Welcome!

SDN Journal Authors: Liz McMillan, Yeshim Deniz, Elizabeth White, Pat Romanski, TJ Randall

Related Topics: SDN Journal

SDN Journal: Blog Post

Software Defined Networking | Part 4 By @MJannery | @CloudExpo [#SDN #Cloud]

Now, Never, Don’t Know? A 10-Part Series (part 4)

In part 3 of our SDN series, I covered virtual versus physical infrastructure.  This next segment will cover the three most commonly propounded benefits of SDN: efficiency, agility and security.

Efficiency

Early, hyper-scale pioneers of SDN such as Google astounded the networking community with the increased network utilization they achieved using SDN.  The industry norm for WAN link utilization is between 30% and 50%, whereas, by deploying SDN, Google drove utilization up to 95% (without impacting critical flows, losing traffic, etc.).  This is primarily due to SDN's holistic view of the network and deeper understanding of inter-application requirements allowing SDN controllers to perform far smarter traffic engineering, route determination and load balancing than traditional QoS implementations.  Using techniques such as sub-optimal routing for less time-critical traffic allows more circuitous routes to be employed to better utilize less desirable links thus reducing congestion on faster, more expensive links for time critical traffic.

Another emerging feature of SDN controllers is the ability to pre-compute failover paths for critical flows especially over particularly vulnerable or unreliable links.

Agility

Within the datacenter SDN can massively help with automation of network reconfiguration and enhance virtualization agility.  By having a complete view of the datacenter: virtual machines, virtual switches, load balancing services / appliances and the underpinning physical network infrastructure combined with the virtual machine to service and security policy mappings, the SDN controller can reconfigure the SDN to allow seamless migration of virtual machines around the network ensuring that security constraints are maintained, service chains (i.e., the linkages between VMs to network services such as load balancers, firewalls, IDS, etc.) are preserved.

Within the broader campus, SDN can provide similar advantages for network device mobility combining wireless and wired network management, ensuring dynamic QoS compliance, traffic engineering, resource limiting and security (e.g., RBAC).

Throughout the SDN estate the ability to dynamically restructure service chains provides yet greater flexibility.  The ability to dynamic insert a virtual load-balancer or a firewall, for example, into a service chain without needing to rack a new unit and re-cable is a powerful feature of SDN.  Such service chain modification using NFV is an integral part of increasing network agility (and therefore business service agility).

Security

SDN can improve network security by providing basic (typically layer 2-4) packet filtering at network ingress and throughout the network thus reducing the amount of undesirable traffic entering and traversing the network.  Similarly with the ability to dynamically modify service chains and network connectivity it is easier to insert a physical or virtual firewall / IDS / IPS into a network path or orchestrate packet captures and flow analyses.  With more dynamic (and therefore more up to date) security policies and RBAC there will be less scope for security and resource allocation loopholes to occur.

More Stories By Michael Jannery

Michael Jannery is CEO of Entuity. He is responsible for setting the overall corporate strategy, vision, and direction for the company. He brings more than 30 years of experience to Entuity with 25 years in executive management.

Prior to Entuity, he was Vice President of Marketing for Proficiency, where he established the company as the thought, technology, and market leader in a new product lifecycle management (PLM) sub-market. Earlier, Michael held VP of Marketing positions at Gradient Technologies, where he established them as a market leader in the Internet security sector, and Cayenne Software, a leader in the software and database modeling market. He began his career in engineering.

CloudEXPO Stories
Daniel Jones is CTO of EngineerBetter, helping enterprises deliver value faster. Previously he was an IT consultant, indie video games developer, head of web development in the finance sector, and an award-winning martial artist. Continuous Delivery makes it possible to exploit findings of cognitive psychology and neuroscience to increase the productivity and happiness of our teams.
Atmosera delivers modern cloud services that maximize the advantages of cloud-based infrastructures. Offering private, hybrid, and public cloud solutions, Atmosera works closely with customers to engineer, deploy, and operate cloud architectures with advanced services that deliver strategic business outcomes. Atmosera's expertise simplifies the process of cloud transformation and our 20+ years of experience managing complex IT environments provides our customers with the confidence and trust that they are being taken care of.
Your job is mostly boring. Many of the IT operations tasks you perform on a day-to-day basis are repetitive and dull. Utilizing automation can improve your work life, automating away the drudgery and embracing the passion for technology that got you started in the first place. In this presentation, I'll talk about what automation is, and how to approach implementing it in the context of IT Operations. Ned will discuss keys to success in the long term and include practical real-world examples. Get started on automating your way to a brighter future!
Serveless Architectures brings the ability to independently scale, deploy and heal based on workloads and move away from monolithic designs. From the front-end, middle-ware and back-end layers, serverless workloads potentially have a larger security risk surface due to the many moving pieces. This talk will focus on key areas to consider for securing end to end, from dev to prod. We will discuss patterns for end to end TLS, session management, scaling to absorb attacks and mitigation techniques.
Crosscode Panoptics Automated Enterprise Architecture Software. Application Discovery and Dependency Mapping. Automatically generate a powerful enterprise-wide map of your organization's IT assets down to the code level. Enterprise Impact Assessment. Automatically analyze the impact, to every asset in the enterprise down to the code level. Automated IT Governance Software. Create rules and alerts based on code level insights, including security issues, to automate governance. Enterprise Audit Trail. Auditors can independently identify all changes made to the environment.