新一代軟體定義的網路架構

新一代軟體定義的網路架構
Software Defined Networking (SDN) and
Network Function Virtualization (NFV)
李國輝
客戶方案事業群亞太區解決方案架構師
美商英特爾亞太科技有限公司
Email: [email protected]
1
Legal Disclaimer
INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. NO LICENSE, EXPRESS OR IMPLIED, BY ESTOPPEL OR OTHERWISE, TO ANY
INTELLECTUAL PROPERTY RIGHTS IS GRANTED BY THIS DOCUMENT. EXCEPT AS PROVIDED IN INTEL'S TERMS AND CONDITIONS OF SALE FOR SUCH PRODUCTS, INTEL
ASSUMES NO LIABILITY WHATSOEVER AND INTEL DISCLAIMS ANY EXPRESS OR IMPLIED WARRANTY, RELATING TO SALE AND/OR USE OF INTEL PRODUCTS INCLUDING
LIABILITY OR WARRANTIES RELATING TO FITNESS FOR A PARTICULAR PURPOSE, MERCHANTABILITY, OR INFRINGEMENT OF ANY PATENT, COPYRIGHT OR OTHER
INTELLECTUAL PROPERTY RIGHT.
Intel may make changes to specifications and product descriptions at any time, without notice. Designers must not rely on the absence or characteristics of any features or instructions marked “reserved”
or “undefined.” Intel reserves these for future definition and shall have no responsibility whatsoever for conflicts or incompatibilities arising from future changes to them.
Intel processor numbers are not a measure of performance. Processor numbers differentiate features within each processor family, not across different processor families. See
http://www.intel.com/products/processor_number for details.
The products described in this document may contain design defects or errors known as errata which may cause the product to deviate from published specifications. Current characterized errata are
available on request.
The code names presented in this document are only for use by Intel to identify products, technologies, or services in development, that have not been made commercially available to the public, i.e.,
announced, launched or shipped. They are not "commercial" names for products or services and are not intended to function as trademarks.
Contact your local Intel sales office or your distributor to obtain the latest specifications and before placing your product order.
Copies of documents which have an order number and are referenced in this document, or other Intel literature may be obtained by calling 1-800-548-4725 or by visiting Intel's website at
http://www.intel.com/design/literature.htm.
No computer system can provide absolute security under all conditions. Intel® Trusted Execution Technology (Intel® TXT) requires a computer with Intel® Virtualization Technology, an Intel TXTenabled processor, chipset, BIOS, Authenticated Code Modules and an Intel TXT-compatible measured launched environment (MLE). Intel TXT also requires the system to contain a TPM v1.s. For more
information, visit http://www.intel.com/technology/security
Requires a system with Intel® Turbo Boost Technology. Intel Turbo Boost Technology and Intel Turbo Boost Technology 2.0 are only available on select Intel® processors. Consult your PC
manufacturer. Performance varies depending on hardware, software, and system configuration. For more information, visit http://www.intel.com/go/turbo
Intel® Virtualization Technology requires a computer system with an enabled Intel® processor, BIOS, and virtual machine monitor (VMM). Functionality, performance or other benefits will vary
depending on hardware and software configurations. Software applications may not be compatible with all operating systems. Consult your PC manufacturer. For more information, visit
http://www.intel.com/go/virtualization
The original equipment manufacturer must provide TPM functionality, which requires a TPM-supported BIOS. TPM functionality must be initialized and may not be available in all countries.
The TCO or other cost reduction scenarios described in this document are intended to enable you to get a better understanding of how the purchase of a certain products, including Intel products, combined
with a number of situation-specific variables, might affect your future cost and savings. Circumstances will vary and there may be unaccounted-for costs related to the use and deployment of a given
product. Nothing in this document should be interpreted as either a promise of or contract for a given level of costs.
All products, computer systems, dates and figures specified are preliminary based on current expectations, and are subject to change without notice.
Intel® Xeon®, Intel® Atom™ , Intel® Xeon Phi™, Intel® Core™ i5, Intel® Trusted Execution Technology (Intel® TXT), Intel® Advanced Encryption Standard New Instructions (Intel® AES-NI),
Intel® Advanced Vector Extensions (Intel® AVX), Intel® Open Network Platform, Intel® Lustre*, Intel® SSD, Intel® Ethernet Controllers and the Intel logo are trademarks of Intel Corporation or in the
US and other countries.
Copyright © 2013, Intel Corporation. All rights reserved.
