SlideShare uma empresa Scribd logo

6WINDGate™ - Powering the New-Generation of IPsec Gateways

6WIND
6WIND

6WINDGate™ for IPsec Gateways: - High performance IPsec stack to sustain encrypted traffic over several tens of thousands of IPsec tunnels with low-latency - Optimal use of software and hardware crypto-acceleration for best price/performance - High-capacity IKE control plane to manage several tens of thousands of IKE sessions on a single server - High capacity for encapsulation protocols such as VLAN, PPP, L2TP and GRE… - High performance and scalable IPv4 and IPv6 forwarding with virtual routing support for a large number of instances - High performance and capacity firewall and NAT

Tecnologia
1 de 23
v1.0 | ©6WIND 2014. All rights reserved. All brand names, trademarks and copyright information cited in this presentation shall remain the property of its registered owners. SPEED MATTERS
v1.0 | 2©6WIND 2014  Enable open platform ecosystem to replace dedicated hardware with commodity servers and virtualization.  Close the performance gap for Service Providers and Enterprises to upgrade their network architecture. The Promise Of 6WIND Network Architecture Transformation Dedicated Hardware And Software Platform White Box Ecosystem Virtualization Rigid Platform Long Time To Market Open Platform Inexpensive Rapid Services Creation $$$ Expensive $
v1.0 | 3©6WIND 2014  Best in class packet processing technology thanks to 6WIND deep expertise in networking and more than 150 man years of development.  Since the first shipment of its 6WINDGate software in 2007, 6WIND has been selected and deployed by Blue Chip companies to unlock hidden infrastructure performance.  6WIND is an independent software vendor and 6WINDGate is the only heterogeneous networking stack to support major market- leading hardware platforms.  6WIND is privately held and headquartered in France, with offices in Asia and the US. 6WIND Facts
v1.0 | 4©6WIND 2014  Service Providers:  Wireless offload schemes to extend coverage for subscribers expose mobile core networks to security threats and require secure connections  Cloud Providers:  Data Center Virtualization solutions require secure connections across virtual networks  Enterprise Providers:  Network equipment (physical and software appliances) must help secure connections across distributed data centers IPsec Gateways Are a Requirement to Secure IP Communications from Internet Attacks
v1.0 | 5©6WIND 2014  Use of cost-effective hardware and software solutions  Generic hardware platforms with high performance Ethernet NICs  Hardware or software crypto acceleration  Commercial or open source Linux distributions  High performance packet processing software for  Network security features such as IPsec and IKE to sustain high network throughput of encrypted traffic  A large number of protocols such as Layer 2 encapsulation, IPv6, routing, virtual routing, firewall, NAT, QoS… to easily integrate the IPsec gateway into a complete networking infrastructure  Flexible and extensible software architecture  Develop physical IPsec Gateways and prepare the shift to virtualized solutions  Open architecture to reuse in-house or third party application software Requirements for High Performance and Cost-Effective IPsec Gateways
v1.0 | 6©6WIND 2014  Fastest performance on the market; in both physical and virtual environments  Transparent, no change necessary to OS, hypervisor and management  Available across all major platforms  Native support for all major network protocols 6WINDGate on Standard Platforms: Paradigm Shift In Packet Processing Software
v1.0 | 7©6WIND 2014 6WINDGate Removes Performance Bottlenecks Performance (MillionsOfPackets PerSecond) ... Fast Path Cores ... Increase OS stability by offloading resource intensive mundane tasks Standard Linux Becomes Unstable Performance benefits scale with the number of processing cores 1 2 3 8 9 10 ...
v1.0 | 8©6WIND 2014 Networking Stack Control Plane Fast Path Transparent to Operating System ?Local info Local info Fast path packet Continuous synchronization Exception packet Synchronization modules
v1.0 | 9©6WIND 2014 Available for Industry-Leading Processor Platforms ZoL™DPDKSimple ExecNetOS Architecture-independent “Fast Path Modules” • Generic, processor-independent source code • Cycle-level and pipeline-level optimizations Architecture-specific "Fast Path Networking SDK" • Zero-overhead API for fast path modules • Support for processor-specific features and resources • Leverages processor suppliers' SDKs Data Plane Fast Path FPN-SDK FPN-SDK FPN-SDK FPN-SDK
v1.0 | 10©6WIND 2014 Linux Userland Linux Kernel Linux Networking Stack FastPath 6WINDGate IPsec Architecture Multicore Processor Platform FPN-SDK IPsec IPv4/IPv6 Other FP modules Shared memory IPsec SPD IPsec SAD IPsec IPv4/IPv6 statistics IPsec SPD IPsec SAD Linux / fast path synchronization (statistics) Security table updates Netlink notifications IKEv1/v2 Linux / fast path synchronization (configuration) DPDK Cavium NITROX Intel® Multi- Buffer Intel® QuickAssist Crypto Framework 6WIND DPDK Crypto Framework
v1.0 | 11©6WIND 2014  Based on dpdk.org  6WINDGate DPDK add-ons available for increased system functionality, performance and reliability  Poll Mode Drivers for multi-vendor NICs  Mellanox ConnectX-3® EN Series PMD  Emulex OCE14102 PMD  Performance acceleration for virtualized networking  Fast vNIC PMD  VMXNET3 Guest VMware PMD  VIRTIO Guest XEN-KVM PMD  Crypto acceleration modules that leverage  Cavium NITROX SDK 5.x Crypto  Intel® Multi-Buffer Crypto  Intel® QuickAssist Crypto 6WINDGate DPDK Features and Benefits Virtualization acceleration Fast vNIC PMD VMXNET3 Guest VMware PMD VIRTIO Guest XEN- KVM PMD Crypto acceleration Cavium NITROX SDK 5.x Crypto Intel® Multi-Buffer Crypto Intel® QuickAssist Crypto dpdk.org Multi-vendor NIC support Emulex OCE14102 PMD Mellanox ConnectX®- 3 EN Series PMD
v1.0 | 12©6WIND 2014  6WINDGate IPsec performance (AES-128 HMAC-SHA1)  5.24 Gbps per core for 1420B packets  Up to 193.27 Gbps using 40 cores  Performance scales linearly with the number of cores configured to run the fast path Intel Multi-Buffer IPsec Test Results
v1.0 | 13©6WIND 2014  6WINDGate IPsec using Quick Assist performance  3.52 Gbps per engine for 1420B packets  Up to 40 Gbps (platform limit) using 16 engines  Performance scales linearly with the number of engines configured to process IPsec transformation Intel Cave Creek IPsec Test Results
v1.0 | 14©6WIND 2014  6WINDGate IPsec performance using Cavium Nitrox DPDK add-on  Up to 20.23 Gbps for 1420 bytes Cavium Nitrox IPsec Test Results
v1.0 | 15©6WIND 2014  High performance IPsec stack to sustain encrypted traffic over several tens of thousands of IPsec tunnels with low-latency  Optimal use of software and hardware crypto-acceleration for best price/performance  High-capacity IKE control plane to manage several tens of thousands of IKE sessions on a single server  High capacity for encapsulation protocols such as VLAN, PPP, L2TP and GRE…  High performance and scalable IPv4 and IPv6 forwarding with virtual routing support for a large number of instances  High performance and capacity firewall and NAT 6WINDGate for IPsec Gateways
v1.0 | 16©6WIND 2014 Generic Hardware Platform Network Architecture Evolution Proprietary Hardware Platform Application Proprietary Hardware Platform Application Proprietary Hardware Platform Application Application Application Application Virtualization Generic Hardware Platforms Application Application Application
v1.0 | 17©6WIND 2014 6WINDGate Extensions to IPsec Gateway Virtualization NICs DPDK (Intel and multi-vendor NIC drivers) Host Driver OVS Acceleration Additional Features (L3 Routing, Firewall, NAT…) Virtual Switch Fast vNIC PMD Virtio PMD Fast vNIC Linux Virtio Virtio Fast vNIC vIPsec Gateway vRouter Additional VNFs Drivers for Virtual Appliance • Fast vNIC drivers for high performance communications • Standard drivers for existing VAs • Extensible for all OSs Accelerated Virtual Switch • DPDK with multi-vendor NIC support • OVS acceleration • Extended network services • Host driver for high performance communications
v1.0 | 18©6WIND 2014  High performance switching aggregated bandwidth for VNFs without any modification in the virtual switch  Hardware independent VNF network attachments for seamless network hardware upgrades and VNF migration  Low-latency inter-VNF communications  Enhanced features beyond switching (L3 forwarding, virtual routing, firewall, IPsec and more) for extended chaining capabilities  Support for multi-vendor VNFs based on different OSs 6WIND’s Open Networking Platform For NFVI
v1.0 | 19©6WIND 2014 10 x 40 Gbps Full Duplex Traffic Virtual Switch Acceleration Accelerated Open vSwitch Open vSwitch Traffic Generator  No modification is required to OVS, OS, Hypervisor, Management  L2 switching capability on 10 cores using 40G Ethernet  52 Mpps with 64 byte packets  195 Gbps with 1280 byte packets OpenFlow Controller
v1.0 | 20©6WIND 2014 Virtual Network Function Virtual Network Function Virtual Network Function Virtual Switch-Based NFVI Lowest Latency and Flexible Chaining PCI Express Local NIC External Switch Physical Switching Limitations • Hardware dependent switching (SR-IOV, RDMA, NIC embedded switching) • Throughput is limited by PCI Express (50 Gbps) and faces PCI Express and DMA additional latencies • Available PCI slots limit the number of chained VNFs • At 30 Gbps a single VNF is supported per node! Virtual Switching With 6WINDGate • Hardware independent virtual switching (NIC driver) • Aggregate 500 Gbps bandwidth with low latency • No external limit to number of chained VNFs 50 Gbps 500 Gbps 6WINDGate Accelerated OVS
v1.0 | 21©6WIND 2014 FastPath IPv4/IPv6 Forwarding MPLS/VPLS Encapsulation IPv4/IPv6 Multi-cast Filtering IPv4/IPv6 IPsec SVTI VLAN Link Aggregation NAT GRE TCP/UDP Termination Flow Inspection L2TP/ PPPoE BRAS GTP-UVXLAN Tunneling (IPinIP) IPsec IPv4/IPv6 Ethernet Bridging 6WINDGate Module List DistributedArch. Fast path extensions Control plane extensions ControlPlane BFD SMR L2TP, PPPoE BRAS Routing Virtual Routing Security VRRP LACP VPN Monitoring HighAvailability LACP Firewall / NAT Routing ARP / NDP DPDK Fast vNIC PMD VMXNET3 Guest VMware PMD Intel® QuickAssist Crypto VIRTIO Guest XEN-KVM PMD Intel® Multi- Buffer Crypto Cavium NITROX SDK 5.X Crypto Mellanox ConnectX®-3 EN Series PMD FPN-SDK OVS Acceleration Emulex OCE14000 Series PMD QoS Hardware platform independence Modular virtualization extensions Complete protocol portfolio for IPsec gateway Generic software
v1.0 | 22©6WIND 2014 6WIND Enables Cost-Effective IPsec Gateways for Enterprises and Service Providers  6WINDGate Powered IPsec Gateway and Firewall  DPDK on Linux  Hardware offload to Cavium Nitrox for IPsec  Software based appliance on custom hardware for additional performance  Allows use of DPDK on multi-vendor NICs for crypto support  Ready for fully virtual applications Commodity Hardware x86 Processor Hypervisor Virtual IPsec Gateway and Firewall IPsec Gateway and Firewall
v1.0 | 23©6WIND 2014

