1 / 24

OpenFlow : Enabling Innovation in Campus Networks

OpenFlow : Enabling Innovation in Campus Networks. ACM SIGCOMM Computer Communication Review 2008. 101064541 葉幸宜. Outlines. Introduction and Motivation OpenFlow Goal Concepts Network Architecture Flow Table Structure Controller More Examples Conclusion. Introduction and Motivation.

murphy-rice
Download Presentation

OpenFlow : Enabling Innovation in Campus Networks

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. OpenFlow:Enabling Innovation in Campus Networks ACMSIGCOMMComputer Communication Review 2008 101064541 葉幸宜

  2. Outlines • Introduction and Motivation • OpenFlow • Goal • Concepts • Network Architecture • Flow Table Structure • Controller • More Examples • Conclusion

  3. Introduction and Motivation • Experiments we’d like to do • Mobility Management • New Naming/Addressing Schemes • Network Access Control • If we design our own prototypes … • Closed network • No way to test the prototypes

  4. Introduction and Motivation • Why Internet is closed for innovations? • Commercial vendor won’t open software and hardware development environment • Complexity to support • Market protection & Barrier-to-entry for competitors • Existing Solutions • Software only • Performance is not good • Hardware/Software • Fanout too small

  5. OpenFlow • Goal • Open Platform • For researchers to test new ideas at scale production networks • Without requiring vendors to expose internal workings • Bring future Internet to legacy Internet

  6. OpenFlow’s Concept OpenFlow Controller OpenFlow Protocol (SSL) Control Plane OpenFlow Ethernet Switch Software  Control Plane Hardware  Data Plane Hardware  Data Plane

  7. OpenFlow Network Architecture OpenFlow-enable Commercial Switch OpenFlow Switch specification OpenFlow Protocol PC Normal Software Secure Channel SSL OpenFlow Controller SW Normal Datapath Flow Table HW

  8. OpenFlow Flow Table Structure OpenFlow Switch Secure Channel Normal Software Rule Action Statistics SW HW Normal Datapath Flow Table Packet + byte counters • Forward packet to port(s) • Encapsulate and forward to controller • Drop packet • Send to normal processing pipeline Switch Port MAC src MAC dst Eth type VLAN ID IP Src IP Dst IP Prot TCP sport TCP dport

  9. OpenFlow Flow Table Structure OpenFlow Switch Secure Channel Normal Software Rule Action Statistics SW HW Normal Datapath Flow Table Packet + byte counters • Forward packet to port(s) • Encapsulate and forward to controller • Drop packet • Send to normal processing pipeline Switch Port MAC src MAC dst Eth type VLAN ID IP Src IP Dst IP Prot TCP sport TCP dport

  10. OpenFlow Flow Table Example • Ethernet Switching • IP Routing • Application Firewall Switch Port MAC src MAC dst Eth type VLAN ID IP Src IP Dst IP Prot TCP sport TCP dport Action * * 00:2D.. * * * * * * * Port5 Switch Port MAC src MAC dst Eth type VLAN ID IP Src IP Dst IP Prot TCP sport TCP dport Action * * * * * * 140.114.. * * * Port3 Switch Port MAC src MAC dst Eth type VLAN ID IP Src IP Dst IP Prot TCP sport TCP dport Action * * * * * * * * * 22 Drop

  11. OpenFlow Controller • Centralized intelligential agency • Allow multiple researchers create their accounts to control the flows independently • Add or remove flow-entries • NOX is an open-source OpenFlow Controller NOX Controller OpenFlow Switch OpenFlow Switch OpenFlow Switch

  12. Secure Channel • SSL Connection • Controller discovery protocol • Encapsulate packets for controller • Send link/port state to controller

  13. OpenFlow Operation Example Amy Access Control Scheme! OpenFlow Switch OpenFlow Switch OpenFlow Switch OpenFlow Switch Rules Rules Rules Rules Flow Table PC Controller Flow Table Flow Table Flow Table

  14. OpenFlow Operation Example Amy Access Control Scheme! If Rule = x, send to port 4 If Rule = y, drop it If Rule = ?, send to controller Else, send to normal pipeline OpenFlow Switch OpenFlow Switch OpenFlow Switch OpenFlow Switch Amy Flow Table PC Controller Flow Table Flow Table Flow Table

  15. OpenFlow Operation Example Amy Access Control Scheme! If Rule = x, send to port 4 If Rule = y, drop it If Rule = ?, send to controller Else, send to normal pipeline OpenFlow Switch OpenFlow Switch OpenFlow Switch OpenFlow Switch Amy Flow Table PC Controller Flow Table Flow Table Flow Table

  16. OpenFlow Operation Example Amy Access Control Scheme! If Rule = x, send to port 4 If Rule = y, drop it If Rule = ?, send to controller Else, send to normal pipeline OpenFlow Switch OpenFlow Switch OpenFlow Switch OpenFlow Switch Amy Flow Table PC Controller Flow Table Flow Table Flow Table

  17. OpenFlow Operation Example Amy Access Control Scheme! If Rule = x, send to port 4 If Rule = y, drop it If Rule = ?, send to controller Else, send to normal pipeline OpenFlow Switch OpenFlow Switch OpenFlow Switch OpenFlow Switch Amy Flow Table PC Controller Flow Table Flow Table Flow Table

  18. OpenFlow Operation Example Amy Access Control Scheme! If Rule = x, send to port 4 If Rule = y, drop it If Rule = ?, send to controller Else, send to normal pipeline OpenFlow Switch OpenFlow Switch OpenFlow Switch OpenFlow Switch Amy Flow Table PC Controller Flow Table Flow Table Flow Table

  19. OpenFlow Operation Example Amy Access Control Scheme! If Rule = x, send to port 4 If Rule = y, drop it If Rule = ?, send to controller Else, send to normal pipeline OpenFlow Switch OpenFlow Switch OpenFlow Switch OpenFlow Switch Amy Flow Table PC Controller Flow Table Flow Table Flow Table

  20. OpenFlow Operation Example Amy Access Control Scheme! If Rule = x, send to port 4 If Rule = y, drop it If Rule = ?, send to controller Else, send to normal pipeline OpenFlow Switch OpenFlow Switch OpenFlow Switch OpenFlow Switch Bob Flow Table PC Controller Flow Table Flow Table Flow Table

  21. OpenFlow Operation Example Amy Access Control Scheme! If Rule = x, send to port 4 If Rule = y, drop it If Rule = ?, send to controller Else, send to normal pipeline OpenFlow Switch OpenFlow Switch OpenFlow Switch OpenFlow Switch Bob Flow Table O-Flow Table PC Controller Flow Table Flow Table Flow Table

  22. More Examples for OpenFlow Switch Port MAC src MAC dst Eth type VLAN ID IP Src IP Dst IP Prot TCP sport TCP dport Action • Network Management and Access Control • Ex: Phones can only use HTTP service • VLANs • Mobile wireless VoIP clients • Allowing seamless handover • Non-IP network • OpenFlow packets could be any kinds of formats • Processing packets rather than flows

  23. OpenFlow Products • NEC • HP • Pronto 13/14

  24. Conclusion • OpenFlow • Standard way to control flow-tables in commercial switches and routers • An open development environment for all researchers • Real environment for Future Internet Technologies

More Related