NFV & SDN

Target Location Campus, data center / cloud Telco networks ... • Security functions (e.g., Firewalls, virus scanners, intrusion detection ... Citrix S...

0 downloads 8 Views 6MB Size
1

• • • •

NFV & SDN  Telco system/functions 가상화 ETSI ISG NFV에서의 (표준)규격개발 현황 실 구현물 경험과 사례연구 Wrap-up 및 My Observation

2

• Creates competitive supply of innovative applications by third parties

Open Innovation

SDN

NFV

• Creates N/W abstractions to enable faster innovation

• Reduces CAPEX, OPEX • Space & Power Consumption

Source, NFV White paper, 2012

3

• Creates • Open Platform competitive • Open APIs supply of innovative • Open Plug-in applications • Open S/W by third parties

Open Innovation

4

Internet2 (사례)

5

기가코리아 테스트베드 (사례)

6

스마트 인터넷 개념도 (사례)

7

SDN

• Introduce Creates N/W a new capability by to abstractions writing a S/W program enable faster . innovation

8





9

10

NFV

System Virtualization • Telco Reduces CAPEX, OPEX Easy control and management • Space & Power of Telco’s resources (net, Consumption compute) 11

Comparison of SDN and NFV Category

SDN

NFV

Reason for Being

Separation of control and data, centralization of control and programmability of network

Relocation of network functions from dedicated appliances to generic servers

Target Location

Campus, data center / cloud

Telco networks

Target Devices

Commodity servers and switches

Commodity servers and switches

Initial Applications

Cloud orchestration and networking

Routers, firewalls, gateways, CDN, WAN accelerators, SLA assurance

New Protocols

OpenFlow

None yet

Formalization

Open Networking Forum(ONF)

ETSI NFV Working Groups Source: ONS2013, Modified

• 네트워크 function들을 가상화 – Carrier의 네트워크 장비내의 function들을 standard high volume server로 분리시켜 가상화 시키는 기술 – Network virtualization의 현실화된 Telco 버전 – 사실, 다양한 구현 방법이 가능 (with SDN, without SDN) • NFV as highly complementary to SDN – (Carrier-IDC내에 위치하는 standard high volume server의 활용)

13

Network Functions Virtualisation Approach

Message Router CDN

Session Border Controller WAN Acceleration Carrier Grade NAT

DPI

Tester/QoE monitor

Firewall

SGSN/GGSN

Orchestrated, automatic remote install

Generic High Volume Servers

BRAS PE Router

Independent Software Vendors

Radio Network Controller

Classical Network Appliance Approach

Generic High Volume Storage

Generic High Volume Ethernet Switches

Source, NFV White paper, 2012

14

Carriers’ Network Functions

…..

Carriers’ Network Functions

…..

x86 high volume servers IN DATA CENTER @ CARRIERS

Carrier의 Network Commodity specialized HW HW

15

• • • • • •

General router functions Mobile network node (e.g., SGSN, GGSN/PDN-GW) functions IPsec/SSL, VPN functions DPI, QoS, QoE, measure/monitoring & action AAA, policy control, charging Network optimization functions (e.g., CDNs, Cache Servers, Load Balancers, Application Accelerators) • Security functions (e.g., Firewalls, virus scanners, intrusion detection systems, spam protection) • Home router / set-top box functions 16

• Reduced equipment costs and reduced power consumption • Increased speed of Time to Market by minimising the typical network operator cycle of innovation. • Availability of network appliance multi-version and multitenancy • Targeted service introduction based on geography or customer sets is possible. Services can be rapidly scaled up/down as required. • Enables a wide variety of eco-systems and encourages 17 Source, NFV White paper, 2012 openness.