Recomendados

6WINDGate™ - High Performance Networking for Data Centers
6WINDGate™ - High Performance Networking for Data Centers6WINDGate™ - High Performance Networking for Data Centers
6WINDGate™ - High Performance Networking for Data Centers6WIND
 
6WINDGate™ - Powering the New Generation of Network Appliances
6WINDGate™ - Powering the New Generation of Network Appliances6WINDGate™ - Powering the New Generation of Network Appliances
6WINDGate™ - Powering the New Generation of Network Appliances6WIND
 
6WINDGate™ - Accelerated Data Plane Solution for EPC and vEPC
6WINDGate™ - Accelerated Data Plane Solution for EPC and vEPC6WINDGate™ - Accelerated Data Plane Solution for EPC and vEPC
6WINDGate™ - Accelerated Data Plane Solution for EPC and vEPC6WIND
 
6WIND Corporate Overview
6WIND Corporate Overview6WIND Corporate Overview
6WIND Corporate Overview6WIND
 
6WINDGate™ - Enabling NFV for Telco Architectures
6WINDGate™ - Enabling NFV for Telco Architectures6WINDGate™ - Enabling NFV for Telco Architectures
6WINDGate™ - Enabling NFV for Telco Architectures6WIND
 
Platforms for Accelerating the Software Defined and Virtual Infrastructure
Platforms for Accelerating the Software Defined and Virtual InfrastructurePlatforms for Accelerating the Software Defined and Virtual Infrastructure
Platforms for Accelerating the Software Defined and Virtual Infrastructure6WIND
 
6WIND Virtual Accelerator Performance Test Comparison
6WIND Virtual Accelerator Performance Test Comparison6WIND Virtual Accelerator Performance Test Comparison
6WIND Virtual Accelerator Performance Test Comparison6WIND
 
6WINDGate™ - Enabling Cloud RAN Virtualization
6WINDGate™ - Enabling Cloud RAN Virtualization6WINDGate™ - Enabling Cloud RAN Virtualization
6WINDGate™ - Enabling Cloud RAN Virtualization6WIND
 

