Join us as we take a look at rapidly deploying routing and security software in multi-site and private and public cloud environments.

1. #SPEEDMATTERS For Serious Networks
6WIND Introduction
High Performance
vRouter Demo

2. ©6WIND 2018 2
■ Headquartered in France with a global presence in the US
and China
■ Primary business is infrastructure software for networking
■ Products are used both by Network Builders and OEM
vendors
■ VC-backed company with Cisco as an investor
6WIND: Performance Software Experts
Cost-effective Networking Software

3. ©6WIND 2018 3
OEMs
Sample Client List
Network Builders

4. ©6WIND 2018 4
6WIND vRouter: Scalable Routing and IPsec For COTS Servers
■ Routing Features
■ Routing Performance
■ IPsec Features
■ IPsec Performance
■ Deployment Scenarios
■ Demo

5. ©6WIND 2018 5
6WIND Turbo Router Features
Performance
• Forwarding: 12 Mpps per core
• VLAN: 10 Mpps per core
• Filtering: 6 Mpps per core
• 1 M routes
NICs
• Intel 1G 82575, 82576, 82580, I210,
I211, I350, I354
• Intel 10G/40G 82598, 82599, X520,
X540, XL710
• Mellanox 10G/25G/40G/50G/100G
CX3, CX4, CX5
• Broadcom NetExtreme E-Series
• Virtio, SR-IOV, PCI passthrough,
VMXNET3
System Requirements
• Intel x86 Xeon and Atom
• Bare metal, KVM, VMware
Routing
• BGP4, BGP4+
• OSPFv2, OSPFv3
• RIPv1, RIPv2, RIPng
• Static Routes
• ECMP
• PBR
L2 and Encapsulations
• GRE
• VLAN (802.1Q, QinQ)
• VXLAN
• LAG (802.3ad, LACP)
• Ethernet Bridge
Management
• SSHv2, Telnet
• CLI
• Remote configuration through XML API
• SNMP
• LLDP
• RBAC with AAA
• Syslog
• sFlow
• KPIs/Telemetry (YANG-based)
• Linux networking tools
High Availability
• VRRP
• ARP/NDP synchronization
• Firewall/NAT synchronization
• Daemon Monitoring System
IP Networking
• IPv4 and IPv6
• VRF
• IPv4 and IPv6 Tunneling
• NAT
• PPPoE
• L2TP
Security
• ACLs (stateless & stateful)
• uRPF
• CP Protection
IP Services
• DHCP Server/Client/Relay
• DNS Client/Proxy
• NTP
QoS
• Rate limiting per interface and
flow

6. ©6WIND 2018 6
6WIND Turbo Router Performance
IPForwardingPerformance(Mpps)
Number of cores
*Quad Intel® Xeon® E7-4890 v2 @ 2.8GHz and 20x10G ports
40 Core Platform
IP Forwarding
• Performance scales
linearly with the
number of cores
• 12 Mpps per core
independent of packet
size
• 200+ Gbps (128-byte
packets) with 45%
capacity available*

