OpenFlow -Enabled Hybrid Cloud Services Connect Enterprise And Service .
OpenFlow -Enabled Hybrid CloudServices Connect Enterprise andService Provider Data CentersONF Solution BriefNovember 13, 2012
O N F S O LU T I O N B R I E FOpenFlow-Enabled Hybrid Cloud Services Connect Enterprise and Service Provider Data CentersTable of ContentsCHALLENGES2OpenFlow-Enabled Software-Defined Networking2Executive Summary3Hybrid Cloud – the Next Generation4The High Cost of Overprovisioning5OpenFlow-Based SDN Solves for Mission-Critical Cloud Connectivity8Key Benefits9Conclusion9ContributorsOpenFlow-Enabled Software-Defined NetworkingENTERPRISEIn a broad industry effort spearheaded by the Open Networking Foundation·· Escalating IT operating expense versusdeclining per-user budgets(ONF), Software-Defined Networking (SDN) is transforming outmoded·· Pressure on mission-critical dataprotection compliance, businesscontinuance, and operational recoverytimesCARRIER·· Weakening wireline revenues andprofitability·· Growth of cloud service availabilityfrom over-the-top (OTT) providers,versus the dearth of new carrier serviceofferingsSOLUTIONS·· OpenFlow-based SDN hybrid cloudfederation provides enterprises withself-provisioned transaction-awaredata center inter-connect capacitywith secure access to cloud provider’smulti-tenant Infrastructure-as-a-ServiceBENEFITSENTERPRISE·· Bandwidth-on-demand for timely,higher capacity inter-data centerworkload migration and processing,minus the burden of costly highcapacity fixed private line accessCARRIER·· Faster time-to-market and adoptionof new, cost-optimized hybrid cloudservices, and provisioning automationof responsive bandwidth-on-demandnetwork designs by decoupling the control and data forwarding planes,centralizing network intelligence and abstracting applications from theunderlying network infrastructure using the OpenFlow standard.As a result of this effort, enterprises and carriers will gain unprecedentednetwork programmability, automation, and control, enabling highly scalable,flexible solutions that readily adapt to changing business needs.Executive SummaryTraditional network architectures are not easily adapted to today’s fastchanging and demanding enterprise and carrier business requirements.While enterprise IT organizations face increasing pressure to reduce costs,often by way of infrastructure consolidation, carriers confronted with waningrevenues need service offering innovation to attract greater numbers ofenterprise customers seeking optimized services at reduced cost.A decade of consolidation has demonstrated how compute and storagevirtualization can dramatically reduce capital investment in enterprise IT,doing more with increasingly dense resources.However, these changes were focused on data center server and storagevirtualization, while the underpinning network architectures have stagnatedwith respect to both scalability and manageability. Networking innovationinertia has become increasingly problematic as the role of virtualization hastransitioned from simple consolidation, to the aggregation of data centercompute, storage and connectivity resources into a shared, but privatecloud of services. These so-called private clouds have evolved to becomeagile providers of on-demand services to internal corporate customers. Open Networking Foundation. All rights reserved.2 of 9
O N F S O LU T I O N B R I E FOpenFlow-Enabled Hybrid Cloud Services Connect Enterprise and Service Provider Data CentersDriven by business growth, mobility and the advent of Big Data, there is anew priority to intermittently augment private clouds with external resourcesknown as provider-hosted, or public clouds. This in turn necessitatesbetter connectivity between enterprise data centers and provider datacenters — new and better ways to network private and public clouds.The resulting 'hybrid' cloud infrastructure should easily provide transferand sharing of data, or mobility of the applications working on that data, tosupport business and IT operations with scalability on demand.Hybrid Cloud – the Next GenerationOpportunities have been created for OpenFlow-based SDN to helporganizations build more deterministic, more scalable and moremanageable virtual networks that extend beyond enterprise on-premisesdata centers or private clouds, to public IT resources that offer scale-ondemand to cost-conscious enterprise customers, while ensuring highernetwork efficiency to carriers seeking to improve their service profitabilityby provisioning more services, with fewer, better-optimized resources.Hybrid cloud, where private meets public cloud, lets enterprises benefitSERVICE PROVIDER CATEGORIESfrom service provider economies of scale and scope, to lower their cost·· Provide data center cloud servicesthrough their own data centers (e.g.Amazon, Terremark, Rackspace)and improve application performance, resiliency and IT responsiveness.