Abstract image of a woman sitting on books and studying on a laptop

veryOLONADE MAHMpppUD PRESENTATIONrrr.pptx

Download as PPTX, PDF
A
awelewa1

research

Career
1 of 45
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
1 Computer Communication and Networking (CPS 805) presentation on Software Defined Networking By Olonade Mamud Olayemi PG/22/S41522007 March 2025
2 Outline What is SDN? OpenFlow basics Why is SDN happening now? (a brief history) 4D discussion
What is Software Defined Network(SDN)? A network in which the control plane is physically separate from the data plane. It is an approach to computer networking that allows network administrators to programmatically initialize, control, change, and manage network behavior dynamically via:  open interfaces  abstraction of lower-level functionality SDN is meant to address the fact that the static architecture of traditional networks doesn't support the dynamic, scalable computing and storage needs of more modern computing environments such as data centers. This is done by decoupling or disassociating the system that makes decisions about where traffic is sent (the SDN controller, or control plane) from the underlying systems that forward traffic to the selected destination (the data plane).
SDN Definition Centralization of control of the network via the Separation of control logic to off- device compute, that Enables automation and orchestration of network services via Open programmatic interfaces SDN Benefits Efficiency: optimize existing applications, services, and infrastructure Scale: rapidly grow existing applications and services Innovation: create and deliver new types of applications and services and business models What is SDN? 4 Source: Adopted from SDN Central (Software-Defined Networking (SDN) Use Cases)
SDN Innovation & Components SDN Controller/ Network Operating System App App App App OpenFlow Packet-Forwarding Hardware OpenFlow compliant OS Packet-Forwarding Hardware OpenFlow compliant OS Packet-Forwarding Hardware OpenFlow compliant OS Well-defined Open API
6 Software Defined Network (SDN) Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Control Control Control Control Control Global Network Map Control Plane Control Program Control Program Control Program
veryOLONADE MAHMpppUD PRESENTATIONrrr.pptx
veryOLONADE MAHMpppUD PRESENTATIONrrr.pptx
veryOLONADE MAHMpppUD PRESENTATIONrrr.pptx
Traditional Networks
11 The Networking “Planes” Data plane: processing and delivery of packets with local forwarding state – Forwarding state + packet header  forwarding decision – Filtering, buffering, scheduling Control plane: computing the forwarding state in routers – Determines how and where packets are forwarded – Routing, traffic engineering, failure detection/recovery, … Management plane: configuring and tuning the network – Traffic engineering, ACL config, device provisioning, …
12 Timescales Data Control Manageme nt Time- scale Packet (nsec) Event (10 msec to sec) Human (min to hours) Locatio n Linecard hardware Router software Humans or scripts
The SDN architecture is: Directly programmable: Network control is directly programmable because it is decoupled from forwarding functions. Agile: Abstracting control from forwarding lets administrators dynamically adjust network-wide traffic flow to meet changing needs. Centrally managed: Network intelligence is (logically) centralized in software-based SDN controllers that maintain a global view of the network, which appears to applications and policy engines as a single, logical switch. Programmatically configured: SDN lets network managers configure, manage, secure, and optimize network resources very quickly via dynamic, automated SDN programs, which they can write themselves because the programs do not depend on proprietary software. Open standards-based and vendor-neutral: When implemented through open standards, SDN simplifies network design and operation because instructions are provided by SDN controllers instead of multiple, vendor-specific devices and protocols.
14 Data and Control Planes Switching Fabric Processor Line card Line card Line card Line card Line card Line card data plane control plane
15 Data Plane Streaming algorithms on packets – Matching on some header bits – Perform some actions Example: IP Forwarding host host host LAN 1 ... host host host LAN 2 ... router router router WAN WAN 1.2.3.4 1.2.3.7 1.2.3.156 5.6.7.8 5.6.7.9 1.2.3.0/24 5.6.7.0/24 forwarding table
SDN Approach
17 Control Plane Compute paths the packets will follow – Populate forwarding tables – Traditionally, a distributed protocol Example: Link-state routing (OSPF, IS-IS) – Flood the entire topology to all nodes – Each node computes shortest paths – Dijkstra’s algorithm
18 Management Plane Traffic Engineering: setting the weights – Inversely proportional to link capacity? – Proportional to propagation delay? – Network-wide optimization based on traffic? 3 2 2 1 1 3 1 4 5 3 3
