[OpenStack Days Korea 2016] Innovating OpenStack Network with SDN solution

Copyright (C) 2015 by Co., Ltd. All Rights Reserved.

Innovating Openstack Network with

SDN solutionOpenStack Days Korea 2016

박성용2016. 02. 18

2

What KulCloud Offers

Network Solutionfor

Cloud

SDN (Software Defined Network) 이라고 하는 기술을 이용해 클라우드에서필수적인네트워크솔루션을 싸게 (Low cost),쉽게 (Plug-n-Play easiness), 유연하게(Agile)하게 만드는 플랫폼과 Managed 서비스를제공하는회사



2012년12월26일 한국경제

<글로벌 SDN 포털 집계 (www.sdncentral.com) >

• 쿨클라우드가 운영하는 오픈소스 SDN 프로젝트OpenMuL이글로벌 Top 10 (2015. 10)

• 아시아에선 단 2회사- KulCloud, NTT (일본 국영전화회사)-나머지는 모두 실리콘밸리 소재글로벌 회사

VMware

Cisco, Ericsson, etc

표준화 기관

Juniper

쿨클라우드의 SDN 오픈소스 프로젝트

www.sdncentral.com

http://www.sdncentral.com/



Distributed Controller (분산제어기)

기존시스코, 주니퍼장비제어

Fabric 및모니터링어플리케이션

Virtual Router(쿨클라우드가상라우터)

Top10 중에제어기가 4개

• 각오픈소스 SDN 제어기프로젝트는특별히 Focus 하는기술이있음• Kulcloud 는유연한가상라우터 (scale-out virtual router) 플랫폼에집중

- 패브릭, 분산제어기, 기존장비제어등도지원

Open

Closed

ApplicationInfra Management


클라우드에서생기는재미있는일 (1/6)

네트워크장비

서버• 클라우드서비스를제공하기위해데이터센터를구축하는데, 새로출시된장비를이용해구축… 왜? Why???

네트워크장비는이전에도많았는데, 왜새로출시된장비를사야되지????



•전송및다양한라우팅알고리즘에최적화된장비500G-20 Tbps정도속도나옴라우팅알고리즘은 1천만-2천만 line 정도되는소프트웨어로구성

•네트워크장비는사용이워낙어려워사용자자격시험까지있음 (CCIE, CCNA, etc)

3년이상공부해야자격증딸수있음

500Gbps~20 Tbps 전송속도

일반적 (예전) 장비 예전에나왔던장비란?


•사용자용소프트웨어기능이대폭향상 Service Oriented Architecture (SOA) 지원 장비내부에서비스기능구현 사용자는 API를통해이를 Call 하는방식

• 기존장비기능을 Underlay라하고사용자용서비스를 (가상네트워크, 오버레이망, 가상라우터 등) Overlay라함

•클라우드에정말필요한라우팅알고리즘은10개정도 기존장비는 5500개쯤됨. 헉…


사용자는네트워크구성시마우스로몇번클릭하면끝

클라우드용장비는뭐가다를까?

8

MPLS/VPN Internet

Layer 3 eBGP

Layer 3 OSPF

L2/L3 EdgeCluster

Flat L2Network

Underlay Network: 데이터센터의예

•사용자용소프트웨어기능이대폭향상 Service Oriented Architecture (SOA) 지원 장비내부에서비스기능구현 사용자는 API를통해이를 Call 하는방식

• 기존장비기능을 Underlay라함• 사용자용서비스를 (가상네트워크,

오버레이망, 가상라우터 등) Overlay라함

•클라우드에정말필요한라우팅알고리즘은10개정도 기존장비는 5500개쯤됨 (RFC 5400개이상)


9


MPLS/VPN Internet

Layer 3 eBGP

Layer 3 OSPF

L2/L3 EdgeCluster

Any vendorFlat L2

Network

Underlay와 Overlay: 데이터센터의예

VM VM VM

Underlay Overlay



일반적 (예전) 장비요즘 (신규) 장비

자동화되고쓰기쉬워짐

클라우드용라우터에선속도보다

사용하기편하고확장가능한것이 더중요해지고,

차별화포인트가됨


New Trends

WhiteBox (공기계) 스위치의등장


WhiteBox Switch

•하드웨어의 Operating System 교체가능 Disaggregated Solution 다양한기능을가진 OS 등장 SDN환경, LINUX 환경 (Open Network Linux),

일반라우터 CLI 등환경제공

• 기존 SDN 환경, Linux 환경에서동작하던프로그램을그대로사용가능 Reusability 기존 NMS, Config Tool 등그대로사용가능 오픈스택뉴트론처럼변경이많고개발이

진행중인상황에적합

• LINUX에서프로그램개발하듯이신규네트워크기능개발가능 재교육없이기존개발인력활용가능

CPU(PowerPC, x86)

Misc Hardware(Fans, LED controllers, SFP,

sensors, power supplies)

Packet Forwarding Chip(ASIC)

Hardware

Platform

Applications

ONL Linux Kernel Includes extra drivers: I2C, MUX, mngt Ethernet, etc.

