SOFTWARE DEFINED

NETWORKING(SDN)

PRESENTED BY
RUKESH K
2023614034
Traditional Routing
Internet Service Provider

Router
2 -

Router Router
1 3

Each Router Consist of Data and Control Plane. Data Plane is used to
forward the packets and control plane is used for decision making. In every
Router it will choose the path and decision making.
Traditional Network
Software Defined Networking(SDN)
• In SDN there is only one Centralised administrator or control plane.All
communications based on control plane.
• SDN can improve data flows, minimize network bandwidth, and boost
latency. It can also improve network agility and flexibility.
• SDN separates a single physical network into multiple virtual networks
that share the same network infrastructure.
• This logical separation splits networks into customizable slices, enabling
operators to deliver services based on each customer's needs.
Networking module:
• Data plane(I/O module ):responsible for forwarding of network traffic
and moving packets from one network device to another based on the
instruction provided by control plane.
• Control plane (brain of the module):responsible for making decision
about how traffic should be routed and managed.
• Management plane(monitor all devices):network monitering, bandwidth
utilization, customer billing.
Seperation of control and data layer
• In SDN ,command and controll are given by the controller(central
node)
• The centalized controller decides traffic routing and data
plane(forwarding plane) is used to forward the packets from payload
to destination-DECOUPLING
• SDN provides central view of efficient resource allocation and
keeping end to end eye on network

Features of SDN
• Makes networking & IP routing flexible
• Decoupling control &data plane
• Offloads brain to centralized controller
• Programmable network,centrally managed
 Frame work of SDN
• SDN architecture typically comprises three layers: the application layer,
the control layer, and the infrastructure layer.
• These layers communicate using northbound and southbound application
programming interfaces (APIS).
• Open flow protocol is key to entire SDN topology
 Frame work of SDN
• Southbound APIs (Application Programming Interfaces):Interfaces between the SDN
controller and network devices (routers, switches, etc.).
• Allows the controller to communicate and manage these devices, typically using protocols like
OpenFlow
• Infrastructure Layer:
– Data Plane (Forwarding Devices):
• Physical or virtual network devices (switches, routers, etc.) that forward traffic based
on instructions received from the SDN controller.
• These devices follow the rules and policies set by the controller.
• Northbound APIs:
– Interfaces between the SDN controller and the applications or systems in the application
layer.
– Allows SDN applications to communicate with the controller, enabling network
programmability and automation.
Control layer
• Centralized brain of the SDN architecture responsible for making decisions
about how data should flow through the network.
• Receives information from applications and translates it into network
policies.
• Enforces policies by instructing the data plane devices.

Application layer
• These are the software applications or services that utilize the SDN
controller's capabilities to manage the network. Examples include traffic
engineering, security applications, network monitoring, etc.
SDN OPERATION
SDN OPEARATION
• In this scenario, an SDN Controller (SDNC) is in charge of operating three
different OpenFlow Switches.
• Connected to OpenFlow Switch no. 1 are two information generators.
Generator A generates ‘production grade’ information (i.e. regular traffic)
whose destination is Consumer A, whereas Generator B is used for testing
a new protocol.
• In this example, when traffic from Generator B reaches Switch no. 1, the
Controller is contacted using the OpenFlow protocol.
• The controller, through preconfigured knowledge of the network topology,
is able to determine that the final destination for that kind of traffic should
be Consumer B, instead of Consumer A.
• The SDNC takes charge by sending a series of commands using
OpenFlow.
• For Switch no. 1,The controller configures the switch via software to add a
virtual tag to all packets with origin at Generator B.
• For Switch no. 2, it instructs the switch to forward any packet with this
special tag arriving at port 12 to port 8, instead of the usual port 6.
SDN control for authentication
traffic redirection
• Here openflow is used to capture or inject 802.1X authentication messages
• Allowing the controller to act as a 802.1X authenticator and radius client,
in a user‐specific way.
• 802.1X – NETWORK AUTHENTICATION PROTOCOL

Request

Remote Authentication Dial-In

User Service(Radius) Server
Network function virtualization(NVF)
• Network Function Virtualization (NFV) refers to the virtualization of
network services traditionally performed by dedicated hardware
appliances. It aims to replace these specialized physical devices with
software-based virtual instances running on standard hardware
infrastructure.
• NFV decouples network functions, such as firewalls, routers, load
balancers, and intrusion detection systems, from proprietary hardware.
Instead, these functions are implemented as software-based Network
Functions Virtual(NFV) that can run on general-purpose servers, switches,
or storage devices.
Network Function Virtualization
Network Function Virtualization
Physical resources layer:
• The operator leverages its underlying networking, processing and memory
resources
• In this layer, these resources appear as just raw aggregates of computational and
networking elements
• By using reservation interfaces, these resources can be requested, via a
virtualisation execution environment, and reserved onto the hardware
Virtual substrate layer:
• Able to employ a logic ordering on different hardware resources, made
available by the physical resources layer
Network Function Virtualization
• In this way, such resources can be logically aggregated into one or several
virtual machines (i.E. Composing a virtual type of computational element
where functions can be stored and operated) as well as virtual networks (i.E.
Providing the necessary structured connectivity for the virtualised machines,
taking into consideration different routing and business policies).
Virtualised function layer:
• Virtualised resources further provides a virtualisation interface, allowing
different virtualised functions to be deployed.
• As such, the core hardware provided by the operator can be virtualised into a
logical structure, both in terms of network and processing, into which different
services and functions can be virtualised.
THANK YOU