Djordje Vulovic
Consulting Systems Engineer
Cisco Day Belgrade, March 31st, 2016
Cisco NFVI Solution
Current Network
Appliance Appliance Appliance
Appliance Appliance Appliance
• Monolithic
• Lacks Elasticity
• Extremely costly to deploy/manage
• Longer Innovation cycles
Network Function Virtualization – NFV
Virtual Appliance
Virtual Network Functions
New Virtualized
Orchestration & Automation
Compute Storage Network
Open Shared Infrastructure
Virtual Appliance
Virtual Appliance Virtual Appliance
Virtual Appliance Virtual Appliance
SDN, Controllers Service Chaining
Data Models, Config. Management Cloud Orchestration Data Plane
Infrastructure
End-to-End Reference Architecture for NFV
Industry & Open Source Efforts around NFV & SDN
NSH and SFC
Netconf/YANG
ETSI Reference Framework - NFV
VNF
NFV Infrastructure ( NFVI )
Virtualisation Layer
Compute Storage Network
Open Shared Infrastructure
Virtual
Compute
NFV
Management
and
Orchestration
VNF VNF VNF VNF
Virtual
Storage Virtual
Network
Compute
Hardware Storage
Hardware Network
Hardware Hardware resources
Virtualisation Layer
Virtualised
Infrastructure
Manager(s)
VNF
Manager(s)
VNF 2
Orchestrator
OSS/BSS
NFVI
VNF 3
VNF 1
Execution reference points Main NFV reference points Other reference points
Virtual
Computing Virtual Storage
Virtual
Network
NFV Management and Orchestration
EMS 2
EMS 3
EMS 1
Service, VNF and Infrastructure Description
Or-Vi
Or-Vnfm
Vi-Vnfm
Os-Ma
Se-Ma
Ve-Vnfm
Nf-Vi
Vn-Nf
Vl-Ha Infrastructure WG
S/W Architecture WG
Management
and Operations
(MANO WG)
Technical
Steering
Committee
Reliability
and
Availability
Performance
and
Portability
Security
Expert Groups
ETSI NFV End-to-End Reference Architecture (Ph 1)
Industry NFV Deployment Models
Infrastructure
Virtualisation
VNF
Single Vendor Stack HW decoupled from
Virtualisation + VNF Islands
HW + Virtualisation platform
decoupled from VNFs Full decoupling wt
Single virtualisation platform Full decoupling multi
virtualisation platforms
X
X
X
Y
X
Z
Y Z
Y
X
Z
X
Y
X
Z
A
Y Z
A B
X
SI Costs Lowest Low Medium High Highest
Functionality & Perf Deterministic Largely Deterministic Partially Deterministic Non Deterministic Non Deterministic
Ops Complexity Lowest Low - Medium Medium High High
Lifecycle Mgmt Lowest Medium Medium High Highest
Flexibility Low High Medium High Highest
TCO Lowest Low Medium High Highest
TCO & RISK TCO & RISK
Cisco’s Role in NFV
Driving Ecosystem
Contributing in
Standards
Carrier Grade
Solution
Pre-Integration
and Validation Partner
Ecosystem
DC and
Networking
Multiple
VNFs
Open Standards Based
Platform
Cisco NFV Architecture
VNF Manager
Cisco ESC Cisco CTCM 3rd
Party
NFV-O & Resource Orchestration
NSO – Network Services Orchestrator enabled by Tail-f
North Bound APIs
Virtual Network Functions
Cisco and 3rd
Party
CSR ASAv vNAM vIPS
vPC-DI vIMS Video
Opt. 3
rd Party
Cisco Physical Infrastructure
Network VIM
Linux (RHEL), Hyper Visor (KVM), Host Packages, Software Defined Storage
NFVI Scope
Network Compute (UCS) Storage Ceph
Unifie
d M
an
ag
em
en
t
with
assu
ran
ce
.
