SDN Journal Authors: Pat Romanski, Patrick Hubbard, Elizabeth White, Sven Olav Lund, Liz McMillan

Related Topics: SDN Journal, Java IoT, Microservices Expo, Containers Expo Blog, @CloudExpo, @BigDataExpo

SDN Journal: Article

What Today’s SDN Is Not Doing for Distributed Enterprises

The SDN industry is still evolving, but when considering virtual networking solutions, think beyond the data center

Today's software-defined networking (SDN) and virtualized networking solutions focus on virtualizing network functionality within the data center and the metropolitan area network (MAN). But for typical enterprises, and those managed and cloud service providers that cater to them, these solutions are not optimized for local area network (LAN) and wide area network (WAN) edge environments within today's highly distributed infrastructures.

Where the Problem Resides
A highly distributed enterprise, such as the 50-site company depicted in the figure below, is composed of multiple inter-connected sites. The user count and device capacity at any of these sites can vary by several orders of magnitude across the enterprise. An edge router connects its site to other sites through off-site WAN services (e.g., dedicated internet or MPLS), typically provided by a separate service provider. The enterprise office (campus, branch) sites contain a preponderance of corporate end users and end devices requiring access to each other and to internet, intranet and extranet resources.

A 50-Site Distributed Enterprise Network

Each site's LAN provides access connectivity to a site's users and devices. The LAN, while a shared resource, is normally implemented through highly available, high-bandwidth layer 2 and layer 3 switches and wireless access points. Bandwidth into and out of the WAN edge is normally much more expensive and, therefore, constrained, requiring resource sharing and prioritization of the services delivered over the edge router. Each of the edge routers depicted in the diagram above is normally managed as an autonomous device, meaning that any other edge router has no awareness of the configuration of service state of every other router.

Today's legacy, hardware-based SDN approach for the distributed enterprises does not address the following requirements:

  • Reduced and predictable maintenance/support costs through centralized network management and automated lifecycle network management processes (hands-free installation, simple GUI, no CLI, no truck rolls)
  • Flexible logical addressing for both local subnetting, routing and locally hosted public servers using integrated DHCP, NAT and port forwarding services
  • Diverse, off-net access per site through multiple routing interfaces to the site's local internet/intranet/extranet connections
  • Inter-site quality of service (QoS) and security/privacy using DSCP marking, priority queuing, rate limiting, secure inter-site tunnels and site-specific VLAN flexibility
  • Secure access to local networks by client and server devices such as printers, laptops, local servers and BYOD via network access control (NAC) and authentication, authorization and accounting (AAA)

The problems that arise from not meeting these requirements boil down to higher costs and a lack of flexibility, agility and control required in today's dynamic distributed networking environments, including:

  • Greater capital expenses in acquiring high-end network devices
  • Higher and unpredictable lifecycle cost to deploy, install, provision and operate these individual, autonomous network devices due to the high labor expense involved in separately administering each edge router
  • Legacy single-purpose networking hardware not supporting any application other than network functions
  • Lengthy vendor hardware development cycles promote vendor lock-in and stifle agile software innovation

Comparative: Legacy Routed Network versus Distributed SDN
The figure below depicts a 50-site SDN deployment and provides a comparison of the Capex and Opex costs between a legacy routed network and an SDN that is optimized for distributed environments. First, the most cost-effective SDN solutions remove the dependency on expensive, special-purpose router hardware. This would mean that all networking functions, including routing, L2/L3 switching, firewall and tunnels, are completely virtualized, allowing them to be hosted on commodity x86 hypervisor-enabled servers at each site. The added benefit to this approach is that the same servers may be used to host other virtualized applications. This approach helps to reduce the upfront hardware Capex by 3:1 and the average power and cooling Opex by 5:1.

Significant Cost Savings from Distributed SDN

The virtual components in this approach are distributed among the various sites. A single virtual controller, with closely coupled virtual routing, firewall and tunneling functions, is hosted on a commodity server at a head-end facility. The data plane component, a virtual switch, is hosted on an inexpensive server at each site, inheriting layer 2/3 forwarding, routing, firewall, and tunneling functions from its parent virtual controller. A web-based lifecycle management application, running on a standard server in the enterprise headquarters, can provide authenticated access through a browser. To simplify management, it is best to have the management UI administer all workflows through an intuitive web-based GUI, rather a command-line interface (CLI).

This distributed SDN scenario realized an Opex savings of 10:1 in installation and provisioning costs and a 4:1 reduction in operations policy and management costs. Over 3 years, the average TCO savings in this environment was 4:1. These savings are realized through multiple efficiencies. All administration can be done through the GUI across the distributed enterprise, and not a CLI, with no need for on-site staff at each branch or more expensive expert support staff at the enterprise headquarters. In addition, more flexible SDN solutions can allow you to use either secure MPLS networks or less expensive end-to-end security with fully-meshed IPsec tunnels between sites.

