Platform Overview. 2 Copyright © 2011 Juniper Networks, Inc. LEGAL STATEMENT Legal Disclaimer: This statement of product direction (formerly.

Platform Overview

2 Copyright © 2011 Juniper Networks, Inc. www.juniper.net

LEGAL STATEMENT

Legal Disclaimer: This statement of product direction (formerly called “roadmap”) sets forth Juniper Networks ‘current

intention, and is subject to change at any time without notice. No purchases are contingent upon Juniper Networks delivering

any feature or functionality depicted on this statement.


JUNOSPHERE - NETWORK VIRTUALIZATION IN THE CLOUD

Junosphere delivers Junos on-demand via the cloud Enables real network modeling and education using virtual Junos

routers Accessed on demand via the Internet to a Juniper-hosted DC Scale when you need it; pay for what you use

Learn, model and test Junos features with the flexibility, cost-efficiency and simplicity inherent of a cloud based delivery model

Internet


JUNOSPHERE CLASSROOM

Junosphere Classroom provides hands-on education and experience with Junos

Universities, technical training institutes; Juniper customers and channel

Cloud-based delivery model brings many benefits over physical labs

Reduced capital costs – no need to purchase networking elements

Lower operational costs – power, space, cooling and maintenance

Increased flexibility – rapidly scale up or down Realistic experience – exact same Junos running

in commercial networks Access to the most current/latest networking

features


JUNOSPHERE ARCHITECTURE


Junosphere Connector – allows users to create secure tunnels to customer premise –

extending the network

SSL VPN

JUNOSPHERE ARCHITECTURE

Firewall/NAT access allows cust to

transfer files/configs via Internet

Customer A

Customer B

Independent, secure sandboxes between and within customers

Datacenter- Owned and Operated by Juniper

B1 B2

B3

Customer B

Internet

Virtual JUNOS/CentOS/Space/ 3rd party apps

SSL/SSH

Customer A

B1 B3

B2

Virtual Switch


PLATFORM COMPONENTS

Virtual Network Elements• Virtual Routers• Virtual Hosts• CPE devices, T-

Gens, MGMT systems etc.

Hypervisor = KVM / QEMUHOST OS = CentOS

Virtual Machine

Guest OS

Virtual Machine

Guest OS

Virtual Machine

Guest OS

Virtual Machine Manager

• VM & Virtual network orchestration process

User Interface

Accessed via web

browser

SSL VPN


VJX1000 OVERVIEW

IPv4/IPv6 Unicast / Multicast Routing: OSPF, BGP, RIPv2, Static routes, IS-

IS,…) Multicast: IGMPv3, PIM, SDP, DVRMRP,

Source Specific)

MPLS: Layer 2 VPN ( VPLS), Layer 3 VPN, LDP, RSVP

Encapsulations: Ethernet (MAC and tagged), PPPoE

NAT/Stateful Firewall Filters/Intrusion Detection

Tunneling: GRE, IP in IP COS User Authentication/Access: RADIUS, RSA

SecureID, LDAP

J-Web, CLI

VJX Series is a new Junos platform that runs in a hypervisor on standard x86 hardware

VJX 1000 is first platform within VJX family Full control plane, management plane and forwarding plane features

Support 64 Ethernet Interfaces

Software forwarding performance: 50 Mbps @ 64 bytes


LOADING THE NETWORK


VIRTUALISE THE MODEL

Build diagram

Generate the configuration files

Log in to platform


STARTUPUpload configuration files

Start Virtual Routers

Connect to Virtual Routers

Log in and use


OPEN-SOURCE CONFIGURATION TOOLS

vm "Anaheim.AS1" { // description - hostname of set on VM hostname "Anaheim.AS1"; // description Operating system image to load VJX1000_LATEST // description - ge 0/0/0 management interface interface "em0" { EXTERNAL;}; //description Interface Anaheim.AS1 -> Stockton.AS1 interface "em1" { bridge "private11";}; /* ge-0/0/1 */ //description Interface Anaheim.AS1 -> FortWorth.AS1 interface "em2" { bridge "private12";}; /* ge-0/0/2 */ // description - configuration file to load on the router install "ENV(HOME)/active/configset/AS1_Anaheim.conf" "/root/junos.conf";};vm "Atlanta.AS1" { // description - hostname of set on VM hostname "Atlanta.AS1"; // description Operating system image to load VJX1000_LATEST // description - ge 0/0/0 management interface interface "em0" { EXTERNAL;}; //description Interface Atlanta.AS1 -> WashingtonDC.AS1 interface "em1" { bridge "private0";}; /* ge-0/0/1 */ //description Interface Atlanta.AS1 -> FortWorth.AS1 interface "em2" { bridge "private5";}; /* ge-0/0/2 */ // description - configuration file to load on the router install "ENV(HOME)/active/configset/AS1_Atlanta.conf" "/root/junos.conf";};

