foundations of intent based networking
play

FOUNDATIONS OF INTENT- BASED NETWORKING Loris DAntoni Aditya Akella - PowerPoint PPT Presentation

Jan 06, 2024 •318 likes •635 views

FOUNDATIONS OF INTENT- BASED NETWORKING Loris DAntoni Aditya Akella Aaron Gember Jacobson Cloud Network Enterprise Network Network Policies Enterprise Network 2 3 Tenant Network Policies Enterprise Network B A Reachability : A

  1. FOUNDATIONS OF INTENT- BASED NETWORKING Loris D’Antoni Aditya Akella Aaron Gember ‐ Jacobson

  2. Cloud Network Enterprise Network Network Policies Enterprise Network 2

  3. 3 Tenant Network Policies Enterprise Network B A Reachability : A can talk to B Waypoints : C to B traffic goes C through a Firewall

  4. 4 Cloud Network Policies S 1 S 2 Tenant 1 Tenant 2 Network Network 100Gbps 100Gbps Policies Policies S 3 S 4 S 5 S 6 Network isolation : Tenant 1 and 2’s traffic must 100 Gbps 100Gbps 100Gbps not affect each other S S 1 S 7 S 9 Network resource management 8 0 Fault tolerance

  5. 5 Intent-based networking Policy ‐ compliant High ‐ level language Synthesize network to specify policies configurations INPUT OUTPUT

  6. 6 Kausik Subramanian GENESIS SYNTH SYNTHESI SIZI ZING NG FOR FORWARD ARDING NG TA TABLES IN IN MUL MULTI ‐ TENANT TENANT NETW NETWORKS [Subramanian, D’Antoni, Akella, POPL17]

  7. 7 Software-defined Networks SDN Controller Centralized controller enforces policies Programmable switch rules: Enforcing policies using conventional Match : Packet headers distributed networks is difficult S 1 S 2 Action : Forward to next switch S 3 S 4 S 5 S 6 SSH traffic at S 3 is SSH forwarded to S 7 S 7 S 8 S 9 S 10

  8. 8 Support for complex and diverse policies High ‐ level language Switch forwarding Genesis to specify policies tables Enforcing certain policies is NP ‐ complete Genesis uses Satisfiability Modulo Theories (SMT) solvers to synthesize forwarding tables

  9. 9 Outline of the Talk • Motivation • Synthesis of forwarding tables in Genesis • Scaling to large workloads: Tactics • Genesis extensions and conclusions

  10. 10 Synthesis Approach Abstract Representation High ‐ level Forwarding policies + (Fwd, Reach) tables Topology Constraints Paths from on Fwd and Fwd and Reach Reach solution INPUT OUTPUT

  11. 11 Semantics of (Fwd, Reach) Fwd(S 1 , ID) = S 2 : Switch S 1 forwards to S 2 Reach(S 2 , ID) = 1 : Specifies that S 2 is reachable in 1 step from source Reach(S 1 , ID) = 0 Reach(S 2 , ID) = 1 Reach(S 3 , ID) = 2 Fwd(S 1 , ID) = S 2 Fwd(S 2 , ID) = S 3 S 1 S 2 S 3

  12. 12 Reachability Constraints S 3 Fwd(S 3 , ID) = S 4 SRC Reach( S 3 , ID) = k ‐ 1 DST S 1 S 5 S 4 Reach( S 2 , ID) = k ‐ 1 Reach( S 4 , ID) = k S 2 If a switch is reachable in k steps, one of its neighbors must be reachable in k ‐ 1 steps

  13. 13 Policy Constraints Reach(S 4 , ID) = k Waypoint : Blue Tenant specifies path must traverse through S 4 S 4 S 2 Isolation : Blue Tenant and Red Tenant S 1 S 5 paths do not share any link S 3 Traffic Engineering : Using SMT ‐ OPT (S 3 , ID1) (S 3 , ID2)

  14. 14 THE END?

