NFV_vCPE

SDN, NV and NFV
A path to Cloudify the Telco Industry
Syed Affan Ahmed
Director Engineering, PLUMgrid Inc.
asyed@plumgrid.com

Copyright © PLUMgrid, Inc. 2011-2016
Company founded in the era of Cloud and Security
Focus: SDN and NFV for OpenStack Clouds
Over 70+ OpenStack Clouds Deployed
PLUMgrid at-a-Glance

Leadership Team
90+ People – Headquarters in Santa Clara, CA
Chief Executive
Officer
Lang
Larry
Chief Technology
Officer & Co-Founder
Monclus
Pere
Chief Arch &
Co-Founder
Singh
Sushil
VP Sales & Business
Development
Iftikhar
Kash
VP Products &
Marketing
Cartee
Wendy
VP Engineering
Mushtaq
Faisal
Chief Financial
Officer
Bradford
Marty
Investors

PLUMgrid Locations
24x7 Worldwide Services and Support

Industry Leadership
5

Spearheading IO Visor Project
IO Visor up streamed into the Linux Kernel since 3.16
6

• Cloud: an introduction without the hype
• SDN, Network Virtualization
• NFV and all of the above!
• Challenges
• Use cases
• OPNFV: A Path to building local expertise
• Demo
• Q&A
Agenda

Cloud(ed) thinking!
debunking the myth of “Cloud”

• Excess capacity/Under utilized servers
• Machine & Network virtualization
• Monetization opportunity through renting
How the Cloud Business Model started
9

Excess capacity
10
https://googleblog.blogspot.com/2012/10/googles-data-centers-inside-look.html
Src: “above the clouds …”, UC Berkeley tech report
OnlineGraduatePrograms.com

Give Me
2 Machines, Dual Core,
8GB RAM, L2
connectivity, and an
SQL DB over a firewall
What happens when using a cloud!
physical
virtual
Dual Core | RAM 8GB
Dual Core | RAM 8GB

? = Cloud Management Systems
13
Apache CloudStack™

Infrastructure-as-a-Service
Platform-as-a-Service
Software-as-a-Service
(lots of other XaaS cf. Mobile Network as a Service!)
Types of a cloud (different capability of “?”)
14

Build compute powers without vendor lock-in
Provide and build services, at lower cost
Facebook has 20,000 server per admin
Scale out easily by adding servers
go to public clouds when needed (Cloud bursting)
Enterprises and Private clouds
15

SDN and Network Virtualization

Objective: Make X Programmable
thus easily change-able, reconfigurable
Tradeoff: Performance, but worth it
Example: Radio, Storage, networks
Software defined X
17

Data Plane
Switch/Router
Control Plane
Data Plane
Switch/Router
Control Plane
Data Plane
Switch/Router
Control Plane
How is SDN implemented?
Separating CP from DP
Data Plane
Switch/Router
Control Plane
• Break CP-DP association
• Open up the platform
• Define CP in software

Control PlaneControl Plane Control PlaneControl Plane
Switch/Router
Switch/Router
Switch/Router
How is SDN implemented? (The Openflow Model)
Switch/Router Data Plane
Data Plane
Data Plane
Data Plane
Provide an API/protocol to access it
Introduce simple homogeneous data
plane definition

Programmable Data Plane and
Control Plane e.g. P4 and PLUMgrid
Benefit:
future-proof to protocols
performance (data-plane)
How is SDN implemented?
It is not just CP/DP separation
20
P4: Programming Protocol-Independent Packet Processors ,
SIGCOMM CCR, 2014
http://www.wired.com/2016/06/barefoot-networks-new-chips-will-transform-tech-industry/

What is Network Virtualization

taking a physical resource
slice/dice it by using ..... wait for it
Software!
What is Virtualization?
Before we address Network Virtualization (NV)
22
Virtualizing x ↔ SDx

The Network Virtualization (NV) Vision
Abstraction (Network Virt)
Abstraction (Machine Virt)

Location of VM and communication to network elements
use a SDN/centralized controller to distribute state
Physical network elements will change packet headers
use tunneling to encapsulate VM traffic (NVGRE, VXLAN, STT)
NV Challenges … solved by SDN
24

NFV and its relation to Cloud and NV

3GPP Communication ecosystem

Telecom and Provider Networks
Access
Network
Core DC
(Private Cloud)
Internet
Classifier
Video acc Proxy
VoIP
Network Service Chains
Metro Ethernet

