Container-based network function virtualization for software-defined networks

Today's enterprise networks almost ubiquitously deploy middlebox services to improve in-network security and performance. Although virtualization of middleboxes attracts a significant attention, studies show that such implementations are still proprietary and deployed in a static manner at the boundaries of organisations, hindering open innovation. In this paper, we present an open framework to create, deploy and manage virtual network functions (NF)s in OpenFlow-enabled networks. We exploit container-based NFs to achieve low performance overhead, fast deployment and high reusability missing from today's NFV deployments. Through an SDN northbound API, NFs can be instantiated, traffic can be steered through the desired policy chain and applications can raise notifications. We demonstrate the systems operation through the development of exemplar NFs from common Operating System utility binaries, and we show that container-based NFV improves function instantiation time by up to 68% over existing hypervisor-based alternatives, and scales to one hundred co-located NFs while incurring sub-millisecond latency.

[1]  Yusuke Okazaki,et al.  Network Functions Virtualisation ― Toward a Robust and Elastic Network ― , 2016 .

[2]  Ion Stoica,et al.  A policy-aware switching layer for data centers , 2008, SIGCOMM '08.

[3]  David A. Maltz,et al.  Data center TCP (DCTCP) , 2010, SIGCOMM 2010.

[4]  Fung Po Tso,et al.  Baatdaat: Measurement-based flow scheduling for cloud data centers , 2013, 2013 IEEE Symposium on Computers and Communications (ISCC).

[5]  Vyas Sekar,et al.  Making middleboxes someone else's problem: network processing as a cloud service , 2012, SIGCOMM '12.

[6]  Nick McKeown,et al.  OpenFlow: enabling innovation in campus networks , 2008, CCRV.

[7]  Jorge Carapinha,et al.  Network Virtualization - Opportunities and Challenges for Operators , 2010, FIS.

[8]  Paul Harvey,et al.  Wireless sensor network simulation with Xen , 2013, SpringSim.

[9]  Larry L. Peterson,et al.  Container-based operating system virtualization: a scalable, high-performance alternative to hypervisors , 2007, EuroSys '07.

[10]  Lisandro Zambenedetti Granville,et al.  Management requirements for ClickOS-based Network Function Virtualization , 2014, 10th International Conference on Network and Service Management (CNSM) and Workshop.

[11]  Susana Sargento,et al.  Cloud4NFV: A platform for Virtual Network Functions , 2014, 2014 IEEE 3rd International Conference on Cloud Networking (CloudNet).

[12]  Alan L. Cox,et al.  PAST: scalable ethernet for data centers , 2012, CoNEXT '12.

[13]  Daniel W. King,et al.  A critical survey of Network Functions Virtualization (NFV) , 2013 .

[14]  Roberto Bifulco,et al.  ClickOS and the Art of Network Function Virtualization , 2014, NSDI.

[15]  Eric Torng,et al.  TCAM Razor: a systematic approach towards minimizing packet classifiers in TCAMs , 2010, TNET.

[16]  Sylvia Ratnasamy,et al.  A Survey of Enterprise Middlebox Deployments , 2012 .