realize sfc using onos sdn controller
play

Realize SFC Using ONOS SDN Controller Mohan Kumar, Senior Software - PowerPoint PPT Presentation

Sep 03, 2022 •254 likes •520 views

Realize SFC Using ONOS SDN Controller Mohan Kumar, Senior Software Engineer, Huawei Indian Cathy Zhang, Principal Architect, Huawei USA 1. Understand OpenStack Neutron SFC Feature: Its Flexible Architecture to Integrate with Multiple SDN

  1. Realize SFC Using ONOS SDN Controller Mohan Kumar, Senior Software Engineer, Huawei Indian Cathy Zhang, Principal Architect, Huawei USA

  2. 1. Understand OpenStack Neutron SFC Feature: Its Flexible Architecture to Integrate with Multiple SDN Controllers, Its APIs, Its Code Status, Second Phase Roadmap. 2. Understand ONOS Controller (Open Network Operating System) Distributed Architecture For Scalability Support 3. Undertand How Openstack Integrates with ONOS SDN Controller to Realize the SFC Functionality.

  3. OpenStack Service Chain Overview

  4. What is Service Function Chain ? Service Chain Management and Control Platform NAT FW IDS Video LB NAT FW LB WOC Load QoS Balancer FW SF SF Traffic IDS Classifier Forwarder Forwarder Traffic Destination (vSwitch) (vSwitch) Source Cache

  5. OpenStack Neutron Service Chain Architecture OpenStack Server OpenStack Server OpenStack API for Service Chain (C1) OpenStack API for Service Chain (C1) Service Chain Driver Manager Service Chain Driver Manager Common Service Chain Driver API (C2) Common Service Chain Driver API (C2) ODL Service ONOS Service Chain ODL Service OVS Service Dragonflow OVS Service ONOS Service Chain Dragonflow OVN Service OVN Service Chain Driver Chain Driver Driver Chain Driver Service Chain Chain Driver Driver Service Chain Chain Driver Chain Driver Driver Driver ODL Controller ONOS Controller ODL Controller ONOS Controller OVSDB ETCD Cassandra RamCloud OVSDB ETCD Cassandra RamCloud OVN/Dragonflow Distributed DB OVN/Dragon Dragonflow Compute Node Compute Node Compute Node flow Controller Controller OVS OVS Swtich OVS Swtich(Classifier) (Classifier) Swtich(Classifier) Traffic Traffic Traffic Traffic Source Service Source Service Service Service Service Service Destination Destination VM (NAT) VM VM (LB) VM (FW) VM (IDS) VM(Web)

  6. OpenStack Service Chain API Overview OpenStack Neutron Service Chain API Flow Classifier Flow Classifier Flow Classifier Port-Pair-Group2 Port-Pair-Group1 Port-Pair-Group3 Neutron Port Neutron Port Port Pair for IPS1 for FW1 for Video Destination Source N- Optimizer1 N-Tuple Tuple Neutron Port Port Pair for IPS2 for FW2 Neutron Port for Video Optimizer2 Neutron Port for FW3 Traffic FW Video Traffic IPS Destination Optimizer Source

  7. Networking-sfc Project Information ● First Release in Feb 2016 ● Architecture and API Specification Link: ● http://docs.openstack.org/developer/networking-sfc/ ● Project Wiki Page: ○ https://wiki.openstack.org/wiki/Neutron/APIForServiceChaining ● Weekly IRC Meeting: ○ Thursday 1700 UTC on #openstack-meeting-4 ○ https://wiki.openstack.org/wiki/Meetings/ServiceFunctionChainin gMeeting

  8. Second Phase Road Map of Networking-SFC • Add Support for a Chain of SFs Hosted on Container • Add Support for a Chain of SFs Hosted on Physical Device • Integrate with VNFM Tacker • Add ODL SFC Driver, OVN SFC Driver, Dragonflow SFC Driver to Support the Implementation path on these Open Source SDN Controllers. • Support for IETF NSH Encapsulation • Support for Symmetric SFC Path

  9. ONOS for Openstack

  10. SDN Archit itectu ture OpenStack Networking-SFC ONOS Controller vSwitch, Service Function VM/Container/ Physical Device

  11. What is Modular ONOS? A new carrier-grade SDN network operating system designed for  high availability  performance  scale-out. Mission: “to produce the Open Source Network Operating System that will enable service providers to build real Software Defined Network”

