PDCloudEx SDN - One Stop Virtualization Platform

 

PDCloudEx SDN is a software-defined networking solution that provides intra-datacenter connectivity for virtual and physical workloads on the cloud. Built on OVN, OpenDayLight, OpenVSwitch, and Openstack, the product provides a disaggregation for both software and hardware components in a network, while providing full control over the virtual networks. 

It also comes with a base controller platform for everything SDN and supports multiple protocols. 

Our technology enables full network virtualization and allows enterprises, data centers, and service providers to easily deploy, control, monitor, and manage secure multi-tenant network infrastructure. In other words, it is a comprehensive solution that makes the network as readily consumable as compute resources across the data center, enterprise WAN and public cloud providers. 

It does so by providing the missing link to ensure rapid and efficient delivery of highly customizable application services, in and across multi-tenanted data centers. The product also takes advantage of OpenStack, allowing PDCloudEx SDN to look deep into the aspects for next-generation real-time analytics, security, and remediation.

 

What Does The Product Provide?





  • PDcloudEx SDN is a modular platform that provides modularity, extensibility of functionality, and REST API for external applications. 

  • Support for network automation.

  • SDN for Network function virtualization while managing the underlay physical fabric makes it industry-ready.



 



  • Ease of Network configuration for the Data Centers.

  • 24x7 Support by our Partners (ex: Prodevans Technologies) 

  • Provides orchestration for tenants, virtual machines in terms of network configuration and network security.

 



  • The product comes with support for Web UI: visualization of the entire network topology and detailed information about individual elements(switches, ports, links, hosts)

  • The ‘user-friendly’ UI provides provision to view Network topology and statistics.



 

 

 

 

 

  • Support for layer 2/3 virtual private networks as well as L4 - L7 Services.

  • Enables monitoring and troubleshooting while not impacting mission-critical communications.





  • Establishes connectivity between bare-metal services and the virtual infrastructure. 

  • Optimizing the performance of your network infrastructure, all based on predefined business outcomes.

  • Integration with multiple fabrics and network devices



  • Provides applications with several high-level abstractions, through which the applications can learn about the state of the network and through which they can control the flow of traffic through the network.

  • Capable of Interfacing with legacy network infrastructure.



 

 



 

  • Provides domain-wide visibility and analytics to manage physical and virtual domains with the ability to administer network-wide threat monitoring. 

  • Openstack and OpenvSwitch and bring with it a plethora of customization and automation.

 

 

 

  • Logically centralized, physically distributed for resiliency and scalability.

  • Fine-grain management to enforce policies based on applications, groups, and services 

 

 

  • The creation of multilayered service makes it possible to create, activate, modify, and restore dynamic multilayer services in a fraction of the time required today. We bring a physically distributed, logically centralized, SDN controller that can interface with other systems. 

  • Built on Open Source SDN Software Distribution

 

 

Why Choose PDCloudEx SDN? 


Here is a list of features that makes PDCloudEx SDN a unique virtualization platform.

1. Visualization

The platform provides visualization of Network Topology and Network statistics along with the overlay components in the Datacenter.

2. Multiple Protocol Support

The platform is flexible enough to support a wide range of protocols like OpenFlow, OVSDB, NETCONF, BGP, PCEP, LISP, SNMP.

3. Integrations

Integrations like third-party applications which leverage Northbound APIs and Integrates with the help of private cloud management platforms like OpenStack are made possible.

 

4. Support for REST API 

APIs available for third-party integrations 

Features bidirectional Northbound APIs

5. Cloud Networking and Security  

The following aspects are taken care of:

  • Provides security and isolation

  • Authentication, Authorization, and Accounting (AAA) 

  • Services Scalable and stable in performance 

  • Routing capabilities and high-performance virtual switching

  • Provides multi-tenancy and control over the security policies for the virtual networks 

6. Service Function chaining 

Achievers Network Slicing by providing Chaining logic and APIs for provisioning service chains in the network and end-user application.

7. SDN For NFVI

Provides Network Functions Virtualization Infrastructure along with resilience. It inherits features from ONAP to build a bespoke solution for your telecom grade requirements  

8. On-Demand Customization 

Based on business policies, the dynamic policy-driven, software-controlled service chain customization is achieved.  PDCloudEX Software-Defined Networking (SDN) solution that virtualizes any DC network infrastructure and automatically establishes connectivity between compute resources upon their creation. Leveraging programmable business logic and a powerful policy engine, It is solution meet the needs of massive multi-tenant DCs running Open Stack and Virtualization environments.

9. High Availability  

In case of crashes and failures, data persistence and the High availability of the PDCloudEx SDN controller are ensured without compromising running services and performance.

 The software architecture handles failures gracefully, providing anytime availability for operating, activating, and managing your applications and network configurations.

10. Open Stack OVN Support

PDCloudEX SDN uses OpenStack-OvN is a DevOps tool for automated provisioning of VXLAN-based Overlay vNetworking. It supports following features

  • Automating the Overlay vNetworking Provisioning (i.e., Configuration) of Multi-Region OpenStack Cloud

  • Networking Template-based Provisioning Automation

  • Configuring OVS bridges, Ports, VXLAN Tunnels and OpenFlow flows

  • Automatically detect and adjust some misconfigurations by referring to the Template

  • Sending a Error Report to the Operator if exists

11. Virtualized Controller

The PDCloudExSDN is a scalable SDN controller. It functions as the robust network control plane for datacenters, maintaining a full view of per-tenant network and service topologies using OpenStack, RHEV Virtualization, and Open Source KVM. It provides virtual routing and switching constructs are established to program the network forwarding plane using the OpenFlow™ protocol. Multiple virtual SDN instances can be federated within and across datacenters by leveraging BGP — a proven and highly scalable network technology.

