Upload File

edupert openflow kurt baumann(2) - services - … *' switch' port' mac'...

  • Home
  • Documents
  • eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:
15
SDN/OpenFlow Performance U!, Winterschool, Zurich Zurich, 08. March 2013 Kurt Baumann [email protected] www.openflow.org © 2013 SWITCH • SDN to OpenFlow • OpenFlow a valid technology ! – Basic Concept – How it works • GÉANT OpenFlow Facility (GN3-JRA2T5) Outline 2

Upload: vannhu

Post on 07-Mar-2018

220 views

Category:

Documents


2 download

Report

TRANSCRIPT

Page 1: eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:

SDN/OpenFlow Performance U!, Winterschool, Zurich

Zurich, 08. March 2013

Kurt Baumann [email protected]

www.openflow.org

© 2013 SWITCH

• SDN to OpenFlow

• OpenFlow a valid technology ! –  Basic Concept –  How it works

• GÉANT OpenFlow Facility (GN3-JRA2T5)

Outline

2

Page 2: eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:

© 2013 SWITCH

Software Defined Networking (SDN) is transforming networking architecture.

In the SDN architecture: •  Control and data planes are decoupled. •  Network intelligence and state are logically centralized. •  The underlying network infrastructure is abstracted from the applications. • … •  and OpenFlow, is the first standardized interface designed specifically for SDN Source: ONS Whitepaper: “Software-Defined Networking – The new Norm for Networks, 13. April 2012

SDN

© 2013 SWITCH

!

OpenFlow Basic Concept and how it works

Source: OpenFlow tutorial, ONS, Santa Clara Marriot, April 16, 2012

Page 3: eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:

© 2013 SWITCH

OpenFlow in a Nutshell “OpenFlow is created and hosted at the University of Stanford in 2008 for

evangelizing and supporting the OpenFlow Community” What it is: •  An open standardized interface approaching SDN architectures •  L2 communication protocol - gives access to the forwarding plan of a network switch,

router. (www.openflow.org) Motivation: •  The improvement of research and innovation in networking, •  To encourage networking vendors to implement OpenFlow to their switching products. Basic Idea: •  OpenFlow, is based on an Ethernet switch with an internal-flow table and a

standardized interface to add and remove flow entries. •  Delivering a shared data & forwarding plane and a sliced, user-managed control plane

at L2. Regulation of the SDN (OpenFlow) Standards: •  Open Network Forum (ONF) (www.opennetworking.org)

© 2013 SWITCH

The Network Industry today

Specialized Packet Forwarding Hardware

Operating System

Feature Feature'

Rou*ng,'management,'mobility'management,''access'control,'VPNs,'…'

Million of lines of source code

5400 RFCs Barrier to entry

Billions of gates

Complex Power Hungry

Page 4: eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:

© 2013 SWITCH

Data Path (Hardware)

Control Path OpenFlow

OpenFlow Controller

OpenFlow'Protocol'(SSL/TCP)'

© 2013 SWITCH

OpenFlow Basics: Entities / Functionalities

8

Page 5: eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:

© 2013 SWITCH

OpenFlow!Basics!!Flow!Table!Entries!OF!v1.1!

Switch'Port'

MAC'src'

MAC'dst'

Eth'type'

VLAN'ID'

IP'Src'

IP'Dst'

IP'Prot'

L4'sport'

L4'dport'

Rule' Ac*on' Stats'

1.  Forward'packet'to'ports''2.  Encapsulate'and'forward'to'controller'3.  Drop'packet''4.  Send'to'normal'processing'pipelene'5.  Any'extensions'you'add!'

+'mask'what'fields'to'match'

Packet'+'byte'counters'

VLAN'pcp'

IP'ToS'

< Match | Action >

© 2013 SWITCH

Packet!Flow!!Packet IN

Start at Table 0

Match in table

n?

Update Counters, Executive Instructions: -  Update action set -  Update packet/

match set fields

Go table n?

Based on table configuration, do one: -  Send to the controller -  Drop it -  Continue to the next table

Execute action set.