  12. SFC in ONOS Architecture APP OpenStack Networking-SFC Apps (ONOS SFC Driver) RESTful Vendor Specific ONOS NBI for SFC Northbound NB API functions Agent Core ONOS SFC Manager ONOS Flow Host VTN Device Config Subsystem Subsystem Manager Subsystem Driver SB API for SFC provisioning on SB API the device Net OVSDB Southbound Host Provider DEV Link Flow PCEP conf Provider Agent Switches and Service functions on the Network Data Plane

  14. Demo Topology VM1 VM4 VM2 (SF1) VM3 (SF2) (Source) (Destination) egress ingress egress egress ingress ingress egress ingress P3 P6 P2 P4 P5 P1 OVS Packet path before installing SFC Packet path after installing SFC VM1 -> VM4 VM1 -> VM2 -> VM3 -> VM4 In our demonstration we have source VM, destination VM and a set of ● service functions VM's spawned using openstack network API We use ping packet as data transfer between source and destination. ● Before installing SFC, the packet will directly go to the destination ● After installing SFC the packet will take the defined SFC path and is ● processed at each service function before reaching destination.

  15. Scenario 1 20.0.0.3 20.0.0.8 VM1 VM4 VM2 (SF1) VM3 (SF2) (Source) (Destination) egress ingress ingress egress ingress egress ingress egress P1 P3 P6 P2 P4 P5 OVS Test : Ping from VM1 to VM4 Packet path before installing SFC, VM1 -> VM4

  16. Creating port Use neutron networking CLI to create ports on OVS (All ports are ● created on the same network) neutron port-create --name p1 net1 ● neutron port-create --name p2 net1 ● neutron port-create --name p3 net1 ● neutron port-create --name p4 net1 ● neutron port-create --name p5 net1 ● neutron port-create --name p6 net1 ● neutron port-create --name p7 net1 ● neutron port-create --name p8 net1 ● P3 P6 P1 P2 P4 P5 OVS

  17. Spawning VM's Spawn the VM's with the created ports ● Use nova CLI to spawn the VM's ● nova boot --image cirros-0.3.4-x86_64-uec --flavor m1.small --nic ● port-id=<ingress port> --nic port-id=<egress port> <vm name> VM1 VM4 VM2 (SF1) VM3 (SF2) (Source) (Destination) egress egress ingress egress ingress egress ingress ingress P3 P2 P4 P5 P OVS P1 6

  18. Ping from VM1 to VM4 Without SFC 20.0.0.3 20.0.0.8 VM1 VM4 VM2 (SF1) VM3 (SF2) (Source) (Destination) egress ingress ingress egress ingress egress ingress egress P1 P3 P6 P2 P4 P5 OVS Packet path before installing SFC VM1 -> VM4

  19. Scenario 2 Packet path after installing SFC(Create port chain) VM1 -> VM2 -> VM3 -> VM4 20.0.0.3 20.0.0.8 VM1 VM4 VM2 (SF1) VM3 (SF2) (Source) (Destination) egress ingress egress ingress egress ingress egress ingress P1(27) P2(25) P3(26) P6(30) P4(28) P5(29) OVS Test : Ping from VM1 to VM4 Note: 5, 6, 7, 8.. are the OVS ports on which the VM's tap interfaces are created

  20. Creating SFC Port pair Use Networking-SFC CLI to create port pairs ● neutron port-pair-create <port pair name> --ingress <port id> -- ● egress <port id> When a port pair is successfully created, neutron SFC will send a ● create request to ONOS rest API. ONOS will store the respective port pair details in its DB ● Create Create Port pair PP2 Port pair PP1 with ports with ports P4 and P5 P2 and P3 P P3 P2 P4 P5 P1 OVS 6

  21. Creating Port pair group Use Networking-SFC CLI to create port pair group ● neutron port-pair-group-create --port-pairs <port pair name> <port ● pair group name> Once the port pair group is successfully created, neutron will send a ● create request to ONOS rest API for port pair group. ONOS will store the respective port pair details in its DB ● Create port pair group Create port pair group PPG1 with port pair PP1 PPG2 with port pair PP2 Create Port pair PP1 Create Port pair PP2 with ports P2 and P3 with ports P5 and P6 P3 P2 P4 P5 P6 P1 OVS

