i2jt 2012.07 dward...2012/07/17 · isp/ partners off-net customers off-net provider • enable...
TRANSCRIPT
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1
2012.07
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2
Delivers The Next Generation Internet
Adaptable Architecture Bringing the network to applications
How to Harness Network Value
How to Sustain Profitability
How to Increase Business Agility
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3
Private Cloud Automation
Research/ Academia
§ Experimental OpenFlow/SDN components for production networks
Massively Scalable
Data Center
§ Customize with Programmatic APIs to provide deep insight into network traffic
Service Providers
§ Policy-based control and analytics to optimize and monetize service delivery
Enterprise
§ Virtual workloads, VDI, Orchestration of security profiles
Cloud
§ Automated provisioning and programmable overlay, OpenStack
Diverse Programmability Requirements Across Segments
Scalable Multi-Tenancy
Network Flow Management
Network “Slicing”
Agile Service Delivery
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4
CISCO: ONE – First of many activities
Comprehensive Developer Kit across IOS, IOS-XR and NX-
OS
onePK
1. Platform APIs
OpenFlow v1.0 Agent
Controller software And Agents
2. Controller/Agents
OpenStack and REST API
Nexus 1000V
Multi-Hypervisors
Overlay Virtual Networks
VXLAN Gateway
Security, Services Chaining
3.
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
Edge
Core Mobile
CPE
Appliance
Service
Service Service
Service CLI(s)
Transactional, No Guaranteed State • Go OTT—speed
and agility
• Avoid network interaction—complex and slow innovation
A New Programming Paradigm is Needed
FAST App App
Network
SLOW
Slow
New
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6
• Enable a holistic Network Programming model
• Leverage and extend infrastructure at pace of the business
• Deploy common applications across all devices
• Extend/upgrade/add features without upgrading the network operating system
• Reduced time to market by leveraging common platform for building services
Full-Duplex access at multiple layers and networking planes
6
Transport/Device
Forwarding
Control
Network Service
Orchestration
Management
App Dev
Har
vest
Net
wor
k In
telli
genc
e Program
for Optim
ized E
xperience
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7
• Abstractions allow the definition of layered APIs and NPIs
Enable multi-layer APIs across all elements, to integrate with operator development environments Accelerate development of network applications: Integrated stack from device to network Multiple deployment modes , local and remote APIs Multiple Language and Virtualization options
Device Capabili,es
and Configura,on
Debugging Diagnos,c Events
Network Topology
Service Path
Network Stats
Service Placement
Interfaces and Tunnels
Neighbor Discovery
Packet Data-‐Path Access
Forwarding Policy, QoS
Service Discovery
Rou,ng Address Mapping
Device focused abstrac,ons Network focused abstrac,ons
API API API API API
NPI NPI NPI NPI NPI
API API API API
Example Abstrac,ons
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8
API infrastructure
8
Net
wor
k To
polo
gy
Rou
ting
Forw
ardi
ng
Pol
icy,
QoS
Dat
a-P
ath
Acc
ess
Inte
rface
s an
d Tu
nnel
s
Con
fig &
C
apab
ilitie
s
Deb
uggi
ng
Dia
gnos
tics,
E
vent
s
Ser
vice
D
isco
very
Ser
vice
P
ath
Ser
vice
P
lace
men
t
Net
wor
k st
ats
Ana
lytic
s
Add
ress
M
appi
ng
API infrastructure Agents
Forw
ardi
ng
Pol
icy,
QoS
Dat
a-P
ath
Acc
ess
Management Plane
Data Plane
Control Plane
Management Plane
Data Plane
Control Plane
OF-Agent
Generic Controller
APIs NPIs
App
App
App
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9
• Programmatic configuration – Yang data model via NetConf/ReST-HTTP • Tunnels/Encapsulation: MPLS, IPnIP, GRE, L2TP, UDP, OTV, VXLAN • Topology and “weather report” export • Transport: Lambdas • Cross Connect • Routes, VPN • Classifiers • QoS • Analytics
Future: Security, DPI, NAT, Gateways
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
Aggregation
Storage
Compute
Virtualized Functions
Transcode
Consumer Apps
Video Processing
Billing
Svc Delivery
Origin Server
Encryption
Device Mgmt
DATA CENTER
Network Element
Storage Compute
Access
Fiber HFC PON Ethernet
Regional
Hea
dend
Network Element
Storage Compute
Pod
Storage Compute
Pod
Backbone
ISP/ Partners
Off-Net Customers
Off-Net Provider
• Enable optimal resource usage • Enable higher quality services with increased service velocity
On the Go Home Business
TransportRouter
Transport Router
Net Services
Storage Compute Net Services
Network Element
Storage Compute Transport Router
Storage Compute Transport Router
Network Element
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11
Residential Bundle
Business Internet
Business VPN
Virus/Malware Scan VoIP Video on Demand
IPv6 DDOS Protection Firewall
IPSec VoIP Firewall
Virtualized Service Abstraction
Operator Applications
3rd Party Applications
Operator OSS/BSS
SP Opportunity: Flexibly create services based on TIGHT SLAs Todays’ Challenges: Manual provisioning, ticket entry, workflows on multiple systems Solution: Enable agile customer service creation with service chaining Technologies: Virtual Path, Service Chaining, Network Virtualization
Application Monitors Network Resources
1
Build Customer Service Profile (e.g VoIP, Firewall, Video)
2
Push Service into Network and Receive Confirmation
3
Enable Service Group and Monetize Delivery
3 $
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
1. Physical Resource Layer • Networking, Storage and Compute resources • Hardware-based networking services
2. Virtualization layer – hypervisors, SDN • Resource Virtualization Provisioning, and
Management • Networking extended into vSwitches, etc.
