Virtualisation des Réseaux (PDF)

Summary

This document discusses network function virtualization (NFV). It explains the concept of replacing network hardware with virtual machines to execute network functions, and outlines the benefits, including increased flexibility and cost-effectiveness. It also touches upon the integration of cloud technologies and virtualization, to quickly develop new network services. The document also shows examples and components of NFV.

Full Transcript

## Virtualisation des réseaux

**Niveau:** 3ème année IRS - ISI

**Dr. Ghayet El Mouna ZHIOUA**

### Chapitre 5: Virtualisation des Fonctions Réseau

**NFV: Network Functions Virtualization**

* The development of NFV and SDN comes after the desire to automate orchestration and management of the network, storage and computing resources.
* Network function virtualization (NFV) refers to the replacement of network appliance hardware with virtual machines that execute software and processes under the control of a hypervisor.
* NFV integrates cloud technologies and virtualization to quickly develop new network services while optimizing flexibility in terms of scalability and automation. These technologies are often grouped into NFV and SDN solutions.

- NFV extracts network functions, thus enabling software running on standardized computing nodes to install, control and manipulate them.
- Virtualized services can run on generic servers rather than proprietary hardware.
- Individual functions that are virtualized in software implementations are called virtual network functions (VNFs), such as firewalls, routers, etc.
- NFV is based on the NFV architectural model of the European Telecommunications Standards Institute (ETSI) which virtualizes the infrastructure and resources of network platforms such as computing, storage and networks.

- NFV optimizes the flexibility and profitability of network services:
- Elimination of bottlenecks imposed by manual processes.
- Possibility to deploy new services on demand.
- Vendors can offer their services more quickly and at lower cost, and leverage automation to adapt to the evolving needs and agility of customers.
- Unlike dedicated hardware-based network platforms that only support one service and depreciate over time, NFV is agile and can scale with demand, while hosting multiple services on the same physical server, which is economically more profitable.

* Contrary to dedicated hardware-based network platforms, NFV uses a software-based infrastructure that is independent of hardware.
- An x86 server acts as a common computing platform for virtual machines that provide network functions.
- The computing, memory and storage resources of servers can be shared simultaneously by multiple virtual machines in order to flexibly adapt the performance and scalability of each service, while optimizing costs.

* Network operations can dynamically provision new services without the need to install new hardware components.
* Reduced operational costs due to fewer appliances.
* The ability to implement pay-as-you-go models.
* The scalable ability of the network architecture.

* A virtual network function (VNF) is a software application that presents well-defined interfaces and provides one or more network function components in a well-defined way.
* **Example:**
- A security VNF presents firewall and NAT functions.

* A VNF can be implemented as a single VM on a single server or can be disaggregated and implemented as multiple VMs on multiple servers.

* As a service, a VNF can be implemented using multiple applications, each running on its own VM to scale the performance and scalability of each application without having to instantiate a new VNF.

* Vendors can offer multiple versions of a VNF with different performance characteristics.

* **Present the resources required for a VNF package:** Number of virtual CPUs, Virtual memory (MB), Virtual disk capacity (MB), License cost

**Examples of VNFs supported by the solution proposed by Juniper:**

* **Cloud CPE solution**

The modular architecture of NFV enables service providers to automate their processes across all levels.

* Hardware resources such as computing, storage and networks are abstracted using a virtualization layer with a **hypervisor**.
* The hypervisor creates and executes virtual machines that share the underlying hardware
* One or more virtual machines are used to implement a VNF.

The management and orchestration of NFV, called MANO, are handled by higher-level applications that automate the lifecycle of NFV infrastructure (NFVI) and VNF services.

* The networking of virtual machines and services is the responsibility of an SDN controller that automates the subnet membership and application of strategies.

**The Components:**

* **NFV Infrastructure Module (NFVI)**
* It provides the virtualization layer (hypervisors or container management systems such as Docker), as well as the physical computing, storage and networking components that host the VNFs.
* It is managed by the NFVI infrastructure manager (VIM), which controls the allocation of resources to VNFs.
* OpenStack is an example of an open-source VIM that controls physical and virtual resources.
* Red Hat OpenStack is an example of a commercial VIM.

* **VNFs:**
* These are software applications that provide one or more network services.
* VNFs use the virtualized infrastructure provided by the NFVI module to connect to the network and provide the programmable services.
- VNF managers are responsible for the lifecycle of VNF instances and the management of VNF software.