SDN solutions that provide interoperability with legacy router components through routing protocols (e.g., OSPF/BGP/static/default) are important because they allow you to plan an at-your-pace, site-to-site infrastructure migration schedule. Also, SDN solutions to support this type of environment should have a full range of these automated features: policy-based end-to-end QoS, priority queuing, rate limiting, edge routing, and LAN features (including network address translation, port forwarding, and network access control).

Benefits to MSPs and CSPs Who Serve Enterprise Networks
MSPs and CSPs serving the managed networking needs of enterprise customers can exploit the same distributed SDN advantages through more efficient managed networking practices. These service providers can host virtual components in their own data center, terminating internet service in the data center and thereby more closely coupling managed internet service with the MSP/CSP's hosted cloud services. There's a consequent opportunity for more immediate integration of service provider data center-based services (e.g., secure hosted DNS services, SP-based SaaS service, private/public/hybrid cloud hosting services), plus there are parallel opportunities to increase service margins and average revenue per user/subscriber by replacing existing edge services with an underlying technology that is much less expensive to purchase and operate.

The immediate benefits of a distributed SDN over a legacy routed network are substantial and compelling. In this scenario, they included a Capex savings of 3:1 and an average Opex savings of 5:1. The long-term benefits of the distributed SDN approach are equally compelling with a three-year TCO averaging a 4:1 savings over legacy edge network solutions. Longer-term benefits can also include network deployment agility, enhanced network service visibility and automated, policy-controlled network recovery on service degradation.

The SDN industry is still evolving, but when considering virtual networking solutions, think beyond the data center - weigh both the short- and long-term costs and benefits behind deploying SDN in a real-world distributed enterprise environment.

More Stories By Dave Corley

Dave Corley is the Director of Product Management at Netsocket, provider of virtualized, software-defined networking.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.