  22. Create flow classifier Use Networking-SFC CLI to create flow classifier. ● Classifier rule is used to select traffic that originates from source with ● IP prefix 20.0.0.3/32 and goes to destination with IP prefix 20.0.0.8/32 (Source and destination with in the same network), and the chain ingress port is set as the Source VM’s neutron port p1 neutron flow-classifier-create --source-ip-prefix 20.0.0.3/32 -- ● destination-ip-prefix 20.0.0.8/32 – logical-source-port p1 FC1 Once the flow classifier is successfully created, neutron will send a ● create request to ONOS rest API ONOS will store the respective flow classifier details in its DB ●

  23. Create Port chain Use Networking-SFC CLI to create port chain ● Create port chain with VM2 as SF1 and VM3 as SF2 ● neutron port-chain-create --port-pair-group PPG1 --port-pair- ● group PPG2 --flow-classifier FC1 <port chain name> Once the port chain is successfully created, neutron will send a chain ● creation request to ONOS rest API for port chain. ONOS will store the respective port chain details in its DB and ● initiates event to generate and download required flow rules to the switches for setting up the SFC traffic steering path. SFC VM2 (SF1) VM3 (SF2) Create Create Port pair PP1 Port pair PP2 with ports with ports P4 P2 and P3 and P5 egress egress ingress ingress P3 P2 P4 P5 OVS Create port pair group Create port pair group PPG2 with port pair PP2 PPG1 with port pair PP1

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Multi Layer Performance Based PCE Enhancements to ONOS Controller for SD WAN Packet Optical

Multi Layer Performance Based PCE Enhancements to ONOS Controller for SD WAN Packet Optical

Multi Layer Performance Based PCE Enhancements to ONOS Controller for SD WAN Packet Optical Integration David Altstaetter , CALIENT Technologies Raghu Gangi , ADARA Networks What is Multi-Layer Convergence? Bringing the physical Layer into the

504 views • 13 slides
Just 40 minutes? 2 Outline A Brief Introduction to the ONOS Web UI Web UI Architecture

Just 40 minutes? 2 Outline A Brief Introduction to the ONOS Web UI Web UI Architecture

ONOS Web UI -- Designed for Extensibility Simon Hunt ONOS Mini Summit ONS 2016 Open Networking Lab So much content, so little time! Just 40 minutes? 2 Outline A Brief Introduction to the ONOS Web UI Web UI Architecture

279 views • 15 slides
NETCONF and YANG integration in ONOS Southbound Interface Andrea Campanella, ON.Lab ONS 2016 --

NETCONF and YANG integration in ONOS Southbound Interface Andrea Campanella, ON.Lab ONS 2016 --

NETCONF and YANG integration in ONOS Southbound Interface Andrea Campanella, ON.Lab ONS 2016 -- ONOS Mini Summit #ONOSProject Outline Looking Ahead Why NETCONF and YANG in ONOS Q&amp;A ONOS Architecture Documentation

574 views • 16 slides
SDN controller: Intent-based Northbound Interface realization for extended applications

SDN controller: Intent-based Northbound Interface realization for extended applications

SDN controller: Intent-based Northbound Interface realization for extended applications Introduction 1. SDN Controller 2. Intent-based Northbound Interface (NBI) 3. The Intent framework in ONOS controller 4. The proposed architecture for

440 views • 18 slides
ONOS Update distributed platform, abstractions, applications ONOS Community distributed core

ONOS Update distributed platform, abstractions, applications ONOS Community distributed core

ONOS Update distributed platform, abstractions, applications ONOS Community distributed core provides high-availability, scalability and performance abstractions &amp; models allow applications to configure and control the network without

750 views • 54 slides
ONOS Overview OPNFV Design Summit November 9, 2015 Brian O'Connor Open Networking Lab What is

ONOS Overview OPNFV Design Summit November 9, 2015 Brian O'Connor Open Networking Lab What is

ONOS Overview OPNFV Design Summit November 9, 2015 Brian O'Connor Open Networking Lab What is ONOS? Open Network Operating System (ONOS) is an open source SDN network operating system. Our mission is to enable Service Providers to build real

528 views • 13 slides
WORK WITH ONOS Hayim Porat, CTO Sarit Tager, VP R&amp;D SDN ECI Proprietary WHERE IS THE

WORK WITH ONOS Hayim Porat, CTO Sarit Tager, VP R&amp;D SDN ECI Proprietary WHERE IS THE

DRIVING STANDARDS FROM CODE ECIS WORK WITH ONOS Hayim Porat, CTO Sarit Tager, VP R&amp;D SDN ECI Proprietary WHERE IS THE INDUSTRY TODAY? Vendor lock-in High cost of introducing/ exchanging vendor Limited interoperability/ rigid