Point of Difference Traditional Networks Software-Defined Network Dynamics Today’s business environment expects zero service disruption — this means networks must dynamically adapt to changing traffic by anticipating user demands. With traditional networks becoming increasingly complex, it is an uphill task to match market demands. By placing the control logic outside of the network hardware, businesses have more flexibility to control programmability, automation etc. This helps them develop scalable networks that adapt to changing business needs in quick time. Application of Policies and Security Implementing a network-wide policy requires configuring at the device-level, making it difficult to apply a consistent set of access, security, QoS, and other policies in today’s mobile environment. This leaves the enterprise open to security breaches, non-compliance with regulations, and so on. SDN by contrast allows network operators to programmatically configure a simplified network abstraction ensuring higher chances of a consistent application of policies, security etc. across the entire network. Scalability It is a challenge for the network to keep pace with growing demands on the data center. Typically, link oversubscription has allowed scaling of the network by estimating traffic patterns – this however, is not a reliable method anymore. With SDN, since it is possible to abstract the underlying infrastructure, network manageability, scalability, and agility can be enhanced. Control of Network Devices In the current scenario, enterprises are constrained by vendors equipment product cycles and hence are unable to respond quickly to business demands. Lack of standard and open interfaces hinders customizing the network to individual environments. SDN control software is vendor-agnostic and can control any network device. To ensure faster responses to changes, SDN-based orchestration and management tools can help quickly deploy, configure, and update devices across the entire network. Traditional vs. SDN networks
20 PROBLEM OF SND (Too) many task-specific control mechanisms – No modularity, limited functionality Indirect control – Must invert protocol behavior, “coax” it to do what you want – Ex. Changing weights instead of paths for TE Uncoordinated control – Cannot control which router updates first Interacting protocols and mechanisms – Routing, addressing, access control, QoS
21 Example 1: Inter-domain Routing Today’s inter-domain routing protocol, BGP, artificially constrains routes - Routing only on destination IP address blocks - Can only influence immediate neighbors - Very difficult to incorporate other information Application-specific peering – Route video traffic one way, and non-video another Blocking denial-of-service traffic – Dropping unwanted traffic further upstream Inbound traffic engineering – Splitting incoming traffic over multiple peering links
22 Two locations, each with data center & front office All routers exchange routes over all links R1 R2 R5 R4 R3 Chicago (chi) New York (nyc) Data Center Front Office Example 2: Access Control
23 Custom Hardware Custom Hardware Custom Hardware Custom Hardware Custom Hardware OS OS OS OS OS Network OS Feature Feature How SDN Changes the Network Feature Feature Feature Feature Feature Feature Feature Feature Feature Feature 23
24 Control Program 1 Network OS 1. Open interface to packet forwarding 3. Consistent, up-to-date global network view 2. At least one Network OS probably many. Open- and closed-source Software Defined Network (SDN) Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Control Program 2 24
25 Network OS Network OS: distributed system that creates a consistent, up-to-date network view – Runs on servers (controllers) in the network – NOX, ONIX, Floodlight, Trema, OpenDaylight, HyperFlow, Kandoo, Beehive, Beacon, Maestro, … + more Uses forwarding abstraction to: – Get state information from forwarding elements – Give control directives to forwarding elements
26 Control Program A Control Program B Network OS Software Defined Network (SDN) Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding
27 Control Program Control program operates on view of network – Input: global network view (graph/database) – Output: configuration of each network device Control program is not a distributed system – Abstraction hides details of distributed state
28 Forwarding Abstraction Purpose: Standard way of defining forwarding state – Flexible • Behavior specified by control plane • Built from basic set of forwarding primitives – Minimal • Streamlined for speed and low-power • Control program not vendor-specific OpenFlow is an example of such an abstraction
Network OS Software Defined Network 29 Global Network View Control Program Virtual Topology Network Hypervisor
Virtualization Simplifies Control Program A B A B Abstract Network View Global Network View AB drop Hypervisor then inserts flow entries as needed AB drop AB drop 30