  15. 15 Baseline Synthesis Evaluation Setup • Genesis implemented in Python, uses Z3 SMT solver • Multi ‐ tenant isolation: Each tenant has a single reachability policy, and all tenant paths are mutually isolated • Medium ‐ sized fat ‐ tree datacenter topologies

  16. 16 16 Baseline Synthesis Evaluation To scale to large networks and workloads, Exponential Complexity we need to further algorithmic insights and optimizations Synthesis time for over 60 tenants takes >5000s

  17. 17 SCALING TO LARGE WORKLOADS TA TACTICS

  18. 18 18 Tactics: Motivation Core Edge ‐ to ‐ edge paths: 272 Large search space Aggregate Use network structure to specify path properties Edge

  19. 19 19 Tactics as regular expressions Core Aggregate No Edge Tactic: Not (Edge .* Edge .* Edge) Edge

  20. 20 Tactics: Constraint Reduction Genesis uses tactics as a search strategy to eliminate constraints Reach( C 1 ) = k ‐ 1 C 1 Reach(S) = k No Edge Tactic ensures no intermediate edge switch Reach( A 1 ) = k ‐ 1 A 1 S E 1 Reach( E 1 ) = k ‐ 1

  21. 21 Tactics: Algorithmic Properties • Specified using a restricted subset of regular expressions • Sou Sound and Com Comple lete algorithm for enforcing them • Policy ‐ agnostic • The operator can develop a repository of tactics based on their topology

  22. 22 22 Tactics: Evaluation Multi ‐ tenant isolation workload Valley ‐ Free Tactic and No Edge Tactic Valley ‐ Free Tactic speedup: 400x

  23. 23 Outline of the Talk • Motivation • Synthesis of forwarding tables in Genesis • Scaling Genesis: Tactics and Divide ‐ and ‐ Conquer • Genesis extensions and conclusions

  24. 24 Genesis Extensions Genesis Rich Policy Synthesis Language using SMT Resilient Network Paths Repair

  25. 25 Network Resilience Cloud network Single path: Not resilient Link failure S1 S2 S3 t ‐ resilience : For events under t arbitrary link failures, there exists a valid path

  26. 26 Policy-compliant Resiliency Cloud network Backup path Isolation policy 1 ‐ resilient S1 S2 S3 For 1 ‐ resilience, backup path must be edge ‐ disjoint from original path Sound transformation of input policies to provide t ‐ resilience

  27. 27 Minimal Reactive Network Repair Cloud network Policies Policies Best repair: Minimize change overhead Genesis uses MaxSMT

  28. 28 28 Network Repair Evaluation Multi ‐ tenant isolation workload One switch ‐ failure, network repair such that number of switches affected is minimized For larger workloads, repair is faster than re ‐ synthesis.

  29. 29 CONCLUSION

  30. High ‐ level policies on Switch forwarding Genesis paths tables satisfying and switches policies INPUT OUTPUT OSPF and BGP configurations Efficient optimal repair 30

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Troubleshooting for Intent-based Networking Joon-Myung Kang and Mario A. Snchez Hewlett

Troubleshooting for Intent-based Networking Joon-Myung Kang and Mario A. Snchez Hewlett

Open Networking Summit 2017 Troubleshooting for Intent-based Networking Joon-Myung Kang and Mario A. Snchez Hewlett Packard Labs Intent-based Networking Policy Graph Abstraction and Demo Troubleshooting and Demo QnA 2 Software-Defined

613 views • 37 slides
Using Machine Learning for Intent-based Provisioning in High-Speed Science Network Hocine

Using Machine Learning for Intent-based Provisioning in High-Speed Science Network Hocine

Using Machine Learning for Intent-based Provisioning in High-Speed Science Network Hocine Mahtout, Mariam Kiran, Anu Mercian, Bashir Mohammad Lawrence Berkeley National Lab HPE SNTA 2020 1 Problem Statement Intent-based networking research

1.27k views • 26 slides
Intents and Intent Filters Intent Intent is an messaging object. There are three fundamental

Intents and Intent Filters Intent Intent is an messaging object. There are three fundamental

Intents and Intent Filters Intent Intent is an messaging object. There are three fundamental use cases: Starting an activity: Intent intent = new Intent(this, SecondActivity.class); startActivity(intent); Starting a service:

293 views • 11 slides
SDN controller: Intent-based Northbound Interface realization for extended applications

SDN controller: Intent-based Northbound Interface realization for extended applications

SDN controller: Intent-based Northbound Interface realization for extended applications Introduction 1. SDN Controller 2. Intent-based Northbound Interface (NBI) 3. The Intent framework in ONOS controller 4. The proposed architecture for

440 views • 18 slides
Foundations of an Outcome-based Approach Purpose 2 Explain the foundations of an