YES

YES

NO NO

Page 6: eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:

© 2013 SWITCH

OpenFlow!–!Rule!Examples!(1)!!Switching'

*'

Switch'Port'

MAC'src'

MAC'dst'

Eth'type'

VLAN'ID'

IP'Src'

IP'Dst'

IP'Prot'

TCP'sport'

TCP'dport' Ac*on'

*' 00:1f:..' *' *' *' *' *' *' *' port6'

Flow'Switching'

port3'

Switch'Port'

MAC'src'

MAC'dst'

Eth'type'

VLAN'ID'

IP'Src'

IP'Dst'

IP'Prot'

TCP'sport'

TCP'dport' Ac*on'

00:20..' 00:1f..'0800' vlan1' 1.2.3.4' 5.6.7.8' 4' 17264' 80' port6'

Firewall'

*'

Switch'Port'

MAC'src'

MAC'dst'

Eth'type'

VLAN'ID'

IP'Src'

IP'Dst'

IP'Prot'

TCP'sport'

TCP'dport' Ac*on'

*' *' *' *' *' *' *' *' 22' drop'

11

© 2013 SWITCH

OpenFlow!–!Rule!!Examples!(2)!Rou*ng'

*'

Switch'Port'

MAC'src'

MAC'dst'

Eth'type'

VLAN'ID'

IP'Src'

IP'Dst'

IP'Prot'

TCP'sport'

TCP'dport' Ac*on'

*' *' *' *' *' 5.6.7.8'*' *' *' port6'

VLAN'Switching'

*'

Switch'Port'

MAC'src'

MAC'dst'

Eth'type'

VLAN'ID'

IP'Src'

IP'Dst'

IP'Prot'

TCP'sport'

TCP'dport' Ac*on'

*' *' vlan1' *' *' *' *' *'port6,''port7,'port9'

00:1f..'

Details see: OF Switching Specification http://www.openflow.org/documents/openflow-spec-v1.1.0.pdf

Page 7: eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:

© 2013 SWITCH

OpenFlow Implementations

• Hardware Vendors – Commercial -> NEC, HP, Pronto, Toroki, IBM, Pica8 – Experimental -> Juniper, Cisco

• Software – OF switches

•  Stanford's software reference design (user-space implementation) •  Open vSwitch (user-space and kernel module implementation) •  NetFPGA-based switch (hybrid solution based on Stanford's ref. sw)

– OF controllers •  NOX •  Beacon •  Trema (modular framework for developing OF controllers) •  Other NOX-based implementations •  NEC Programmable Flow •  FlowVisor (Proxy Controller for slicing)

© 2013 SWITCH 14 ICT Focus 2012

!

SDN/OpenFlow Application

Source: OpenFlow tutorial, ONS, Santa Clara Marriot, April 16, 2012

Page 8: eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:

© 2013 SWITCH

Specialized Packet Forwarding Hardware

App

App

App

Specialized Packet Forwarding Hardware

App

App

App

Specialized Packet Forwarding Hardware

App

App

App

Specialized Packet Forwarding Hardware

App

App

App

Specialized Packet Forwarding Hardware

Operating System

Operating System

Operating System

Operating System

Operating System

App

App

App

Today'we'have''Closed'Boxes,'Fully'Distributed'Protocols'

Closed'

© 2013 SWITCH

Specialized Packet Forwarding Hardware

App

App

App

Specialized Packet Forwarding Hardware

App

App

App

Specialized Packet Forwarding Hardware

App

App

App

Specialized Packet Forwarding Hardware

App

App

App

Specialized Packet Forwarding Hardware

Operating System

Operating System

Operating System

Operating System

Operating System

App

App

App

Global Control Plan or Network Operating System

Appl Appl Appl

“SoCware!Defined!Networking”!approach!to!open!it!

Page 9: eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:

© 2013 SWITCH

Appl

Simple Packet Forwarding Hardware

Simple Packet Forwarding Hardware

Simple Packet Forwarding Hardware

Appl Appl

Simple Packet Forwarding Hardware Simple Packet

Forwarding Hardware

Global Control Plan or Network Operating System

1.'Open'interface'to'hardware'

3.'Well`defined'open'API'2.'At'least'one'good'opera*ng'system'

Extensible,'possibly'open`source'

The!“SoCwareKdefined!Network”!!

