Ключевые тенденции отрасли в последнее время
DESCRIPTION
Презентация для доклада, сделанного в рамках конференции Juniper New Network Day 01.01.2014. Докладчик -- Systems Engineering Director компании Juniper Networks Uwe Richter. Видеозапись этого доклада с онлайн-трансляции конференции вы можете увидеть здесь: http://www.youtube.com/watch?v=0IsRX_t87DcTRANSCRIPT
![Page 1: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/1.jpg)
NEW NETWORK DAY. КЛЮЧЕВЫЕ ТЕНДЕНЦИИ ОТРАСЛИ
В ПОСЛЕДНЕЕ ВРЕМЯ. Moscow, 1st April 2014
Uwe Richter, SE Director RESE
![Page 2: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/2.jpg)
2 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
WHAT IS HOT IN 2014 ?
SDN M2M LTE Cloud
NFV
![Page 3: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/3.jpg)
3 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
Network Function Virtualization (NFV)
![Page 4: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/4.jpg)
4 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
EVOLUTION OF VALUE ADDED SERVICESIN OPERATOR NETWORKS
L3 Network Services• Business Edge (L3VPN)• Consumer Edge (Broadband)• Mobile
Value Added Services• Physical L4-L7 Services• Security (Firewall, IDS, IPS, ...)• Optimization (Caching, WAN Acc, ...)• Other services (IMS, EPC, ...)
Virtualize Services• Introduce NFV and SDN• Reduce cost• Increase agility
ContrailFirefly
MX
SRXMS-DPCSCG
![Page 5: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/5.jpg)
5 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
HOW THE OPERATORS SEE IT – EXTRACT FROM THE PAPER - QUOTE:-
“Network Functions Virtualisation aims to address these problems by leveraging standard IT virtualisation technology to consolidate many network equipment types onto industry standard high volume servers, switches and storage, which could be located in Datacentres, Network Nodes and in the end user premises. We believe Network Functions Virtualisation is applicable to any data plane packet processing and control plane function in fixed and mobile network infrastructures.
We would like to emphasise that we see Network Functions Virtualisation as highly complementary to Software Defined Networking (SDN). These topics are mutually beneficial but are not dependent on each other. Network Functions can be virtualised and deployed without an SDN required and vice-versa.”
![Page 6: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/6.jpg)
6 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
Service Chain
DPIDPI DPIDPIDPIDPIDPI
NFV + SDN
Juniper and Third Party Virtual Network FunctionsNFV: virtualize network functions
Firewall IDPCache
Contrail Service ChainingSDN: dynamically program network to create service chains
NATAnchorRouter
![Page 7: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/7.jpg)
7 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
Juniper's NFV Implementation:
Contrail and VNFs
![Page 8: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/8.jpg)
8 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
CONTRAIL USE CASES
Public Cloud
Private Cloud Private Cloud
VPN VPN
WAN
Gateway
Access
Core
Cloud : Network Virtualization• Private Clouds, Public Cloud, and Virtual Private Cloud• Network Virtualization• Tenant and Application Policies• Network Function Virtualization and Service chaining• Rich Analytics
Cloud : Interconnect• Connect Private Cloud to Private Cloud (DCI) • Connect Private Cloud to Public Cloud (bursting)• Connect Campus to Private Cloud
Network Function Virtualization• Virtualize Network Functions• Service Chaining• Attach Service Chain to Physical Network• Application-Aware and Subscriber-Aware Steering• Rich analytics
![Page 9: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/9.jpg)
9 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
CONTRAIL USE CASES
Access
Core
Network Function Virtualization• Virtualize Network Functions• Service Chaining• Attach Service Chain to Physical Network• Application-Aware and Subscriber-Aware Steering• Rich analytics
Topic of today's presentation:NFV Use Cases
Same technology as Cloud use casesTightly integrated with Cloud use cases
![Page 10: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/10.jpg)
10 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
CONTRAIL FUNCTION:VIRTUAL NETWORKS
Virtual NetworksProvide isolation tenants, applications, or tiers within an application.
Physical location of virtual machine independent from logical location.
VM VM VM
GreenVirtual Network
VM VM VM
RedVirtual Network
VM VM
BlueVirtual Network
Bare Metal Server
![Page 11: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/11.jpg)
11 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
CONTRAIL FUNCTION: VIRTUAL NETWORK POLICIES
Virtual Network PoliciesAt a high level of abstraction, applied at the boundaries of virtual networks.
VM VM VM
GreenVirtual Network
VM VM VM
RedVirtual Network
Policy
only HTTPNAT
![Page 12: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/12.jpg)
12 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
CONTRAIL FUNCTION: SERVICE CHAINS FOR DATA CENTER TENANTS
Service ChainingPolicy based application of virtual and physical services with scale-out.
Firewall, Intrusion Prevention, Load balancer, Cache, WAN optimizer, proxy, ...
VM VM VM
GreenVirtual Network
VM VM VM
RedVirtual Network
VirtualService
IDS
VirtualServiceCache
PhysicalServiceFirewall
Policy
only HTTPNAT + IDS + Cache + Firewall
![Page 13: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/13.jpg)
13 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
CONTRAIL FUNCTION:SERVICE CHAINS FOR SERVICE PROVIDER NETWORKS
Access
Core
BusinessConsumerBroadband
Mobile
"Anchor" Service Chainto Edge Router
Edge Router
![Page 14: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/14.jpg)
14 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
CUSTOMER-SPECIFIC NFVS AND SERVICE CHAINSCOMMON FOR BUSINESS EDGE
Access
MPLS Core
BusinessMPLS L3VPN
ServicePE Router
Separate Service Chain and VNFs
for each customer.
