OITIN030101 SDN Commonly Used Protocols

SDN Commonly Used Protocols
Integrated Practice Guide

SDN Protocols Integrated Practice
Contents
Typical Application Scenario of SDN ...................................................................................... 1
Configure Interconnection between SNC and Netmatrix
Task Description ............................................................................................................................................. 4
Objectives ....................................................................................................................................................... 4
Networking Topology ...................................................................................................................................... 4
Configuration Tasks ........................................................................................................................................ 5
Configuration Flowchart.................................................................................................................................. 6
Preparation ...................................................................................................................................................... 6
Configuration Procedures and Verification ....................................................................................................... 7
Configure Interconnection between SNC and Forwarders in L3 Networking Scenario

Task Description ...........................................................................................................................................12
Objectives ......................................................................................................................................................12
Networking Topology .....................................................................................................................................13
Configuration Tasks .......................................................................................................................................13
Preparation .....................................................................................................................................................13
Configuration Procedures and Verification ......................................................................................................14
Summary .................................................................................................................................... 22
Huawei Proprietary and Confidential Copyright © Huawei

Technologies Co., Ltd..
SDN Protocols Integrated Practice 1
SDN Commonly Used Protocols Integrated

Practice Guide
Typical Application Scenarios of SDN

Commonly Used Protocols
In conjunctions with the rapid growth and emergence of SDN networks, various types of protocols are
deployed, which might vary based on different SDN solutions applied according to live network
applications. This section generally describes the commonly used protocols in SDN applications, such as
Openflow, SNMP, Netconf etc.
Diagrams below show the examples of a few types of Huawei SDN solutions. The similarities of each
solution here is that all the SDN solutions will definitely comprise of the SDN network elements such as
SNC controller, NetMatrix Orchestrator, and the forwarding device, which is also known as forwarder. In
certain solutions such as IP + Optical solution or TSDN solutions, there are some other additional SDN
elements being deployed, which are the U2000 and utraffic. To allow all these elements to be able to
communicate with each other, different communication protocols are deployed and will be discussed
briefly on the section below.

RR+ Networking Solution
In RR+ networking solution, SNC serves as the controller in control plane, which is used to manage
topology information, calculate traffic control results and delivers the calculated routes to the forwarder
using BGP or IGP. Netmatrix serves as the orchestrator used to configure traffic policy to trigger traffic
controller towards SNC. The SNC uses NETCONF to send automatically calculated traffic control paths to
the NetMatrix, which then displays these paths for users to confirm. Utraffic serves as the flow acquisition
and analysis equipment which uses traffic analysis results to identify traffic. Its communication protocol
with forwarders is SNMP. SFTP is used to allow data exchange between Netmatrix and utraffic.
VxLAN Networking Solution
As for VxLAN networking solution, NETCONF protocol is used as the communication protocol between
Netmatrix and SNC controller while Openflow protocol is used for communication between SNC controller
and forwarder.

Besides, as we have already discussed in the previous topics, the control channel built between SNC
controller and forwarder can be divided into 2 types, which are inband and outband networking. As for
outband networking, dedicated network is built for control traffic between controller and forwarders; while
for inband networking, control channel and service data network are shared in the same network topology.
Regardless of inband or outband networking methods, the reach-ability between SNC controller and
forwarders can be realized through traditional layer 2 networking technologies such as VLAN or MSTP, or
layer 2 networking protocols such as OSPF, ISIS, BGP etc. In layer 2 networking, controller and forwarders
are located in the same network segments and VLAN technology can be used to segregate control and data
traffic. As for layer 3 networking, routing protocols such as OSPF or ISIS helps in achieving route
reach-ability between SNC controller and every forwarders even they are located in different network
segments.

Configure Interconnection between SNC and

NetMatrix
Task Description
This lab practice describe NETCONF configuration between Netmatrix and SNC.
Objectives
Upon completion of this course, you will be able to:
 Configure NETCONF protocol on SNC controller
 Configure NETCONF protocol on Netmatrix
 Verify the NETCONF communication channel between SNC controller and Netmatrix
Networking Topology
NETCONF ensures security and extensibility. When the NMS is used to manage network devices, you can
use NETCONF to ensure communication between the NMS and the devices.
As shown in the topology diagram below, the NMS is deployed on the NETCONF manager that functions
as the SSH client. The NETCONF agent functions as the SSH server that receives connection requests from
and establishes the connection with the SSH client. SSH is a security protocol at the application layer,
enhancing the reliability of NETCONF. In this networking, NETCONF is used to manage the configuration
of the SSH server.

