Layer-7 SDN
SDN NFV 50 % 3 MVNO 1 2 ICM @ 2015/01/16 2
1 1 2 2 1 2 2 ICM @ 2015/01/16 3
2 Service Dependent Management (SDM) SDM Simple Management of Access-Restriction Translator Gateway (SMART-GW) ICM @ 2015/01/16 4
L7 Web portal interface Other system Simple interface to make an order 2nd provider Management plane for A Management plane for B Virtualized partial management planes 2nd provider 1st provider 1st provider North band South band Data plane SDN controller Data plane Control plane swapped from each node North band South band SDM controller Management plane controlled with SDM Network node Network node Service order from 2nd provider Management plane Management plane Management plane for each switch Control against each network node Access control against real management plane ICM @ 2015/01/16 5
SDM North Band Interface 2 L7 Filter Filter Allocator Filtering Logic Filter Allocator Session Interface Manager Interface L7 Filter SSH, Telnet etc Session Interface Node Northband Interface Filter Allocator Interactive Operation Filtering Logic Manager Interface Agent SNMP etc Router, Switch, Server, etc ICM @ 2015/01/16 6
SDM North Band Interface 2 L7 Filter Filter Allocator Filtering Logic Filter Allocator Session Interface Manager Interface L7 Filter SSH, Telnet etc Session Interface Node Northband Interface Filter Allocator Interactive Operation Filtering Logic Manager Interface Agent SNMP etc Router, Switch, Server, etc SDM L7 Filter, Filter Allocator, Filtering Logic ICM @ 2015/01/16 7
SMART-GW 2 Co-Management SDM ICM @ 2015/01/16 8
SMART-GW Filter Allocator L7 Filter 2 L7 Filter Filtering Logic L7 Filter SSH, Telnet etc Session Interface Node Northband Interface Filter Allocator L7 Filter L7 Filter Interactive Operation Filtering Logic Manager Interface Agent SNMP etc Router, Switch, Server, etc ICM @ 2015/01/16 9
SMART-GW Controller 1st Provider 1st Provider s Physical Network 2nd Provider X Commands Control Access Permissions 2nd Provider X s Service Network 2nd Provider Y SMART-GW Command restriction 2nd Provider Y s Service Network 1 2 2 ICM @ 2015/01/16 10
SMART-GW 192.168.56.150 Router1 Router2 192.168.56.200 192.168.56.210 SMART-GW 1. SMART-GW test 2. Router2 telnet 3. Router1 4. Router1 telnet ICM @ 2015/01/16 11
SMART-GW 192.168.56.150 Router1 Router2 192.168.56.210 192.168.56.200 SMART-GW 1. SMART-GW test 2. Router2 telnet 3. Router1 4. Router1 telnet ICM @ 2015/01/16 12
show ICM @ 2015/01/16 13
Router2 telnet Router2 show enable ICM @ 2015/01/16 14
SMART-GW 192.168.56.150 Router1 Router2 192.168.56.210 192.168.56.200 SMART-GW 1. SMART-GW test 2. Router2 telnet 3. Router1 4. Router1 telnet ICM @ 2015/01/16 15
1 rule add rule add ICM @ 2015/01/16 16
Router1 eth0 lo ICM @ 2015/01/16 17
Clients (Host) Container 1 Container 2. SMART-GW Container N Router1 Router2 CPU : Intel Atom 2.4 GHz RAM : 8GB OS : CentOS 6 L7-Filter Test case Parameter Clients Commands per session Command frequency A 100 Avg 15 (cmd / session) Avg 10 (cmd / min) B 500 Avg 15 (cmd / session) Avg 10 (cmd / min) C 1000 Avg 15 (cmd / session) Avg 100 (cmd / min) cmd : command User admin partner customer Filter ^.* ^(ping trace show enable set help exit).* ^(show ping help exit).* ICM @ 2015/01/16 18
Response time [msec] 1 0.8 0.6 0.4 0.2 0 Test case Parameter Clients Commands per session Command frequency A 100 Avg 15 (cmd / session) Avg 10 (cmd / min) B 500 Avg 15 (cmd / session) Avg 10 (cmd / min) C 1000 Avg 15 (cmd / session) Avg 100 (cmd / min) cmd : command A B C Test case 1msec CPU usage [%] 10 8 6 4 2 0 CPU RAM A B C Test case Linux 16 14 12 10 8 6 4 2 0 RAM usage [MB] ICM @ 2015/01/16 19
SDM SDM SMART-GW SDN SDM ICM @ 2015/01/16 20