Extending SDN & NFV to the WANT im Van Herck | D i rec tor Technology
September 23, 2014
Branch NetworkingCurrent Best Practices
WWW.VELOCLOUD.NET 2
MPLS
Internet
Large Branch
Small Branch
Headquarter / DC
Business Critical Apps
Backup IPsec VPN
WANop
WANop
Low Capacity
Unreliable
Business critical apps MPLS
IPsec VPN over Internet as backup
Limited to no redundancy on Internet link
Services concentrated in HQ / DC
SVC
SVCSVC
SVC
SVC
SVC
SVC
SVC
SVC
Market evolution
Globalized workforces
Results in more smaller branches with no on-site IT support
Need for centralized management, visibility and control
Applications move into the cloud
Less DC’s needed resulting into consolidation
Last mile Internet link become critical for business continuity
MPLS doesn’t get you to the cloud
Cost & Risk reduction pressures
Diminishing IT budgets – Private network is largest line item
Increased availability of inexpensive (wireless) broadband
Inclination to use pure OPEX services with no to minimum CAPEX exposure
Limited time investment to evaluate new products and services
9/26/2014 3WWW.VELOCLOUD.NET
Broadband Circuits Financial DriversUS Average $/Mbps (10 Mbps equivalent)
9/26/2014 4
65% Cost Savings80% Cost Savings
Private
Backed by SLA
6+ weeks lead times
SymmetricalDedicated
2~4 weeks lead time
AsymmetricalOversubscribed
2~4 days lead time
WWW.VELOCLOUD.NET
Next Gen Branch NetworkingHow does enterprise IT want it too look
WWW.VELOCLOUD.NET 5
Large Branch
Small Branch
Headquarter / DC
Internet
LTE
Cable
Cable
Fiber
DSL
DIA
DIA
Reduce/Remove functional networks
Add/Drop capacity without service interruption
Use all links simultaneously – No Active/Standby
Leverage inexpensive broadband links (including wireless) as sole transport
Individual ISP outages/brownouts shouldn’t be an acute concern
Rapid deployments (same day)
Migrate service complexity (monolithic service sets) into the cloud
Centralize what you can, keep local what you must
SVC
SVC
SVC
SVCSVCSVC
SVC
SVC
Why can’t we do this today?The Service Angle
Deploy hypervisors & attach to existing router Extra piece of hardware
Need to send out an IT staff member
Manually establish service chaining Complex PBR rules in the router, error prone
Difficult delivery model of the virtual appliance
Management access susceptible to network quality of single link
WWW.VELOCLOUD.NET 6
Internet
Small Branch
Headquarter / DC
PBR
Unreliable
Cable
DSL
Hypervisor
Why can’t we do this today?The Network Angle
WWW.VELOCLOUD.NET 7
DSL LINK
CABLE LINK
VOIP Calls Dropped
Video Artifacting
VDI Sessions Stalls
Web Traffic Slowed
Session
Balanced
traffic
ECMP, PBR
Why can’t we do this today?The Network Angle
ECMP: Equal cost but not equal
Quality mismatch between flow & links
PBR:
Complex failover & link condition monitoring model
Map application to a link underutilized links
Dynamic Routing protocols Not capable at reacting to changing networking quality (congestion, packetloss, latency, jitter)
Only acts on hard link outages
Not application aware
Link / Next hop focused
Leads to wasted resources
Active / Standby link configurations
WWW.VELOCLOUD.NET 8
Emerging vCPE Concept
Combines SDN & NFV principles to the enterprise branch WAN edge
SDN segregates control & data plane for faster alignment with business needs
Allows for different packet & flow handling techniques to be implemented as an overlay
E.g. Link aggregation and ISP abstraction
NFV allows Network Function to be moved to the ISP edge where they can be more effectively operated and scaled out
Future proofs the CPE
Quickly deliver services at the branch based on customer needs
Accelerates cloud adoption by:
Providing a reliable network connection to SAAS applications
Providing mechanisms to move services to the place best suited in the network
WWW.VELOCLOUD.NET 9
Cloud-Delivered WAN using SDN principles
Data plane: Highly distributed and inherently redundant
Cloud delivered
Control plane: Centralized visibility to replace traditional routing
Quickly Extensible
REST API controlled
Extending SDN to the branch through Cloud Delivery
WWW.VELOCLOUD.NET 10
Distributed
Data Plane
Centralized
Control Plane
vCPE
Extending NFV into the branch
Deliver and orchestrate NF & Services from a central locations
Extract complex functions from the branch into the DC / ISP Edge
Ability to rely on SAAS services
Embedded Service chaining
Control from branch to DC
WWW.VELOCLOUD.NET 11
Distributed
Data Plane
Centralized
Control Plane
vCPE
SVC
VPN
NF
NF
SVC
SVC
NF
ORCHESTRATOR
VeloCloud
WWW.VELOCLOUD.NET 12
Call home for config, policies
and updates
Instant cloud VPN
One-click virtual service
provisioning
Zero Touch Thin Branch
Auto service characterization
Business grade reliability &
performance
Apps/servers not tied to
physical links
Virtualized WAN
Optimized path to DC, SaaS,
branches
No backhaul
Auto selection of optimal
gateways
Direct to All Apps
Data Centers/vDC
Branch
Internet
VPN
SaaS
VPN
No DC deployment
Auto scaling / redundancy
Global distributed coverage
Pay as you grow
Network as a Service
• Optimized application performance & reliability
• Cost effective and rapid deployment
• Direct and controlled access to all applications
WAN Link Monitoring
13
App Detection
WWW.VELOCLOUD.NET 14
Summary
WWW.VELOCLOUD.NET 15
VeloCloud is the only complete solution with all three elements of a Cloud Delivered WAN
Cloud
Network
(SDN)
Enterprise Grade Internet
(NV)
VirtualizedServices(NFV)
Zero-Touch at branch
10x faster deployments
3x-5x TCO savings
Better application
Performance
Provides visibility, security and policy
control for all traffic
WWW.VELOCLOUD.NET 16
Introducing VeloCloudhttp://youtu.be/lKYVrPhlecI
www.velocloud.net | 4410 El Camino Real - Los Altos, CA | +1(650)209-4180
[email protected] www.linkedin.com/in/herckt