platform overview. 2 copyright © 2011 juniper networks, inc. legal statement legal disclaimer:...
Post on 24-Dec-2015
213 Views
Preview:
TRANSCRIPT
Platform Overview
2 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
LEGAL STATEMENT
Legal Disclaimer: This statement of product direction (formerly called “roadmap”) sets forth Juniper Networks ‘current
intention, and is subject to change at any time without notice. No purchases are contingent upon Juniper Networks delivering
any feature or functionality depicted on this statement.
3 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
JUNOSPHERE - NETWORK VIRTUALIZATION IN THE CLOUD
Junosphere delivers Junos on-demand via the cloud Enables real network modeling and education using virtual Junos
routers Accessed on demand via the Internet to a Juniper-hosted DC Scale when you need it; pay for what you use
Learn, model and test Junos features with the flexibility, cost-efficiency and simplicity inherent of a cloud based delivery model
Internet
4 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
JUNOSPHERE CLASSROOM
Junosphere Classroom provides hands-on education and experience with Junos
Universities, technical training institutes; Juniper customers and channel
Cloud-based delivery model brings many benefits over physical labs
Reduced capital costs – no need to purchase networking elements
Lower operational costs – power, space, cooling and maintenance
Increased flexibility – rapidly scale up or down Realistic experience – exact same Junos running
in commercial networks Access to the most current/latest networking
features
5 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
JUNOSPHERE ARCHITECTURE
6 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
Junosphere Connector – allows users to create secure tunnels to customer premise –
extending the network
SSL VPN
JUNOSPHERE ARCHITECTURE
Firewall/NAT access allows cust to
transfer files/configs via Internet
Customer A
Customer B
Independent, secure sandboxes between and within customers
Datacenter- Owned and Operated by Juniper
B1 B2
B3
Customer B
Internet
Virtual JUNOS/CentOS/Space/ 3rd party apps
SSL/SSH
Customer A
B1 B3
B2
Virtual Switch
7 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
PLATFORM COMPONENTS
Virtual Network Elements• Virtual Routers• Virtual Hosts• CPE devices, T-
Gens, MGMT systems etc.
Hypervisor = KVM / QEMUHOST OS = CentOS
Virtual Machine
Guest OS
Virtual Machine
Guest OS
Virtual Machine
Guest OS
Virtual Machine Manager
• VM & Virtual network orchestration process
User Interface
Accessed via web
browser
SSL VPN
8 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
VJX1000 OVERVIEW
IPv4/IPv6 Unicast / Multicast Routing: OSPF, BGP, RIPv2, Static routes, IS-
IS,…) Multicast: IGMPv3, PIM, SDP, DVRMRP,
Source Specific)
MPLS: Layer 2 VPN ( VPLS), Layer 3 VPN, LDP, RSVP
Encapsulations: Ethernet (MAC and tagged), PPPoE
NAT/Stateful Firewall Filters/Intrusion Detection
Tunneling: GRE, IP in IP COS User Authentication/Access: RADIUS, RSA
SecureID, LDAP
J-Web, CLI
VJX Series is a new Junos platform that runs in a hypervisor on standard x86 hardware
VJX 1000 is first platform within VJX family Full control plane, management plane and forwarding plane features
Support 64 Ethernet Interfaces
Software forwarding performance: 50 Mbps @ 64 bytes
9 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
LOADING THE NETWORK
10 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
VIRTUALISE THE MODEL
Build diagram
Generate the configuration files
Log in to platform
11 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
STARTUPUpload configuration files
Start Virtual Routers
Connect to Virtual Routers
Log in and use
12 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
OPEN-SOURCE CONFIGURATION TOOLS
vm "Anaheim.AS1" { // description - hostname of set on VM hostname "Anaheim.AS1"; // description Operating system image to load VJX1000_LATEST // description - ge 0/0/0 management interface interface "em0" { EXTERNAL;}; //description Interface Anaheim.AS1 -> Stockton.AS1 interface "em1" { bridge "private11";}; /* ge-0/0/1 */ //description Interface Anaheim.AS1 -> FortWorth.AS1 interface "em2" { bridge "private12";}; /* ge-0/0/2 */ // description - configuration file to load on the router install "ENV(HOME)/active/configset/AS1_Anaheim.conf" "/root/junos.conf";};vm "Atlanta.AS1" { // description - hostname of set on VM hostname "Atlanta.AS1"; // description Operating system image to load VJX1000_LATEST // description - ge 0/0/0 management interface interface "em0" { EXTERNAL;}; //description Interface Atlanta.AS1 -> WashingtonDC.AS1 interface "em1" { bridge "private0";}; /* ge-0/0/1 */ //description Interface Atlanta.AS1 -> FortWorth.AS1 interface "em2" { bridge "private5";}; /* ge-0/0/2 */ // description - configuration file to load on the router install "ENV(HOME)/active/configset/AS1_Atlanta.conf" "/root/junos.conf";};
