NfV koncepce a případy využití
TECH-SDN-SP
Martin Slinták
Systems Engineer
Cisco Connect, 17.6. 2014
Obsah přednášky




Co je NfV, standardizace
Použitelnost NfV
Cisco a NfV
Případy využití NfV + demo
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
Network Functions Virtualisation
Enablers, benefits and applications
NfV = Transition of network infrastructure services to run on virtualised compute platforms
Using cloud technology to provide network functionality
 Enablers
Hypervisor and cloud computing technology
Improving x86 h/w performance
Optimised packet processing and coding
techniques
Network industry standardising on Ethernet
SDN based orchestration
 Value Proposition
Shorter innovation cycle
Improved service agility
Reduction in CAPEX and OPEX
 Applications
Potentially all network functions
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
dDOS
VM
SBC
VM
Firew all
VM
NAT
VM
CGN
VM
DPI
VM
IPS
VM
Virus Scan
VM
DHCP
VM
DNS
VM
Portal
VM
WLC
VM
RaaS
VM
PCRF
VM
SDN
Ctrl.
VM
BRAS
VM
NMS
VM
Caching
VM
CDN
VM
WAAS
VM
Network Functions Virtualisation: Terminology
 Network Function (NF): A functional building block within a network infrastructure, which has welldefined external interfaces and a well-defined functional behaviour. In practical terms, a Network
Function is today often a network node or physical appliance
 Virtualised Network Function (VNF): An implementation of an NF that can be deployed on a Network
Function Virtualisation Infrastructure (NFVI).
 NfV Infrastructure (NFVI): The NFV-Infrastructure is the totality of all hardware and software
components which build up the environment in which VNFs are deployed. The NFV-Infrastructure can
span across several locations
 NfV Orchestrator (NFVO): The NfV Orchestrator is in charge of the network wide orchestration and
management of NfV (infrastructure and software) resources, and realizing NfV service topology on the
NFVI
 NF Forwarding Graph: A graph of logical links connecting NF nodes for the purpose of describing traffic
flow between these network function
 VNF Component (VNFC) – Subcomponent of a VNF executing in a discrete VM*
Source NfV terminology document : http://www.etsi.org/deliver/etsi_gs/NFV/001_099/003/01.01.01_60/gs_NFV003v010101p.pdf
* Not formally defined
in the terminology document
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
ETSI NfV architektura a organizace
NfV Management and
Orchestration
Os-Ma
OSS/BSS
Orchestrator
Se-Ma
Technical
Steering
Committee
Service, VNF and Infrastructure Description
Or-Vnfm
EMS 1
EMS 2
EMS 3
Ve-Vnfm
Reliability and
Availability
VNF
Manager(s)
Management
and
Operations Or-Vi Expert Groups
VNF 3
VNF 2
S/W Architecture
VNF 1
Vn-Nf
Vi-Vnfm
NFVI
Virtual
Computing
Virtual Storage
Performance
and portability
Virtual Network
Nf-Vi
Virtualisation Layer
Infrastructure
Vl-Ha
Computing
Hardware
Storage
Hardware
Presentation_ID
Execution reference points
Virtualised
Infrastructure
Manager(s)
Hardware resources
Network
Hardware
Cisco and/or itsOther
affiliates.
All rightspoints
reserved.
reference
Publicpoints
Main NfV Cisco
reference
Security
© ETSI 2012. All rights reserved
6
NfV Infrastructure Group
 Role: Infrastructure to support VNFs
 Hypervisor domain
Virtual Machine technology
 Compute domain
h/w on which VNFs execute
Hypervisor
Domain
Virtual
Compute
Compute
Infrastructure
Network Domain
Virtual
Virtual
Storage
Network
Domain
Presentation_ID
Storage
 Infrastructure Network domain
Real and virtual infrastructure network
N/W virtual partitioning technology
Virtualization Layer
Compute
CPUs – x86 and ARM
Network Interface Cards
Accelerators
Storage
Network
Cisco and/or its affiliates. All rights reserved.
