SlideShare a Scribd company logo

Analytics driven SDN and commodity switches

N
netvis

1. The document discusses using merchant silicon switches with simple, low-cost hardware for commodity switching fabrics. These are decoupled from more flexible edge switches. 2. Centralized software is used for real-time traffic analytics and control by collecting flow data from switches. This enables identifying large "elephant" flows and applying targeted controls to increase fabric efficiency. 3. A hybrid OpenFlow approach is proposed to control forwarding planes, using existing routing protocols for normal traffic but allowing the controller to override specific flows through ACL tables for exceptions like blocking or rate limiting.

InternetTechnologyBusiness
1 of 12
Downloaded 32 times
1
2
3
4
5
6
7
8
9
10
11
12
Analytics driven SDN and commodity switches Peter Phaal Founder and President, InMon Corp.
 Silicon Valley SDN Group, May, 2014
Copyright © 2014 InMon Corporation Controller Analyze Plan Act Network Measurement
 Protocol Control
 Protocol Feedback control “You can’t control what you can’t measure” Tom DeMarco
Copyright © 2014 InMon Corporation Separation of edge and core Fabric: A Retrospective on Evolving SDN by Martin Casado, Teemu Koponen, Scott Shenker, and Amin Tootoonchian Network Elements Controller Functions Edge flexible software virtual switches network virtualization, tenant isolation, security, NFV… e.g. NSX, Nuage … Fabric simple, low cost, vendor neutral, hardware switches traffic analytics and control 
 to increase efficiency dard headers) , this requires dreds of bits; d only match e forwarding y far from the y. We expect to increasing in turn means owed and the ign paradigm, ery switch. It a sweet spot functionality ion towards a generality. ements to the to but more hange in the IPv4 to IPv6) Fabric Elements Fabric Controller Src Host Dst Host Edge Controller Ingress Edge Switch Egress Edge Switch Figure 1: The source host sends a packet to an edge switch, which after providing network services, sends it across the fabric for the egress switch to deliver it to the destination host. Neither host sees any internals of the fabric. The control planes of the edge and fabric are similarly decoupled. a new concept but rather we believe it should be included as an architectural building block within SDN. We now identify the key properties for these fabrics. Separation of Forwarding. In order for a fabric to remain decou- pled from the edge it should provide a minimal set of forwarding primitives without exposing any internal forwarding mechanisms Simple, low cost, vendor neutral → merchant silicon
Copyright © 2014 InMon Corporation Rise of merchant silicon 20132011 Ports Opportunity to leverage merchant silicon traffic analytics and apply targeted controls to increase fabric efficiency
Copyright © 2014 InMon Corporation Large “Elephant” flows http://research.microsoft.com/en-us/UM/people/srikanth/data/imc09_dcTraffic.pdf Elephant flows are the small number of long lived large flows responsible for majority of bytes on network http://blog.sflow.com/2013/02/sdn-and-large-flows.html
Copyright © 2014 InMon Corporation packets decode hash sendflow cache flushsample Flow Records flow cache embedded on switchcustom ASIC based switch NetFlow IPFIX … decode hash sendflow cache flush Flow Records packets send poll i/f counters sample multiple switches export sFlow packets send poll i/f counters sample ... external software flow cache merchant silicon based switch (Broadcom, Intel/Fulcrum, and Marvell) JSON/REST
 NetFlow IPFIX … • Reduce ASIC cost / complexity • Fast response (data not sitting on switch) • Centralized, network-wide visibility • Increase flexibility → software defined analytics Move flow cache from ASIC to external software Scale-out alternative to SNMP polling Traffic analytics with sFlow Centralized real-time analytics identifies large flows, paths, hot spots etc. → plan corrective actions
 How can controls be efficiently deployed?
Copyright © 2014 InMon Corporation • Simple, no change to normal forwarding behavior - BGP, OSPF, SPB, TRILL, LAG/MLAG etc. used to control L2 / L3 forwarding tables • Efficient, merchant silicon hardware multipath forwarding efficiently handles most flows. OpenFlow used to control ACL table and selectively override forwarding of specific flows (block, mark, steer, rate-limit), maximizing effectiveness of limited general match capacity.
 Note: very few ACLs needed in fabric since policy has shifted to edge - mainly required to protect control plane • Scaleable, flows handled by existing control plane, OpenFlow only used when controller wants to make an exception. 
 Note: An OpenFlow controller could pro-actively configure L2/L3 tables to define “NORMAL” forwarding and still support hybrid control of ACL table • Robust, if controller fails, network keeps forwarding Traffic control with hybrid OpenFlow Hybrid Programmable Forwarding Plane, David Ward, ONF Summit, 2011
Copyright © 2014 InMon Corporation sFlow-RT feedback controller Large flow steering DDoS Mitigation REST API Open “Southbound” APIs Data Plane Real-time analytics and control Hosts Open “Northbound” APIs User defined policy sFlow-RT controller real-time analytics hybrid OpenFlow controller Open JavaScript/ECMAScript API optimized for SDN traffic engineering applications Large flow marking … Web portal OpenStack etc.
Copyright © 2014 InMon Corporation Brocade/InMon: DDoS mitigation http://www.opennetsummit.org/pdf/2014/sdn-idol/Brocade-SDN-Idol-Proposal.pdf “Real-Time SDN Analytics for DDoS Mitigation” winner of ONS SDN Idol 2014
Copyright © 2014 InMon Corporation ALU/InMon: Large flow marking http://enterprise.alcatel-lucent.com/docs/?id=23847
Copyright © 2014 InMon Corporation Extend control beyond network Analyze Plan Act Network, Storage, Compute sFlow-RT Feedback Controller Maximize data center efficiency through coordinated workload placement and resource allocation of network, storage, and compute based on measured loads and communication patterns e.g. reduce network congestion by instructing OpenStack to move virtual machine
Copyright © 2014 InMon Corporation • InMon.com • blog.sFlow.com • sFlow.org • Host-sFlow.SourceForge.net • Velocity 2012
 http://blog.sflow.com/2013/04/velocity-conference-talk.html • Bay Area Network Virtualization Meetup
 http://blog.sflow.com/2013/06/bay-area-network-virtualization-talk.html • Mininet testbed
 http://blog.sflow.com/2014/04/mininet-integrated-hybrid-openflow.html Explore further