Python package repository:http://pypi.python.org/pypi/AutoNetkit/
Source code:https://github.com/sk2/autonetkit
13 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
Junosphere Connector
Junosphere Connector
University A
Physical Lab
University B
Physical Lab
JUNOSPHERE CONNECTOR
Enables the interconnection of physical and virtual networks Including partner institutions
Powerful tool for collaboration, research, and experimentation
Enables collaborative, large-scale experiments more readily and cost effectively
14 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
JUNOSPHERE CONNECTOR
VDE-switch to VDE-switch SSH tunnel
VDE-switch port “xconnected” to remote VDE-switch port inside the lab environment
Connector VM delivered as VMWare machine image
15 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
MANAGEMENT TOOLS Can take tools that you use in you physical network and deploy into the virtual – VMs don’t know that they’re not physical devices
MRTG monitoring SNMP stats and generating graphs
Centos running MRTG
http://10.94.29.180/mrtg
16 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
LOOKING INSIDE THE VIRTUAL WORLD
17 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
SPIRENT ROUTER TESTER INTEGRATION
Spirent Test Center Virtual is a software package that extends & complements the capabilities of Spirent Test Center – a virtual traffic-generator for the virtual world
Run real-world traffic and control-plane events over virtualized networks Enable connection ports in many locations – ports are just VMs
STCV Manager
18 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
MU DYNAMIC APPLICATION TESTING
Mu Studio Performance provides the ability to recreate a mix of applications that represent a production environment and inject that behavior into the virtual network
Simulate OTT Video, P2P, Social media, Games and Business applications
19 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
JUNOSPHERE CASE STUDIES
20 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
JUNOSPHERE CASE STUDYTESTING THE UNTESTABLE
User
Challenge
Large Tier 1 service provider
Goal Test multicast VPN prior to service rollout; requires support of IPv6 BGP multicast and large number of edge routers to validate performance.
Challenging and costly to accurately model or test at this scale prior to production rollout.
Solution Use Junosphere to emulate large scale testbed of (50) PE routers. Junosphere supports full Junos BGP multicast functionality
Physical Lab
Junosphere Connector
Test Set
Virtual Test Set
21 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
ROUTING SECURITY TRAINING AT *NOGS
• Courses on 6 continents
• Over 2500 operators
• Innovation in Routing Security
22 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
JUNOSPHERE TRIAL OVERVIEW
Goal: Introduce students to basics of network security Be able to exercise and monitor affects of different attack vectors
Junosphere provided: 15 virtual testbeds of Juniper routers & Centos hosts (134
machines) Enabled much improved student to equipment ratios (2:1 vs 10:1) Extended periods of exposure to network equipment
23 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
SECURITY EXERCISE IN JUNOSPHERE
10.0.0.29
10.0.0.30
10.0.0.22
10.0.0.21
PublicPC4
PublicIDS
PublicRouter
Firewall
Network1Router Network2Router
Network1PC1 Network1PC2 Network2PC3
10.0.0.25
10.0.0.26
10.0.0.34 10.0.0.46
10.0.0.33
10.0.0.54 10.0.0.58
10.0.0.45
10.0.0.62
10.0.0.53 10.0.0.57 10.0.0.61
Range of packages security and
monitoring packages installed on this host
Students install appropriate filters to defend Network PCs
24 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
JUNOSPHERE TRIAL OVERVIEW
Goal: In-depth exposure to large range of network protocols Virtualize existing physical testbed (PC-based lab)
Junosphere provided: 6 virtual testbeds of Juniper routers & Centos hosts (84 machines) Enabled much improved student to equipment ratios Enable exposure to protocols that PC environment could not
