1. Brent Salisbury CCIE#11972 Network Architect University of Kentucky 9/22/2012 https://twitter.com/#!/networkstatic OpenStack & OpenFlow Demo

2. Network is the Substrate Cloud computing refers to the delivery of computing and storage capacity as a service to a heterogeneous community of end-recipients. The name comes from the use of clouds as an abstraction for the complex infrastructure it contains in system diagrams. Cloud computing entrusts services with a user's data, software and computation over a network. Cloud computing relies on sharing of resources to achieve coherence and economies of scale similar to a utility (like the electricity grid) over a network. At the foundation of cloud computing is the broader concept of converged infrastructure and shared services over networks.

3. “I need a different VM placement policy” “I’ll build in a way to share revenue with my customer’s” “I want to report on my customers SLAs” “My UI will be easier to use” “I have a much better way to snapshot machine images” “I let my customers span multiple clouds” OpenStack Example of the Future: Open Source Cloud Framework

4. Good Parents 170+ companies

5. Typical Provisioning Workflow -Paperwork-Storage-Systems-Network-Security-Licensing-Scheduling-Reporting-Billing-Repeat-Efficiency?

6. Demo Components OpenStack - OrchestrationOpenStack - Orchestration OpenvSwitch - Network VirtualizationOpenvSwitch - Network Virtualization Kernel Virtualization Module (KVM) – HypervisorKernel Virtualization Module (KVM) – Hypervisor Bare Metal x86 Server Dell r910 & r720Bare Metal x86 Server Dell r910 & r720 10 minute demo the following As Provider As Provider Provision new customer/tenant and UIDs. Provision new customer/tenant and UIDs. Modify policy for quotas including usage in storage, VCPU, memory, images OS and capacity, network addressing based on customer need. Modify policy for quotas including usage in storage, VCPU, memory, images OS and capacity, network addressing based on customer need. As Customer As Customer Login as user and self-provision SSL keys and apply 5-tuple security policy to each host we spin up. Login as user and self-provision SSL keys and apply 5-tuple security policy to each host we spin up. Launch Windows 2008 R2 and Linux hosts with varying levels of memory, CPU and ephemeral storage. Launch Windows 2008 R2 and Linux hosts with varying levels of memory, CPU and ephemeral storage. Assign networks to these hosts based on purposing. Assign networks to these hosts based on purposing. As Provider and Customer As Provider and Customer Review usage data for capacity planning, SLA fulfillment, usage analytics and billing. Review usage data for capacity planning, SLA fulfillment, usage analytics and billing. Nerd Warning BPDUGuard good

7. Demo Topology

8. Software Defined Networking Warning: Contains optimism (Plug to http://PacketPushers.net for Unicorn Humor!)

9. PE P P MPLS Core Customer A Customer B Customer A Customer B FlowVisor Control Plane SDN Controller Control Plane SDN Controller It should be the next x86 market. Have we admitted that yet? It should be the next x86 market. Have we admitted that yet? The value in abstraction is proven. The value in abstraction is proven. It should be the next x86 market. Have we admitted that yet? It should be the next x86 market. Have we admitted that yet? The value in abstraction is proven. The value in abstraction is proven. Can I not be a cheaper Merchant silicon chip? Control Plane SDN Controller Control Plane SDN Controller Old slide but still valid imo

10. Change is Bad We are operating far to close to the hardware. o Do systems administrators configure their services in x86 Bios? Well, we do. Generic components decomposed into resources to consume anywhere, anytime. Abstraction of Forwarding, State and Management. o Forwarding: Networking gear with flow tables and firmware. o State: Bag of protocols destruction. o Management: Orchestration, CMDB etc. Join the rest of the data center (and world)

11. GENI FlowVisor Openflow Controller GENI FlowVisor Openflow Controller Physical Network Infrastructure Router, Switches, RIB, LIB, TCAM, Memory, CPU, ASIC. Physical Network Infrastructure Router, Switches, RIB, LIB, TCAM, Memory, CPU, ASIC. Virtualization Physical HW Slices SDN Network VM Farms Today Not New Ideas

12. Planes Trains and Fabrics.. SDN Controller Framework Generic Switch Architecture

13. Data Path (Hardware) Control Path OpenFlow OpenFlow Controller OpenFlow Protocol (SSL/TCP) Next Few slides are from presentation from Srini Seetharaman Deutsche Telekom

14. Controller PC Hardware Layer Software Layer Flow Table MAC src MAC dst IP Src IP Dst TCP sport TCP dport Action OpenFlow Client **5.6.7.8***port 1 port 4port 3 port 2 port 1 1.2.3.45.6.7.8 OpenFlow Example

15. OpenFlow Basics Flow Table Entries Switch Port MAC src MAC dst Eth type VLAN ID IP Src IP Dst IP Prot L4 sport L4 dport RuleActionStats 1.Forward packet to zero or more ports 2.Encapsulate and forward to controller 3.Send to normal processing pipeline 4.Modify Fields 5.Any extensions you add! + mask what fields to match Packet + byte counters VLAN pcp IP ToS

16. Examples Switching * Switch Port MAC src MAC dst Eth type VLAN ID IP Src IP Dst IP Prot TCP sport TCP dport Action * 00:1f:.. *******port6 Flow Switching port3 Switch Port MAC src MAC dst Eth type VLAN ID IP Src IP Dst IP Prot TCP sport TCP dport Action 00:20..00:1f..0800vlan11.2.3.45.6.7.841726480port6 Firewall * Switch Port MAC src MAC dst Eth type VLAN ID IP Src IP Dst IP Prot TCP sport TCP dport Action ********22drop

17. Examples Routing * Switch Port MAC src MAC dst Eth type VLAN ID IP Src IP Dst IP Prot TCP sport TCP dport Action *****5.6.7.8***port6 VLAN Switching * Switch Port MAC src MAC dst Eth type VLAN ID IP Src IP Dst IP Prot TCP sport TCP dport Action ** vlan1 ***** port6, port7, port9 00:1f..

18. Multi-Tenant Slicing

19. > Doh! Jumbled Protocol Picture source: Nick McKeown