Foundations of an Outcome-based Approach Purpose 2 Explain the foundations of an

Foundations of an Outcome-based Approach Purpose 2 Explain the foundations of an outcome-based approach including performance measurement Outline the Agency's thinking around implementing the approach Explore stakeholder views

190 views • 14 slides
Community Foundations Trustee and Senior Executive Training SW Community Foundations training

Community Foundations Trustee and Senior Executive Training SW Community Foundations training

South West Community Foundations Trustee and Senior Executive Training SW Community Foundations training and networking day The changing regulatory environment James Evans Introduction 1. Some context 2. GDPR 3. Changes to Fundraising

317 views • 18 slides
Notice of Intent (NOI) The Notice of Intent (NOI) is not a requirement for submitting a

Notice of Intent (NOI) The Notice of Intent (NOI) is not a requirement for submitting a

7/22/2016 A New York State My Brothers Keeper Initiative RFPGC16-012 Full proposals must be postmarked by 8/22/16 Notice of Intent (NOI) The Notice of Intent (NOI) is not a requirement for submitting a complete application by the

507 views • 15 slides
Gyrus: A Framework for User-Intent Monitoring of Text-Based

Gyrus: A Framework for User-Intent Monitoring of Text-Based

Gyrus: A Framework for User-Intent Monitoring of Text-Based Networked ApplicaAons Yeongjin Jang* , Simon P. Chung*, Bryan D. Payne, and Wenke

598 views • 31 slides
Business Model-based (Intent-based) Accounting May 2012 Katherine Schipper Duke University 1

Business Model-based (Intent-based) Accounting May 2012 Katherine Schipper Duke University 1

Business Model-based (Intent-based) Accounting May 2012 Katherine Schipper Duke University 1 Overview Starting point: ICAEW (2010) paper on business models in accounting suggests it is impossible to devise a sensible approach to

689 views • 21 slides
What are the right abstractions for capturing programming and intent Discussion section Thursday

What are the right abstractions for capturing programming and intent Discussion section Thursday

What are the right abstractions for capturing programming and intent Discussion section Thursday Feb 12, 11:25-12:15 Capturing Intent Aaron Gember: Infer intent. Can you simply look at configurations or dataplane to extract intent. What

310 views • 8 slides
Intent, Implementation, Impact Emsi Insight Event 8.30 - 9.15 Registration & Breakfast

Intent, Implementation, Impact Emsi Insight Event 8.30 - 9.15 Registration & Breakfast

Intent, Implementation, Impact Emsi Insight Event 8.30 - 9.15 Registration & Breakfast Networking 9.15 9.30 Welcome John Gray, Director of FE, Emsi UK 9.30 10.45 Automation, Brexit and Skills Demand: trends, risks and

624 views • 48 slides
Emsi Insight Event 8.30 - 9.15 Registration & Breakfast Networking 9.15 9.30 Welcome

Emsi Insight Event 8.30 - 9.15 Registration & Breakfast Networking 9.15 9.30 Welcome

In Intent, Impl Impleme mentation, Impa Impact Emsi Insight Event 8.30 - 9.15 Registration & Breakfast Networking 9.15 9.30 Welcome John Gray, Director of FE, Emsi UK 9.30 10.45 Automation, Brexit and Skills Demand: trends,

503 views • 49 slides
(NEMO) Intent Language Bert Wijnen bwietf@bwijnen.net NEMO Language IETF95 1

(NEMO) Intent Language Bert Wijnen bwietf@bwijnen.net NEMO Language IETF95 1

(NEMO) Intent Language Bert Wijnen bwietf@bwijnen.net NEMO Language IETF95 1 What is Intent networking? Dont tell me what to do, tell me what you want. 2 (NEMO) Intent Language - IETF95 NEMO Language

425 views • 7 slides
An Introduction to the Course with an emphasis on why, how, and why we learn to The intent of

An Introduction to the Course with an emphasis on why, how, and why we learn to The intent of

Intent of our research efforts ... An Introduction to the Course with an emphasis on why, how, and why we learn to The intent of behvioral research is to conduct research provide definitive results about causal Intent of our research

298 views • 11 slides
Using Your Network 10-07-16 Networking & You What is networking? Benefits of