Cisco Public
NFV-MANO Group
 Role: Management framework of VNFs and NFVI
 NfV Orchestrator
Life cycle management of n/w services
Across entire operators domain (multiple sites)
 VNF Manager
lifecycle management of VNFs
Associated NFVI resources
 Virtualised Infrastructure Manager
management of the NFVI components
specialist VIMs permitted (e.g. compute and n/w)
 E/NMS: FCAPs for VNFs
 OSS/BSS: linkage to legacy systems
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
OSS/BSS
NfV Orchestrator
(NFVO)
E/NMS
VNF Manager
(VNFM)
VNF
NFVI
Virtualised
Infrastructure
Simplified
Manager
(VIM)
Cisco Public
Software Architecture Group
 Role: Structure of VNFs and interfaces
 VNF Designs
EMS
VNF
Other
VNFs
VNFC/VM
VNFC/VM
VNFM
Single or multiple components (VNFCs)
VNFC parallel or non parallel
VNFC  Stateful, stateless, external state
Load balancing
Scaling models auto, on-demand, manual
Reuse
 Description of VNF Characteristics
Defining VNF properties
Descriptor (VNFD) attributes
NFVI
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
Použitelnost NfV
The “Service Provider” landscape
Metro and Access
Service Provider Services
Gateways
TAS
2G 3G
RNC
OCS
SMS-C
MMS-C
Data Center
RMS
HCS
SP Data Center
GGSN
SGSN
OSS/BSS/NMS/EMS
SecGW
LTE
Wireless
HNB-GW
Small
Cell
SGW
WiFi
FTTx
PON
ePDG
Voice/IMS
Wireline
Res
CPE
CMTS
BGCF
ENUM
Business
PE
xDSL
MGCF
PS/RLS
I-CSCF
HSS
CSCF
DRA
Network
Video
Video
ingestion
BGP
server
DRM
Transcoding
DHCP DNS
Cache
control
Policy
AAA
SDN
Controller
Enterprise
Data Center
User plane
BNG
Voice/IMS
MGW
MSC-S
A-SBC
I-SBC
HFC
Data
Video
Cache
streaming
Transcoding
Transrating
CGN
Security
GWs
Core Network
Metro Network
Presentation_ID
Capacity
Planning
Billing
Subsystems and Network Control
MME
HLR
Biz
CPE
Analytics
PGW
eWAG
WLC
Provisioning
EMS
Cisco and/or its affiliates. All rights reserved.
Cisco Public
LB
DPI
FW
DC Network
Network solutions: Requirements
High
Wireless
GWs
OSS/BSS, subsystem
and N/W control
Appliances (L4-L7)
CPU
Reqs
Wireline GWs
Backbone, Metro and DC switching
Business CPE
Home CPE
Low
0
10Mbps
Presentation_ID
100Mbps
1Gbps
10Gbps
Cisco and/or its affiliates. All rights reserved.
100Gbps
1Tbps
10Tbps
Cisco Public
100Tbps 1Pbps
Network solutions: Design approaches
Variable CPU / FPGA / NPU
Distributed: Lots CPUs + NPUs
High
Wireless
GWs
OSS/BSS, subsystem
and N/W control
Distributed: CPUs + Lots of NPUs
Appliances (L4-L7)
CPU
CPU
Reqs
Centralized: CPU or SoC
Wireline GWs
Backbone, Metro and DC switching
Business CPE
Centralized: CPU + NPU
Home CPE
Low
0
10Mbps
Presentation_ID
100Mbps
1Gbps
10Gbps
Cisco and/or its affiliates. All rights reserved.
100Gbps
1Tbps
10Tbps
Cisco Public
100Tbps 1Pbps
Virtual Network Functions (VNF) – evaluation criteria
 Physical Design Requirements
– interface count, interface size, system design requirements, specialist N/W functions
 Performance Requirements
– L1-L3 packet performance, CPU processing, fabric capacity
 Network Architecture
– Will virtualization fit the network architecture principles of the network
 Elasticity of the service
 Economics
– Onboarding, CapEX and OpEx
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
Appeal of virtualized solutions
Business CPE and services
Consumer Services
SP applications
Consumer CPE
Active Cisco
infrastructure efforts
OSS/BSS/NMS/EMS
IMS
Active Cisco
efforts
Videovirtualization
Solutions
Network control
Wireline gateways (BNG/BRAS)
DC
infrastructure
Metro
Mobile Gateways
User Plane Appliances (GiLAN)
Core
Backbone
DC Virtual appliances
Appeal of x86 virtualization
Lower
Presentation_ID
Virtualization Opportunities
Cisco and/or its affiliates. All rights reserved.
