Professional Documents
Culture Documents
Harrison J. Son
CEO at Netmanias.com
son@netmanias.com
www.netmanias.com
About NMC Consulting Group/Netmanias was founded in year 2002, and is an advanced, professional network consulting company which is specialized for
IP Network areas (e.g., FTTH, Metro Ethernet, IP/MPLS and SDN/NFV), service areas (e.g. eMBMS, IPTV, IMS and CDN), and lastly, wireless network areas
(e.g. 4G LTE, 5G and Wi-Fi). Copyright © 2002-2017 NMC Consulting Group. All rights reserved.
Table of Contents
3-7: Discussion 62
Most Important NFV Use Cases for Operational Efficiencies Most Important NFV Use Cases for Capex Reduction
Mobile PE
2 Gi-LAN IMS
4 EPC 3
BS Telco Network Internet
Function (PNF)
Dedicated appliances Telco Network
Function (PNF)
Dedicated appliances
1. vCPE
2. vEPC
3. Gi-LAN
4. vRAN
https://www.sdxcentral.com/articles/analysis/sgi-
gi-lan-efficiency/2016/06/
Mobile PE 2
Gi-LAN
4 IMS
EPC
BS Telco Network Internet
Function (PNF)
Dedicated appliances Telco Network
Function (PNF)
Dedicated appliances
3
45% vRAN
2
1
vEPC
vCPE
SOURCE: Verizon, Leveraging NFV for Profitable Managed Services: SD-WAN, Security & vCPE 2016.04
Customer 1 Customer 1
...
...
Customer 1,000 Customer 1,000
When using existing dedicated H/W When using NFV/SDN $580,000 $160,000
appliances NFV-O SDNC
$6,600,000 $3,558,000
SOURCE: ADVA, Total Cost of Ownership Calculator, FSP 150vSE (X.86 server case, 2016
Enterprise
Access Backbone
...
Network Network
Mobile
Cloud
NFV
NVF and SDN: Out of DC and into operators’ networks SDN
<Technology>
n AS IS
Edge PoP Core Datacenter
Residential
NFV-O
RG (DHCP/NAT/…) SDNC
Enterprise
VPC Cloud
. Tenant A NFV Single purpose dedicated network appliance
Router/FW/WOC/... Access Backbone Tenant B SDN
.
. IMS
Mobile
Internet
BBU Services
EPC
(FW/DPI/MVO/SBC/…)
H/W S/W
Virtualization Network Appliance VNF (Virtualized Network Function)
= +
n TO BE [Residential]
Residential Edge PoP NFV-O Core Datacenter L3 CPE (RG) at customer home is virtualized - SW
(DHCP, NAT and Routing) is separated from HW
SDNC
VNF (modem, switch and AP). HW remains, but SW is moved
L2 CPE onto X.86 at edge PoP.
RG (DHCP/NAT/…) VNF
[Enterprise]
Enterprise VNF
vCPE
vCPE Network appliance (router, FW, WOC, IPS, etc.) at
vBBU enterprise is virtualized as VNF.
Router/FW/WOC... VPC Cloud
Access MEC Backbone NFV 1) Centralized vCPE: SW (VNF) is moved onto the cloud
. Tenant A
L2 CPE vEPC of edge PoP, leaving only simple L2 CPE behind at the
Tenant B SDN
VNF . VNF . enterprise premise.
Mobile 5G . 2) Distributed vCPE: VNFs are moved onto X.86 at the
. IMS
. enterprise premise.
BBU 4G Internet
EPC [Mobile]
Service BBUs at cell site are moved onto edge PoP, and
(FW/DPI/MVO/Caching/SBC/…) virtualized on X.86 server
VNF Centralization VNF Distribution Mobile core is also virtualized, moving eEPC down to
edge PoP
Go up to Edge Go down to Edge Services at the top of Gi are also moved down to edge
PoP
Issues: Where in the operators’ network should the virtual CPE go?
Customer Premise
DC
ER/PE
Customer Premise
L3 VPN
L2 CPE
Router L2 SW
(aggregation) HQ/DC
Juniper NFX250
VNF: 4~6
MRV OS-V20
Telco Systems
CloudMetro 10
Ciena 3938vi
1 2 3 4 5 6 7 8 9 10 11 12 1 2 3 4 5 6 7 8 9 10 11 12
2015 2016
Further Reading
- AT&T's CORD - the ultimate architecture born after decades of innovation in the communications network
http://www.netmanias.com/en/?m=view&id=blog&no=10408
X.86 Server
FSP 150 vSE
VNF as a Service
2015.10
VNF
NFVI as a Service
ETX-2i NID
vRouter
NVFs
Juniper NFX250
NVFs
vRouter (Juniper, Cisco)
vFW (Fortinet)
vWOC (Riverbed)
Three options:
1. Premises-based universal customer equipment
2. Cloud-based virtual CPE service available later this year
3. Hybrid version that allows for a mix of premises-based
and cloud-based deployments.
