Djordje Vulovic

Consulting Systems Engineer

Cisco Day Belgrade, March 31st, 2016

Cisco NFVI Solution

Current Network

Appliance Appliance Appliance

Appliance Appliance Appliance

• Monolithic

• Lacks Elasticity

• Extremely costly to deploy/manage

• Longer Innovation cycles

Network Function Virtualization – NFV

Virtual Appliance

Virtual Network Functions

New Virtualized

Orchestration & Automation

Compute Storage Network

Open Shared Infrastructure

Virtual Appliance

Virtual Appliance Virtual Appliance

Virtual Appliance Virtual Appliance

SDN, Controllers Service Chaining

Data Models, Config. Management Cloud Orchestration Data Plane

Infrastructure

End-to-End Reference Architecture for NFV

Industry & Open Source Efforts around NFV & SDN

NSH and SFC

Netconf/YANG

ETSI Reference Framework - NFV

VNF

NFV Infrastructure ( NFVI )

Virtualisation Layer

Compute Storage Network

Open Shared Infrastructure

Virtual

Compute

NFV

Management

and

Orchestration

VNF VNF VNF VNF

Virtual

Storage Virtual

Network

Compute

Hardware Storage

Hardware Network

Hardware Hardware resources

Virtualisation Layer

Virtualised

Infrastructure

Manager(s)

VNF

Manager(s)

VNF 2

Orchestrator

OSS/BSS

NFVI

VNF 3

VNF 1

Execution reference points Main NFV reference points Other reference points

Virtual

Computing Virtual Storage

Virtual

Network

NFV Management and Orchestration

EMS 2

EMS 3

EMS 1

Service, VNF and Infrastructure Description

Or-Vi

Or-Vnfm

Vi-Vnfm

Os-Ma

Se-Ma

Ve-Vnfm

Nf-Vi

Vn-Nf

Vl-Ha Infrastructure WG

S/W Architecture WG

Management

and Operations

(MANO WG)

Technical

Steering

Committee

Reliability

and

Availability

Performance

and

Portability

Security

Expert Groups

ETSI NFV End-to-End Reference Architecture (Ph 1)

Industry NFV Deployment Models

Infrastructure

Virtualisation

VNF

Single Vendor Stack HW decoupled from

Virtualisation + VNF Islands

HW + Virtualisation platform

decoupled from VNFs Full decoupling wt

Single virtualisation platform Full decoupling multi

virtualisation platforms

X

X

X

Y

X

Z

Y Z

Y

X

Z

X

Y

X

Z

A

Y Z

A B

X

SI Costs Lowest Low Medium High Highest

Functionality & Perf Deterministic Largely Deterministic Partially Deterministic Non Deterministic Non Deterministic

Ops Complexity Lowest Low - Medium Medium High High

Lifecycle Mgmt Lowest Medium Medium High Highest

Flexibility Low High Medium High Highest

TCO Lowest Low Medium High Highest

TCO & RISK TCO & RISK

Cisco’s Role in NFV

Driving Ecosystem

Contributing in

Standards

Carrier Grade

Solution

Pre-Integration

and Validation Partner

Ecosystem

DC and

Networking

Multiple

VNFs

Open Standards Based

Platform

Cisco NFV Architecture

VNF Manager

Cisco ESC Cisco CTCM 3rd

Party

NFV-O & Resource Orchestration

NSO – Network Services Orchestrator enabled by Tail-f

North Bound APIs

Virtual Network Functions

Cisco and 3rd

Party

CSR ASAv vNAM vIPS

vPC-DI vIMS Video

Opt. 3

rd Party

Cisco Physical Infrastructure

Network VIM

Linux (RHEL), Hyper Visor (KVM), Host Packages, Software Defined Storage

NFVI Scope

Network Compute (UCS) Storage Ceph

Unifie

d M

an

ag

em

en

t

with

assu

ran

ce

.