© 2013 SWITCH

Simple Packet Forwarding Hardware

NOS or Controller System 1

Open'interface'to'hardware'

Virtualization or “Slicing” Layer

NOS or Controller System 2

NOS or Controller System 3

NOS or Controller System 4

App

App

App

App

App

App

App

App

Many'versions'of'OS/Controller'

Open'interface'to'hardware'

Isolated'“slices”'

Simple Packet Forwarding Hardware

Simple Packet Forwarding Hardware

Simple Packet Forwarding Hardware

Simple Packet Forwarding Hardware

Page 10: eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:

© 2013 SWITCH

FlowVisor!Creates!Virtual!Networks!

OpenFlow Switch

OpenFlow Switch

OpenFlow Switch

OpenFlow'Protocol'

FlowVisor'

OpenPipes'Slice''

OpenRoads'Slice'

OpenFlow'Protocol'

PlugNServe'Load`balancer'

OpenPipes Policy

© 2013 SWITCH

Conclusion in Graphics

R. Sherwood, et. al, “Carving research slices out of your production networks with OpenFlow”, ACM SIGCOMM Computer Communications Review, 40-1, 2010

Page 11: eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:

© 2013 SWITCH

The!SDN!Stack!–!in!pracNce!

Controller'NOX'

Slicing'Sodware'FlowVisor'

FlowVisor'Console'

21'

Applica*ons'LAVI'ENVI'(GUI)' …'n`Cas*ng'

NetFPGA'Sodware''Ref.'Switch'

Broadcom''Ref.'Switch'

OpenWRT' PCEngine'''WiFi'AP'

Commercial'Switches'

OpenFlow'Switches'

…'

Monitoring/'debugging'tools'oflops'odrace' openseer'

Open'vSwitch'

HP,'NEC,'Pronto,'Juniper..'and'many'more''

Beacon' Trema' Maestro'

© 2013 SWITCH

!

The Case of GÉANT – TaaS

Source: – GÉANT JRA2T5 – GÉANT OpenFlow Facility Design, GN3-09-331/ Joint Research Workshop JRA1/JRA2T5 in Utrecht NL, and Vienna AT.

Page 12: eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:

© 2013 SWITCH

Implementation over GÉANT (1)

23

!

© 2013 SWITCH

Implementation over GÉANT (2)

24

!

Shared data and forwarding plane

Sliced, user-managed control

plane

Page 13: eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:

© 2013 SWITCH

Design Principles •  5 OpenFlow PoPs interconnected with a full mesh of L2VPNs over GÉANT

– Co-located with GÉANT PoPs

•  2 general purpose servers per PoP for: –  1x Open vSwitch providing OpenFlow functionality –  1x XEN hypervisor delivering user VMs and hosting services

•  Using OpenFlow v1.0 -> VLAN-based slicing –  Limited capabilities for non-VLAN slicing for VLAN-based experimentation

•  Orchestration software: FP7 OFELIA Control Framework (OCF) – Resource allocation and instantiation (per slice) – Authentication/Authorization (AA) and policy framework – Web-based user interface for slice access and management – Robustness, stability and scalability in terms of number of users, support for concurrent

experiments and number of managed resources. – Monitoring of slices and the OCF components themselves

25

© 2013 SWITCH

Operations

Virtualization

Servers

Proxy Controller

OCF

Monitoring

Data plane

Management & Control Plane

Controllers

User VMs

OCF Services

Resiliency

OVS

Controllers/ Proxy Controller

OCF

AAI

Authorization schema

Integration with Directory

Source: Layer 123, SDN& OpenFlow Wolrd Congress, Darmstadt, Presentation Application of SDN in Research Networks, Michael Enrico, Chief Technology Officer DANTE, Afrodite Sevasti,Chief Business Development Officer, GRNET, 24. October 2012, Darmstadt.

Page 14: eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:

© 2013 SWITCH

Use Cases – Categories / Activities •  Using OpenFlow as a traffic engineering mechanism, managing backbone

capacity and paths, for instance MPTCP and •  Using OpenFlow to deliver ‘vanilla’ layer 2 slices researching on layer 2 (and

above) and experimentation on the actual data and control plane network technologies, for instance research on new protocols or capabilities

•  Current activities on the OF Facility: •  Contest Winner

•  “Improving resiliency and throughput of transport networks with OpenFlow and Multipath TCP” – Budapest University of Technology and Economics, MTA- BME Future Internet Research Group, 22.03.2013

© 2013 SWITCH

OpenFlow and Performance Performance Tests: On Mockup@grnet Results: -  1st Test – OVS mac forwarding without OpenFlow -  2nd Test – MAC forwarding functionality provided by OpenFlow controller -  3rd Test – OFV mac forwarding OF enabled & VLAN tagged frames.