Recomendados

6WINDGate™ - High Performance Networking for Data Centers
6WINDGate™ - High Performance Networking for Data Centers6WINDGate™ - High Performance Networking for Data Centers
6WINDGate™ - High Performance Networking for Data Centers6WIND
 
6WINDGate™ - Powering the New Generation of Network Appliances
6WINDGate™ - Powering the New Generation of Network Appliances6WINDGate™ - Powering the New Generation of Network Appliances
6WINDGate™ - Powering the New Generation of Network Appliances6WIND
 
6WINDGate™ - Accelerated Data Plane Solution for EPC and vEPC
6WINDGate™ - Accelerated Data Plane Solution for EPC and vEPC6WINDGate™ - Accelerated Data Plane Solution for EPC and vEPC
6WINDGate™ - Accelerated Data Plane Solution for EPC and vEPC6WIND
 
6WIND Corporate Overview
6WIND Corporate Overview6WIND Corporate Overview
6WIND Corporate Overview6WIND
 
6WINDGate™ - Enabling NFV for Telco Architectures
6WINDGate™ - Enabling NFV for Telco Architectures6WINDGate™ - Enabling NFV for Telco Architectures
6WINDGate™ - Enabling NFV for Telco Architectures6WIND
 
Platforms for Accelerating the Software Defined and Virtual Infrastructure
Platforms for Accelerating the Software Defined and Virtual InfrastructurePlatforms for Accelerating the Software Defined and Virtual Infrastructure
Platforms for Accelerating the Software Defined and Virtual Infrastructure6WIND
 
6WIND Virtual Accelerator Performance Test Comparison
6WIND Virtual Accelerator Performance Test Comparison6WIND Virtual Accelerator Performance Test Comparison
6WIND Virtual Accelerator Performance Test Comparison6WIND
 
6WINDGate™ - Enabling Cloud RAN Virtualization
6WINDGate™ - Enabling Cloud RAN Virtualization6WINDGate™ - Enabling Cloud RAN Virtualization
6WINDGate™ - Enabling Cloud RAN Virtualization6WIND
 
6WIND Virtual Accelerator Product Presentation
6WIND Virtual Accelerator Product Presentation6WIND Virtual Accelerator Product Presentation
6WIND Virtual Accelerator Product Presentation6WIND
 
6WIND - SPEED MATTERS: The Challenge 2014 Contest Winners
6WIND - SPEED MATTERS: The Challenge 2014 Contest Winners6WIND - SPEED MATTERS: The Challenge 2014 Contest Winners
6WIND - SPEED MATTERS: The Challenge 2014 Contest Winners6WIND
 
DPDK IPSec performance benchmark ~ Georgii Tkachuk
DPDK IPSec performance benchmark ~ Georgii TkachukDPDK IPSec performance benchmark ~ Georgii Tkachuk
DPDK IPSec performance benchmark ~ Georgii TkachukIntel
 
LF_DPDK17_Serverless DPDK - How SmartNIC resident DPDK Accelerates Packet Pro...
LF_DPDK17_Serverless DPDK - How SmartNIC resident DPDK Accelerates Packet Pro...LF_DPDK17_Serverless DPDK - How SmartNIC resident DPDK Accelerates Packet Pro...
LF_DPDK17_Serverless DPDK - How SmartNIC resident DPDK Accelerates Packet Pro...LF_DPDK
 
[2015-05월 세미나] Network Bottlenecks Mutiply with NFV Don't Forget Performance ...
[2015-05월 세미나] Network Bottlenecks Mutiply with NFV Don't Forget Performance ...[2015-05월 세미나] Network Bottlenecks Mutiply with NFV Don't Forget Performance ...
[2015-05월 세미나] Network Bottlenecks Mutiply with NFV Don't Forget Performance ...OpenStack Korea Community
 
The Power of SmartNICs
The Power of SmartNICsThe Power of SmartNICs
The Power of SmartNICsNetronome
 
Accelerating SDN Applications with Open Source Network Overlays
Accelerating SDN Applications with Open Source Network OverlaysAccelerating SDN Applications with Open Source Network Overlays
Accelerating SDN Applications with Open Source Network OverlaysCumulus Networks
 
The Need for Complex Analytics from Forwarding Pipelines
The Need for Complex Analytics from Forwarding Pipelines The Need for Complex Analytics from Forwarding Pipelines
The Need for Complex Analytics from Forwarding Pipelines Netronome
 
Banv meetup-contrail
Banv meetup-contrailBanv meetup-contrail
Banv meetup-contrailnvirters
 
MidoNet 101
MidoNet 101MidoNet 101
MidoNet 101alexbikfalvi
 
LF_OVS_17_OVN and Kelda
LF_OVS_17_OVN and KeldaLF_OVS_17_OVN and Kelda
LF_OVS_17_OVN and KeldaLF_OpenvSwitch
 
Cloud Network Virtualization with Juniper Contrail
Cloud Network Virtualization with Juniper ContrailCloud Network Virtualization with Juniper Contrail
Cloud Network Virtualization with Juniper Contrailbuildacloud
 
PLNOG16: Obsługa 100M pps na platformie PC , Przemysław Frasunek, Paweł Mała...
PLNOG16: Obsługa 100M pps na platformie PC , Przemysław Frasunek, Paweł Mała...PLNOG16: Obsługa 100M pps na platformie PC , Przemysław Frasunek, Paweł Mała...
PLNOG16: Obsługa 100M pps na platformie PC , Przemysław Frasunek, Paweł Mała...PROIDEA
 
OpenContrail Silicon Valley Meetup Aug 25 2015
OpenContrail Silicon Valley Meetup Aug 25 2015OpenContrail Silicon Valley Meetup Aug 25 2015
OpenContrail Silicon Valley Meetup Aug 25 2015Scott Sneddon
 
The Juniper SDN Landscape
The Juniper SDN LandscapeThe Juniper SDN Landscape
The Juniper SDN LandscapeChris Jones
 
Contrail Launch: Capitalize on SDN and Cloud. Now.
Contrail Launch: Capitalize on SDN and Cloud. Now.Contrail Launch: Capitalize on SDN and Cloud. Now.
Contrail Launch: Capitalize on SDN and Cloud. Now.Juniper Networks
 
Using SmartNICs to Provide Better Data Center Security - Jack Matheson - 44CO...
Using SmartNICs to Provide Better Data Center Security - Jack Matheson - 44CO...Using SmartNICs to Provide Better Data Center Security - Jack Matheson - 44CO...
Using SmartNICs to Provide Better Data Center Security - Jack Matheson - 44CO...44CON
 
Secure Multi Tenant Cloud with OpenContrail
Secure Multi Tenant Cloud with OpenContrailSecure Multi Tenant Cloud with OpenContrail
Secure Multi Tenant Cloud with OpenContrailPriti Desai
 
PLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDNPLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDNPROIDEA
 
CloudKC: Evolution of Network Virtualization
CloudKC: Evolution of Network VirtualizationCloudKC: Evolution of Network Virtualization
CloudKC: Evolution of Network VirtualizationCynthia Thomas
 
DPDK IPSec Security Gateway Application
DPDK IPSec Security Gateway ApplicationDPDK IPSec Security Gateway Application
DPDK IPSec Security Gateway ApplicationMichelle Holley
 
Protocole IKE/IPsec
Protocole IKE/IPsecProtocole IKE/IPsec
Protocole IKE/IPsecThomas Moegli
 

Mais conteúdo relacionado

Mais procurados

6WIND Virtual Accelerator Product Presentation
6WIND Virtual Accelerator Product Presentation6WIND Virtual Accelerator Product Presentation
6WIND Virtual Accelerator Product Presentation6WIND
 
6WIND - SPEED MATTERS: The Challenge 2014 Contest Winners
6WIND - SPEED MATTERS: The Challenge 2014 Contest Winners6WIND - SPEED MATTERS: The Challenge 2014 Contest Winners
6WIND - SPEED MATTERS: The Challenge 2014 Contest Winners6WIND
 
DPDK IPSec performance benchmark ~ Georgii Tkachuk
DPDK IPSec performance benchmark ~ Georgii TkachukDPDK IPSec performance benchmark ~ Georgii Tkachuk
DPDK IPSec performance benchmark ~ Georgii TkachukIntel
 
LF_DPDK17_Serverless DPDK - How SmartNIC resident DPDK Accelerates Packet Pro...
LF_DPDK17_Serverless DPDK - How SmartNIC resident DPDK Accelerates Packet Pro...LF_DPDK17_Serverless DPDK - How SmartNIC resident DPDK Accelerates Packet Pro...
LF_DPDK17_Serverless DPDK - How SmartNIC resident DPDK Accelerates Packet Pro...LF_DPDK
 
[2015-05월 세미나] Network Bottlenecks Mutiply with NFV Don't Forget Performance ...
[2015-05월 세미나] Network Bottlenecks Mutiply with NFV Don't Forget Performance ...[2015-05월 세미나] Network Bottlenecks Mutiply with NFV Don't Forget Performance ...
[2015-05월 세미나] Network Bottlenecks Mutiply with NFV Don't Forget Performance ...OpenStack Korea Community
 
The Power of SmartNICs
The Power of SmartNICsThe Power of SmartNICs
The Power of SmartNICsNetronome
 
Accelerating SDN Applications with Open Source Network Overlays
Accelerating SDN Applications with Open Source Network OverlaysAccelerating SDN Applications with Open Source Network Overlays
Accelerating SDN Applications with Open Source Network OverlaysCumulus Networks
 
The Need for Complex Analytics from Forwarding Pipelines
The Need for Complex Analytics from Forwarding Pipelines The Need for Complex Analytics from Forwarding Pipelines
The Need for Complex Analytics from Forwarding Pipelines Netronome
 
Banv meetup-contrail
Banv meetup-contrailBanv meetup-contrail
Banv meetup-contrailnvirters
 
LF_OVS_17_OVN and Kelda
LF_OVS_17_OVN and KeldaLF_OVS_17_OVN and Kelda
LF_OVS_17_OVN and KeldaLF_OpenvSwitch
 
Cloud Network Virtualization with Juniper Contrail
Cloud Network Virtualization with Juniper ContrailCloud Network Virtualization with Juniper Contrail
Cloud Network Virtualization with Juniper Contrailbuildacloud
 
PLNOG16: Obsługa 100M pps na platformie PC , Przemysław Frasunek, Paweł Mała...
PLNOG16: Obsługa 100M pps na platformie PC , Przemysław Frasunek, Paweł Mała...PLNOG16: Obsługa 100M pps na platformie PC , Przemysław Frasunek, Paweł Mała...
PLNOG16: Obsługa 100M pps na platformie PC , Przemysław Frasunek, Paweł Mała...PROIDEA
 
OpenContrail Silicon Valley Meetup Aug 25 2015
OpenContrail Silicon Valley Meetup Aug 25 2015OpenContrail Silicon Valley Meetup Aug 25 2015
OpenContrail Silicon Valley Meetup Aug 25 2015Scott Sneddon
 
The Juniper SDN Landscape
The Juniper SDN LandscapeThe Juniper SDN Landscape
The Juniper SDN LandscapeChris Jones
 
Contrail Launch: Capitalize on SDN and Cloud. Now.
Contrail Launch: Capitalize on SDN and Cloud. Now.Contrail Launch: Capitalize on SDN and Cloud. Now.
Contrail Launch: Capitalize on SDN and Cloud. Now.Juniper Networks
 
Using SmartNICs to Provide Better Data Center Security - Jack Matheson - 44CO...
Using SmartNICs to Provide Better Data Center Security - Jack Matheson - 44CO...Using SmartNICs to Provide Better Data Center Security - Jack Matheson - 44CO...
Using SmartNICs to Provide Better Data Center Security - Jack Matheson - 44CO...44CON
 
Secure Multi Tenant Cloud with OpenContrail
Secure Multi Tenant Cloud with OpenContrailSecure Multi Tenant Cloud with OpenContrail
Secure Multi Tenant Cloud with OpenContrailPriti Desai
 
PLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDNPLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDNPROIDEA
 
CloudKC: Evolution of Network Virtualization
CloudKC: Evolution of Network VirtualizationCloudKC: Evolution of Network Virtualization
CloudKC: Evolution of Network VirtualizationCynthia Thomas
 

Mais procurados (20)

6WIND Virtual Accelerator Product Presentation
6WIND Virtual Accelerator Product Presentation6WIND Virtual Accelerator Product Presentation
6WIND Virtual Accelerator Product Presentation
 
6WIND - SPEED MATTERS: The Challenge 2014 Contest Winners
6WIND - SPEED MATTERS: The Challenge 2014 Contest Winners6WIND - SPEED MATTERS: The Challenge 2014 Contest Winners
6WIND - SPEED MATTERS: The Challenge 2014 Contest Winners
 
DPDK IPSec performance benchmark ~ Georgii Tkachuk
DPDK IPSec performance benchmark ~ Georgii TkachukDPDK IPSec performance benchmark ~ Georgii Tkachuk
DPDK IPSec performance benchmark ~ Georgii Tkachuk
 
LF_DPDK17_Serverless DPDK - How SmartNIC resident DPDK Accelerates Packet Pro...
LF_DPDK17_Serverless DPDK - How SmartNIC resident DPDK Accelerates Packet Pro...LF_DPDK17_Serverless DPDK - How SmartNIC resident DPDK Accelerates Packet Pro...
LF_DPDK17_Serverless DPDK - How SmartNIC resident DPDK Accelerates Packet Pro...
 