·· Provide data center cloud servicesthrough their own networks (e.g.Verizon, ATT, NTT)be as complex as automated compute and storage capacity expansion·· Provide pure network services withoutdata center cloud services (e.g. Level3,AboveNet)At its simplest, this may come in the form of Storage-as-a-Service, or it maywith intelligent placement of virtual machines into the cloud provider'sgeographically distributed data centers, resulting in distributed workflowprocessing among the public and private, or on-premise data centers.To enable a range of hybrid cloud use-cases, there are four basic inter-datacenter, machine-to-machine functional building blocks: Storage Migration — making a copy of the data store in the enterprisedata center and transferring the file(s) to the provider data center, eitheras backup, or as a precursor to active-active replication. Active-Active Storage Replication — keeping a data store in boththe enterprise and provider data centers consistently synchronized, bywriting through cache simultaneously to both locations. Virtual Machine Migration — transferring the CPU state and memoryimage of one or more applications running on virtual machines,from a server in the enterprise data center to one in the provider Open Networking Foundation. All rights reserved.3 of 9
O N F S O LU T I O N B R I E FOpenFlow-Enabled Hybrid Cloud Services Connect Enterprise and Service Provider Data Centersdata center, allowing dynamic server capacity expansion, or evenfundamental business continuity through Active-Active data center orapplication failover. Distributed Virtual Application — communications between thevirtual components that comprise a particular application instancesuch as between virtual machines or between a virtual machine and itsassociated data store, such as when web and application servers areplaced in the cloud, but the database server is secured in the enterprisedata center to ensure regulatory compliance.These functions place demands on the hybrid cloud inter-data centernetwork that must now support data transfers of 1 to 10 terabytes in as fewas 1 to 10 hours, with roundtrip latencies of as few as 5 milliseconds, and apacket delivery ratio of 99.999% or better; essentially lossless.As a result, meeting hybrid cloud bandwidth and latency demands,particularly those related to enterprise business continuity and disasterrecovery, currently requires enterprises to lease high-capacity fixed linksfrom network providers.The High Cost of OverprovisioningDuring the storage or virtual machine migration transactions at thebeginning of a cloudburst into the provider cloud, bandwidth of 1 to 10gigabits per second will generally be required. However, for the remainderof that IaaS instance life-cycle, much lower bandwidth, rarely exceeding200 megabits per second, is required.Currently, enterprises must contract for over-provisioned fixed capacity tomeet the multi-gigabit peaks, which results in costly, underutilized capacityduring sustained quiescent periods. Conversely, if they contract for underprovisioned capacity to meet lower cost targets, they risk protractedcloudburst operations that may even require physical shipment to get adata store into the cloud, and an inability to migrate live virtual machineswithout application interruption.When forced into this no-win decision, IT can opt to over-provision toavert internal customer dissatisfaction or outright breach of SLAs withpotential external customer loss — and this eliminates the hybrid cloudsolution for the many enterprises that simply can’t afford the high costof overprovisioning. Open Networking Foundation. All rights reserved.4 of 9
O N F S O LU T I O N B R I E FOpenFlow-Enabled Hybrid Cloud Services Connect Enterprise and Service Provider Data CentersCarriers have continued to limit their offers to fixed-capacity servicesbecause the manually managed, detailed configuration of traditional circuitswitched optical environments coupled with the lack of comprehensiveconnection admission control necessary to dynamically and reliablyadjust committed information rate for virtual circuit switched Ethernetenvironments, has made remote provisioning anything but dynamic,increasing the complexity and cost of providing a flexibly-priced dataconnection service, and introducing delay between the user request andthe delivered service.While the traffic on the leased connection may be well below maximumcapacity, the service provider has no automated mechanism to orchestratethe network to leverage available bandwidth and offer it to other customers.However, with the option to automatically provision, adjust and de-provisionservices, carriers could grow their revenues by coupling that capability witha pricing structure to meet enterprise requirements with greater diversity.Correspondingly, enterprises could more easily adopt a hybrid modelwhere dynamic network capacity was automatically or self-provisioned ondemand, and priced accordingly.DEMYSTIFYING FABRICSFabrics are topologies often illustratedas a mesh due to the high density ofconnection paths required to ensurea set of connectivity characteristicsbetween nodes. These characteristicsinclude deterministic – for predetermined path