container service chaining
play

Container service chaining Martin ual INTRO AGENDA ETSI NFV MANO - PowerPoint PPT Presentation

Jul 24, 2023 •679 likes •1.15k views

Container service chaining Martin ual INTRO AGENDA ETSI NFV MANO IETF SFC Existing solutions Container service chaining solution Demo 2 ETSI NFV Management and Orchestration (MANO) 3 NFV MANO MANO ARCHITECTURE 4

  1. Container service chaining Martin Šuňal

  2. INTRO AGENDA • ETSI NFV MANO • IETF SFC • Existing solutions • Container service chaining solution • Demo 2

  3. ETSI NFV Management and Orchestration (MANO) 3

  4. NFV – MANO MANO ARCHITECTURE 4

  5. NFV – MANO ARCHITECTURE IN EXAMPLE Tacker Portal FW API Tacker FW OpenStack Server + HV 5

  6. NFV – MANO NOT PART OF MANO • NFVI – NFV Infrastructure that includes physical (server, storage etc.), virtual resources (Virtual Machines, Containers) and software resources (hypervisor) in an NFV environment • VNF – Virtual Network Function is the virtualized network element like Router VNF, Firewall VNF etc. • EM – Entity Manager is responsible for the FCAPS for the functional part of the VNF • OSS/BSS include collection of systems/applications that a service provider uses to operate its business 6

  7. NFV – MANO VIM • manages life cycle of virtual resources in one NFVI domain • creates, maintains and tears down VMs, Containers from physical resources in an NFVI domain • there may be multiple VIMs in an NFV architecture, each managing its respective NFVI domain 7

  8. NFV – MANO VNFM • manages life cycle of VNFs • creates, maintains and terminates VNF instances which are installed on the VMs, Containers • there may be multiple VNFMs managing separate VNFs • there may be one VNFM managing multiple VNFs 8

  9. NFV – MANO NFVO • coordinates, authorizes, releases and engages NFVI resources by engaging with the VIMs directly through their north bound APIs • creates end to end service among different VNFs (that may be managed by different VNFMs) 9

  10. NFV – MANO CATALOGUES • NFV service (NS) catalogue • VNF Catalogue • NFV Instance repository • NFVI Resource repository 10

  11. NFV – MANO VNFFG 11

  12. NFV – MANO NFV – MANO SOLUTIONS • Open Source MANO (OSM) • ONAP • OPEN-O • open source ECOMP • CORD • Gigaspaces Cloudify • Open Baton • Tacker 12

  13. NFV – MANO RESOURCES http://www.etsi.org/deliver/etsi_gs/NFV-MAN/001_099/001/01.01.01_60/gs_NFV-MAN001v010101p.pdf http://www.etsi.org/deliver/etsi_gs/NFV-IFA/001_099/010/02.01.01_60/gs_NFV-IFA010v020101p.pdf http://www.etsi.org/deliver/etsi_gs/NFV-IFA/001_099/009/01.01.01_60/gs_NFV-IFA009v010101p.pdf 13

  14. IETF Service Function Chaining (SFC) 14

  15. SFC SERVICE FUNCTION CHAINING • The definition and instantiation of an ordered set of service functions and subsequent "steering" of traffic through them is termed Service Function Chaining (SFC). • SFC is complementary to MANO VNFFG 15

  16. SFC CLASSIFIER & CLASSIFICATION • Classifier - is an element that performs classification. • Classification - Locally instantiated matching of traffic flows against policy for subsequent application of the required set of network service functions. The policy may be customer/network/service specific. 16

  17. SFC SERVICE FUNCTION • is responsible for specific treatment of received packets • can be realized as a virtual element or be embedded in a physical network element • one or more service functions can be involved in the delivery of added-value services • firewalls, WAN and application acceleration, Deep Packet Inspection (DPI), Lawful Intercept (LI), server load balancing, NAT, HTTP Header Enrichment functions, and TCP optimizer 17

