NFV_vCPE

SDN, NV and NFVA path to Cloudify the Telco Industry

Syed Affan Ahmed

Director Engineering, PLUMgrid Inc.

[email protected]

Copyright © PLUMgrid, Inc. 2011-2016

Company founded in the era of Cloud and Security

Focus: SDN and NFV for OpenStack Clouds

Over 70+ OpenStack Clouds Deployed

PLUMgrid at-a-Glance


Leadership Team90+ People – Headquarters in Santa Clara, CA

Chief Executive Officer

LangLarry

Chief Technology Officer & Co-Founder

MonclusPere

Chief Arch & Co-Founder

SinghSushil

VP Sales & Business Development

IftikharKash

VP Products & Marketing

CarteeWendy

VP Engineering

MushtaqFaisal

Chief Financial Officer

BradfordMarty

Investors


PLUMgrid Locations24x7 Worldwide Services and Support


Industry Leadership

5


Spearheading IO Visor Project

IO Visor up streamed into the Linux Kernel since 3.16

6


• Cloud: an introduction without the hype

• SDN, Network Virtualization

• NFV and all of the above!

• Challenges

• Use cases

• OPNFV: A Path to building local expertise

• Demo

• Q&A

Agenda

Cloud(ed) thinking!debunking the myth of “Cloud”


• Excess capacity/Under utilized servers

• Machine & Network virtualization

• Monetization opportunity through renting

How the Cloud Business Model started

9


Excess capacity

10

https://googleblog.blogspot.com/2012/10/googles-data-centers-inside-look.html

Src: “above the clouds …”, UC Berkeley tech report

OnlineGraduatePrograms.com


Give Me

2 Machines, Dual Core,

8GB RAM, L2

connectivity, and an

SQL DB over a firewall

What happens when using a cloud!

physical

virtual

Dual Core | RAM 8GB

Dual Core | RAM 8GB


? = Cloud Management Systems

13

Apache CloudStack™


Infrastructure-as-a-Service

Platform-as-a-Service

Software-as-a-Service

(lots of other XaaS cf. Mobile Network as a Service!)

Types of a cloud (different capability of “?”)

14


Build compute powers without vendor lock-in

Provide and build services, at lower cost

Facebook has 20,000 server per admin

Scale out easily by adding servers

go to public clouds when needed (Cloud bursting)

Enterprises and Private clouds

15

SDN and Network Virtualization


Objective: Make X Programmable

thus easily change-able, reconfigurable

Tradeoff: Performance, but worth it

Example: Radio, Storage, networks

Software defined X

17


Data Plane

Switch/Router

Control Plane

Data Plane

Switch/Router

Control Plane

Data Plane

Switch/Router

Control Plane

How is SDN implemented?Separating CP from DP

Data Plane

Switch/Router

Control Plane

• Break CP-DP association• Open up the platform • Define CP in software


Control PlaneControl Plane Control PlaneControl Plane

Switch/Router

Switch/Router

Switch/Router

How is SDN implemented? (The Openflow Model)

Switch/Router Data Plane

Data Plane

Data Plane

Data Plane

Provide an API/protocol to access it

Introduce simple homogeneous data plane definition


Programmable Data Plane andControl Plane e.g. P4 and PLUMgrid

Benefit:

future-proof to protocols

performance (data-plane)

How is SDN implemented?It is not just CP/DP separation

20

P4: Programming Protocol-Independent Packet Processors ,

SIGCOMM CCR, 2014

http://www.wired.com/2016/06/barefoot-networks-new-chips-will-transform-tech-industry/

http://www.sigcomm.org/node/3503

What is Network Virtualization


taking a physical resource

slice/dice it by using ..... wait for it

Software!

What is Virtualization?Before we address Network Virtualization (NV)

22

Virtualizing x ↔ SDx


The Network Virtualization (NV) Vision

Abstraction (Network Virt)

Abstraction (Machine Virt)


Location of VM and communication to network elements

use a SDN/centralized controller to distribute state

Physical network elements will change packet headers

use tunneling to encapsulate VM traffic (NVGRE, VXLAN, STT)

NV Challenges … solved by SDN

24

NFV and its relation to Cloud and NV


3GPP Communication ecosystem


Telecom and Provider Networks

Access

NetworkCore DC

(Private Cloud)Internet

Classifier

Video acc Proxy

VoIP

Network Service Chains

Metro Ethernet


• Replace hardware network appliances with software

• Deployable over commodity machines

• Cost savings; no vendor lock-in

ETSI and Network Function Virtualization (NFV)