selection prior totransmission; multipath – wherealternate paths are available; selfhealing – where high failure rate pathsdrop to continuous test mode, and arerestored automatically as the failurerate falls; lossless – where frame arrivalis guaranteed; low latency – wheretransmission incurs the least delay; andso forth.Originating with the crossbar switchfabric, Fibre Channel popularized thefabric moniker by meshing crossbarswitches to provide the abovecharacteristics to storage networks.Ethernet fabrics are becoming morecommon in the data center since DCBXstandards (ETS/ PFC) were adoptedin Ethernet switching silicon, howeverclassic Ethernet cannot assure theabove behaviors.OpenFlow-Based SDN Solves for Mission-CriticalCloud ConnectivitySoftware-Defined Networking with OpenFlow provides the frameworkand tools to enable dynamic enterprise-provider data center inter-connectcapacity that matches, and is directly driven by, the cost-benefit ratio ofhybrid cloud service fulfillment. At a high level, the key solution elementsshown in Figure 1 are: OpenFlow-enabled cloud backbone edge nodes that connect to theenterprise and cloud provider data center fabrics, and OpenFlowenabled cloud backbone aggregation and core nodes which efficientlyswitch traffic between those edge nodes an OpenFlow-based SDN controller to configure the flow forwardingtables in those cloud backbone nodes, and supporting a networkvirtualization application (aka WAN hypervisor) to allocate the sharednetwork resources among those nodes Open Networking Foundation. All rights reserved.Hybrid cloud operations and orchestration software to manage theenterprise and provider data center federation, inter-data centerworkflow, and compute/storage and inter-data center networkresource alignment5 of 9
O N F S O LU T I O N B R I E FOpenFlow-Enabled Hybrid Cloud Services Connect Enterprise and Service Provider Data CentersFIGURE 1The enterprise private cloud in data center A is connected to two regional data centers in aservice provider’s public cloud, forming an enterprise-service provider hybrid cloud. Note thatthe data center networks are high-availability ‘fabrics’ that provide multipath, deterministic,guaranteed latency connections required by storage or compute clusters. The OpenFlowcontroller provides fabric ‘continuity’ across the regional optical network, ensuring alldeterministic networking characteristics are maintained within the hybrid cloud to satisfy boththe synchronous storage connections (Fibre Channel or 10GbE) or the 10 Gbps EthernetVirtual Private Line connections used for asynchronous storage.For an enterprise that signs up for hybrid cloud service, in the course oftheir IT operations there will be events that precipitate the advantageousmovement of data store, virtual machine, inter-machine messaging and/orstorage update traffic between physical servers and storage devices in theirdata center and those in the cloud provider’s data center (refer back to thehybrid cloud functional building blocks above).This workload movement can be triggered explicitly through a userportal or automatically from IT performance monitoring and workloadbalancing software.Both approaches initiate transactions by plugging into the hybrid cloudoperations and orchestration software that resides in the cloud provider’soperations center and communicates with an associated client modulein the enterprise (either provider-supplied or based on Open Data CenterAlliance open standards). Open Networking Foundation. All rights reserved.6 of 9
O N F S O LU T I O N B R I E FOpenFlow-Enabled Hybrid Cloud Services Connect Enterprise and Service Provider Data CentersTHE STORAGE MIGRATION USE CASEThrough orchestration software and domain hypervisors, virtual resourceApplication mobility has become astaple of cloud orchestration. However,as mobility has introduced networkingcomplexity, the challenge of maintainingthe tight coupling of distributedapplications with the large volumes ofdistributed data they create has becomea new and insistent priority.capacity is allocated on specific physical devices in the providerTraditional network architectures arenot well adapted to facilitate intermittentrelocation of terabytes of applicationdata, slowing or even preventing datamigration over distance, and making theadvantages of orchestration unattainablefor large applications with unwieldy datasets. As a result, many large enterpriseapplications have remained immobileand inefficient.The nature, magnitude and time constraint for completing the workload willSoftware-defined networks basedon OpenFlow are essential tofacilitate efficient application anddata orchestration, and to extend therange and flexibility of private cloudsbeyond the confinement of a singledata center. This simplifies enterpriseconnectivity between their remote datacenters, letting them more easily formhybrid clouds with service providerinfrastructure.data center.The network addresses of the source and destination host devices and thevirtual compute and storage resource instances can be