[2015-05월 세미나] Network Bottlenecks Mutiply with NFV Don't Forget Performance ...
[2015-05월 세미나] Network Bottlenecks Mutiply with NFV Don't Forget Performance ...[2015-05월 세미나] Network Bottlenecks Mutiply with NFV Don't Forget Performance ...
[2015-05월 세미나] Network Bottlenecks Mutiply with NFV Don't Forget Performance ...
 
The Power of SmartNICs
The Power of SmartNICsThe Power of SmartNICs
The Power of SmartNICs
 
Accelerating SDN Applications with Open Source Network Overlays
Accelerating SDN Applications with Open Source Network OverlaysAccelerating SDN Applications with Open Source Network Overlays
Accelerating SDN Applications with Open Source Network Overlays
 
The Need for Complex Analytics from Forwarding Pipelines
The Need for Complex Analytics from Forwarding Pipelines The Need for Complex Analytics from Forwarding Pipelines
The Need for Complex Analytics from Forwarding Pipelines
 
Banv meetup-contrail
Banv meetup-contrailBanv meetup-contrail
Banv meetup-contrail
 
MidoNet 101
MidoNet 101MidoNet 101
MidoNet 101
 
LF_OVS_17_OVN and Kelda
LF_OVS_17_OVN and KeldaLF_OVS_17_OVN and Kelda
LF_OVS_17_OVN and Kelda
 
Cloud Network Virtualization with Juniper Contrail
Cloud Network Virtualization with Juniper ContrailCloud Network Virtualization with Juniper Contrail
Cloud Network Virtualization with Juniper Contrail
 
PLNOG16: Obsługa 100M pps na platformie PC , Przemysław Frasunek, Paweł Mała...
PLNOG16: Obsługa 100M pps na platformie PC , Przemysław Frasunek, Paweł Mała...PLNOG16: Obsługa 100M pps na platformie PC , Przemysław Frasunek, Paweł Mała...
PLNOG16: Obsługa 100M pps na platformie PC , Przemysław Frasunek, Paweł Mała...
 
OpenContrail Silicon Valley Meetup Aug 25 2015
OpenContrail Silicon Valley Meetup Aug 25 2015OpenContrail Silicon Valley Meetup Aug 25 2015
OpenContrail Silicon Valley Meetup Aug 25 2015
 
The Juniper SDN Landscape
The Juniper SDN LandscapeThe Juniper SDN Landscape
The Juniper SDN Landscape
 
Contrail Launch: Capitalize on SDN and Cloud. Now.
Contrail Launch: Capitalize on SDN and Cloud. Now.Contrail Launch: Capitalize on SDN and Cloud. Now.
Contrail Launch: Capitalize on SDN and Cloud. Now.
 
Using SmartNICs to Provide Better Data Center Security - Jack Matheson - 44CO...
Using SmartNICs to Provide Better Data Center Security - Jack Matheson - 44CO...Using SmartNICs to Provide Better Data Center Security - Jack Matheson - 44CO...
Using SmartNICs to Provide Better Data Center Security - Jack Matheson - 44CO...
 
Secure Multi Tenant Cloud with OpenContrail
Secure Multi Tenant Cloud with OpenContrailSecure Multi Tenant Cloud with OpenContrail
Secure Multi Tenant Cloud with OpenContrail
 
PLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDNPLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDN
 
CloudKC: Evolution of Network Virtualization
CloudKC: Evolution of Network VirtualizationCloudKC: Evolution of Network Virtualization
CloudKC: Evolution of Network Virtualization
 

Destaque

DPDK IPSec Security Gateway Application
DPDK IPSec Security Gateway ApplicationDPDK IPSec Security Gateway Application
DPDK IPSec Security Gateway ApplicationMichelle Holley
 
High Performance Networking Leveraging the DPDK and Growing Community
High Performance Networking Leveraging the DPDK and Growing CommunityHigh Performance Networking Leveraging the DPDK and Growing Community
High Performance Networking Leveraging the DPDK and Growing Community6WIND
 
Porque cambiar de IPSec a SSL VPN
Porque cambiar de IPSec a SSL VPNPorque cambiar de IPSec a SSL VPN
Porque cambiar de IPSec a SSL VPNaloscocco
 
Introduction to DPDK
Introduction to DPDKIntroduction to DPDK
Introduction to DPDKKernel TLV
 
IPSec VPN & IPSec Protocols
IPSec VPN & IPSec Protocols IPSec VPN & IPSec Protocols
IPSec VPN & IPSec Protocols NetProtocol Xpert
 
Vpn site to site
Vpn site to siteVpn site to site
Vpn site to siteIT Tech
 
IPSec Overview
IPSec OverviewIPSec Overview
IPSec Overviewdavisli
 

Destaque (14)

DPDK IPSec Security Gateway Application
DPDK IPSec Security Gateway ApplicationDPDK IPSec Security Gateway Application
DPDK IPSec Security Gateway Application
 
Protocole IKE/IPsec
Protocole IKE/IPsecProtocole IKE/IPsec
Protocole IKE/IPsec
 
IPSec and VPN
IPSec and VPNIPSec and VPN
IPSec and VPN
 
High Performance Networking Leveraging the DPDK and Growing Community
High Performance Networking Leveraging the DPDK and Growing CommunityHigh Performance Networking Leveraging the DPDK and Growing Community
High Performance Networking Leveraging the DPDK and Growing Community
 
Porque cambiar de IPSec a SSL VPN
Porque cambiar de IPSec a SSL VPNPorque cambiar de IPSec a SSL VPN
Porque cambiar de IPSec a SSL VPN
 
Introduction to DPDK
Introduction to DPDKIntroduction to DPDK
Introduction to DPDK
 
IPsec vpn
IPsec vpnIPsec vpn
IPsec vpn
 
IPSec VPN & IPSec Protocols
IPSec VPN & IPSec Protocols IPSec VPN & IPSec Protocols
IPSec VPN & IPSec Protocols
 
LINUX Device Drivers
LINUX Device DriversLINUX Device Drivers
LINUX Device Drivers
 
Ipsec vpn v0.1
Ipsec vpn v0.1Ipsec vpn v0.1
Ipsec vpn v0.1
 
Vpn site to site
Vpn site to siteVpn site to site
Vpn site to site
 
IPSec VPN Basics
IPSec VPN BasicsIPSec VPN Basics
IPSec VPN Basics
 
Ipsec
IpsecIpsec
Ipsec
 
IPSec Overview
IPSec OverviewIPSec Overview
IPSec Overview
 

Semelhante a 6WINDGate™ - Powering the New-Generation of IPsec Gateways

OVNC 2015-High performance Network Function Virtualization & VNF acceleration
OVNC 2015-High performance Network Function Virtualization & VNF accelerationOVNC 2015-High performance Network Function Virtualization & VNF acceleration
OVNC 2015-High performance Network Function Virtualization & VNF accelerationNAIM Networks, Inc.
 