31 Does SDN Simplify the Network? Abstraction doesn’t eliminate complexity - NOS, Hypervisor are still complicated pieces of code SDN main achievements - Simplifies interface for control program (user-specific) - Pushes complexity into reusable code (SDN platform) Just like compilers….
32 OpenFlow Protocol Data Path (Hardware) Control Path OpenFlow Ethernet Switch Network OS Control Program A Control Program B OpenFlow Basics
33 Control Program A Control Program B Network OS OpenFlow Basics Packet Forwarding Packet Forwarding Packet Forwarding Flow Table(s) “If header = p, send to port 4” “If header = ?, send to me” “If header = q, overwrite header with r, add header s, and send to ports 5,6”
Primitives <Match, Action> Match arbitrary bits in headers: – Match on any header, or new header – Allows any flow granularity Action – Forward to port(s), drop, send to controller – Overwrite header with mask, push or pop – Forward at specific bit-rate Header Data Match: 1000x01xx0101001x
What is Open Flow  OpenFlow is like an x86 instruction set for the network nodes.  Provides open interface to “black box” networking node (ie. Routers, L2/L3 switch) to enable visibility and openness in network  Separation of control plane and data plane.  The datapath of an OpenFlow Switch consists of a Flow Table, and an action associated with each flow entry  The control path consists of a controller which programs the flow entry in the flow table 35
OpenFlow Rules Exploit the flow table in switches, routers, and chipsets Rule (exact & wildcard) Action Statistics Rule (exact & wildcard) Action Statistics Rule (exact & wildcard) Action Statistics Rule (exact & wildcard) Default Action Statistics Flow 1. Flow 2. Flow 3. Flow N.
OpenFlow Controller  Manages one or more switch via OpenFlow channels.  Uses OpenFlow protocol to communicate with a OpenFlow aware switch.  Acts similar to control plane of traditional switch.  Provides a network wide abstraction for the applications on north bound.  Responsible for programming various tables in the OpenFlow Switch.  Single switch can be managed by more than one controller for load balancing or redundancy purpose. In this case the controller can take any one of the following roles.  Master.  Slave.  Equal. 37
OpenFlow Channel  Used to exchange OpenFlow message between switch and controller.  Switch can establish single or multiple connections to same or different controllers (auxiliary connections).  A controller configures and manages the switch, receives events from the switch, and send packets out the switch via this interface  The SC connection is a TLS/TCP connection. Switch and controller mutually authenticate by exchanging certificates signed by a site- specific private key 38
The Road to SDN Active Networking: 1990s - First attempt make networks programmable - Demultiplexing packets to software programs, network virtualization, … Control/Dataplane Separation: 2003-2007 - ForCes [IETF], RCP, 4D [Princeton, CMU], SANE/Ethane [Stanford/Berkeley] - Open interfaces between data and control plane, logically centralized control OpenFlow API & Network Oses: 2008 - OpenFlow switch interface [Stanford] - NOX Network OS [Nicira] 39
SDN Drivers Rise of merchant switching silicon - Democratized switching - Vendors eager to unseat incumbents Cloud / Data centers - Operators face real network management problems - Extremely cost conscious; desire a lot of control The right balance between vision & pragmatism - OpenFlow compatible with existing hardware A “killer app”: Network virtualization 40
SDN Use Cases Resource Managements Energy conservation, routing, and management in data centers Seamless use of diverse wireless networks Network based load balancing Traffic engineering Slicing and scalable remote control/management of home networks Experimentation with new approaches and protocols using selected production traffic Run virtual shadow network for traffic analysis and re-configuration And many more …
Virtualization is Killer App for SDN Consider a multi-tenant datacenter - Want to allow each tenant to specify virtual topology - This defines their individual policies and requirements Datacenter’s network hypervisor compiles these virtual topologies into set of switch configurations - Takes 1000s of individual tenant virtual topologies - Computes configurations to implement all simultaneously This is what people are paying money for…. - Enabled by SDN’s ability to virtualize the network
4D Decision: all management and control logic Dissemination: communicating with routers Discovery: topology and traffic monitoring Data: packet handling routers Decision Dissemination Discovery Data Network-level objectives Direct control Network- wide views
44 Practical Challenges Scalability – Decision elements responsible for many routers Reliability – Surviving failures of decision elements and routers Response time – Delays between decision elements and routers Consistency – Ensuring multiple decision elements behave consistently Security – Network vulnerable to attacks on decision elements Interoperability – Legacy routers and neighboring domains
45 Thank You All