* Other brands and names may be claimed as the property of others.
2
Agenda
 Why SDN/NFV?
 What is SDN/NFV?
 Intel’s solution to enable SDN/NFV
3
Today’s Network Infrastructure
Mobile
Clients
Cloud Services
Web Services Firewall
ISP A
Router
External
Clients
SSL Acceleration
Local Caching…
Intrusion
Detection
Stateful
Firewalls
Internet
Routers/SWs
Load
Balancer
Stateful
Firewalls
ISP B
Router
Back End Servers and Storage
Fixed Function Hardware based on Multiple Disparate Architectures
4
WAN
Software Defined Infrastructure:
The Evolution of Infrastructure
A world where the application defines the system
One application
per system
One application
per virtual system
Applications
DEFINE the system
Compute Application
APP A APP B APP C
Network Application
VM Manager
Application
A
Resource Pool
Storage Application
STORAGE
Traditional Hardware
5
Application
B
Abstracting the Hardware
NETWORK
COMPUTE
Abstracting the Datacenter
Software Defined Infrastructure
SERVICE ASSURANCE
Services Delivery
Application A
Application B
Application D
Policies and intelligent monitoring trigger dynamic provisioning and
service assurance as applications are automatically deployed and
maintained
Orchestration Software
Orchestration Software
PROVISIONING MANAGEMENT
Application C
Orchestration provisions, manages and optimally allocates resources
based on the unique requirements of an application
Infrastructure Attributes
Power
Performance Security
Thermals
Utilization
Location
POOLED RESOURCES
Network, Storage and Compute elements are abstracted into
resource pools
Resource Pool
Storage
6
Network
Compute
SDN vs NFV
Software Defined Networking (SDN)
Switch
Switch
Control
plane
Control
plane
Control
Plane
Data
plane
Data
plane
Control
Plane
Switch
Switch
Control
plane
Control
plane
Data
plane
Data
plane
Control
Plane
Control
Plane
SDN
Controller
Switch
Switch
Data
plane
Data
plane
OpenFlow
Switch
Switch
Data
plane
Data
plane
Based on three elements
1. Separation of control and data plane
2. Centralized management
3. Programmable network behavior via well-defined
interfaces
Allow network administrators to easily manage and program
network services through the abstraction of lower level
functionality and decoupling of network control and
forwarding functions
7
Network Function Virtualization
(NFV)
Standard Server
• Leverages standard virtualization technology
• Consolidate many network equipment types onto industry
standard servers, switches & storage
• Accelerate development and deployment of interoperable
solutions
Move away from proprietary, and increasingly costly, hardwarebased appliances that inhibit the rollout of new revenue-earning
network services and constrain innovation --ETSI NFV ISG
SDN + NFV Driving Architectural Transformation
From This, Today…
…To This, the Vision
Traditional networking topology
Networking within VMs
Monolithic vertical integrated box
Standard x86 server hardware
TEM proprietary solutions
Open SDN standard solutions
Firewall
ADC
Router
Firewall VM
ADC VM
Router
SDN + NFV
Vendor A
Vendor B
Hypervisor & Orchestrator
Vendor C
>_
TEM/OEM
Proprietary OS
8
ASIC, DSP,
FPGA, ASSP
IA Processor
NIC
Silicon
Chipset
Switch
Acceleration Silicon
Open
Software
Open Source, Open Standards,
A New Dawn in Networking
Network OS of Choice
X86
9
+
IO & High
Performance
Fabrics
NFV/SDN Environment
Orchestration
Network Apps
North Bound APIs
Controller
Controller
South Bound APIs
Node
Node
Top of Rack Switch Network Appliances
Node
Node
Node
Node
Micro Servers
RSA
Virtual
Servers
NFV
10
*Other brands and names are the property of their respective owners
Intel’s Path and Roadmap
Driving Efficient Workload Consolidation
Four Workloads…. One Architecture
2011
Application
Processing
Control
Processing
Packet
Processing
Intel® Xeon®
Processor E5600
+
Chipset 5520
2012
Intel® Xeon® E5- Intel® Xeon® E52600 v2
2600
+
+
Communications
Communications
Chipset
Chipset 8920
8920  8955
NPU/ASIC
DSP
One Instruction Set
Architecture
11
Future Platforms:
Glen Forest
River Forest
Intel® QuickAssist Technology
Intel® Data Plane Development Kit
HyperScan
Intel® Media Software Development Kit 1
Signal
Processing
1.
