Extending SDN & NFV to WAN This session will walk through the evolution in branch networking and how SDN & NFV principles can be applied to the enterprise WAN to achieve increased reliability and flexibility. It will also cover how to lower the associated operational expense of running a classic enterprise WAN and what industry trends are pressuring changes on the design of such networks.When applying SDN & NFV principles to the WAN, there will be a natural reduction in complexity of managing services and guaranteeing uptime of network connectivity. About Tim Van Herck Tim is the Director of Technology and founding member at VeloCloud Networks.He is responsible for building out a global network of Points of Presence to deliver virtual last mile service to enterprise branches. Prior to joining VeloCloud, Tim was a founding member of Aryaka Networks, which offers WAN Optimization as a service. Tim has been passionately following the leading edge of network virtualization and security solutions for the past 15 years. He holds a master's degree in Industrial Engineering from the University of Antwerp, and is based in VeloCloud's headquarters in Los Altos, CA More info @ http://meetup.com/openvswitch Follow us on twitter @nvirters

1. Extending SDN & NFV to the WAN
Tim Van Herck | Director Technology
September 23, 2014

2. Branch Networking
Current Best Practices
WWW.VELOCLOUD.NET 2
MPLS
Internet
Large Branch
Small Branch
Headquarter / DC
Business Critical Apps
Backup IPsec VPN
WANop
WANop
Low Capacity
Unreliable
 Business critical apps  MPLS
 IPsec VPN over Internet as backup
 Limited to no redundancy on Internet link
 Services concentrated in HQ / DC
SVC
SVCSVC
SVC
SVC
SVC
SVC
SVC
SVC

3. Market evolution
Globalized workforces
 Results in more smaller branches with no on-site IT support
 Need for centralized management, visibility and control
Applications move into the cloud
 Less DC’s needed resulting into consolidation
 Last mile Internet link become critical for business continuity
 MPLS doesn’t get you to the cloud
Cost & Risk reduction pressures
 Diminishing IT budgets – Private network is largest line item
 Increased availability of inexpensive (wireless) broadband
 Inclination to use pure OPEX services with no to minimum CAPEX exposure
 Limited time investment to evaluate new products and services
9/26/2014 3WWW.VELOCLOUD.NET

4. Broadband Circuits Financial Drivers
US Average $/Mbps (10 Mbps equivalent)
9/26/2014 4
65% Cost Savings80% Cost Savings
Private
Backed by SLA
6+ weeks lead times
Symmetrical
Dedicated
2~4 weeks lead time
Asymmetrical
Oversubscribed
2~4 days lead time
WWW.VELOCLOUD.NET

5. Next Gen Branch Networking
How does enterprise IT want it too look
WWW.VELOCLOUD.NET 5
Large Branch
Small Branch
Headquarter / DC
Internet
LTE
Cable
Cable
Fiber
DSL
DIA
DIA
 Reduce/Remove functional networks
 Add/Drop capacity without service interruption
 Use all links simultaneously – No Active/Standby
 Leverage inexpensive broadband links (including wireless) as sole transport
 Individual ISP outages/brownouts shouldn’t be an acute concern
 Rapid deployments (same day)
 Migrate service complexity (monolithic service sets) into the cloud
 Centralize what you can, keep local what you must
SVC
SVC
SVC
SVCSVC
SVC
SVC
SVC

6. Why can’t we do this today?
The Service Angle
 Deploy hypervisors & attach to existing router
 Extra piece of hardware
 Need to send out an IT staff member
 Manually establish service chaining
 Complex PBR rules in the router, error prone
 Difficult delivery model of the virtual appliance
 Management access susceptible to network quality of single link
WWW.VELOCLOUD.NET 6
Internet
Small Branch
Headquarter / DC
PBR
Unreliable
Cable
DSL
Hypervisor

7. Why can’t we do this today?
The Network Angle
WWW.VELOCLOUD.NET 7
DSL LINK
CABLE LINK
 VOIP Calls Dropped
 Video Artifacting
 VDI Sessions Stalls
 Web Traffic Slowed
Session
Balanced
traffic
ECMP, PBR

8. Why can’t we do this today?
The Network Angle
 ECMP: Equal cost but not equal
 Quality mismatch between flow & links
 PBR:
 Complex failover & link condition monitoring model
 Map application to a link  underutilized links
 Dynamic Routing protocols
 Not capable at reacting to changing networking quality (congestion, packetloss, latency, jitter)
 Only acts on hard link outages
 Not application aware
 Link / Next hop focused
 Leads to wasted resources
 Active / Standby link configurations
WWW.VELOCLOUD.NET 8

9. Emerging vCPE Concept
 Combines SDN & NFV principles to the enterprise branch WAN edge
 SDN segregates control & data plane for faster alignment with business needs
 Allows for different packet & flow handling techniques to be implemented as an overlay
 E.g. Link aggregation and ISP abstraction
 NFV allows Network Function to be moved to the ISP edge where they can be
more effectively operated and scaled out
 Future proofs the CPE
 Quickly deliver services at the branch based on customer needs
 Accelerates cloud adoption by:
 Providing a reliable network connection to SAAS applications
 Providing mechanisms to move services to the place best suited in the network
WWW.VELOCLOUD.NET 9

10. Cloud-Delivered WAN using SDN principles
 Data plane: Highly distributed and inherently redundant
 Cloud delivered
 Control plane: Centralized visibility to replace traditional routing
 Quickly Extensible
 REST API controlled
 Extending SDN to the branch through Cloud Delivery
WWW.VELOCLOUD.NET 10
Distributed
Data Plane
Centralized
Control Plane
vCPE

11. Extending NFV into the branch
 Deliver and orchestrate NF & Services from a central locations
 Extract complex functions from the branch into the DC / ISP Edge
 Ability to rely on SAAS services
 Embedded Service chaining
 Control from branch to DC
WWW.VELOCLOUD.NET 11
Distributed
Data Plane
Centralized
Control Plane
vCPE
SVC
VPN
NF
NF
SVC
SVC
NF
ORCHESTRATOR

12. VeloCloud
WWW.VELOCLOUD.NET 12
 Call home for config, policies
and updates
 Instant cloud VPN
 One-click virtual service
provisioning
Zero Touch Thin Branch
 Auto service characterization
 Business grade reliability &
performance
 Apps/servers not tied to
physical links
Virtualized WAN
 Optimized path to DC, SaaS,
branches
 No backhaul
 Auto selection of optimal
gateways
Direct to All Apps
Data Centers/vDC
Branch
Internet
VPN
SaaS
VPN
 No DC deployment
 Auto scaling / redundancy
 Global distributed coverage
 Pay as you grow
Network as a Service
• Optimized application performance & reliability
• Cost effective and rapid deployment
• Direct and controlled access to all applications

13. WAN Link Monitoring
13

14. App Detection
WWW.VELOCLOUD.NET 14

15. Summary
WWW.VELOCLOUD.NET 15
VeloCloud is the only complete solution with all three elements of a Cloud Delivered WAN
Cloud
Network
(SDN)
Enterprise Grade
Internet
(NV)
Virtualized
Services
(NFV)
 Zero-Touch at branch
 10x faster deployments
 3x-5x TCO savings
 Better application
 Performance
 Provides visibility, security and policy
control for all traffic

16. WWW.VELOCLOUD.NET 16
Introducing VeloCloud
http://youtu.be/lKYVrPhlecI

17. www.velocloud.net| 4410 El Camino Real - Los Altos, CA | +1(650)209-4180
herckt@velocloud.net www.linkedin.com/in/herckt