Configuration Tasks
Task Description
1. Configure a local user account for logging Configure the local user name and password for login.
in to the SNC
Configure the access type of the local user
Configure the management rights of the local user
2. Enable NETCONF on the SNC for the Enable NETCONF

SNC to communicate with the NetMatrix
Configure the authentication type as password and
service type as snetconf for the SSH user

Configuration Flowchart
Preparation
To complete the configuration, you need to prepare the following:
1. Physical interconnections of the network topology are properly connected.
2. All interconnection IP address between SNC and Netmatrix have been configured
correctly. SNC is able to ping to Netmatrix and vice versa.

Configuration Procedures and Verification
Configure Netconf on SNC

By using NETCONF protocol, SNC can automatically calculate network path information and send to
NetMatrix for user confirmation.
Configure SSH on SNC

1. Enter aaa view and create a user account by configuring username, password and service type.
[*SNC] aaa
[*SNC-aaa] local-user huawei password irreversible-cipher Changeme_123
[*SNC-aaa] local-user huawei service-type ftp terminal telnet ssh
[*SNC-aaa] commit
[*SNC-aaa] quit
2. Enable the configured local user as ssh user
[*SNC] ssh user huawei

[*SNC] commit
Enable NETCONF function on SNC
1. Enable Netconf server function on SNC.
[~SNC] snetconf server enable
2. Perform password authentication to SSH user.
[*SNC] ssh user fornetmatrix authentication-type password
3. Configure SSH user service type to be snetconf.
[*SNC] ssh user fornetmatrix service-type snetconf

[*SNC] commit

[~SNC] quit
Configuring NetMatrix
NETCONF is the communication protocol used by NetMatrix to send configuration information such as
topology information, calculation parameter, path information and constraints parameters to SNC.
Pre-requisite Configuration
Before performing NE, you have to pre-define the SNC equipment role under the selection Network >
Physical Network Resources > Device > RR+ Device. After this configuration, SNC device defined will
automatically be shown under “Netconf Configuration”
Configuration Step
Step 1 Choose Network from the main menu
Step 2 Choose Physical Network Resource > Netconf Configuration from the navigation tree
Step 3 Set IP, Port, User Name, and Password, and click Password
Parameter Remarks
IP SNC server login IP. The SNC login IP is one of the pre-requisite
information that should be obtained earlier.
Port SSH login port number. The default port number for SSH is 22.
User Name SNC username for Netmatrix to login.
Remark: The SSH user should be created on SNC first, for

example, fornetmatrix in SSH configuration on SNC.

Parameter Remarks
Password SNC password for Netmatrix to login.
Remark: The SSH user and password should be created on SNC

first, for example, Changeme_123
Netconf Verification on Netmatrix

Step 1 Verify Netconf configuration
1. From the main menu, select “Policy > Traffic Policy”
2. Select Affinity Attribute on navigation pane on the left
3. Click “Create”; Configure affinity attributes such as color and value (for example, red, 20), and
click “save”
4. Click “Deploy”; if message “Operation succeeds” appear, it means that Netconf is configured
properly on both SNC and Netmatrix.
Netconf Verification on SNC

Step 1 Run the “display ssh user-information username” command to view information about a specified
SSH user and the service mode. A similar result will be shown as below:
<HUAWEI> display ssh user-information fornetmatrix

------------------------------------------------------------------------
---
User Name : fornetmatrix
Authentication-Type : password
User-public-key-name : -
User-public-key-type : -
Sftp-directory : -
Service-type : snetconf
------------------------------------------------------------------------
---
Total 1, 1 printed
Step 2 Run the “display ssh server status” command to view global configuration of the SSH server.
<HUAWEI> display ssh server status

SSH Version : 2.0
SSH authentication timeout (Seconds) : 60
SSH authentication retries (Times) : 3
SSH server key generating interval (Hours) : 0