More Related Content

PPTX
Software_Defined_Networking.pptx
AsfawGedamu
 
PDF
journal in research
rikaseorika
 
PDF
research on journaling
rikaseorika
 
PDF
journal to publish research paper
rikaseorika
 
PDF
journal of mathematics research
rikaseorika
 
PDF
journalism research paper
rikaseorika
 
PPTX
SDN Multi-Controller Domain.pptx
Sandeep Maurya
 
PDF
Software defined optical communication
Ronak Vyas
 
Software_Defined_Networking.pptx
AsfawGedamu
 
journal in research
rikaseorika
 
research on journaling
rikaseorika
 
journal to publish research paper
rikaseorika
 
journal of mathematics research
rikaseorika
 
journalism research paper
rikaseorika
 
SDN Multi-Controller Domain.pptx
Sandeep Maurya
 
Software defined optical communication
Ronak Vyas
 

Similar to veryOLONADE MAHMpppUD PRESENTATIONrrr.pptx (20)

PDF
SDN and Mininet: Some Basic Concepts
Eswar Publications
 
PDF
Controller Placement Problem Resiliency Evaluation in SDN-based Architectures
IJCNCJournal
 
PDF
Controller Placement Problem resiliency evaluation in SDN-based architectures
IJCNCJournal
 
PDF
Controller Placement Problem Resiliency Evaluation in SDN-based Architectures
IJCNCJournal
 
PPTX
Software-Defined Networking(SDN):A New Approach to Networking
Anju Ann
 
PPTX
Software Defined Networking (SDN)
Aalok Shah
 
PDF
Software Defined Networking – Virtualization of Traffic Engineering
QuEST Global (erstwhile NeST Software)
 
PDF
TERM PAPER
Madhav Sharma
 
PPTX
Software Defined Networks
Shreeya Shah
 
PDF
sdnppt.pdf
AbhayDonde
 
PPTX
OpenDayLight Load Balanced Switching
ManasaKulkarni3
 
PDF
DTS Solution - Software Defined Security v1.0
Shah Sheikh
 
PPTX
Sdn Networking
Mhd Khaled Alhalai
 
PPT
Crowd management system
Mumbaikar Le
 
PDF
SDN Security Talk - (ISC)2_3
Wen-Pai Lu
 
PPTX
the cloud Software-defined architectures
bushrazaheer9
 
PPTX
SDN approach.pptx
TrongMinhHoang1
 
PPTX
Foundation of Modern Network- william stalling
JonathanWallace46
 
PDF
Provide a diagram and description of the flow table entries that can.pdf
arihantelehyb
 
PDF
IRJET- SDN Simulation in Mininet to Provide Security Via Firewall
IRJET Journal
 
SDN and Mininet: Some Basic Concepts
Eswar Publications
 
Controller Placement Problem Resiliency Evaluation in SDN-based Architectures
IJCNCJournal
 
Controller Placement Problem resiliency evaluation in SDN-based architectures
IJCNCJournal
 
Controller Placement Problem Resiliency Evaluation in SDN-based Architectures
IJCNCJournal
 
Software-Defined Networking(SDN):A New Approach to Networking
Anju Ann
 
Software Defined Networking (SDN)
Aalok Shah
 
Software Defined Networking – Virtualization of Traffic Engineering
QuEST Global (erstwhile NeST Software)
 
TERM PAPER
Madhav Sharma
 
Software Defined Networks
Shreeya Shah
 
sdnppt.pdf
AbhayDonde
 
OpenDayLight Load Balanced Switching
ManasaKulkarni3
 
DTS Solution - Software Defined Security v1.0
Shah Sheikh
 
Sdn Networking
Mhd Khaled Alhalai
 
Crowd management system
Mumbaikar Le
 
SDN Security Talk - (ISC)2_3
Wen-Pai Lu
 
the cloud Software-defined architectures
bushrazaheer9
 
SDN approach.pptx
TrongMinhHoang1
 
Foundation of Modern Network- william stalling
JonathanWallace46
 
Provide a diagram and description of the flow table entries that can.pdf
arihantelehyb
 
IRJET- SDN Simulation in Mininet to Provide Security Via Firewall
IRJET Journal
 
Ad

Recently uploaded (20)