Cisco Public
Some very
obvious / many SP and architecture
dependent
Higher
Cisco a NfV
Cisco’s NfV vision – architectural components
Virtualised Netw ork Functions
(VNFs)
Orchestration (NFVO)
Classification
+
Redirection
Function
Customer
Premises
and / or
Policy
Server
Data Centre
PoP
Wide Area Network
Netw ork
Overlays
Compute
+
Virtualization Technology (NFVI)
+
Service Chaining
•
Real: High capacity plumbing and high performance gateways
•
Virtualized: CPU intensive functions, low – mid range packet processing functions
•
Interaction required between the real and virtual network functions via orchestration
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
NFVI compute - Placement of resources
ISR G2 Cloud Connector (UCS)
Customer
Premises
PoP
Centralised DC
NGN
CPE
IP edge
Blade or chassis based UCS
UCS directly connected to ASR9000
VSM running in an ASR9000
Stand Alone UCS Server
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
NFVI hypervisor – Cisco’s approach
Virtual Machine
Bare Metal
 ETSI allows virtualized and bare metal solutions
 Cisco approach
Concentrating on virtualized solutions
Multi-hypervisor approach for the overall market place
SP’s running NfV environments  KVM managed by Openstack
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
NFVI network – Virtual partitions
L3 VPN
Internet
L3 VPN
Internet
vRouter
vFirew all
vWeb Scrubber
L2 or L3
Fabric
vLoadbalancer
IaaS capabilities
Managed Services
Functionality
Example: Managed Services Virtual Partition
Physical Infrastructure
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
NFVI network – creating the virtual network partitions
Virtual
Infrastructure
Manager
Virtual
Infrastructure
Manager
Infrastructure Network
Underlay and overlays
Example vPE and VXLAN
Infrastructure Network
Infrastructure partitioning
Example VLANs
Functionality of virtual N/W orchestration controller application dependent on physical
infrastructure and virtualization technology
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
NFVI network – Service Chaining or Forwarding Graphs
Service Chains
DNS
Service 1
LB
DPI
Video
opt
NAT
DNS
Service 2
DPI
NAT
DNS
Default Service
Re-direction
function
Simple Service Chains
Complex Services and Service Chains
• Steer traffic through a one or more service entities
• Critical for non routed data plane services
• Important for control plane services
• Physically/logically directed or carried in packet metadata
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
Internet
NFVI network – Service Chaining or Forwarding Graphs
External Controller
7
6
5
vSwitch
4
vForwarder
vForwarder
3
2
1
vSwitch
Internet
Service
Redirection
vForwarder
HDR
NSH
Original Frame
Service Path information determines Service Chaining
•
Service ordering determined by real or virtual n/w structure
•
Service ordering by info in user packet
•
Virtual Packet Edge (vPE) solution
•
5 drafts submitted by Cisco at Berlin IETF
•
New IETF working group “Service Function Chaining (sfc)
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
Cisco VNF status
Simulation and Test
OSS/BSS and SP Applications
Prime
Central
CSR1000vCSR1000v
Prime
Fulf illment
Prime
Prov isioning
Prime
Security
Manager
v IOS
Quantum
Classic
WAN
Orchestration OnePK SDK
Prime
Inf rastructure
Control Plane components
MME
(STAR-OS)
eWAG/ePDG
(STAR-OS)
VIRL
Network Control
CDN
Identity
Serv ices
Engine
Mobility
Serv ices
Engine
Prime Access
Registrar
(RADIUS)
Prime
Network
Registrar
(DNS and
DHCP)
Quantum
WAN
Orchestration
Quantum
Policy Suite
IOS-XR
Virtual Route
Ref lector
(32bit and 64
bit)
User Plane Appliances
Netscaler
Load
Balancer
Adaptiv e
Security
Appliance
(ASA + VSG)
v CGN
(v ia
CSR1000v)
Wireless LAN
Controller
Email
Security
(Ironport)
Web
Security
(Ironport)
Network
Analy sis
Module
(v NAM)
Wide Area
Application
Serv ices
(v WaaS)
Ipsec
Deep Packet
Gateway
Inspection
(CRS1000v) (CRS1000v)
vSecGW
(ASR9000)
Routing / Switching / Gateways
v CPE
(CSR1000v)
Virtual L2
Switch
(Nexus
1000v )
v BNG
(CSR1000v)
Presentation_ID
Virtual
Forwarder
(L2 / L3
forwarder)
PGW/SGW SGSN/GGSN eWAG/ePDG
(STAR-OS)
(STAR-OS) (STAR-OS)
MME
(STAR-OS)
Cisco and/or its affiliates. All rights reserved.