SSH version 1.x compatibility : Enable

SSH server keepalive : Disable
SFTP server : Disable
STELNET server : Disable
SNETCONF server : Enable
SNETCONF server port(830) : Disable
SSH server port : 22
ACL name :
ACL number :
ACL6 name :
ACL6 number :
SSH server source address : 0.0.0.0
Step 3 Run the “display ssh server session” command to view sessions between the SSH server and the SSH
client.
<HUAWEI> display ssh server session

------------------------------------------------------------------------
Session : 1
Conn : NCA 0
Version : 2.0
State : Started
Username : client001
Retry : 1
CTOS Cipher : aes128-cbc
STOC Cipher : aes128-cbc
CTOS Hmac : hmac-sha1
STOC Hmac : hmac-sha1
Kex : diffie-hellman-group1-sha1
Public Key : ECC
Service Type : snetconf
Authentication Type : password
Connection Port Number : 22
Idle Time : 00:04:07
------------------------------------------------------------------------
Step 4 Run the “display netconf capability” command to view the capabilities that the NETCONF agent
supports.
<HUAWEI> display netconf capability

----------------------------------
Capability Scope Version
----------------------------------
Base public 1.0
Writable-Running public 1.0
Candidate public 1.0
Confirmed Commit public 1.0
Distinct Startup public 1.0
Rollback on Error public 1.0
Sync private 1.0
Sync private 1.1
Exchange private 1.0
Active private 1.0
Action private 1.0
Discard Commit private 1.0
Execute CLI private 1.0
Update private 1.0

Commit-Description private 1.0

Notification public 1.0
Interleave public 1.0
----------------------------------

Configure Interconnection between SNC and

Forwarders in Layer 3 Networking Scenario
Task Description
There might have different communication protocols used to configure the interconnection between SNC
and forwarders based on different types of SDN solutions. This lab mainly focuses only on Openflow
configuration between SNC and forwarders, which is used in VxLAN scenario.
Objectives
Upon completion of this course, you will be able to:
 Configure OpenFlow protocol on SNC
 Configure OpenFlow protocol on forwarders
 Verify OpenFlow channel between SNC and forwarders.

Networking Topology
The use of an SDN controller simplifies network operation and maintenance. A controller and a forwarder
establish a neighbor relationship using the OpenFlow protocol over an OpenFlow channel. After an OpenFlow
channel is established, the controller manages forwarders using OpenFlow. The forwarder reports its node and
interface information to the controller, and the controller delivers configurations to the forwarder.
Configuration Tasks
Task Description
1 Configure routing protocol, (OSPF is used in this lab practice) to achieve route reach-ability
between SNC and forwarders which are directly or indirectly connected.
2 Configure OpenFlow connection from SNC controller to all forwarders.
Preparation
To complete the configuration, you need to prepare the following:

1. Physical interconnections of the network topology are properly connected.
2. All interconnection IP address, and loopback IP address as per stated in the topology
diagram above has been configured properly based on the IP address planning shown in
the diagram above
Configuration Procedures and Verification
Step 1: Configure OSPF
Configure OSPF on SNC Controller
1. Configure system name for SNC controller
<HUAWEI> system-view
[~HUAWEI] sysname SNC
[*HUAWEI] commit
2. Configure loopback and interconnection IP address on SNC controller

[~SNC] interface loopback 0
[*SNC-LoopBack0] ip address 4.4.4.4 32
[*SNC–LoopBack0] quit
[*SNC] interface gigabitethernet 0/0/0
[*SNC -GigabitEthernet0/0/0] undo shutdown
[*SNC -GigabitEthernet0/0/0] ip address 10.1.1.1 30
[*SNC -GigabitEthernet0/0/0] quit
3. Configure OSPF routing protocol on SNC controller

[*SNC] ospf
[*SNC -ospf-1] area 0
[*SNC -ospf-1-area-0.0.0.0] network 4.4.4.4 0.0.0.0
[*SNC -ospf-1-area-0.0.0.0] network 10.1.1.0 0.0.0.3
[*SNC -ospf-1-area-0.0.0.0] quit
[*SNC -ospf-1] quit
[*SNC] commit

Configure OSPF on FP1
1. Configure system name for FP1

[~HUAWEI] sysname FP1
[*HUAWEI] commit
2. Configure loopback and interconnection IP address on FP1

