1 / 13

Software Defined Network- SDN

Software Defined Network- SDN. George C. Atallah, PhD. CTO - Science Park International (SPI) Group gcatallah@gmail.com 301-332-9043. Agenda. Characteristics and Challenges of Today’s Network Call for Modernization Network of the Future SDN E nabling Technology Controller

goudeau
Download Presentation

Software Defined Network- SDN

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Software Defined Network- SDN George C. Atallah, PhD. CTO - Science Park International (SPI) Group gcatallah@gmail.com 301-332-9043

  2. Agenda • Characteristics and Challenges of Today’s Network • Call for Modernization • Network of the Future • SDN Enabling Technology • Controller • Orchestrator • Enterprise Network Management Automation • Governance • Existing SDN Technology in the Market Place Today • SDN Technology Evaluation Criteria • SDN Solution Implementation Benefits ScienceParkInternational Where Science, technology, and Business Meet

  3. Characteristics of Today’s Network Most of today’s DoD’s network is a hardware-centric infrastructure can only scale with the addition of more hardware. The end result becomes a network architecture which presents limitations in handling growth, both in data requirements and reach, and it lacks responsiveness to accommodate changes in tasking and mission enablement. And, with constrained budgets and increasing time pressure, the cost and delay associated with acquiring new hardware is untenable. ScienceParkInternational Where Science, technology, and Business Meet

  4. Challenges of Today’s Network • Complex and dynamic missions driving need for more agile and new capabilities. Today’s disaggregated forward-edge missions are difficult to support with fixed networks. And both warfighters and non-deployable personal demand networks and devices that are mobility-enabled and rapidly provisioned for specific mission sets and tasks. • Aging infrastructure and limited capacity. Outdated fixed installation infrastructure inhibits DoD’s ability to offer Internet Protocol (IP)-based services that enable enhanced communications, collaboration applications, and enterprise services to all users. • Network infrastructure efficiency. Current DoD network achieves a 99.5% operational availability, higher availability is often required to effectively support enterprise voice, enterprise e-mail, enterprise thin client, or the high availability, low latency, low jitter requirements of mission and weapons systems. • Disparate NetOps models and network management including Cyber tools across DoD components. Limited integration and automation make operations, administration, maintenance, and provisioning of the DoDIN labor intensive and complicated. • Increased cyber threats. The increased volume and persistence of current and new threat players make the current network architecture vulnerable. • Interoperability within DoD and between mission partners. DoD enterprise maintains redundant, duplicative, and overlapping investments in internal and mission partner standards and interfaces to achieve interoperability and data sharing. • Technology adoption and refresh. Equipment and TDM systems supporting legacy C2 applications are nearing the end of useful life, requiring both refreshed and new technology to provide enhanced capabilities and new technology to provide enhanced capabilities and continued network defense. Source: AT&T Network Technology Assessment of DoD environment Paper ScienceParkInternational Where Science, technology, and Business Meet

  5. Call for Modernization • Reduce staff overhead to operate and maintain the infrastructure, while enabling the enterprise with zero provisioning and self – healing capability to improve mission effectiveness • Improve capacity and service levels for end customers to provide self-service capabilities to the maximum extent possible. • Decrease time required to implement network changes and provision new services • Eliminate complexity from the existing environment in order to improve network sustainment, and reduce cost • Harden the network against an ever-changing cyber threat environment • Provide solution Implementation meeting SLAs, and • allow for rapid deployment and operation of the network • minimize impact to end users during deployment phases • ensure network remains interoperable with the existing infrastructure until it is decommissioned. ScienceParkInternational Where Science, technology, and Business Meet

  6. Network of the Future Envisioned solution based on IP/MPLS WAN backbone that features: • Network on Demand to be rapidly provisioned as needed to support the dynamic environment of global operations which are rich with wireless data, video, data, and voice services • SDN Enabled MPLS VPN Services such wireless data, video, data, and voice services • NFV virtualizing Firewall, workload balancing, WAN Acceleration, Session Border Controller, etc. • Orchestration creates and links service automation workflow, and instruct various network management elements for completing the provisioning process • Cloud connectivity • LTE/4G Mobility infrastructure and Smart Base capabilities for Internet of Things • IP based disaster recovery using external Border Gateway Protocol (eBGP) • Autonomic for self-healing The Network of the Future must break from those cost driven challenges and restrictions, providing an agile, responsive, and transparent infrastructure without compromising security or integrity ScienceParkInternational Where Science, technology, and Business Meet

