SEL-5056 Software-Defined Network (SDN) Flow Controller

Similar documents
SEL-2740S Software-Defined Network (SDN) Switch

Cybersecurity was nonexistent for most network data exchanges until around 1994.

Designed, built, and tested for troublefree operation in extreme conditions

Software-Defined Networking (SDN) Now for Operational Technology (OT) Networks SEL 2017

ticrypt DEPLOYMENT OVERVIEW AND TIMELINE Information about hardware, deployment, and on-boarding

OTSDN What is it? Does it help?

Getting Started With the SEL-3505/SEL

What Is New in VMware vcenter Server 4 W H I T E P A P E R

McAfee Security Management Center

NETSMART Network Management Solutions

Get Started with Cisco DNA Center

Alcatel-Lucent OmniVista Cirrus Simple, secure cloud-based network management as a service

Huawei Agile Controller. Agile Controller 1

Polycom RealPresence Access Director System

Cisco ISR G2 Management Overview

SEL-2730M. Reliably Control and Monitor Your Substation and Plant Networks. Managed 24-Port Ethernet Switch

VMWARE VSPHERE FEATURE COMPARISON

ORACLE FABRIC MANAGER

From Zero Touch Provisioning to Secure Business Intent

Cisco Extensible Network Controller

Vendor: Cisco. Exam Code: Exam Name: Developing with Cisco Network Programmability (NPDEV) Version: Demo

vsphere Installation and Setup Update 2 Modified on 10 JULY 2018 VMware vsphere 6.5 VMware ESXi 6.5 vcenter Server 6.5

What s New in Release 9.2 Martin Adamčík

Intermedia. CX-E Cloud Hosting Provider. Introduction. Why Intermedia for CX-E Cloud? Cost of Ownership

Cisco Wide Area Application Services: Secure, Scalable, and Simple Central Management

SOLUTION BRIEF NETWORK OPERATIONS AND ANALYTICS. How Can I Predict Network Behavior to Provide for an Exceptional Customer Experience?

Dolby Conference Phone 3.1 configuration guide for West

HP E-PCM Plus Network Management Software Series Overview

Moxa White Paper. Requirements for Ethernet Networks in Substation Automation. Certification and Hardware Requirements. Alvis Chen

Virtualized Network Services SDN solution for service providers

Corente Cloud Services Exchange

What s in Installing and Configuring Windows Server 2012 (70-410):

WHITE PAPER SEPTEMBER VMWARE vsphere AND vsphere WITH OPERATIONS MANAGEMENT. Licensing, Pricing and Packaging

Huawei Agile Controller. Agile Controller

ARUBA AIRWAVE. Management and monitoring for multi-vendor campus networks DATA SHEET CONNECTIVITY ANALYTICS REAL-TIME MONITORING AND VISIBILITY RAPIDS

Cisco Data Center Network Manager 5.1

UNIFIED MANAGEMENT OF CONVERGED VOICE, DATA, AND VIDEO TECHNOLOGIES WITH AUTOMATED SUBSCRIBER AND SERVICE PROVISIONING

Network. Arcstar Universal One

TrustNet Manager Group Encryption Management for Policies, Keys and Devices

vcenter Server Installation and Setup Update 1 Modified on 30 OCT 2018 VMware vsphere 6.7 vcenter Server 6.7

IntellaFlex Packet Aggregation Switching Solutions

Cisco Prime Data Center Network Manager 6.2

Security in Bomgar Remote Support

Cisco Nexus Data Broker for Network Traffic Monitoring and Visibility

Cisco Tetration Analytics

Cisco Virtual Networking Solution for OpenStack

Cisco Network Admission Control (NAC) Solution

ARUBA AIRWAVE. Visibility and management for multi-vendor access networks DATA SHEET REAL-TIME MONITORING AND VISIBILITY

Alcatel-Lucent OmniVista Cirrus Simple, secure cloud-based network management as a service

MyCloud Computing Business computing in the cloud, ready to go in minutes

MP8000 SOFTWARE Instruction Manual

ONOS OVERVIEW. Architecture, Abstractions & Application

INTELLAFLEX. Packet Aggregation Switching Solutions

Integrated DHCP, DNS & IP Address Management

SteelConnect. The Future of Networking is here. It s Application- Defined for the Cloud Era. SD-WAN Cloud Networks Branch LAN/WLAN

DELL EMC VSCALE FABRIC

Using Defense in Depth to Safely Present SCADA Data for Read-Only and Corporate Reporting. Rick Bryson

Network Behavior Analysis

Quobyte The Data Center File System QUOBYTE INC.

1 Mojo S-2000 Series Managed PoE Switches

Introduction and Datacenter Topology For Your System

Upgrading From a Successful Emergency Control System to a Complete WAMPAC System for Georgian State Energy System

IP SLAs Overview. Finding Feature Information. Information About IP SLAs. IP SLAs Technology Overview

Enterasys K-Series. Benefits. Product Overview. There is nothing more important than our customers. DATASHEET. Operational Efficiency.

