Uploaded byTrongMinhHoang1
PPTX, PDF29 views

SDN approach.pptx

The document discusses Software Defined Networking (SDN), which separates the control plane from the data plane to allow centralized control over network operations. It outlines the architecture, benefits, challenges, and evolution of SDN, including its role in network virtualization and the management of complex network systems. Key concepts include the OpenFlow protocol, the various planes of networking, and the implementation challenges faced by SDN in real-world applications.

Embed presentation

Download to read offline
6.888 Lecture 14: Software Defined Networking Mohammad Alizadeh Spring 2016  Many thanks to Nick McKeown (Stanford), Jennifer Rexford (Princeton), Scott Shenker (Berkeley), Nick Feamster (Princeton), Li Erran Li (Columbia), Yashar Ganjali (Toronto) 1
Outline What is SDN? OpenFlow basics Why is SDN happening now? (a brief history) 4D discussion 2
What is SDN? 3
Software Defined Network A network in which the control plane is physically separate from the data plane. and A single (logically centralized) control plane controls several forwarding devices. 4
Software Defined Network (SDN) Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Control Control Control Control Control Global Network Map Control Plane Control Program Control Program Control Program 5
What You Said “Overall, the idea of SDN feels a little bit unsettling to me because it is proposing to change one of the main reasons for the success of computer networks: fully decentralized control. Once we introduce a centralized entity to control the network we have to make sure that it doesn’t fail, which I think is very difficult.” 6
Entire backbone runs on SDN A Major Trend in Networking Bought for $1.2 billion (mostly cash) 7
The Networking “Planes” Data plane: processing and delivery of packets with local forwarding state – Forwarding state + packet header  forwarding decision – Filtering, buffering, scheduling Control plane: computing the forwarding state in routers – Determines how and where packets are forwarded – Routing, traffic engineering, failure detection/recovery, … Management plane: configuring and tuning the network – Traffic engineering, ACL config, device provisioning, … 8
Timescales Data Control Management Time- scale Packet (nsec) Event (10 msec to sec) Human (min to hours) Location Linecard hardware Router software Humans or scripts 9
Data and Control Planes Switching Fabric Processor Line card Line card Line card Line card Line card Line card data plane control plane 10
Data Plane Streaming algorithms on packets – Matching on some header bits – Perform some actions Example: IP Forwarding host host host LAN 1 ... host host host LAN 2 ... router router router WAN WAN 1.2.3.4 1.2.3.7 1.2.3.156 5.6.7.8 5.6.7.9 1.2.3.0/24 5.6.7.0/24 forwarding table 11
Control Plane Compute paths the packets will follow – Populate forwarding tables – Traditionally, a distributed protocol Example: Link-state routing (OSPF, IS-IS) – Flood the entire topology to all nodes – Each node computes shortest paths – Dijkstra’s algorithm 12
13
1 2 3 “If , send to 3” Data “If a packet is going to B, then send it to output 3” 1. Figure out which routers and links are present. 2. Run Dijkstra’s algorithm to find shortest paths. 14
Management Plane Traffic Engineering: setting the weights – Inversely proportional to link capacity? – Proportional to propagation delay? – Network-wide optimization based on traffic? 3 2 2 1 1 3 1 4 5 3 3 15
Challenges (Too) many task-specific control mechanisms – No modularity, limited functionality Indirect control – Must invert protocol behavior, “coax” it to do what you want – Ex. Changing weights instead of paths for TE Uncoordinated control – Cannot control which router updates first Interacting protocols and mechanisms – Routing, addressing, access control, QoS The network is • Hard to reason about • Hard to evolve • Expensive 16
