Presentation is loading. Please wait.

Presentation is loading. Please wait.

Towards Wide-Area Network Virtualization Panagiotis Papadimitriou Leibniz Universität Hannover With acknowledgments to Zdravko Bozakov, David Dietrich,

Published byArnold Stafford Modified over 8 years ago

Similar presentations

Presentation on theme: "Towards Wide-Area Network Virtualization Panagiotis Papadimitriou Leibniz Universität Hannover With acknowledgments to Zdravko Bozakov, David Dietrich,"— Presentation transcript:

1 Towards Wide-Area Network Virtualization Panagiotis Papadimitriou Leibniz Universität Hannover With acknowledgments to Zdravko Bozakov, David Dietrich, Amr Rizk (Leibniz Universität Hannover) Laurent Mathy (University of Liege) Christoph Werle, Roland Bless (Karlsruhe Institute of Technology) Dagstuhl Seminar on Future Internet

2 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Introduction  Increasing need for wide-area network service deployment  Network service deployment in the existing Internet infrastructure:  Wide-area deployment without any performance or reliability guarantees  Performance and reliability for services deployed at an ISP  Deployment limited to the ISP’s geographic footprint  How can we enable the coexistence of multiple service-tailored networks at large scale? 2

3 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Network Virtualization: An Enabler 3

4 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Roles and Actors 4 Service Provider  Service Provider (SP)  Deploys services on VNs  Infrastructure Provider (InP)  Owns and manages the physical infrastructure  Leases resources for VNs

5 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet VN Request Roles and Actors 5  Service Provider (SP)  Deploys services on VNs  Infrastructure Provider (InP)  Owns and manages the physical infrastructure  Leases resources for VNs Service Provider

6 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Roles and Actors 6 Service Provider ?  Service Provider (SP)  Deploys services on VNs  Infrastructure Provider (InP)  Owns and manages the physical infrastructure  Leases resources for VNs VN Request

7 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Roles and Actors 7 Service Provider  Service Provider (SP)  Deploys services on VNs  Virtual Network Provider (VNP)  Assembles resources from one or multiple InPs into a VN  Infrastructure Provider (InP)  Owns and manages the physical infrastructure  Leases resources for VNs VN Provider VN Request

8 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Challenges 8 Service Provider VN Provider  Limited knowledge of the substrate network:  Substrate network topology  Substrate resource availability  Interoperability between InPs:  Inter-domain virtual link setup VN Request

9 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Substrate Network Visibility 9 ? ? ?  VN Provider‘s visibility on substrate network topology and resources is limited to:

10 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Substrate Network Visibility 10  VN Provider‘s visibility on substrate network topology and resources is limited to:  Offered virtual node types (similar to Amazon EC2)

11 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Substrate Network Visibility 11  VN Provider‘s visibility on substrate network topology and resources is limited to:  Offered virtual node types (similar to Amazon EC2)  Location of peering nodes

12 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Substrate Network Visibility 12  VN Provider‘s visibility on substrate network topology and resources is limited to:  Offered virtual node types (similar to Amazon EC2)  Location of peering nodes  Cost for sending traffic between peering nodes

13 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet VN Request Description  VN topology (undirected weighted graph) as VN request description:  Introduces constraints in VN embedding  SPs may prefer a higher level of abstraction  Alternative VN request descriptions:  Bandwidth demands expressed by a traffic matrix  Hose model 13

14 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Multi-Domain Virtual Network Embedding 14

15 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Multi-Domain Virtual Network Embedding Resource Assignment Resource Matching VN Request VN Setup 15 VN Request Partitioning Resource Allocation InP VN Provider

16 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Multi-Domain Virtual Network Embedding Resource Assignment Resource Matching VN Request VN Setup 16 VN Request Partitioning Resource Allocation InP VN Provider

17 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Resource Matching 17  VN Provider matches requested to advertised resources  Candidates for each requested resource are identified

18 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Resource Matching 18  VN Provider matches requested to advertised resources  Candidates for each requested resource are identified

19 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Resource Matching 19  VN Provider matches requested to advertised resources  Candidates for each requested resource are identified