• Telco의 당면 과제들 (source from DT) – Competitive pressure, traffic growth, cost & complexity, time to market …

• Easy control and management of Telco System – Dedicated appliance 들의 제어 및 관리의 어려움 – 새로운 서비스의 도입 시간 단축 – 이제,몇몇 big제조업체들만이 telco의 유일한 거래 파트너가 아니 다 – 3rd Party S/W협력업체의 등장 • 특히 charging, policy, security-related functions … 18

BT 사례 NfV speeds up time to market “From 90 days to nine

• Performance Trade-Off • Migration and co-existence of legacy & compatibility with existing platforms • Portability/Interoperability (표준) • Management and Orchestration (서비스 제공) • Automation  (SDN control programming) • Security & Resilience • Network Stability • Simplicity • Integration 20 Source, NFV White paper, 2012 (Modified)

• Creates competitive supply of innovative applications by third parties

Open Innovation

SDN

NfV

• Creates N/W abstractions to enable faster innovation

• Reduces CAPEX, OPEX • Space & Power Consumption

Source, NFV White paper, 2012 (Modified)

21

서비스제공자

제조업체/벤더

NFV 기술의 확산 및 텔코들의 컨센서스 도출을 위한 Place필요

22

• ETSI 산하 ISG 결성 (2012.12) – Network-operator-driven ISG (13 Founding Member) – ETSI 멤버쉽을 가지고 있으면 누구가 조인 가 능 – 그 자체로 표준화 기구는 아님 – 공동협력 (ONF) (예, OF규격확장)

http://portal.etsi.org/portal/ server.pt/community/NFV/367

• NFV : Network Operator Requirements – White paper

• NFV#01 : 2013.1.15-17, Sophia Antipolis • NFV#02 : 2013. 4. 22-23, Santa Clara (Huawei) 23

Acme Packet Allot Communications Systems Ltd Amdocs Software Systems Ltd AT&T Alcatel Lucent Benu Networks Broadcom Corporation BT Group PLC Cablelabs Ceragon Networks Cisco Systems Belgium Citrix Systems Inc Deutsche Telekom AG DOCOMO Communications Laboratories Europe GmbH ETRI France Telecom S.A. Freescale Semiconductor EMEA S.A. Fujitsu Laboratories of Europe Hewlett-Packard Hitachi Europe Huawei Technologies (UK) Co. Ltd IBM Europe Intel Corporation (UK) Ltd Iskratel Ltd Italtel S.p.A JDSU Deutschland GmbH

Juniper Networks KT Corporation NEC Europe Ltd Nokia Siemens Networks GmbH & Co.KG NTT Corporation Oracle Portugal Telecom SGPS SA RadiSys Inc Samsung Electronics Seven Principles AG Spirent Communications Sprint Swisscom SA Tektronix GmbH Co KG Telecom Italia S.p.A Telefon AB LM Ericsson Telefonica S.A. Telekom Austria AG Telenor ASA Tellabs OY UPRC Verizon UK Ltd. Virtela Technology Services Inc Vodafone Group Services plc Yokogawa Europe B.V ZTE Corporation

51 ETSI기관 + 58 개 participants

24

• Technical Steering Committee (TSC) • 4 WGs 1.

2. 3. 4.

Architecture of the Virtualization Infrastructure (INF) Management & Orchestration (MANO) Software Architecture for Network Functions (SWA) Reliability & Availability (REL)

• 2 EGs 1. 2.

Performance and Portability (PER) Security (SEC)

