device programmability strategies

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2
• Traffic growth
• Reducing or static ARPU
• Service agility is really hurting
0.0
20.0
40.0
60.0
80.0
100.0
120.0
140.0
E x a
M o n

• Big sales projections 2018 sales of SDN systems to service providers will reach $15.6 billion, up from just $626 million last year (ACG)
NFV revenue could rise to $1.9 billion in 2019 from $203 million this year (Mind Commerce)
• Both NFV and SDN currently seen as cost saving solutions (Current Analysis 60 SPs)
• SDN

• Clearly impacting network vendors Need to become more open
Value is in the s/w not the h/w
Strong emphasis on orchestration s/w and services engagement
• Will impact Service Providers SPs completely get NFV, many struggle with SDN
Could be argued that both NFV and SDN increase complexity rather than reduce it
SPs need to re-organize to bring compute and n/w together
Old n/w skills remain, however need new skills (cloud and s/w development)
Need to maintain carrier class reliability
Mix of existing processes combined with DevOp processes
•

Business CPE
Home CPE
Wireless GWs

Strengths

Weaknesses
• High packet processing • Specialized SP design and h/w functionality • High physical interface counts (>20s) • High interface speeds (>40G) • Diverse interfaces types • Infrastructure functions
• High capacity plumbing and gateways : Custom built combination (NPU / fixed ASIC / GPP)
• Elastic service functions combined with low-medium packet processing : virtualized GPP
• CPU intensive tasks : virtualized GPP

Software defined networking (SDN) is an approach to building computer networks that separates and abstracts elements of these
systems

processing happens inside the

OpenFlow is a Layer 2 communications protocol that gives access to the forwarding plane of a
network switch or router over the network
What is Openflow?
(per Wikipedia definition)
of Northbound API to request services from
the network…
Agent receives instructions from
Controller to communicate with
Openflow

Silos, Manual Intervention and Vendor Limitations | Hamper Cloud Service Delivery
I N T E G R A T I O N
C O S T S
ENTERPRISE
• Consumerization of IT: New business models
• Looking to leverage cloud models
CONSUMER
• Increased expectations for consistent experiences
BARRIERS FOR INNOVATION
MOBILE
BSS OSS
C O S T S

C O S T S

Cisco Confidential 18© 2014 Cisco and/or its affiliates. All rights reserved.

Virtualized Resource Pools
(network ready compute/storage)
Virtualized Network Functions
Provisioning
Data Center
NetworkWorkload Portability
Anywhere

physical and virtual resources
Service Orchestration

any open standards-based hardware

Business Applications Integration
The network proactively adjusts to the application needs in real time
Seamless Experience
Network
Simplified abstractions to direct behavior in areas like security, network policy and instrumentation
Simplify management and automate operations with both customized and industry standard toolsets
Ability to ensure end- to-end user experience
Smarter Apps Simpler Ops Consistent Experience

Extend device behavior and operations to fit highly specific needs
Integrate network devices with configuration management & orchestration stacks
Access the richness of network device functionality
Customization Task automation Smart devices

Automate your environment
Device
Forwarding

OpFlex

(de-facto) standards compliance
API modeled around device data/capability
Built into Network OS
Real time event handling
Custom fit API into Open Source/3rd party/Custom controller
Customer choice for device interfaces
Runs in a container – independent rev cycles

Network Device Application

Network Device Application
Manageability Infra
Config DB
data model
Thrift objects

Consumer
Corporate
Description: The goal is to accelerate service deployment/validation/qualification using standardized programmability interface.
Platforms: Linkwood, CRS, ASR9K, Scapa, ME 3600, ASR90x…
SDN Elements: Prime/controller , NETCONF/YANG, Home-made

Description: vPE is the Cisco architecture required to deliver virtualized services for SP-DC. It’s building block to any future
Multi-tenant, GI LAN or NfV services.
Platforms: ASR9K, CSR1000v, vPE-f, vASA, N7K, N6K, N9K
SDN elements: Virtual Systems Operations Center , Open Day Light Controller, NETCONF/YANG, REST JSON, TAIL-F
Physical Network
Elasticity Management
REST APIs
NETCONF YANGBGP
DDOS scrubber
DDOS Controller
DDOS Analyser
SP
Description: The goal is to push policies to match on certain flows under DDoS attacks and drop/rate limit or redirect traffic to DDoS scrubber to protect peering/enterprise customers
Platforms: CRS, ASR9K, ASR1K, CSR1000v,
SDN Network Elements: BGP flow spec, Netflow, NETCONF/YANG, Arbor controller/TMS
Business: SP to sell DDoS mitigation services to enterprise customers, generating added value to IP transit services
Flexible Netflow BGP flow-spec