* **Management and Orchestration Component (MANO)**
* It provides the overall management and orchestration process of the VNFs.
* It implements network services through automation, provisioning and coordination of workflows on VIMs and VNFs that execute VNF functions and overlay service chains.
- It connects the NFV architecture to the existing OSS/BSS systems.
- OSS/BSS services provide NFV MANO with information on user profiles, billing, quality policies and interdomain agreements.

**Products and NFV Solutions offered by Juniper**

* Juniper Networks is an American company specialized in telecommunications equipment. It provides network and security solutions.
* Juniper offers a wide range of SDN, automation and VNF solutions for enterprise data centers, service providers and cloud operators.

* Solutions for building and deploying automated NFV solutions: **Contrail Networking SDN**, **Apstra Automated Data Center**, **Paragon Automation**.
* Solutions enabling the transition to NFV:
* **Virtualized network solutions for routing, cloud AI and security.**

**Products and NFV solutions offered by VMWare**

* **vCloudNFV**
* This is a shared, modular, and fully integrated platform for network function virtualization.
* It provides computing, storage, networking, management, and administration functions for network functions.

* **VMware NSX Data Center**
* It provides fully virtualized networking and security functions in software, making it a major component of the Software-Defined Data Center (SDDC).
- The solution implements a virtual cloud network that connects and protects data centers, clouds and applications.

**Azure Lab**
* **Lab 1: Virtual network**
https://github.com/MicrosoftLearning/AZ-104-
HYPERLINK "https://github.com/MicrosoftLearning/AZ-104-MicrosoftAzureAdministrator/blob/master/Instructions/Labs/LAB 04-Implement Virtual Networking.md#lab-04---implement-virtual-networking"
MicrosoftAzureAdministrator/blob/master/Instructions/Labs/LAB 04- HYPERLINK "https://github.com/MicrosoftLearning/AZ-
104-MicrosoftAzureAdministrator/blob/master/Instructions/Labs/LAB 04-Implement Virtual Networking.md#lab-04---implement-virtual-networking"
Implement Virtual Networking.md#lab-04--- implement-virtual-networking

* **Lab 2: Intersite connectivity**
https://github.com/MicrosoftLearning/AZ-104- HYPERLINK "https://github.com/MicrosoftLearning/AZ-104-MicrosoftAzureAdministrator/blob/master/Instructions/Labs/LAB 05-
Implement Intersite Connectivity.md#lab-05---implement-intersite-connectivity"Microsoft AzureAdministrator/blob/master/Instructions/Labs/LAB 05- HYPERLINK "https://github.com/MicrosoftLearning/AZ-
104-MicrosoftAzureAdministrator/blob/master/Instructions/Labs/LAB 05-Implement Intersite Connectivity.md#lab-05---implement-intersite-connectivity"Implement Intersite Connectivity.md#lab-05---
implement-intersite-connectivity

* **Lab 3: LoadBalancer and application gateway**
https://github.com/MicrosoftLearning/AZ-104- HYPERLINK "https://github.com/MicrosoftLearning/AZ-104-
MicrosoftAzureAdministrator/blob/master/Instructions/Labs/LAB 06-Implement Network Traffic Management.md#lab-06---implement-traffic-
management"MicrosoftAzure Administrator/blob/master/Instructions/Labs/LAB 06- HYPERLINK "https://github.com/MicrosoftLearning/AZ-104-Microsoft Azure Administrator/blob/
master/Instructions/Labs/LAB 06-Implement Network Traffic Management.md#lab-06---implement-traffic-management"Implement Network Traffic Management.md#lab-06---
implement-traffic- HYPERLINK "https://github.com/MicrosoftLearning/AZ-104-MicrosoftAzure Administrator/blob/master/Instructions/Labs/LAB 06-
Implement Network Traffic Management.md#lab-06---implement-traffic-management"management

* **Lab 4: Monitoring**
https://github.com/MicrosoftLearning/AZ-104- HYPERLINK "https://github.com/MicrosoftLearning/AZ-104-Microsoft Azure Administrator/blob/master/Instructions/Labs/LAB 11-
Implement Monitoring.md#lab-11---implement-monitoring"Microsoft AzureAdministrator/blob/master/Instructions/Labs/LAB 11-HYPERLINK "https://github.com/MicrosoftLearning/AZ-104-
MicrosoftAzureAdministrator/blob/master/Instructions/Labs/LAB 11-Implement Monitoring.md#lab-11---implement-monitoring"Implement Monitoring.md#lab-11---implement-monitoring

**FIN**