L3 VPN
HQ/DC
L2 CPE
Router ER/PE IP Backbone Public Internet
vCPE vCPE DC
❶ X.86 Line Card
on Aggre. SW W W L3 VPN
HQ/DC
L2 CPE L2 SW
(aggregation) ER/PE IP Backbone Public Internet
X.86
Standalone
Server(VNF)
❷ ❸
Openflow
Overlay
(VXLAN)
Underlay COLT Node (Edge) COLT Datacenter (Gen4)
(Per-Hop)
vRouter 2014
Physical Server
vFW
Overlay Tunnel(VXLAN) VM
PE
L3 Router
VNF VNF
Cyan
Accedian
2012.11
vRouter MPLS L3 VPN OVS
L2 NID Cyan 기업전산
자원
PE
IP/MPLS VM VPC
L2
IP access and IP VPN
SDN GW
Cyan Juniper M960
services PE Overlay Tunnel(VXLAN) vFW
Public Internet
Carrier Ethernet
[NFV]
· In Nov. 2012, L3 CPE (router) was removed from a customer premise, and vRouter was added as VNF onto X.86 line
card at PE router (Juniper M960)
· Then later, NFVI was introduced in COLT node, and vRouter and vFW were added onto X.86 server
[SDN]
· L2 NID – Carrier Ethernet – PE Router: At each hop, SDN controller provisions paths with Openflow
· PE – Fabric – vRouter: Overlay Tunnel(VXLAN)s are provisioned by SDN controller with Openflow
L3 VPN
HQ/DC
L2 CPE
Router L2 SW
(aggregation)
ER/PE IP Backbone Public Internet
vCPE Datacenter
W
X.86
server
Switch
Fabric
DC
L3 VPN
HQ/DC
L2 CPE L2 SW
(aggregation) ER/PE IP Backbone Public Internet
L3 VPN
HQ/DC
ONT
Router FW
/NID IP Backbone Public Internet
CPEs
NFVI
vCPE
vRouter vFW
LAN
Switch
DC
Fabric
L3 VPN
HQ/DC
ONT/NID
ER/PE IP Backbone Public Internet
· CPE at customer premises are virtualized (vCPE) and added onto NFVI at edge PoP
· Customer’s LAN is expanded to the operator’s edge PoP
A secure tunnel is required between a customer (Branch Office) and VNFs at NFVI in edge PoP of the operator to:
· Identify and reach the customer’s VNF (vRouter) in the edge PoP
· Ensure security as the operator’s access networks, DC GW/ER/PE, Switching Fabric, X.86 servers, etc. are shared by
many customers
⇒Network virtualization through SDN (virtual network creation)
Branch Office
X.86
server
vRouter B vFW B
ONT/NID
Switch
DC
Fabric
L3 VPN
HQ/DC
Access Network
ER/PE IP Backbone Public Internet
ONT/NID
Enterprise B
Branch Office
L3 VPN
HQ/DC
ONT/NID L2 SW
(aggregation) ER/PE
IP Backbone Public Internet
Hop-by-Hop forwarding
vRouter
Overlay Edge PoP
· SDN controller provisions only the
SDN Controller VM two end points on the route
vFW · SDN not recognized by sub-network
p1 p2
· SDN controller: Simple
vSwitch
Tunnel provisioning · Can use existing networks as is
(Openflow, MXPP,…)
Switch
Customer Premise Fabric
DC
VXLAN, GRE or IPsec Tunnel
L3 VPN
HQ/DC
ONT/NID L2 SW
(aggregation) ER/PE
IP Backbone Public Internet
A HQ/DC
ONT/NID
L2 SW DC GW/ER/PE IP Backbone Public Internet
SDN (aggre.)
Overlay (VXLAN, GRE, IPsec) Overlay (VXLAN, MPLSoGRE) Overlay (VXLAN, MPLSoGRE) Overlay (VXLAN, MPLSoGRE)
Underlay (Per-Hop Openflow/Netconf/
Proprietary/Manual) Underlay (Openflow) Underlay (Openflow) Underlay (Openflow)
B
Overlay (VXLAN, GRE, IPsec) Overlay (VXLAN, MPLSoGRE) Overlay (VXLAN, MPLSoGRE)
Edge PoP
Customer Premise Access Network vRouter
Carrier Ethernet, PON VM
Lease Line, L3 Switch, etc.
vFW
EVS/CSS p1 p2
A HQ/DC
L2 SDN CPE
L2 SW DC GW/ER/PE IP Backbone Public Internet
SDN (aggre.)