used to uniquelyidentify the inter-data center flow to transfer the workload.dictate the inter-data center bandwidth and QoS required for the flow.SDN enables the network to be dynamically configured to identify andaccommodate this composite flow specification. The orchestration softwarecommunicates with the network virtualization application to request ornegotiate for the bandwidth required between the two data centers tohandle the uniquely identified flow.APPLICATION LAYERBusiness ApplicationsAPICONTROL LAYERIn an OpenFlow-enabled softwaredefined network, hybrid cloud servicescan orchestrate the migration ofapplications and data in partnershipwith a virtualized network, leveragingavailable storage replication or mirroringservices. In this way, the network can beautomatically programmed to providethe services required for the storagereplication or migration service to workin conjunction with — and remain tightlycoupled to — the application migration.An OpenFlow-enabled network bringsintelligence to connectivity virtualization,so that when physical resourcesnecessary to complete data migrationper the expected service level are notimmediately available, the OpenFlowcontroller can suggest, schedule orautomate resource availability to meetservice levels based on pre-definedpolicies. The hybrid cloud orchestratorcan then initiate the migration servicewhen the OpenFlow controllerannounces resource availability.NetworkServicesAPIAPINetwork ServicesINFRASTRUCTURELAYERFIGURE 2Software-Defined Network ArchitectureBased on its global view of resources, if the requested resources areavailable and if the request adheres to the policy administered for thiscustomer, then the underlying OpenFlow controller will use OpenFlowprotocol messages to configure the fabric-facing ports of the cloudbackbone edge node to admit and police the flow and schedule theassociated packets in accordance with the flow specification to ensure thenegotiated bandwidth and QoS. Open Networking Foundation. All rights reserved.7 of 9
O N F S O LU T I O N B R I E FOpenFlow-Enabled Hybrid Cloud Services Connect Enterprise and Service Provider Data CentersThis may be replicated at the cloud backbone aggregation and corenodes, or the traffic may be encapsulated and forwarded by the cloudbackbone edge node into a preconfigured tunnel for tunnel switching bythe aggregation and core nodes.APIs enable ‘northbound’ messaging between the OpenFlow controller andthe Cloud Orchestration, as shown in Figure 1, so that once the flow hasbeen provisioned, notification is sent back to the orchestration softwareto initiate the inter-data center workload movement. When the transactionis complete the orchestration software will request the connection to betorn down and OpenFlow will remove that flow table entry from the cloudbackbone nodes and the network virtualization application will provideevent messages or statistics to the billing system.Throughout the operation the network controllers use information aboutthe current network usage to load balance links in the service providernetwork, ensuring that all data center tenants are receiving the servicecharacteristics they require and that all network links are being used asefficiently as possible.1. Optical transport networks arecurrently controlled using extensionsto OpenFlow (shown as OTN/ λ inFigure 1) that are not included inthe OpenFlow 1.0 release, but arein consideration for a future releaseby the Extensibility Working Group,tasked to maintain the core of theOpenFlow switch specification.The efficient use of available link bandwidth allows service providers tomaximize the bandwidth available for purchase by customers, improvingtheir service offering while ensuring all SLAs are honored.1Key BenefitsThere are general advantages to be realized by organizations that adoptOpenFlow-enabled software-defined networking as the connectivityfoundation for private and hybrid cloud connectivity.A logically centralized SDN control plane will provide a comprehensive viewof data center and cloud resources and access network availability and thiswill ensure cloud-bursts are directed to adequately resourced data centers,on links providing sufficient bandwidth and service levels.Openness Drives Enterprise Cost OptimizationOpenFlow-enabled SDNs will facilitate multi-vendor networks betweenenterprise and service provider data centers, helping enterprise customers to choose best-in-class vendors, while avoiding vendor lock-in choose from a wider variety of access technologies (e.g. DWDM, DSL,HFC, LTE, PON, etc.) Open Networking Foundation. All rights reserved.8 of 9