PDF
Dubai Entrepreneur Jaideep Mirchandani | Skyone
Sky One
 
PPTX
AMISHA KUMARI RAWE PPT-.pptx135764766887777
amisha3448
 
PPTX
Inventory Control in nursing management in wards
SheetalSharma980589
 
PDF
20255 _12Time table 2025 life science (2).pdf
kartikeyawasthi383
 
PPTX
basu ppt AMJARIRNA CASE DISCUSSION.new one.pptx
basavaraj kadamudimatha
 
PPT
Basic_Fire_&_Fire_Extinguisher_Training.ppt
mrsid862
 
PPTX
Nature and Scope of Political Science and its evolution
RiyaSingh481180
 
DOCX
How to Balance Clinical and Emotional Skills in Healthcare Assistant Courses....
biloguard123
 
PPTX
diabetes.pptxgtgthtgtgtgthyjiulp'][pp0ppp
priyankasinghpedia
 
PDF
Combined Obstetrics pdf notes for midwifery
nuredinobsa76
 
PPT
3. Aggregate.ppt he is the main things of
TinkuManiSarma
 
PPTX
1.-NSTP-Orientation-Introductio of life a
loceye80
 
PDF
New Method Make Cv liek this | Get Job In 1 day|
AhsanMehmood70
 
PPTX
Role of Mi hshsjs sjskele didoels sosoen
aishcash07
 
PPTX
strock or cerebrovascular accident.pptx
farhinsolanki86
 
PDF
lahore 2024 august.pdf exercise for fittness
Zohaib Jutt
 
PPTX
Computer Ed-9 ppt by sir kimar, good day comes ahead.
KimarArbisonBada
 
PPT
Machine Translation in Natural Language Processing
paramveersinghcr7
 
PPTX
ALL CASE STUDIES na thtvtvvtbtbtyby.pptx
kanirudhsingh2357
 
PPTX
MTVED - Trends in Food and Innovation.pptx
RizaQuiderBedayo
 
Dubai Entrepreneur Jaideep Mirchandani | Skyone
Sky One
 
AMISHA KUMARI RAWE PPT-.pptx135764766887777
amisha3448
 
Inventory Control in nursing management in wards
SheetalSharma980589
 
20255 _12Time table 2025 life science (2).pdf
kartikeyawasthi383
 
basu ppt AMJARIRNA CASE DISCUSSION.new one.pptx
basavaraj kadamudimatha
 
Basic_Fire_&_Fire_Extinguisher_Training.ppt
mrsid862
 
Nature and Scope of Political Science and its evolution
RiyaSingh481180
 
How to Balance Clinical and Emotional Skills in Healthcare Assistant Courses....
biloguard123
 