20 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Resource Matching 20  VN Provider matches requested to advertised resources  Candidates for each requested resource are identified

21 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Resource Matching 21  VN Provider matches requested to advertised resources  Candidates for each requested resource are identified

22 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet VN Request Partitioning 22  VN Provider partitions the VN request among InPs  Objective: Minimize the expenditure for the Service Provider  Output: VN segment requests (virtual nodes assigned to peering nodes, bandwidth demands)

23 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet VN Request Partitioning 23  VN Provider partitions the VN request among InPs  Objective: Minimize the expenditure for the Service Provider  Output: VN segment requests (virtual nodes assigned to peering nodes, bandwidth demands)

24 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet VN Request Partitioning 24  VN Provider partitions the VN request among InPs  Objective: Minimize the expenditure for the Service Provider  Output: VN segment requests (virtual nodes assigned to peering nodes, bandwidth demands)

25 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Resource Assignment 25  Each InP maps its assigned VN segment onto its substrate network:  VN segment mapping should comply with the virtual node to peering node bindings

26 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet VN Embedding Efficiency with LID  Comparison method:  Limited information disclosure (LID) vs. full information disclosure (FID)  VN embedding cost  VN request acceptance rate 26

27 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Extra Cost under LID 27  LID incurs15-30% extra cost

28 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Origins of Extra Cost 28  Extra cost is correlated with extra link cost  Extra link cost is due to longer paths

29 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet VN Request Acceptance Rate 29  Lower VN acceptance rate and revenue for InPs under LID

30 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Virtual Link Setup 30

31 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Virtual Link Setup  Objective:  Interoperable solution for virtual link setup with QoS guarantees across InPs  Approach:  Couple virtual link setup signaling with QoS reservation signaling for efficiency  Rely on existing QoS resource reservation protocol (IETF NSIS)  Add new object to NSIS QoS NSLP to carry the required information for virtual link setup  Requirements:  NSIS support in routers  IP-based substrate  New QoS NSLP object support (only) in virtual link end-points

32 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Virtual Link Setup Protocol (VLSP)  NSIS QoS NSLP extension with new Virtual Link Setup Protocol (VLSP) object:  Virtual link setup at the end-points via VLSP  Resource reservation and QoS via NSLP object at the intermediate nodes Virtual Network ID Source Virtual Node ID Destination Virtual Node ID Source Virtual Interface IDDestination Virtual Interface ID Virtual Link ID (optional)Virtual Link Type (optional) 64 0127 GIST TCP/UDP/… QoS NSLP VLSP IP NTLP NSLP VLSP object NSIS QoS NSLP/VLSP

33 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Virtual Link Setup Workflow NSIS Daemon Router X eth0 IP forwarding eth0 Management Daemon NSIS Daemon VM2VM1 InP Management Node Router ARouter B eth0 vif1 VM2 Multiplexing/QoS eth1 IP in IP tunnel VM1 vif1 Management Daemon NSIS Daemon

34 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Virtual Link Setup Workflow NSIS Daemon Router X eth0 IP forwarding eth0 Management Daemon NSIS Daemon VM2VM1 InP Management Node Router ARouter B eth0 vif1 VM2 Multiplexing/QoS 1. Setup virtual link from VM1@A  VM1@B eth1 IP in IP tunnel VM1 vif1 Management Daemon NSIS Daemon

35 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Virtual Link Setup Workflow NSIS Daemon Router X eth0 IP forwarding eth0 Management Daemon NSIS Daemon VM2VM1 InP Management Node Router ARouter B eth0 vif1 VM2 Multiplexing/QoS 1. Setup virtual link from VM1@A  VM1@B 2. Initialize virtual link setup VM1@A  VM1@B eth1 IP in IP tunnel VM1 vif1 Management Daemon NSIS Daemon

36 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Virtual Link Setup Workflow NSIS Daemon Router X eth0 IP forwarding eth0 Management Daemon NSIS Daemon VM2VM1 InP Management Node Router ARouter B eth0 vif1 VM2 Multiplexing/QoS 1. Setup virtual link from VM1@A  VM1@B 3. RESERVE + VLSP Object 2. Initialize virtual link setup VM1@A  VM1@B eth1 IP in IP tunnel VM1 vif1 Management Daemon NSIS Daemon

