M.Tech (Research) Thesis Defense (Online): A Hierarchical Control Plane Framework for Integrated SDN-SFC Management in Multi-tenant Cloud Datacenters

22 Apr 20    Yogesh Simmhan


M.Tech (Research)  Thesis Defense (Online)

Speaker          : Lakshmi B S

S.R. Number  : 06-02-02-10-22-17-1-14944

Title                : A Hierarchical Control Plane Framework for Integrated SDN-SFC Management in Multi-tenant Cloud Datacenters

Date & Time  : 27 April 2020 (Monday), 11:00 AM 

Venue              : Online in Microsoft Teams



Cloud data centers represent one of the most complex and dynamic environments in terms of network management. Applications, often belonging to different tenants, have different needs in terms of performance, isolation, security, and traffic optimization based on which, incoming and outgoing traffic is serviced. Traditionally, cloud service providers satisfy these requirements by means of purpose-built specialized hardware equipment providing network services called middleboxes. End-to-end delivery of services is realized by physically connecting the middleboxes in the required sequence (called Service Function Chains) and steering traffic through them. However, the lack of extensibility and scalability of these closed systems hinders dynamic provisioning of services, and leads to network ossification. With the emergence of Network Function Virtualization (NFV) where the middlebox functionality is moved to software (as Service Functions), and Software-Defined Networking (SDN) which enabled programmatic configuration of networks, the provisioning of differentiated services was made easier.

In the first part of this work, we motivate the need for a central control plane that can handle SFC management along with packet forwarding. To effectively manage the SFs through a centralized point of control, the controller must be able to understand the semantics of the higher layers (L4-L7). This means the controller must be aware of the functionality provided by the SFs and be capable of interpreting state information of SFs which involve the higher layer meta-data. This work highlights the need for a cooperative SDN-SFC control plane. We try to understand the challenges involved in realizing such a control plane by implementing an integrated controller based on POX which handles both traffic routing as well as SFC management. Among the challenges, the issue of controller scalability was visible. The impact of this integration on the scalability of the controller is captured by measuring the incoming traffic at the controller. The controller is evaluated over a simulated data center scale network. We present results showing an increase in load at the controller end. A workload characterization at the controller is experimentally derived to analyze the correlation of controller workload with the variability in SFC related components.

In the second part of this work, we try to address the controller scalability issue by redesigning the controller. We propose a hierarchical integrated controller capable of absorbing the increased workload. The controller includes multiple instances of controllers arranged in a two-level hierarchy. The controller separates the control plane functionality across the two tiers and also across the controllers within the same tier such that only control messages required for building the network global view are handled by the higher tiers while those that handle tenant level information are managed by the lower layer instances. This framework organically supports multi-tenancy by providing the required tenant isolation through dedicated sub-controller instances. The controller also allows intelligent reuse of SFs and SFCs across tenants with consideration to the tenant isolation requirements. We evaluate our framework by comparing the load at the proposed controller, with that of centralized and distributed implementations of the integrated controller. We quantify and compare the packet loss metrics and the flow setup latencies of the different controllers by subjecting them to the same infrastructure and application deployment setup on a simulated network. Results show that the workload at each controller instance of the proposed controller is lower than its centralized and distributed counter-parts. Also, the percentage packet loss of the proposed controller is reduced by 20% and 10% in comparison to the centralized and distributed controllers. The observed flow setup latencies also indicate that the proposed hierarchical architecture performs better than the other two controller architectures in large multi-tenant networks. Finally, we characterize the workload at the proposed controller architecture and compare it with the characterization derived from the centralized controller.