More Related Content

PPTX
SDN Service Provider Use Cases
SDxCentral
 
PDF
Realizing a Multi-Layer Transport SDN: Practical Considerations and Implement...
Infinera
 
PDF
Using Microservices Architecture and Patterns to Address Applications Require...
Prem Sankar Gopannan
 
PPTX
Optimizing Data Center WANs with SDN and Underlay Networking
Infinera
 
PDF
SDN use cases_2014
Nimit Shishodia
 
PDF
Five Trends Enabled by 5G that will Change Networking Forever
Open Networking Summit
 
PDF
Networking Challenges for the Next Decade
Open Networking Summit
 
PDF
Intel® Network Builders - Network Edge Ecosystem Program
Michelle Holley
 
SDN Service Provider Use Cases
SDxCentral
 
Realizing a Multi-Layer Transport SDN: Practical Considerations and Implement...
Infinera
 
Using Microservices Architecture and Patterns to Address Applications Require...
Prem Sankar Gopannan
 
Optimizing Data Center WANs with SDN and Underlay Networking
Infinera
 
SDN use cases_2014
Nimit Shishodia
 
Five Trends Enabled by 5G that will Change Networking Forever
Open Networking Summit
 
Networking Challenges for the Next Decade
Open Networking Summit
 
Intel® Network Builders - Network Edge Ecosystem Program
Michelle Holley
 

What's hot (20)