Customer 1
Customer 2
Customer 3
![Page 15: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/15.jpg)
15 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
MULTI-TENANT NFVS AND SERVICE CHAINSCOMMON FOR CONSUMER / SOHO EDGE (WIRELINE AND MOBILE)
Access
MPLS Core
Subscriber-awareApplication-aware
Policy-drivenSteering
Scale-out multi-tenantService Chains and NFVs
"Gold" Service
"Silver" Service
![Page 16: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/16.jpg)
16 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
DYNAMIC STEERING
PCRF
ContrailController
SCG
PoliciesThousands per second
Data PacketsMillions per second
Service ChainsNew: once per month
Scale-out: once per day
![Page 17: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/17.jpg)
17 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
CONTRAIL SERVICE CHAIN IMPLEMENTATIONWITHIN THE CLOUD
VMG1
VMG2
VMG3
GreenVirtual Network
VMR1
VMR2
VMR3
RedVirtual Network
ContrailController
VMG
VMR
XMPP
CloudStackOpenStack
![Page 18: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/18.jpg)
18 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
CONTRAIL SERVICE CHAIN IMPLEMENTATIONFOR THE BUSINESS EDGE
ContrailController
OpenStackCloudStack
BGP + Netconf
XMPP
![Page 19: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/19.jpg)
19 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
CONTRAIL SERVICE CHAIN IMPLEMENTATIONIN THE GI-LAN WITH SERVICE STEERING
GGSN / PGW
SCG / TDF
PCRF
ContrailController
OpenStackCloudStack
Subscriber AwarenessLayer 3-7 ClassificationSteering Capabilities
![Page 20: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/20.jpg)
20 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
SERVICE CHAIN SCALE-OUT
Note: for simplicity, this example shows each service-instance on a separate compute node. In reality a single compute node can host multiple service instances.
Service Chain "Width"
Service Chain "Length"
For scale-outWidth varies per stepCan be changed using APIDynamic in future
For functionalityCan be changed using API
Currently only transparentservices support length > 1
![Page 21: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/21.jpg)
21 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
SCALE-OUT AND LOAD BALANCING
load balancing in
Physical Routerload balancing as
Virtual Serviceload balancing in
vRouter
Mechanisms
ECMP
Flow Tables
Consistent Hashing
Challenges
Scale and performance
Stickiness
Symmetry
![Page 22: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/22.jpg)
22 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
JUNIPER VIRTUAL SERVICE ENABLERSCURRENT AND PLANNED
Firefly Perimeter
Firefly Host
DDoS Secure
WebApp Secure
Pulse Secure Access
Pulse AUC Secure
Secure Analytics
Content Encore
Policy Control
Subscriber Aware
Web Aware
VM Firewall and Connectivity
Kernel Firewall and Visibility
Distribution Denial of Service Prevention
Web Application Security
SSL VPN
Unified Access Control
System Event and Log Correlation
Content Caching
Application-Aware Service Steering (on SDG with DPI)
Subscriber-Aware Service Steering (on SDG with PCRF / RADIUS)
HTTP Header Enrichment and Redirection (on service cards)
SERVICES FROM OTHER VENDORS (PARTNER OR NOT) ARE ALSO SUPPORTED
![Page 23: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/23.jpg)
23 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
Orchestration and Analytics
![Page 24: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/24.jpg)
24 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
GOAL: CUSTOMER SELF-SERVICE PORTALWITH FULLY AUTOMATED BACK-END
![Page 25: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/25.jpg)
25 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
REST APIS FOR AUTOMATING THE BACK-END WORK-FLOW
ConfigurationNodes
AnalyticsNodes
REST APIs
Contrail Controller
Service Data ModelHigh Level of Abstraction
Generates
Contrail GUI Orchestrators
![Page 26: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/26.jpg)
26 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
WHAT PART OF THE PROBLEM DOES CONTRAIL SOLVE?
GGSN / PGW
SDG / TDF
PCRF
ContrailController
OpenStackCloudStack
Manage
Service Chains
Manage
Virtual Machines
REST APIs
REST APIs
![Page 27: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/27.jpg)
27 Copyright © 2014 Juniper Networks, Inc. Presented at Juniper New Network Day in Moscow , 1st April 2014
THE ROLE OF END-TO-END ORCHESTRATION
Cloud Management
System
OpenStackCloudStack
ServerManagement
System
PuppetChef
VNF ElementManagement
System
Space Security Director
Data CenterSDN Controller
Contrail
NetworkManagement
System
Space Network Director
WANController
NorthStarWANDL
End-to-End OrchestrationServiceDeploymentWorkflow
Self-Service Portal BSS OSS
Access Edge Service Center / Data Center Core
APIs
![Page 28: Ключевые тенденции отрасли в последнее время](https://reader033.vdocument.in/reader033/viewer/2022061218/54b6d8d74a795994658b458f/html5/thumbnails/28.jpg)