OpenLAN cloud-managed Switches running open-source SONiC.pdf

《OpenLAN cloud-managed Switches running open-source SONiC.pdf》由會員分享，可在線閱讀，更多相關《OpenLAN cloud-managed Switches running open-source SONiC.pdf（17頁珍藏版）》請在三個皮匠報告上搜索。

1、Yes,open-source SONiCOpenLAN Cloud-Managed Switches Running Open-Source SONiCGidi Navon,Senior Principal Architect,MarvellTaras Chornyi,Director of Open Networking Solutions,PLVisionOpenLAN Cloud-Managed Switches Running Open-Source SONiCSUSTAINABLE SCALABLE COMPUTATIONAL INFRASTRUCTURENETWORKINGClo

2、ud managementTeamwork to create Open SolutionsComprehensive portfolio of cloud-managed enterprise switchesVariety of hardware platformsSoftware company focused on open networkingNetwork-as-a-Service cloud providerNOSHardware platformsSiliconBuild on the foundation of OpenWiFiEnable diverse and open

3、alternatives for wiring closet switchesWhitebox lineup support(8-48 ports)Address the next major network upgrade(WiFi 6E/7)High power(PoE+),high throughput and low latencyAdvanced wireless,L2&L3 feature setOpen&ValidatedOpen interfaces&open-source softwareSecure ZTP over public internetUnified cloud

4、 management for wireless and wiredValidated out of the box solution,hardened systemOpenLAN Switching(OLS)goalsUnique aspects of campus switchesCloud data center switchCampus switch Repetitive,stable and organized topology Trusted network,trained personal Intel Multi-core Xeon-D CPU 16GB of RAM,256GB

5、 storage 51.2 Tbps(128 x 400G ports)Runs full-blown SONiC Self-installed by business,endless variations Cloud managed,ZTP over public internet Dual core ARM A55/Quad core ARM A72 4GB of RAM,16GB storage 300 Gbps(1G,mGig,25G uplinks ports)Runs optimized OLS SONiCManagement capabilities:Unified manage

6、ment of Wi-Fi and switchesSecure ZTP over public internetTIP Certificate AuthorityOn going managementConfig push from cloudEvents collectionTelemetry streamingSoftware update from cloudTroubleshooting(RTTY,etc.)Self-Driving NetworkOLS tech stackSAIPoEuCentral Client(Container)gNMIgNOIRESTTIP CA(Digi

7、Cert)CloudSDK(Open Source)WANuZTPWiFi APs24/48 Port PoE+uCentralPKI Cert()Variety of hardware platforms ECS4650-54P48x1G+6x25G EdgeCore|Marvell DX35xx CX204Y-24GT-M-SWP224x1G+4x25G CX206Y-48GT-M-H-WP4/848x1G+6x25GAsterfusion|Marvell DX35xx ES-2221/2227-54TS32x1G+16x2.5G+6x25GWistron|Marvell DX35xx(w

8、/wo CN9130 external CPU)LN-3848MGBPPP-6Y48x2.5G+6x25G Larch Networks|Marvell DX35xx1G to 10G,supporting WiFi 6E&WiFi 7Inline MACsec for full device bandwidthIntegrated dual-core ARM host CPUIntegrated controller for PoE managementSecured and trusted bootAdvanced tunneling and micro-segmentationProgr

9、ammability for advanced telemetryOptimized switch silicon for Cloud-Managed Enterprise(CME)PerformanceNetwork insightsSecurityCloud managedCostCloud100G/400G1G/2.5G/10G25G/100G50G/100GDisabled unused servicesMuxBootchartRouter advertiserGearboxNATsFlowMoved to a-slim base imageRAM 28%saved in T0Stor

10、age 20%saved in T0Resource usage optimization010002000300040005000600070008000900010000SONiC202311OLS NOSStorageNOS dataOperational Data010002000300040005000600070008000SONiC202311OLS NOSRAMNOS DataOperational Data28%20%8GB4GBOLS uCentral SONiC integrationNew container in SONiCPlatform agnostic adap

11、terGNMI/GNOI/Rest for SONiCCustom for non-SONiC NOSDedicated PKI Cert partitionOpenLAN ZTP over public internet(instead of SONiC“local”ZTP)TLS web-socket as transport for secure channel to cloudJSON based schema https:/ucentral.io/docs/ucentral-schema.html TIP trust model and Zero Trust Provisioning

12、 ZTPODM gets certificate from CA per boxWhen HW is shipped,certified MAC is assigned to a cloud operatorDevice requests connection details from global redirector using certificateDevice connects to a cloud providerODMDistributor Register APs to ControllerTIP CA(DigiCert)Business Fuse certsduring ass

13、emblyDiscover cloudCapture serial#to customer shipment12342Connect5Push SW6143Cloud Management ServiceCloud Management ServiceSONiC Enhancing features for the campusPort Security(802.1X)Power over Ethernet(PoE+)Spanning Tree(xSTP)Multicast(IGMP snooping)Q-in-Q,VLAN translationMAC based VLAN assignme

14、ntPolicy Groups for micro segmentationFlow management&Telemetry ExportContinuous improvement SummaryCloud managementNOSHardware platformsSiliconZero touch provisioningOptimized silicon for CMEVariety of switchesOptimized open-source OLS SONiCAdd missing campus features into SAI and SONiCOptimize SONiC for smaller memory footprint using profilesProvide a northbound interface to cloud-managed platformsJoin TIP OpenLAN Switching(OLS)groupStart deploying OLS-based solutionsAdditional informationTIP OpenLAN Switching https:/ uCentral schema https:/ for actionThank you!