37 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Virtual Link Setup Workflow NSIS Daemon Router X eth0 IP forwarding eth0 Management Daemon NSIS Daemon VM2VM1 InP Management Node Router ARouter B eth0 vif1 VM2 Multiplexing/QoS 1. Setup virtual link from VM1@A  VM1@B 3. RESERVE + VLSP Object 4. Ignore VLSP object, perform admission control 2. Initialize virtual link setup VM1@A  VM1@B eth1 IP in IP tunnel VM1 vif1 Management Daemon NSIS Daemon

38 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Virtual Link Setup Workflow NSIS Daemon Router X eth0 IP forwarding eth0 Management Daemon NSIS Daemon VM2VM1 InP Management Node Router ARouter B eth0 vif1 VM2 Multiplexing/QoS 1. Setup virtual link from VM1@A  VM1@B 3. RESERVE + VLSP Object 5. RESERVE + VLSP Object 4. Ignore VLSP object, perform admission control 2. Initialize virtual link setup VM1@A  VM1@B eth1 IP in IP tunnel VM1 vif1 Management Daemon NSIS Daemon

39 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Virtual Link Setup Workflow NSIS Daemon Router X eth0 IP forwarding eth0 Management Daemon NSIS Daemon VM2VM1 InP Management Node Router ARouter B eth0 vif1 VM2 Multiplexing/QoS 1. Setup virtual link from VM1@A  VM1@B 3. RESERVE + VLSP Object 5. RESERVE + VLSP Object 4. Ignore VLSP object, perform admission control 2. Initialize virtual link setup VM1@A  VM1@B 6. Setup virtual link VM1@A  VM1@B eth1 IP in IP tunnel VM1 vif1 Management Daemon NSIS Daemon

40 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Virtual Link Setup Workflow NSIS Daemon Router X eth0 IP forwarding eth0 Management Daemon NSIS Daemon VM2VM1 InP Management Node Router ARouter B eth0 vif1 VM2 Multiplexing/QoS 1. Setup virtual link from VM1@A  VM1@B 3. RESERVE + VLSP Object 5. RESERVE + VLSP Object 4. Ignore VLSP object, perform admission control 2. Initialize virtual link setup VM1@A  VM1@B 7. RESPONSE 6. Setup virtual link VM1@A  VM1@B eth1 IP in IP tunnel VM1 vif1 Management Daemon NSIS Daemon

41 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Virtual Link Setup Workflow NSIS Daemon Router X eth0 IP forwarding eth0 Management Daemon NSIS Daemon VM2VM1 InP Management Node Router ARouter B eth0 vif1 VM2 Multiplexing/QoS 1. Setup virtual link from VM1@A  VM1@B 3. RESERVE + VLSP Object 5. RESERVE + VLSP Object 4. Ignore VLSP object, perform admission control 2. Initialize virtual link setup VM1@A  VM1@B 7. RESPONSE 6. Setup virtual link VM1@A  VM1@B eth1 8. Reserve resources IP in IP tunnel VM1 vif1 Management Daemon NSIS Daemon

42 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Virtual Link Setup Workflow NSIS Daemon Router X eth0 IP forwarding eth0 Management Daemon NSIS Daemon VM2VM1 InP Management Node Router ARouter B eth0 vif1 VM2 Multiplexing/QoS 1. Setup virtual link from VM1@A  VM1@B 3. RESERVE + VLSP Object 5. RESERVE + VLSP Object 4. Ignore VLSP object, perform admission control 2. Initialize virtual link setup VM1@A  VM1@B 7. RESPONSE 9. RESPONSE 6. Setup virtual link VM1@A  VM1@B eth1 8. Reserve resources IP in IP tunnel VM1 vif1 Management Daemon NSIS Daemon