Cisco Public
vDPI
(vSCE)
4-6 Softwire
Concentrat
or
(VPP)
Load
balancer
(VPP)
Případy využití NfV
NfV Use Cases






Virtualized SP and third party applications / appliances
Virtualized gateways (PE, P-GW, BNG/BRAS)
Virtual Managed Services
Virtual Home CPE (→demo)
Virtualized mobile solutions
Virtualized video solutions (→demo)
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
NfV use case: Virtualized SP / 3rd party applications
Orchestration
NGN
Internet
DNS
Content
Ingestion
CPE
IP edge
Streamer
DHCP
IMS
 Many examples
Centralised DC
OSS/BSS, voice and video solutions, N/W control, video/collaboration solutions, wireless/wifi, security
 NfV transition well underway
 Cisco has a wide range of FCS’d products in this space
See earlier slide for details
 New solutions coming think and fast
Ask your SE for the latest status
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
NfV use case: Virtualized Edge Gateway
Policy
Server
Orchestration
Internet
NGN
CPE
IP edge
vBNG
vBNG
Centralised DC
 Cisco complementing existing h/w gateway solutions with virtualized g/w solutions
 vPE, vBNG/BRAS based on Cloud Service Router (CSR1000: IOS-XE 3.13 July 2014)
 Virtual mobile gateways (MME, S/PGW) based on QvPC solutions
 CableLabs have kicked off work on vCMTS
 Virtualized gateways may require architectural changes
VirtualPresentation_ID
racking and stacking
Cisco and/or its affiliates. All rights reserved.
Cisco Public
NfV Use Case: Managed services
Metro +
WAN
Service appliances
in the branch and DC
BranchOffice
Data Centre
Virtualised services on
the physical router
Metro +
WAN
Data Centre
Branch Office
Virtualised
router and services
V
Virtualized service in DC
Presentation_ID
L
2
Data Centre
V
C
P
E
Metro +
WAN
Branch Office
L
2
C
P
E
Data Centre
Metro +
WAN
Branch
Cloud Connector
available
Under
investigation
Metro +
WAN
BranchOffice
Virtualized branch
services
Today
Cisco and/or its affiliates. All rights reserved.
V
Data Centre
Cisco Public
Systems Work
underway
Systems Work
underway
NfV use case: Virtual residential gateway
Management and
Control
Gateway
Data
Centre
Services
Wireless
AP
L2 Domain
F
W
Internet
Cloud Data Centre
L2 Domain
 Quantum Virtual Broadband Node (Q-vBN)
– L2 domain between home and data centre
– Virtualized CPE and home services in the cloud
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
NfV use case: Virtual Services Infrastructure
APN
*#
DPI
Firewall
Address
Translation
Enterprise
APN
VO
APN
Access
GGSN/
PGW
APN
Signal
Strength
AD
JW
M
PG
12
3
4TBK5XNE6
H
Q
C8 F9
7U
RI L0YO
V
S Z
Web
Proxy
A-SBC
FW
Video Only
IMS User
 Physical Appliances are complex to design
Mismatched capacities
Diverse resiliency strategies
Incompatible networking
 Re-configuration (adding capacity or adding an appliance) is difficult
 Hard-wired service chains
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
Android User
NfV use case: Virtual Service Infrastructure
Cloud Orchestration and Management
ASR 9000
Signal
Strength
AD
G
J2W
M
P
1B
E3
4TK5XN
6
H
Q
C
7U
8 F9
I L0Y
O
R
V
S Z
*#
Access
GGSN/
PGW
Web
Proxy
NAT
VO
FW
VO
FW
DPI
FW
A-SBC
 Simple reconfiguration of service chains via SDN and virtualization tools
Improved scaling
Elastic services
 GiLAN solution trials : 1HCY2014
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
Q-vBN
Q-vBN Intro
Broadband Today
Services
Virtualize Services
???