Openstack v4 0
Openstack v4 0Openstack v4 0
Openstack v4 0sprdd
 
DPDK Summit - 08 Sept 2014 - 6WIND - High Perf Networking Leveraging the DPDK...
DPDK Summit - 08 Sept 2014 - 6WIND - High Perf Networking Leveraging the DPDK...DPDK Summit - 08 Sept 2014 - 6WIND - High Perf Networking Leveraging the DPDK...
DPDK Summit - 08 Sept 2014 - 6WIND - High Perf Networking Leveraging the DPDK...Jim St. Leger
 
Onboarding and Orchestrating High Performing Networking Software
Onboarding and Orchestrating High Performing Networking SoftwareOnboarding and Orchestrating High Performing Networking Software
Onboarding and Orchestrating High Performing Networking SoftwareCloudify Community
 
Virtual host acceleration
Virtual host accelerationVirtual host acceleration
Virtual host accelerationMelvin174623
 
OpenStack Paris Meetup on Nfv 2014/10/07
OpenStack Paris Meetup on Nfv 2014/10/07OpenStack Paris Meetup on Nfv 2014/10/07
OpenStack Paris Meetup on Nfv 2014/10/07Nicolas (Nick) Barcet
 
 Network Innovations Driving Business Transformation
 Network Innovations Driving Business Transformation Network Innovations Driving Business Transformation
 Network Innovations Driving Business TransformationCisco Service Provider
 
Advanced Networking: The Critical Path for HPC, Cloud, Machine Learning and more
Advanced Networking: The Critical Path for HPC, Cloud, Machine Learning and moreAdvanced Networking: The Critical Path for HPC, Cloud, Machine Learning and more
Advanced Networking: The Critical Path for HPC, Cloud, Machine Learning and moreinside-BigData.com
 
Leveraging Network Offload to Accelerate SDN and NFV Deployments
Leveraging Network Offload to Accelerate SDN and NFV DeploymentsLeveraging Network Offload to Accelerate SDN and NFV Deployments
Leveraging Network Offload to Accelerate SDN and NFV DeploymentsNetronome
 
VMworld 2013: Real-world Deployment Scenarios for VMware NSX
VMworld 2013: Real-world Deployment Scenarios for VMware NSX VMworld 2013: Real-world Deployment Scenarios for VMware NSX
VMworld 2013: Real-world Deployment Scenarios for VMware NSX VMworld
 
Pure-Play Virtualization for Rural Broadband
Pure-Play Virtualization for Rural BroadbandPure-Play Virtualization for Rural Broadband
Pure-Play Virtualization for Rural BroadbandADVA
 
Lenovo networking: top of the top of the rack
Lenovo networking: top of the top of the rackLenovo networking: top of the top of the rack
Lenovo networking: top of the top of the rackLenovo Data Center
 
QNAP NAS打造私有雲平台
QNAP NAS打造私有雲平台QNAP NAS打造私有雲平台
QNAP NAS打造私有雲平台Anderson Cheng
 
Building the SD-Branch using uCPE
Building the SD-Branch using uCPEBuilding the SD-Branch using uCPE
Building the SD-Branch using uCPEMichelle Holley
 
QNAP Company profile 2017
QNAP Company profile 2017 QNAP Company profile 2017
QNAP Company profile 2017 Hernan Lopez
 
Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...
Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...
Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...Dan Mihai Dumitriu
 
DPDK Summit 2015 - HP - Al Sanders
DPDK Summit 2015 - HP - Al SandersDPDK Summit 2015 - HP - Al Sanders
DPDK Summit 2015 - HP - Al SandersJim St. Leger
 

Semelhante a 6WINDGate™ - Powering the New-Generation of IPsec Gateways (20)

OVNC 2015-High performance Network Function Virtualization & VNF acceleration
OVNC 2015-High performance Network Function Virtualization & VNF accelerationOVNC 2015-High performance Network Function Virtualization & VNF acceleration
OVNC 2015-High performance Network Function Virtualization & VNF acceleration
 
Openstack v4 0
Openstack v4 0Openstack v4 0
Openstack v4 0
 
DPDK Summit - 08 Sept 2014 - 6WIND - High Perf Networking Leveraging the DPDK...
DPDK Summit - 08 Sept 2014 - 6WIND - High Perf Networking Leveraging the DPDK...DPDK Summit - 08 Sept 2014 - 6WIND - High Perf Networking Leveraging the DPDK...
DPDK Summit - 08 Sept 2014 - 6WIND - High Perf Networking Leveraging the DPDK...
 
Onboarding and Orchestrating High Performing Networking Software
Onboarding and Orchestrating High Performing Networking SoftwareOnboarding and Orchestrating High Performing Networking Software
Onboarding and Orchestrating High Performing Networking Software
 
Virtual host acceleration
Virtual host accelerationVirtual host acceleration
Virtual host acceleration
 
OpenStack Paris Meetup on Nfv 2014/10/07
OpenStack Paris Meetup on Nfv 2014/10/07OpenStack Paris Meetup on Nfv 2014/10/07
OpenStack Paris Meetup on Nfv 2014/10/07
 
Security gateway
Security gatewaySecurity gateway
Security gateway
 
 Network Innovations Driving Business Transformation
 Network Innovations Driving Business Transformation Network Innovations Driving Business Transformation
 Network Innovations Driving Business Transformation
 
Advanced Networking: The Critical Path for HPC, Cloud, Machine Learning and more
Advanced Networking: The Critical Path for HPC, Cloud, Machine Learning and moreAdvanced Networking: The Critical Path for HPC, Cloud, Machine Learning and more
Advanced Networking: The Critical Path for HPC, Cloud, Machine Learning and more
 
Leveraging Network Offload to Accelerate SDN and NFV Deployments
Leveraging Network Offload to Accelerate SDN and NFV DeploymentsLeveraging Network Offload to Accelerate SDN and NFV Deployments
Leveraging Network Offload to Accelerate SDN and NFV Deployments
 
Mellanox Approach to NFV & SDN
Mellanox Approach to NFV & SDNMellanox Approach to NFV & SDN
Mellanox Approach to NFV & SDN
 
VMworld 2013: Real-world Deployment Scenarios for VMware NSX
VMworld 2013: Real-world Deployment Scenarios for VMware NSX VMworld 2013: Real-world Deployment Scenarios for VMware NSX
VMworld 2013: Real-world Deployment Scenarios for VMware NSX
 
Pure-Play Virtualization for Rural Broadband
Pure-Play Virtualization for Rural BroadbandPure-Play Virtualization for Rural Broadband
Pure-Play Virtualization for Rural Broadband
 
Lenovo networking: top of the top of the rack
Lenovo networking: top of the top of the rackLenovo networking: top of the top of the rack
Lenovo networking: top of the top of the rack
 
QNAP NAS打造私有雲平台
QNAP NAS打造私有雲平台QNAP NAS打造私有雲平台
QNAP NAS打造私有雲平台
 
Building the SD-Branch using uCPE
Building the SD-Branch using uCPEBuilding the SD-Branch using uCPE
Building the SD-Branch using uCPE
 
QNAP Company profile 2017
QNAP Company profile 2017 QNAP Company profile 2017
QNAP Company profile 2017
 
Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...
Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...
Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...
 