• Replace hardware network
appliances with software
• Deployable over commodity
machines
• Cost savings; no vendor lock-in
ETSI and Network Function Virtualization (NFV)
Each Service Network Function now a VM
or a set of VMs

Legacy Limitation
• Physical install appliance/site
• Inefficient asset utilization
• Development is time
consuming, upgrade difficult
• Limits modularity, vendor
choice
Benefits of NFV
• Flexibility / Extensibility
• High asset utilization
• Continuously deployed
/upgraded
• Achieve Modularity
• Opens the competitive '
landscape
• Innovative Ecosystem
The NFV Value proposition

Cloud = NFVI
Openstack = VIM
SDN/NV = composing VNF from
VMs; chaining VNFs
PLUMgrid VNFs= DHCP, NAT etc.
3rd party VNFs through SIA
NFV, Cloud and SDN
NFV
MANO
NFVO
VNF 1 VNF 3VNF 2
VNF-M
(VNF
Manager
s)
OSS / BSS
Hardware Resources
Compute NetworkStorage
EM 1 EM 3EM 2
Virtualization Layer
Virtual
Compute
Virtual
Network
Virtual
Storage
VIM
Service Insertion Architecture (SIA) VNFM
PLUMgrid 3rd Party VNF

Lots of promise
Business value; real!
Lots of Challenges
We discuss the technical
challenges next
NFV = managing a “Carrier-
grade” Cloud
NFV Challenges for Telco
https://www.ixiacom.com/sites/default/files/resources/whitepaper/demystifying_nfv_in_carrier_networks_a_definitive_guide_to_successful_migrations.pdf
Everything that was known, is now unknown

Carrier grade software (99.999% reliable)
How: use micro-services, load balancing, and cloud-native VNFs
Containers, Hyper-convergence, and SDN for flexibility
Security and visibility in managing virtual infra
How: new tools and techniques to monitor virtual infra; group-based policies
CloudApex, failure prediction, virtual Tap, Isolation guarantees
Packet processing at line rates, latency and jitter
How: high speed packet processing on commodity machines
SR-IOV, fd.io, DPDK, IO Visor
Technical Challenges for NFV
And the path(s) exploring their solution

Data Plane and Network Acceleration
…or how NFV impacted by SDN choice.

A virtualized Data Plane Layer
The evolution
vSwitches
Distributed vSwitches
vRouters
Distributed topologies
Extensible data plane
35

A Virtual Switch (vSwitch) is a
software component which:
Provides network functionalities inside the
hypervisor or OS layer
Software = easier feature roll out
Virtual Switches
36

Logically stretches across multiple
physical servers
Provides L2 connectivity for VMs of
single tenant, even across servers
Using IP tunneling (VxLAN, GRE) to
emulate L2 across L3 boundaries
From vSwitch to Distributed vSwitch
Distributed vSwitch
37

In Kernel vswitch
How about L2+ Functions?
“in-kernel switch” approach
Kernel
Ethmgmt
Tenant VMs
UserVif
Compute Node
Advanced Functions
Dedicated Network Node
Advanced Functions user-space
component
A new network layer

A vSwitch is a great reference architecture however evolving needs
of large-scale clouds dictate for a data plane that needs to be
Extensible
Where Network Functionalities can be loaded and chained dynamically
In-kernel
IO Visor and eBPF Technology https://lwn.net/Articles/603983
Provides ability to program inside kernel
Extensible Data Plane Architecture

Extensible In-Kernel Functions
Kernel
Ethmgmt
Tenant VMs
UserVif
Compute Node
A new network layer
user-space
component

Why eBPF for Network Functions?
Programmable and in-kernel capabilities
user-space
kernel
user-space
Kernel (eBPF)
VNF
Data
Plane
“InKev: In kernel Network Virtualization”, SIGCOMM CCR, July 2016
Existing/OVS InKeV

Why eBPF is better?
Allows stitching of functions inside the kernel
VNF1
User-space
Kernel Datapath
VNF2 VNF3 VNFn
Kernel-space
……..
…....
First packet
All packets
VNF1 VNF2 VNF3 VNFn
…..
…..VNF2 VNF3 VNFnVNF1 eBPF
Helpers
maps
User-space
Kernel-space
The old way
The new way