PDF
What a difference 5 years make
Open Networking Summit
 
PDF
SDN-Based Enterprise Connectivity Service
Open Networking Summit
 
PDF
Open and Disaggregated Transport SDN - from PoC to Field Trial
Open Networking Summit
 
PDF
DPDK & Cloud Native
Michelle Holley
 
PDF
Service Mesh on Kubernetes with Istio
Michelle Holley
 
PDF
Networking Technology Transformation to SDN and NFV
Himawan Nugroho
 
PPTX
Transport SDN Overview and Standards Update: Industry Perspectives
Infinera
 
PPTX
Colt inter-provider SDN NNIs and APIs
Colt Technology Services
 
PPTX
SDN & NFV Orchestration
Tanto Suratno
 
PPTX
How to use SDN to Innovate, Expand and Deliver for your business
Napier University
 
PDF
Edge and 5G: What is in it for the developers?
Michelle Holley
 
PDF
vCPE Challenges and Ways Forward
Sigal Biran-Nagar
 
PDF
OpenDaylight Update (June 2018)
Michelle Holley
 
PDF
Future Network
Marie-Paule Odini
 
PDF
Radisys at Mobile World Congress Americas
Radisys Corporation
 
PDF
Harmonizing of Open Source Networking
Open Networking Summit
 
PPTX
443029825 cloud-computing-week8-9-pptx
Abdulqader Al-kaboudei
 
PDF
Mobile Internet Optimization: An effective tool for operators
Bangladesh Network Operators Group
 
PDF
Hp 1015-odini-5 sdn-in_nfv
Marie-Paule Odini
 
PDF
Disaggregated Networking - The Drivers, the Software & The High Availability
Open Networking Summit
 
What a difference 5 years make
Open Networking Summit
 
SDN-Based Enterprise Connectivity Service
Open Networking Summit
 
Open and Disaggregated Transport SDN - from PoC to Field Trial
Open Networking Summit
 
DPDK & Cloud Native
Michelle Holley
 
Service Mesh on Kubernetes with Istio
Michelle Holley
 
Networking Technology Transformation to SDN and NFV
Himawan Nugroho
 
Transport SDN Overview and Standards Update: Industry Perspectives
Infinera
 
Colt inter-provider SDN NNIs and APIs
Colt Technology Services
 
SDN & NFV Orchestration
Tanto Suratno
 
How to use SDN to Innovate, Expand and Deliver for your business
Napier University
 
Edge and 5G: What is in it for the developers?
Michelle Holley
 
vCPE Challenges and Ways Forward
Sigal Biran-Nagar
 
OpenDaylight Update (June 2018)
Michelle Holley
 
Future Network
Marie-Paule Odini
 
Radisys at Mobile World Congress Americas
Radisys Corporation
 
Harmonizing of Open Source Networking
Open Networking Summit
 
443029825 cloud-computing-week8-9-pptx
Abdulqader Al-kaboudei
 
Mobile Internet Optimization: An effective tool for operators
Bangladesh Network Operators Group
 
Hp 1015-odini-5 sdn-in_nfv
Marie-Paule Odini
 
Disaggregated Networking - The Drivers, the Software & The High Availability
Open Networking Summit
 
Ad

Similar to Analytics driven SDN and commodity switches (20)

PPTX
Foundation of Modern Network- william stalling
JonathanWallace46
 
PPTX
Cis sem sdn
Lino Quivén
 
PPTX
Sdn not just a buzzword
Jorge Bonilla
 
PDF
Security defined routing_cybergamut_v1_1
Joel W. King
 
PPTX
Software defined network
Deeptiman Mallick
 
PPTX
LinkedIn's Approach to Programmable Data Center
Shawn Zandi
 
PDF
intro lect.pdfkkpkpkpkpkpjjkojkopjjojjoj
AmolJoglekar5
 
PDF
Banv
netvis
 
PPTX
Raga_SDN_NSX_1
Ranjith Kumar
 
PDF
WWT Software-Defined Networking Guide
Joel W. King
 
PDF
IRJET- Build SDN with Openflow Controller
IRJET Journal
 
PPTX
FIOT_Uni4.pptx
RishikeshPathak10
 
PPTX
Software Defined Networking(SDN) and practical implementation_trupti
trups7778
 