support IPv4
– IGP (OSPF), iBGP with RR, eBGP peering, multicast, anycast RP and MSDP
IPv6 – IGP (OSPF), iBGP, eBGP peering, multicast ASM with embedded-RP
IPv4 and IPv6 security configuration SNMP
25 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
CERNET EXERCISE IN JUNOSPHERE
SH1
BJ2
GZ1
hzh1
s2
s5
I1
BJ Pop
SH Pop
GZ Pop
s3
BJ1
SH2
xmn1
s1
s4
zju
mBGPmBGP
mBGP
mBGP
mBGP mBGP
RR client
mBGP
RR client
mBGP
RR server
mBGP
RR server
MSDP Mesh
MSDP Mesh MSDP
Mesh
MSDP Peer
MSDP Peer
26 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
JUNOSPHERE FOR R&D
Roma Tre University in Italy has a long-standing relationship with Juniper
Existing JUNOS SDK development-partner
Well-respected by companies such as Telecom Italia, FastWeb, WIND et al
Research team were trying to develop a new methodology for monitoring and troubleshooting VPN services in Service Provider or Enterprise networks
Problem - How do you develop and test new tools in a lab of only 2 physical routers?
27 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
JUNOSPHERE FOR R&D
• Large-scale virtual testbed set up in Junosphere
• Juniper virtual routers simulating Service-Provider network
• Virtual development hosts added to the lab
• Development, test and verification activities conducted in Junosphere
• Demonstrations planned with Juniper Italy to potential customer
28 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
AND THE FEEDBACK…
“This has definitely been a great opportunity for us to perform experiments in such a large network of high-end devices which otherwise would not have been possible in our labs. Working with Junosphere is really smooth and also the technical support is excellent and promptly available to address every kind of problem and need.
The Junosphere platform opens to us a broad range of new research opportunities, allowing us to test methodologies and tools on real ISP-scale topologies.
Not to mention the great added value for us to be able to teach networking concepts with tens of Juniper routers, available to the teacher and ready for being shown to the students in live sessions”
Dr. Massimo Rimondini,Dept. of Computer Science and AutomationRoma Tre University, Italy
29 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
JUNOSPHERE USE, ORDERING & ROADMAP
30 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
HOW TO ORDER
Junosphere is a standard Juniper product
Supported via PO ordering process Credit card ordering mechanism due soon
Pricing is based on time and VM capacity required Basic price of 10VMs @ $50 per day 30-day option based on actual days used – can be non-contiguous Per month or quarter pricing available for those who want dedicated resources
Product / Model Number
Description
JUS-LAB-10VM-1 This gives the customer 10 LAB Virtual machines, each for 1 day. Includes images and tools.
JUS-LAB-10VM-30 This gives the customer 10 LAB Virtual machines, each for 30 days. Includes images and tools.
JUS-CLASS-10VM-1 This gives the customer 10 Classroom Virtual machines, each for 1 day. Includes images and tools.
JUS-CLASS-10VM-30 This gives the customer 10 Classroom Virtual machines, each for 30 days. Includes images and tools.
JUS-CONNECT-1 This gives the customer the ability to connect and transfer data at the rate of 1 Mbs to the virtual network topology for 1 day
JUS-CONNECT-30 This gives the customer the ability to connect and transfer data at the rate of 1 Mbs to the virtual network topology for 30 days.
31 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
JUNOSPHERE 1.6
Junosphere 1.6 service includes Junosphere Classroom and Junosphere Lab Datacenter support for 700 VMs
Robust architecture with complete security via Secure Access, and Internet connectivity via https://www.junosphere.net
24x7 uptime Live BGP feed available Software image support for
VJX1000 Junos SPACE management platform Centos Cariden MATE Spirent TestCenter Virtual Mu Dynamics Studio & Test Engine Packet Design REX
JTAC customer support via on-line self-service and call center
32 Copyright © 2011 Juniper Networks, Inc. www.juniper.net
SUMMARY
Junosphere enables the creation of networks of virtual Junos routers enabling education and research using virtual networks
Junosphere is an enabling platform for a range of activities Teaching Lab virtualization Development activities with remote partners Collaborative research
top related