Using Your Network 10-07-16 Networking & You What is networking? Benefits of

Jordan Borrell Networking & Bioengineering Program Using Your Network 10-07-16 Networking & You What is networking? Benefits of networking. Who do I network with? Family/Friends/Neighbors School Connections

395 views • 14 slides
Interactive intent modelling Samuel Kaski Contents 1.Interactive intent modelling for

Interactive intent modelling Samuel Kaski Contents 1.Interactive intent modelling for

IDEA @ KDD2017 14.8.2017 Interactive intent modelling Samuel Kaski Contents 1.Interactive intent modelling for information discovery 2.Interactive knowledge elicitation 3.Multimodal feedback 4.Inferring cognitive user models with ABC

452 views • 44 slides
History and Biography Personal Devotion Class 4 History and Biography Personal Devotion Class 4

History and Biography Personal Devotion Class 4 History and Biography Personal Devotion Class 4

History and Biography Personal Devotion Class 4 History and Biography Personal Devotion Class 4 Personal Devotion Recap Why should we apply ourselves to personal devotion? Scripture says so God gives us the blessings and the tools

522 views • 23 slides
Base Theming With Genesis Taking Theming Beyond Zen

Base Theming With Genesis Taking Theming Beyond Zen

Base Theming With Genesis Taking Theming Beyond Zen By Adam Varn (Hot Sauce Design & Development) What Is Genesis? Highly Customizable Base

294 views • 15 slides
The Lorenz equations Genesis and Generalizations Juan Pello Garc a Departament de Matem`

The Lorenz equations Genesis and Generalizations Juan Pello Garc a Departament de Matem`

The Lorenz equations Genesis and Generalizations Juan Pello Garc a Departament de Matem` atiques i Inform` atica Introduction Rayleigh-B enard model Partial differential equations Galerkins method Part I From Navier-Stokes to

569 views • 46 slides
JOIN US TO PACK SHOEBOX GIFTS! DATE: TIME: 4:30 p.m. - 10:00 p.m. LOCATION: Sanctuary

JOIN US TO PACK SHOEBOX GIFTS! DATE: TIME: 4:30 p.m. - 10:00 p.m. LOCATION: Sanctuary

JOIN US TO PACK SHOEBOX GIFTS! DATE: TIME: 4:30 p.m. - 10:00 p.m. LOCATION: Sanctuary samaritanspurse.org/occ View solicitation disclosure information for Samaritans Purse online at samaritanspurse.org/disclosure. JOIN US TO PACK

504 views • 4 slides
Keep Open House Genesis 1:2-5 Now the earth was formless and empty, darkness was over the

Keep Open House Genesis 1:2-5 Now the earth was formless and empty, darkness was over the

Keep Open House Genesis 1:2-5 Now the earth was formless and empty, darkness was over the surface of the deep, and the Spirit of God was hovering over the waters. 3 And God said, Let there be light , and there was light . 4 God saw that

497 views • 22 slides
Genesis of Electroweak Unification Tom Kibble Imperial College London ICTP October 2014

Genesis of Electroweak Unification Tom Kibble Imperial College London ICTP October 2014

Genesis of Electroweak Unification Tom Kibble Imperial College London ICTP October 2014 Genesis of Electroweak 1 Unification Oct 2014 Outline Development of the electroweak theory , which incorporates the idea of the Higgs boson as I

172 views • 14 slides
Designing a Serverless Application with Domain Driven Design Susanne Kaiser Independent Tech

Designing a Serverless Application with Domain Driven Design Susanne Kaiser Independent Tech

Designing a Serverless Application with Domain Driven Design Susanne Kaiser Independent Tech Consultant @suksr Costs of Poor Software Quality in the US in 2018 (by CISQ report ) $2,840,000,000,000 TWOTRILLIONEIGHTHUNDREDFOURTYBILLION USD

714 views • 53 slides
Outline of Next 2 Weeks THIS WEEK Recent Conflict Timeline Forming of Earth Genesis //

Outline of Next 2 Weeks THIS WEEK Recent Conflict Timeline Forming of Earth Genesis //

10/1/2019 TUESDAY, OCTOBER 1, 2019 Outline of Next 2 Weeks THIS WEEK Recent Conflict Timeline Forming of Earth Genesis // Planetary Geology NEXT WEEK What is Life Origin of Life & Man Genesis // Bio-Chemistry 1

362 views • 17 slides

More recommend