PPTX
SDN - a new security paradigm?
Sophos Benelux
 
PPTX
Software Define Network, a new security paradigm ?
Jean-Marc ANDRE
 
PPTX
Network programmability: an Overview
Aymen AlAwadi
 
PPTX
Software Defined networking (SDN)
Milson Munakami
 
PPTX
SDN approach.pptx
TrongMinhHoang1
 
PPTX
Tutorial on SDN data plane evolution
Antonio Capone
 
PDF
Denial of Service Attacks in Software Defined Networking - A Survey
IRJET Journal
 
Foundation of Modern Network- william stalling
JonathanWallace46
 
Cis sem sdn
Lino Quivén
 
Sdn not just a buzzword
Jorge Bonilla
 
Security defined routing_cybergamut_v1_1
Joel W. King
 
Software defined network
Deeptiman Mallick
 
LinkedIn's Approach to Programmable Data Center
Shawn Zandi
 
intro lect.pdfkkpkpkpkpkpjjkojkopjjojjoj
AmolJoglekar5
 
Banv
netvis
 
Raga_SDN_NSX_1
Ranjith Kumar
 
WWT Software-Defined Networking Guide
Joel W. King
 
IRJET- Build SDN with Openflow Controller
IRJET Journal
 
FIOT_Uni4.pptx
RishikeshPathak10
 
Software Defined Networking(SDN) and practical implementation_trupti
trups7778
 
SDN - a new security paradigm?
Sophos Benelux
 
Software Define Network, a new security paradigm ?
Jean-Marc ANDRE
 
Network programmability: an Overview
Aymen AlAwadi
 
Software Defined networking (SDN)
Milson Munakami
 
SDN approach.pptx
TrongMinhHoang1
 
Tutorial on SDN data plane evolution
Antonio Capone
 
Denial of Service Attacks in Software Defined Networking - A Survey
IRJET Journal
 
Ad

Recently uploaded (20)

PPTX
The Internet of Things (IoT) refers to a vast network of interconnected devic...
chethana8182
 
PPT
Introduction to dns domain name syst.ppt
MUHAMMADKAVISHSHABAN
 
PDF
Cybersecurity Awareness Presentation ppt.
banodhaharshita
 
PPTX
LESSON-2-Roles-of-ICT-in-Teaching-for-learning_123922 (1).pptx
renavieramopiquero
 
PPTX
Crypto Recovery California Services.pptx
lionsgate network
 
PDF
PDF document: World Game (s) Great Redesign.pdf
Steven McGee
 
PPTX
The Latest Scam Shocking the USA in 2025.pptx
onlinescamreport4
 
PPTX
Microsoft PowerPoint Student PPT slides.pptx
Garleys Putin
 
PDF
Latest Scam Shocking the USA in 2025.pdf
onlinescamreport4
 
PPTX
The Internet of Things (IoT) refers to a vast network of interconnected devic...
chethana8182
 
PPTX
Blue and Dark Blue Modern Technology Presentation.pptx
ap177979
 
PDF
Data Protection & Resilience in Focus.pdf
AmyPoblete3
 
PDF
LOGENVIDAD DANNYFGRETRRTTRRRTRRRRRRRRR.pdf
juan456ytpro
 
PDF
The Internet of Things (IoT) refers to a vast network of interconnected devic...
chethana8182
 
PPT
1965 INDO PAK WAR which Pak will never forget.ppt
sanjaychief112
 
PDF
BGP Security Best Practices that Matter, presented at PHNOG 2025
APNIC
 
PPTX
dns domain name system history work.pptx
MUHAMMADKAVISHSHABAN
 
PDF
APNIC Update, presented at PHNOG 2025 by Shane Hermoso
APNIC
 
PPTX
Artificial-Intelligence-in-Daily-Life (2).pptx
nidhigoswami335
 
PPTX
Google SGE SEO: 5 Critical Changes That Could Wreck Your Rankings in 2025
Reversed Out Creative
 