Broadband Tomorrow
Virtualize Network
API Exposure
Services
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
Definice Q-vBN
What is it?
 A low cost software based virtualization system that runs standard broadband
CPE code in the cloud
What can it do?
 Allows for services to be written and run in the cloud
 Allows SPs to sell an inexpensive cloud based computing platform directly
connected in the home
 Extends the life of the physical CPE in the home
 Allows for per device management in the home
 Allows for test environments for companies to quickly trial new services
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
Q-vBN pro minimální vCPE aplikace
Cloud GW
vBN
Hosting
Datacenter




No L3 functionality in the gateway
All L3 functionality in a “cloud gateway”
Home broadcast domain extended to Cloud GW
Setup demonstrated at CES
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Access Node
Edge Node
Internet
Cisco Public
Q-vBN: Rozšíření LAN do Cloudu
API Exposure
Datacenter
 Network design unchanged – no forklift
 Home LAN extended to a Service
–
–
–
–
Access Node
Storage (NAS) Backup
IPv6 as a service/v4
Individual device management
M2M
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Edge Node
Internet
Cisco Public
Principy řídící vrstvy Q-vBN
No polling required – RPC and event driven
External Sets and Gets of data by RPC using HTTP/REST
Events and asynchronous RPC by XMPP Publish/Subscribe
A common internal Network Management Protocol built upon JSON formatted
messages
 Out of band control plane connection to agents in virtual CPEs for robustness
and security
 Control plane has been built to isolate agents from knowledge of their
identities. NMP adds/removes JSON addressing envelope as required
 Configuration pushed to agents, not pulled




Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
Interní architektura Q-vBN
 The basic building block in Q-vBN is a host which supports a number of vCPE
instances, a virtual switch and host/vCPE management agents:
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
Škálování Q-vBN
 Multiple Q-vBNs hosts are combined using ESB architecture:
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
Závěr
 Poptávka po NfV musí odpovědně zohledňovat růst síťového provozu
 Cisco se plně hlásí k NfV a je aktivní v mnoha oblastech
– VNFs, NFVIs, orchestrace
 Některé VNFs jsou zřejmé, velké spektrum ale závisí na SP a jeho architektuře
 Realitou jsou hybridní síťová prostředí s custom NFs i Virtualized NFs (VNFs)
 Přehled některých Cisco implementací NfV
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
Užitečné odkazy





GS NfV 001 NfV: Use Cases
GS NfV 002 NfV: Architectural Framework
GS NfV 003 NfV: Terminology for Main Concepts in NfV
GS NfV 004 NfV: Virtualisation Requirements
GS NFV-PER 002 NfV: Proofs of Concepts; Framework
Presentation_ID
Cisco and/or its affiliates. All rights reserved.
Cisco Public
42
Prosíme, ohodnoťte tuto přednášku
•
Děkujeme
~4k vCPEs
Core
Netw ork
Orchestration Engine
VM Create and
Configure
5
VM Orchestration
VM Create and
Configure
Request
SE Orchestration
4
pCPE
Broadband
Network
VDS
SR
CPE
+ $30 =
ONT-SFU
3
1
Elasticity
Policy
Load
Configure
ONT-RGW
Virtual
Environment
v Streamer Load Updates
VDS
Mgr
(OpenStack)
vStreamer
vStreamer
vStreamer
6
2
HTTP Load Generator
7