Example 1: Inter-domain Routing Today’s inter-domain routing protocol, BGP, artificially constrains routes - Routing only on destination IP address blocks - Can only influence immediate neighbors - Very difficult to incorporate other information Application-specific peering – Route video traffic one way, and non-video another Blocking denial-of-service traffic – Dropping unwanted traffic further upstream Inbound traffic engineering – Splitting incoming traffic over multiple peering links 17
Two locations, each with data center & front office All routers exchange routes over all links R1 R2 R5 R4 R3 Chicago (chi) New York (nyc) Data Center Front Office Example 2: Access Control 18
R1 R2 R5 R4 R3 Chicago (chi) New York (nyc) Data Center chi-DC chi-FO nyc-DC nyc-FO Front Office Example 2: Access Control 19
R1 R2 R5 R4 R3 Data Center chi-DC chi-FO nyc-DC nyc-FO Packet filter: Drop nyc-FO -> * Permit * Packet filter: Drop chi-FO -> * Permit * Front Office chi nyc Example 2: Access Control 20
A new short-cut link added between data centers Intended for backup traffic between centers R1 R2 R5 R4 R3 Data Center Packet filter: Drop nyc-FO -> * Permit * Packet filter: Drop chi-FO -> * Permit * Front Office chi nyc Example 2: Access Control 21
Oops – new link lets packets violate access control policy! Routing changed, but Packet filters don’t update automatically R1 R2 R5 R4 R3 Data Center Packet filter: Drop nyc-FO -> * Permit * Packet filter: Drop chi-FO -> * Permit * Front Office chi nyc Example 2: Access Control 22
Custom Hardware Custom Hardware Custom Hardware Custom Hardware Custom Hardware OS OS OS OS OS Network OS Feature Feature How SDN Changes the Network Feature Feature Feature Feature Feature Feature Feature Feature Feature Feature 23 23
Control Program 1 Network OS 1. Open interface to packet forwarding 3. Consistent, up-to-date global network view 2. At least one Network OS probably many. Open- and closed-source Software Defined Network (SDN) Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Control Program 2 24 24
Network OS Network OS: distributed system that creates a consistent, up-to-date network view – Runs on servers (controllers) in the network – NOX, ONIX, Floodlight, Trema, OpenDaylight, HyperFlow, Kandoo, Beehive, Beacon, Maestro, … + more Uses forwarding abstraction to: – Get state information from forwarding elements – Give control directives to forwarding elements 25
Control Program A Control Program B Network OS Software Defined Network (SDN) Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding 26
Control Program Control program operates on view of network – Input: global network view (graph/database) – Output: configuration of each network device Control program is not a distributed system – Abstraction hides details of distributed state 27
Forwarding Abstraction Purpose: Standard way of defining forwarding state – Flexible • Behavior specified by control plane • Built from basic set of forwarding primitives – Minimal • Streamlined for speed and low-power • Control program not vendor-specific OpenFlow is an example of such an abstraction 28
Network OS Software Defined Network 29 Global Network View Control Program Virtual Topology Network Hypervisor
Virtualization Simplifies Control Program A B A B Abstract Network View Global Network View AB drop Hypervisor then inserts flow entries as needed AB drop AB drop 30
Does SDN Simplify the Network? 31
What You Said “However, I remain skeptical that such an approach will actually simplify much in the long run. That is, the basic paradigm in networks (layers) is in fact a simple model. However, the ever-changing performance and functionality goals have forced more complexity into network design. I'm not sure if SDN will be able to maintain its simplified model as goals continue to evolve.” 32
Does SDN Simplify the Network? Abstraction doesn’t eliminate complexity - NOS, Hypervisor are still complicated pieces of code SDN main achievements - Simplifies interface for control program (user-specific) - Pushes complexity into reusable code (SDN platform) Just like compilers…. 33
OpenFlow Basics 34
OpenFlow Protocol Data Path (Hardware) Control Path OpenFlow Ethernet Switch Network OS Control Program A Control Program B OpenFlow Basics 35