[~FP1] interface loopback 0
[*FP1-LoopBack0] ip address 1.1.1.1 32
[*FP1 –LoopBack0] quit
[*FP1] interface gigabitethernet 0/0/1
[*FP1 -GigabitEthernet0/0/1] undo shutdown
[*FP1 -GigabitEthernet0/0/1] ip address 10.1.1.2 30
[*FP1 -GigabitEthernet0/0/1] quit
3. Configure OSPF routing protocol on FP1

[*FP1] ospf
[*FP1 -ospf-1] area 0
[*FP1 -ospf-1-area-0.0.0.0] network 1.1.1.1 0.0.0.0
[*FP1 -ospf-1-area-0.0.0.0] quit
[*FP1 -ospf-1] quit
[*FP1] commit


[*HUAWEI] commit


[*FP2] ospf
[*FP2 -ospf-1] quit
[*FP2] commit

[*HUAWEI] commit


[*FP3] ospf
[*FP3 -ospf-1] quit
[*FP3] commit
OSPF Verification
After performing OSPF configuration, perform ping test from SNC controller to every forwarder to verify
route reach-ability is established. If the ping test is successful like the verification result below, it means
that OSPF is configured correctly.
[~SNC] ping 4.4.4.4

PING 4.4.4.4: 56 data bytes, press CTRL_C to break

Reply from 4.4.4.4: bytes=56 Sequence=1 ttl=255 time=4 ms

--- 4.4.4.4 ping statistics ---

5 packet(s) transmitted
5 packet(s) received
0.00% packet loss
round-trip min/avg/max = 1/2/4 ms
Step 2: Configure Openflow
Configure OpenFlow on SNC
1. Enable SDN controller function and enter SDN controller view

<SNC> system-view
[~SNC] sdn controller
2. Configure SDN controller listening IP address

[*SNC-sdn-controller] openflow listening-ip 4.4.4.4
3. Configure FP ID for each forwarder; in this configuration, FP1 is configured as FP ID 1; FP2 is configured
as FP ID 2; FP3 is configured as FP ID3. Configuration below is for configuring peer to FP1
[*SNC-sdn-controller] fp-id 1
4. Configure SDN controller type; Huawei-default is referring to Huawei equipment serves as the SDN
controller; ovs-default is referring to Openvswitch equipment serves as the SDN controller
[*SNC-sdn-controller-fp1] type huawei-default
5. Configure the version of SDN controller to be the default version

[*SNC-sdn-controller-fp1] version default
6. Configure the role of SDN controller to be default

[*SNC-sdn-controller-fp1] role default
7. Configure the control channel between SDN controller and forwarders to use Openflow protocol and enter
Openflow interface view
[*SNC-sdn-controller-fp1] openflow controller
8. Specify the loopback IP address of the forwarder FP1 in Openflow interface view
[*SNC-sdn-controller-fp1-openflow] peer-address 1.1.1.1
[*SNC-sdn-controller-fp1-openflow] quit
[*SNC-sdn-controller-fp1] quit
[*SNC-sdn-controller] quit
[*SNC] commit
Repeat the configuration to configure SNC to establish OpenFlow peer connection to FP2 and FP3. The
configuration scripts are shown as below:-
Configuration of SNC OpenFlow peer connection to FP2:

[*SNC] commit
Configuration of SNC OpenFlow peer connection to FP3:

[*SNC] commit
Configure OpenFlow on Forwarders
The configuration on FP1, FP2 and FP3 are similar and explanation on the configuration below is based on
configuration on FP1
1. Configure FP1 as SDN forwarder and enter SDN Agent view

<FP1> system-view
[~FP1] sdn agent
2. Specify SNC controller Loopback IP address and enter SDN controller view
[*FP1-sdn-agent] controller-ip 4.4.4.4
3. Configure the control channel between SDN controller and forwarders to use Openflow protocol and enter
Openflow agent view
[*FP1-sdn-agent-ctrl-1.1.1.1] openflow agent
4. Configure local OpenFlow connection loopback IP address

[*FP1-sdn-agent-ctrl-1.1.1.1-openflow] transport-address 1.1.1.1
[*FP1-sdn-agent-ctrl-1.1.1.1-openflow] quit
[*FP1-sdn-agent-ctrl-1.1.1.1] quit
[*FP1-sdn-agent] quit
[*FP1] commit
Repeat the similar configuration on FP2 and FP3, as shown on the configuration scripts below:-