Overlay (VXLAN, GRE, IPsec) Overlay (VXLAN, MPLSoGRE) Overlay (VXLAN, MPLSoGRE) Overlay (VXLAN, MPLSoGRE)
Underlay (Per-Hop Openflow/Netconf/
Proprietary/Manual) Underlay (Openflow) Underlay (Openflow) Underlay (Openflow)
B
Overlay (VXLAN, GRE, IPsec) Overlay (VXLAN, MPLSoGRE) Overlay (VXLAN, MPLSoGRE)
Portal
Openflow/OVSDB
Openflow
Internet
Access GW
vFW vNAT
(vRouter)
HQ
OVS OVS OVS
...
VXLAN Tunnel, GRE
L3 VPN
Portal
Openflow/OVSDB
Openflow
Internet
Access GW
vFW vNAT
(vRouter)
=>
VXLAN Tunnel ID: Port1 Port2
VXLAN Tunnel ID Port3 HQ
Port 1
Server IP:1.1.1.1
OVS
VM VM
vRouter vSRX 3PP VNF vSRX FW, IPS, Anti-Virus, ...
...
Northstar (SDN controller) XMPP
VR BGP, Netconf
... Internet HQ
Overlay
VXLAN, QFX switch series
MPLSoGRE
L3 VPN
L2 CPE Unified Edge Router
Or MX series
BO or SMB
Underlay/Overlay
Telco CO/PoP
VLAN
L1
Ipsec, GRE tunnel
... Internet HQ
QFX switch series
L3 VPN
L2 CPE Unified Edge Router
Or MX series
BO or SMB
Underlay/Overlay
Telco CO/PoP
VLAN
L1
Ipsec, GRE tunnel
... Internet HQ
L3 VPN
L2 CPE Unified Edge Router
Or MX series
BO or SMB
Underlay/Overlay
Telco CO/PoP
VLAN
L1
Ipsec, GRE tunnel
VM VM
... Internet HQ
L3 VPN
L2 CPE Unified Edge Router
Or MX series
BO or SMB
Underlay/Overlay
Telco CO/PoP
VLAN
L1
Ipsec, GRE tunnel
VM VM
L3 VPN
L2 CPE Unified Edge Router
Or MX series
BO or SMB
Underlay/Overlay
Telco CO/PoP
VLAN
L1
Ipsec, GRE tunnel
VM VM
vRouter vSRX
Northstar (SDN controller) ge1 ge2 ge1 ge2
VR
L3 VPN
L2 CPE Unified Edge Router
Or MX series
BO or SMB
Underlay/Overlay
Telco CO/PoP
VLAN
L1
Ipsec, GRE tunnel
*Offered for free to enterprise customers subscribing to Singtel’s enterprise Internet service
A HQ/DC
ONT/NID
L2 SW DC GW/ER/PE IP Backbone Public Internet
(aggre.)
Overlay (VXLAN, GRE, IPsec) Overlay (VXLAN, MPLSoGRE) Overlay (VXLAN, MPLSoGRE) Overlay (VXLAN, MPLSoGRE)
Underlay (Per-Hop Openflow/Netconf/
Proprietary/Manual) Underlay (Openflow) Underlay (Openflow) Underlay (Openflow)
B
Overlay (VXLAN, GRE, IPsec) Overlay (VXLAN, MPLSoGRE) Overlay (VXLAN, MPLSoGRE)
Openflow
Overlay
(VXLAN)
Underlay COLT Node (Edge) COLT Datacenter (Gen4)
(Per-Hop)
vRouter 2014
Physical Server
vFW
Overlay Tunnel(VXLAN) VM
PE
L3 Router
VNF VNF
Cyan
Accedian
2012.11
vRouter MPLS L3 VPN OVS
L2 NID Cyan 기업전산
자원
PE
IP/MPLS VM VPC
L2
IP access and IP VPN
SDN GW
Cyan Juniper M960
services PE Overlay Tunnel(VXLAN) vFW
Public Internet
Carrier Ethernet
[NFV]
· In Nov. 2012, L3 CPE (router) was removed from a customer premise, and vRouter was added as VNF onto X.86 line
card at PE router (Juniper M960)
· Then later, NFVI was introduced in COLT node, and vRouter and vFW were added onto X.86 server
[SDN]
· L2 NID – Carrier Ethernet – PE Router: At each hop, SDN controller provisions paths with Openflow
· PE – Fabric – vRouter: Overlay Tunnel(VXLAN)s are provisioned by SDN controller with Openflow
Openflow
Overlay
(VXLAN)
Underlay COLT Node (Edge) COLT Datacenter (Gen4)
(Per-Hop)
vRouter 2014년
Physical Server
vFW
VM
PE/ER
L3 Router
VNF VNF
Cyan
Accedian
OVS
L2 NID Cyan IP/MPLS 기업전산
자원
PE/ER VM VPC
L2
SDN GW
Cyan PE/ER vFW
Juniper M960
Public Internet
Carrier Ethernet
L3 Router
PE VNF
Cyan VNF
Accedian
L2 NID
MPLS L3 VPN OVS
Cyan 기업전산
자원
PE
IP/MPLS VM VPC
L2
SDN GW
Cyan PE vFW
Juniper M960
Public Internet
Carrier Ethernet
vRouter
NVFs
Juniper NFX250
NVFs
vRouter (Juniper, Cisco)
vFW (Fortinet)
vWOC (Riverbed)
Three options:
1. Premises-based universal customer equipment
2. Cloud-based virtual CPE service available later this year
3. Hybrid version that allows for a mix of premises-based
and cloud-based deployments.
