software defined networking - next-gen enterprise networks
TRANSCRIPT
![Page 1: Software Defined Networking - Next-Gen Enterprise Networks](https://reader034.vdocuments.mx/reader034/viewer/2022042701/55abb6ff1a28abae3c8b47eb/html5/thumbnails/1.jpg)
![Page 2: Software Defined Networking - Next-Gen Enterprise Networks](https://reader034.vdocuments.mx/reader034/viewer/2022042701/55abb6ff1a28abae3c8b47eb/html5/thumbnails/2.jpg)
![Page 3: Software Defined Networking - Next-Gen Enterprise Networks](https://reader034.vdocuments.mx/reader034/viewer/2022042701/55abb6ff1a28abae3c8b47eb/html5/thumbnails/3.jpg)
Next-Gen Enterprise Networks Software Defined Networking
Matt Davy Chief Network Architect & Executive Director of InCNTRE
April 18, 2012
![Page 4: Software Defined Networking - Next-Gen Enterprise Networks](https://reader034.vdocuments.mx/reader034/viewer/2022042701/55abb6ff1a28abae3c8b47eb/html5/thumbnails/4.jpg)
“It’s great you’re deploying cutting-edge technologies like SDN, but of course you’re a university. We could never do that.”
April 19, 2012
Assumptions: 1. You’re only investing in SDN to further your research
mission. 2. You must not have the same security/compliance/
reliability requirements that commercial enterprise networks have
![Page 5: Software Defined Networking - Next-Gen Enterprise Networks](https://reader034.vdocuments.mx/reader034/viewer/2022042701/55abb6ff1a28abae3c8b47eb/html5/thumbnails/5.jpg)
April 18, 2012 Indiana University
• 120,000 users (>95% BYOD)
• 1,000’s of switches/APs
• Massive diversity • Compliance
Requirements • Mission to support
research • Federated
operations • Moving to shared
infrastructure
![Page 6: Software Defined Networking - Next-Gen Enterprise Networks](https://reader034.vdocuments.mx/reader034/viewer/2022042701/55abb6ff1a28abae3c8b47eb/html5/thumbnails/6.jpg)
April 19, 2012 Network Access Control Use Case
IDS Servers
Aggregation
IDS ClusterOF Controller
Core
Border
Internet
NAC System
OF Controller
DB DHCP
• Existing “Home-Grown” NAC Solution
• IDS via Snort/NetFlow • Web Services API • Response via DHCP/
BGP • Add: OpenFlow Load-
Balancer for TOR • Add: Enhanced
Response capabilities via OpenFlow
• Dynamic flow mirroring, fine-grained filtering, & more
![Page 7: Software Defined Networking - Next-Gen Enterprise Networks](https://reader034.vdocuments.mx/reader034/viewer/2022042701/55abb6ff1a28abae3c8b47eb/html5/thumbnails/7.jpg)
April 18, 2012 Managing Security Policies on Large Enterprise Networks
Core
Border
Internet
OpenFlowController
DB
DataCenter
PolicyEngine
Internet
Medical Student PCI-DSS Faculty/Staff Infrastructure
Policy Enforcment
Security Policy Distribution Network Virtualization
![Page 8: Software Defined Networking - Next-Gen Enterprise Networks](https://reader034.vdocuments.mx/reader034/viewer/2022042701/55abb6ff1a28abae3c8b47eb/html5/thumbnails/8.jpg)
• Virtualization at the Access Layer • Dynamic control through SDN • Overlays w/simple layer-3 “fabric” • Network as a Platform • Unified Wired/Wireless/vSwitch Access Layer • Flexible L4-7 Service Scaling/Insertion
April 19, 2012 Next-Gen Enterprise Networks
Fundamentals of Next-Generation Enterprise Networks
![Page 9: Software Defined Networking - Next-Gen Enterprise Networks](https://reader034.vdocuments.mx/reader034/viewer/2022042701/55abb6ff1a28abae3c8b47eb/html5/thumbnails/9.jpg)
April 18, 2012 Next-Gen Enterprise Networks
![Page 10: Software Defined Networking - Next-Gen Enterprise Networks](https://reader034.vdocuments.mx/reader034/viewer/2022042701/55abb6ff1a28abae3c8b47eb/html5/thumbnails/10.jpg)
February 2, 2012 More Information about SDN at IU
For More Information • InCNTRE: incntre.iu.edu/ • Twitter: @incntre • FlowScale
www.openflowhub.org/display/FlowScale
![Page 11: Software Defined Networking - Next-Gen Enterprise Networks](https://reader034.vdocuments.mx/reader034/viewer/2022042701/55abb6ff1a28abae3c8b47eb/html5/thumbnails/11.jpg)
Thank you !
April 19, 2012