  18. SFC SERVICE FUNCTION FORWARDER • is responsible for forwarding traffic to one or more connected service functions according to information carried in the SFC encapsulation, as well as handling traffic coming back from the SF • is responsible for delivering traffic to a classifier when needed and supported, transporting traffic to another SFF (in the same or different type of overlay), and terminating the Service Function Path (SFP) 18

  19. SFC ARCHITECTURE COMPONENTS AFTER CLASSIFICATION • SFC encapsulation - provides, at a minimum, SFP identification, and is used by the SFC-aware functions, such as the SFF and SFC-aware SFs. • SFC-aware Service Function (SFC-aware SF) – is network function which can process SFC encapsulation. It is equivalent to VNF in MANO. • SFC-unaware Service Function (SFC-aware SF) – is network function which cannot process SFC encapsulation. It is equivalent to VNF in MANO. • Service Function Forwarder (SFF) – forwards traffic among SFs and SFFs, equivalent to Virtual Link (VL) in MANO. • SFC proxy – is used in case when SF is SFC-unaware so proxy can modify SFC encapsulation as SFC-aware SF would do. 19

  20. SFC SERVICE FUNCTION CHAIN (SFC) • Defines an ordered set of abstract service functions and ordering constraints that must be applied to packets and/or frames and/or flows selected as a result of classification. • An example of an abstract service function is "a firewall". 20

  21. SFC SERVICE FUNCTION PATH (SFP) • is a constrained specification of where packets assigned to a certain service function path must go • provides a level of indirection between the fully abstract notion of service chain, and the fully specified notion of exactly which SFF/SFs the packet will visit. • by allowing the control components to specify this level of indirection, the operator may control the degree of SFF/SF selection authority that is delegated to the network. 21

  22. SFC RENDERED SERVICE PATH (RSP) • represents visiting a specific sequence of SFFs and SFs. This sequence of actual visits by a packet to specific SFFs and SFs in the network is known as the Rendered Service Path (RSP). 22

  23. SFC EXAMPLE OF TRAFFIC STEERING BY USING SFC 23

  24. SFC TECHNIQUES USED FOR PATH IDENTIFICATION IN SFC • Network Service Header (NSH) • VLAN SFC • Ethernet MAC Chaining • SFC using MPLS-SPRING 24

  25. SFC NETWORK SERVICE HEADER (NSH) • a new service plane protocol specifically for the creation of dynamic service chains and is composed of the following elements: • Service Function Path identification • Transport independent service function chain • Per-packet network and service metadata or optional variable type-length-value (TLV) metadata. https://datatracker.ietf.org/doc/html/draft-ietf-sfc-nsh 25

  26. SFC VLAN SERVICE FUNCTION CHAINING • Uses combination of sMAC, VLAN, Rx Port for path identification and VLAN rewrite • Assumptions about Service Functions: • Each service function node is assumed to be a bump-in-the-wire • Ethernet device with the following properties: • the device has two interfaces, logically subscriber-side and Internet-side; • the device forwards Ethernet packets between the interfaces without modifying any aspect of the Ethernet header; • if the devices needs to inject packets that it has created for a particular connection, it uses Ethernet MAC addresses and VLANs previously observed for the connection; • the device may be capable of intersecting an Ethernet 802.1q trunk, in which case it can reside on more than one service chain. https://tools.ietf.org/html/draft-dolson-sfc-vlan-00 26

  27. SFC ETHERNET MAC CHAINING • MAC chaining addresses are terminated at each SFF and replaced by a new set of MAC chaining addresses used to forward through the next SF in the chain. • MAC Chain forwarding is performed by a SFF using DA and SA address swapping. The operation of a SFF has characteristics of a router in that it uses information in the packet to determine a new link destination, however unlike a router the new link decision is based on the previous MAC address rather than the IP address. https://tools.ietf.org/html/draft-fedyk-sfc-mac-chain-02 27

  28. SFC SERVICE FUNCTION CHAINING USING MPLS-SPRING • each SF and SFF has own segment ID which is encoded as MPLS label • the service classifier attaches a segment list of (i.e., SID(SFF1)->SID(SF1)->SID(SFF2)-> SID(SF2)) which indicates the corresponding SFP to the packet. This segment list is actually represented by a MPLS label stack. • SFF and SFC encap-aware SF pops top label before sending the packet https://tools.ietf.org/html/draft-xu-sfc-using-mpls-spring-06 28