NFV в сетях операторов связи
NFV в сетях операторов связиNFV в сетях операторов связи
NFV в сетях операторов связи
 
DPDK Summit 2015 - HP - Al Sanders
DPDK Summit 2015 - HP - Al SandersDPDK Summit 2015 - HP - Al Sanders
DPDK Summit 2015 - HP - Al Sanders
 

Último

Artificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxArtificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxhariprasad279825
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenHervé Boutemy
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Mattias Andersson
 
Training state-of-the-art general text embedding
Training state-of-the-art general text embeddingTraining state-of-the-art general text embedding
Training state-of-the-art general text embeddingZilliz
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsMiki Katsuragi
 
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostLeverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostZilliz
 
My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024The Digital Insurer
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticscarlostorres15106
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii SoldatenkoFwdays
 
The Future of Software Development - Devin AI Innovative Approach.pdf
The Future of Software Development - Devin AI Innovative Approach.pdfThe Future of Software Development - Devin AI Innovative Approach.pdf
The Future of Software Development - Devin AI Innovative Approach.pdfSeasiaInfotech2
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr BaganFwdays
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Wonjun Hwang
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024Stephanie Beckett
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 

Último (20)

E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
Artificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxArtificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptx
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache Maven
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?
 
Training state-of-the-art general text embedding
Training state-of-the-art general text embeddingTraining state-of-the-art general text embedding
Training state-of-the-art general text embedding
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering Tips
 
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostLeverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
 
My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko
 
The Future of Software Development - Devin AI Innovative Approach.pdf
The Future of Software Development - Devin AI Innovative Approach.pdfThe Future of Software Development - Devin AI Innovative Approach.pdf
The Future of Software Development - Devin AI Innovative Approach.pdf
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
 
DMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special EditionDMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special Edition
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 