diabetes.pptxgtgthtgtgtgthyjiulp'][pp0ppp
priyankasinghpedia
 
Combined Obstetrics pdf notes for midwifery
nuredinobsa76
 
3. Aggregate.ppt he is the main things of
TinkuManiSarma
 
1.-NSTP-Orientation-Introductio of life a
loceye80
 
New Method Make Cv liek this | Get Job In 1 day|
AhsanMehmood70
 
Role of Mi hshsjs sjskele didoels sosoen
aishcash07
 
strock or cerebrovascular accident.pptx
farhinsolanki86
 
lahore 2024 august.pdf exercise for fittness
Zohaib Jutt
 
Computer Ed-9 ppt by sir kimar, good day comes ahead.
KimarArbisonBada
 
Machine Translation in Natural Language Processing
paramveersinghcr7
 
ALL CASE STUDIES na thtvtvvtbtbtyby.pptx
kanirudhsingh2357
 
MTVED - Trends in Food and Innovation.pptx
RizaQuiderBedayo
 
Ad

veryOLONADE MAHMpppUD PRESENTATIONrrr.pptx

  • 1. 1 Computer Communication and Networking (CPS 805) presentation on Software Defined Networking By Olonade Mamud Olayemi PG/22/S41522007 March 2025
  • 2. 2 Outline What is SDN? OpenFlow basics Why is SDN happening now? (a brief history) 4D discussion
  • 3. What is Software Defined Network(SDN)? A network in which the control plane is physically separate from the data plane. It is an approach to computer networking that allows network administrators to programmatically initialize, control, change, and manage network behavior dynamically via:  open interfaces  abstraction of lower-level functionality SDN is meant to address the fact that the static architecture of traditional networks doesn't support the dynamic, scalable computing and storage needs of more modern computing environments such as data centers. This is done by decoupling or disassociating the system that makes decisions about where traffic is sent (the SDN controller, or control plane) from the underlying systems that forward traffic to the selected destination (the data plane).
  • 4. SDN Definition Centralization of control of the network via the Separation of control logic to off- device compute, that Enables automation and orchestration of network services via Open programmatic interfaces SDN Benefits Efficiency: optimize existing applications, services, and infrastructure Scale: rapidly grow existing applications and services Innovation: create and deliver new types of applications and services and business models What is SDN? 4 Source: Adopted from SDN Central (Software-Defined Networking (SDN) Use Cases)
  • 5. SDN Innovation & Components SDN Controller/ Network Operating System App App App App OpenFlow Packet-Forwarding Hardware OpenFlow compliant OS Packet-Forwarding Hardware OpenFlow compliant OS Packet-Forwarding Hardware OpenFlow compliant OS Well-defined Open API
  • 6. 6 Software Defined Network (SDN) Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Control Control Control Control Control Global Network Map Control Plane Control Program Control Program Control Program
  • 11. 11 The Networking “Planes” Data plane: processing and delivery of packets with local forwarding state – Forwarding state + packet header  forwarding decision – Filtering, buffering, scheduling Control plane: computing the forwarding state in routers – Determines how and where packets are forwarded – Routing, traffic engineering, failure detection/recovery, … Management plane: configuring and tuning the network – Traffic engineering, ACL config, device provisioning, …
  • 12. 12 Timescales Data Control Manageme nt Time- scale Packet (nsec) Event (10 msec to sec) Human (min to hours) Locatio n Linecard hardware Router software Humans or scripts
  • 13. The SDN architecture is: Directly programmable: Network control is directly programmable because it is decoupled from forwarding functions. Agile: Abstracting control from forwarding lets administrators dynamically adjust network-wide traffic flow to meet changing needs. Centrally managed: Network intelligence is (logically) centralized in software-based SDN controllers that maintain a global view of the network, which appears to applications and policy engines as a single, logical switch. Programmatically configured: SDN lets network managers configure, manage, secure, and optimize network resources very quickly via dynamic, automated SDN programs, which they can write themselves because the programs do not depend on proprietary software. Open standards-based and vendor-neutral: When implemented through open standards, SDN simplifies network design and operation because instructions are provided by SDN controllers instead of multiple, vendor-specific devices and protocols.
  • 14. 14 Data and Control Planes Switching Fabric Processor Line card Line card Line card Line card Line card Line card data plane control plane
  • 15. 15 Data Plane Streaming algorithms on packets – Matching on some header bits – Perform some actions Example: IP Forwarding host host host LAN 1 ... host host host LAN 2 ... router router router WAN WAN 1.2.3.4 1.2.3.7 1.2.3.156 5.6.7.8 5.6.7.9 1.2.3.0/24 5.6.7.0/24 forwarding table
  • 17. 17 Control Plane Compute paths the packets will follow – Populate forwarding tables – Traditionally, a distributed protocol Example: Link-state routing (OSPF, IS-IS) – Flood the entire topology to all nodes – Each node computes shortest paths – Dijkstra’s algorithm
  • 18. 18 Management Plane Traffic Engineering: setting the weights – Inversely proportional to link capacity? – Proportional to propagation delay? – Network-wide optimization based on traffic? 3 2 2 1 1 3 1 4 5 3 3