Python package repository:http://pypi.python.org/pypi/AutoNetkit/

Source code:https://github.com/sk2/autonetkit


Junosphere Connector


University A

Physical Lab

University B

Physical Lab

JUNOSPHERE CONNECTOR

Enables the interconnection of physical and virtual networks Including partner institutions

Powerful tool for collaboration, research, and experimentation

Enables collaborative, large-scale experiments more readily and cost effectively


JUNOSPHERE CONNECTOR

VDE-switch to VDE-switch SSH tunnel

VDE-switch port “xconnected” to remote VDE-switch port inside the lab environment

Connector VM delivered as VMWare machine image


MANAGEMENT TOOLS Can take tools that you use in you physical network and deploy into the virtual – VMs don’t know that they’re not physical devices

MRTG monitoring SNMP stats and generating graphs

Centos running MRTG

http://10.94.29.180/mrtg


LOOKING INSIDE THE VIRTUAL WORLD


SPIRENT ROUTER TESTER INTEGRATION

Spirent Test Center Virtual is a software package that extends & complements the capabilities of Spirent Test Center – a virtual traffic-generator for the virtual world

Run real-world traffic and control-plane events over virtualized networks Enable connection ports in many locations – ports are just VMs

STCV Manager


MU DYNAMIC APPLICATION TESTING

Mu Studio Performance provides the ability to recreate a mix of applications that represent a production environment and inject that behavior into the virtual network

Simulate OTT Video, P2P, Social media, Games and Business applications


JUNOSPHERE CASE STUDIES


JUNOSPHERE CASE STUDYTESTING THE UNTESTABLE

User

Challenge

Large Tier 1 service provider

Goal Test multicast VPN prior to service rollout; requires support of IPv6 BGP multicast and large number of edge routers to validate performance.

Challenging and costly to accurately model or test at this scale prior to production rollout.

Solution Use Junosphere to emulate large scale testbed of (50) PE routers. Junosphere supports full Junos BGP multicast functionality

Physical Lab


Test Set

Virtual Test Set


ROUTING SECURITY TRAINING AT *NOGS

• Courses on 6 continents

• Over 2500 operators

• Innovation in Routing Security


JUNOSPHERE TRIAL OVERVIEW

Goal: Introduce students to basics of network security Be able to exercise and monitor affects of different attack vectors

Junosphere provided: 15 virtual testbeds of Juniper routers & Centos hosts (134

machines) Enabled much improved student to equipment ratios (2:1 vs 10:1) Extended periods of exposure to network equipment


SECURITY EXERCISE IN JUNOSPHERE

10.0.0.29

10.0.0.30

10.0.0.22

10.0.0.21

PublicPC4

PublicIDS

PublicRouter

Firewall

Network1Router Network2Router

Network1PC1 Network1PC2 Network2PC3

10.0.0.25

10.0.0.26

10.0.0.34 10.0.0.46

10.0.0.33

10.0.0.54 10.0.0.58

10.0.0.45

10.0.0.62

10.0.0.53 10.0.0.57 10.0.0.61

Range of packages security and

monitoring packages installed on this host

Students install appropriate filters to defend Network PCs


JUNOSPHERE TRIAL OVERVIEW

Goal: In-depth exposure to large range of network protocols Virtualize existing physical testbed (PC-based lab)

