Welcome!

SDN Journal Authors: Liz McMillan, Yeshim Deniz, Elizabeth White, Pat Romanski, TJ Randall

Related Topics: @CloudExpo, Java IoT, Mobile IoT, Linux Containers, Containers Expo Blog, SDN Journal, @ThingsExpo

@CloudExpo: Article

The Future of Network Appliances | @CloudExpo #Cloud #NFV #IoT #SDN

How to make Network Functions Virtualization work effectively so it will deliver on its promise

We live in a hyper-connected, mobility-enabled world, one in which carriers must make drastic changes to how they do business if they are to survive and thrive in the future. Accordingly, great strides have been made over the last three years to prove the viability of Network Functions Virtualization (NFV). Many Proof of Concept (PoC) trials have proven that workloads can be migrated to virtual environments running on standard hardware, and there are even examples of carrier deployments using NFV.

The next step is to determine how to make NFV work effectively so it will deliver on its promise. The issue is no longer whether a service can be deployed using NFV, but whether we can manage and secure that service in an NFV environment. In other words, the challenge now is to operationalize NFV. How can we ensure that NFV is ready for this challenge?

Network appliances are needed to manage and secure services - specifically, appliances that can monitor and analyze network behavior. A recent survey by Heavy Reading on behalf of Napatech called "The Future of Network Appliances" provides insight into how network appliances are being used today, progress on migrating network appliances to virtual environments and insight into the challenges that need to be addressed to ensure the success of this migration.

The survey found that 47 percent of respondents considered network appliances for network management and security to be essential, while a further 39 percent considered them valuable, reflecting a broad appreciation for the operational value of appliances. Survey responses also show that network management and security appliances are broadly deployed, especially for applications like network and application performance monitoring, test and measurement as well as firewalls, intrusion detection and prevention, and data loss prevention.

Despite these findings, the survey also revealed that progress is being made in migrating network appliances to virtual environments, especially for the most widely deployed applications. Seventy-three percent of carriers indicated that they intend to deploy virtualized appliances over the next two years. Network equipment vendors are responding, with 71 percent indicating that they intend to deliver virtualized appliances in the same time frame.

Challenges remain with regard to delivering and deploying virtualized appliances. The top three challenges that respondents chose were interworking with other vendor solutions (81 percent concerned or extremely concerned), security (79 percent) and throughput (80 percent).

A surprising finding most likely almost presents the greatest challenge: the extensive deployment of 100G network data rates in not just the core but also the metro and, most surprisingly of all, the access network. Survey respondents were asked to indicate the most common planned data rate for the core, metro and access networks in 2018. The responses showed that 75 percent of respondents planned for 100G as their most common data rate in the core and 71 percent planned to use 100G in the metro, while 58 percent planned to use 100G in the access network.

These plans are ambitious and necessary, but they offer the greatest challenge when it comes to virtualizing network appliances over the next three years. The first 100G physical network appliances are just now being introduced to the market. They are based on standard servers, as the majority of physical network appliances are today. However, they rely on high-performance network interface cards capable of providing the throughput required at these data rates.

Even at data rates of "only" 10G, standard Network Interface Cards (NICs) cannot provide the performance required for these kinds of applications. Recent benchmark testing of NFV solutions, which are based on standard NICs, have shown that there are serious performance challenges in using these kinds of products for high-speed applications even when using Data Plane Development Kit (DPDK) acceleration. Solutions based on bypassing hypervisors, such as Single-Root Input/Output Virtualization (SR-IOV), provide some relief, but come at the expense of virtual function mobility and flexibility.

In order for virtualized networks to operate successfully, effective network management and security solutions must be in place. These solutions will need to work at rates of 100G by 2018. This will require ingenuity, hard work and alternative NIC solutions in NFV deployments. Network management and security virtualized applications come up against the same performance issues as other virtual appliances at high data rates.

Network administrators have overcome this barrier in the physical data center; it remains now to apply these solutions to the virtualized environment to create operational NFV at high data rates.

More Stories By Daniel Joseph Barry

Daniel Joseph Barry is VP Positioning and Chief Evangelist at Napatech and has over 20 years experience in the IT and Telecom industry. Prior to joining Napatech in 2009, he was Marketing Director at TPACK, a leading supplier of transport chip solutions to the Telecom sector.

From 2001 to 2005, he was Director of Sales and Business Development at optical component vendor NKT Integration (now Ignis Photonyx) following various positions in product development, business development and product management at Ericsson. He joined Ericsson in 1995 from a position in the R&D department of Jutland Telecom (now TDC). He has an MBA and a BSc degree in Electronic Engineering from Trinity College Dublin.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


CloudEXPO Stories
All in Mobile is a mobile app agency that helps enterprise companies and next generation startups build the future of digital. We offer mobile development and design for smartphones, tablets and wearables. Our projects cover the latest and most innovative technologies - voice assistants, AI, AR/VR and more. We excel at solutions for sports, fintech and retail industries.
NanoVMs is the only production ready unikernel infrastructure solution on the market today. Unikernels prevent server intrusions by isolating applications to one virtual machine with no users, no shells and no way to run other programs on them. Unikernels run faster and are lighter than even docker containers.
The dream is universal: heuristic driven, global business operations without interruption so that nobody has to wake up at 4am to solve a problem. Building upon Nutanix Acropolis software defined storage, virtualization, and networking platform, Mark will demonstrate business lifecycle automation with freedom of choice and consumption models. Hybrid cloud applications and operations are controllable by the Nutanix Prism control plane with Calm automation, which can weave together the following: database as a service with Era, micro segmentation with Flow, event driven lifecycle operations with Epoch monitoring, and both financial and cloud governance with Beam. Combined together, the Nutanix Enterprise Cloud OS democratizes and accelerates every aspect of your business with simplicity, security, and scalability.
CloudEXPO | DevOpsSUMMIT | DXWorldEXPO Silicon Valley 2019 will cover all of these tools, with the most comprehensive program and with 222 rockstar speakers throughout our industry presenting 22 Keynotes and General Sessions, 250 Breakout Sessions along 10 Tracks, as well as our signature Power Panels. Our Expo Floor will bring together the leading global 200 companies throughout the world of Cloud Computing, DevOps, IoT, Smart Cities, FinTech, Digital Transformation, and all they entail. As your enterprise creates a vision and strategy that enables you to create your own unique, long-term success, learning about all the technologies involved is essential. Companies today not only form multi-cloud and hybrid cloud architectures, but create them with built-in cognitive capabilities.
Darktrace is the world's leading AI company for cyber security. Created by mathematicians from the University of Cambridge, Darktrace's Enterprise Immune System is the first non-consumer application of machine learning to work at scale, across all network types, from physical, virtualized, and cloud, through to IoT and industrial control systems. Installed as a self-configuring cyber defense platform, Darktrace continuously learns what is ‘normal' for all devices and users, updating its understanding as the environment changes.