Configuration on FP2:
<FP2> system-view
[~FP2] sdn agent
[*FP2] commit
Configuration on FP3:
<FP3> system-view
[~FP3] sdn agent
[*FP3] commit
OpenFlow Verification
After completing all configurations, execute the command “display sdn openflow session” on SDN
controller and forwarder. If the status of the result is shown “REGISTERED”, it represents the OpenFlow
control channel has been established successfully. Below shows and example of the verification result:
[~SNC] display sdn openflow session

---------------------------------------------------------------------------
-----
FPID AgentAddr ListeningAddr UpTime State
---------------------------------------------------------------------------

1 1.1.1.1 4.4.4.4 0d00h23m28s REGISTERED

2 2.2.2.2 4.4.4.4 0d00h00m05s REGISTERED
3 3.3.3.3 4.4.4.4 0d00h04m12s REGISTERED
Summary
Upon completion of this integrated lab practice, you should be able to configure:-
1. Netconf control channel between SNC and Netmatrix

2. Openflow control channel between SNC and forwarders.


OITIN030101 SDN Commonly Used Protocols

Uploaded by

Copyright:

Available Formats

OITIN030101 SDN Commonly Used Protocols

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

OITIN030101 SDN Commonly Used Protocols

Uploaded by

Copyright:

Available Formats

SDN Commonly Used Protocols

Integrated Practice Guide

Configure Interconnection between SNC and Forwarders in L3 Networking Scenario

Huawei Proprietary and Confidential Copyright © Huawei

SDN Commonly Used Protocols Integrated

Typical Application Scenarios of SDN

Huawei Proprietary and Confidential Copyright © Huawei

RR+ Networking Solution

VxLAN Networking Solution

Huawei Proprietary and Confidential Copyright © Huawei

Huawei Proprietary and Confidential Copyright © Huawei

Configure Interconnection between SNC and

 Configure NETCONF protocol on SNC controller

 Configure NETCONF protocol on Netmatrix

Huawei Proprietary and Confidential Copyright © Huawei

Configure the management rights of the local user

2. Enable NETCONF on the SNC for the Enable NETCONF

Huawei Proprietary and Confidential Copyright © Huawei

1. Physical interconnections of the network topology are properly connected.

Huawei Proprietary and Confidential Copyright © Huawei

Configuration Procedures and Verification

Configure Netconf on SNC

Configure SSH on SNC

2. Enable the configured local user as ssh user

[*SNC] ssh user huawei

Enable NETCONF function on SNC

1. Enable Netconf server function on SNC.

[~SNC] snetconf server enable

2. Perform password authentication to SSH user.

[*SNC] ssh user fornetmatrix authentication-type password

3. Configure SSH user service type to be snetconf.

[*SNC] ssh user fornetmatrix service-type snetconf

Huawei Proprietary and Confidential Copyright © Huawei

User Name SNC username for Netmatrix to login.

Remark: The SSH user should be created on SNC first, for

Huawei Proprietary and Confidential Copyright © Huawei

Password SNC password for Netmatrix to login.

Remark: The SSH user and password should be created on SNC

Netconf Verification on Netmatrix

1. From the main menu, select “Policy > Traffic Policy”

2. Select Affinity Attribute on navigation pane on the left

Netconf Verification on SNC

<HUAWEI> display ssh user-information fornetmatrix

<HUAWEI> display ssh server status

Huawei Proprietary and Confidential Copyright © Huawei

SSH version 1.x compatibility : Enable

<HUAWEI> display ssh server session

<HUAWEI> display netconf capability

Huawei Proprietary and Confidential Copyright © Huawei

Commit-Description private 1.0

Huawei Proprietary and Confidential Copyright © Huawei

Configure Interconnection between SNC and

 Configure OpenFlow protocol on SNC

 Configure OpenFlow protocol on forwarders

 Verify OpenFlow channel between SNC and forwarders.

Huawei Proprietary and Confidential Copyright © Huawei

2 Configure OpenFlow connection from SNC controller to all forwarders.

Huawei Proprietary and Confidential Copyright © Huawei

1. Physical interconnections of the network topology are properly connected.

Configuration Procedures and Verification