43 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Virtual Link Setup Workflow NSIS Daemon Router X eth0 IP forwarding eth0 Management Daemon NSIS Daemon VM2VM1 InP Management Node Router ARouter B eth0 vif1 VM2 Multiplexing/QoS 1. Setup virtual link from VM1@A  VM1@B 3. RESERVE + VLSP Object 5. RESERVE + VLSP Object 4. Ignore VLSP object, perform admission control 2. Initialize virtual link setup VM1@A  VM1@B 7. RESPONSE 9. RESPONSE 6. Setup virtual link VM1@A  VM1@B eth1 8. Reserve resources 10. Setup virtual link VM1@A  VM1@B virtual link IP in IP tunnel VM1 vif1 Management Daemon NSIS Daemon

44 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet SDN Virtualization 44

45 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet SDN Virtualization  Tenants are granted virtual networks with limited control and access on network devices 45

46 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet SDN Virtualization  Tenants are granted virtual networks with limited control and access on network devices  Solution: Virtual networks programmable as SDNs (vSDNs)  SDN virtualization benefits:  Tenants:  Advanced control and access on network slices  Providers:  New cloud computing model:  SDN as a Service (SDNaaS) 46

47 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet SDN Virtualization Challenges  Automation of vSDN setup  vSDN mapping  Transparent allocation of isolated flowspaces  Selection of identifiers  Generation and installation of flow entries for packet forwarding and encapsulation  Binding traffic to logical context using tagging  Transparent vSDN operation  Translation of references to logical/physical resource identifiers to appropriate context  Policy control to prevent access to unauthorized vSDN resources  Scalability of hypervisor  Distribution of vSDN configurations across multiple controllers 47

48 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet SDN Hypervisor Overview  Distributed hypervisor  Multiple autonomous controller proxies  Coordinated by management module  Dataplane segmentation  Multiple SDN domains  Switches within a domain controlled by the same controller proxy 48

49 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet SDN Hypervisor Design Challenges  Collaboration among controller proxies for operations across multiple SDN domains  Dynamic segmentation of SDN as vSDNs are provisioned or released  Support for arbitrary vSDN topologies  Suitability of existing virtual network embedding algorithms for vSDN mapping 49

50 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet Conclusions  Multi-domain VN embedding with VNPs:  Suboptimality due to limited information disclosure  One example of emerging business models that require separation between the network operations and the physical infrastructure  Will VNPs materialize or a single InP will prevail (Amazon)?  New cloud computing models may emerge from SDN virtualization  Scalable SDN hypervisor design entails significant challenges 50

51 Towards Wide-Area Network Virtualization Dagstuhl Seminar on Future Internet51 Thank you! Panagiotis Papadimitriou E-mail: panagiotis.papadimitriou@ikt.uni-hannover.de WWW: http://www.ikt.uni-hannover.de/

Download ppt "Towards Wide-Area Network Virtualization Panagiotis Papadimitriou Leibniz Universität Hannover With acknowledgments to Zdravko Bozakov, David Dietrich,"

Similar presentations

APNOMS03 1 A Resilient Path Management for BGP/MPLS VPN Jong T. Park School of Electrical Eng. And Computer Science Kyungpook National University

APNOMS03 1 A Resilient Path Management for BGP/MPLS VPN Jong T. Park School of Electrical Eng. And Computer Science Kyungpook National University
Two-Market Inter-domain Bandwidth Contracting

Two-Market Inter-domain Bandwidth Contracting
On the Management of Virtual Networks Group 3 Yang Wenzhi 3474953 Wang Qian 3430773 Issam Alkindi 3444783 Zhu Guangjin 3440223 Zhang Haifeng 3392273 Sanjeev.

On the Management of Virtual Networks Group 3 Yang Wenzhi Wang Qian Issam Alkindi Zhu Guangjin Zhang Haifeng Sanjeev.
CloudWatcher: Network Security Monitoring Using OpenFlow in Dynamic Cloud Networks or: How to Provide Security Monitoring as a Service in Clouds? Seungwon.

CloudWatcher: Network Security Monitoring Using OpenFlow in Dynamic Cloud Networks or: How to Provide Security Monitoring as a Service in Clouds? Seungwon.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—8-1 MPLS TE Overview Understanding MPLS TE Components.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—8-1 MPLS TE Overview Understanding MPLS TE Components.
L. Alchaal & al. Page 1 2002 Offering a Multicast Delivery Service in a Programmable Secure IP VPN Environment Lina ALCHAAL Netcelo S.A., Echirolles INRIA.