Broadcom SDK(others coming soon)

Open Network Linux Platform Abstraction Layer

Platform Specific Drivers

Including: Optics

OFDPA

Platform Specific ASIC Drivers

OpenNSL

ORCBRCM

OCP Switch Hardware: Facebook Wedge, IM Niagara, Accton 6712, 7712, Dell S6000-ON, Quanta LY6, etc.

OpenRouteCache

Indigo OpenFlow Agent

Your OFDPA

App HERE

FacebookFBOSS

Your OpenNSLApp HERE

SAIInterfac

e

Your SAI App HERE

Quagga

Installer

(ONIE)

ONL Arch Diagram GoBGP

Source: OCP Tech meeting 2015

CPU(PowerPC, x86)

Misc Hardware(Fans, LED controllers, SFP,

sensors, power supplies)

Packet Forwarding Chip(ASIC)

Hardware

Platform

Applications

ONL Linux Kernel Includes extra drivers: I2C, MUX, mngt Ethernet, etc.

Broadcom SDK(others coming soon)

Open Network Linux Platform Abstraction Layer

Platform Specific Drivers

Including: Optics

OFDPA(Ext’d)

Platform Specific ASIC Drivers

OpenNSL

ORCBRCM

OCP Switch Hardware: Facebook Wedge, IM Niagara, Accton 6712, 7712, Dell S6000-ON, Quanta LY6, etc.

OpenRouteCache

Indigo OpenFlow Agent

KulCloudPRISM

OF-DPA agent

FacebookFBOSS

Your OpenNSLApp HERE

KulCloudSAI

Interface

KulCloudSAI

MPLS

Installer

(ONIE)

KulCloud PRISM Router BGP, OSPF etc


ONOS

ONL/OpenFlow on Project Atrium (예: 라우터만들기프로젝트)

vlan z

BRCM ASIC

OF-DPA

Indigo OF Agent

OF-DPA API

OpenFlow 1.3

OCPSoftware

-

ONL

ONIE

OCP Bare Metal Hardware

BRCM SDK API

OCP: Open Compute Project; ONL: Open Network Linux; ONIE: Open Network Install Env; BRCM: Broadcom Merchant Silicon ASICs; OF-DPA: OpenFlow Datapath Abstraction

OFDPA Driver

Peering Application

Quagga BGP


16

ONOS

BRCM ASIC

OF-DPA

Indigo OF Agent

OF-DPA API

OpenFlow 1.3

OCPSoftware

-

ONL

ONIE


BRCM SDK API

OFDPA Driver

Peering Application

Quagga BGP

OpenMUL

BRCM ASIC

OF-DPA

Indigo OF Agent

OF-DPA API

OpenFlow 1.3

OCPSoftware

-

ONL

ONIE


BRCM SDK API

OFDPA Driver

Peering Application

Quagga BGP, OSPF, & MPLS

KulCloud ONOS

가상라우터

17

OpenMUL

vlan z

BRCM ASIC

OF-DPA (100k-1mil flow)

