Presentation is loading. Please wait.

Presentation is loading. Please wait.

© 2015 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.

Published byWesley Lloyd Modified over 8 years ago

Similar presentations

Presentation on theme: "© 2015 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual."— Presentation transcript:

1 © 2015 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual Property and/or AT&T affiliated companies. The information contained herein is not an offer, commitment, representation or warranty by AT&T and is subject to change Policy Architecture Discussion Bryan Sullivan AT&T Director, Domain 2.0 Architecture and Planning Open Source Strategy

2 Why this discussion (we need to talk…) Policy is a big subject, larger than Any one infrastructure manager Any one purpose Any one project We are very motivated to jump right in and fix things – good Our solutions may turn out to be multi-purpose – even better But if they don’t… 2

3 OPNFV Policy-Related Projects (draft: work in progress) ProjectFocusHigh-Level RequirementsUpstream Projects DoctorFault management and maintenance Immediate detection of physical resource outage, affected VNFs, take remediation actions Monasca CopperVI deployment policiesEnsure resources comply with generic and VNF-specific expectations Congress, Group-Based Policy ODL Group-Based Policy, Network Intent PromiseResource reservationReservation of resources for future use by a VNF Blazar PredictionData collection for future failure prediction Data collector, failure predictor, and failure management module Ceilometer Monasca Resource Scheduler Expands data available to resource schedulers Define resource goals, constraints, and policies; collect info to enable enhanced scheduling Nova, Neutron, Cinder, Ceilometer …. ? 3

4 Policy Architecture / Capability Goals Expressions of intent Variable scope for policies: generic, group-based, app-specific Events to be watched for: actions, states Speed of event discovery Actions to take: require, allow, deny, respond, log Distributed policy enforcement Policies are handled locally if possible Closed-loop policy systems are as “tight-looped” as possible Adaptation to local expressions and APIs Minimum number of expression transformations 4

5 Some Architectural Aspects to Be Considered Two high-level goals: deployment per intent, and adherence to generic policies Policies are distributed directly to VIM elements and through VNF/service orchestration Policies are applied statically and locally If possible, and initially thru tight closed-loop systems if needed Policies are localized as they are distributed/delegated Closed-loop policy and VNF-lifecycle event handling are somewhat distinct "open-loop" systems are also needed e.g. for audits and manual interventions, and machine-learning policy optimizations (future) 5

6 Some Issues to be Investigated Capabilities (e.g. APIs) of components to handle events locally enable closed-loop policy handling components to subscribe/optimize policy-related events that are of interest For global controllers and cloud orchestrators Support for event correlation across network and cloud resources Event/response flows applicable to various policy use cases Specific policy use cases which can/should be Locally handled by NFVI components Handled by VNF-relevant or VNF-independent closed-loop systems 6

7 Some General Policy Architecture Capabilities Polled monitoring: exposure of state via request-response APIs Notifications: exposure of state via pub-sub APIs Realtime/near-realtime notifications Delegated policy: monitoring, violation reporting, and enforcement Violation reporting Reactive enforcement Proactive enforcement Compliance auditing 7

8 Policy Architecture Example The following example "relationship diagram" illustrates an NFVI platform: With components focused on policy management, services, and infrastructure Leveraging multiple components of the same "type" (e.g. SDN Controller) Organized around components that address specific purposes A global SDN controller and cloud orchestrator acting as directed by a service orchestrator in the provisioning of VNFs per intent Various components at a local and global level handling policy-related events: – Directly, per their capabilities and the implications of specific events, and/or – Feeding events back through a closed-loop policy system that responds as needed, directly or through the service orchestrator 8

9 Example Configuration Policy Architecture 9 Controller Configure network resources Local policy enforcement Closed-loop policy events Controller Configure network resources Local policy enforcement Closed-loop policy events Cloud Orchestrator Configure compute & storage resources Local policy enforcement Closed-loop policy events Cloud Orchestrator Configure compute & storage resources Local policy enforcement Closed-loop policy events Policy Management / Distribution Policy translation to local schemas Closed loop policy management Policy Management / Distribution Policy translation to local schemas Closed loop policy management Service Design Policy creation tools for Expressing config intent Managing config violations Service function chaining Service Design Policy creation tools for Expressing config intent Managing config violations Service function chaining Service/VNF Inventory VNF Ingestion Service/VNF Catalog Service/VNF Inventory VNF Ingestion Service/VNF Catalog Service Orchestrator Service/VNF instantiation per intent Policy/lifecycle event handling Service Orchestrator Service/VNF instantiation per intent Policy/lifecycle event handling Static/generic policies Events impacting orchestration Nodal Controller Local policy enforcement Closed-loop policy events Nodal Controller Local policy enforcement Closed-loop policy events Local Controller Local policy enforcement Closed-loop policy events Local Controller Local policy enforcement Closed-loop policy events Network Config VNF Package Policy Data VNF/Service packages (1)Localized policies (2)VNF lifecycle-related events (3)Policy-related events (1) (3) (1) (3) (1) (3) (1) (3) (1), (2), (3) (1) (2) (3)

