Welcome!

If everyone is thinking the same, someone isn't thinking

Lori MacVittie

Subscribe to Lori MacVittie: eMailAlertsEmail Alerts
Get Lori MacVittie via: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Blog Feed Post

Programmability in ADN

The benefits are the same as #SDN – only they aren't as disruptive to the network

adc-sdn-flow_thumb[3]

One of the benefits touted by SDN is the ability to introduce new functionality into the network when it's needed, rather than on a vendor schedule. This capability is often referred to as programmability, and most often takes the form of plug-ins or applications for the SDN controller. New functionality is added and flows are directed through it appropriately to enable new protocols or capabilities.

I'm certainly not disagreeing with that, as programmability of the network is a function of ADCs that has existed for quite some time. The ability to programmatically introduce new functionality or custom capabilities is one that the Application Delivery Network (ADN) has supported for years in varying ways. Network-side scripting, for example, is one of the ways in which programmability in the network has been enabled.

In a model similar to that proposed by SDN, as traffic flows through the controller it may be directed to an "application" capable of modifying the data - both inbound and outbound. Operators are able to programmatically inspect and modify in-flight traffic for a variety of purposes. Detecting and mitigating zero-day exploits, for example, is a common use of such programmatic systems. Supporting new protocols, too, is another, as the ability to intercept traffic between its point of origin and destination provides for such implementation.

Both the ability to programmatically add new functionality as well as changing flows dynamically are possible with both ADN and SDN. The differences lie in the amount of disruption the implementation might cause.

An ADN is normally deployed in the data center between the end-user (client) and hosted services. It sits in a strategic point of control and acts as a proxy; it is the end-point for the client and the source for the service. This enables an ADN to perform a wide variety of actions on the traffic as it flows through the system, including modification and dynamically re-directing it to appropriate services. The traffic, however, never leaves the ADN - it traverses an internal "network" from the data plane up to the control plane and back when there is a need or desire to manipulate the traffic. An SDN, by comparison, requires significant re-architecting of the network to implement and the addition of separate controllers (and the systems required to scale the controllers) as well as ensuring appropriately enabled network infrastructure throughout the network.

Organizations seeking the flexibility and programmability of SDN likely already have the capability to employ such benefits today, with an ADN without the disruption required to implement a new networking model.


 F5 Networksclip_image003[5]clip_image004[5]clip_image006[5]clip_image007[5]clip_image008[5]

Read the original blog entry...

More Stories By Lori MacVittie

Lori MacVittie is responsible for education and evangelism of application services available across F5’s entire product suite. Her role includes authorship of technical materials and participation in a number of community-based forums and industry standards organizations, among other efforts. MacVittie has extensive programming experience as an application architect, as well as network and systems development and administration expertise. Prior to joining F5, MacVittie was an award-winning Senior Technology Editor at Network Computing Magazine, where she conducted product research and evaluation focused on integration with application and network architectures, and authored articles on a variety of topics aimed at IT professionals. Her most recent area of focus included SOA-related products and architectures. She holds a B.S. in Information and Computing Science from the University of Wisconsin at Green Bay, and an M.S. in Computer Science from Nova Southeastern University.