Page 15: eduPERT OpenFlow Kurt Baumann(2) - Services - … *' Switch' Port' MAC' src' MAC' dst' ... • NetFPGA-based switch ... eduPERT_OpenFlow_Kurt_Baumann(2).pptx Author:

© 2013 SWITCH

References •  OpenFlow – www.openflow.org •  OpenFlow – White paper: •  http://www.openflow.org/documents/openflow-wp-latest.pdf •  SDN(OpenFlow) activities Internet 2 •  http://www.internet2.edu/network/ose/ •  OFELIA: http://www.fp7-ofelia.eu/

•  GÉANT – GN3, JRA2 Multidomain Network Service Research, T5 •  https://intranet.geant.net/sites/Research/JRA2/pages/home.aspx •  Standards of OpenFlow: Open Network Forum (ONF) •  http://www.opennetworking.org •  SDNRG (IRTF) - http://irtf.org/sdnrg •  JGN-X: RISE – http://www.jgn.nict.go.jp •  Deployment and Operation of Wide-area Hybrid OpenFlow Networks •  http://hiroshi1.hongo.wide.ad.jp/hiroshi/papers/2013/Kanaumi_e96-

b_1_108.pdf

© 2013 SWITCH

Questions?

Thank you for your attention!

30


Network Development Group - Update on new NETLAB+ labs ... · 7.2.7 Lab - View Network Device MAC Addresses 7.3.7 Lab - View the Switch MAC Address Table 10.4.4 Lab - Build a Switch

Using iPod Marketshare To get PC users to switch to the Mac

Parallels Desktop® Switch to Macdownload.parallels.com/stm/v6/docs/en/Getting_Started_With_Parall… · Parallels Desktop Switch to Mac is designed to help you move the whole of

Managed Switch Software Setup Manual - Netgear SM...: MAC address of the switch. When you connect the switch to the network for the first time after setting up the BootP or DHCP server,

Web Smart PoE Switch User Guide · Press “Reboot” button to enter the new web server. 3.3 System status This page is used to check the status of switch, including Switch MAC address

For MAC & Windows OS Wormhole Switch JUC400 - …download.j5create.com/manual/juc400.pdfJUC400 Ver4.0 Wormhole Switch JUC400 For MAC & Windows OS User Manual Manuel de l'utilisateur

Beckhoff EtherCAT e - SLAC...Industrial Ethernet | Switch Delays Internal Switches Internal Switch Switch Switch Internal Switch Industrial Ethernet Ethernet uses addressing by MAC

MAC Learning Switch (L2) on OpenDaylight Finalmwang2/projects/L2_learningOpen...MAC!Learning!Switch!(L2)!on!OpenDaylight!! 3!! 2 ACKNOWLEDGEMENTS’ We!are!thankful!to!Prof.!Wang!for!giving!us!this!opportunity!to!get!hands!on!experiencewith

Switch Layer 2/3 (Multilayer Switch)daniel/docencia/ftpr/ftpr18_19/slides/Tema2-08-Switch... · – Sigue el camino indicado en las tablas – (...) PCA PCB PCC PCC PCA PCB VLAN MAC

Cisco Nexus 7000 Switch Architecturesaloperie.com/docs/BRKARC-3470.pdfIngress MAC table lookups IGMP snooping lookups IGMP snooping redirection Egress MAC lookups IGMP snooping lookups

Erste Schritte mit Parallels Desktop® Switch to Macdownload.parallels.com/stm/v6/docs/de/Getting_Started_With_Parallels_Desktop.pdf · 4 Parallels Desktop Switch to Mac wurde entwickelt,

FastIron Ethernet Switch Platform and Layer 2 … · Configuring a VLAN to drop static MAC entries ... VSRP-aware security features ... FastIron Ethernet Switch Platform and Layer

traceroute mac - Cisco · 2-450 Catalyst 3750 Switch Command Reference 78-15165-02 Chapter 2 Cisco IOS Commands traceroute mac ip traceroute mac ip Use the traceroute mac ip privileged