Server-Switch
Edge PoP
SDN
Access Access
Access Access
· Full-scale datacenter deployment or network re-design is not · High costs in building a new data center at edge PoP and deploying full
necessary NFVI (switch fabric, server and storage)
· No change in network architecture
· Works required only within customer premises as usual
· Fast time-to-market
2 2 2 1 1 2 2 2
3 3 4 4 4
4 5 5 5 5
3 3
4 4 4 4
1 1 2 2 2 1 1 2 2 2 1 1 2 2 2
3 3 4 4 4 3 3 4 4 4 3 3 4 4 4
5 5 5 5 4 5 5 5 5 4 5 5 5 5 4 5 5 5 5
High scalability
· Computing capacity of the distributed vCPE at each customer · Plentiful resources of many servers at edge PoP can be efficiently
cannot be shared with other customers shared among customers
· Computing nodes with sufficient capacity margins must be
· Low per-unit costs (costs per customer), the greatest benefit
provided as customers can request for more services (i.e.
adding VNFs) later · More servers and storage can be easily added at edge PoP as the
· vCPE HW must be replaced when the customer adds services number of customers and their subscription grow
more than specified
TCP Sessions
VNF: WAN VNF: WAN
VNF: WAN VNF: WAN
Accelerator Accelerator
Accelerator Accelerator
Multiple TCP sessions between BO and HQ = Fast Single TCP session between HQ and PoP, and PoP and BO
E2E data transmission = less efficient WAN accelerator
· WAN accelerator function works between two points (e.g. · Acceleration effect is caused only between the operator’s edge
between HQ and BO, or between BO and BO), thereby PoPs, and so less E2E efficiency
giving excellent speed enhancement
· Effective only when edge PoPs and customer are located close by
100MB 100MB
1 2 3 4 1 2 3 4 1 2 3 4 1 2 3 4 1 2 3 4 1 2 3 4
100Mbps 100Mbps
1MB 100MB
1 2 3 4 3 1 2 3 4 1 2 3 4 3 1 2 3 4
변경부분
100Mbps
10Mbps
1MB 100MB
1 2 3 4 4 1 2 3 4 1 2 3 4 4 1 2 3 4
변경부분
100Mbps
10Mbps
NFVI
Switch
Fabric
DC
VNF
L3 VPN
W
HQ/DC
L2 CPE L2 SW
(aggregation) ER/PE IP Backbone Public Internet
VNF VNF
Switch
Fabric
SDN SDN DC
VNF L2 Circuit (VLAN) L3 VPN
W
HQ/DC
SDN
L2 CPE L2 SW
(aggregation) ER/PE IP Backbone Public Internet
vRouter
W
W vWOC Virtual CPE: Multiple appliances
vFW vSwitch virtualized on X.86 server
X.86 server
Edge PoP
W W
vSwitch vSwitch
vSwitch
And then, Centralized vCPE! X.86 server
W W
vSwitch vSwitch
W
ER/PE MPLS L3 VPN HQ/DC
vSwitch
Access
X.86 server aggregation
IP Backbone Public Internet
Branch Office/SMB
Ultimately Hybrid (VNFs are distributed
onto either D-vCPE or c-vCPE depending
on services)
Access ER/PE
Residential
vBNG DHCP Pare. W vBBU vEPC MEC
Enterprise
MPLS L3 VPN
W
vSwitch Access
IP Backbone HQ/DC
X.86 server aggregation ER/PE
Mobile
Public Internet
Discussion
SDN/NFV: Strategies and Progresses in Network Operators 62