  • 19. Point of Difference Traditional Networks Software-Defined Network Dynamics Today’s business environment expects zero service disruption — this means networks must dynamically adapt to changing traffic by anticipating user demands. With traditional networks becoming increasingly complex, it is an uphill task to match market demands. By placing the control logic outside of the network hardware, businesses have more flexibility to control programmability, automation etc. This helps them develop scalable networks that adapt to changing business needs in quick time. Application of Policies and Security Implementing a network-wide policy requires configuring at the device-level, making it difficult to apply a consistent set of access, security, QoS, and other policies in today’s mobile environment. This leaves the enterprise open to security breaches, non-compliance with regulations, and so on. SDN by contrast allows network operators to programmatically configure a simplified network abstraction ensuring higher chances of a consistent application of policies, security etc. across the entire network. Scalability It is a challenge for the network to keep pace with growing demands on the data center. Typically, link oversubscription has allowed scaling of the network by estimating traffic patterns – this however, is not a reliable method anymore. With SDN, since it is possible to abstract the underlying infrastructure, network manageability, scalability, and agility can be enhanced. Control of Network Devices In the current scenario, enterprises are constrained by vendors equipment product cycles and hence are unable to respond quickly to business demands. Lack of standard and open interfaces hinders customizing the network to individual environments. SDN control software is vendor-agnostic and can control any network device. To ensure faster responses to changes, SDN-based orchestration and management tools can help quickly deploy, configure, and update devices across the entire network. Traditional vs. SDN networks
  • 20. 20 PROBLEM OF SND (Too) many task-specific control mechanisms – No modularity, limited functionality Indirect control – Must invert protocol behavior, “coax” it to do what you want – Ex. Changing weights instead of paths for TE Uncoordinated control – Cannot control which router updates first Interacting protocols and mechanisms – Routing, addressing, access control, QoS
  • 21. 21 Example 1: Inter-domain Routing Today’s inter-domain routing protocol, BGP, artificially constrains routes - Routing only on destination IP address blocks - Can only influence immediate neighbors - Very difficult to incorporate other information Application-specific peering – Route video traffic one way, and non-video another Blocking denial-of-service traffic – Dropping unwanted traffic further upstream Inbound traffic engineering – Splitting incoming traffic over multiple peering links
  • 22. 22 Two locations, each with data center & front office All routers exchange routes over all links R1 R2 R5 R4 R3 Chicago (chi) New York (nyc) Data Center Front Office Example 2: Access Control
  • 23. 23 Custom Hardware Custom Hardware Custom Hardware Custom Hardware Custom Hardware OS OS OS OS OS Network OS Feature Feature How SDN Changes the Network Feature Feature Feature Feature Feature Feature Feature Feature Feature Feature 23
  • 24. 24 Control Program 1 Network OS 1. Open interface to packet forwarding 3. Consistent, up-to-date global network view 2. At least one Network OS probably many. Open- and closed-source Software Defined Network (SDN) Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Control Program 2 24
  • 25. 25 Network OS Network OS: distributed system that creates a consistent, up-to-date network view – Runs on servers (controllers) in the network – NOX, ONIX, Floodlight, Trema, OpenDaylight, HyperFlow, Kandoo, Beehive, Beacon, Maestro, … + more Uses forwarding abstraction to: – Get state information from forwarding elements – Give control directives to forwarding elements
  • 26. 26 Control Program A Control Program B Network OS Software Defined Network (SDN) Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding Packet Forwarding
  • 27. 27 Control Program Control program operates on view of network – Input: global network view (graph/database) – Output: configuration of each network device Control program is not a distributed system – Abstraction hides details of distributed state
  • 28. 28 Forwarding Abstraction Purpose: Standard way of defining forwarding state – Flexible • Behavior specified by control plane • Built from basic set of forwarding primitives – Minimal • Streamlined for speed and low-power • Control program not vendor-specific OpenFlow is an example of such an abstraction
  • 29. Network OS Software Defined Network 29 Global Network View Control Program Virtual Topology Network Hypervisor
  • 30. Virtualization Simplifies Control Program A B A B Abstract Network View Global Network View AB drop Hypervisor then inserts flow entries as needed AB drop AB drop 30
  • 31. 31 Does SDN Simplify the Network? Abstraction doesn’t eliminate complexity - NOS, Hypervisor are still complicated pieces of code SDN main achievements - Simplifies interface for control program (user-specific) - Pushes complexity into reusable code (SDN platform) Just like compilers….