  7. SDN Definition SDN architecture solution involves the physical separation of the network control plane from the forwarding plane: • Control plane provisions network services and manages several devices; • NFV virtualizes network functions performed by proprietary appliances is now performed by commodity hardware; • Orchestrator creates and links service automation workflow, and instructs various network management elements for completing the provisioning process, and • Integrated enterprise and elements management work collaboratively with the orchestrator to ensure the delivery of SDN services ScienceParkInternational Where Science, technology, and Business Meet

  8. Dynamically create policy-based virtual networks to abstract and pool network Features/resources such as Virtual LAN (VLAN), and Virtual Routing and Forwarding (VRF) instances , and automate the Request Fulfillment (RF) for provisioning and activating their functionalities • Provides templates that enable the creation of scriptable CLIs that allow for the dynamic programming of the network to redirect traffic, and enable the implementation of northbound or southbound APIs. • Works with enabling technology solution to collapse routing and switching within the network • Conforms to open standards: Opendaylight, OpenFlow, OpenStack. Interfacing with SDN relies on industry standard protocols ((SOAP)/XML, REST, JDBC,ODBC ,NETCONF, etc. ) to expose features of solution via the northbound or southbound APIs. • Northbound API – To expose internal features to external systems • Southbound API – Takes instructions from the feature to the network devices SDN Enabling Technology • Governance Review Board overseeing policy, and lifecycle modernization maturity process. • Architecture designed to simplify, flatten, and optimize the network topology, reduce the number of VRFs and VLANs, increase bandwidth, and optimize traffic flows. • Open Standards to minimize the reliance on vendor specific proprietary protocols and interfaces. • Best Practices to deliver a scalable solution meeting various architectural effects with minimum level of effort, cost, and customer impact. • Institutes integrated enterprise network management capability enabled by ITIL/ITSM Service Support and Service Delivery to perform various NM functionalities such as ticketing, incident and event management, performance monitoring and capacity planning, configuration, change and release management, enforcement of configuration, and hardening of policies. • Leverages NMDB to support the execution of NM functionality • Considers NMDB as a Big Data Analytic opportunity, where one uses Hadoop and Apache Spark technology to form the NMDB repository in form of Data Hub, or Data warehouse, Data Mart, or Kafka; and impose Data Management and Analytics Services enable by breakthrough visualization technology • Creates and links service automation workflow, and instructs various network management elements to take suitable action to enable the provisioning of requested services. • Capable of discovering multiple paths from origin to destination and to split the traffic across multiple links for meeting the QoS requirements. • Utilizes a rich set of constructs that enable the orchestration/creation of L2 and L3 VPN within a tenant-specific virtual network. ScienceParkInternational Where Science, technology, and Business Meet

  9. Sample of Existing SDN Technology Venders in the Market Place Today • CSCO • Juniper • Arista • Lumina • Dell • Aruba/HPE • Brocade • Extreme Networks • Etc. ScienceParkInternational Where Science, technology, and Business Meet

  10. Sample of Existing SDN Technology in the Market Place Today • Arista • Organic and ground up SDN solution driven by Open Standards and a single integrated EOS for delivering Resiliency ( Availability + Security), Programmability/Integration, Scalability, Analytics, and Automation for data center and networks servicing Any Mixed Workload. • Has Leaf – Spine Architecture for Max “ilities” • Designed as a Cloud Based solutions (Known as CloudVision) offering Cloud Orchestrators, Network Services, Overlay Controllers, CloudVision Services/Management Services. • Portal Capability - The web-platform for EOS, automating the workflows for network provisioning, change management, and telemetry • Exchange Capability - An EOS-based network-wide multi-function control point providing a single access point for real-time provisioning, orchestration and integration with multi-vendor controllers. This solution is capable of performing: • Overlay Integration - API’s for simplified network integration • Automated Deployments - Initial and ongoing provisioning network-wide • Change Management - Network-wide upgrades, rollback and snapshots • Telemetry & Analytics - Real-time state streaming and historical analytics • Macro-Segmentation Services (MSS) - Service insertion for securing today’s cloud networks • Data Aggregation - Purpose-built to capture traffic at cloud scale and speed ScienceParkInternational Where Science, technology, and Business Meet

