1 / 69

Enabling Innovation Inside the Network

Enabling Innovation Inside the Network. Jennifer Rexford Princeton University http:// www.cs.princeton.edu /~ jrex. Joint with Nate Foster, David Walker, Rob Harrison, Chris Monsanto, Cole Schlesinger, Mike Freedman, Mark Reitblatt , Joshua Reich. What is Networking?. e nd - hosts need

atara
Télécharger la présentation

Enabling Innovation Inside the Network

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Enabling Innovation Inside the Network Jennifer Rexford Princeton University http://www.cs.princeton.edu/~jrex Joint with Nate Foster, David Walker, Rob Harrison, Chris Monsanto, Cole Schlesinger, Mike Freedman, Mark Reitblatt, Joshua Reich

  2. What is Networking? end-hosts need to communicate

  3. What is Networking? Ethernet switches connect them

  4. What is Networking? which decide how packets should be forwarded Control Plane

  5. What is Networking? and actually forward them Data Plane

  6. What is Networking?

  7. What is Networking? servers

  8. What is Networking? connected by routers

  9. What is Networking? connected by routers w/ similar data planes

  10. What is Networking? connected by routers plug-and-play structured and optimized but completely different control planes

  11. What is Networking?

  12. What is Networking? we need gateway to bridge them

  13. What is Networking? and load balancing for servers

  14. What is Networking? there are other ISPs

  15. What is Networking? requiring inter-domain routers

  16. What is Networking? and a firewall to handle malicious traffic

  17. What is Networking? and mobile endpoints

  18. What is Networking? requiring wireless basestations

  19. What is Networking? and more middleboxes for billing, lawful intercept, DPI

  20. What is Networking? Ad absurdum

  21. This is a Control Plane Issue each color represents a different set of control-plane protocols and algorithms

  22. This is a Control Plane Issue whose implementation may vary by vendor and model

  23. Software Defined Networks

  24. Software Defined Networks decouple control and data planes

  25. Software Defined Networks decouple control and data planesby providing open standard API

  26. (Logically) Centralized Controller Controller Platform

  27. Protocols  Applications Controller Application Controller Platform

  28. Payoff • Cheaper equipment • Faster innovation • Easier management

  29. A Major Trend in Networking Entire backbone runs OpenFlow Bought for $1.2 x 109 (mostly cash)

  30. But How Should We Program SDNs? Network-wide visibility and control Controller Application Controller Platform Direct control via open interface Today’s controller APIs are tied to the underlying hardware

  31. OpenFlow Networks

  32. Data Plane: Packet Handling • Simple packet-handling rules • Pattern: match packet header bits • Actions: drop, forward, modify, send to controller • Priority: disambiguate overlapping patterns • Counters: #bytes and #packets • src=1.2.*.*, dest=3.4.5.*  drop • src = *.*.*.*, dest=3.4.*.*  forward(2) • 3. src=10.1.2.3, dest=*.*.*.*  send to controller

  33. Control Plane: Programmability Controller Application Controller Platform Events from switches Topology changes, Traffic statistics, Arriving packets Commands to switches (Un)install rules, Query statistics, Send packets

  34. E.g.: Server Load Balancing • Pre-install load-balancing policy • Split traffic based on source IP src=0* src=1*

  35. Seamless Mobility/Migration • See host sending traffic at new location • Modify rules to reroute the traffic

  36. Programming Abstractions for Software Defined Networks

  37. Network Control Loop Compute Policy Write policy Read state OpenFlow Switches

  38. Reading State SQL-Like Query Language

  39. Reading State: Multiple Rules • Traffic counters • Each rule counts bytes and packets • Controller can poll the counters • Multiple rules • E.g., Web server traffic except for source 1.2.3.4 • Solution: predicates • E.g., (srcip != 1.2.3.4) && (srcport == 80) • Run-time system translates into switch patterns 1. srcip = 1.2.3.4, srcport = 80 2. srcport = 80

  40. Reading State: Unfolding Rules • Limited number of rules • Switches have limited space for rules • Cannot install all possible patterns • Must add new rules as traffic arrives • E.g., histogram of traffic by IP address • … packet arrives from source 5.6.7.8 • Solution: dynamic unfolding • Programmer specifies GroupBy(srcip) • Run-time system dynamically adds rules 1. srcip = 1.2.3.4 2. srcip = 5.6.7.8 1. srcip = 1.2.3.4

  41. Reading: Extra Unexpected Events • Common programming idiom • First packet goes to the controller • Controller application installs rules packets

  42. Reading: Extra Unexpected Events • More packets arrive before rules installed? • Multiple packets reach the controller packets

  43. Reading: Extra Unexpected Events • Solution: suppress extra events • Programmer specifies “Limit(1)” • Run-time system hides the extra events not seen by application packets

  44. Frenetic SQL-Like Query Language • Get what you ask for • Nothing more, nothing less • SQL-like query language • Familiar abstraction • Returns a stream • Intuitive cost model • Minimize controller overhead • Filter using high-level patterns • Limit the # of values returned • Aggregate by #/size of packets Traffic Monitoring Select(bytes) * Where(in:2 & srcport:80) * GroupBy([dstmac]) * Every(60) Learning Host Location Select(packets) * GroupBy([srcmac]) * SplitWhen([inport]) * Limit(1)

  45. Computing Policy Parallel and Sequential Composition Abstract Topology Views

  46. Combining Many Networking Tasks Monolithic application Monitor + Route + FW + LB Controller Platform Hard to program, test, debug, reuse, port, …

  47. Modular Controller Applications A module for each task Monitor Route FW LB Controller Platform Easier to program, test, and debug Greater reusability and portability

  48. Modules Affect the Same Traffic Each module partially specifies the handling of the traffic FW LB Monitor Route Controller Platform How to combine modules into a complete application?

  49. Parallel Composition [ICFP’11, POPL’12] srcip = 5.6.7.8  count srcip = 5.6.7.9  count dstip = 1.2/16  fwd(1) dstip = 3.4.5/24  fwd(2) Route on destprefix Monitor on source IP + Controller Platform srcip = 5.6.7.8, dstip = 1.2/16  fwd(1), count srcip = 5.6.7.8, dstip = 3.4.5/24  fwd(2), count srcip = 5.6.7.9, dstip = 1.2/16  fwd(1), count srcip = 5.6.7.9, dstip = 3.4.5/24  fwd(2), count

  50. Example: Server Load Balancer • Spread client traffic over server replicas • Public IP address for the service • Split traffic based on client IP • Rewrite the server IP address • Then, route to the replica 10.0.0.1 10.0.0.2 1.2.3.4 clients load balancer 10.0.0.3 server replicas

More Related