NfV koncepce a - cisco.com · Reduction in CAPEX and OPEX ... Scaling models auto, on-demand, manual ReuseVNFC/VM ... User plane Core Network Voice/IMS HFC

NfV koncepce a případy využití TECH-SDN-SP

Martin Slinták

Systems Engineer

Cisco Connect, 17.6. 2014

Cisco and/or its affiliates. All rights reserved. Presentation_ID Cisco Public

Obsah přednášky

Co je NfV, standardizace

Použitelnost NfV

Cisco a NfV

Případy využití NfV + demo


NAT VM

Firew all VM

SBC VM

dDOS VM

Virus Scan VM

IPS VM

DPI VM

CGN VM

Portal VM

PCRF VM

DNS VM

DHCP VM

BRAS VM

SDN

Ctrl. VM RaaS VM

WLC VM

WAAS VM

CDN VM

Caching VM

NMS VM

Network Functions Virtualisation Enablers, benefits and applications

Enablers

Hypervisor and cloud computing technology

Improving x86 h/w performance

Optimised packet processing and coding techniques

Network industry standardising on Ethernet

SDN based orchestration

Value Proposition

Shorter innovation cycle

Improved service agility

Reduction in CAPEX and OPEX

Applications

Potentially all network functions

NfV = Transition of network infrastructure services to run on virtualised compute platforms

Using cloud technology to provide network functionality


Network Functions Virtualisation: Terminology

Network Function (NF): A functional building block within a network infrastructure, which has well-defined external interfaces and a well-defined functional behaviour. In practical terms, a Network Function is today often a network node or physical appliance

Virtualised Network Function (VNF): An implementation of an NF that can be deployed on a Network Function Virtualisation Infrastructure (NFVI).

NfV Infrastructure (NFVI): The NFV-Infrastructure is the totality of all hardware and software components which build up the environment in which VNFs are deployed. The NFV-Infrastructure can span across several locations

NfV Orchestrator (NFVO): The NfV Orchestrator is in charge of the network wide orchestration and management of NfV (infrastructure and software) resources, and realizing NfV service topology on the NFVI

NF Forwarding Graph: A graph of logical links connecting NF nodes for the purpose of describing traffic flow between these network function

VNF Component (VNFC) – Subcomponent of a VNF executing in a discrete VM*

Source NfV terminology document : http://www.etsi.org/deliver/etsi_gs/NFV/001_099/003/01.01.01_60/gs_NFV003v010101p.pdf

* Not formally defined in the terminology document

http://www.etsi.org/deliver/etsi_gs/NFV/001_099/003/01.01.01_60/gs_NFV003v010101p.pdf




ETSI NfV architektura a organizace

© ETSI 2012. All rights reserved 6

Computing

Hardware

Storage

Hardware

Network

Hardware

Hardware resources

Virtualisation Layer

Virtualised

Infrastructure

Manager(s)

VNF

Manager(s)

VNF 2

Orchestrator

OSS/BSS

NFVI

VNF 3

VNF 1

Execution reference points Main NfV reference points Other reference points

Virtual

Computing Virtual Storage Virtual Network

NfV Management and

Orchestration

EMS 2

EMS 3

EMS 1

Service, VNF and Infrastructure Description

Or-Vi

Or-Vnfm

Vi-Vnfm

Os-Ma

Se-Ma

Ve-Vnfm

Nf-Vi

Vn-Nf

Vl-Ha Infrastructure

S/W Architecture Management and

Operations

Technical Steering

Committee

Reliability and Availability

Performance and portability

Security

Expert Groups


NfV Infrastructure Group

Role: Infrastructure to support VNFs

Hypervisor domain

Virtual Machine technology

Compute domain

h/w on which VNFs execute CPUs – x86 and ARM

Network Interface Cards

Accelerators

Storage

Infrastructure Network domain

Real and virtual infrastructure network

N/W virtual partitioning technology

Compute Storage Network

Virtual

Compute

Virtual

Storage

Virtual

Network

Virtualization Layer

Hypervisor Domain

Compute

Domain

Infrastructure

Network Domain


NFV-MANO Group Role: Management framework of VNFs and NFVI

NfV Orchestrator

Life cycle management of n/w services

Across entire operators domain (multiple sites)

