). In this presentation we review the state of the art in communication middlewares for Industrial Internet of Things
SDN (Software Defined Networking) ControllerVipin Gupta
SDN is going to redefine networking and cloud world. This is the biggest thing that has happened in networking field in last 30 years. SDN is a New Way to Design, Build and Operate Networks. Here we are discussing about SDN Controllers.
The document is a scientific composition about the
system architecture of OpenFlow and describes their principles of data handling, the types of messages and operations on the network.
본 발표에서는 OCP 하드웨어 및 소프트웨어에 대한 소개를 진행할 예정이다. 특히 페이스북에서 제공한 Wedge ToR 스위치, Open Network Linux, FBOSS, Indigo OpenFlow agent 를 갖고 삽질한 지난 두달 간의 경험을 공유할 예정이다.
This presentation is an overview of OpenFlow and why it is relevant in creating programmable networks. Included are details on the protocol and examples of how applications and services can benefit from this.
Industrial Internet of Things: Protocols an StandardsJavier Povedano
Presentation for the Distributed Systems Master at the University of Cordoba (Spain). In this presentation we review the state of the art in communication middlewares for Industrial Internet of Things
Open network boxes to public
Current network devices are close systems
Intelligence to network nodes because
Internet infrastructure evolves slow
Customers can not add new services
Better use of network resources
Abundant bandwidth
Diversified clients’ needs
Stacks and Layers: Integrating P4, C, OVS and OpenStackOpen-NFP
Smart Network Interface Cards (SmartNICs) are increasingly being deployed in cloud data centers to offload inline network processing tasks from server CPUs, thereby improving system throughput while freeing up server CPU cycles for application processing. The match/action and tunnel handling semantics of SmartNIC datapaths can be either expressed directly in the P4 language, be defined by virtual switching software like Open vSwitch (implementing the semantics of a specification like OpenFlow), or by using a combination of these. This presentation compares these approaches, considering aspects like the expressiveness and performance of the resulting datapath as well how these datapath variants can be integrated into existing cloud management systems (e.g. OpenStack).
Johann Tönsing
Chief Architect & SVP, Software, Netronome
Johann is a recognized industry expert in SDN, Linux-based networking technologies, network virtualization, security, and NFV. Johann has been an active contributing member and has been nominated to leadership roles in multiple standards bodies related to SDN and NFV. As Netronome’s Chief Architect, Johann leads all aspects of Netronome’s product design and development, with heavy emphasis on advanced and open server-based networking technologies where he also holds multiple patents. He holds a Masters of Engineering in Electronics.
Software defined networking(sdn) pro acrtive routing path update research pro...MD SHIBLI
This presentation is created for a research project on Pro-active routing path update in Software Defined Networking (SDN). Peacock Algorithm will be used to evaluate the time complexity of path update.
Enterprise Datacenter Virtualization und Cloud Computing stellen neue Anforderungen an das Netzwerk. Traditionsgemäss wurden virtuelle Workloads über als Bridge fungierende virtuelle Switches mit VLANs auf dem physischen Netzwerk verbunden. Mit dem Wachstum der Anfordungen an Skalierung und Automatisierung stossen diese Modelle an Grenzen.
Thomas Graf bot an diesem OpenTuesday einen Einblick in Protokolle und Technologien wie OpenFlow, VXLAN, OpenStack Neutron und Open vSwitch, die eingesetzt werden, um neue automatisierte Netzwerkkonzepte der nächsten Generation, wie Software Defined Networking oder Network Function Virtualization, umzusetzen.
Introduction to the Helium release of OpenDaylightSDN Hub
"Helium" is the second release of OpenDaylight made on Oct 2, 2014. This release has more expanded support for Yang, modeling and autogeneration of REST API, improved performance of MD-SAL datastore using Tree-based Akka storage, better integration with OpenStack Neutron API, support for Group-based Policy and support for Service Function Chaining.
Why Open Networking?
Open network boxes to public
Current network devices are close systems
Intelligence to network nodes because
Internet infrastructure evolves slow
Customers can not add new services
Better use of network resources
Abundant bandwidth
Diversified clients’ needs
Tech Talk by Ben Pfaff: Open vSwitch - Part 2nvirters
Open vSwitch - Part 2
A previous presentation in March 2013 at Bay Area Network Virtualization meetup covered the past, present, and predicted future of Open vSwitch. This talk picks up where that one left off, covering improvements made in Open vSwitch since then, new directions for the coming year, and some related work of interest in the industry.
