openflow y sdn fundamentos de open networking. soluciones open flow miguel angel rodríguez...
TRANSCRIPT
![Page 1: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/1.jpg)
Openflow Y SDN
Fundamentos de Open Networking. Soluciones Open Flow
Miguel Angel Rodríguez Fernández [email protected]
![Page 2: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/2.jpg)
2 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Agenda
ARQUITECTURA SDN
INTRODUCCION a Openflow
Casos Prácticos
![Page 3: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/3.jpg)
3 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
ARQUITECTURA SDN
![Page 4: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/4.jpg)
4 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Specialized Packet Forwarding Hardware
App
App
App
Specialized Packet Forwarding Hardware
App
App
App
Specialized Packet Forwarding Hardware
App
App
App
Specialized Packet Forwarding Hardware
App
App
App
Specialized Packet Forwarding Hardware
OperatingSystem
OperatingSystem
OperatingSystem
OperatingSystem
OperatingSystem
App
App
App
4
En la actualidad:Cajas cerradas y Protocolos distribuidos
![Page 5: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/5.jpg)
5 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Specialized Packet Forwarding Hardware
App
App
App
Specialized Packet Forwarding Hardware
App
App
App
Specialized Packet Forwarding Hardware
App
App
App
Specialized Packet Forwarding Hardware
App
App
App
Specialized Packet Forwarding Hardware
OperatingSystem
OperatingSystem
OperatingSystem
OperatingSystem
OperatingSystem
App
App
App
Network Operating System
App App App
Un Acercamiento a “Software Defined Networking”
5
![Page 6: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/6.jpg)
6 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
App
Simple Packet Forwarding Hardware
Simple Packet Forwarding Hardware
Simple Packet Forwarding Hardware
App App
Simple Packet Forwarding Hardware Simple Packet
Forwarding Hardware
Network Operating System
1. Open interface to hardware
3. Well-defined open API2. At least one good operating system
Extensible, possibly open-source
El Concepto “Software-defined Network”
6
![Page 7: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/7.jpg)
7 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Software Defined Networking (SDN)
Los principales objetivos de SDN Abstraer los elementos de la Red desde las Aplicaciones. Control y Gestión centralizadad de los dispositivos de red de diferentes
fabricantes. Tener una Red abierta que permita ser programable y crear servicios
de forma sencilla. SDN es una arquitectura que divide el plano de conmutación y permite
que sea programable de una forma directa.
LAS REDES ABIERTAS ADOPTARAN MAYORES INNOVACIONES.
![Page 8: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/8.jpg)
8 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Arquitectura SDN
![Page 9: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/9.jpg)
10 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Introducción aOpenflow
![Page 10: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/10.jpg)
11 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Aproximación a openflow Plano de Control separado del plano de conmutación Plano de Control Centralizado.
OpenFlow controller(La plataforma). Lógicamente centralizada y fisicamente distribuida.
Plano de conmutación distribuido. OpenFlow switches (Pueden ser routers,firewalls). No es necesario tener protocolos de routing . Software (kernel, hypervisor, userspace), Hardware (merchant silicon, ASICs, OpenFlow optimized ASICs)
OpenFlow es el protocolo entre el plano de control y de conmutación.
![Page 11: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/11.jpg)
12 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Plano de Control centralizado y conmutación distribuido.
OpenFlow controller Plano de control centralizado
OpenFlow protocol
OpenFlow switch Plano de conmutación
![Page 12: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/12.jpg)
13 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Arquitectura de un openflow controller
Protocol Engines
OpenFlow OF-Config
Basic Services
API (not standard)
Topologydiscovery
Pathcomputation
Inventory
Infrastructure
Event dispatching
GUI
CLI
FlowVisor (network partitioning)
Applications
ReplicationScheduler
Data CenterMulti Tenancy
LoadBalancer
![Page 13: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/13.jpg)
14 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
OpenFlowController
Traditional Router/Switch OpenFlow Router/Switch
Control Process
Forwarding Table
Secure ChannelSimple Controller
Forwarding/Flow Dispatch Table
Distributed control plane
EVOLUCION A OFN
![Page 14: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/14.jpg)
15 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Controller
PC
HardwareLayer
SoftwareLayer
Flow Table
MACsrc
MACdst
IPSrc
IPDst
TCPsport
TCPdport Action
OpenFlow Client
**5.6.7.8*** port 1
port 4port 3port 2port 1
1.2.3.45.6.7.8
Ejemplo de OpenFlow
15
![Page 15: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/15.jpg)
16 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
TIPOS DE MENSAJES
Tres tipos de mensajes y cada mensaje con múltiples subtipos.:, controller-to-switch, asynchronous y symmetric.
Controller-to-switch messages are initiated by the controller and
used to directly manage or inspect the state of the switch. Features (query capabilities), modify-state(add/delete/modify flow/group
entry), read-state, packet-out Asynchronous messages are initiated by the switch and used to
update the controller of network events and changes to the switch state. Such as flow-removed, packet-in, port-status
Symmetric messages are initiated by either the switch or the controller and sent without solicitation. hello, echo (request/reply), experimenter
![Page 16: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/16.jpg)
17 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
OpenFlow Basics Flow Table Entries (1.0)