The Internet of Things (IoT) refers to a vast network of interconnected devic...
chethana8182
 
Introduction to dns domain name syst.ppt
MUHAMMADKAVISHSHABAN
 
Cybersecurity Awareness Presentation ppt.
banodhaharshita
 
LESSON-2-Roles-of-ICT-in-Teaching-for-learning_123922 (1).pptx
renavieramopiquero
 
Crypto Recovery California Services.pptx
lionsgate network
 
PDF document: World Game (s) Great Redesign.pdf
Steven McGee
 
The Latest Scam Shocking the USA in 2025.pptx
onlinescamreport4
 
Microsoft PowerPoint Student PPT slides.pptx
Garleys Putin
 
Latest Scam Shocking the USA in 2025.pdf
onlinescamreport4
 
The Internet of Things (IoT) refers to a vast network of interconnected devic...
chethana8182
 
Blue and Dark Blue Modern Technology Presentation.pptx
ap177979
 
Data Protection & Resilience in Focus.pdf
AmyPoblete3
 
LOGENVIDAD DANNYFGRETRRTTRRRTRRRRRRRRR.pdf
juan456ytpro
 
The Internet of Things (IoT) refers to a vast network of interconnected devic...
chethana8182
 
1965 INDO PAK WAR which Pak will never forget.ppt
sanjaychief112
 
BGP Security Best Practices that Matter, presented at PHNOG 2025
APNIC
 
dns domain name system history work.pptx
MUHAMMADKAVISHSHABAN
 
APNIC Update, presented at PHNOG 2025 by Shane Hermoso
APNIC
 
Artificial-Intelligence-in-Daily-Life (2).pptx
nidhigoswami335
 
Google SGE SEO: 5 Critical Changes That Could Wreck Your Rankings in 2025
Reversed Out Creative
 

