Toward Transitional SDN Deployment in Enterprise Networks
description
Transcript of Toward Transitional SDN Deployment in Enterprise Networks
![Page 1: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/1.jpg)
Toward Transitional SDN Deployment in Enterprise Networks
Marco Canini
withDan Levin, Stefan Schmid, Anja Feldmann
TU Berlin / Telekom Innovation Labs
![Page 2: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/2.jpg)
Motivation
GOAL: Help SDN succeed!
I♥ SDN
![Page 3: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/3.jpg)
The SDN Deployment Problem
A real large-scale campus network
UPGRADE
FullSDN
Must upgrade to SDN incrementally
![Page 4: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/4.jpg)
Key Questions• How can we incrementally deploy SDN
into enterprise campus networks?
• Can we reap the benefits of SDNwith partial deployment?
![Page 5: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/5.jpg)
Current Transitional Networks
Dual-stack approach
SDNPlatform
LegacyMgmt?
![Page 6: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/6.jpg)
Current Transitional Networks
Dual-stack approach Edge-only approach
SDNPlatform
LegacyMgmt?
LegacyMgmt
SDN Platform
App1
App2
App3
![Page 7: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/7.jpg)
Where the heck is the edge?
![Page 8: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/8.jpg)
TOOLDetermine the partial
SDN deployment
PANOPTICON
SDN ARCHITECTUREOperate the network as
a (nearly) full SDN
![Page 9: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/9.jpg)
The Existing Network
![Page 10: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/10.jpg)
1. Planning the SDN Deployment
A
B
C
D
E
F
Network architect provides set of
ingress ports to becontrolled via SDN
![Page 11: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/11.jpg)
Optimizedpartial SDNdeployment
Tunable parameters• Port priorities• Price model• Utilization thresholds
(link utilization, VLANs, etc.)
Network topology
Cost-awareoptimizer
Objectives• Upgrade budget• Path delay
Trafficestimates
TOOL
![Page 12: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/12.jpg)
The Partial SDN Deployment ( )
A
B
C
D
E
F
![Page 13: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/13.jpg)
Benefits of Partial SDN Deployment?
A
B
C
D
E
F
Harvest unutilizednetwork capacity
![Page 14: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/14.jpg)
A
B
C
D
E
F
Main benefits of SDN=
Principled orchestration ofthe network policy
![Page 15: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/15.jpg)
Can partial SDN deploymentstill take advantage ofprincipled network orchestration?
![Page 16: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/16.jpg)
2. Realizing the Benefits of SDN
A
B
C
D
E
FAccess control
Insight #1:≥ 1 SDN switch
Policy enforcement
IDS
Middleboxtraversal
![Page 17: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/17.jpg)
2. Realizing the Benefits of SDN
A
B
C
D
E
F
Trafficload-balancing
Insight #1:≥ 1 SDN switch
Policy enforcement
Insight #2:≥ 2 SDN switches Fine-grained control
![Page 18: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/18.jpg)
SDN Waypoint Enforcement
Insight #1:≥ 1 SDN switch
Policy enforcement
Insight #2:≥ 2 SDN switches Fine-grained control
Legacy devices must direct traffic to SDN switches
Ensure that all traffic to/froman SDN-controlled port always
traverses at least one SDN switch
![Page 19: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/19.jpg)
A
B
C
D
E
F
Conceptually group SDN ports in Cell Blocks
The SDN ArchitecturePANOPTICON
![Page 20: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/20.jpg)
Traffic restricted to Solitary Confinement Trees
A
B
C
D
E
FPer-port spanning trees thatensure waypoint enforcement
The SDN ArchitecturePANOPTICON
![Page 21: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/21.jpg)
A
B
C
D
E
F
PANOPTICON
B C D E F
A
“Logical SDN”
![Page 22: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/22.jpg)
“Logical SDN”
PANOPTICON
SDN Platform
App1
App2
App3
B C D E F
A
PANOPTICON provides the abstraction of a (nearly)fully-deployed SDN in a partially upgraded network
![Page 23: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/23.jpg)
Results Highlights• Evaluated a large campus network (1713 switches)
• Upgrade 6% of distribution switches – 100% SDN-controlled ingress ports– avg. path stretch < 50%– max. link util. < 70%
![Page 24: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/24.jpg)
PANOPTICON
SDN Platform
App1
App2
App3
B C D E F
A
TOOLDetermine the partial
SDN deployment
SDN ARCHITECTUREOperate the network as
a (nearly) full SDN
Summary
![Page 25: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/25.jpg)
The Collaborators
Anja FeldmannStefan SchmidDan Levin
![Page 26: Toward Transitional SDN Deployment in Enterprise Networks](https://reader036.fdocuments.net/reader036/viewer/2022062410/56816522550346895dd7a4f2/html5/thumbnails/26.jpg)
PANOPTICON
SDN Platform
App1
App2
App3
B C D E F
A
Thank you! Questions?
Come and see us!