VNF Manager

lifecycle management of VNFs

Associated NFVI resources

Virtualised Infrastructure Manager

management of the NFVI components

specialist VIMs permitted (e.g. compute and n/w)

E/NMS: FCAPs for VNFs

OSS/BSS: linkage to legacy systems Simplified

NfV Orchestrator

(NFVO)

VNF Manager

(VNFM)

Virtualised

Infrastructure

Manager

(VIM)

OSS/BSS

E/NMS

VNF

NFVI


Software Architecture Group

Role: Structure of VNFs and interfaces

VNF Designs Single or multiple components (VNFCs)

VNFC parallel or non parallel

VNFC Stateful, stateless, external state

Load balancing

Scaling models auto, on-demand, manual

Reuse

Description of VNF Characteristics

Defining VNF properties

Descriptor (VNFD) attributes

VNFC/VM

NFVI

VNFC/VM

VNF

EMS

VNFM Other

VNFs

Použitelnost NfV


The “Service Provider” landscape

LTE

Metro and Access

xDSL

WiFi

RNC 2G 3G

Small

Cell

Gateways

OSS/BSS/NMS/EMS

Subsystems and Network Control

User plane

Core Network

Voice/IMS

HFC

PGW SGW

GGSN SGSN

MME

Security GWs FW

DPI CGN Cache

streaming

Transcoding

MSC-S MGW

BGCF

MGCF

PS/RLS

DRA

Video ingestion

DRM

EMS Provisioning Analytics Billing

AAA

DNS DHCP

CSCF

I-CSCF

Transcoding Cache control

Policy

LB

HLR

HSS

ENUM

TAS SMS-C

Service Provider Services

OCS MMS-C RMS

Biz CPE

Res CPE

Capacity Planning SecGW

Business PE

BNG

ePDG

eWAG

HCS

HNB-GW

WLC

A-SBC I-SBC

SDN Controller

BGP server

Video Network

Transrating

Voice/IMS Video Data

FTTx

PON

CMTS

Wireless

Wireline

Metro Network

Data Center

DC Network

SP Data Center

Enterprise

Data Center


Network solutions: Requirements

CPU Reqs

Backbone, Metro and DC switching

Business CPE

Home CPE

0 10Mbps 100Mbps 1Gbps 10Gbps 100Gbps 1Tbps 10Tbps 100Tbps 1Pbps

Wireless GWs

High

Low

Wireline GWs

Appliances (L4-L7)

OSS/BSS, subsystem and N/W control


Network solutions: Design approaches

CPU Reqs

Backbone, Metro and DC switching

Business CPE

Home CPE

0 10Mbps 100Mbps 1Gbps 10Gbps 100Gbps 1Tbps 10Tbps 100Tbps 1Pbps

Wireless GWs

High

Low

Wireline GWs

Appliances (L4-L7)

Distributed: CPUs + Lots of NPUs

Distributed: Lots CPUs + NPUs

Centralized: CPU + NPU

CPU

Centralized: CPU or SoC

Variable CPU / FPGA / NPU

OSS/BSS, subsystem and N/W control


Virtual Network Functions (VNF) – evaluation criteria

Physical Design Requirements

– interface count, interface size, system design requirements, specialist N/W functions

Performance Requirements

– L1-L3 packet performance, CPU processing, fabric capacity

Network Architecture

– Will virtualization fit the network architecture principles of the network

Elasticity of the service

Economics

– Onboarding, CapEX and OpEx


Appeal of virtualized solutions

Appeal of x86 virtualization Higher Lower

Virtualization Opportunities

Some very obvious / many SP and architecture dependent

Consumer CPE

DC

infrastructure

Core

Metro

OSS/BSS/NMS/EMS

Video Solutions

Mobile Gateways

User Plane Appliances (GiLAN)