Control Program A Control Program B Network OS OpenFlow Basics Packet Forwarding Packet Forwarding Packet Forwarding Flow Table(s) “If header = p, send to port 4” “If header = ?, send to me” “If header = q, overwrite header with r, add header s, and send to ports 5,6” 36
Primitives <Match, Action> Match arbitrary bits in headers: – Match on any header, or new header – Allows any flow granularity Action – Forward to port(s), drop, send to controller – Overwrite header with mask, push or pop – Forward at specific bit-rate Header Data Match: 1000x01xx0101001x
OpenFlow Rules Exploit the flow table in switches, routers, and chipsets Rule (exact & wildcard) Action Statistics Rule (exact & wildcard) Action Statistics Rule (exact & wildcard) Action Statistics Rule (exact & wildcard) Default Action Statistics Flow 1. Flow 2. Flow 3. Flow N.
Why is SDN happening now? 39
The Road to SDN Active Networking: 1990s - First attempt make networks programmable - Demultiplexing packets to software programs, network virtualization, … Control/Dataplane Separation: 2003-2007 - ForCes [IETF], RCP, 4D [Princeton, CMU], SANE/Ethane [Stanford/Berkeley] - Open interfaces between data and control plane, logically centralized control OpenFlow API & Network Oses: 2008 - OpenFlow switch interface [Stanford] - NOX Network OS [Nicira] 40 N. Feamster et al., “The Road to SDN: An Intellectual History of Programmable Networks”, ACM SIGCOMM CCR 2014.
SDN Drivers Rise of merchant switching silicon - Democratized switching - Vendors eager to unseat incumbents Cloud / Data centers - Operators face real network management problems - Extremely cost conscious; desire a lot of control The right balance between vision & pragmatism - OpenFlow compatible with existing hardware A “killer app”: Network virtualization 41
Virtualization is Killer App for SDN Consider a multi-tenant datacenter - Want to allow each tenant to specify virtual topology - This defines their individual policies and requirements Datacenter’s network hypervisor compiles these virtual topologies into set of switch configurations - Takes 1000s of individual tenant virtual topologies - Computes configurations to implement all simultaneously This is what people are paying money for…. - Enabled by SDN’s ability to virtualize the network
4D 43
4D Decision: all management and control logic Dissemination: communicating with routers Discovery: topology and traffic monitoring Data: packet handling routers Decision Dissemination Discovery Data Network-level objectives Direct control Network- wide views
What You Said “The paper reads more like a thought-exercise or meta discussion of the future SDN field than a presentation of research. I am surprised sigcomm published it.” “some good things about the way the paper was structured was that it mentioned that it had a lot of future work to do and didn't think it was a final solution. By at least addressing that it needs to continue to expand, the authors acknowledge they don't know the merits behind their solution…” 45
What You Said “The most compelling aspect of SDN and of the 4D Approach proposed, in my opinion, is the ability to enable innovation. However, SDN taken to the extreme proposed in the 4D approach seems to me to significantly limit scalability and increase complexity.” 46
What You Said “My concern is that, previous designs that is aware of the delay of updating network view, take the consideration right on their control (they have control rules and protocol that touch this directly). But SDN tries to hide this nature from the programmers. I am not sure if the design of the software, in the absence of these concerns, will end up with expected results.” 47
Practical Challenges Scalability – Decision elements responsible for many routers Reliability – Surviving failures of decision elements and routers Response time – Delays between decision elements and routers Consistency – Ensuring multiple decision elements behave consistently Security – Network vulnerable to attacks on decision elements Interoperability – Legacy routers and neighboring domains 48
Next Time… 49
50