25

Source, ETSI NFV ISG

26

Source, ETSI NFV ISG

27

Doc

Group

Work item

NFV(13)M02028r1 NFV(13)M02027r1 NFV(13)M02034r1

Plenary

NFV(13)M02017r1 NFV(13)M02018 NFV(13)M02019 NFV(13)M02020 NFV(13)M02021 NFV(13)M02022 NFV(13)M02023

Plenary INF INF INF INF INF INF

NFV(13)M02024 NFV(13)M02025 NFV(13)M02042 NFV(13)M02030 NFV(13)M02029 NFV(13)M02031

INF INF INF SWA SWA SEC

NFV(13)M02028r1_NFV_End_to_End_Architecture_Reference_Document.zip NFV(13)M02027r1_Network_Functions_Virtualisation__NFV__Use_Cases.zip NFV(13)M02034r1_Network_Functions_Virtualisation__NFV___Virtualisation_Requi. zip NFV(13)M02017r1_Terminology_for_Main_Conceptional_Entities_in_NFV.zip NFV(13)M02018_Infrastructure_Overview.zip NFV(13)M02019_WI_-_Illustrative_Use_Cases.zip NFV(13)M02020_WI_Proposal_for_Compute_Domain.zip NFV(13)M02021_Proposed_WI_for_the_Hypervisor_Domain.zip NFV(13)M02022_Proposed_WI_for_the_Infrastructure_Network_Domain.zip NFV(13)M02023_Proposed_WI_for_the_Scalability_as_a_Cross_Domain_capability. zip NFV(13)M02024_Proposed_WI_for_Interfaces_and_Abstraction_corss_domain_.zip NFV(13)M02025_Proposed_WI_for_the_Partability_and_Riplicabilitycapabilitie.zip NFV(13)M02042_Proposed_WI_for_the_Test_Access_Capabilities.zip NFV(13)M02030_Network_Function_Classification.zip NFV(13)M02029_Network_Evolution_Towards_a_Virtualized_Environment.zip Source, ETSI NFV ISG 28 NFV(13)M02031_NFV_Security_-_Problem_Statement.zip

Plenary Plenary

Part 1: Infrastructure Architecture; Sub-part 1: Overview

Virtualisation of network function

Source, ETSI NFV ISG

Management and orchestration of

29

Part 1: Infrastructure Architecture; Sub-part 1: Overview

Source, ETSI NFV ISG

General Domain Architecture and Associated Interfaces

30

General Domain Architecture and Associated Interface Type # Description Interfaces VI Container 4 This is the primary interface provided by the infrastructure to host VNFs. The applications may be distributed and Interfaces VNF Interconnect Interfaces

3

Infrastructure 6 Container Interface s 7 8

Infrastructure Interconnect Interfaces Legacy Interconne ct Interfaces

12 9 10 11 14

the infrastructure provides virtual connectivity which interconnects the distributed components of an applicati on. These are the interfaces between the components of a VNF. The specification of these interfaces does not includ e and is transparent to the way the infrastructure provides the the connecitivity service between the component s, however distributed. Virtual Network Container Interface: the interface to the connectivity services, for example E-Line and E-LAN ser vice, provided by the infrastructure. This container interface makes the infrastructure appear to the NFV applic ations as instances of these connectivity services. Virtual Machine Container Interface: the primary hosting interface on which the VNF virtual machines run. Note, NFV orchestration and management runs on this interface. Virtual MANO Container Interface: the interfaces that allows the VNFs to request different resources of the infrast ructure, for example, request new infrastructure connectivity services, allocate more compute resources, or activ ate/deactivate other virtual machine components of the application. The primary compute hosting interface on which the hypervisor runs. Orchestration and management interface with the infrastructure network domain. Orchestration and management interface with the hypervisor domain. Orchestration and management interface with the compute domain. Network interconnect between the compute equipments and the infrastructure network equipments.

1

The interface between the VNF and the existing network. This is likely to be higher layers of protocol only as all p rotocols provided by the infrastructure are transparent to the VNFs 2 Management of VNFs by existing management systems 5 Management of NFV infrastructure by existing management systems 13 The interface between the infrastructure network and the existing network. This is likely to be lower layers of prot ocol only as all protocols provided by VNFs are transparent to the infrastructure 31

Source, ETSI NFV ISG

Source, ETSI NFV ISG

32

Part 1: Security; Sub-part 1: Problem Statement (V0.0.2) Key Issue

Relevant WGs

Topology Validation & Enforcement Availability of Management Support Infrastructure Secure Boot Secure Crash Performance Isolation Tenant Service Accounting Authenticated Time Service Private Keys within Cloned Images Back-Doors via Virtualised Test Functions

MANO ArchVI, RelAv MANO, ArchVI ArchVI, MANO RelAv, ArchVI MANO, ArchVI ArchVI SWArch, MANO MANO