UC
SD
API
GUI
Virtual Infrastructure Manager
Mercury based on RHEL OSP OpenStack
Assu
ran
ce
APIC VTS OSC or or 3rd
Party or
3rd
Party or
Legend
NSO (Powered by
tail-f NCS)
ESC
OpenStack (or vCenter)
APIC /
VTS, ODL
SP’s OSS/BSS or Prime Order Fulfillment
KVM (or ESXi)
Ceph (or Cinder/Swift)
VTF/OVS/ACI
SP’s Portal / Prime Service Catalog
VNF 1 (Cisco or 3rd Party)
VNF 2 (Cisco or 3rd Party)
VNF 3 (Cisco or 3rd Party)
Cisco UCS DAS on UCS Cisco N9K
Service
Assurance
Cisco NFV Solution Mapping to ETSI NFV Framework
The combination of Hardware and Software components that build the environment in which Virtual Functions (VNFs) are deployed
+ = NFVI
Software Hardware
NFV Infrastructure
Business Case for NFVI • Shared Infrastructure across multiple VNFs
• Deploy, Provision capacity optimally
• Better utilization of resources w/ Traffic/services Capital Efficiency
Operational Savings
Service Agility
Innovation & Differentiation
• Automate Onboarding, in-service activation
• Re-purpose of resources On Demand
• Better lifecycle management, sparing
• Deploying VNF as a software package
• Automation of services enablement
• Elastic deployment models in network
• DevOps model of continuous deploy, integrate
• New consumption models aligned w/ business
• Enable New Use Cases - IoT/M2M /P2P
Cisco Physical Infrastructure
Network VIM
Linux (RHEL), Hyper Visor (KVM), Host Packages, Software Defined Storage
NFVI Scope
Network Compute (UCS) Storage Ceph
Unifie
d M
an
ag
em
en
t
with
assu
ran
ce
.
UC
SD
API
GUI
Virtual Infrastructure Manager
Mercury based on RHEL OSP OpenStack
Assu
ran
ce
Cisco NFVI Solution Leading Industry Partnerships
Performance Acceleration,
Enhanced Platform Awareness
Certified by Red Hat
Joint Engineering
Integrated platform Design and Validation
Legend
Simple Access to Support
Single Point of Contact
APIC VTS OSC or or 3rd
Party or
Fully open source &
stds compliant No forks, 100% Upstream
Joint engineering Pre-integrated,
validated, tested
Broadest open
ecosystem of VNF’s
and ISV’s
Carrier grade
HW+SW infra High performing,
reliable and secure
Tightly coupled
technical support &
professional
services
Commercially
bundled platform Cisco UCS/Nexus HW +
RHEL-OS + RH OSP7
Reliable
install/upgrade Containerized services, CI/CD
for upgrades
Simplified
manageability Single pane of glass across
HW, SW, multi-sites
#1 Network & Server vendor and the
#1 OpenStack vendor together delivering a world class NFVI platform
Integrated platform sold & supported by Cisco
Fully backed by Red Hat engineering & support
Cisco Red Hat Partnership for NFVI
Cisco Red Hat Partnership for NFV
https://www.redhat.com/cms/public/Cisco-NFV-infrastructure-solution-brief-a4-en.pdf
Cisco/Intel Partnership for NFV
http://www.intel.com/content/dam/www/public/us/en/documents/white-papers/cisco-nfv-partnership-paper.pdf
Cisco NFVI PoD Packaging
½ Rack POD Full Rack POD
Storage
Expansion Module
Compute
Expansion Module
NFVI
Branch Solution
1
2 3
4
6 5
Modular
Configuration
Carrier Grade Easy to Manage
Pre-integrated
+ Validated
Single Point
of Ownership
Advanced
Services
NFVI Requirement #1: Cisco UCS Programmable Servers
Extends Abstraction Beyond
the Hypervisor to System
Elements
Infrastructure Automation
Through API and Policy
Truly Elastic
Fully Orchestrated
Workload Defined
Virtual
Resource Pools
Infrastructure
Management
Programmable
Infrastructure
XML API
Au
tom
ate
d a
nd
Dyn
am
ic
Virtual Pool of Resources
NFVI Requirement #2: Cisco Nexus Programmable Switches
POAP
PXE Linux/Python
Daemon
NXAPI
Data Models
Package and Application
Management
Standard Open Interfaces
Automation and Visibility
Server Management
Tools
BootStrap and Provisioning
Adaptable NXOS BootStrap and Provisioning
Package and Application
Management
Standard Open Interfaces
Adaptable NXOS Automation and Visibility
Server Management
Tools
Modular Ease Of
Operations Open
3rd Party App
Integration Programmability
Ready For
Devops
Unified Management
End-to-End