@CloudExpo Stories
The dynamic nature of the cloud means that change is a constant when it comes to modern cloud-based infrastructure. Delivering modern applications to end users, therefore, is a constantly shifting challenge. Delivery automation helps IT Ops teams ensure that apps are providing an optimal end user experience over hybrid-cloud and multi-cloud environments, no matter what the current state of the infrastructure is. To employ a delivery automation strategy that reflects your business rules, making r...
Most technology leaders, contemporary and from the hardware era, are reshaping their businesses to do software. They hope to capture value from emerging technologies such as IoT, SDN, and AI. Ultimately, irrespective of the vertical, it is about deriving value from independent software applications participating in an ecosystem as one comprehensive solution. In his session at @ThingsExpo, Kausik Sridhar, founder and CTO of Pulzze Systems, will discuss how given the magnitude of today's applicati...
Smart cities have the potential to change our lives at so many levels for citizens: less pollution, reduced parking obstacles, better health, education and more energy savings. Real-time data streaming and the Internet of Things (IoT) possess the power to turn this vision into a reality. However, most organizations today are building their data infrastructure to focus solely on addressing immediate business needs vs. a platform capable of quickly adapting emerging technologies to address future ...
Amazon is pursuing new markets and disrupting industries at an incredible pace. Almost every industry seems to be in its crosshairs. Companies and industries that once thought they were safe are now worried about being “Amazoned.”. The new watch word should be “Be afraid. Be very afraid.” In his session 21st Cloud Expo, Chris Kocher, a co-founder of Grey Heron, will address questions such as: What new areas is Amazon disrupting? How are they doing this? Where are they likely to go? What are th...
SYS-CON Events announced today that NetApp has been named “Bronze Sponsor” of SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. NetApp is the data authority for hybrid cloud. NetApp provides a full range of hybrid cloud data services that simplify management of applications and data across cloud and on-premises environments to accelerate digital transformation. Together with their partners, NetApp emp...
SYS-CON Events announced today that SkyScale will exhibit at SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. SkyScale is a world-class provider of cloud-based, ultra-fast multi-GPU hardware platforms for lease to customers desiring the fastest performance available as a service anywhere in the world. SkyScale builds, configures, and manages dedicated systems strategically located in maximum-security...
Join IBM November 1 at 21st Cloud Expo at the Santa Clara Convention Center in Santa Clara, CA, and learn how IBM Watson can bring cognitive services and AI to intelligent, unmanned systems. Cognitive analysis impacts today’s systems with unparalleled ability that were previously available only to manned, back-end operations. Thanks to cloud processing, IBM Watson can bring cognitive services and AI to intelligent, unmanned systems. Imagine a robot vacuum that becomes your personal assistant th...
In his general session at 21st Cloud Expo, Greg Dumas, Calligo’s Vice President and G.M. of US operations, will go over the new Global Data Protection Regulation and how Calligo can help business stay compliant in digitally globalized world. Greg Dumas is Calligo's Vice President and G.M. of US operations. Calligo is an established service provider that provides an innovative platform for trusted cloud solutions. Calligo’s customers are typically most concerned about GDPR compliance, applicatio...
Enterprises are adopting Kubernetes to accelerate the development and the delivery of cloud-native applications. However, sharing a Kubernetes cluster between members of the same team can be challenging. And, sharing clusters across multiple teams is even harder. Kubernetes offers several constructs to help implement segmentation and isolation. However, these primitives can be complex to understand and apply. As a result, it’s becoming common for enterprises to end up with several clusters. Thi...
Microsoft Azure Container Services can be used for container deployment in a variety of ways including support for Orchestrators like Kubernetes, Docker Swarm and Mesos. However, the abstraction for app development that support application self-healing, scaling and so on may not be at the right level. Helm and Draft makes this a lot easier. In this primarily demo-driven session at @DevOpsSummit at 21st Cloud Expo, Raghavan "Rags" Srinivas, a Cloud Solutions Architect/Evangelist at Microsoft, wi...
Containers are rapidly finding their way into enterprise data centers, but change is difficult. How do enterprises transform their architecture with technologies like containers without losing the reliable components of their current solutions? In his session at @DevOpsSummit at 21st Cloud Expo, Tony Campbell, Director, Educational Services at CoreOS, will explore the challenges organizations are facing today as they move to containers and go over how Kubernetes applications can deploy with lega...
SYS-CON Events announced today that Avere Systems, a leading provider of hybrid cloud enablement solutions, will exhibit at SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Avere Systems was created by file systems experts determined to reinvent storage by changing the way enterprises thought about and bought storage resources. With decades of experience behind the company’s founders, Avere got its ...
SYS-CON Events announced today that Taica will exhibit at the Japan External Trade Organization (JETRO) Pavilion at SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. ANSeeN are the measurement electronics maker for X-ray and Gamma-ray and Neutron measurement equipment such as spectrometers, pulse shape analyzer, and CdTe-FPD. For more information, visit http://anseen.com/.
Today most companies are adopting or evaluating container technology - Docker in particular - to speed up application deployment, drive down cost, ease management and make application delivery more flexible overall. As with most new architectures, this dream takes significant work to become a reality. Even when you do get your application componentized enough and packaged properly, there are still challenges for DevOps teams to making the shift to continuous delivery and achieving that reducti...
As you move to the cloud, your network should be efficient, secure, and easy to manage. An enterprise adopting a hybrid or public cloud needs systems and tools that provide: Agility: ability to deliver applications and services faster, even in complex hybrid environments Easier manageability: enable reliable connectivity with complete oversight as the data center network evolves Greater efficiency: eliminate wasted effort while reducing errors and optimize asset utilization Security: imple...
High-velocity engineering teams are applying not only continuous delivery processes, but also lessons in experimentation from established leaders like Amazon, Netflix, and Facebook. These companies have made experimentation a foundation for their release processes, allowing them to try out major feature releases and redesigns within smaller groups before making them broadly available. In his session at 21st Cloud Expo, Brian Lucas, Senior Staff Engineer at Optimizely, will discuss how by using...
In this strange new world where more and more power is drawn from business technology, companies are effectively straddling two paths on the road to innovation and transformation into digital enterprises. The first path is the heritage trail – with “legacy” technology forming the background. Here, extant technologies are transformed by core IT teams to provide more API-driven approaches. Legacy systems can restrict companies that are transitioning into digital enterprises. To truly become a lead...
SYS-CON Events announced today that Yuasa System will exhibit at the Japan External Trade Organization (JETRO) Pavilion at SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Yuasa System is introducing a multi-purpose endurance testing system for flexible displays, OLED devices, flexible substrates, flat cables, and films in smartphones, wearables, automobiles, and healthcare.
With major technology companies and startups seriously embracing Cloud strategies, now is the perfect time to attend 21st Cloud Expo October 31 - November 2, 2017, at the Santa Clara Convention Center, CA, and June 12-14, 2018, at the Javits Center in New York City, NY, and learn what is going on, contribute to the discussions, and ensure that your enterprise is on the right path to Digital Transformation.
SYS-CON Events announced today that CAST Software will exhibit at SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 - Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. CAST was founded more than 25 years ago to make the invisible visible. Built around the idea that even the best analytics on the market still leave blind spots for technical teams looking to deliver better software and prevent outages, CAST provides the software intelligence that matter ...