Source, ETSI NFV ISG

33

• NFV Plenary meetings every quarter. – – – – – – –

NFV#03: Next meeting is July 24-26 Bonn Germany NFV#04: 29-31 October, USA NFV#05: Jan 21-23 or Jan 28-30 2014 Europe. NFV#06: April 29-May 1-2014 Asia. NFV#07: July 23-25 2014 Europe. NFV#08: October 2014 USA The NFV closing meeting will be held in January 2015 in Sophia-Antipolis or the surrounding area. 34

SDN 벤더입장에서 Telco / NFV는 중요한 고객이자 Killer 서비스 !

35

• Optical extensions to OF/SDN • Wireless integration, characterization of wireless interfaces, flows, handover support in OF/SDN • Evolved packet core, LTE support for OF/SDN • New controller architectures, API, SDN “north-bound” interfaces • End-to-end SDN and legacy interworking • Higher level SDN abstractions, APIs, object models for carriergrade equipment including middle box (e.g., NAT, FW, etc.) • CCN/ICN and their relation with SDN • Network functions Virtualization (NFV) techniques based on SDN • SDN languages and tools, testing, and debugging 36

• • • • • • • • •

Software-based DPI CG-NAT, NAT-PT (NAT64/6RD) Energy-aware SDN Firewall, web security, IPS/IDS, WAN acceleration and optimisation, and router functions The virtualisation of CDN, CDNi, CCN Mobile network traffic optimization Charging … Crash and recovery (공통점) 새로운 carrier-policy의 add 37

BT (SDN+NFV use cases)

Basic SDN SDN-aware Services/ Applications/Stuff SDN Control Functio n Layer

X

SDN Controller Layer

SDN Dataplane Laye r 39

Software-Defined EPC in Telco System Software-Defined Wireless in Telco System Software-Defined Optics in Telco System Software-Defined Mobility in Telco System

Software-Defined Multicast in Telco System Software-Defined Security in Telco System



40

• Network function 들의 SDN 적용 가능성 – – – – –

• • • •

function 분리가 가능한지 (H/W dependency) Performance DPI Monitoring (Northbound Interface) Centralized controller

Open Interfaces Service chaining (or stitching) Open source의 활용 여부 Network functions Virtualization (L4-L7) 표준화 41

x86 high volume servers Carriers’ Network Functions

Standard high volume storages Hypervisor / Orchestration Service chaining SDN Controller

Open Interface (OF + ext)

Standard High volume Switch (Commodity)

42

NFV (with SDN) - 실 구현물 경험과 사례 연구 (Sources from ONS2013, SDN APAC Congress, etc.)

43

Telefónica & NEC & Intel: Virtual EPC

Telefónica & NEC & Intel: Virtual EPC

Verizon & Intel: Virtual N/W functions

Telstra & Ericsson

47

Telefonica & Huawei : Virtual Residential G/W

Huawei : End-to-End SDN

ETRI & 스마트인터넷

• SDN & NFV  텔코가 나가야 할 방향 (텔코관점) – ETSI NFV ISG (텔코중심) – ONF (CP중심) – Open Daylight (제조업체 중심)

• NFV == Enabler of Telco-SDN (제조업체 관점) • NFV는 새로운 개념이 아닌, 기존 Network Virtualization 에 현실화된 개념 + 데이터 센터(클라우드) 가상화 활용 • 우리나라는 스마트노드플랫폼 + 신규SDN 과제가 이와 연계중 (빠른개발 + Ref 사이트 + 표준화 필요) 51

• Network Service Chaining (NSC) • [email protected] – NFV (MANO)중심의 텔코 요구사항 도출 – 필요한 규격은 IETF 에서 작업될 가능성 많음

• 회의안건 및 주요이슈 – 가상화된 다양한 네트워크 L4-L7 서비스들의 연결시 연결순서, 인터페이스, 검증 이슈 등 – 시스코등 벤더중심으로 텔코 요구사항 반영 – 이번회의는 non-forming WG BoF 회의로 일단 진행 52

53