About Ben Pfaff (twitter: @Ben_Pfaff)
Ben joined Nicira as one of its first employees in 2007 after finishing his PhD at Stanford. Since then he has been working on what became OpenFlow and Open vSwitch. He also made some early contributions to the NOX controller. He has been involved with free software since about 1996, when he started work on GNU PSPP and joined the Debian project.
More info @ http://meetup.com/openvswitch
Follow us on twitter @nvirters
Scaling OpenStack Networking Beyond 4000 Nodes with Dragonflow - Eshed Gal-Or...Cloud Native Day Tel Aviv
As OpenStack matures, more users move from “dipping a toe” to deploying at large scale, with 1000's of nodes.
OpenStack networking has long been a limiting factor in scaling beyond a few hundreds of nodes, forcing users to turn to cell splitting, or to complete offloading of the networking to the underlay systems and forfeit the overlay network altogether.
Dragonflow is a fully distributed, open source, SDN implementation of Neutron, that handles large scale deployments without splitting to cells.
In testing we've conducted, we were able to scale to 4000+ controllers (each controller is typically deployed on a compute node), while maintaining the same performance we had on a small 30 node environment.
Elevating Tactical DDD Patterns Through Object CalisthenicsDorra BARTAGUIZ
After immersing yourself in the blue book and its red counterpart, attending DDD-focused conferences, and applying tactical patterns, you're left with a crucial question: How do I ensure my design is effective? Tactical patterns within Domain-Driven Design (DDD) serve as guiding principles for creating clear and manageable domain models. However, achieving success with these patterns requires additional guidance. Interestingly, we've observed that a set of constraints initially designed for training purposes remarkably aligns with effective pattern implementation, offering a more ‘mechanical’ approach. Let's explore together how Object Calisthenics can elevate the design of your tactical DDD patterns, offering concrete help for those venturing into DDD for the first time!
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
Generating a custom Ruby SDK for your web service or Rails API using Smithyg2nightmarescribd
Have you ever wanted a Ruby client API to communicate with your web service? Smithy is a protocol-agnostic language for defining services and SDKs. Smithy Ruby is an implementation of Smithy that generates a Ruby SDK using a Smithy model. In this talk, we will explore Smithy and Smithy Ruby to learn how to generate custom feature-rich SDKs that can communicate with any web service, such as a Rails JSON API.
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualityInflectra
In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring.
Learn about:
• The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks.
• Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective.
• Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification.
• Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process.
Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other?
Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
2. ViSION Project Context
› CERN openlab - HP Networking collaboration
§ SDN research and development using OpenFlow
§ Started in February 2012
§ 2 engineers
› Initial project goal: Virtual services in OpenFlow networks
§ traffic slicing and network virtualization
§ overlapping with industry (HP’s VAN, NICIRA)
› Goal reassessment: traffic orchestration
§ Scale-out / optimize resource utilization
§ Load balancing
› HP openlab collaboration
§ HP’s engagement in openlab phase IV ends with the ViSION project
§ In contact with HP for openlab phase V
S. Stancu - CERN openlab13/02/2014 2
3. Outline
› Software Defined Networking
§ OpenFlow in a nutshell
§ From traditional networking to SDN
§ Protocol, Controller, Switches
› ViSION traffic orchestrator
§ HP SDN Controller
§ ViSION Software Stack
̵ Core Framework & Balancer
̵ Health Monitor
§ Regressive Testing
§ Development Environment
› Wrap-up
§ HPN – California
§ Project Timeline
§ Conclusion
S. Stancu - CERN openlab13/02/2014 3
4. Tradi&onal
Switch
Specialized Packet Forwarding Hardware
(Look-up Tables)
ControlPath
Routing FIBMAC table
ACLs
DataPath
App
(e.g. LLDP)
Switch Operating System
App App
OpenFlow – Decouple Control & Data
IP src IP
dst
Src
port
Dst
port
permit
?