More Related Content

PDF
intro lect.pdfkkpkpkpkpkpjjkojkopjjojjoj
byAmolJoglekar5
 
PPTX
veryOLONADE MAHMpppUD PRESENTATIONrrr.pptx
byawelewa1
 
PPTX
btNOG 9 presentation Introduction to Software Defined Networking
byAPNIC
 
PDF
sdnppt.pdf
byAbhayDonde
 
PPTX
Software Defined networking (SDN)
byMilson Munakami
 
PPTX
Software defined network
byBogamoga1
 
PDF
SDN basics
byAnto Joeis
 
PPTX
TE581-Software Defined Networking-2019aaaaaaaaaaaaaaaa.pptx
byNanaAgyeman13
 
intro lect.pdfkkpkpkpkpkpjjkojkopjjojjoj
byAmolJoglekar5
 
veryOLONADE MAHMpppUD PRESENTATIONrrr.pptx
byawelewa1
 
btNOG 9 presentation Introduction to Software Defined Networking
byAPNIC
 
sdnppt.pdf
byAbhayDonde
 
Software Defined networking (SDN)
byMilson Munakami
 
Software defined network
byBogamoga1
 
SDN basics
byAnto Joeis
 
TE581-Software Defined Networking-2019aaaaaaaaaaaaaaaa.pptx
byNanaAgyeman13
 

Similar to SDN approach.pptx

PPTX
Network programmability: an Overview
byAymen AlAwadi
 
PPTX
Software Defined Networking, Concepts and Practical Implementations
byBangladesh Network Operators Group
 
PPTX
Introduction to OpenFlow, SDN and NFV
byKingston Smiler
 
PPTX
SDN - a new security paradigm?
bySophos Benelux
 
PPTX
Software-Defined Networking (SDN) is a transformative networking paradigm
byeticket4403
 
PPTX
Tutorial on SDN data plane evolution
byAntonio Capone
 
PPTX
08-Software Defined Networking Southern Carolina
bycustcharanhp2309
 
PPTX
Cis sem sdn
byLino Quivén
 
PPTX
Raga_SDN_NSX_1
byRanjith Kumar
 
PPTX
lect4_SDNbasic_openflow.pptx
byJesicaDcruz1
 
PPTX
Foundation of Modern Network- william stalling
byJonathanWallace46
 
PPTX
Software Define Network, a new security paradigm ?
byJean-Marc ANDRE
 
PPTX
Sdn ppt
byPallavi Chhikara
 
PPTX
Software Defined Networking(SDN) and practical implementation_trupti
bytrups7778
 
PPTX
lect1_intro_SDN introductionpptnew1.pptx
byanchitaa1
 
PPTX
Software defined networking
byProf. Dr. Noman Islam
 
PPT
Software defined networking
byGoogle
 
PDF
btNOG 5: Network Automation
byAPNIC
 
PDF
The Road to Software Defined Networking - Papers We Love Hyderabad
byHrishikesh Barua
 
PPTX
sdnppt-140325015756-phpapp01.pptx
byAamirMaqsood8
 
Network programmability: an Overview
byAymen AlAwadi
 
Software Defined Networking, Concepts and Practical Implementations
byBangladesh Network Operators Group
 
Introduction to OpenFlow, SDN and NFV
byKingston Smiler
 
SDN - a new security paradigm?
bySophos Benelux
 
Software-Defined Networking (SDN) is a transformative networking paradigm
byeticket4403
 
Tutorial on SDN data plane evolution
byAntonio Capone
 
08-Software Defined Networking Southern Carolina
bycustcharanhp2309
 
Cis sem sdn
byLino Quivén
 
Raga_SDN_NSX_1
byRanjith Kumar
 
lect4_SDNbasic_openflow.pptx
byJesicaDcruz1
 
Foundation of Modern Network- william stalling
byJonathanWallace46
 
Software Define Network, a new security paradigm ?
byJean-Marc ANDRE
 
Sdn ppt
byPallavi Chhikara
 
Software Defined Networking(SDN) and practical implementation_trupti
bytrups7778
 
lect1_intro_SDN introductionpptnew1.pptx
byanchitaa1
 
Software defined networking
byProf. Dr. Noman Islam
 
Software defined networking
byGoogle
 
btNOG 5: Network Automation
byAPNIC
 
The Road to Software Defined Networking - Papers We Love Hyderabad
byHrishikesh Barua
 