  29. SFC RESOURCES https://tools.ietf.org/html/rfc7665 https://datatracker.ietf.org/doc/html/draft-ietf-sfc-nsh https://tools.ietf.org/html/draft-dolson-sfc-vlan-00 https://tools.ietf.org/html/draft-fedyk-sfc-mac-chain-02 https://tools.ietf.org/html/draft-xu-sfc-using-mpls-spring-06 https://datatracker.ietf.org/wg/sfc/documents/ 29

  30. Existing open-source solutions 30

  31. EXISTING OPEN-SOURCE SOLUTIONS OPNFV SFC • Uses OVS 2.5.90 (Intel Patch) • OpenDaylight Boron • OpenStack Mitaka • OpenStack Tacker project (customized) • Direct API communication between Tacker and OpenDaylight • Latest release: Colorado https://wiki.opnfv.org/display/sfc https:// wiki.opendaylight.org/images/3/37/OpenDaylight-Summit- 31 2016-OpenStack-SFC-Support.pdf

  32. EXISTING OPEN-SOURCE SOLUTIONS OPNFV SFC https:// wiki.opendaylight.org/images/3/37/OpenDaylight-Summit- 2016-OpenStack-SFC-Support.pdf 32

  33. EXISTING OPEN-SOURCE SOLUTIONS OPNFV SFC https:// wiki.opendaylight.org/images/3/37/OpenDaylight-Summit- 33 2016-OpenStack-SFC-Support.pdf

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Virtual Topologies for Service Chaining in BGP IP MPLS VPNs

Virtual Topologies for Service Chaining in BGP IP MPLS VPNs

Virtual Topologies for Service Chaining in BGP IP MPLS VPNs (dra?-rfernando-l3vpn-service-chaning-03) Dhananjaya Rao Rex Fernando Luyuan Fang

353 views • 8 slides
Chaining Operator in Climb Method Chaining jQuery Method Chaining Extended Climb Christopher

Chaining Operator in Climb Method Chaining jQuery Method Chaining Extended Climb Christopher

Chaining Operator in Climb Introduction Chaining Operator in Climb Method Chaining jQuery Method Chaining Extended Climb Christopher Chedeau Image Processing Implementation Attempts Dollar macro LRDE Extensions Laboratoire de

554 views • 42 slides
Optimal Service Placement using Pseudo Service Chaining Mechanism 2016. 11. 15. Taeheum Na

Optimal Service Placement using Pseudo Service Chaining Mechanism 2016. 11. 15. Taeheum Na

IETF 97 meeting @ Seoul Optimal Service Placement using Pseudo Service Chaining Mechanism 2016. 11. 15. Taeheum Na {taeheum@etri.re.kr} Network SW Platform Research Section ETRI Contents Background NFV Environment Related work

647 views • 17 slides
Using first order logic (Ch. 9) Backward chaining Backward chaining is almost the opposite of

Using first order logic (Ch. 9) Backward chaining Backward chaining is almost the opposite of

Using first order logic (Ch. 9) Backward chaining Backward chaining is almost the opposite of forward chaining (and eliminating irrelevancy) You try all sentences that are of the form: , and try to find a way to satisfy P1, P2, ... recursively

753 views • 41 slides
Fault Tolerant Service Function Chaining M. GHAZNAVI, E. JALALPOUR, B. WONG, R. BOUTABA, A.

Fault Tolerant Service Function Chaining M. GHAZNAVI, E. JALALPOUR, B. WONG, R. BOUTABA, A.