Comparing OVS and InKev
service chain length Increasing load
Evaluating flow creation efficiencyEvaluating latency

Performance consideration important
+1 for Data Plane intensive VNFs
Not all software DP are created equal
Conclusion

ETSI Virtual CPE Model
Virtual Network Functions in the Cloud
• Routing
• Switching
• Firewall
• NAT
• Load Balancer
Simplified CPE
L3-L7 functions from services cloud
DNS
L2 or L3 Tunnel
Network Services

Secure Multi-Tenant solution for NFVI
CPE
Metro
xDSL/FTTx
IP Transport
CPE
CPE
CPE
 Micro-segmented virtual domain per tenant
 Complete separation of traffic, policies, and network functions
 Secure with each domain created on-demand, no hardware changes
DNS
DNS
DNS
Tenant A Tenant B
Tenant C
Watch our demo at MWC for a novel new vCPE enabled by SDN

Cloud OSS/BSS
integration with legacy
Configure CPE to build
tunnels to NFV cloud
An approach to NFV transition
VNF 1 VNF 3VNF 2
OSS/BSS
Hardware Resources
Compute NetworkStorage
EM 1 EM 3EM 2
Virtualization Layer
Virtual
Compute
Virtual
Network
Virtual
Storage
OSS /
BSS
Internet
Cloud OSS/BSS
CPE

OPNFV: Open source, meet NFV
A path for NFV learning and team building

Current Focus
Current focus

What is OPNFV?

Two major releases
ArnoBrahmaputra

OPNFV release: Brahmaputra 3.0
Installer Type: Fuel
Minimal setup:
1 x Fuel Jump Node
1 x Controller Node
2 x Compute Nodes
Deployment Testbed
54

Fuel Master Node
Functest Docker
Container
Docker
Containers for
Fuel Services
OpenStack
Controller
Node
(slave node)
OpenStack
Compute
Node
(slave node)
OpenStack
Compute
Node
(slave node)

Installation steps:
Setup Fuel master node
Register slave nodes via the PXE network
Configure Environment, OPNFV plugins and OpenStack components
Deploy the environment
Deployment Testbed
56

OPNFV Functionality Testing suite

vPing test case
Create 2 VMs on the OpenStack internal network
Assigns a floating IP to one of the VM
ssh into the VM using floating IP
Ping the 2nd VM from the 1st one and verify connectivity
Test 1: Connectivity Check
58

Rally benchmarking test cases
Testing OpenStack scaling limits
Benchmarks the deployment with pre-defined SLA limits
Test 2: Benchmark components for SLAs
60

Testing compute virtualization

• Network test here
Testing network virtualization

Testing storage virtualization

Building a local NFV Team
A suggested approach

A 3 stage Approach
Research
No Dedicated Team or Budget
• ETSI NFV
• Papers
Executive Agenda
Small NFV Team with Limited
Budget
• RFIs
• NFV Labs
• POCs
Business Units
Dedicated NFV Team
• RFPs
• Trials
• Migrations

A local team to build software expertise
3-4 people, one lead (technical and management)
Small infrastructure (5-7 machines, with external connectivity)
Actively participate in OPNFV community
Contribute to discussions in
Architecture, use-cases, data-plane acceleration
What ever seems important for Telenor!
Harness the power of opensource
Get the best ideas from the best people, internationally!
globally active community adding features and content
Result: A knowledgeable group that represents Telenor internationally
Team structure and Objectives

Shout out to Openstack Pakistan
As the underlying NFVI, join us to

Started as a PTA-backed proposal for capacity building
History
68
OpenStack engineers make 36% more than other cloud
engineers.
Src: http://www.datacenterdynamics.com/

Now a PTA and MoIT&T backed group
69
http://pta.gov.pk/openstackweb/intro.html

Also Openstack foundation recognized
70
https://groups.openstack.org/

Workshops and Tutorials
71

(408) 800-7586 www.plumgrid.com
5155 Old Ironsides Dr.
Suite 200
Santa Clara, CA 95054
THANK YOU!
Keep in Touch and Contact Us
Questions?

NFV_vCPE

Recommended

Recommended

More Related Content

What's hot

What's hot (19)

Similar to NFV_vCPE

Similar to NFV_vCPE (20)

More from Affan Syed

More from Affan Syed (13)

NFV_vCPE