SDN NFV FUNCTIONAL AND PERFORMANCE VALIDATIONS By Dr

SDN & NFV FUNCTIONAL AND PERFORMANCE VALIDATIONS By Dr. Manikantan Srinivasan Sr. Vice President - Veryx Technologies Pvt. Ltd, Chennai Adjunct Faculty Member – CSE Department, IIT Madras 10 August 2019 1 Confidential Copyright © Veryx Technologies

SDN BENCHMARKING 2 Confidential Copyright © Veryx Technologies

Benchmarking – SDN the needs • The SDN evolution has many SDN Controller based solutions. • Open Source SDN Controllers, Proprietary SDN Controllers. • Academic literature exists and continues on SDN performance. • Commercial / Production deployments require a well defined mechanism for easy comparison. • Very Technologies along with few other Networking companies has helped in SDN Benchmarking. • IETF RFC 8455: Terminology for Benchmarking Software-Defined Networking (SDN) Controller Performance • IETF RFC 8456: Benchmarking Methodology for Software-Defined Networking (SDN) Controller Performance • Veryx Contributors/Authors : Bhuvaneswaran Vengainathan, Anton Basil. 3 Confidential Copyright © Veryx Technologies

Benchmarking – Categories, Metrics Categories Performance Scalability Metrics Description Flow setup rate Maximum number of flows setup by a controller, expressed in flows per second Flow setup delay Time taken by the controller to setup a flow, expressed in milliseconds. End-End flow setup duration Time taken by the controller to setup a flow between a source to a destination, expressed in milliseconds. Open. Flow connections capacity Maximum number of concurrent Open. Flow connections supported by a controller Switch scalable limit Number of switches a controller can optimally manage Flow scalable limit Controller Open. Flow table capacity Errored Open. Flow connections Characterize the behavior of the controller when presented with a combination of both legal and Illegal handling Open. Flow messages. Denial of service handling Determine the effect of a denial of service attack on a controller Open. Flow connection establishment rates Reliability Controller failover time Time taken to switch from one controller to another when the controllers are teamed and the master controller fails. Data path re-convergence time Time taken to re-route a flow by the controller when there is a failure in the existing flow path. 4 Confidential Copyright © Veryx Technologies

Benchmarking - Controller Standalone Setup Orchestration (Test Platform) Proactive Flow Provisioning Orchestration (Test Platform) (Northbound Interface) SDN Controller (DUT) Proactive Flow Insertion SDN Switch 1 SDN Controller (DUT) (Southbound Interface) Reactive Flow Insertion SDN Switch 2 . . SDN Switch n SDN Switch 1 SDN Switch 2 . . SDN Switch n Test Platform Reactive Flow Setup Proactive Flow Setup 5 Confidential Copyright © Veryx Technologies

Benchmarking - Controller Cluster Setup Orchestration (Test Platform) Proactive Flow Provisioning Orchestration (Test Platform) (Northbound Interface) Controller (Active) . . (Northbound Interface) Controller (Standby) Controller (Active) Controller Cluster (DUT) . . Controller (Standby) Controller Cluster (DUT) (Southbound Interface) Proactive Flow Insertion SDN Switch 1 (Southbound Interface) Reactive Flow Insertion SDN Switch 2 . . SDN Switch n SDN Switch 1 SDN Switch 2 . . SDN Switch n Test Platform Proactive Flow Setup Reactive Flow Setup 6 Confidential Copyright © Veryx Technologies

Controller Benchmarking Solution Features Highlight § Software based solution for benchmarking SDN controller for § § Performance § Robustness Testing Simulates heterogeneous OF network with thousands of switches and millions of flows § Allows user to configuring OF switch table options Generates application specific traffic § § Programmable (REST API for test automation) 7 Confidential Copyright © Veryx Technologies