SwitchPort
MACsrc
MACdst
Ethtype
VLANID
IPSrc
IPDst
IPProt
L4sport
L4dport
Rule Action Stats
1. Forward packet to zero or more ports
2. Encapsulate and forward to controller
3. Send to normal processing pipeline4. Modify Fields5. Any extensions you add!
+ mask what fields to match
Packet + byte counters
17
VLANpcp
IPToS
![Page 17: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/17.jpg)
18 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Examples (1/2)
Switching
*
SwitchPort
MACsrc
MACdst
Ethtype
VLANID
IPSrc
IPDst
IPProt
TCPsport
TCPdport Action
* 00:1f:.. * * * * * * * port6
Flow Switching
port3
SwitchPort
MACsrc
MACdst
Ethtype
VLANID
IPSrc
IPDst
IPProt
TCPsport
TCPdport Action
00:20.. 00:1f.. 0800 vlan1 1.2.3.4 5.6.7.8 4 17264 80 port6
Firewall
*
SwitchPort
MACsrc
MACdst
Ethtype
VLANID
IPSrc
IPDst
IPProt
TCPsport
TCPdport Action
* * * * * * * * 22 drop
18
![Page 18: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/18.jpg)
19 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Examples (2/2)
Routing
*
SwitchPort
MACsrc
MACdst
Ethtype
VLANID
IPSrc
IPDst
IPProt
TCPsport
TCPdport Action
* * * * * 5.6.7.8 * * * port6
VLAN Switching
*
SwitchPort
MACsrc
MACdst
Ethtype
VLANID
IPSrc
IPDst
IPProt
TCPsport
TCPdport Action
* * vlan1 * * * * *
port6, port7,port9
00:1f..
19
![Page 19: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/19.jpg)
20 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Secure Channel
Flow Table
OpenFlow Controller
OpenFlow Protocol
SSL/TLS
OpenFlow v1.0 Switch
sw
hw
OpenFlow v1.0 Switch
![Page 20: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/20.jpg)
21 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Secure Channel
Flow Table
OpenFlow Controller
OpenFlow Protocol
SSL/TLS
OpenFlow v1.1 Switch
Flow Table…
Pipeline
Group Table
OpenFlow v1.1 Switch
![Page 21: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/21.jpg)
22 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Secure Channel
Flow Table
OpenFlow Controller
OpenFlow Protocol
SSL/TLS
OpenFlow v1.1 Switch
Flow Table…
Pipeline
GroupTable Table
OpenFlow v1.1 Switch
![Page 22: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/22.jpg)
23 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
CASOS PRACTICOS
![Page 23: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/23.jpg)
24 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Keynote at Open Networking Symposium 2012 Urs Hölzle, Senior Vice President Technical Infrastructure Google deployed OpenFlow in I-Scale network In production to connect all Google datacenters Replaced traditional routing protocols Google built OpenFlow switches themselves (but will buy if available) Cost savings (e.g. 100% link utilization, easier management) New opportunities http://www.youtube.com/watch?v=VLHJUfgxEO4
![Page 24: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/24.jpg)
25 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Data center interconnect wanOpenflow instead of routing protocols
OpenFlow switchno routing protocols
Logically centralized OpenFlow controller
![Page 25: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/25.jpg)
26 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Data center con Arquitectura de SDN
Physical IP Fabric
Virtualized Network
Virtualized Compute
Virtualized storage Virtualized services
Centralized Orchestration
![Page 26: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/26.jpg)
27 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Multi-tenancy using overlay networks
Hypervisor
Virtual switch
Virtual machine
Overlay tunnel
![Page 27: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/27.jpg)
28 Copyright © 2009 Juniper Networks, Inc. www.juniper.net
Virtualized services
Virtual firewall service
![Page 28: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/28.jpg)
centralized orchestrationOF compute, storage, and network
Centralized Orchestration
Compute
Storage
Network
The IP fabric was not touched
OpenFlow
![Page 29: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/29.jpg)
Juniper is the recognized leader of the network programmability movement, which is the conceptual foundation underlying the SDN approach.
Long before the term “SDN” was coined, our disruptive network architectures were built on the premise of using innovative software to give customers unprecedented levels of flexibility and control, with an end goal of transforming the economics and experience of networking.
By simultaneously simplifying and opening up the network, Juniper pioneered the core capabilities and concepts behind SDNs.
Posicionamiento de SDN
![Page 30: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/30.jpg)
Open network Technologies FOR Innovation
Network Orchestration
Network Devices
Junos SDK: Common APIs, RE APIs, Services APIs, Remote (VE) APIs
Juniper Custom Silicon
Junos Data Plane (Packet Forwarding Engine)
Junos Control Plane(Routing Engine)
Junos Service Plane (Service Engine)
Junos Virtual Plane(Virtual Engine Environment)
OpenFlow(extensible)
Junos Space (Orchestration, Management, Monitoring Plane)
Custom Apps + APIs
Custom Packet Processing Apps + APIs
Custom Apps + APIson any OS
Juniper and Custom Application APIs
Junos Space SDKAny OF
controller
Automation
ALTO
ALTO server
PCECommonInterfaces
OSS/BSSNetwork-aware Apps Juniper and Custom Space UIs / WorkflowsTopology Client Path Client
..
.SNMP
NETCONFSYSLOG HTTP RESTful Web Services
DMIOpenFlowBGP-TE ALTO PCP
Juniper Platform Element Juniper Application Element
![Page 31: Openflow Y SDN Fundamentos de Open Networking. Soluciones Open Flow Miguel Angel Rodríguez Fernández marodriguez@juniper.net](https://reader036.vdocuments.site/reader036/viewer/2022062404/5519bc4a550346695e8b458e/html5/thumbnails/31.jpg)
GRACIAS.
PREGUNTAS