sdnppt-140325015756-phpapp01.pptx
byAamirMaqsood8
 

Recently uploaded

PPTX
Blockchain and cryptography Lecture Notes
bysanjanakumar34
 
PPTX
DevFest Seattle 2025 - AI Native Design Patterns.pptx
bySujata Sridharan
 
PDF
222109_MD_MILTON_HOSSAIN_26TH_BATCH_REGULAR_PMIT V5.pdf
byMILTONKHAN5
 
PDF
application of matrix in computer science
byankitberamath
 
PPTX
Push pop Unit 1 CEC369 IoT P CEC369 IoT P
byKesavRaj8
 
PPTX
CEC369 IoT P CEC369 IoT P CEC369 IoT PCEC369 IoT PCEC369 IoT P
byKesavRaj8
 
PPTX
clustering type :hierarchical clustering.pptx
bydeepalishinkar1
 
PPTX
K-nearest neighbouring machine learing algorithm .pptx
bydeepalishinkar1
 
PPTX
AI at the Crossroads_ Transforming the Future of Green Technology.pptx
bygreentechnexus2024
 
PPT
399-Cathodic-Protection-Presentation.ppt
byMekine
 
PPTX
waste to energy deck v.3.pptx changing garbage to electricity
byGegaGrandeza1
 
PPTX
TRANSPORTATION ENGINEERING Unit-5.1.pptx
byMood Naik
 
PDF
Grade 11 Quarter 3 Gravitational Potentional Energy
bybuannnbeatrice
 
PDF
IPE 105 - Engineering Materials Constitution of Alloys
byMominulIslam67
 
PPTX
TRANSPORTATION ENGINEERING Unit-5.2.pptx
byMood Naik
 
PDF
Advancements in Telecommunication for Disaster Management (www.kiu.ac.ug)
bypublication11
 
PPTX
2-Photoelectric effect, phenomena and its related concept.pptx
byadhidwih
 
PPTX
Presentation 1.pptx WHAT IS ARTIFICIAL INTELLIGENCE?
bypraveenbubnale77
 
PDF
Reinforced Earth Walls Notes .pdf
byPrasad Prabhu
 
PPTX
Waste to Energy - G2 Ethanol.pptx to process
byGegaGrandeza1
 
Blockchain and cryptography Lecture Notes
bysanjanakumar34
 
DevFest Seattle 2025 - AI Native Design Patterns.pptx
bySujata Sridharan
 
222109_MD_MILTON_HOSSAIN_26TH_BATCH_REGULAR_PMIT V5.pdf
byMILTONKHAN5
 
application of matrix in computer science
byankitberamath
 
Push pop Unit 1 CEC369 IoT P CEC369 IoT P
byKesavRaj8
 
CEC369 IoT P CEC369 IoT P CEC369 IoT PCEC369 IoT PCEC369 IoT P
byKesavRaj8
 
clustering type :hierarchical clustering.pptx
bydeepalishinkar1
 
K-nearest neighbouring machine learing algorithm .pptx
bydeepalishinkar1
 
AI at the Crossroads_ Transforming the Future of Green Technology.pptx
bygreentechnexus2024
 
399-Cathodic-Protection-Presentation.ppt
byMekine
 
waste to energy deck v.3.pptx changing garbage to electricity
byGegaGrandeza1
 
TRANSPORTATION ENGINEERING Unit-5.1.pptx
byMood Naik
 
Grade 11 Quarter 3 Gravitational Potentional Energy
bybuannnbeatrice
 
IPE 105 - Engineering Materials Constitution of Alloys
byMominulIslam67
 
TRANSPORTATION ENGINEERING Unit-5.2.pptx
byMood Naik
 
Advancements in Telecommunication for Disaster Management (www.kiu.ac.ug)
bypublication11
 