Infrastructure
Automation and
Lifecycle Management
Policy-Driven
Provisioning
Cisco UCS Director
NFVI
VMs Compute Network Storage
UCS Director
OS and Virtual
Machines
Compute
Network
Storage Tenant
B
Tenant
C
Tenant A
Compute and Hypervisor
Network and Services
B C A
VM VM Bare Metal
Domain Managers
On-Demand
Automated Delivery
Cisco Confidential
Stability, Performance, Scalability & Security
High Availability
Cisco OpenStack Platform
Containerized Openstack Control Plane
Install, Upgrade, Monitoring, Serviceability, Logging & Debugging
Base OpenStack Distribution
Cisco Openstack Platform Create a carrier-class platform suitable for NFV
• Robust Lifecycle
Management
• Cisco Validated Solution
• Operational Excellence
• Open & Flexible
Accelerating OpenStack adoption for Carrier-Class NFV
Cloud99
Cisco OpenStack Vs DIY Distrubtion
Product roadmap w/upgrades
SLAs
Support
Production timeline
OpenStack skill sets required
Operational complexity
DIY OpenStack
None
No
None
Unpredictable
High
High
Cisco OpenStack
Complete OpenStack
system
Yes – 99.99%
Full stack
Predictable
Low
Low
OpenStack Distro
No
Software only
More predictable
High
Medium
OpenStack software only
Installer Differentiators
Bare-Metal Deployment 1
Utilizes latest modern toolsets: Python, Ansible 2
Innovative use of UCS CIMC APIs to configure HW 3
Deploys RedHat Enterprise Linux (RHEL) and RHEL OpenStack Platform (OSP) 4
Containerized Deployment of OpenStack Services 5
Verifiable HA Deployment 6
Cloud Pulse OpenStack Health Check
• Health Checks using CloudPulse tool.
• Why are cloud health checks so important?
• Important to NFV applications, Telcos have strict SLAs.
• VNFs can be moved to a different cloud if OpenStack failure is detected early.
• Operators need to be aware of the failure before the customer experiences failure.
• Characteristics of a healthy OpenStack cloud:
• Control Plane:
• Openstack services can handle APIs and reply with an appropriate status.
• Openstack resources can be created and deleted.
• Data Plane: VMs can communicate within and/or across networks.
Cloud Pulse OpenStack Health Check
• CloudPulse Operator – Infra Tests:
• DB Cluster Status
• RabbitMQ Cluster Status
• HA Proxy Test
• CloudPulse Operator – Service Tests:
• Service Status
• Network Port Test
• CloudPulse Operator – API Tests:
• Endpoint
• Functional
• Comprehensive
• CloudPulse API – Light Endpoint:
• Nova list
• Cinder list
• Glance list
• Neutron net-list
• Keystone tenant-list
• CloudPulse API – Functional
• Boot/Delete VM
• Create/Attach/Detach/Delete volume
• Create/Delete image
• CloudPulse API – Comprehensive
• Boot VM on each compute
• Ping VM across networks
Cloud99 A Framework for OpenStack HA Testing
HAProxy Keepalived
nova Neutron Keystone Glance cinder horizon
• Load the cloud: concurrent relevant control/data plane tests
• Process or node level disruption of service
• Monitor services
Cisco created
Ensure no disruption for existing cloud resources!!!
ELK Stack Log Management Platform
Data Collection and
Transformation Agent
An Analytics Engine
and DataStore
Data Exploration
Interface
Logstash Forwarder
on all nodes
OpenStack Service Logs
LOG
NFVI CI/CD Differentiator
Customizable Continuous Integration Pipeline
RH OSP
RPMs
Cisco
Patches
Docker
Containers
Repo
Continuous
Integration
System
TEST
BUILD
Cisco Confidential
Performance through virtual switch and its virtual interface to VNFs
10 Gbit/s, 1.6 million frames/s throughput with Cisco‘s VPP
7 Gbit/s, 1.09 million frames/s throughput with OpenvSwitch
Latency is a key aspect
Performance and Validation EANTC: Throughput measurements OVS-DPDK vs. VPP
http://www.lightreading.com/nfv/nfv-tests-and-
trials/validating-ciscos-nfv-infrastructure-pt-
1/d/d-id/718684
Cisco NFVI Solution Differentiators
Recall, under the hood this solution is Cisco Infrastructure, running RHEL OSP
Installer CI/CD
Health Checks Logging/Monitoring
HA Verification VM throughput Testing
How does this
solution
Differentiate…
?