137.138.*.* /* * 22 allow
* * * * deny
IP dst mask gw port
10.1.12.0 /24 192.168.7.1 eth 1/7
0.0.0.0 /0 192.168.1.1 eth 0/1
MAC dst port
00:FC:…. eth 1/7
OO:D1:… eth 0/1
Openflow
Switch
Specialized Packet Forwarding Hardware
(Look-up Tables)
DataPathControlPath
App
(e.g. LLDP)
Controller platform
(“Network Operating System”)
App App
Match Rule Action Stats
10+ tuple (MAC, VLAN, IP, …) Forward to port X Pkts, bytes
10+ tuple (MAC, VLAN, IP, …) Forward normal Pkts, bytes
10+ tuple (MAC, VLAN, IP, …) Modify fields (e.g. MAC) Pkts, bytes
10+ tuple (MAC, VLAN, IP, …) Send to controller Pkts, bytes
OpenFlow (Control) Agent
Flow Table NFlow Table 1
open
standardized
API
External
SW
Controller
S. Stancu - CERN openlab13/02/2014 4
5. OpenFlow* – Flow Table Entries
Switch
Port
MAC
src
MAC
dst
Eth
type
VLAN
ID
IP
Src
IP
Dst
IP
Prot
L4
sport
L4
dport
Rule
Ac&on
Stats
1. Forward
packet
to
zero
or
more
ports
2. Encapsulate
and
forward
to
controller
3. Send
to
normal
processing
pipeline
4. Modify
Fields
5. Any
extensions
you
add!
Packet
+
byte
counters
VLAN
pcp
IP
ToS
Switching
*
Switch
Port
MAC
src
MAC
dst
Eth
type
VLAN
ID
IP
Src
IP
Dst
IP
Prot
TCP
sport
TCP
dport
Ac&on
*
00:1f:..
*
*
*
*
*
*
*
port6
Rou&ng
*
Switch
Port
MAC
src
MAC
dst
Eth
type
VLAN
ID
IP
Src
IP
Dst
IP
Prot
TCP
sport
TCP
dport
Ac&on
*
*
*
*
*
5.6.7.8
*
*
*
port6
Examples
+ mask what fields to match
+ wildcard bits in selected fields (e.g. IP addresses)
S. Stancu - CERN openlab13/02/2014 5
* OpenFlow v 1.0
6. OpenFlow Evolution
› ONF (Open Networking Foundation) is the body maintaining the OpenFlow specs.
1.0
• 12/2009
• Widely deployed
• L1-L4 field
matching
• Actions: send to
port, rewrite L2-L4
headers, set/strip
vlan tag
• Subnet masks
• Vendor Extensions
• Controller failover
• Barrier command
1.1
• 02/2011
• Multiple tables
• Multi-level VLAN
and MPLS tagging
• Virtual ports
1.2
• 12/2011
• Extensible match
support (TLV)
• Basic IPv6 support
• Message bundles
1.3
• 04/2012
• Next gen ASICs
• IPv6 extension
header
• Per-flow meters
• Eviction and
vacancy events
1.4
• 08/2013
• Optical port
properties
• IANA TCP port
6653
• Controller flow
monitoring and
status events
13/02/2014 S. Stancu - CERN openlab 6
7. Openflow Switches *
Company Switch
HP 5400zl, 8200zl, 6200yl
3500 3500yl, 6600
Brocade MLXe, CER, CES
Ciena Coredirector w/ firmware 6.1.1
Cisco Cat6k, Catlyst 3750, 6500 series
Juniper MX, EX, T-640
Arista EOS, 7050, 7124FX
NEC IP8800, PF5240, PF5820
Pronto 3240, 3290, 3295, 3780
Toroki Lightswitch 4810
Dell Z9000, S4810
Quanta LB4G
Extreme summit X440, x460, x670
Huawei Openflow capable platform
IBM 8264
NetGear 7328SO, 7352SO
* most switches have some of the openflow features implemented in software
(forwarding capacity drastically reduced)
13/02/2014 S. Stancu - CERN openlab 7
8. Specialized Packet
Forwarding Hardware
App App App
Operating
System
Specialized Packet
Forwarding Hardware
App App App
Operating
System
Specialized Packet
Forwarding Hardware
App App App
Operating
System
Specialized Packet
Forwarding Hardware
Operating
System
App App App
Specialized Packet
Forwarding Hardware
App App App
Operating
System
Closed
Traditional Networking
› Closed equipment
§ Software bundled with hardware
§ Vendor-specific interfaces
› Few people can innovate
§ Equipment vendors write the code
§ Long delays to introduce new features
› Fully Distributed Protocols
Proprietary
Moving
data
Network
Control
Network Device
(switch / router)
S. Stancu - CERN openlab13/02/2014 8
9. Specialized Packet
Forwarding Hardware
OpenFlow agent
Traditional Networking ++
› Open equipment
§ Software decoupled from hardware
§ Standard interface (OpenFlow)
› Anybody can innovate
› Fully Distributed Protocols
Specialized Packet
Forwarding Hardware
OpenFlow agent
Specialized Packet
Forwarding Hardware
OpenFlow agent
Specialized Packet
Forwarding Hardware
OpenFlow agent
Controller
Controller
Controller
Controller
S. Stancu - CERN openlab13/02/2014 9
10. App
Simple
Packet
Forwarding
Hardware
Simple
Packet
Forwarding
Hardware
Simple
Packet
Forwarding
Hardware
App App
Simple
Packet
Forwarding
Hardware
Simple
Packet
Forwarding
Hardware
Network
Opera&ng
System
Open
interface
to
hardware
(e.g.