592 views • 21 slides
OFFICE OF THE CONTROLLER Ben Rosenfield Controller Todd Rydstrom CITY AND COUNTY OF SAN

OFFICE OF THE CONTROLLER Ben Rosenfield Controller Todd Rydstrom CITY AND COUNTY OF SAN

OFFICE OF THE CONTROLLER Ben Rosenfield Controller Todd Rydstrom CITY AND COUNTY OF SAN FRANCISCO Deputy Controller Nonprofit Contracting Forum Wedn dnesda day, Novem ember er 6, 2019, 1:00pm pm 2:30 30pm Koret Aud uditorium um,

1.05k views • 63 slides
OFFICE OF THE CONTROLLER Ben Rosenfield Controller Todd Rydstrom CITY AND COUNTY OF SAN

OFFICE OF THE CONTROLLER Ben Rosenfield Controller Todd Rydstrom CITY AND COUNTY OF SAN

OFFICE OF THE CONTROLLER Ben Rosenfield Controller Todd Rydstrom CITY AND COUNTY OF SAN FRANCISCO Deputy Controller Nonprofit Contracting Forum Monday, M March 2, 2, 20 2020 20, 1 1pm 2p 2pm Kore ret A Auditori rium, M , Main

1.08k views • 58 slides
IndieWeb IndieWeb Being social on the Web Being social on the Web DrupalCamp Gent 2018 | 23

IndieWeb IndieWeb Being social on the Web Being social on the Web DrupalCamp Gent 2018 | 23

IndieWeb IndieWeb Being social on the Web Being social on the Web DrupalCamp Gent 2018 | 23 November 2018 Your domain as your identity on the Web About me realize.be realize.be About me realize.be realize.be (or swentel, on drupal.org

923 views • 77 slides
ONOS Towards an Open, Distributed SDN OS Pankaj Berde, Matteo Gerola, Jonathan Hart, Yuta

ONOS Towards an Open, Distributed SDN OS Pankaj Berde, Matteo Gerola, Jonathan Hart, Yuta

ONOS Towards an Open, Distributed SDN OS Pankaj Berde, Matteo Gerola, Jonathan Hart, Yuta Higuchi, Masayoshi Kobayashi, Toshio Koide, Bob Lantz, Brian OConnor , Pavlin Radoslavov, William Snow, Guru Parulkar Open Networking Laboratory , NEC

903 views • 16 slides
RGBW Controller Unearthly potential Fibaro RGBW Controller is a one of a kind, advanced wireless

RGBW Controller Unearthly potential Fibaro RGBW Controller is a one of a kind, advanced wireless

Home intelligence RGBW Controller Unearthly potential Fibaro RGBW Controller is a one of a kind, advanced wireless 4-colour LED strip controller. Apart from traditional RGB channels, it also supports the additional white light channel, which

310 views • 26 slides
KREONET SOFTWARIZATION - KREONET SD-WAN Deployment based on ONOS- Dongkyun Kim, KISTI

KREONET SOFTWARIZATION - KREONET SD-WAN Deployment based on ONOS- Dongkyun Kim, KISTI

KREONET SOFTWARIZATION - KREONET SD-WAN Deployment based on ONOS- Dongkyun Kim, KISTI mirr@kisti.re.kr Open Networking Summit 2016 Introduction &amp; Background KREONET -S* as the Next KREONET Deployment Status of KREONET -S*

490 views • 25 slides
ONOS Deployment brigade ONS - Santa Clara, Apr 6th 2017 RENs deployment activities updates New

ONOS Deployment brigade ONS - Santa Clara, Apr 6th 2017 RENs deployment activities updates New

ONOS Deployment brigade ONS - Santa Clara, Apr 6th 2017 RENs deployment activities updates New entry: Japan ( JGN-X ) Internal dev activities on virtual networks L2 applications test phase 5 institutes connected Connecting internal

351 views • 10 slides
DCP250 Controller Programmer Presentation DCP250 Overview Controller and Programmer with

DCP250 Controller Programmer Presentation DCP250 Overview Controller and Programmer with

DCP250 Controller Programmer Presentation DCP250 Overview Controller and Programmer with Graphic Display 1/4 DIN (96x96mm) size One or two control loops Programmer (255 segments shared in up to 64 programs) Data logger with real