O N F S O LU T I O N B R I E FOpenFlow-Enabled Hybrid Cloud Services Connect Enterprise and Service Provider Data Centers EXTENDING THE OPENNETWORKOpenFlow standardization hasfocused to date on the packetinfrastructure. Other layer networksmay be supported in an SDNenvironment — i.e., one featuring acentralized control layer — throughclosed-system application of existingtechnologies.However, continued evolutionof the OpenFlow standard mayextend open interface support tothose additional technology andinfrastructure layers which are criticalto the WAN. Such developmentswould extend the utility and benefitsof OpenFlow-based SDN to thefull suite of layer technologies andservices associated with end-to-endcloud interconnect services.access dynamic bandwidth for agile, timely inter-data center workloadmigration and processing ease or eliminate the burden of underutilized, costly high-capacity fixedprivate line leasesOpenness Drives New Service CreationOpenFlow-enabled SDNs will help carriers and service providers to free upand market underutilized bandwidth with differentiated services. OpenFlowenablement ultimately will result in faster time-to-market for new services with an accelerated adoptioncycle and attach rate more competitive positioning through SDN-enabled bandwidth-ondemand services and more dynamic response to infrastructure andapplication demands provisioning automation and intelligence driven by cloud serviceorchestration logic improved customer retention through value-added hybrid cloud servicesConclusionThe promise of OpenFlow-enabled Software-Defined Networking is that itwill allow innovation to supersede the stagnation of networking technology,and this in turn will transform IT, making it more resource-efficient and moreresponsive to the needs of the enterprise and service provider alike.ContributorsMitch Auster, EditorNabil DamounyJohn HarcourtOpen Networking Foundation / www.opennetworking.orgThe Open Networking Foundation is a nonprofit organization founded in 2011, whose goal is to accelerate the adoption of open SDN.ONF emphasizes the interests of end‑ u sers throughout the Data Center, Enterprise, and Carrier network environments.Open Networking Foundation, the ONF symbol, and OpenFlow are registered trademarks of the Open Networking Foundation, in the United Statesand/or in other countries. All other brands, products, or service names are or may be trademarks or service marks of, and are used to identify,products or services of their respective owners. Open Networking Foundation. All rights reserved.9 of 9
hybrid cloud service fulfillment. At a high level, the key solution elements shown in Figure 1 are: OpenFlow-enabled cloud backbone edge nodes that connect to the enterprise and cloud provider data center fabrics, and OpenFlow-enabled cloud backbone aggregation and core nodes which efficiently switch traffic between those edge nodes
OpenFlow Switch Specification OpenFlow Switch Specification,Version 0.8.1 (Draft) The standards document that describes the protocol that is used between an OpenFlow Switch and the OpenFlow Controller. Cover the components and the basic functions of the switch, and the OpenFlow protocol to manage an
2 OpenFlow Evolution OpenFlow protocol have evolved during ONF's standardization process, from version 1.0 where there are only 12 fixed match fields and a single flow table to the . services for applications such as IP telephony and video streaming. To implement QoS in OpenFlow switches[13], OpenFlow 1.0 provides an optional "enqueue .
lated environment to this end, such as the Network Simu-lator 3 (ns-3) [6]. It is a discrete-event simulator, targeted primarily for research and educational use, and distributed as free software. ns-3 simulations can model OpenFlow switches via the existing OpenFlow module [7], which re-lies on an external OpenFlow switch library linked to the
Private Cloud Public Cloud VMware vCloud: Shared, Unified Cloud Management Orchestration Compute Network Storage VMware vCloud Air VMware EMC Channel Partners EMC, Vblock, VSPEX EMC Hybrid Cloud EMC Hybrid Cloud The Only Complete, Engineered, hybrid cloud solution Deliver a Hybrid Cloud that leverages your existing infrastructure
Linux OpenStack Platform Management GUI Network Application Orchestration & ServicesServices OpenStack Neutron NTN Coordinator OpenDay Light API's (REST) OVSDB NETCONF LISP BCP PCEP SNMP OpenFlow OpenFlow Enabled Devices Additional Virtual & . specifying action
SDN/OpenFlow. SDN/OpenFlow. NBI. SGW-C App. SDN/OpenFlo w. Split protocol stack along transport and adaptation/termination functions. Define a hierarchy of reusable proxy OpenFlow controllers acting as datapaths to the north and controllers to the south. A controller may occupy resources
FlexPod Hybrid Cloud for Google Cloud Platform with NetApp Cloud Volumes ONTAP and Cisco Intersight TR-4939: FlexPod Hybrid Cloud for Google Cloud Platform with NetApp Cloud Volumes ONTAP and Cisco Intersight Ruchika Lahoti, NetApp Introduction Protecting data with disaster recovery (DR) is a critical goal for businesses continuity. DR allows .
GHAMI Asia HARRIS GHAVIMI HARTLEYClarita GIL Maria GIRMA Turufat GOMES Marcio GOMEZ Luis GOMEZ Jessica GOMEZ Marie GOTTARDI Giannino GORDON Natasha GREAVES Cynthia GREENWOOD Peter GRIFFIN Daniel HABIB Assema Kedir HABIB Fatuma Kedir HABIB Jemal Kedir HABIB Merema Kedir HABIB Mehammed Kedir HABIB Mojda HABIB Shemsu Kedir HADDADI Rkia HADGAY Ismal HAKIM Hamid HAKIM Mohamed HAMDAN Rkia HAMDAN .