2.
2014 +
2013
DSP
Intel®
Transcede™
SoCs 2
One Tool Suite
Intel® Media Software Development Kit requires an Intel® Xeon® E3 or Intel® Core® processor (processor graphics)
More information can be found in product brief (http://www.intel.com/content/dam/www/public/us/en/documents/product-briefs/transcede-t2k-product-brief.pdf)
All products, computer systems, dates and figures specified are preliminary based on current expectations, and are subject to change without notice.
Intel® System Studio
DSP
DSP
Multiple Opportunities
Expanding Moore’s Law to Networking
220 Gbps*
IVB-EP 2S
Intel Data Plane
Development Kit
Throughput
160 Gbps*
SNB-EP 2S
Intel Data Plane
Development Kit
80 Gbps*
SNB-EP 1S
40 Gbps*
24 Gbps*
Nehalem 1S
Intel Data Plane
Development Kit
Westmere 1S
Intel Forwarding Stack
Intel Forwarding Stack
2009
2010
2011
2012
2013
Future
1: Intel internal estimate
2: Intel Internal measurement of packet processing performance using Intel Xeon processors. Software and workloads used in performance tests may have been optimized for performance only on Intel microprocessors. Performance tests, such as
SYSmark and MobileMark, are measured using specific computer systems, components, software, operations and functions. Any change to any of those factors may cause the results to vary. You should consult other information and performance
tests to assist you in fully evaluating your contemplated purchases, including the performance of that product when combined with other products.
For more information go to intel.com/performance
12
Intel® Data Plane Development Kit (intel DPDK)
Enabling vSwitch and vRouter Innovation on Moore’s Law
Intel® DPDK
Accelerated Open
vSwitch
SDN Software Switch
OpenvSwitch.org
Memory Management
Queue Ring Functions
*White Box represents Open
Source virtual switch projects
Flow Classification
NIC Poll Mode Drivers
01.org
*Other brands and names are the property of their respective owners
13
DPDK.org
Commercial
Virtual Switches &
Routers
ORCHESTRATION
Intel Contributions* to OpenStack for SDN and NFV
Monitoring/Metering
(Ceilometer)
Metrics
Object Store (Swift)
Image Store (Glance)
OVF Meta-Data Import
User Interface (Horizon)
Compute (Nova)
Trusted Compute Pools
(Extended with Geo Tagging)
Enhanced Platform
Awareness
Intelligent Workload
Scheduling
Key Encryption and Management
14
UX
UX
UX
Block Storage (Cinder)
Network Services (Neutron)
Intel® DPDK vSwitch
Advanced Services in VMs
VPN-as-a-Service (with Intel® QuickAssist Technology)
Key Service (Barbican)
Enhanced Platform Awareness
Security
Networking
PCIe SR-IOV Accelerators (Havana)
Intelligent Workload Scheduling Metrics
(Havana)
CPU Feature Detection (Icehouse)
OVF Meta-Data Import (Juno)
Trusted Compute Pools (Folsom)
Trusted Compute with Geo Tagging
(Icehouse)
Key Management (Icehouse)
VPN-as-a-Service with Intel® QuickAssist
Acceleration (Icehouse)
Advanced Services in VMs (Icehouse/Juno)
Intel® DPDK Open vSwitch (Juno)
*Other brands and names are the property of their respective owners
Intel SDN/NFV Solutions and Ecosystem
Intel® Architecture
Intel® Network
Acceleration
Intel® Communications
Chipset w/Quick Assist
Intel ® VT-X
Intel® VT-d
Intel Data Direct I/O
Intel® Ethernet w/
SRIOV
Intel® Ethernet
Switch
Intel Open Source
Software Solutions
Intel Commercial
Software Solutions
Intel Data Plane Development Kit
(DPDK)
Intelligent Network Platform
Intel DPDK Accelerated OvS
Open Virtualization Profile
Intel Open Network Software
Carrier Grade Comms Server
Intrusion Protection System
NG Firewall
Intel® Open Network Platform
Reference Architectures
Intel® ONP
Server
15
Intel® ONP
Switch
Intel® Network Builders (http://networkbuilders.intel.com/)
Summary
NFV and SDN are driving the network transformation
Global opportunities and challenges across
Cloud, Telecom and Enterprise
Open Source and Open Standards are vital to
unlocking the transformation
Intel is investing with partners across the industry
to lead the transformation
16
17

Download Report