Each Service Network Function now a VM

or a set of VMs


Legacy Limitation

• Physical install appliance/site

• Inefficient asset utilization

• Development is time consuming, upgrade difficult

• Limits modularity, vendor choice

Benefits of NFV

• Flexibility / Extensibility

• High asset utilization

• Continuously deployed /upgraded

• Achieve Modularity

• Opens the competitive ' landscape

• Innovative Ecosystem

The NFV Value proposition


Cloud = NFVI

Openstack = VIM

SDN/NV = composing VNF from VMs; chaining VNFs

PLUMgrid VNFs= DHCP, NAT etc.

3rd party VNFs through SIA

NFV, Cloud and SDN

NFV

MANO

NFVO

VNF 1 VNF 3VNF 2

VNF-M

(VNF

Manager

s)

OSS / BSS

Hardware Resources

Compute NetworkStorage

EM 1 EM 3EM 2

Virtualization Layer

Virtual

Compute

Virtual

Network

Virtual

Storage

VIM

Service Insertion Architecture (SIA) VNFM

PLUMgrid 3rd Party VNF


Lots of promiseBusiness value; real!

Lots of ChallengesWe discuss the technical challenges next

NFV = managing a “Carrier-grade” Cloud

NFV Challenges for Telco

https://www.ixiacom.com/sites/default/files/resources/whitepaper/demystifying_nfv_in_carrier_networks_a_definitive_guide_to_successful_migrations.pdf

Everything that was known, is now unknown


Carrier grade software (99.999% reliable)

How: use micro-services, load balancing, and cloud-native VNFs

Containers, Hyper-convergence, and SDN for flexibility

Security and visibility in managing virtual infra

How: new tools and techniques to monitor virtual infra; group-based policies

CloudApex, failure prediction, virtual Tap, Isolation guarantees

Packet processing at line rates, latency and jitter

How: high speed packet processing on commodity machines

SR-IOV, fd.io, DPDK, IO Visor

Technical Challenges for NFVAnd the path(s) exploring their solution

Data Plane and Network Acceleration

…or how NFV impacted by SDN choice.


A virtualized Data Plane LayerThe evolution

vSwitches

Distributed vSwitches

vRouters

Distributed topologies

Extensible data plane

35


A Virtual Switch (vSwitch) is a software component which:

Provides network functionalities inside the hypervisor or OS layer

Software = easier feature roll out

Virtual Switches

36


Logically stretches across multiple physical servers

Provides L2 connectivity for VMs of single tenant, even across servers

Using IP tunneling (VxLAN, GRE) to emulate L2 across L3 boundaries

From vSwitch to Distributed vSwitch

Distributed vSwitch

37


In Kernel vswitch

How about L2+ Functions? “in-kernel switch” approach

Kernel

Ethmgmt

Tenant VMs

UserVif

Compute Node

Advanced Functions

Dedicated Network Node

Advanced Functions user-space

component

A new network layer


A vSwitch is a great reference architecture however evolving needs of large-scale clouds dictate for a data plane that needs to be

Extensible

Where Network Functionalities can be loaded and chained dynamically

In-kernel

IO Visor and eBPF Technology https://lwn.net/Articles/603983

Provides ability to program inside kernel

Extensible Data Plane Architecture


Extensible In-Kernel Functions

Kernel

Ethmgmt

Tenant VMs

UserVif

Compute Node

A new network layer

user-space

component


Why eBPF for Network Functions?Programmable and in-kernel capabilities

user-space

kernel

user-space

Kernel (eBPF)

VNF

Data

Plane

“InKev: In kernel Network Virtualization”, SIGCOMM CCR, July 2016

Existing/OVS InKeV


Why eBPF is better?Allows stitching of functions inside the kernel

VNF1

User-space

Kernel Datapath

VNF2 VNF3 VNFn

Kernel-space

……..

…....

First packet

All packets

VNF1 VNF2 VNF3 VNFn

…..