L. Alchaal & al. Page Offering a Multicast Delivery Service in a Programmable Secure IP VPN Environment Lina ALCHAAL Netcelo S.A., Echirolles INRIA.
DOT – Distributed OpenFlow Testbed

DOT – Distributed OpenFlow Testbed
Contents Shortcomings of QoS in the Current Internet About OpenFlow

Contents Shortcomings of QoS in the Current Internet About OpenFlow
Slick: A control plane for middleboxes Bilal Anwer, Theophilus Benson, Dave Levin, Nick Feamster, Jennifer Rexford Supported by DARPA through the U.S.

Slick: A control plane for middleboxes Bilal Anwer, Theophilus Benson, Dave Levin, Nick Feamster, Jennifer Rexford Supported by DARPA through the U.S.
© 2010 Cisco and/or its affiliates. All rights reserved. 1 Segment Routing Clarence Filsfils – Distinguished Engineer Christian Martin –

© 2010 Cisco and/or its affiliates. All rights reserved. 1 Segment Routing Clarence Filsfils – Distinguished Engineer Christian Martin –
The Case for Enterprise Ready Virtual Private Clouds Timothy Wood, Alexandre Gerber *, K.K. Ramakrishnan *, Jacobus van der Merwe *, and Prashant Shenoy.

The Case for Enterprise Ready Virtual Private Clouds Timothy Wood, Alexandre Gerber *, K.K. Ramakrishnan *, Jacobus van der Merwe *, and Prashant Shenoy.
Flow Space Virtualization on Shared Physical OpenFlow Networks Hiroaki Yamanaka, Shuji Ishii, Eiji Kawai (NICT), Masayoshi Shimamura, Katsuyoshi Iida (TITECH),

Flow Space Virtualization on Shared Physical OpenFlow Networks Hiroaki Yamanaka, Shuji Ishii, Eiji Kawai (NICT), Masayoshi Shimamura, Katsuyoshi Iida (TITECH),
1 EL736 Communications Networks II: Design and Algorithms Class3: Network Design Modeling Yong Liu 09/19/2007.

1 EL736 Communications Networks II: Design and Algorithms Class3: Network Design Modeling Yong Liu 09/19/2007.
A Flexible Model for Resource Management in Virtual Private Networks Presenter: Huang, Rigao Kang, Yuefang.

A Flexible Model for Resource Management in Virtual Private Networks Presenter: Huang, Rigao Kang, Yuefang.
Grant agreement n°318514 SDN architectures for orchestration of mobile cloud services with converged control of wireless access and optical transport network.

Grant agreement n° SDN architectures for orchestration of mobile cloud services with converged control of wireless access and optical transport network.
Towards Virtual Routers as a Service 6th GI/ITG KuVS Workshop on “Future Internet” November 22, 2010 Hannover Zdravko Bozakov.

Towards Virtual Routers as a Service 6th GI/ITG KuVS Workshop on “Future Internet” November 22, 2010 Hannover Zdravko Bozakov.
Network Security Topologies Chapter 11. Learning Objectives Explain network perimeter’s importance to an organization’s security policies Identify place.

Network Security Topologies Chapter 11. Learning Objectives Explain network perimeter’s importance to an organization’s security policies Identify place.
1 In VINI Veritas: Realistic and Controlled Network Experimentation Jennifer Rexford with Andy Bavier, Nick Feamster, Mark Huang, and Larry Peterson

1 In VINI Veritas: Realistic and Controlled Network Experimentation Jennifer Rexford with Andy Bavier, Nick Feamster, Mark Huang, and Larry Peterson
Traffic Engineering With Traditional IP Routing Protocols

Traffic Engineering With Traditional IP Routing Protocols
Resource Management – a Solution for Providing QoS over IP Tudor Dumitraş, Frances Jen-Fung Ning and Humayun Latif.

Resource Management – a Solution for Providing QoS over IP Tudor Dumitraş, Frances Jen-Fung Ning and Humayun Latif.

Similar presentations

Ads by Google