Junosphere provided: 6 virtual testbeds of Juniper routers & Centos hosts (84 machines) Enabled much improved student to equipment ratios Enable exposure to protocols that PC environment could not

support IPv4

– IGP (OSPF), iBGP with RR, eBGP peering, multicast, anycast RP and MSDP

IPv6 – IGP (OSPF), iBGP, eBGP peering, multicast ASM with embedded-RP

IPv4 and IPv6 security configuration SNMP


CERNET EXERCISE IN JUNOSPHERE

SH1

BJ2

GZ1

hzh1

s2

s5

I1

BJ Pop

SH Pop

GZ Pop

s3

BJ1

SH2

xmn1

s1

s4

zju

mBGPmBGP

mBGP

mBGP

mBGP mBGP

RR client

mBGP

RR client

mBGP

RR server

mBGP

RR server

MSDP Mesh

MSDP Mesh MSDP

Mesh

MSDP Peer

MSDP Peer


JUNOSPHERE FOR R&D

Roma Tre University in Italy has a long-standing relationship with Juniper

Existing JUNOS SDK development-partner

Well-respected by companies such as Telecom Italia, FastWeb, WIND et al

Research team were trying to develop a new methodology for monitoring and troubleshooting VPN services in Service Provider or Enterprise networks

Problem - How do you develop and test new tools in a lab of only 2 physical routers?


JUNOSPHERE FOR R&D

• Large-scale virtual testbed set up in Junosphere

• Juniper virtual routers simulating Service-Provider network

• Virtual development hosts added to the lab

• Development, test and verification activities conducted in Junosphere

• Demonstrations planned with Juniper Italy to potential customer


AND THE FEEDBACK…

“This has definitely been a great opportunity for us to perform experiments in such a large network of high-end devices which otherwise would not have been possible in our labs. Working with Junosphere is really smooth and also the technical support is excellent and promptly available to address every kind of problem and need.

The Junosphere platform opens to us a broad range of new research opportunities, allowing us to test methodologies and tools on real ISP-scale topologies.

Not to mention the great added value for us to be able to teach networking concepts with tens of Juniper routers, available to the teacher and ready for being shown to the students in live sessions”

Dr. Massimo Rimondini,Dept. of Computer Science and AutomationRoma Tre University, Italy


JUNOSPHERE USE, ORDERING & ROADMAP


HOW TO ORDER

Junosphere is a standard Juniper product

Supported via PO ordering process Credit card ordering mechanism due soon

Pricing is based on time and VM capacity required Basic price of 10VMs @ $50 per day 30-day option based on actual days used – can be non-contiguous Per month or quarter pricing available for those who want dedicated resources

Product / Model Number

Description

JUS-LAB-10VM-1 This gives the customer 10 LAB Virtual machines, each for 1 day. Includes images and tools.

JUS-LAB-10VM-30 This gives the customer 10 LAB Virtual machines, each for 30 days. Includes images and tools.

JUS-CLASS-10VM-1 This gives the customer 10 Classroom Virtual machines, each for 1 day. Includes images and tools.

JUS-CLASS-10VM-30 This gives the customer 10 Classroom Virtual machines, each for 30 days. Includes images and tools.

JUS-CONNECT-1 This gives the customer the ability to connect and transfer data at the rate of 1 Mbs to the virtual network topology for 1 day

JUS-CONNECT-30 This gives the customer the ability to connect and transfer data at the rate of 1 Mbs to the virtual network topology for 30 days.


JUNOSPHERE 1.6

Junosphere 1.6 service includes Junosphere Classroom and Junosphere Lab Datacenter support for 700 VMs

Robust architecture with complete security via Secure Access, and Internet connectivity via https://www.junosphere.net

24x7 uptime Live BGP feed available Software image support for

VJX1000 Junos SPACE management platform Centos Cariden MATE Spirent TestCenter Virtual Mu Dynamics Studio & Test Engine Packet Design REX

JTAC customer support via on-line self-service and call center

https://www.junosphere.ne/

http://www.junosphere.net/


SUMMARY

Junosphere enables the creation of networks of virtual Junos routers enabling education and research using virtual networks

Junosphere is an enabling platform for a range of activities Teaching Lab virtualization Development activities with remote partners Collaborative research

Platform Overview. 2 Copyright © 2011 Juniper Networks, Inc. LEGAL STATEMENT Legal Disclaimer: This statement of product direction (formerly.

Documents

virtual junos routers

junosphere architecture

cloud junosphere

b1b3 b2 virtual switch

platform overview slide

internet customer

commercial networks

delivery model internet