Fault Tolerant Service Function Chaining M. GHAZNAVI, E. JALALPOUR, B. WONG, R. BOUTABA, A. MASHTIZADEH UN UNIV IVERSITY ITY OF F WATE TERLOO Middleboxes and Service Function Chains Firewall IDS NAT Internet 1 Middlebox Failures 100

408 views • 25 slides
Service Function Chaining (SFC) and Network Slicing in Backhaul and Metro Networks in Support of

Service Function Chaining (SFC) and Network Slicing in Backhaul and Metro Networks in Support of

Service Function Chaining (SFC) and Network Slicing in Backhaul and Metro Networks in Support of 5G Adrian Farrel : Old Dog Consulting The research leading to these results has received funding from the European Commission for the

294 views • 16 slides
Esta stablishing Service Func ncti tion Ch Chaining Arc rchite tecture on on OpenStack for

Esta stablishing Service Func ncti tion Ch Chaining Arc rchite tecture on on OpenStack for

Esta stablishing Service Func ncti tion Ch Chaining Arc rchite tecture on on OpenStack for for Inte ternet t VNF Use-case A A joint research ch & PoC oC activit itie ies among AP APAC(Asia ia-Pacif ific ic) ) Telc lco Se

644 views • 40 slides
DISASTER RELIEF CENTER 2x Accommodation Container 2x Sanitary Container 1x

DISASTER RELIEF CENTER 2x Accommodation Container 2x Sanitary Container 1x

DISASTER RELIEF CENTER 2x Accommodation Container 2x Sanitary Container 1x Galley Container 1x Medical Container 1x Feed Water Container 1x Water Treatment Container 2x Generator Container 1x

569 views • 8 slides
Named Function Networking Service chaining, big picture, division of labor boundaries IRTF ICNRG

Named Function Networking Service chaining, big picture, division of labor boundaries IRTF ICNRG

Named Function Networking Service chaining, big picture, division of labor boundaries IRTF ICNRG interim meeting, Boston, Jan 13+14, 2015 Christian Tschudin, University of Basel Named Function Networking Session overview Part I Service

553 views • 21 slides
Technology Analysis of Service Chaining Approaches Bin Hu (AT&T) Tim Rozet (Red Hat)

Technology Analysis of Service Chaining Approaches Bin Hu (AT&T) Tim Rozet (Red Hat)

Technology Analysis of Service Chaining Approaches Bin Hu (AT&T) Tim Rozet (Red Hat) Content Key Concepts MPLS/BGP VPN Approach VxLAN-GPE NSH Approach Open Stack Projects related to SFC / MPLS VPN / BGP Open

439 views • 25 slides
The consumption modelling in the service of the follow-up of the container ships performances

The consumption modelling in the service of the follow-up of the container ships performances

The consumption modelling in the service of the follow-up of the container ships performances Jean-Baptiste BOUTILLIER Manager of Technology & Information Department, CMA SHIPS - CMA CGM group Email: ho.jboutillier@cmaships.com Sadok

281 views • 3 slides
Container Library and FUSE Container File System Softwarepraktikum f ur Fortgeschrittene

Container Library and FUSE Container File System Softwarepraktikum f ur Fortgeschrittene

Introduction Container Library Container Tools FUSE Container File System Evaluation Container Library and FUSE Container File System Softwarepraktikum f ur Fortgeschrittene Michael Kuhn Parallele und Verteilte Systeme Institut f ur

353 views • 22 slides
Rahti container cloud service Aim of this aernoon: $ aragorn

Rahti container cloud service Aim of this aernoon: $ aragorn

Rahti container cloud service Aim of this aernoon: $ aragorn GCF_000002945.1_ASM294v2_genomic.fna ARAGORN v1.2.38 Dean Laslett

957 views • 49 slides
WHAT ARE YOUR FREIGHT OPTIONS? Air Freight Sea Freight Direct Service Full Container

WHAT ARE YOUR FREIGHT OPTIONS? Air Freight Sea Freight Direct Service Full Container

WHAT ARE YOUR FREIGHT OPTIONS? Air Freight Sea Freight Direct Service Full Container Load (FCL) Transhipment Service o Direct o Transhipment Courier Service Less Than Container Load (LCL) When to Use Air Freight Value

746 views • 43 slides
Priority queues Hash tables chaining Priority queue ADT Binary heap March 13, 2020 Cinda

Priority queues Hash tables chaining Priority queue ADT Binary heap March 13, 2020 Cinda

