sdn central nuage networks seminar vns
TRANSCRIPT
Click to edit Master text styles
Second level Third level
Fourth level
Fifth level
Click to edit Master title style
SDN Branches Out A Webinar by Nuage Networks & SDNCentral www.nuagenetworks.net @nuagenetworks
Click to edit Master text styles
Second level Third level
Fourth level
Fifth level
Click to edit Master title style
Traditional Managed and DIY VPNs forming the Enterprise WAN are:
SLOW, RESTRICTIVE, COSTLY
SLOW to perform new site-turn up, provisioning and assurance
RESTRICTIVE in their connectivity options and operational models
COSTLY moves, adds, changes and auditing practices
Existing Enterprise VPNs
Click to edit Master text styles
Second level Third level
Fourth level
Fifth level
Click to edit Master title style Hybrid Clouds – The network is in the way
Specific provider
Restricted access
Limited hardware
Data center / Cloud
Automation Some Automation
GAP
Vertically integrated proprietary hardware
Manual Operations
driven by CLI
Coupled Service and Transport
Layers
Islands of connectivity
Enterprise Branch
Click to edit Master text styles
Second level Third level
Fourth level
Fifth level
Click to edit Master title style
Nuage Virtualized Network Services (VSN) offers
Introducing Nuage VNS
Virtualized Network Services
Enterprise Locations
Open CPE
Consistent Policy-based automation
Flexible Deployment
Models
✔ ✔
✔ ✔
Networks
Clouds
Apps
Click to edit Master text styles
Second level Third level
Fourth level
Fifth level
Click to edit Master title style
WAN
From configuration to policy
Router# Router (config access-list)#ipv4 acl_grp permit tcp any host 3001:1::203:A0FF:FED6:162D ……………………… Router(config VPN)#vpn Paris_Tokyo bind interface tunnel.1 vpn Paris_Tokyo proxy-id local-ip 10.2.2.0/24 remote-ip 10.1.1.0/24 any ……………………… Router(config)# class-map match class1 Router(config class-map)# match access-group 101 Router(config policy-map policy1)# class class1 ………………………………. Router (config NAT)# ip address 10.10.20.1 255.255.255.0
Router# Router (config access-list)#ipv4 acl_grp permit tcp any host 3001:1::203:A0FF:FED6:162D ……………………… Router(config VPN)#vpn Paris_Tokyo bind interface tunnel.1 vpn Paris_Tokyo proxy-id local-ip 10.2.2.0/24 remote-ip 10.1.1.0/24 any ……………………… Router(config)# class-map match class1 Router(config class-map)# match access-group 101 Router(config policy-map policy1)# class class1 ………………………………. Router (config NAT)# ip address 10.10.20.1 255.255.255.0
Router# Router (config access-list)#ipv4 acl_grp permit tcp any host 3001:1::203:A0FF:FED6:162D ……………………… Router(config VPN)#vpn Paris_Tokyo bind interface tunnel.1 vpn Paris_Tokyo proxy-id local-ip 10.2.2.0/24 remote-ip 10.1.1.0/24 any ……………………… Router(config)# class-map match class1 Router(config class-map)# match access-group 101 Router(config policy-map policy1)# class class1 ………………………………. Router (config NAT)# ip address 10.10.20.1 255.255.255.0
Multi-tenanted Self-service from branch to DC
Introduction of abstraction
Enable the definition of intent not configuration
Physical
Virtual
Service Template
My Network
Subnet 2
Enterprise Site Public Internet
Zone 2 Zone 1
Subnet 1
Service Template
My Network
Subnet 2
Enterprise Site Public Internet
Zone 2 Zone 1
Subnet 1
Service Template
My Network
Subnet 2
Enterprise Site Public Internet
Zone 2 Zone 1
Subnet 1
WAN
DC
Policy view Configuration view
Islands of configuration
Explicit understanding of semantics
Click to edit Master text styles
Second level Third level
Fourth level
Fifth level
Click to edit Master title style Flexible deployment models
Any Network
Public Datacenter
CO
Public Datacenter
CO Branch
CENTRALIZED
Branch
Branch
FULLY-DISTRIBUTED
SEMI-DISTRIBUTED
Commodity computing for connecting over any network to any cloud
Flexible form-factors to suite any deployment
Click to edit Master text styles
Second level Third level
Fourth level
Fifth level
Click to edit Master title style Layers upon (within) Layers
How to securely bootstrap the vCPE?
How to configure vCPE as an app?
What about scaling control-plane & inter-working?
How to lifecycle manage distributed vCPE?
…
Virtualizing existing CPE software
vCPE Application Layer
Virtualization Layer
Hardware Layer
Control Layer
Service Mgmt Layer
Forwarding Layer
Sub-layers
THE BRANCH UNSHACKLED
CONTROL PLANE
BRANCH NETWORKING DEVICE
MGMT PLANE
FORWARDING PLANE
GENERAL PURPOSE COMPUTE
OPEN OS
SECURITY
TRAFFIC STEERING QoS
Open CPE
ETHERNET
PROPRIETARY HARDWARE
Today’s Closed CPE
Click to edit Master text styles
Second level Third level
Fourth level
Fifth level
Click to edit Master title style Hybrid Clouds – The network as an enabler
1. Secure & Automated site turn-up and service configuration
2. Central service policies with auditing and compliance capabilities
3. Hardware accelerated service support
4. Mash-up of Internet and VPN transport over any WAN service provider
5. Seamless datacenter and cloud on-boarding
ANY provider
ANY access Open CPE SEAMLESS
on-boarding
Data center / Cloud
Automated operations from Branch to Cloud
Enterprise Branch
Click to edit Master text styles
Second level Third level
Fourth level
Fifth level
Click to edit Master title style
Product Demonstration
1000 site Global WAN for ACME Enterprises Automated site-turn up
Application of security policy
Virtualized Network Services
User Interface
Nuage Networks VNS Solution
Fixed and Mobile Access Networks
Customer A - Software Defined Network Service
IP-VPN Private IP
Internet
Customer locations
L2-VPN Business Internet
Public clouds
Private clouds
Consistent service Any transport
Consistent Policy-based automation
Commodity and Open Hardware Platforms
Branch to Cloud