SD-WAN / CON

Tutorial

1. China Mobile Elastic SD-WAN Technical White Paper [CN]

Publication URL: PDF - SD-WAN White Paper

Introduction:

This white paper aims to propose China Mobile’s elastic SD-WAN solution to fully leverage carriers’ underlay network resource advantages and provide differentiated services for applications.

IETF

1. Problem Statement

Dynamic Networks to Hybrid Cloud DCs Problem Statement

Publication URL: https://datatracker.ietf.org/doc/html/draft-ietf-rtgwg-net2cloud-problem-statement

Introduction:

This document describes a set of network-related problems enterprises face at the moment of writing this specification (2023) when interconnecting their branch offices with dynamic workloads in third-party data centers (DCs) (a.k.a. Cloud DCs). These problems are mainly from enterprises with conventional VPN services that want to leverage those networks (instead of altogether abandoning them). This document also describes various mitigation practices and actions to soften the issues induced by these problems.

2. Framework

IPv6 based Cloud-Oriented Networking

Publication URL: https://datatracker.ietf.org/doc/html/draft-shi-cats-ipv6-based-con

Introduction: This document describes the scenarios, requirements and technologies for IPv6-based Cloud-oriented Networking.

Scenarios and Challenges of Overlay Routing for SD-WAN

Publication URL: https://datatracker.ietf.org/doc/html/draft-sheng-rtgwg-overlay-routing-requirement

Introduction:

Overlay routing is essential during the enterprise networks’ evolution from the interconnection among multiple on-premise branch sites to more advanced ones, such as the interconnection to multi-clouds. This document analyzes the technical requirements and challenges of overlay routing for SD-WAN in these scenarios.

SR For SDWAN: VPN with Underlay SLA

Publication URL: https://datatracker.ietf.org/doc/html/draft-dukes-spring-sr-for-sdwan

Introduction:

This document describes how SR enables underlay Service Level Agreements (SLA) to a VPN with scale and security while ensuring service opacity. This solution applies to Over-The-Top VPN (OTT VPN) and Software-Defined WAN (SDWAN).

SRv6 across SDWAN paths

Publication URL: https://datatracker.ietf.org/doc/html/draft-dunbar-sr-sdwan-over-hybrid-networks

Introduction:

This document describes the mechanism of steering packets across SDWAN segments based on the metadata carried by the SRv6 packets.

Some of the SDWAN segments are untrusted networks, and some are private networks. The goal is to achieve the optimal E2E quality.

3. Control Plane

BGP Usage for SDWAN Overlay Networks

Publication URL: https://datatracker.ietf.org/doc/html/draft-ietf-bess-bgp-sdwan-usage

Introduction:

The document discusses the usage and applicability of BGP as the control plane for multiple SD-WAN scenarios. The document aims to demonstrate how the BGP-based control plane is used for large-scale SD-WAN overlay networks with little manual intervention.

SD-WAN edge nodes are commonly interconnected by multiple types of underlay networks owned and managed by different network providers.

BGP UPDATE for SDWAN Edge Discovery

Publication URL: https://datatracker.ietf.org/doc/html/draft-ietf-idr-sdwan-edge-discovery

Introduction:

The document describes the encoding of BGP UPDATE messages for the SDWAN edge node discovery.

In the context of this document, BGP Route Reflector (RR) is the component of the SDWAN Controller that receives the BGP UPDATE from SDWAN edges and in turns propagates the information to the intended peers that are authorized to communicate via the SDWAN overlay network.

Secure EVPN

Publication URL: https://datatracker.ietf.org/doc/draft-ietf-bess-secure-evpn/

Introduction:

The applications of EVPN-based solutions (BGP MPLS-based Ethernet VPN and Network Virtualization Overlay Solution using EVPN) have become pervasive in Data Center, Service Provider, and Enterprise segments. It is being used for fabric overlays and inter-site connectivity in the Data Center market segment, for Layer-2, Layer-3, and IRB VPN services in the Service Provider market segment, and for fabric overlay and WAN connectivity in Enterprise networks. For Data Center and Enterprise applications, there is a need to provide inter-site and WAN connectivity over public Internet in a secured manner with same level of privacy, integrity, and authentication for tenant’s traffic as IPsec tunneling using IKEv2. This document presents a solution where BGP point-to-multipoint signaling is leveraged for key and policy exchange among PE devices to create private pair-wise IPsec Security Associations without IKEv2 point-to-point signaling or any other direct peer-to-peer session establishment messages.

IPSec for BGP Enabled Services over SRv6

Publication URL: https://datatracker.ietf.org/doc/draft-wang-bess-secservice/

Introduction:

For certain users, security is of paramount importance. Even when building their own backbone networks, these users require end-to-end service encryption to ensure the confidentiality and integrity of their data. In such scenarios, IPsec can be used to provide flexible and robust encryption capabilities, while SRv6 can be used to guide the forwarding of data packets along different paths on the network. By combining these technologies, users can create a highly secure and efficient network environment that meets their specific needs and requirements.

Edge-to-edge Encryption in Multi-segment SD-WAN

Publication URL: https://datatracker.ietf.org/doc/draft-sheng-idr-e2e-encryption-in-sd-wan/

Introduction:

The document describes the control plane enhancement for multi- segment SD-WAN to implement Edge-to-edge encryption, GW information exchange, include/exclude transit list exchange.

