2. Agenda
• SME Projects = CENGN Spaces (aka BB8/BB9)
• Current & Developed Clouds @ CENGN:
– Infrastructure (CCP)
– C3PO
– Skywalker
• Some lessons learned
• CENGN’s Ontario Expansion!
3. CENGN Spaces (BB8)
• CENGN’s basic infrastructure services give SME Project participants the following
services: (for each project)
– Remote Access (SSH, RDP) into their own Cloud Project
• Using public/private RSA keys to access
• Cloud projects integrated with the rest of CENGN services by default
– Cloud Project integrated with CENGN underlay
– SME projects can deploy own hardware / BM onto same underlay
– Cloud Project separated (via FWs) from all other projects and CENGN itself.
• Even CENGN staff cannot access a CENGN space unless permitted by the project
participants.
3
4. Example CENGN Space:
Multi-Factor Secure Remote Authorization with idQ
• SME:
• Sponsor:
• Use-case:
– Secure remote authentication of users and
authorization into enterprise’s resources
• Project Summary:
– Showcase the ability idQ software to act as a
second layer of security using a registered
Trusted Device and QR codes
– Integrated into CENGN environment as a
second layer of authentication for remote
access to the CENGN project environment
6. C3PO – Juno
Production
Cloud
(up since 2015)
6
For CENGN Services:
• For most part stable
• Met our requirements for
purposes of running SME
projects
• Obviously:
• Ubuntu 14.04
• Juno
• Fuel 6
• All no longer viable or
supportable for us.
7. Skywalker –
Soon to be
Production
(Newton
based):
7
CENGN will use this for both
CENGN infrastructure & IT as well
as for CENGN Spaces:
• Host 10+ simultaneous SME
Projects (CENGN Spaces)
• 16.04 & Newton based
• CENGN.ca, DNS, Kibana etc.
and Atlassian will be hosted on
this platform.
• Hitting > 19Gbps on bonded
interfaces consistently. (16.04
hashing not withstanding)
8. Lessons Learned - OpenStack
• Started w/ C3PO – Fuel 6.1, Juno based in 2015 (started on laptops)
• Began working on Skywalker late last fall (2016):
– Tried Fuel 9
• Terrible performance
– Tried Fuel 9.2 – Did work -
• Only getting ~16G on bonded interfaces. (due to Mitaka)
– Tried Fuel 10 Bugs opened – Bug Junked (we are already beyond support)
• Deployment was failing then Bug re-opened (from 10) and fixed by Mirantis
• Mirantis started using Keystone V3 auth types on core services (domains)
• Teasing out stability and performance has been a key for CENGN
8
10. FY17 Projects Summary
SME/Member Sponsor Project Overview Status
Software Defined Router in the Cloud
Completed –
Whitepaper, Presented webinar June 2016
Smart City Infrastructure & Services (Open Source)
Completed; demo at OPNFV Summit – June
2016
Project 1: Multi-factor Authentication and Authorization
Project 2: idQ Password-less Authentication Solution
Project 1: Completed; demo at OPNFV
Summit – June 2016
Project 2: Completed; Video Demo – March
2017
Project 1: Auto-discovery of CENGN environment using
SmartHawk
Project 2: SmartHawk network monitoring tool
Project 1: Completed; CENGN showcased
Smarthawk product
Project 2: Completed; March 2017
Showcasing the usability of their online recruiting tool Completed; provided feedback
Demonstrate Fujitsu Virtuora SDN Controller functions using
FW CDS and Telus wavelength service
Completed; Demo – March 2017
Bluetooth Master beacon performance characterization Completed; December 2016
Nokia Optical systems SDN integration Received Server Hardware
Kontron deployment to CENGN Pharos Lab Completed; Demo at MWC 2017
Smart traffic data analysis & monitoring Completed; March 2017
https://www.cengn.ca/projects/proof-of-concepts/
11. CENGN Pharos Labs:
(examples of an open CI lab
‘living’ in a CENGN Space)
11
https://wiki.opnfv.org/display/pharos/CENGN+Hosting
Currently CENGN
participates in two
OPNFV Projects:
1.Canonical JOID
installer
2.Cisco Fast Data
Stacks w/ RH Apex
installer
12. Open Source Project
’15 years of Switching’
OPNFV project to create an open-source high-performance, low-latency, resource-
efficient NFV infrastructure
Honeyc
omb
Agent
OVSDPDK
0.0
50.0
100.0
150.0
No overhead to implement, but significantly
simpler to operate
V
M
Linux
Bridge
Internal
Bridge
Internal
Bridge
Provide
r
Bridge
NIC
V
M
Linux
Bridge
Internal
Bridge
Internal
Bridge
Provide
r
Bridge
NIC
V
M
VPP
NIC
V
M
VPP
NIC
Agent Agent
OVS FDS
Consistent performance regardless of
the characteristics of the data (type,
size etc
ETSI NFVI Framework
13. Ontario Smart Infrastructure Testbed
Proposal
• Primary Target are SMEs in Ontario
• Consumable Open Platform
– Open to a wide variety of SMEs (Precision Agg., Autonomous Vehicle etc.)
• Modular and Multi-Vendor
• Foster training and internships across Ontario
• Delivered directly – making remote communities in Ontario feel like they can
innovate just like folks in Ottawa or Toronto or Waterloo.
13