SP applications

IMS

DC Virtual appliances

Network control

Wireline gateways (BNG/BRAS)

Business CPE and services

Consumer Services

Active Cisco virtualization efforts

Backbone

Metro

Active Cisco

infrastructure efforts

Cisco a NfV


Wide Area Network

• Real: High capacity plumbing and high performance gateways

• Virtualized: CPU intensive functions, low – mid range packet processing functions

• Interaction required between the real and virtual network functions via orchestration

Cisco’s NfV vision – architectural components

Data Centre

and / or

Customer

Premises PoP

Virtualised Netw ork Functions

(VNFs)

Orchestration (NFVO)

Policy

Server

Classif ication

+

Redirection

Function

Compute

+

Virtualization Technology (NFVI)

+

Service Chaining

Netw ork

Overlays


Centralised DC

IP edge CPE

NGN

NFVI compute - Placement of resources

VSM running in an ASR9000

Stand Alone UCS Server

UCS directly connected to ASR9000

Blade or chassis based UCS

ISR G2 Cloud Connector (UCS)

PoP Customer

Premises


NFVI hypervisor – Cisco’s approach

ETSI allows virtualized and bare metal solutions

Cisco approach

Concentrating on virtualized solutions

Multi-hypervisor approach for the overall market place

SP’s running NfV environments KVM managed by Openstack

Bare Metal

Virtual Machine


L3 VPN

Internet

vWeb Scrubber

vLoadbalancer

vRouter

L2 or L3 Fabric

NFVI network – Virtual partitions

vFirew all

IaaS capabilities Managed Services

Functionality

L3 VPN

Internet

Physical Infrastructure

Example: Managed Services Virtual Partition


NFVI network – creating the virtual network partitions

Infrastructure Network Infrastructure Network

Underlay and overlays

Example vPE and VXLAN

Infrastructure partitioning

Example VLANs

Functionality of virtual N/W orchestration controller application dependent on physical infrastructure and virtualization technology

Virtual

Infrastructure

Manager

Virtual

Infrastructure

Manager


Re-direction

function Internet

NAT

Service Chains

Default Service

Service 2

Service 1

NAT

Video

opt DPI

DPI

NFVI network – Service Chaining or Forwarding Graphs

Complex Services and Service Chains Simple Service Chains

DNS

DNS

DNS LB

• Steer traffic through a one or more service entities

• Critical for non routed data plane services

• Important for control plane services

• Physically/logically directed or carried in packet metadata


• Service ordering determined by real or virtual n/w structure

• Virtual Packet Edge (vPE) solution

vForwarder Service

Redirection

Internet

Service Path information determines Service Chaining

• Service ordering by info in user packet

• 5 drafts submitted by Cisco at Berlin IETF

• New IETF working group “Service Function Chaining (sfc)

NFVI network – Service Chaining or Forwarding Graphs

External Controller

vForwarder vForwarder

HDR Original Frame NSH

vSwitch 1

2 3

vSwitch 5

6 7

4


v CGN (v ia

CSR1000v)

Adaptiv e

Security Appliance

(ASA + VSG)

Email

Security (Ironport)

Web

Security (Ironport)

Network

Analy sis Module

(v NAM)

Netscaler

Load Balancer

Quantum

Policy Suite

v CPE

(CSR1000v)

v IOS

Classic OnePK SDK

IOS-XR

Virtual Route Ref lector

(32bit and 64 bit)

PGW/SGW

(STAR-OS)

Virtual L2

Switch (Nexus

1000v )

Virtual

Forwarder

(L2 / L3

forwarder)

Load

balancer

(VPP)

vDPI

(vSCE)

4-6 Softwire

Concentrat

or

(VPP)