  11. Sample of Existing SDN Technology in the Market Place Today Juniper • SDN Controller and Service Orchestrator rapidly provision virtual networks to provide : • Full routing capabilities including MPLS and L3VPN • Centralized software orchestration • Dynamic service provisioning • Consolidate multiple network hardware devices • Support for third-party VNFs • Virtualized security services • Junos Fusion provide s an open standards to simplify, flatten, and optimize campus/enterprise, data center, and service provider edge networks. • Junos Space Network Director provides operators complete visibility of the network and allows wholesale changes and upgrades to the network from a single pane of glass. • Juniper’s AppFormix is an optimization and management software platform with capabilities such as: • Real-time detection of failures to physical infrastructure • Capacity planning for virtualized workloads • Predictive analysis/machine learning to dynamically baseline performance and provide alerts to anomalies • smart-monitoring features detect issues and automatically manage remedial action based on predefined SLAs. • Juniper’s Software Defined Secure Networks (SDSN) is an approach to enterprise security that creates an open fabric that allows customers to secure their entire network. ScienceParkInternational Where Science, technology, and Business Meet

  12. SDN Technology Evaluation Criteria • SDN Capability: Network Provisioning/Virtualization (NP); Network Orchestrator (NO) Functionality; Network Programmability; Network Topology flattening, and Open Standards • Centralized Integrated Enterprise Management and Visualization: SDN controller should enable the IT organization to choose any relevant information management elements and corresponding feeds, and it should present to the IT organization a visualization of both the physical network and the multiple virtual networks that run on top of it. • Scalability: SDN controller should be able to add physical network capacity; Scale to support beyond 200 to 300 switches and manage them like there are one device, and be able to span multiple sites. • Security of the Network: SDN must be able to apply enterprise class authentication and authorization and to completely isolate each virtual network. • Performance: SDN controller must be able to pre-populate the flow tables to the degree possible and it must have processing and I/O capabilities that ensure that the controller is not a bottleneck in the creation of flow entries. • Reliability: SDN must be capable to generate multiple network paths from origin to destination. The SDN controller should also be built using both hardware and software redundancy features and it must be possible to cluster the controllers. • The SDN Controller Vendor: must demonstrate that it has the financial and technical resources to support the ongoing research and development that will be associated with SDN. The vendor must also demonstrate its long-term position and momentum in the SDN marketplace. • Cost: Competitive cost SDN capability that deliver an all evaluation criteria cited earlier ScienceParkInternational Where Science, technology, and Business Meet

  13. SDN Solution Implementation Benefits Technology Driven Benefits • Ability to stand up new network configuration in hours and add new services in minutes to enable the mission • On-demand scaling of speed to support bandwidth-intensive applications (video, data replication) to be networking aware • Multiple network functions(Routing, Firewall, workload balancing, WAN Acceleration, Session Border Controller ) virtualized on common hardware for accelerated speed of capability deployment at reduced cost • Integrated enterprise and element management based on leading technology and best industry practices for providing real-time performance reporting and shared NM awareness across the enterprise. Mission Driven Benefits • Improved network agility, performance and security while maintaining superior availability to support DoD’s expanding missions • Improved efficiency, reduced complexity, decreased costs while providing network-centric solutions that improve DOD’s mission execution and delivery on a global scale. • Enable dynamic connection to mission critical user communities • Reduced complexity of NOC operations while improving NOC effectiveness to provide zero provisioning of services at accelerating speed ScienceParkInternational Where Science, technology, and Business Meet

More Related