OpenFlow)
• Anybody
can
innovate
Software Defined Networking (SDN)
Centralized Control
S. Stancu - CERN openlab13/02/2014 10
11. SDN Open Source Controllers
S. Stancu - CERN openlab 11
Functionally Oriented (little or no support for high availability, scaling, etc)
Language Examples
C/C++ NOX, Trema (also Ruby) and MUL
Java Beacon, Maestro and Floodlight
Ocaml Mirage and Frenetic
Haskell Nettle, McNettle and NetCore
Python POX, RYU and Pyretic
JavaScript NodeFlow (for Node.JS)
Enterprise Grade
Controller Details
OpenDaylight
(Linux Foundation project)
Joint industry effort.
Virtually all the big players are contributing members
Release v 1.0 (02/2014
ON.LAB ONOS
(Open Networking
Operating System)
Floodlight based
Work in progress
High availability, distributed, scale-out
13/02/2014
12. SDN Commercial Controllers
S. Stancu - CERN openlab 12
Company SDN Controller
HP VAN (Virtual Application Networks)
OpenFlow 1.3 support
High Availability
Infrastructure controller
SDN ecosystem
Big Switch Networks Big Network Controller
Cisco Systems XNC (Extensible Network Controller)
IBM Programmable Network Controller
NEC ProgrammableFlow Controller
NTT Data Virtual Network Controller
Netsocket vFlow Controller
Nicira (VMware) NVP (Network Virtualization Platform)
Nuage Networks VSC (Virtualized Services Controller)
Plexxi Inc Plexxi Control
Pluribus Networks Netvisor
Türk Telekom Group YakamOS
13/02/2014
* List from sdn central directory
13. Outline
› Software Defined Networking
§ OpenFlow in a nutshell
§ From traditional networking to SDN
§ Protocol, Controller, Switches
› ViSION traffic orchestrator
§ HP SDN Controller
§ ViSION Software Stack
̵ Core Framework & Balancer
̵ Health Monitor
§ Regressive Testing
§ Development Environment
› Wrap-up
§ HPN – California
§ Project Timeline
§ Conclusion
S. Stancu - CERN openlab13/02/2014 13
14. HP SDN Controller Overview
Base OpenFlow Controller Appliance
› Virtual Appliance deployed as SW on
an Industry standard x86 server
› OpenFlow 1.3 Controller
› Built-in Network Services
› Appliance Administration
A Distributed Platform for High-
Availability & Scalability
› Controller Clustering for Load-
Balancing and Fail-Over
› Control State Mirroring across
cluster for transparent failure
recovery
Extensible Platform for SDN Application
Developers
› Embedded Java Application
Deployment
› REST APIs
› GUI HP Network Infrastructure
Standard interfaces and control protocols
Openflow 1.3 Engine
MS-Lync
Partner
3rdpartyApps
Federation
Sentinel
Cloud App
Connectors
Hadoop
Clustering
Topology Device Mgmt Provisionin
g
Security
Path Calculation
Alerts
. .
.
Backup/Restore App Mgr
Diagnostics...
...