2-Photoelectric effect, phenomena and its related concept.pptx
byadhidwih
 
Presentation 1.pptx WHAT IS ARTIFICIAL INTELLIGENCE?
bypraveenbubnale77
 
Reinforced Earth Walls Notes .pdf
byPrasad Prabhu
 
Waste to Energy - G2 Ethanol.pptx to process
byGegaGrandeza1
 

SDN approach.pptx

  • 1.
    6.888 Lecture 14: Software DefinedNetworking Mohammad Alizadeh Spring 2016  Many thanks to Nick McKeown (Stanford), Jennifer Rexford (Princeton), Scott Shenker (Berkeley), Nick Feamster (Princeton), Li Erran Li (Columbia), Yashar Ganjali (Toronto) 1
  • 2.
    Outline What is SDN? OpenFlowbasics Why is SDN happening now? (a brief history) 4D discussion 2
  • 3.
  • 4.
    Software Defined Network Anetwork in which the control plane is physically separate from the data plane. and A single (logically centralized) control plane controls several forwarding devices. 4
  • 5.
    Software Defined Network(SDN) Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Control Control Control Control Control Global Network Map Control Plane Control Program Control Program Control Program 5
  • 6.
    What You Said “Overall,the idea of SDN feels a little bit unsettling to me because it is proposing to change one of the main reasons for the success of computer networks: fully decentralized control. Once we introduce a centralized entity to control the network we have to make sure that it doesn’t fail, which I think is very difficult.” 6
  • 7.
    Entire backbone runs onSDN A Major Trend in Networking Bought for $1.2 billion (mostly cash) 7
  • 8.
    The Networking “Planes” Dataplane: processing and delivery of packets with local forwarding state – Forwarding state + packet header  forwarding decision – Filtering, buffering, scheduling Control plane: computing the forwarding state in routers – Determines how and where packets are forwarded – Routing, traffic engineering, failure detection/recovery, … Management plane: configuring and tuning the network – Traffic engineering, ACL config, device provisioning, … 8
  • 9.
    Timescales Data Control Management Time- scale Packet (nsec) Event(10 msec to sec) Human (min to hours) Location Linecard hardware Router software Humans or scripts 9
  • 10.
    Data and ControlPlanes Switching Fabric Processor Line card Line card Line card Line card Line card Line card data plane control plane 10
  • 11.
    Data Plane Streaming algorithmson packets – Matching on some header bits – Perform some actions Example: IP Forwarding host host host LAN 1 ... host host host LAN 2 ... router router router WAN WAN 1.2.3.4 1.2.3.7 1.2.3.156 5.6.7.8 5.6.7.9 1.2.3.0/24 5.6.7.0/24 forwarding table 11
  • 12.
    Control Plane Compute pathsthe packets will follow – Populate forwarding tables – Traditionally, a distributed protocol Example: Link-state routing (OSPF, IS-IS) – Flood the entire topology to all nodes – Each node computes shortest paths – Dijkstra’s algorithm 12
  • 13.
  • 14.
    1 2 3 “If , sendto 3” Data “If a packet is going to B, then send it to output 3” 1. Figure out which routers and links are present. 2. Run Dijkstra’s algorithm to find shortest paths. 14
  • 15.
    Management Plane Traffic Engineering:setting the weights – Inversely proportional to link capacity? – Proportional to propagation delay? – Network-wide optimization based on traffic? 3 2 2 1 1 3 1 4 5 3 3 15
  • 16.
    Challenges (Too) many task-specificcontrol mechanisms – No modularity, limited functionality Indirect control – Must invert protocol behavior, “coax” it to do what you want – Ex. Changing weights instead of paths for TE Uncoordinated control – Cannot control which router updates first Interacting protocols and mechanisms – Routing, addressing, access control, QoS The network is • Hard to reason about • Hard to evolve • Expensive 16
  • 17.
    Example 1: Inter-domainRouting Today’s inter-domain routing protocol, BGP, artificially constrains routes - Routing only on destination IP address blocks - Can only influence immediate neighbors - Very difficult to incorporate other information Application-specific peering – Route video traffic one way, and non-video another Blocking denial-of-service traffic – Dropping unwanted traffic further upstream Inbound traffic engineering – Splitting incoming traffic over multiple peering links 17
