Title or Title Event/Date Presenter, PresenterTitle, Internet2 SDX’s & the Internet2 Innovation Platform To keep our community at the “tip of the spear”, how can we support the evolution of SDX’s? Rob Vietzke -Vice President, Network Services Eric Boyd - Senior Director, Strategic Projects

The Community’s Network Story (2014) Abundant Bandwidth / 100G+ Deeply Programmable (Native OpenFlow) Support for Data Intensive Science (Science DMZ) Interconnected with public Internet Supports production quality & disruptive innovation Open for your innovation! Provides production & innovation platform to: Dozens of high performance compute clusters Hundreds of campus data centers Potentially thousands of SDN ports Hundreds of wireless access networks Thousands of researchers Millions of potential collaborators

Internet2 operates several IXPs & Collaborates Internationally – MAN LAN with NYSERNET / WIX with MAX – Singapore Facility with Singaren – ANA-100G with ESNET, CANARIE, NORDUNET, SURFNET, GEANT – Soon: AGE-OX w/ Ankubut in Fujarah, UAE None are currently “SDXs” However … Internet2 operates a backbone network … – Interconnects Starlight, AMLIGHT, Pacific Wave, MANLAN, WIX – Interconnects public exchanges too: Equinix, Telex, SIX, others – … which can also be viewed as a set of IXPs – … which can also be viewed as a single distributed IXP The backbone network is built on an SDN substrate, arguably making it a set of SDXs Internet2 and SDXs

Internet2 Fiber Footprint

Growing Use of AL2S

Innovation Platform Petabytes per month

April, 2012: Announce intent to build AL2S on SDN October, 2012: AL2S is launched March, 2013: AL2S becomes heterogeneous April, 2013: Innovative Applications Contest Launched August, 2013: Begin migration of AL3S over AL2S November, 2013: Innovative Applications Demo’d December, 2013: AL2S supports Multpoint VLANs March, 2013: FlowSpace Firewall debuts June, 2014: AL2S supports network virtualization Timeline

10 – © 2013 Internet2 GOLD SILVER BRONZE 2013 Internet2 Innovative Application Awards Projects include: Video streaming BGP routing over OpenFlow SDN for Exchange Points GENI integration

Scientist – Request: “I want to transfer data and do compute / storage between this set of endpoints with this flow pattern” – Answer: “You should use the FTP service” (or “You should videconferencing service” or “You should use broadcast service”, etc.) Middleware Builder – Request: “I want to build an FTP Service” – Answer: “You should use the Compute service, the Storage service, and the Network Service in these configurations” Network Operator – Request: “I want a VLAN between these two points” or “I want to control switches along this path” Service Levels – Which is the SDX?

Basic components – SDN Switches – Controller – Virtual Machines and/or compute/storage Challenges – Compelling applications – Programming abstractions – Scalable operations – Realistic deployment & Willing SDN peers – Analytics & Measurement – Moving bilateral pilots to multidomain operations What is an SDX?

Includes one or more SDN-enabled Switch(es) – Standards compliant / not built on proprietary vendor extensions Controlled by one or more SDN controllers – Must enable user-supplied controllers (virtual IXPs or virtual networks) Platform for Innovation – Built on open source, standards-compliant software – Operationally transparent – Enables next generation of application design Robust and scalable – Backed by an integrated test harness (software stack is complicated) – Nationwide / global footprint – Availability must exceed standard for traditional Layer 3 networks Measurable – perfSONAR & Analytics – Operationally manageable Internet2 definition of an SDX

AL2S has been operating for nearly 2 years Connectors include regional networks, campuses, etc. Anyone who can reach AL2S can exploit its SDX-like functionality AUP Free Internet2 SDX

Identify trust, user authentication, resource use authorization issues – Leverage Community trust (InCommon) – Interdomain provisioning Daisy chain models do not scale Certificate-based approaches have regular expiration problems – Modular architecture Enables innovation Multiple opportunities for attack Multiple opportunities for resource overconsumption Workshop Charge (1)

Identify interoperability issues and testing strategies for different models – Multiple (subtly different) approaches to multi-tenancy (Flowvisor, Flowspace Firewall, OVX, etc.) – Multiple approaches to integrating compute and storage resources – Monitoring software is common (perfSONAR), but what to test is still being discussed – Running a robust SDX requires multiple levels of software (Vendor implementation of OF, Multi-tenancy solution, Controller, Application, Interdomain Stitching) which requires a test harness, automated test software, etc. Workshop Charge (2)

Specify a staged set of research and prototyping activities needed to properly understand and realize these models in practice – Environment(s) to evaluate vendor implementations – Environment(s) to evaluate multi-tenancy implementations – Environment(s) to evaluate controllers – Environment(s) to evaluate cloud integration Workshop Charge (3)

Provide a strawman plan, with level of effort needed, for experimenting with a national scale SDX prototype deployment – Knit together Internet2 solution with several (3-4) implementations at traditional IXPs – Can we create a solution where someone who arrives at MAN LAN / WIX / AMLIGHT / STARLIGHT (for example) can Deploy a controller across a multiple partner slice Integrate with GENI Racks on 3-4 campuses Stand up a prototype service (e.g. prototype research network without routers) Integrate with OpenStack Workshop Charge (4)

Title or Title Event/Date Presenter, PresenterTitle, Internet2 SDX’s & the Internet2 Innovation Platform To keep our community at the “tip of the spear”, how can we support the evolution of SDX’s? Rob Vietzke -Vice President, Network Services Eric Boyd - Senior Director, Strategic Projects