7. ©6WIND 2018 7
6WIND Turbo IPsec Features
Performance
• IPsec: 12 Gbps per core
• Forwarding: 12 Mpps per core
• VLAN: 10 Mpps per core
• Filtering: 6 Mpps per core
• 1 M routes
NICs
• Intel 1G 82575, 82576, 82580, I210,
I211, I350, I354
• Intel 10G/40G 82598, 82599, X520,
X540, XL710
• Mellanox 10G/25G/40G/50G/100G
CX3, CX4, CX5
• Broadcom NetExtreme E-Series
• Virtio, SR-IOV, PCI passthrough,
VMXNET3
System Requirements
• Intel x86 Xeon and Atom
• Bare metal, KVM, VMware
IPsec
• IKE v1/v2
• Encryption: 3DES, AES-CBC/GCM
(128, 192, 256)
• Hash: MD-5, SHA-1, SHA-2 (256, 384,
512), AES-XCBC (128)
• RSA, DH Key Management
• High performance (AES-NI, QAT)
• Tunnel, Transport or BEET mode
• SVTI
• VPN Monitoring
Routing
• BGP4, BGP4+
• OSPFv2, OSPFv3
• RIPv1, RIPv2, RIPng
• Static Routes
• ECMP
• PBR
L2 and Encapsulations
• GRE
• VLAN (802.1Q, QinQ)
• VXLAN
• LAG (802.3ad, LACP)
• Ethernet Bridge
Management
• SSHv2, Telnet
• CLI
• Remote configuration through XML API
• SNMP
• LLDP
• RBAC with AAA
• Syslog
• sFlow
• KPIs/Telemetry (YANG-based)
• Linux networking tools
High Availability
• VRRP
• IKE/IPsec synchronization
• ARP/NDP synchronization
• Firewall/NAT synchronization
• Daemon Monitoring System
IP Networking
• IPv4 and IPv6
• VRF
• IPv4 and IPv6 Tunneling
• NAT
• PPPoE
• L2TP
Security
• ACLs (stateless & stateful)
• uRPF
• CP Protection
IP Services
• DHCP Server/Client/Relay
• DNS Client/Proxy
• NTP
QoS
• Rate limiting per interface and
flow

8. ©6WIND 2018 8
Throughput(Gbps)
Number of cores
6WIND Turbo IPsec Performance
Test Platform: Intel Xeon E5-2630 v3 @ 2.4GHz; 1420 bytes packets;
AES-GCM 128; test performed by 6WIND in controlled environment
IPsec
• Performance scales
linearly with the
number of cores
• 12 Gbps per core
IKE
• Up to 100,000 IPsec
tunnels
• 1,000 tunnels per
second

9. ©6WIND 2018 9
6WIND vRouter Deployment Options
NIC
Bare Metal
App
Hypervisor
NIC
vNIC
App
Hypervisor
SR-IOV
NIC
App
Hypervisor
NIC
vNIC
Virtual Machine
NFV Ready
Linux KVM
VMware ESXi
Linux KVMLinux KVM
VMware ESXi

10. Why Orchestration?
● Design, Deliver, and Operate end
to end services in an automated
matter
● Connecting the different parts of
the service and processes
making the everything work
together
● Orchestration = taking existing
process and makes them work
better, faster and with less
errors

11. Benefits of TOSCA Based Orchestration
● TOSCA for onboarding and Orchestration
● TOSCA is an open standard
● Support for service composition
● Future Proof

12. Cloudify Generic VNF-M
• VNM-F Functionality, not a product
• Implemented just like any other Cloudify
blueprint
• Can support all VNF-M “known”
Requirements and more
• onboarding
• Instantiation
• Full LCM
• Licensing
vnfd
nsd

13. Example Work with VNF Vendors
Cloudify as a VNF-M
• Clearwater vIMS
• F5
• NetNumber
• MetaSwitch (VoLTE TAS, vSBC
and vIMS )
• Huawei Cloud EPN
• Athonet
• Fortinet
• Lumina
• OpenDayLight

14. ©6WIND 2018 14
■ Easy to use
■ Deployed and configured by Cloudify
■ Instantiated in OpenStack
■ Easy to monitor
■ Grafana give choice of dashboards according
to usage
■ Full features
■ Routing through BGP
■ Firewalling
■ NAT
■ IPsec VPN
Demo: vRouter for Secure Multi-Site, Multi-Cloud Networks
Deployment
Configuration
Monitoring
Alerts
Ready to Run on Your COTS Server:
Bare Metal, Virtual Machine, and Cloud of Your
Choice
Hardware provided by High Performance vRouter
Public
Cloud

15. ©6WIND 2018 15
■ Need
Contact us
www.6wind.com
information
?
evaluation

16. Where do I go from here?
• Cloudify NFV Lab
• Cloudify.co/NFV
• Download Cloudify
• Contact us at hello@cloudify.co

17. #SPEEDMATTERS For Serious Networks
Questions &
Answers

18. #SPEEDMATTERS For Serious Networks
Thank You