  • 18.
    Two locations, eachwith data center & front office All routers exchange routes over all links R1 R2 R5 R4 R3 Chicago (chi) New York (nyc) Data Center Front Office Example 2: Access Control 18
  • 19.
    R1 R2 R5 R4 R3 Chicago (chi) NewYork (nyc) Data Center chi-DC chi-FO nyc-DC nyc-FO Front Office Example 2: Access Control 19
  • 20.
    R1 R2 R5 R4 R3 Data Center chi-DC chi-FO nyc-DC nyc-FO Packetfilter: Drop nyc-FO -> * Permit * Packet filter: Drop chi-FO -> * Permit * Front Office chi nyc Example 2: Access Control 20
  • 21.
    A new short-cutlink added between data centers Intended for backup traffic between centers R1 R2 R5 R4 R3 Data Center Packet filter: Drop nyc-FO -> * Permit * Packet filter: Drop chi-FO -> * Permit * Front Office chi nyc Example 2: Access Control 21
  • 22.
    Oops – newlink lets packets violate access control policy! Routing changed, but Packet filters don’t update automatically R1 R2 R5 R4 R3 Data Center Packet filter: Drop nyc-FO -> * Permit * Packet filter: Drop chi-FO -> * Permit * Front Office chi nyc Example 2: Access Control 22
  • 23.
    Custom Hardware Custom Hardware CustomHardware Custom Hardware Custom Hardware OS OS OS OS OS Network OS Feature Feature How SDN Changes the Network Feature Feature Feature Feature Feature Feature Feature Feature Feature Feature 23 23
  • 24.
    Control Program 1 NetworkOS 1. Open interface to packet forwarding 3. Consistent, up-to-date global network view 2. At least one Network OS probably many. Open- and closed-source Software Defined Network (SDN) Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Control Program 2 24 24
  • 25.
    Network OS Network OS:distributed system that creates a consistent, up-to-date network view – Runs on servers (controllers) in the network – NOX, ONIX, Floodlight, Trema, OpenDaylight, HyperFlow, Kandoo, Beehive, Beacon, Maestro, … + more Uses forwarding abstraction to: – Get state information from forwarding elements – Give control directives to forwarding elements 25
  • 26.
    Control Program AControl Program B Network OS Software Defined Network (SDN) Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding 26
  • 27.
    Control Program Control programoperates on view of network – Input: global network view (graph/database) – Output: configuration of each network device Control program is not a distributed system – Abstraction hides details of distributed state 27
  • 28.
    Forwarding Abstraction Purpose: Standardway of defining forwarding state – Flexible • Behavior specified by control plane • Built from basic set of forwarding primitives – Minimal • Streamlined for speed and low-power • Control program not vendor-specific OpenFlow is an example of such an abstraction 28
  • 29.
    Network OS Software DefinedNetwork 29 Global Network View Control Program Virtual Topology Network Hypervisor
  • 30.
    Virtualization Simplifies ControlProgram A B A B Abstract Network View Global Network View AB drop Hypervisor then inserts flow entries as needed AB drop AB drop 30
  • 31.
    Does SDN Simplifythe Network? 31
  • 32.
    What You Said “However,I remain skeptical that such an approach will actually simplify much in the long run. That is, the basic paradigm in networks (layers) is in fact a simple model. However, the ever-changing performance and functionality goals have forced more complexity into network design. I'm not sure if SDN will be able to maintain its simplified model as goals continue to evolve.” 32
  • 33.
    Does SDN Simplifythe Network? Abstraction doesn’t eliminate complexity - NOS, Hypervisor are still complicated pieces of code SDN main achievements - Simplifies interface for control program (user-specific) - Pushes complexity into reusable code (SDN platform) Just like compilers…. 33
  • 34.
  • 35.
    OpenFlow Protocol Data Path(Hardware) Control Path OpenFlow Ethernet Switch Network OS Control Program A Control Program B OpenFlow Basics 35
  • 36.