Quantum

WAN Orchestration

VIRL

Wireless LAN

Controller

Prime Access

Registrar (RADIUS)

Prime

Network Registrar

(DNS and DHCP)

Quantum

WAN Orchestration

Simulation and Test

Network Control

CSR1000vCSR1000v

OSS/BSS and SP Applications

Prime

Central

Prime

Fulf illment

Prime

Prov isioning

Prime

Security Manager

Prime

Inf rastructure

Mobility

Serv ices Engine

Identity Serv ices

Engine

Wide Area

Application Serv ices

(v WaaS)

Deep Packet

Inspection (CRS1000v)

User Plane Appliances

v BNG

(CSR1000v)

Routing / Switching / Gateways

Ipsec

Gateway (CRS1000v)

SGSN/GGSN (STAR-OS)

vSecGW

(ASR9000)

eWAG/ePDG (STAR-OS)

MME (STAR-OS)

eWAG/ePDG (STAR-OS)

MME (STAR-OS)

Control Plane components

CDN

Cisco VNF status

Případy využití NfV


NfV Use Cases

Virtualized SP and third party applications / appliances

Virtualized gateways (PE, P-GW, BNG/BRAS)

Virtual Managed Services

Virtual Home CPE (→demo)

Virtualized mobile solutions

Virtualized video solutions (→demo)


Internet

NfV use case: Virtualized SP / 3rd party applications

Many examples

OSS/BSS, voice and video solutions, N/W control, video/collaboration solutions, wireless/wifi, security

NfV transition well underway

Cisco has a wide range of FCS’d products in this space

See earlier slide for details

New solutions coming think and fast

Ask your SE for the latest status

Centralised DC

Orchestration

IP edge CPE

NGN

Streamer DHCP

DNS

Content Ingestion

IMS


Internet

NfV use case: Virtualized Edge Gateway

Cisco complementing existing h/w gateway solutions with virtualized g/w solutions

vPE, vBNG/BRAS based on Cloud Service Router (CSR1000: IOS-XE 3.13 July 2014)

Virtual mobile gateways (MME, S/PGW) based on QvPC solutions

CableLabs have kicked off work on vCMTS

Virtualized gateways may require architectural changes

Virtual racking and stacking

Centralised DC

Orchestration Policy

Server

IP edge CPE

NGN

vBNG vBNG


NfV Use Case: Managed services

Metro +

WAN Data Centre BranchOffice

Service appliances

in the branch and DC

Metro +

WAN Data Centre

Metro +

WAN Data Centre

Metro +

WAN Data Centre

Virtualised services on

the physical router

Branch Office

Virtualised

router and services V

BranchOffice

Virtualized branch

services V

L

2

C

P

E Branch Office

Cloud Connector

available

Today

Systems Work underway

Metro +

WAN Data Centre

Virtualized service in DC

V

L

2

C

P

E Branch

Office

Systems Work underway

Under investigation


NfV use case: Virtual residential gateway

Quantum Virtual Broadband Node (Q-vBN)

– L2 domain between home and data centre

– Virtualized CPE and home services in the cloud

Cloud Data Centre

Gateway

Internet

L2 Domain

Data Centre

Services

Wireless AP

Management and Control

FW

L2 Domain


NfV use case: Virtual Services Infrastructure

Physical Appliances are complex to design

Mismatched capacities

Diverse resiliency strategies

Incompatible networking

Re-configuration (adding capacity or adding an appliance) is difficult

Hard-wired service chains

IMS User

Video Only

Android User

Enterprise Access GGSN/PGW

DPI FirewallWebProxy

FWVO

A-SBC

12ABC

3DEF

4GHI

5JKL

6MNO

7

PQRS

8TUV

9

WXYZ

*0#

Signal Strength

AP

NA

PN

AP

NA

PN

AddressTranslation


NfV use case: Virtual Service Infrastructure

Simple reconfiguration of service chains via SDN and virtualization tools Improved scaling Elastic services

GiLAN solution trials : 1HCY2014

Cloud Orchestration and Management

Access GGSN/PGW

Web Proxy NAT DPI FW

VO

VO FW

FW

A-SBC

12ABC

3DEF

4GHI

5JKL

6MNO

7

PQRS

8TUV

9

WXYZ

*0#

Signal Strength

ASR 9000

Q-vBN


Q-vBN Intro

Services

Services

???