Corresponding Gateway Exchange in Multi-segment SD-WAN

Publication URL: https://datatracker.ietf.org/doc/draft-sheng-idr-gw-exchange-in-sd-wan/

Introduction:

The document describes the control plane enhancement for multi- segment SD-WAN to exchange the corresponding GW information between edges.

Usage of BGP-LS-SPF in Multi-segment SD-WAN

Publication URL: https://datatracker.ietf.org/doc/draft-sheng-lsvr-bgp-spf-for-sdwan/

Introduction:

This document introduces the usage of BGP-LS-SPF protocol in multi- segment SD-WAN scenarios. It allows SD-WAN tunnels to be published as logical links, which can cross the internet, MPLS networks, and various operator network. The BGP-LS-SPF protocol can construct an overlay network topology for logical links and physical links across these heterogeneous networks, and calculate the reachability routes of overlay network nodes based on this topology.

Advertising SaaS Path Performance Metrics using BGP

Publication URL: https://datatracker.ietf.org/doc/draft-sheng-idr-advertising-saas-path-performance/

Introduction:

This document extends BGP to advertise the SaaS path performance metrics from the gateway sites to branch sites. The user can access SaaS applications through the DIA (Direct Internet Access) link at the branch site or through the DIA link at the gateway site, or use the DIA link of a gateway site for redundancy. This approach will improve the SaaS access experience for end-users.

4. Yang Models

YANG Data Model for SD-WAN OSE service delivery

Publication URL: https://datatracker.ietf.org/doc/html/draft-wood-rtgwg-sdwan-ose-yang

Introduction:

This document defines two SD-WAN OSE Open SD-WAN Exchange(OSE) service YANG modules to enable the orchestrator in the enterprise network to implement SD-WAN inter-domain reachability and connectivity services and application aware traffic steering services.

A YANG Module for uCPE management

Publication URL: https://datatracker.ietf.org/doc/html/draft-shytyi-opsawg-vysm

Introduction:

This document provides a YANG data model for uCPE management (VYSM) and definition of the uCPE equipment. The YANG Model serves as a base framework for managing an universal Customer-Premises Equipment (uCPE) subsystem. The model can be used by a Network Orchestrator.

A YANG Data Model for SD-WAN Service Delivery

Publication URL: https://datatracker.ietf.org/doc/html/draft-sun-opsawg-sdwan-service-model

Introduction:

This document provides a YANG data model for an SD-WAN service. An SD-WAN service is a connectivity service offered by a service provider network to provide connectivity across different locations of a customer network or between a customer network and an external network, such as the Internet or a private/public cloud network.

This connectivity is provided as an overlay constructed using one of more underlay networks. The model can be used by a service orchestrator of a service provider to request, configure, and manage the components of an SD-WAN service.

5. Tunnel Segment

Tunnel Segment in Segment Routing

Publication URL: https://datatracker.ietf.org/doc/html/draft-li-spring-tunnel-segment

Introduction:

This document introduces a new type of segment, Tunnel Segment, for the segment routing (SR). Tunnel segment can be used to reduce SID stack depth of SR path, span the non-SR domain or provide differentiated services.

Forwarding mechanisms and requirements of control plane and data models for tunnel segments are also defined.

PCE-initiated IP Tunnel

Publication URL: https://datatracker.ietf.org/doc/html/draft-chen-pce-pce-initiated-ip-tunnel

Introduction:

This document specifies a set of extensions to PCEP to support PCE-initiated IP Tunnel to satisfy the requirement which is introduced in I-D.li-spring-tunnel-segment. The extensions include the setup, maintenance and teardown of PCE-initiated IP Tunnels, without the need for local configuration on the PCC.

CCSA

CCSA has finished series of SD-WAN Standards

Publication URL: CCSA Newsroom: SD-WAN

Introduction:

CCSA has finished series of SD-WAN standards.

Software defined network(SD-WAN)-General technical requirements

Publication URL: CCSA Standard - Software defined network(SD-WAN)-General technical requirements

Introduction:

This document defines the general technical requirements of SD-WAN.

Software defined network(SD-WAN)-POP Gateway enhancement technical requirement

Publication URL: CCSA Standard - Software defined network(SD-WAN)-POP Gateway enhancement technical requirement

Introduction:

This document defines the technical requirements of SD-WAN which supports the enhancement of POP.

Software defined network(SD-WAN)-Technical specification on north bound interface of controller

Publication URL: CCSA Standard - Software defined network(SD-WAN)-Technical specification on north bound interface of controller

Introduction:

This document defines the technical requirements of the north bound interface of SD-WAN controller.

Software defined network(SD-WAN)-Technical specification on south bound interface of controller

Publication URL: CCSA Standard - Software defined network(SD-WAN)-Technical specification on south bound interface of controller

Introduction:

This document defines the technical requirements of the south bound interface of SD-WAN controller.

Demo

OpenSource

News

1. China Mobile and Huawei Released the SRv6-based Elastic SD-WAN Technical White Paper

Publication URL: https://m.c114.com.cn/w126-1145517.html