UC

SD

API

GUI

Virtual Infrastructure Manager

Mercury based on RHEL OSP OpenStack

Assu

ran

ce

APIC VTS OSC or or 3rd

Party or

3rd

Party or

Legend

NSO (Powered by

tail-f NCS)

ESC

OpenStack (or vCenter)

APIC /

VTS, ODL

SP’s OSS/BSS or Prime Order Fulfillment

KVM (or ESXi)

Ceph (or Cinder/Swift)

VTF/OVS/ACI

SP’s Portal / Prime Service Catalog

VNF 1 (Cisco or 3rd Party)

VNF 2 (Cisco or 3rd Party)

VNF 3 (Cisco or 3rd Party)

Cisco UCS DAS on UCS Cisco N9K

Service

Assurance

Cisco NFV Solution Mapping to ETSI NFV Framework

The combination of Hardware and Software components that build the environment in which Virtual Functions (VNFs) are deployed

+ = NFVI

Software Hardware

NFV Infrastructure

Business Case for NFVI • Shared Infrastructure across multiple VNFs

• Deploy, Provision capacity optimally

• Better utilization of resources w/ Traffic/services Capital Efficiency

Operational Savings

Service Agility

Innovation & Differentiation

• Automate Onboarding, in-service activation

• Re-purpose of resources On Demand

• Better lifecycle management, sparing

• Deploying VNF as a software package

• Automation of services enablement

• Elastic deployment models in network

• DevOps model of continuous deploy, integrate

• New consumption models aligned w/ business

• Enable New Use Cases - IoT/M2M /P2P

Cisco Physical Infrastructure

Network VIM

Linux (RHEL), Hyper Visor (KVM), Host Packages, Software Defined Storage

NFVI Scope

Network Compute (UCS) Storage Ceph

Unifie

d M

an

ag

em

en

t

with

assu

ran

ce

.

UC

SD

API

GUI

Virtual Infrastructure Manager

Mercury based on RHEL OSP OpenStack

Assu

ran

ce

Cisco NFVI Solution Leading Industry Partnerships

Performance Acceleration,

Enhanced Platform Awareness

Certified by Red Hat

Joint Engineering

Integrated platform Design and Validation

Legend

Simple Access to Support

Single Point of Contact

APIC VTS OSC or or 3rd

Party or

Fully open source &

stds compliant No forks, 100% Upstream

Joint engineering Pre-integrated,

validated, tested

Broadest open

ecosystem of VNF’s

and ISV’s

Carrier grade

HW+SW infra High performing,

reliable and secure

Tightly coupled

technical support &

professional

services

Commercially

bundled platform Cisco UCS/Nexus HW +

RHEL-OS + RH OSP7

Reliable

install/upgrade Containerized services, CI/CD

for upgrades

Simplified

manageability Single pane of glass across

HW, SW, multi-sites

#1 Network & Server vendor and the

#1 OpenStack vendor together delivering a world class NFVI platform

Integrated platform sold & supported by Cisco

Fully backed by Red Hat engineering & support

Cisco Red Hat Partnership for NFVI

Cisco Red Hat Partnership for NFV

https://www.redhat.com/cms/public/Cisco-NFV-infrastructure-solution-brief-a4-en.pdf

Cisco/Intel Partnership for NFV

http://www.intel.com/content/dam/www/public/us/en/documents/white-papers/cisco-nfv-partnership-paper.pdf