Analytics driven SDN and commodity switches

  • 1. Analytics driven SDN and commodity switches Peter Phaal Founder and President, InMon Corp.
 Silicon Valley SDN Group, May, 2014
  • 2. Copyright © 2014 InMon Corporation Controller Analyze Plan Act Network Measurement
 Protocol Control
 Protocol Feedback control “You can’t control what you can’t measure” Tom DeMarco
  • 3. Copyright © 2014 InMon Corporation Separation of edge and core Fabric: A Retrospective on Evolving SDN by Martin Casado, Teemu Koponen, Scott Shenker, and Amin Tootoonchian Network Elements Controller Functions Edge flexible software virtual switches network virtualization, tenant isolation, security, NFV… e.g. NSX, Nuage … Fabric simple, low cost, vendor neutral, hardware switches traffic analytics and control 
 to increase efficiency dard headers) , this requires dreds of bits; d only match e forwarding y far from the y. We expect to increasing in turn means owed and the ign paradigm, ery switch. It a sweet spot functionality ion towards a generality. ements to the to but more hange in the IPv4 to IPv6) Fabric Elements Fabric Controller Src Host Dst Host Edge Controller Ingress Edge Switch Egress Edge Switch Figure 1: The source host sends a packet to an edge switch, which after providing network services, sends it across the fabric for the egress switch to deliver it to the destination host. Neither host sees any internals of the fabric. The control planes of the edge and fabric are similarly decoupled. a new concept but rather we believe it should be included as an architectural building block within SDN. We now identify the key properties for these fabrics. Separation of Forwarding. In order for a fabric to remain decou- pled from the edge it should provide a minimal set of forwarding primitives without exposing any internal forwarding mechanisms Simple, low cost, vendor neutral → merchant silicon
  • 4. Copyright © 2014 InMon Corporation Rise of merchant silicon 20132011 Ports Opportunity to leverage merchant silicon traffic analytics and apply targeted controls to increase fabric efficiency
  • 5. Copyright © 2014 InMon Corporation Large “Elephant” flows http://research.microsoft.com/en-us/UM/people/srikanth/data/imc09_dcTraffic.pdf Elephant flows are the small number of long lived large flows responsible for majority of bytes on network http://blog.sflow.com/2013/02/sdn-and-large-flows.html
  • 6. Copyright © 2014 InMon Corporation packets decode hash sendflow cache flushsample Flow Records flow cache embedded on switchcustom ASIC based switch NetFlow IPFIX … decode hash sendflow cache flush Flow Records packets send poll i/f counters sample multiple switches export sFlow packets send poll i/f counters sample ... external software flow cache merchant silicon based switch (Broadcom, Intel/Fulcrum, and Marvell) JSON/REST
 NetFlow IPFIX … • Reduce ASIC cost / complexity • Fast response (data not sitting on switch) • Centralized, network-wide visibility • Increase flexibility → software defined analytics Move flow cache from ASIC to external software Scale-out alternative to SNMP polling Traffic analytics with sFlow Centralized real-time analytics identifies large flows, paths, hot spots etc. → plan corrective actions
 How can controls be efficiently deployed?
  • 7. Copyright © 2014 InMon Corporation • Simple, no change to normal forwarding behavior - BGP, OSPF, SPB, TRILL, LAG/MLAG etc. used to control L2 / L3 forwarding tables • Efficient, merchant silicon hardware multipath forwarding efficiently handles most flows. OpenFlow used to control ACL table and selectively override forwarding of specific flows (block, mark, steer, rate-limit), maximizing effectiveness of limited general match capacity.
 Note: very few ACLs needed in fabric since policy has shifted to edge - mainly required to protect control plane • Scaleable, flows handled by existing control plane, OpenFlow only used when controller wants to make an exception. 
 Note: An OpenFlow controller could pro-actively configure L2/L3 tables to define “NORMAL” forwarding and still support hybrid control of ACL table • Robust, if controller fails, network keeps forwarding Traffic control with hybrid OpenFlow Hybrid Programmable Forwarding Plane, David Ward, ONF Summit, 2011
  • 8. Copyright © 2014 InMon Corporation sFlow-RT feedback controller Large flow steering DDoS Mitigation REST API Open “Southbound” APIs Data Plane Real-time analytics and control Hosts Open “Northbound” APIs User defined policy sFlow-RT controller real-time analytics hybrid OpenFlow controller Open JavaScript/ECMAScript API optimized for SDN traffic engineering applications Large flow marking … Web portal OpenStack etc.
  • 9. Copyright © 2014 InMon Corporation Brocade/InMon: DDoS mitigation http://www.opennetsummit.org/pdf/2014/sdn-idol/Brocade-SDN-Idol-Proposal.pdf “Real-Time SDN Analytics for DDoS Mitigation” winner of ONS SDN Idol 2014
  • 10. Copyright © 2014 InMon Corporation ALU/InMon: Large flow marking http://enterprise.alcatel-lucent.com/docs/?id=23847
  • 11. Copyright © 2014 InMon Corporation Extend control beyond network Analyze Plan Act Network, Storage, Compute sFlow-RT Feedback Controller Maximize data center efficiency through coordinated workload placement and resource allocation of network, storage, and compute based on measured loads and communication patterns e.g. reduce network congestion by instructing OpenStack to move virtual machine
  • 12. Copyright © 2014 InMon Corporation • InMon.com • blog.sFlow.com • sFlow.org • Host-sFlow.SourceForge.net • Velocity 2012
 http://blog.sflow.com/2013/04/velocity-conference-talk.html • Bay Area Network Virtualization Meetup
 http://blog.sflow.com/2013/06/bay-area-network-virtualization-talk.html • Mininet testbed
 http://blog.sflow.com/2014/04/mininet-integrated-hybrid-openflow.html Explore further