collector Programming
Bandwidth Orchestrator
Visualization/ Analytics
Description: SDN controller (WAN- Orchestrator) to compute dynamic/explicit path across the WAN to guarantee customer SLA (Bandwidth, Packet lost, Jitter, Backup…)
Platforms: ASR9K, CRS, Linkwood, Scapa, Quantum Wave Orchestration (Cariden)
Business: SP to monetize the SP core, MPLS simplification
SDN Elements: Open Day Light controller, BGP LS, Netflow, PCE-P, Segment Routing, NETCONF/YANG
(Open Day Light Controller)

onePK GA (April 2014) – ISR, ASR1K & CSR1KV
onepkdeveloper.com
Customer Segment Use case
Mobitel B ulgaria SP Redirect L4 (DNS ) traffic for B roadband
TWT SP Adaptive QoS in a self-servi ce provi s ioni ng model
BICS/Belgacom SP RFP based on DPSS , ASR1K , ISR 4451/3945, CSR
Dr Peng SP BNG Performance Monitoring
BT managed servi ces
SP Initial dis cus s ion about use case for device / service verification
Verizon SP AS B DM opportunity
ATT mobility SP Preliminary contact. A s ked for training
ABB ENT (IOT) Custom routing protocol for industrial network
Ex xon Mobil ENT Secur ity threat analys is with s elective traffic control
Emerging Market Communications
ENT Dynamic QoS based on VSAT modem config
Salesforce DC SDK to build and test apps on NX-OS s imulator
GoDaddy DC SDK to build and test apps on NX-OS s imulator
BNY DC Configuration on N5K (using Python)
SONY DC
ISV Use Case
Ping Identity Access control
NG NWare Mgmt. automation
611 Downloads after GA
(450 developers, 240 companies)
Commercial License – Via CDN
© 2014 Cisco and/or its affiliates. All rights reserved. 37
Description: Dynamically change QoS policies across the network based on services ordered by the end customer in self-serve model. Ex: VOIP call or stream video.
Monitor the network to assure SLA. Enables SPs to offer differentiated services to their end customers
SP Network
Content Provider
Platforms: ASR9K, ME36xx/38xx
Beachhead Customers: TWT

Cisco XNC
Description: (1) Dynamic: Steer traffic around congested
link based on high traffic load experienced on WAN link (Automatic and Manual)
(2) Time-Based: Steer traffic along custom path during a scheduled maintenance window
Platforms: ASR1K, ASR9K, CRS-3
Beachhead Customers: NTT West
Science DMZ
GENI / NSF
largest aggregation of OpenFlow users: • Self provisioning of advanced
Layer 2 services • High Speed 100Gbps links
Core Network
Science DMZ
Trusted Flow Path
External Network

Tools Production Network
Monitoring and Visibility: Monitor Manager Application Most relevant use case outside Academia/Research
Replaces Matrix Network with Nexus 3000s, Controller, and Monitor Manager Controller Application
With SDN Monitor Manager Solution
Openflow Enabled Nexus 3000s

Description: Plug-ins on network devices for rapid integration into customer’s operational
tool chains.
Manage image and patches/SMUs in the same way packages are managed on compute nodes
Puppet/Chef Master
Puppet/Chef Plug-in
Package Repository

Puppet/Chef Plug-ins have immediate use cases on Nexus platforms, but may spill to IOS XR platforms (because of DCI deployments)
Beachhead Customers: • Puppet – Apple • Chef – Facebook
Platforms: All Nexus platforms
Description: Server admins need ToR configuration for every new server/VM they onboard. Manual process and involves Change Request tickets
Puppet/Chef Master is used to put the new server in the right VLAN/segment and apply ACLs
Puppet/Chef Master
Puppet/Chef Plug-in
New server

Description: Security policies, mgmt. servers (syslog, dns, snmp etc.) are common across the network.
Puppet/Chef Master scalable way to inject change in the master and spread to network
Puppet/Chef work in PULL model and maintain idempotency
Puppet/Chef Master
Puppet/Chef Plug-in
Platforms: All Nexus platforms
The Key Takeaways of this presentation were:
• 3 broad categories in Device Programmability Portfolio (1) Config/Operate Interfaces, (2) Device Extension APIs and (3) DevOps Plug-ins
• Positioning of technologies – Each category solves different use cases and are complimentary
• Programmability architecture is evolving with common data models as the foundation. These data models are exposed via NETCONF YANG, REST and Python API
• onePK Device Extension API will GA on all platforms and continue for targeted device extension use cases
• Open Flow 1.3 support will focus on Internet2 and SLED segment

device programmability strategies

Documents