Introducing Virtual Switch System (VSS)€¦ · The MAC address allocated to the Virtual Switch System is negotiated at system initialization. Regardless of either switch being brought

CCNA: CISCO CERTIFIED NETWORK ASSOCIATE · 2016. 7. 29. · Address, refer to MAC table to take forwarding decisions. Switch takes forwarding decisions on basis on MAC address. MAC

HP 5400 zl Switch Series...Provides client authentication with a RADIUS server, based on the client’s MAC authentication – Concurrent IEEE 802.1X, Web, and MAC authentication schemes

Managing Switch Stacks - cisco.com · the master switch and wait at least 8 seconds before starting the new member switch. 5. The switch with the lowest MAC address

An in-depth look at why Mac Users are making the switch to

Mac Driver Setup Guide - copystar.com · Mac Driver 4.0 and later, and the models supported by the driver. PDL Switch Preference Pane The PDL Switch preference pane is made up of

Configuring MAC-Based Authentication on a Switch · Configuring MAC-Based Authentication on a Switch Objective 802.1X is an administration tool to whitelist devices, ensuring no unauthorized

For MAC & Windows OS Wormhole Switch JUC400 Switch JUC400 For MAC & Windows OS User Manual WORMHOLE SWITCH USER MANUAL 2 Required Environments Windows - OS: Windows 7 / Vista / XP

OpenFlow) - Internet2 Stanford Clean Slate Program http:// cleanslate.stanford.edu Flow Table Entry OpenFlow 1.0 Switch Switch) Port MAC) src

Ceph vs Swift - Services - GÉANT · Ceph vs Swift Performance Evaluation on a Small Cluster eduPERT monthly call July, 24th 2014 Jul 24, 2014 GÉANT eduPERT meeting

Table of Contents...xStack® DES-3200 Series Layer 2 Managed Fast Ethernet Switch CLI Reference Guide 2 The Switch is also assigned a unique MAC address by the factory. This MAC address

S3700-24T4F Switch MAC Address List CLI Reference Guide | FS-Fiberstore · 2020. 3. 16. · S3700-24T4F MAC Address List Configuration CLI Reference Guide. Keywords: S3700-24T4F Switch,

MAC Learning Switch (L2) on OpenDaylight Finalmwang2/projects/L2_learningOpenDaylight_14f.pdf · MAC!Learning!Switch!(L2)!on!OpenDaylight!! 4!! every!other!host.!This!results!inveryhighefficiencyascomparedtocurrentswitching!

MAC Learning Switch (L2) on OpenDaylight Final · MAC!Learning!Switch!(L2)!on!OpenDaylight!! 4!! every!other!host.!This!results!inveryhighefficiencyascomparedtocurrentswitching! methodology!in!layer!2.!

MAC-I LIMIT SWITCHES€¦ · MAC-I compact limit switches The ideal limit switch • Easy wiring • Standardized installation • Easy operation • PC control • Controls switching

DATA SHEET BROCADE … Brocade® TurboIron® 24X Switch is a compact ... standard Command Line Interface ... , port MAC security, and MAC filter enhancements

How to configure MAC authentication on a ProCurve switch · How to configure MAC authentication on a ProCurve switch HP ProCurve Networking 3 1. Introduction This document describes

User Manual EKI-7700 Seriesadvdownload.advantech.com/productfile/Downloadfile3/1-1QGGZ2V/… · or all dynamic MAC entries in MAC address table. switch# show mac address-table dynamic

For Mac& Windows OS USB3.0wormhole switch JUC500download.j5create.com/manual/juc500.pdf · 2015-12-21 · 2. When you initially connect the wormhole switch to the MAC computer the

Edupert best practices in supporting end users - Networkshop44

Logitech Bluetooth Easy-Switch Keyboard K811 for Mac, iPad, … › assets › 45927 › 9 › illuminated... · 2014-07-18 · Mac OS X: a. Go to System Preferences > Bluetooth

NETGEAR 24-Port Gigabit Smart Managed Pro Switch … Gigabit Smart Managed Pro Switch with PoE+ and 2 SFP Ports ... View or Delete MAC ACL Bindings in the MAC Binding Table . . .