Title or Title

• Event/Date

• Presenter, PresenterTitle, Internet2

SDX’s & the Internet2 Innovation Platform

To keep our community at the “tip of the spear”,

how can we support the evolution of SDX’s?

Rob Vietzke -Vice President, Network ServicesEric Boyd - Senior Director, Strategic Projects

• The Community’s Network Story (2014)• Abundant Bandwidth / 100G+ • Deeply Programmable (Native OpenFlow)• Support for Data Intensive Science (Science

DMZ)• Interconnected with public Internet• Supports production quality & disruptive innovation

• Open for your innovation!

Provides production & innovation platform to:• Dozens of high performance compute clusters• Hundreds of campus data centers• Potentially thousands of SDN ports• Hundreds of wireless access networks• Thousands of researchers• Millions of potential collaborators

• Internet2 operates several IXPs & Collaborates Internationally– MAN LAN with NYSERNET / WIX with MAX– Singapore Facility with Singaren– ANA-100G with ESNET, CANARIE, NORDUNET, SURFNET, GEANT– Soon: AGE-OX w/ Ankubut in Fujarah, UAE

• None are currently “SDXs”• However …• Internet2 operates a backbone network …

– Interconnects Starlight, AMLIGHT, Pacific Wave, MANLAN, WIX– Interconnects public exchanges too: Equinix, Telex, SIX, others– … which can also be viewed as a set of IXPs– … which can also be viewed as a single distributed IXP

• The backbone network is built on an SDN substrate, arguably making it a set of SDXs

Internet2 and SDXs

Growing Use of AL2S

Innovation Platform Petabytes per month

• April, 2012: Announce intent to build AL2S on SDN• October, 2012: AL2S is launched• March, 2013: AL2S becomes heterogeneous• April, 2013: Innovative Applications Contest Launched• August, 2013: Begin migration of AL3S over AL2S• November, 2013: Innovative Applications Demo’d• December, 2013: AL2S supports Multpoint VLANs• March, 2013: FlowSpace Firewall debuts• June, 2014: AL2S supports network virtualization

Timeline

10 – © 2013 Internet2

GOLD

SILVER

BRONZE

2013 Internet2 Innovative Application Awards

Projects include:Video streamingBGP routing over OpenFlowSDN for Exchange PointsGENI integration

• Scientist– Request: “I want to transfer data and do compute / storage between

this set of endpoints with this flow pattern”– Answer: “You should use the FTP service” (or “You should

videconferencing service” or “You should use broadcast service”, etc.)

• Middleware Builder– Request: “I want to build an FTP Service”– Answer: “You should use the Compute service, the Storage service,

and the Network Service in these configurations”• Network Operator

– Request: “I want a VLAN between these two points” or “I want to control switches along this path”

Service Levels – Which is the SDX?

• Basic components– SDN Switches– Controller– Virtual Machines and/or compute/storage

• Challenges– Compelling applications– Programming abstractions– Scalable operations– Realistic deployment & Willing SDN peers– Analytics & Measurement– Moving bilateral pilots to multidomain operations

What is an SDX?

• Includes one or more SDN-enabled Switch(es)– Standards compliant / not built on proprietary vendor extensions

• Controlled by one or more SDN controllers– Must enable user-supplied controllers (virtual IXPs or virtual networks)

• Platform for Innovation– Built on open source, standards-compliant software– Operationally transparent– Enables next generation of application design

• Robust and scalable– Backed by an integrated test harness (software stack is complicated)– Nationwide / global footprint– Availability must exceed standard for traditional Layer 3 networks

• Measurable– perfSONAR & Analytics– Operationally manageable

Internet2 definition of an SDX

• Identify trust, user authentication, resource use authorization issues– Leverage Community trust (InCommon)– Interdomain provisioning

• Daisy chain models do not scale• Certificate-based approaches have regular expiration problems

– Modular architecture• Enables innovation• Multiple opportunities for attack• Multiple opportunities for resource overconsumption

Workshop Charge (1)

• Identify interoperability issues and testing strategies for different models– Multiple (subtly different) approaches to multi-tenancy (Flowvisor,

Flowspace Firewall, OVX, etc.)– Multiple approaches to integrating compute and storage resources– Monitoring software is common (perfSONAR), but what to test is

still being discussed– Running a robust SDX requires multiple levels of software (Vendor

implementation of OF, Multi-tenancy solution, Controller, Application, Interdomain Stitching) which requires a test harness, automated test software, etc.

Workshop Charge (2)

• Specify a staged set of research and prototyping activities needed to properly understand and realize these models in practice– Environment(s) to evaluate vendor implementations– Environment(s) to evaluate multi-tenancy implementations– Environment(s) to evaluate controllers– Environment(s) to evaluate cloud integration

Workshop Charge (3)

• Provide a strawman plan, with level of effort needed, for experimenting with a national scale SDX prototype deployment– Knit together Internet2 solution with several (3-4) implementations

at traditional IXPs– Can we create a solution where someone who arrives at MAN LAN /

WIX / AMLIGHT / STARLIGHT (for example) can• Deploy a controller across a multiple partner slice• Integrate with GENI Racks on 3-4 campuses • Stand up a prototype service (e.g. prototype research network without

routers)• Integrate with OpenStack

Workshop Charge (4)

Title or Title

• Event/Date

• Presenter, PresenterTitle, Internet2

SDX’s & the Internet2 Innovation Platform

To keep our community at the “tip of the spear”,

how can we support the evolution of SDX’s?

Rob Vietzke -Vice President, Network ServicesEric Boyd - Senior Director, Strategic Projects