SDN – EMULATION SOLUTION 8 Confidential Copyright © Veryx Technologies

NFV VALIDATIONS 9 Confidential Copyright © Veryx Technologies

Challenges to Operationalizing NFV Platform/Infrastructure Challenge • Will the platform provide expected performance, be reliable and secure • Will the platform support on-boarding multi-vendor VNFs • Will the Network services offered from these platforms be reliable VNF Challenge • Will the VNF provide expected performance, be reliable and scalable • Will the VNF interoperate with 3 rd party VNFs • Will the VNF service chain and provide required network service Orchestrator Challenge • Will the orchestrator be scalable, reliable and meet expected performance • Will the orchestrator support on-boarding multi-vendor VNFs • Will the orchestrator interoperate with existing management systems 10 Confidential Copyright © Veryx Technologies

Overcoming Challenge Provide enough evidence that Platform is scalable, reliable and meet expected performa nce Platform provides expected performa nce and able to on -board multivendor VNFs Platform can offer any network services which is scalable and reliable VNF can VNF service provides chain expected with any performa 3 rd party nce, VNF and scalability provide and required reliability network service 11 Orchestra VNF can tor tor is interoper oninteroper scalable, ate with boarding ate reliable legacy multiseamlessl and network vendor y with provide to offer VNFs to existing expected network offer managem performa service network ent nce service systems Confidential Copyright © Veryx Technologies

Network Service Validation For Functionality, Performance, Reliability & Scalability Traffic Generators VM NFVO Benchmark Monitor VNFM NFVI Virtual Compute Virtual Storage Virtual Network VIM Virtualization Layer Hardware Resources Computing Hardware Storage Hardware Networking Hardware Traffic Generator 12 Confidential § Validate Network Service (NS) for Functionality, Performance, Reliability & Scalability § Test Environment consists of • • • NS under test Platform (NFVI) MANO Components Traffic Generator VMs Performance Monitor Traffic Generator (external) § NS under test on-boarded & service chained § Internal (traffic generator VM) as well as external traffic generator inject test traffic § Benchmark monitor reports performance, reliability, scalability and security aspects of network service Copyright © Veryx Technologies

NFV Infrastructure Benchmarking For Performance, Reliability, Scalability & Security Traffic Generators VM Reference VNF- Traffic Generators VM NFVO Benchmark Monitor VNFM NFVI Virtual Compute Virtual Storage Virtual Network VIM Virtualization Layer Hardware Resources Computing Hardware Storage Hardware Networking Hardware Traffic Generator 13 Confidential § Benchmark Platform (NFVI) for Performance, Reliability, Scalability & Security § Test Environment consists of • • • Platform under test MANO Components Reference VNFs Traffic Generator VMs Performance Monitor Traffic Generator (external) § Different types of Reference VNF on-boarded to benchmark Platform § Internal (traffic generator VM) as well as external traffic generator inject test traffic § Benchmark monitor reports performance, reliability, scalability and security aspects of platform Copyright © Veryx Technologies

Network Virtualization – Tungsten Fabric The Tungsten Fabric v. Router replaces Linux bridge and IP tables, or Open v. Switch networking on the compute hosts, and the controller configures the v. Routers to implement the desired networking and security policies. The Tungsten Fabric controller integrates with an orchestrator via a software plugin that implements the networking service of the orchestrator. 9 th June 2019 14 Confidential Copyright © Veryx Technologies 14

Concluding thoughts • Networked world, we are going to be has to meet the needs and securely • Validation of SDN / NFV enabled End-To-End services meeting all aspects of expectations • Challenges to model the behavior of the NFV elements as black box connecting and making the services • Determining the valid state space, bounded verification of the state spaces are valid research problems • Verification for Security aspects in SDN / NFV enabled deployments • Efficient testing is a dynamically orchestration enabled SDN/NFV enabled network deployments require • Intelligent planning, Test data / Test bench preparation, Testing (Sand box, Entire system) and Results validation. 15 Confidential Copyright © Veryx Technologies

Questions, and Thank You • Email: info@veryxtech. com • Website: www. veryxtech. com 16 Confidential Copyright © Veryx Technologies