  • 32. 32 OpenFlow Protocol Data Path (Hardware) Control Path OpenFlow Ethernet Switch Network OS Control Program A Control Program B OpenFlow Basics
  • 33. 33 Control Program A Control Program B Network OS OpenFlow Basics Packet Forwarding Packet Forwarding Packet Forwarding Flow Table(s) “If header = p, send to port 4” “If header = ?, send to me” “If header = q, overwrite header with r, add header s, and send to ports 5,6”
  • 34. Primitives <Match, Action> Match arbitrary bits in headers: – Match on any header, or new header – Allows any flow granularity Action – Forward to port(s), drop, send to controller – Overwrite header with mask, push or pop – Forward at specific bit-rate Header Data Match: 1000x01xx0101001x
  • 35. What is Open Flow  OpenFlow is like an x86 instruction set for the network nodes.  Provides open interface to “black box” networking node (ie. Routers, L2/L3 switch) to enable visibility and openness in network  Separation of control plane and data plane.  The datapath of an OpenFlow Switch consists of a Flow Table, and an action associated with each flow entry  The control path consists of a controller which programs the flow entry in the flow table 35
  • 36. OpenFlow Rules Exploit the flow table in switches, routers, and chipsets Rule (exact & wildcard) Action Statistics Rule (exact & wildcard) Action Statistics Rule (exact & wildcard) Action Statistics Rule (exact & wildcard) Default Action Statistics Flow 1. Flow 2. Flow 3. Flow N.
  • 37. OpenFlow Controller  Manages one or more switch via OpenFlow channels.  Uses OpenFlow protocol to communicate with a OpenFlow aware switch.  Acts similar to control plane of traditional switch.  Provides a network wide abstraction for the applications on north bound.  Responsible for programming various tables in the OpenFlow Switch.  Single switch can be managed by more than one controller for load balancing or redundancy purpose. In this case the controller can take any one of the following roles.  Master.  Slave.  Equal. 37
  • 38. OpenFlow Channel  Used to exchange OpenFlow message between switch and controller.  Switch can establish single or multiple connections to same or different controllers (auxiliary connections).  A controller configures and manages the switch, receives events from the switch, and send packets out the switch via this interface  The SC connection is a TLS/TCP connection. Switch and controller mutually authenticate by exchanging certificates signed by a site- specific private key 38
  • 39. The Road to SDN Active Networking: 1990s - First attempt make networks programmable - Demultiplexing packets to software programs, network virtualization, … Control/Dataplane Separation: 2003-2007 - ForCes [IETF], RCP, 4D [Princeton, CMU], SANE/Ethane [Stanford/Berkeley] - Open interfaces between data and control plane, logically centralized control OpenFlow API & Network Oses: 2008 - OpenFlow switch interface [Stanford] - NOX Network OS [Nicira] 39
  • 40. SDN Drivers Rise of merchant switching silicon - Democratized switching - Vendors eager to unseat incumbents Cloud / Data centers - Operators face real network management problems - Extremely cost conscious; desire a lot of control The right balance between vision & pragmatism - OpenFlow compatible with existing hardware A “killer app”: Network virtualization 40
  • 41. SDN Use Cases Resource Managements Energy conservation, routing, and management in data centers Seamless use of diverse wireless networks Network based load balancing Traffic engineering Slicing and scalable remote control/management of home networks Experimentation with new approaches and protocols using selected production traffic Run virtual shadow network for traffic analysis and re-configuration And many more …
  • 42. Virtualization is Killer App for SDN Consider a multi-tenant datacenter - Want to allow each tenant to specify virtual topology - This defines their individual policies and requirements Datacenter’s network hypervisor compiles these virtual topologies into set of switch configurations - Takes 1000s of individual tenant virtual topologies - Computes configurations to implement all simultaneously This is what people are paying money for…. - Enabled by SDN’s ability to virtualize the network
  • 43. 4D Decision: all management and control logic Dissemination: communicating with routers Discovery: topology and traffic monitoring Data: packet handling routers Decision Dissemination Discovery Data Network-level objectives Direct control Network- wide views
  • 44. 44 Practical Challenges Scalability – Decision elements responsible for many routers Reliability – Surviving failures of decision elements and routers Response time – Delays between decision elements and routers Consistency – Ensuring multiple decision elements behave consistently Security – Network vulnerable to attacks on decision elements Interoperability – Legacy routers and neighboring domains

Editor's Notes

  • #6: Talk about forwarding & control planes
  • #41: On top of this national OPEN infrastructure, we and others demonstrated a number of new network capabilities at GENI Engineering Conference in Washington DC. The new network capabilities include these … You will see some of them later.