…..VNF2 VNF3 VNFnVNF1 eBPF

Helpers

mapsUser-space

Kernel-space

The old way

The new way

https://www.google.com/url?sa=i&rct=j&q=&esrc=s&source=images&cd=&cad=rja&uact=8&ved=0ahUKEwji5s2kjMnJAhUISBQKHVP3CpoQjRwIBw&url=http://depositphotos.com/25039317/stock-illustration-collection-of-vector-stitch-patterns.html&psig=AFQjCNFEi47-FLV92Pw1foQsHirH9ErCww&ust=1449554986596985


Comparing OVS and InKev

service chain length Increasing load

Evaluating flow creation efficiencyEvaluating latency


Performance consideration important

+1 for Data Plane intensive VNFs

Not all software DP are created equal

Conclusion

A few NFV use cases


ETSI Virtual CPE ModelVirtual Network Functions in the Cloud

• Routing

• Switching

• Firewall

• NAT

• Load Balancer

Simplified CPE

L3-L7 functions from services cloud

DNS

L2 or L3 Tunnel

Network Services


Secure Multi-Tenant solution for NFVI

CPE

Metro

xDSL/FTTx

IP Transport

CPE

CPE

CPE

Micro-segmented virtual domain per tenant

Complete separation of traffic, policies, and network functions

Secure with each domain created on-demand, no hardware changes

DNS

DNS

DNS

Tenant A Tenant B

Tenant C

Watch our demo at MWC for a novel new vCPE enabled by SDN

https://www.youtube.com/watch?v=LNa8xOfKZj8


Cloud OSS/BSS integration with legacy

Configure CPE to build tunnels to NFV cloud

An approach to NFV transition

VNF 1 VNF 3VNF 2

OSS/BSS

Hardware Resources

Compute NetworkStorage

EM 1 EM 3EM 2

Virtualization Layer

Virtual

Compute

Virtual

Network

Virtual

Storage

OSS /

BSS

Internet

Cloud OSS/BSS

CPE

OPNFV: Open source, meet NFVA path for NFV learning and team building


Current Focus

Current focus


What is OPNFV?


Two major releases

ArnoBrahmaputra

OPNFV DemoOPNFV Brahmaputra


OPNFV release: Brahmaputra 3.0

Installer Type: Fuel

Minimal setup:1 x Fuel Jump Node

1 x Controller Node

2 x Compute Nodes

Deployment Testbed

54


Fuel Master Node

Functest Docker

Container

Docker

Containers for

Fuel ServicesOpenStack

Controller

Node

(slave node)

OpenStack

Compute

Node

(slave node)

OpenStack

Compute

Node

(slave node)


Installation steps:Setup Fuel master node

Register slave nodes via the PXE network

Configure Environment, OPNFV plugins and OpenStack components

Deploy the environment

Deployment Testbed

56

OPNFV Functionality Testing suite


vPing test caseCreate 2 VMs on the OpenStack internal network

Assigns a floating IP to one of the VM

ssh into the VM using floating IP

Ping the 2nd VM from the 1st one and verify connectivity

Test 1: Connectivity Check

58


Rally benchmarking test casesTesting OpenStack scaling limits

Benchmarks the deployment with pre-defined SLA limits

Test 2: Benchmark components for SLAs

60


Testing compute virtualization


• Network test here

Testing network virtualization


Testing storage virtualization

Building a local NFV TeamA suggested approach


A 3 stage Approach

Research

No Dedicated Team or Budget

• ETSI NFV

• Papers

Executive Agenda

Small NFV Team with Limited

Budget

• RFIs

• NFV Labs

• POCs

Business Units

Dedicated NFV Team

• RFPs

• Trials

• Migrations


A local team to build software expertise3-4 people, one lead (technical and management)

Small infrastructure (5-7 machines, with external connectivity)

Actively participate in OPNFV communityContribute to discussions in

Architecture, use-cases, data-plane acceleration

What ever seems important for Telenor!

Harness the power of opensourceGet the best ideas from the best people, internationally!

globally active community adding features and content

Result: A knowledgeable group that represents Telenor internationally

Team structure and Objectives

Shout out to Openstack PakistanAs the underlying NFVI, join us to


Started as a PTA-backed proposal for capacity building

History

68

OpenStack engineers make 36% more than other cloud

engineers.

Src: http://www.datacenterdynamics.com/


Now a PTA and MoIT&T backed group

69

http://pta.gov.pk/openstackweb/intro.html


Also Openstack foundation recognized

70

https://groups.openstack.org/


Workshops and Tutorials

71

(408) 800-7586 www.plumgrid.com

5155 Old Ironsides Dr.

Suite 200

Santa Clara, CA 95054THANK YOU!

Keep in Touch and Contact Us

Questions?

NFV_vCPE

Documents

Transcript of NFV_vCPE