Cisco NFVI PoD Packaging

½ Rack POD Full Rack POD

Storage

Expansion Module

Compute

Expansion Module

NFVI

Branch Solution

1

2 3

4

6 5

Modular

Configuration

Carrier Grade Easy to Manage

Pre-integrated

+ Validated

Single Point

of Ownership

Advanced

Services

NFVI Requirement #1: Cisco UCS Programmable Servers

Extends Abstraction Beyond

the Hypervisor to System

Elements

Infrastructure Automation

Through API and Policy

Truly Elastic

Fully Orchestrated

Workload Defined

Virtual

Resource Pools

Infrastructure

Management

Programmable

Infrastructure

XML API

Au

tom

ate

d a

nd

Dyn

am

ic

Virtual Pool of Resources

NFVI Requirement #2: Cisco Nexus Programmable Switches

POAP

PXE Linux/Python

Daemon

NXAPI

Data Models

Package and Application

Management

Standard Open Interfaces

Automation and Visibility

Server Management

Tools

BootStrap and Provisioning

Adaptable NXOS BootStrap and Provisioning

Package and Application

Management

Standard Open Interfaces

Adaptable NXOS Automation and Visibility

Server Management

Tools

Modular Ease Of

Operations Open

3rd Party App

Integration Programmability

Ready For

Devops

Unified Management

End-to-End

Infrastructure

Automation and

Lifecycle Management

Policy-Driven

Provisioning

Cisco UCS Director

NFVI

VMs Compute Network Storage

UCS Director

OS and Virtual

Machines

Compute

Network

Storage Tenant

B

Tenant

C

Tenant A

Compute and Hypervisor

Network and Services

B C A

VM VM Bare Metal

Domain Managers

On-Demand

Automated Delivery

Cisco Confidential

Stability, Performance, Scalability & Security

High Availability

Cisco OpenStack Platform

Containerized Openstack Control Plane

Install, Upgrade, Monitoring, Serviceability, Logging & Debugging

Base OpenStack Distribution

Cisco Openstack Platform Create a carrier-class platform suitable for NFV

• Robust Lifecycle

Management

• Cisco Validated Solution

• Operational Excellence

• Open & Flexible

Accelerating OpenStack adoption for Carrier-Class NFV

Cloud99

Cisco OpenStack Vs DIY Distrubtion

Product roadmap w/upgrades

SLAs

Support

Production timeline

OpenStack skill sets required

Operational complexity

DIY OpenStack

None

No

None

Unpredictable

High

High

Cisco OpenStack

Complete OpenStack

system

Yes – 99.99%

Full stack

Predictable

Low

Low

OpenStack Distro

No

Software only

More predictable

High

Medium

OpenStack software only

Installer Differentiators

Bare-Metal Deployment 1

Utilizes latest modern toolsets: Python, Ansible 2

Innovative use of UCS CIMC APIs to configure HW 3

Deploys RedHat Enterprise Linux (RHEL) and RHEL OpenStack Platform (OSP) 4

Containerized Deployment of OpenStack Services 5

Verifiable HA Deployment 6

Cloud Pulse OpenStack Health Check

• Health Checks using CloudPulse tool.

• Why are cloud health checks so important?

• Important to NFV applications, Telcos have strict SLAs.

• VNFs can be moved to a different cloud if OpenStack failure is detected early.

• Operators need to be aware of the failure before the customer experiences failure.

• Characteristics of a healthy OpenStack cloud:

• Control Plane:

• Openstack services can handle APIs and reply with an appropriate status.

• Openstack resources can be created and deleted.

• Data Plane: VMs can communicate within and/or across networks.

Cloud Pulse OpenStack Health Check

• CloudPulse Operator – Infra Tests:

• DB Cluster Status

• RabbitMQ Cluster Status

• HA Proxy Test

• CloudPulse Operator – Service Tests:

• Service Status

• Network Port Test

• CloudPulse Operator – API Tests:

• Endpoint

• Functional

• Comprehensive

• CloudPulse API – Light Endpoint:

• Nova list

• Cinder list

• Glance list

• Neutron net-list

• Keystone tenant-list

• CloudPulse API – Functional

• Boot/Delete VM

• Create/Attach/Detach/Delete volume

• Create/Delete image

• CloudPulse API – Comprehensive

• Boot VM on each compute

• Ping VM across networks

Cloud99 A Framework for OpenStack HA Testing

HAProxy Keepalived

nova Neutron Keystone Glance cinder horizon

• Load the cloud: concurrent relevant control/data plane tests

• Process or node level disruption of service

• Monitor services

Cisco created

Ensure no disruption for existing cloud resources!!!

ELK Stack Log Management Platform

Data Collection and

Transformation Agent

An Analytics Engine

and DataStore

Data Exploration

Interface

Logstash Forwarder

on all nodes

OpenStack Service Logs

LOG

NFVI CI/CD Differentiator

Customizable Continuous Integration Pipeline

RH OSP

RPMs

Cisco

Patches

Docker

Containers

Repo

Continuous

Integration

System

TEST

BUILD

Cisco Confidential

Performance through virtual switch and its virtual interface to VNFs

10 Gbit/s, 1.6 million frames/s throughput with Cisco‘s VPP

7 Gbit/s, 1.09 million frames/s throughput with OpenvSwitch

Latency is a key aspect

Performance and Validation EANTC: Throughput measurements OVS-DPDK vs. VPP

http://www.lightreading.com/nfv/nfv-tests-and-

trials/validating-ciscos-nfv-infrastructure-pt-

1/d/d-id/718684

Cisco NFVI Solution Differentiators

Recall, under the hood this solution is Cisco Infrastructure, running RHEL OSP

Installer CI/CD

Health Checks Logging/Monitoring

HA Verification VM throughput Testing

How does this

solution

Differentiate…

?