Indigo OF Agent

OF-DPA API

OpenFlow 1.3

OCPSoftware

-

ONL

ONIE


BRCM SDK API

OFDPA Driver

Peering Application

BGP, OSPF, MPLS etc

KulCloud PRISM Compatible HW/SW


New Trends

SDN과WhiteBox의만남


SDN 기능을이용해 기존 HW 장비를오픈스택 Neutron에연동

전용 HW로만들던장비를일반서버+Linux 환경에서도동작하게포팅한모듈이나, 이미 NFV로변환한

모듈이 있어야함

Whit BoxSwitch

Router Load Balancer

Monitoring

FirewallDPI

LBRouter

DPI

Linux에서동작하도록포팅필요 NFV

Firewall

NFV

NFV

Monitoring

NFV NFV


SDN 기능을이용해 기존 HW 장비를오픈스택 Neutron에연동

쿨클라우드 Agent를 Linux에

Install 하고간단한연동작업을하면

실제전송을

고성능 Whitebox 스위치가하도록

알아서연동해줌.LBRouter

DPI

NFVFirewall

NFV

NFV

Monitoring

NFV NFV

Linux에존재하는가상인터페이스들이물리장비의실제 Port에정확히

연동된다

21

• 쿨클라우드프리즘은리눅스환경에서라우터를(L3) 중심으로 LB, FW, DPI 등L4-L7 기능을통합할수있는 SDN 플랫폼• L4-L7 기능과의연동은 Traffic Steering으로구현.• Bottleneck은 L3 이기때문에 L3는 Whitebox로 HW 포워딩

쿨클라우드프리즘

Cheap Whitebox Switch


A

A

A

A

Dedicated SDN Controller

IPS

FW

LB

RT

Slice 1

Internet

Slice 2

Slice N

IPS

FW

LB

RT

IPS

FW

LB

RT

Internet

Internet

L

R(CP) M

DPI

FW FW

R(DP)

22

• 쿨클라우드프리즘과 COTS 서버, Whitebox 스위치를연동해캐리어급(L4-L7 기능통합된) 서비스라우터제작가능• 서버 1대당가상 L3 라우터 100개생성가능• SDN제어기의분산기능사용시최대 100대의제어서버연동가능• SDN 제어기당최대 4000+개의라우터포트생성가능• 1.2 Tbps Whitebox Switch 60대통합가능 (72 Tbps Throughput)

쿨클라우드프리즘



A

A

A

A

Dedicated SDN Controller

23

: SDN Based Middleware for open networking

PRISM 장점 #1 –관리의간결성(Simplicity)


KulCloud Prism


SDN 기반의중앙집중관리구조

리눅스환경프로비저닝

단일제어평면도메인다수의스위치로구성된싱글라우터관리

Pr-vlan100

10.1.1.254/24

Pr-vlan101

10.1.2.254/24

BGP 100

24


PRISM 장점 #2 –성능(Performance)


KulCloud Prism


모든포트 Full Line Rate

모든패킷사이즈 Full Line Rate

최소 Latency

최대 60Tbps 처리용량Broadcom 칩기반 Whitebox 스위치 1.2Tbps 기반

10us 미만의 Flow write 속도

25


PRISM 장점 #3 –신속성 (Agility)


KulCloud Prism


3rd Party 애플리케이션 on-boarding

Future-proof design 구조지속적으로간단히업그레이드가능

애플리케이션 Plug-n-Play 기능

Routing Suite Automation Monitoring

26


PRISM 장점 #4 –안정성(Stability)

SPOF 해결을위한이중화구조

제어평면이중화구조1s 미만의Master/Slave transaction time

전송평면에서의최상의fail-over 기능지원

Leaf spine 토폴로지구조에서의 0.5ms 미만의fail-over time


KulCloud Prism


KulCloud Prism

Master Slave

*SPOF : Single Point Of Failure

27


PRISM 장점 #5 – CAPEX/OPEX(가격)


KulCloud Prism


레거시장비대비 3배의비용절감

Rich 리눅스오픈소스애플리케이션생태계구조

손쉬운인스톨/언인스톨

PAYG(Pay As You Go) 비용모델기존대비장비기능사용효율성증대

Linux 프로비저닝

* 3 year costs for 250-Branch WAN

Item Traditional SD-WAN Savings

Router Capex $1,000,000 $250,000 75%

Router Maint/Support $180,000 $150,000 17%

Staffing OpEx $105,000 $52,500 50%

$1,285,000 $452,500 65%Total: *출처: Gartner, 2015

28


PRISM 장점 #6 – Customization(커스터마이징)

순수국산기술기반

로컬 Support 지원

다수의 PoC 를통한커스터마이징역량보유

국내최초 1.3 SDN 제어기수출및기술지원중

LTE 서비스체이닝 Poc

PRISM을활용한오픈스택데이터센터기반메트로망서비스오케스트레이션 PoC

다수의 WhiteBox 솔루션벤더와의 PoC


Key Highlights:• SDN 소프트웨어를이용해데이터센터의전체네트워크가두개의라우터로보이게만듬

• 개별장비를일일이관리할필요없이통합관리.