    Control Program AControl Program B Network OS OpenFlow Basics Packet Forwarding Packet Forwarding Packet Forwarding Flow Table(s) “If header = p, send to port 4” “If header = ?, send to me” “If header = q, overwrite header with r, add header s, and send to ports 5,6” 36
  • 37.
    Primitives <Match, Action> Matcharbitrary bits in headers: – Match on any header, or new header – Allows any flow granularity Action – Forward to port(s), drop, send to controller – Overwrite header with mask, push or pop – Forward at specific bit-rate Header Data Match: 1000x01xx0101001x
  • 38.
    OpenFlow Rules Exploit theflow table in switches, routers, and chipsets Rule (exact & wildcard) Action Statistics Rule (exact & wildcard) Action Statistics Rule (exact & wildcard) Action Statistics Rule (exact & wildcard) Default Action Statistics Flow 1. Flow 2. Flow 3. Flow N.
  • 39.
    Why is SDNhappening now? 39
  • 40.
    The Road toSDN Active Networking: 1990s - First attempt make networks programmable - Demultiplexing packets to software programs, network virtualization, … Control/Dataplane Separation: 2003-2007 - ForCes [IETF], RCP, 4D [Princeton, CMU], SANE/Ethane [Stanford/Berkeley] - Open interfaces between data and control plane, logically centralized control OpenFlow API & Network Oses: 2008 - OpenFlow switch interface [Stanford] - NOX Network OS [Nicira] 40 N. Feamster et al., “The Road to SDN: An Intellectual History of Programmable Networks”, ACM SIGCOMM CCR 2014.
  • 41.
    SDN Drivers Rise ofmerchant switching silicon - Democratized switching - Vendors eager to unseat incumbents Cloud / Data centers - Operators face real network management problems - Extremely cost conscious; desire a lot of control The right balance between vision & pragmatism - OpenFlow compatible with existing hardware A “killer app”: Network virtualization 41
  • 42.
    Virtualization is KillerApp for SDN Consider a multi-tenant datacenter - Want to allow each tenant to specify virtual topology - This defines their individual policies and requirements Datacenter’s network hypervisor compiles these virtual topologies into set of switch configurations - Takes 1000s of individual tenant virtual topologies - Computes configurations to implement all simultaneously This is what people are paying money for…. - Enabled by SDN’s ability to virtualize the network
  • 43.
  • 44.
    4D Decision: all managementand control logic Dissemination: communicating with routers Discovery: topology and traffic monitoring Data: packet handling routers Decision Dissemination Discovery Data Network-level objectives Direct control Network- wide views
  • 45.
    What You Said “Thepaper reads more like a thought-exercise or meta discussion of the future SDN field than a presentation of research. I am surprised sigcomm published it.” “some good things about the way the paper was structured was that it mentioned that it had a lot of future work to do and didn't think it was a final solution. By at least addressing that it needs to continue to expand, the authors acknowledge they don't know the merits behind their solution…” 45
  • 46.
    What You Said “Themost compelling aspect of SDN and of the 4D Approach proposed, in my opinion, is the ability to enable innovation. However, SDN taken to the extreme proposed in the 4D approach seems to me to significantly limit scalability and increase complexity.” 46
  • 47.
    What You Said “Myconcern is that, previous designs that is aware of the delay of updating network view, take the consideration right on their control (they have control rules and protocol that touch this directly). But SDN tries to hide this nature from the programmers. I am not sure if the design of the software, in the absence of these concerns, will end up with expected results.” 47
  • 48.
    Practical Challenges Scalability – Decisionelements responsible for many routers Reliability – Surviving failures of decision elements and routers Response time – Delays between decision elements and routers Consistency – Ensuring multiple decision elements behave consistently Security – Network vulnerable to attacks on decision elements Interoperability – Legacy routers and neighboring domains 48
  • 49.
  • 50.

Editor's Notes

  • #6 Talk about forwarding & control planes
  • #39 38