SFCPerf: An automatic performance evaluation framework for service function chaining

Network Function Virtualization allows the provi-sioning and composition of on-demand network function chains tailored to an application or a service. Repeatable compliance tests and performance comparison of network functions and the whole function chains are required for virtual network function manufacturers and telecommunication operators. In this paper, we propose and develop SFCPerf, a framework for an automatic performance evaluation of service function chaining. SFCPerf describes all experimental configuration as a single workflow and provides automatic: (i) environment creation and setup; (ii) network configuration; (iii) experimental data measurement; (iv) experiment execution and control; and (v) data preliminary analysis. Our framework provides repeatability for experimenting different network functions and virtualization infrastructures. To demonstrate SFCPerf functionality, we design and implement a prototype of a service function chain that complies with the Network Service Header (NSH). We show the results of an SFCPerf experiment that evaluates the performance of our prototype, composed of an intrusion detection system (IDS) and a firewall, running on top of the open platform for network function virtualization (OPNFV).

[1]  Carlos Pignataro,et al.  Service Function Chaining (SFC) Architecture , 2015, RFC.

[2]  Mathieu Bouet,et al.  Attacks against Network Functions Virtualization and Software-Defined Networking: State-of-the-art , 2016, 2016 IEEE NetSoft Conference and Workshops (NetSoft).

[3]  Nathan Marz,et al.  Big Data: Principles and best practices of scalable realtime data systems , 2015 .

[4]  Wim Henderickx,et al.  Network Service Header , 2015 .

[5]  Chen Sun,et al.  NFP: Enabling Network Function Parallelism in NFV , 2017, SIGCOMM.

[6]  Roberto Bifulco,et al.  ClickOS and the Art of Network Function Virtualization , 2014, NSDI.

[7]  Wouter Tavernier,et al.  ESCAPE: extensible service chain prototyping environment using mininet, click, NETCONF and POX , 2014, SIGCOMM.

[8]  Franco Callegati,et al.  Performance of Network Virtualization in cloud computing infrastructures: The OpenStack case , 2014, 2014 IEEE 3rd International Conference on Cloud Networking (CloudNet).

[9]  Tarik Taleb,et al.  Service Function Chaining in Next Generation Networks: State of the Art and Research Challenges , 2017, IEEE Communications Magazine.

[10]  F. Risso,et al.  Assessing the Performance of Virtualization Technologies for NFV: A Preliminary Benchmarking , 2015, 2015 Fourth European Workshop on Software Defined Networks.

[11]  Daniel Raumer,et al.  Performance characteristics of virtual switching , 2014, 2014 IEEE 3rd International Conference on Cloud Networking (CloudNet).

[12]  Ahmed Meddahi,et al.  SecMANO: Towards Network Functions Virtualization (NFV) Based Security MANagement and Orchestration , 2016, 2016 IEEE Trustcom/BigDataSE/ISPA.

[13]  Otto Carlos Muniz Bandeira Duarte,et al.  Collecting and characterizing a real broadband access network traffic dataset , 2017, 2017 1st Cyber Security in Networking Conference (CSNet).

[14]  Scott Shenker,et al.  NetBricks: Taking the V out of NFV , 2016, OSDI.

[15]  Minlan Yu,et al.  FlowTags: enforcing network-wide policies in the presence of dynamic middlebox actions , 2013, HotSDN '13.

[16]  Filip De Turck,et al.  Network Function Virtualization: State-of-the-Art and Research Challenges , 2015, IEEE Communications Surveys & Tutorials.

[17]  Roberto Riggio,et al.  Scylla: A language for virtual network functions orchestration in enterprise WLANs , 2016, NOMS 2016 - 2016 IEEE/IFIP Network Operations and Management Symposium.

[18]  Lisandro Zambenedetti Granville,et al.  ATLANTIC: A framework for anomaly traffic detection, classification, and mitigation in SDN , 2016, NOMS.

[19]  Otto Carlos Muniz Bandeira Duarte,et al.  Evaluating allocation heuristics for an efficient virtual Network Function chaining , 2016, 2016 7th International Conference on the Network of the Future (NOF).

[20]  Franco Callegati,et al.  Dynamic chaining of Virtual Network Functions in cloud-based edge networks , 2015, Proceedings of the 2015 1st IEEE Conference on Network Softwarization (NetSoft).

[21]  Terry V. Benzel,et al.  The DETER project: Advancing the science of cyber security experimentation and test , 2010, 2010 IEEE International Conference on Technologies for Homeland Security (HST).

[22]  Pamela Zave,et al.  Dynamic Service Chaining with Dysco , 2017, SIGCOMM.

[23]  Otto Carlos Muniz Bandeira Duarte,et al.  A cooperation-aware virtual network function for proactive detection of distributed port scanning , 2017, 2017 1st Cyber Security in Networking Conference (CSNet).

[24]  Danny Raz,et al.  The actual cost of software switching for NFV chaining , 2017, 2017 IFIP/IEEE Symposium on Integrated Network and Service Management (IM).

[25]  Meral Shirazipour,et al.  StEERING: A software-defined networking for inline service chaining , 2013, 2013 21st IEEE International Conference on Network Protocols (ICNP).