9 - Software Defined Networking

Question 1

Network Management

Answer 1

Process of configuring network to achieve a variety of tasks

• load balance
• security
• business relationships

Configuring net ]work mistakes lead to:

• Oscillation
• loops
• partitions
• black-holes

Question 2

Why is configuration hard?

Answer 2

1. Defining correctness is hard
2. Interactions between protocols->unpredictability
3. Operators make mistakes
   Device-level configuration SDN changes this

Question 3

What operators need (and what SDN provides)

Answer 3

1. Network-wide views
   - topology
   - traffic
2. Network-level objectives
   - load balance
   - security
3. Direct Control
   - > direct manuplation of data plane

Question 4

Routers should (to make network operations easier) …

Answer 4

+ Forward packets
+ Collect measurements
- Compute Routes -> can be (logically) centralized

Software Defined Networking == “Remove Routing from Routers”

Question 5

What is an SDN?

Answer 5

Data Plane: forward traffic
Control Plane: Compute routing tables
Today: Control + Data on routes
SDN: 1. Logically centralized control 2. network-wide control

Question 6

Advantages of SDN

Answer 6

1. Coordination
2. Evolve
3. Reasoning

All of these characteristics are rooted in the fact that the control plane is separate from the data plane

This allows to provide CS techniques to networking problems

Question 7

SDN infrastracture

Answer 7

Control Plane: Software Program (Python, C)

Data Plane: Programmable hardware (“switch”)

Question 8

SDN Applications

Answer 8

Data centers
Backbone networks
Enterprise networks
Internet Exchange Points (IXPs)
Home Networks

Question 9

Job of Control Plane

Answer 9

To compute state that ultimately ends up in the data plane

Question 10

Control Plane

Answer 10

Logic that controls forwarding behavior

Examples: routing protocols, configuration for network middleboxes

Question 11

Data Plane

Answer 11

Forward traffic according to control plane

Examples: forwarding, switching

Question 12

Why is separating data and control a good idea

Answer 12

1. Independent evolution
   - > software & hardware can evolve independently
2. Control from high-level program
   - > debug/check behavior more easily

Question 13

Opportunities for better network management (separation of control and data plane)

Answer 13

1. Data centers: VM migration
2. Routing: More control over decision logic
3. Enterprise networks: security
4. Research: coexistence w/production

Question 14

Reasons for separating data and control

Answer 14

• Independent evolution of data and control plane
• Separating vendor hardware from control logic
• Easier reasoning about network behavior

Question 15

Example of where SDN can provide huge wins

Answer 15

Data Centers

Problem: Provisioning/migration in response to load
Solution: Program switch state from a central database

Question 16

How does control/data separation make managing data centers easier?

Answer 16

• Monitoring/control of routes from a central point

- Migrating VMs without renumbering host addresses

Question 17

Challenges with SDN

Answer 17

1. Scalability: Hundreds to thousands of switches
2. Consistency: Ensuring different replicas see same view
3. Security/Robustness: Failure or compromise?

Question 18

Ways to cope with scalability challenges

Answer 18

• Eliminate redudant data structures
• Only perform control-plane operations for a limited # of operations
• Cache forwarding decisions in switches
• Run multiple controllers

Question 19

Different SDN Controllers

Answer 19

• Nox
• Ryu
• Floodlight
• Pyretic
• Frenetic
• Procera
• RouteFlow
• Trema

Question 20

NOX

Answer 20

• First-generation OpenFlow controller
  
  • -> open-source, stable, widely used
• Two flavors
  
  • “Classic”: C++/Python
  • “New NOX”: C++ only, fast, clean

Characteristics:
C++
OpenFlow 1.0
Model Event-based -> event handlers

+Performance

• Low level open flow commands
• C++

Question 21

NOX Architecture

Answer 21

Components

1. Switches
2. Network-attached servers

Abstraction: Switch Control

Control: flow granularity

Question 22

flow

Answer 22

header is 10-tuple

Actions might include Forward, drop, send to controller

When a switch receives a packet:

1. Updates counters for counting packets that belong to that flow
2. Applies corresponding actions

Question 23

Basic Programmatic Interface for the NOX Controller

Answer 23

Based on events, such as a switch join/leave, packet in or receive method, stats etc

Controller keeps track of network view which includes a view of the underlying network topology

also speaks control protocol to the switches in the network

That control protocol effectively allows controller to update the state in the network switches

The NOX controller implements the OpenFlow protocol

Question 24

When to use Pox

Answer 24

Class project and university research

Does not perform as well as other controllers

Question 25

Ryu

Answer 25

Python
Openflow 1.0, 1.2, 1.3
Open Stack

Disadvantage:
Does not perform as well as other SDN controllers such as Nox because it is written in python

Question 26

FloodLight

Answer 26

Java
OpenFlow 1.0
Fork from “Beacon”

maintained by big switch networks

Advantages:
Documentation
REST
Performance

Disadvantages:
Hard to Learn

Question 27

Nox

Answer 27

C++
OF 1.0

Advantage:
Performance

Disadvantage:
Slow programming/debugging

Question 28

Pox

Answer 28

Python
OF 1.0

Advantage:
Easy to program

Disadvantage:
Performance

Question 29

Pox Algorithm for Switch

Answer 29

1. Update address/port table
2. If multicast, flood
3. If no table entry, flood
4. If src = dst, drop
5. Install flow table entry

Question 30

Caching

Answer 30

1. Packets only reach controller if no flow table entry at switch
2. When controller decides on action, installs in switch
3. Decision/flow table entry is cached