6WINDGate™ - Powering the New-Generation of IPsec Gateways

  • 1. v1.0 | ©6WIND 2014. All rights reserved. All brand names, trademarks and copyright information cited in this presentation shall remain the property of its registered owners. SPEED MATTERS
  • 2. v1.0 | 2©6WIND 2014  Enable open platform ecosystem to replace dedicated hardware with commodity servers and virtualization.  Close the performance gap for Service Providers and Enterprises to upgrade their network architecture. The Promise Of 6WIND Network Architecture Transformation Dedicated Hardware And Software Platform White Box Ecosystem Virtualization Rigid Platform Long Time To Market Open Platform Inexpensive Rapid Services Creation $$$ Expensive $
  • 3. v1.0 | 3©6WIND 2014  Best in class packet processing technology thanks to 6WIND deep expertise in networking and more than 150 man years of development.  Since the first shipment of its 6WINDGate software in 2007, 6WIND has been selected and deployed by Blue Chip companies to unlock hidden infrastructure performance.  6WIND is an independent software vendor and 6WINDGate is the only heterogeneous networking stack to support major market- leading hardware platforms.  6WIND is privately held and headquartered in France, with offices in Asia and the US. 6WIND Facts
  • 4. v1.0 | 4©6WIND 2014  Service Providers:  Wireless offload schemes to extend coverage for subscribers expose mobile core networks to security threats and require secure connections  Cloud Providers:  Data Center Virtualization solutions require secure connections across virtual networks  Enterprise Providers:  Network equipment (physical and software appliances) must help secure connections across distributed data centers IPsec Gateways Are a Requirement to Secure IP Communications from Internet Attacks
  • 5. v1.0 | 5©6WIND 2014  Use of cost-effective hardware and software solutions  Generic hardware platforms with high performance Ethernet NICs  Hardware or software crypto acceleration  Commercial or open source Linux distributions  High performance packet processing software for  Network security features such as IPsec and IKE to sustain high network throughput of encrypted traffic  A large number of protocols such as Layer 2 encapsulation, IPv6, routing, virtual routing, firewall, NAT, QoS… to easily integrate the IPsec gateway into a complete networking infrastructure  Flexible and extensible software architecture  Develop physical IPsec Gateways and prepare the shift to virtualized solutions  Open architecture to reuse in-house or third party application software Requirements for High Performance and Cost-Effective IPsec Gateways
  • 6. v1.0 | 6©6WIND 2014  Fastest performance on the market; in both physical and virtual environments  Transparent, no change necessary to OS, hypervisor and management  Available across all major platforms  Native support for all major network protocols 6WINDGate on Standard Platforms: Paradigm Shift In Packet Processing Software
  • 7. v1.0 | 7©6WIND 2014 6WINDGate Removes Performance Bottlenecks Performance (MillionsOfPackets PerSecond) ... Fast Path Cores ... Increase OS stability by offloading resource intensive mundane tasks Standard Linux Becomes Unstable Performance benefits scale with the number of processing cores 1 2 3 8 9 10 ...
  • 8. v1.0 | 8©6WIND 2014 Networking Stack Control Plane Fast Path Transparent to Operating System ?Local info Local info Fast path packet Continuous synchronization Exception packet Synchronization modules
  • 9. v1.0 | 9©6WIND 2014 Available for Industry-Leading Processor Platforms ZoL™DPDKSimple ExecNetOS Architecture-independent “Fast Path Modules” • Generic, processor-independent source code • Cycle-level and pipeline-level optimizations Architecture-specific "Fast Path Networking SDK" • Zero-overhead API for fast path modules • Support for processor-specific features and resources • Leverages processor suppliers' SDKs Data Plane Fast Path FPN-SDK FPN-SDK FPN-SDK FPN-SDK
  • 10. v1.0 | 10©6WIND 2014 Linux Userland Linux Kernel Linux Networking Stack FastPath 6WINDGate IPsec Architecture Multicore Processor Platform FPN-SDK IPsec IPv4/IPv6 Other FP modules Shared memory IPsec SPD IPsec SAD IPsec IPv4/IPv6 statistics IPsec SPD IPsec SAD Linux / fast path synchronization (statistics) Security table updates Netlink notifications IKEv1/v2 Linux / fast path synchronization (configuration) DPDK Cavium NITROX Intel® Multi- Buffer Intel® QuickAssist Crypto Framework 6WIND DPDK Crypto Framework
  • 11. v1.0 | 11©6WIND 2014  Based on dpdk.org  6WINDGate DPDK add-ons available for increased system functionality, performance and reliability  Poll Mode Drivers for multi-vendor NICs  Mellanox ConnectX-3® EN Series PMD  Emulex OCE14102 PMD  Performance acceleration for virtualized networking  Fast vNIC PMD  VMXNET3 Guest VMware PMD  VIRTIO Guest XEN-KVM PMD  Crypto acceleration modules that leverage  Cavium NITROX SDK 5.x Crypto  Intel® Multi-Buffer Crypto  Intel® QuickAssist Crypto 6WINDGate DPDK Features and Benefits Virtualization acceleration Fast vNIC PMD VMXNET3 Guest VMware PMD VIRTIO Guest XEN- KVM PMD Crypto acceleration Cavium NITROX SDK 5.x Crypto Intel® Multi-Buffer Crypto Intel® QuickAssist Crypto dpdk.org Multi-vendor NIC support Emulex OCE14102 PMD Mellanox ConnectX®- 3 EN Series PMD
  • 12. v1.0 | 12©6WIND 2014  6WINDGate IPsec performance (AES-128 HMAC-SHA1)  5.24 Gbps per core for 1420B packets  Up to 193.27 Gbps using 40 cores  Performance scales linearly with the number of cores configured to run the fast path Intel Multi-Buffer IPsec Test Results
  • 13. v1.0 | 13©6WIND 2014  6WINDGate IPsec using Quick Assist performance  3.52 Gbps per engine for 1420B packets  Up to 40 Gbps (platform limit) using 16 engines  Performance scales linearly with the number of engines configured to process IPsec transformation Intel Cave Creek IPsec Test Results
  • 14. v1.0 | 14©6WIND 2014  6WINDGate IPsec performance using Cavium Nitrox DPDK add-on  Up to 20.23 Gbps for 1420 bytes Cavium Nitrox IPsec Test Results
  • 15. v1.0 | 15©6WIND 2014  High performance IPsec stack to sustain encrypted traffic over several tens of thousands of IPsec tunnels with low-latency  Optimal use of software and hardware crypto-acceleration for best price/performance  High-capacity IKE control plane to manage several tens of thousands of IKE sessions on a single server  High capacity for encapsulation protocols such as VLAN, PPP, L2TP and GRE…  High performance and scalable IPv4 and IPv6 forwarding with virtual routing support for a large number of instances  High performance and capacity firewall and NAT 6WINDGate for IPsec Gateways
  • 16. v1.0 | 16©6WIND 2014 Generic Hardware Platform Network Architecture Evolution Proprietary Hardware Platform Application Proprietary Hardware Platform Application Proprietary Hardware Platform Application Application Application Application Virtualization Generic Hardware Platforms Application Application Application
  • 17. v1.0 | 17©6WIND 2014 6WINDGate Extensions to IPsec Gateway Virtualization NICs DPDK (Intel and multi-vendor NIC drivers) Host Driver OVS Acceleration Additional Features (L3 Routing, Firewall, NAT…) Virtual Switch Fast vNIC PMD Virtio PMD Fast vNIC Linux Virtio Virtio Fast vNIC vIPsec Gateway vRouter Additional VNFs Drivers for Virtual Appliance • Fast vNIC drivers for high performance communications • Standard drivers for existing VAs • Extensible for all OSs Accelerated Virtual Switch • DPDK with multi-vendor NIC support • OVS acceleration • Extended network services • Host driver for high performance communications
  • 18. v1.0 | 18©6WIND 2014  High performance switching aggregated bandwidth for VNFs without any modification in the virtual switch  Hardware independent VNF network attachments for seamless network hardware upgrades and VNF migration  Low-latency inter-VNF communications  Enhanced features beyond switching (L3 forwarding, virtual routing, firewall, IPsec and more) for extended chaining capabilities  Support for multi-vendor VNFs based on different OSs 6WIND’s Open Networking Platform For NFVI
  • 19. v1.0 | 19©6WIND 2014 10 x 40 Gbps Full Duplex Traffic Virtual Switch Acceleration Accelerated Open vSwitch Open vSwitch Traffic Generator  No modification is required to OVS, OS, Hypervisor, Management  L2 switching capability on 10 cores using 40G Ethernet  52 Mpps with 64 byte packets  195 Gbps with 1280 byte packets OpenFlow Controller
  • 20. v1.0 | 20©6WIND 2014 Virtual Network Function Virtual Network Function Virtual Network Function Virtual Switch-Based NFVI Lowest Latency and Flexible Chaining PCI Express Local NIC External Switch Physical Switching Limitations • Hardware dependent switching (SR-IOV, RDMA, NIC embedded switching) • Throughput is limited by PCI Express (50 Gbps) and faces PCI Express and DMA additional latencies • Available PCI slots limit the number of chained VNFs • At 30 Gbps a single VNF is supported per node! Virtual Switching With 6WINDGate • Hardware independent virtual switching (NIC driver) • Aggregate 500 Gbps bandwidth with low latency • No external limit to number of chained VNFs 50 Gbps 500 Gbps 6WINDGate Accelerated OVS
  • 21. v1.0 | 21©6WIND 2014 FastPath IPv4/IPv6 Forwarding MPLS/VPLS Encapsulation IPv4/IPv6 Multi-cast Filtering IPv4/IPv6 IPsec SVTI VLAN Link Aggregation NAT GRE TCP/UDP Termination Flow Inspection L2TP/ PPPoE BRAS GTP-UVXLAN Tunneling (IPinIP) IPsec IPv4/IPv6 Ethernet Bridging 6WINDGate Module List DistributedArch. Fast path extensions Control plane extensions ControlPlane BFD SMR L2TP, PPPoE BRAS Routing Virtual Routing Security VRRP LACP VPN Monitoring HighAvailability LACP Firewall / NAT Routing ARP / NDP DPDK Fast vNIC PMD VMXNET3 Guest VMware PMD Intel® QuickAssist Crypto VIRTIO Guest XEN-KVM PMD Intel® Multi- Buffer Crypto Cavium NITROX SDK 5.X Crypto Mellanox ConnectX®-3 EN Series PMD FPN-SDK OVS Acceleration Emulex OCE14000 Series PMD QoS Hardware platform independence Modular virtualization extensions Complete protocol portfolio for IPsec gateway Generic software
  • 22. v1.0 | 22©6WIND 2014 6WIND Enables Cost-Effective IPsec Gateways for Enterprises and Service Providers  6WINDGate Powered IPsec Gateway and Firewall  DPDK on Linux  Hardware offload to Cavium Nitrox for IPsec  Software based appliance on custom hardware for additional performance  Allows use of DPDK on multi-vendor NICs for crypto support  Ready for fully virtual applications Commodity Hardware x86 Processor Hypervisor Virtual IPsec Gateway and Firewall IPsec Gateway and Firewall