12. Overlay/underlay network correlation

PDCloudEX SDN supports ML2 framework simplifies support for layer 2 (L2) networking technologies. The framework creates an abstraction layer that separates the management of network types from the mechanisms used to access these networks. We support the drivers for the following network types:

  • SDN supports flat for provider network, VLAN for network segmentation and GRE and VXLAN are overlay networks that encapsulate network traffic.

  • SDN exclusively uses the OVN Geneve (Generic Network Virtualization Encapsulation) tunnel overlay network.

  • Visibility in the SDN (overlay) network domains to improve root-cause and impact analysis troubleshooting.

  • The administrator can track the issue and diagnose the problem to the specific area of the IP fabric. For intermittent network connectivity and also provide audit capabilities to isolate the root cause.

13. Mobility with the Network Stability

Migrating an instance means moving a virtual machine from one compute node to the other compute node.

  • Manage the migration of live instances without making changes to the network setting of the VM

  • Customize advanced VM instances as applications: customize on deploy, create scalable stacks.

  • Migrate an instance, disable and enable compute nodes, and evacuate a compute node.

  • In the live migration, the instance continues to run while being migrated to another compute node.

  • Live migration fits well for the workloads that require the least possible to zero downtime.

14. High-performance network policies management

PDCloudExSDN uses OVN, hence the Openstack director deployment uses Geneve encapsulation, and not VXLAN. To increase the performance. This is Implemented using OpenFlow and hence the SDN controller starts replacing the job of the Neutron L3 agent. The Flow caching provided a performance boost here and works with OVS-DPDK.

15. Access Control policies management

It is integrated with external Openldap and Keystone-based Identity Service makes use of Role-based Access Control (RBAC). Administrators can grant access to domains and projects by assigning roles to users or groups. A user or group can be assigned roles for any domain and project, even projects outside the domain that contains the user or group. It also supports AAA using Local User authentication.

16. Micro-segmentation

Micro-segmentation - To overcome the traffic is controlled at the "port" level, or to be clearer at the VM level. By default no traffic is allowed east-west, not even instances on the same network. It support OpenStack and provides micro-segmentation functionality by way of Neutron security groups and ACL controls. 

17. New Features

  • Uses SSL for all public endpoints.

  • OVSDB clustering - active/active HA (Currently support active/passive HA with standby replicas)

  • ACL logging performance improvements

  • More control plane performance testing and enhancements

  • OVN tunnel encryption

  • Port mirroring

Key Benefits  



 

 

Scalability 

Ability to ramp up/ramp down SDN Controllers; thus efficiently managing and distributing work-loads.

 

 

Cost

Automated virtual network resource provisioning, configuration, and operation of networking and security resources minimize manual intervention while improving operational efficiency and cutting operational costs. 



Secure

Provides security and isolation by decoupling control and forward planes and enabling the AAA services 

 

 

Flexibility 

 

Solution for cloud and NFV environments to improve business flexibility and enhances security, availability, and performance 

 

 

User Friendly 


Ease of operations and easy to understand UI which improves operational efficiency  



How Is The Platform Built?

 

 

 

 

PDCloudEX SDN Inside Openstack 

 

The PDCloudEX SDN will be installed on the Open Stack by the OOO (TripleO), the API service runs on the Controller role, while the ODL Ovs service runs on Controller and Compute roles. It also integrates with the ML2 core plug-in by providing its own driver called networking-odl. This eliminates the need to use the OVS agent on every node.



 

 

 

PDCloudEX SDN HA on Openstack 

 

PDCloudEX SDN High Availability clustering is a well-tested architecture for both neutrons and the ODL Controller. It scales the number of ODL Api service instances by scaling the number of Controllers to three. This scenario uses network isolation to separate the Management, Provisioning, Internal API, Tenant, Public API, and Floating IPs network traffic. 

 

 

Technical specifications

Requirement

Support

Requirement

Support

Platforms

OpenStack :

  • Supports all major vendor distributions

  • Full ML2 support

  • Newton Monolithic plugin support

  • Neutron project: Plug-in supported for open source OpenStack and all vendor distributions

  • VLAN-aware Virtual Machines

Hypervisors and Container Platforms

  • KVM, Docker, Kubernetes

  • Kubernetes High-Availability support

  • Container Networking Interface (CNI) support on Kubernetes

Routing/Switching Hardware and Software

Device for datacenter networking (e.g. Cisco, HPE, Aruba and others)

Firewalls, Load Balancers, and DNS/DHCP Servers

OpenStack, FWaaS, LBaaS

Linux

Red Hat, Ubuntu, and CentOS

App Integration

Northbound API access through RESTful APIs

Security

  • Secure Microsegmentation

  • Access Control List (ACL) configuration

  • Policy-based L2-L4 firewall

  • Access security

  • Port Mirroring

  • OpenStack integration

  • VLAN Trunking

Network virtualization

  • DC Network Virtualization with L2/3 NVE

  • Support IPv6 overlays

Architecture scalability

Federated SDN control architecture

Analytics engine

Fully extensible engine to any Big-data clusters with real-time analytics support

 

 

 

Deployment Architecture

 

 

Note : The solution deployment is fully customizable based on the customer technology stack.