Customer
Applications
RESTful API
S. Stancu - CERN openlab13/02/2014 14
15. ViSION Traffic Orchestrator
› Traffic orchestration
§ OpenFlow fabrics interconnect:
̵ Client Networks
̵ Resource pools
§ Vision Controller:
̵ “programs” flows through fabrics
̵ collects feed-back from resources
› OpenFlow fabrics desired functionality:
§ (1) Classification
§ (2) Load Balancing
§ (3) Mirroring
§ (4) Fault tolerance
› OpenFlow 1.0 limitations
§ Classification based on port ranges scales poorly
§ Uniform load distribution not straight forward
̵ Can’t hash on high entropy bits (e.g. lower IP bits)
S. Stancu - CERN openlab13/02/2014 15
16. ViSION Software Stack
HP SDN Controller
ViSION Core Framework
hp apps
APIViSION
Balancer
ViSION UI
OF Fabric
HealthMonitor
Software Stack
S. Stancu - CERN openlab13/02/2014 16
17. ViSION/ Core Framework
• Traffic orchestration decomposition
1. Logical layer: high level user goals
2. Translation layer
3. Physical layer: the OpenFlow fabric
• Core module
• Implements the first two layers
• Provides support for redundancy by using multiple links/paths
• Allows the higher logical layer to focus on traffic orchestration only
Translation
Physical
Logical
S. Stancu - CERN openlab13/02/2014 17
18. Balancer
› Allocates flows to resources based on
§ Resource capacity
§ Resource availability ß Health Monitor
§ Resource load ß Traffic Statistics
› Higher level of abstraction
§ Deals with the available resources and consumers
§ The core implements its decision into the physical OF fabric
› Flow allocation
§ Static à compromise for stateful resource
§ Dynamic
› High availability
§ Relocate flows in case a resource becomes unavailable
S. Stancu - CERN openlab13/02/2014 18
Balancer
Net
Health
monitor
&
Traffic
statistics
R R R
19. Regression Testing
S. Stancu - CERN openlab13/02/2014 19
RegTest
Manager
Agents
Agents
Agents
› SDN applications
§ No established validation and
troubleshooting methodologies
› RegTest application
§ Manager:
̵ Coordinates pools of agents
̵ deterministic flows sequence
§ Agents
̵ Coordinate and monitors flows
̵ adapted MGEN to inject traffic
› Enables regression testing for
the ViSION traffic orchestrator
20. Development Environment
› Mininet
§ http://mininet.org/
§ Realistic virtual network environment
§ Real kernel, switch and application code on a single VM
› Open vSwitch
§ http://vswitch.org/
§ Production quality virtual switch, OpenFlow
§ Multi-server virtualized environment, development and testing
§ Part of Linux kernel as of 3.3
̵ default switch in Xen Cloud Platform
̵ integrated in OpenStack
13/02/2014 S. Stancu - CERN openlab 20
21. Outline
› Software Defined Networking
§ OpenFlow in a nutshell
§ From traditional networking to SDN
§ Protocol, Controller, Switches
› ViSION traffic orchestrator
§ HP SDN Controller
§ ViSION Software Stack
̵ Core Framework & Balancer
̵ Health Monitor
§ Regressive Testing
§ Development Environment
› Wrap-up
§ HPN – California
§ Project Timeline
§ Conclusion
S. Stancu - CERN openlab13/02/2014 21
22. HPN – California
› HPN on-site reviews
§ Architecture
̵ Review and approval
̵ Knowledge transfer to technology group
̵ Implementation technologies assessment
§ Implementation
̵ Review and feedback
̵ Development practices
§ Brainstorming on applicability/extension to cloud environments
13/02/2014 S. Stancu - CERN openlab 22
23. ViSION Project Timeline
Feb 2012
• Kick-off
• Initial target: virtual
machine mobility
• Technology review
May 2012
• Project definition
• Investigation
• Finalized project scope
Sep 2012
• Design
• OF based ACL pusher
prototype
• Testbed setup
Jan 2013
• Development
• Core module prototype
implementation
• Architecture review
May 2013
• Development
• New HP controller API
• Visit to HPN
• In depth design review
• Flare update
Sep 2013
• Development
• Service oriented core
module implementation
• Health Monitor
• Regressive testing tool
Jan 2014
• Wrap up
S. Stancu - CERN openlab13/02/2014 23
24. Conclusion
› The ViSION core framework offers a platform for implementing
traffic orchestration
› Outlook – CERN and HP to assess technology applicability
§ CERN – scaling firewall system and datacenter flow optimization
§ HP – leverage the solution and know-how to expand the SDN platform.
› Acknowledgements
§ Thankful to HP for the excellent collaboration
̵ Benefited from their pioneering experience in OpenFlow/SDN
§ Thank you to IT-CS for their support, advice and technical feedback
13/02/2014 S. Stancu - CERN openlab 24
27. ViSION - HP SDN Framework
S. Stancu - CERN openlab13/02/2014 27
28. ViSION/ Health Monitor Module
- Real-time resource status information
- Flexible module system
- Multi-module data aggregation per
agent
- Custom agent configuration
- Current modules:
- SNMP
- Ping
- HTTP Web Request
- LinkProbe via OF packet injection
Hmon App
Agents
Data
Collection
Module(s)
Active
Probe(s)
REST API
Resource(s)
S. Stancu - CERN openlab13/02/2014 28
29. ViSION Regressive Testing App
Overview:
- adapted mgen used for traffic injection
- agent application to coordinate and monitor a machine’s flows
- manager application to coordinate a pool of agents
Status:
- prototype, not yet finalized
- summer student involvement
S. Stancu - CERN openlab13/02/2014 29