• 라우터를관리하던기존인력이손쉽게데이터센터망도관리

• Cluster analytics & visibility• Elastic increase/decrease of cluster

size

MPLS/VPN Internet

Layer 3 eBGP

Layer 3 OSPF

PRISMController

Any vendorGatewayNetwork

APIs

L2/L3 EdgeCluster

L2 OverayTunnels

: Data Center usecase

KulCloud Prism을사용해구성한오픈스택

30

PRISM Use Case – LSO service system

PRISM 기반데이터센터Scale out 라우터

SDN 기반데이터센터네트워크와메트로네트워크와의

유연한 L2/L3연동기능제공

MEF GEN15 PoC : Life Cycle Orchestration of SDN Managed Data Center and CE 2.0 WAN Network

WhiteboxSwitches(Leaf)

PRISM(HA)

L2 switch(Spine)

Whiteboxswitches(GW)

*출처: https://www.gen15.com/index.php/Venue/networking-hall-proof-of-concept.html

31

PRISM Use case – Scale Out Router

1

PRISM

Router

Controller

2

PRISM

Router

Controller

m

3

L2 Switch

PRISM

Router

Controller

4

L2 Switch

L2 Switch

PRISM

Router

Controller

White Box Switch

: Scale Out RouterKey Highlights:• High CAPEX/OPEX• Scalable archtiecture. Just add switch• Simple management. Just one router


DemoFriday

33

Kulcloud Demofriday Overview

33

: Scale Out Router + Data Center

*Kulcloud Demo Friday : https://www.sdxcentral.com/articles/featured/prism-kulcloud-demofriday/2015/12/?utm_source=sdnc_post_top&utm_medium=link&utm_campaign=links&utm_content=white-box

• Non-intrusive, multi-vendor, and completely open approaches to network disaggregation

• Scale-out routing to accelerate OpenStack Neutron using off-the-shelf components

• Simplify management with innovative FBAAS (DC Fabric as a Server) management model

• Explore use cases of SDN to deliver complex features like MLAG, dynamic routing, policy-based bandwidth throttling, and wide area network (WAN) integration

• The simplicity of application cloud bursting with SDN powered network

https://www.sdxcentral.com/articles/featured/prism-kulcloud-demofriday/2015/12/?utm_source=sdnc_post_top&utm_medium=link&utm_campaign=links&utm_content=white-box

Noviflow (10.1.100.55)(superuser/noviflow)

1

17

Public Cloud (Simulation)

10.10.10.0/24

PRISM

CLOS

10.1.100.21(sjain/abc123)

Cloud bursting Test-Bed

Topology

AS

2

Pica8-2 (0x4f) 10.1.210.33 admin/password

18 1917

18 19

Pica8-1 (0xca) 10.1.210.32 admin/password

eth0 eth1

eth3

eth1 eth2

eth3Lagopus-1kulserver2 (0xdd) 10.1.100.113 jyyang/yjy1234

17

18

Lagopus-2kulserver4 (0xcc) 10.1.100.31 kulcloud/kulcloud

20.20.20.0/24

em2 em2

CLOS

Router

(user :

demo)

16

pr-vlan100 - 11.11.11.1/24- prbond1.100

- pr-ca-eth19, pr-4f-eth19pr-vlan156 – 20.20.20.1/24

- pr-k2-eth3.156- pr-k4-eth3.156

pr-vlan199 – 10.10.10.1/24- pr-k2-eth3.199- pr-k4-eth3.199

pr-vlan3 – 3.3.3.1/24- pr-ca-eth48.3

- pr-ca-eth48

PRISM

Gateway

10.1.100.46Kulcloud/kulpass@123

prvlan100 - 11.11.11.2/24- prbond1.100

- prbond1- pr-s1-eth3- pr-s1-eth4

prvxlan51– 51.51.51.1/24- pr-s1-eth1

pr-s1-eth1 – 1.1.1.1/24

ISP

CE Router

(user :

demo)

kulserver410.1.100.31 kulcloud/kulcloud

prvxlan51– 51.51.51.2/24- eth6

eth6 – 1.1.1.2/24

AS

1

OSPF

Peering

Area 0 eBGP

Peering

48

kuldev-server

eth3

3.3.3.0/24.2 .1

20 <-> 2133 <-> 34


Thank you.


Our Contact Details

+82-70-4354-1830

[email protected]

www.kulcloud.com

www.openmul.org

Technology

[OpenStack Days Korea 2016] Innovating OpenStack Network with SDN solution