10 Q&A 10 © 2015 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual Property and/or AT&T affiliated companies. The information contained herein is not an offer, commitment, representation or warranty by AT&T and is subject to change

Download ppt "© 2015 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual."

Similar presentations

Your Data Any Place, Any Time Manageability. SQL Server 2008 Manageability Challenges Challenges face database administrators today : Managing complex.

Your Data Any Place, Any Time Manageability. SQL Server 2008 Manageability Challenges Challenges face database administrators today : Managing complex.
The System Center Family Microsoft. Mobile Device Manager 2008.

The System Center Family Microsoft. Mobile Device Manager 2008.
Virtualized Infrastructure Deployment Policies (Copper) 19 February 2015 Bryan Sullivan, AT&T.

Virtualized Infrastructure Deployment Policies (Copper) 19 February 2015 Bryan Sullivan, AT&T.
Utilizing OpenStack to Meet Telco Needs

Utilizing OpenStack to Meet Telco Needs
Zhipeng (Howard) Huang

Zhipeng (Howard) Huang
Policy Architecture Discussion 18 May 2015 Bryan Sullivan, AT&T.

Policy Architecture Discussion 18 May 2015 Bryan Sullivan, AT&T.
24 February 2015 Ryota Mibu, NEC

24 February 2015 Ryota Mibu, NEC
1 Doctor Fault Management 18 May 2015 Ryota Mibu, NEC.

1 Doctor Fault Management 18 May 2015 Ryota Mibu, NEC.
Demonstrating IT Relevance to Business Aligning IT and Business Goals with On Demand Automation Solutions Robert LeBlanc General Manager Tivoli Software.

Demonstrating IT Relevance to Business Aligning IT and Business Goals with On Demand Automation Solutions Robert LeBlanc General Manager Tivoli Software.
Understanding Active Directory

Understanding Active Directory
Ravi Sankar Technology Evangelist | Microsoft Corporation

Ravi Sankar Technology Evangelist | Microsoft Corporation
OpenContrail for OPNFV

OpenContrail for OPNFV
1 Doctor Fault Management - Updates - 30 July 2015 Ryota Mibu, NEC.

1 Doctor Fault Management - Updates - 30 July 2015 Ryota Mibu, NEC.
Identity Solution in Baltic Theory and Practice Viktors Kozlovs Infrastructure Consultant Microsoft Latvia.

Identity Solution in Baltic Theory and Practice Viktors Kozlovs Infrastructure Consultant Microsoft Latvia.
© 2009 AT&T Intellectual Property. All rights reserved. AT&T, AT&T logo and all other marks contained herein are trademarks of AT&T Intellectual Property.

© 2009 AT&T Intellectual Property. All rights reserved. AT&T, AT&T logo and all other marks contained herein are trademarks of AT&T Intellectual Property.
Fault Localization (Pinpoint) Project Proposal for OPNFV

Fault Localization (Pinpoint) Project Proposal for OPNFV
Gerald Kunzmann, DOCOMO Carlos Goncalves, NEC Ryota Mibu, NEC

Gerald Kunzmann, DOCOMO Carlos Goncalves, NEC Ryota Mibu, NEC
Rob Davidson, Partner Technology Specialist Microsoft Management Servers: Using management to stay secure.

Rob Davidson, Partner Technology Specialist Microsoft Management Servers: Using management to stay secure.
Jennifer Terry-Tharp – Director, AT&T Talent Attraction Leveraging Technology to showcase Diversity © 2015 AT&T Intellectual Property. All rights reserved.

Jennifer Terry-Tharp – Director, AT&T Talent Attraction Leveraging Technology to showcase Diversity © 2015 AT&T Intellectual Property. All rights reserved.
DPACC Management Aspects

DPACC Management Aspects

Similar presentations

Ads by Google