tfi2014 session i - state of sdn - john giacomoni
DESCRIPTION
TFI2014 Session I - State of SDN - John GiacomoniTRANSCRIPT
SDN: Where are we?Where are we going?
John Giacomoni, Senior Architect PD
August 2014
© F5 Networks, Inc 2
Advancedthreats
Mobility
Technology Shifts Center on Applications…
Internet ofthings
SDA/Cloud
Quality ofexperience
Time to Market
Application Availability
© F5 Networks, Inc 3
Challenges in Scaling Modern Datacenters
Clients
ApplicationData Plane
Architect
VEsRouter Switch LB Firewall
Net Engineers & Admins
Time Consuming
Error Prone Process
Difficult to Debug
Manual & Scripted Configuration
SDN is the Answer…
Right?!?
© F5 Networks, Inc 5
What is SDN?
2009 2010 2011 2012 2013 2014
OpenFlow VirtualNetworking
ServiceChaining
Slope ofEnlightenment???
SDN Definition v1:a) Separation of Control and Data Planeb) General Forward Hardware
© F5 Networks, Inc 6
“SDN Slope of Enlightenment” Informed by Developers
Agile Dev
Rapid deployment &network operations.
Rapid development of customer desired applications.
DevOps
Network operations.
Rapid deployment. Accelerate time to market.
SDN
Operationalize the Network. Accelerate time to market.
✓
SDN is about
Operationalizing
Networks
© F5 Networks, Inc 8
F5 Definition of SDN:
“SDN is a family of architectures (not technologies) for operationalizing networks with improved time to market, reduced risks, and reduced operating expenses
by centralizing control into a control plane that programmatically controls and extends all network data path elements and services via open APIs.”
© F5 Networks, Inc 9
Applications need both Stateless and Stateful Services
Router Switch
LAYER 2-4STATELESSSERVICES
LAYER 4-7STATEFULSERVICES
FirewallIdentity and Access
DDoSProtection
Global Load Balancing
Malware
Detection
ADC Application Security
Local LoadBalancing
Application Performance
Secure Web
Gateway
VIRTUAL AND OVERLAY NETWORKING
© F5 Networks, Inc 10
Net Engineers & Admins
Operationalized Network with SDN
Control Plane
Clients
ApplicationData Plane
Architect’s Intent
Architect
VEsRouter Switch LB Firewall
Centralized Knowledge
Repeatable Config.
Manual & Scripted ConfigurationProgrammatic Configuration via Open APIs
Utility Computing