Broadband Tomorrow

Virtualize Services

Virtualize Network

API Exposure

Broadband Today


Definice Q-vBN

What is it?

A low cost software based virtualization system that runs standard broadband CPE code in the cloud

What can it do?

Allows for services to be written and run in the cloud

Allows SPs to sell an inexpensive cloud based computing platform directly connected in the home

Extends the life of the physical CPE in the home

Allows for per device management in the home

Allows for test environments for companies to quickly trial new services


Q-vBN pro minimální vCPE aplikace

No L3 functionality in the gateway

All L3 functionality in a “cloud gateway”

Home broadcast domain extended to Cloud GW

Setup demonstrated at CES

vBN Hosting

Edge Node Access Node

Cloud GW

Internet

Datacenter


Q-vBN: Rozšíření LAN do Cloudu

Network design unchanged – no forklift

Home LAN extended to a Service

– Storage (NAS) Backup

– IPv6 as a service/v4

– Individual device management

– M2M

Access Node Edge Node

API Exposure

Internet

Datacenter


Principy řídící vrstvy Q-vBN

No polling required – RPC and event driven

External Sets and Gets of data by RPC using HTTP/REST

Events and asynchronous RPC by XMPP Publish/Subscribe

A common internal Network Management Protocol built upon JSON formatted messages

Out of band control plane connection to agents in virtual CPEs for robustness and security

Control plane has been built to isolate agents from knowledge of their identities. NMP adds/removes JSON addressing envelope as required

Configuration pushed to agents, not pulled


Interní architektura Q-vBN

The basic building block in Q-vBN is a host which supports a number of vCPE instances, a virtual switch and host/vCPE management agents:


Škálování Q-vBN

Multiple Q-vBNs hosts are combined using ESB architecture:


Závěr

Poptávka po NfV musí odpovědně zohledňovat růst síťového provozu

Cisco se plně hlásí k NfV a je aktivní v mnoha oblastech

– VNFs, NFVIs, orchestrace

Některé VNFs jsou zřejmé, velké spektrum ale závisí na SP a jeho architektuře

Realitou jsou hybridní síťová prostředí s custom NFs i Virtualized NFs (VNFs)

Přehled některých Cisco implementací NfV


Užitečné odkazy

GS NfV 001 NfV: Use Cases

GS NfV 002 NfV: Architectural Framework

GS NfV 003 NfV: Terminology for Main Concepts in NfV

GS NfV 004 NfV: Virtualisation Requirements

GS NFV-PER 002 NfV: Proofs of Concepts; Framework

42





















http://www.etsi.org/deliver/etsi_gs/NFV-PER/001_099/002/01.01.01_60/gs_NFV-PER002v010101p.pdf






Prosíme, ohodnoťte tuto přednášku

• Děkujeme

VDS Mgr

VDS SR

vStreamer

Virtual

Environment (OpenStack)

Orchestration Engine

VM Orchestration

SE Orchestration

VM Create and

Configure

Request

VM Create and

Configure 5

1

HTTP Load Generator

2

3

4

Elasticity

Policy

Load

Configure

v Streamer Load Updates

6

7

vStreamer vStreamer

Core

Network

ONT-RGW ONT-SFU

+ $30 =

Broadband Network pCPE CPE

~4k vCPEs

Documents

NfV koncepce a - cisco.com · Reduction in CAPEX and OPEX ... Scaling models auto, on-demand, manual ReuseVNFC/VM ... User plane Core Network Voice/IMS HFC