Priority queues Hash tables chaining Priority queue ADT Binary heap March 13, 2020 Cinda Heeren / Andy Roth / Geoffrey Tien 1 Separate chaining Separate chaining takes a different approach to collisions Each entry in the hash table

470 views • 26 slides
Effects of Glass Recycling in the Glass Container Industry Pam Baylor, Director of Purchasing

Effects of Glass Recycling in the Glass Container Industry Pam Baylor, Director of Purchasing

Effects of Glass Recycling in the Glass Container Industry Pam Baylor, Director of Purchasing and Customer Service November 2015 Anchor Glass Container Locations 2 Cullet Impact By Location Elmira, NY Bottle Bill cullet excellent

179 views • 6 slides
Software Vector Chaining M. Anton Ertl TU Wien Data Parallelism and SIMD instructions Data

Software Vector Chaining M. Anton Ertl TU Wien Data Parallelism and SIMD instructions Data

Software Vector Chaining M. Anton Ertl TU Wien Data Parallelism and SIMD instructions Data parallelism in programming problems Hardware provides SIMD instructions Cray-1 vector instructions, Intel/AMD SSE/AVX, ARM Neon/SVE vmulpd %ymm2,

377 views • 10 slides
Databases and keys Integer keys A database stores records with various attributes. Lets make

Databases and keys Integer keys A database stores records with various attributes. Lets make

CS206 CS206 Databases and keys Integer keys A database stores records with various attributes. Lets make a keyed table of all the students in the class, with the student number as the key. The database can be represented as a table, where

96 views • 5 slides
Linked List Implementation Data-structure-palooza Introduction to Markov Chaining Checkout

Linked List Implementation Data-structure-palooza Introduction to Markov Chaining Checkout

Linked List Implementation Data-structure-palooza Introduction to Markov Chaining Checkout LinkedLists project from SVN Understanding the engineering trade-offs when storing data Efficient ways to store data based on how well use it

512 views • 25 slides
Anchors Page 53 Transform the World So When Do You Use Chains? Use Chaining Anchors when the

Anchors Page 53 Transform the World So When Do You Use Chains? Use Chaining Anchors when the

Chaining Anchors Page 53 Transform the World So When Do You Use Chains? Use Chaining Anchors when the undesired state and the desired state are too far apart. Usually when the undesired state is a stuck state where there is no

596 views • 8 slides
Overview of DBT Skills Training for Suicidal Adolescents Shawn S. Sidhu, M.D. University of New

Overview of DBT Skills Training for Suicidal Adolescents Shawn S. Sidhu, M.D. University of New

Overview of DBT Skills Training for Suicidal Adolescents Shawn S. Sidhu, M.D. University of New Mexico Childrens Psychiatric Hospital SSidhu@salud.unm.edu Main References 1) Miller, Alec, et al. Dialectical Behavior Therapy with Suicidal

463 views • 32 slides
Lecture 5 Data Structures (DAT037) Ramona Enache

Lecture 5 Data Structures (DAT037) Ramona Enache

Lecture 5 Data Structures (DAT037) Ramona Enache (with slides from Nick Smallbone) Hash Tables A hash table implements a set or

856 views • 43 slides
Week 9 Oliver Kullmann Generalising arrays Hash tables Direct addressing Hashing in

Week 9 Oliver Kullmann Generalising arrays Hash tables Direct addressing Hashing in

CS 270 Algorithms Week 9 Oliver Kullmann Generalising arrays Hash tables Direct addressing Hashing in general Generalising arrays 1 Hashing through chaining Direct addressing 2 Hash functions Hashing in general 3 Tutorial

1.11k views • 43 slides
Exercises, II part Forward Chaining: 12 Jul 2012 Exercises, II part Consider the following set

Exercises, II part Forward Chaining: 12 Jul 2012 Exercises, II part Consider the following set

Exercises, II part Exercises, II part Forward Chaining: 12 Jul 2012 Exercises, II part Consider the following set of clauses in propositional logic: J = Q A I = J E F = I B = F A B = E A B 1 Show and execution

478 views • 6 slides

More recommend