NetConf SDN API Hypervisor vSwitches, etc.
Network Mgmt/Cntl API
Compute Service
Virtual Servers
Storage Service
Virtual Disks
Network Service
Virtual Networks
Plug-In Architecture
3. OpenStack Cloud Platform Layer • Presents compute and networking
virtualization interfaces to application developers in a multi-tenant environment
Cloud App Developer API
App
OS
VM
DataBase
OS
VM
App
OS
VM
Virtual Appliance
4. User Application Layer • Self-provision resources through APIs • Only see virtualized resources
Virtual Appliance
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13
Oth
er N
etw
orks
Video WebRTC, Other Apps
3rd Party APP
IMS
Common Cloud Services Architecture
Network, Service, & Subscriber Enablement
Service Connector
Service Service Service
Service Service
Key Services Architecture Functions
Subscriber Edge
Access Classifier
Open Network API’s
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
• 1 Layer full mesh, distinct WAN edge
• 2 layers WAN edge and DC aggregation combined
• 3 layers hierarchical WAN edge and DC aggregation separate
• 3 layers + folded clos Meshed aggregation
DC Aggregation / WAN Edge
Access
DC Access
WAN Edge
DC Aggregation
DC Access
WAN Edge
DC Aggregation
WAN Edge
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15
L3 WAN
Meshed Symmetric Topologies Unconstrained Bandwidth Simplified Abstraction Models Workload Mobility Distributed Across L3 WAN Integrated Service Virtualization Secure Containers
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16
IP/MPLS Core
Transport Network
IP/MPLS Edge
IP/MPLS Edge
IP/MPLS Edge
Region A
Region B
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17
IP/MPLS Core
IP/MPLS Edge
Region B
Region A
SP DC1 SP DC2
Ent DC1 Ent DC2
SP WAN DCPE
DCPE
DCE DCE
PE PE
CE CE
Enterprise DCI “back door”
Standalone DCI network
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18
• WAN NPIs follow their Scope
18
• Defined by their scope API Scopes: Location independent; Area; Particular place; Specific device
Approaches like device/network/service APIs not mapped to topology
Location where an API is hosted can differ from the scope of the API
• Different network planes require different programmatic interfaces, based on proper layer interaction
Utility
Area/Set
Place in the Network
Element
Example: Get Auth, Publish Log,.. Scope: Location independent
Example: Domain, OSPF-area,.. Scope: Group/Set/Area
Example: Edge Session, NAT Scope: Specific place/location
Example: interface statistics Scope: Specific element
A Router positioned on the Edge of a WAN != TOR
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19
Router (P)
“Orchestration”
Services (PE)
Multi-Layer PCE
Optical
Optical Router
(P)
DC/Cloud
λ
Service Service Service
Service
Optical
Service Wires
IP/MPLS
Paths Topology
Tunnels Topology
Orchestrated ML-Optimization
IP /MPLS Tunnel
Service Wire
Service Control & Admin
Topologies
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20
DWDM
IP/MPLS
Fiber
λ
λ
λ
TE Tunnel
ML-PCE
DWDM Topology (BGP-LS)
Setup λ’s (PCEP)
Paths
L3 Link Topology (BGP-LS)
Slices
TE Tunnel TE Tunnel TE Tunnel
TE Tunnel
Paths VPN Topology
(BGP-LS)
VPN Topology (BGP-LS)
TE Tunnels (PCEP)
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21
• Fully centralized control improves automation but does not offer a more reliable, fault tolerant, scalable service delivery across the SP WAN
• SP Operations require solutions that balance needs of multiple services and customer profiles across multiple domains that meet tight SLAs
• Multi-Layer Network Visibility and programmability is required for any SDN solution across the WAN
The Network contains the information required for
programmability to meet SLAs
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22