717 views • 33 slides
Introduction to WSU Accounting Presented by Terry Ely Controller, Business Services/Controller

Introduction to WSU Accounting Presented by Terry Ely Controller, Business Services/Controller

2/23/201 WA S H I N G T O N S T AT E 6 U N I V E R S I T Y Introduction to WSU Accounting Presented by Terry Ely Controller, Business Services/Controller 5-2008 terrye@wsu.edu Updated February 2016 Objectives Some history of WSU

447 views • 21 slides
Final Presentation &amp; Poster (Group) Due: Friday, March 13, 2009 Goal The goal of this

Final Presentation &amp; Poster (Group) Due: Friday, March 13, 2009 Goal The goal of this

CSE441 Winter 2009: Assignment 13 Instructor: James Landay Final Presentation &amp; Poster (Group) Due: Friday, March 13, 2009 Goal The goal of this assignment is to learn how to present your work in a visual form to interested parties from

284 views • 4 slides
Data Plane Broker Integration, Configuration &amp; Implementation. Paul McCherry Data Plane

Data Plane Broker Integration, Configuration &amp; Implementation. Paul McCherry Data Plane

Data Plane Broker Integration, Configuration &amp; Implementation. Paul McCherry Data Plane Broker Integration OSM Creation: Connection Points, Bandwidth Deletion: Service_Id DPB WIM Connector Modify: In development, Service_Id

241 views • 20 slides
CARTA (Cube Analysis and Rendering Tool for Astronomy) Developments, features, and demo Kuo-Song

CARTA (Cube Analysis and Rendering Tool for Astronomy) Developments, features, and demo Kuo-Song

CARTA (Cube Analysis and Rendering Tool for Astronomy) Developments, features, and demo Kuo-Song Wang on behalf of the CARTA team EA ALMA/45m/ASTE Users Meeting 2018 2018/12/26 @ NAOJ The mission of CARTA CARTA is the Cube Analysis and

356 views • 14 slides
Project presentation video Overview This activity fulfjlls Stage 3 , Requirement 4 of the 120

Project presentation video Overview This activity fulfjlls Stage 3 , Requirement 4 of the 120

1 Project presentation video Overview This activity fulfjlls Stage 3 , Requirement 4 of the 120 360 minutes Digital Maker Staged Activity Badge (Show and present your digital making project). Young people Flexible (ideally two to

595 views • 12 slides
Countering SYN Flood Denial-of-Service (DoS) Attacks Ross Oliver Tech Mavens

Countering SYN Flood Denial-of-Service (DoS) Attacks Ross Oliver Tech Mavens

Countering SYN Flood Denial-of-Service (DoS) Attacks Ross Oliver Tech Mavens reo@tech-mavens.com What is a Denial-of- Service (DoS) attack? ! Attacker generates unusually large volume of requests, overwhelming your servers ! Legitimate

493 views • 27 slides
Service Activity David Moore, Colleen Shannon, Douglas J. Brown, Geoffrey M. Voelker, Stefan

Service Activity David Moore, Colleen Shannon, Douglas J. Brown, Geoffrey M. Voelker, Stefan

Inferring Internet Denial-of- Service Activity David Moore, Colleen Shannon, Douglas J. Brown, Geoffrey M. Voelker, Stefan Savage Presented by Thangam Seenivasan &amp; Rabin Karki 1 Simple Question How prevalent are denial-of-service

886 views • 50 slides
PORTFOLIO OF SERVICES Who is mrHouston? 360 Our story We have been maximizing our clients

PORTFOLIO OF SERVICES Who is mrHouston? 360 Our story We have been maximizing our clients

PORTFOLIO OF SERVICES Who is mrHouston? 360 Our story We have been maximizing our clients value for over 18 years. We are a key player in ICT management. Who we are Our multidisciplinary, highly qualified team is composed of 50 people.

402 views • 24 slides
DEFENDING DIGITAL BUSINESS AGAINST CYBER ATTACKS Presentation SAI 21/02/2019 Our Agenda 1

DEFENDING DIGITAL BUSINESS AGAINST CYBER ATTACKS Presentation SAI 21/02/2019 Our Agenda 1

www.nviso.be DEFENDING DIGITAL BUSINESS AGAINST CYBER ATTACKS Presentation SAI 21/02/2019 Our Agenda 1 Demo time 2 Threat actor groups 3 Nation states 4 Hacktivism 5 Organized cyber crime 6 The bad competitor 7 The Internet of

777 views • 42 slides

More recommend