McAfee Network Security Platform 8.3

VMware Identity Manager Connector Installation and Configuration (Legacy Mode)

PCI DSS Compliance. White Paper Parallels Remote Application Server

Authenticate and encrypt all serial data communications to protect critical assets

Alliance Key Manager A Solution Brief for Technical Implementers

LANCOM Management Cloud

HP Network Node Manager 9: Getting Started. Manage your network effectively with NNMi. Marius Vilemaitis. J enterprise PUBLISHING MUMBAI BIRMINGHAM

WELCOME TO THE NEW HYPER-INTEGRATED NETWORK MANAGEMENT

T22 - Industrial Control System Security

SEL Real-Time Automation Controller (RTAC)

SHA-1 to SHA-2. Migration Guide

Intel Active Management Technology Overview

Understanding the ACS Server Deployment

McAfee Network Security Platform 8.1

Deploying VMware Identity Manager in the DMZ. JULY 2018 VMware Identity Manager 3.2

ADTRAN ADVANCED OPERATIONAL ENVIRONMENT (AOE)

Forescout. Quick Installation Guide. Single Appliance. Version 8.1

WIND RIVER TITANIUM CLOUD FOR TELECOMMUNICATIONS

Ethernet Network Redundancy in SCADA and real-time Automation Platforms.

Cisco Meeting Management

Access Director System Getting Started Guide

Workshare Protect Server 3.9 on Microsoft Azure. Admin Guide

1756-EN2TP Parallel Redundancy Protocol Module Network Redundancy

Polycom RealPresence Access Director System

Polycom RealPresence Access Director System

NGFW Security Management Center

Cloud Services. Introduction

CONTENTS. 1. Introduction. 2. How To Store Data. 3. How To Access Data. 4. Manage Data Storage. 5. Benefits Of SAN. 6. Conclusion

Cisco Wireless Control System Navigator

SolarWinds Orion Platform Scalability

TOLLY. No March Fortress Technologies, Inc.

Security and Compliance

Advanced iscsi Management April, 2008

Network Service Description

Enterprise-class Wireless LAN Controller supporting more than 1000 APs

SkyLIGHT Director TM

Transcription:

SEL-5056 Software-Defined Network (SDN) Flow Controller SDN Configuration, Orchestration, and Monitoring Software Major Features and Benefits The SEL-5056 SDN Flow Controller is enterprise software based on Microsoft Windows Server and designed to optimize SDN configuration and management for critical infrastructure. The SEL-5056 is designed to work collectively with the SEL-2740S SDN Switch to provide a complete traffic-engineering solution for Ethernet-based local-area networks (LANs). Traffic engineering with the SEL-5056 enables flexible configuration of each communications flow path and the ability to proactively engineer fault-tolerant networks, resulting in greater performance, improved reliability, and more deterministic packet delivery. Automatic Topology Discovery. Enables touchless commissioning and discovery of network appliances and hosts on the network through use of the SEL-2740S. Circuit Orchestration. Provides circuit provisioning through simply selecting the source and destination, as well as automated flow configuration and redundancy path planning. Simple Licensing. Allows selection from two volume tiers with a one-time licensing fee and an optional version assurance program. Ease of Use. Simplifies complex settings by using an application-focused design to construct each network according to the applications running on the network. Holistic Network Visibility. Allows viewing and management of network appliances as a single asset. Automated network topology discovery allows for near real-time situational awareness. Low-Latency Flow Setup. Establishes new flows fast with low-latency flow setup times. Syslog. Performs log management through syslog for centrally automated collection and redundancy. Scalable Network Deployments. Manages small or large networks with a single SEL-5056 installation. Secure Configuration. Provides situational awareness and strong cybersecurity through user-based access controls, encrypted communication, and detailed audit logging. Simple Flow Programming. Proactive flow configuration through logical connection management by simply defining the source and destination(s) for the communication service type.

2 X.509 Certificate. Supports secure, mutually authenticated communication between the switch and the flow controller, and manages keys through X.509 certificates. Central Authentication. Uses Lightweight Directory Access Protocol (LDAP) to centrally manage and authenticate authorized users. Backup and Restore. Generate backup images for incident recovery and quickly restore the system. Functional Overview The SEL-5056 is the central interface for the commissioning, configuration, and monitoring of all SEL SDNenabled network appliances. An SDN is a network architecture that centralizes packet-forwarding control configuration into a central software application. This centralization of control enables all LANs to be managed as a single asset, simplifying deployment, scalability, and operational tasks, all while improving performance. The SEL-5056 is a standards-based flow controller, compatible with OpenFlow 1.3, designed to optimize the specific tasks of control systems for proactive traffic engineering of high-reliability networks. With the SEL-5056, users can design a deny-by-default network, while considering fault tolerance, by instructing each network appliance how to forward packets and how to respond to a network fault. Figure 1 SEL-5056 Dashboard Licensing The SEL-5056 has a simple, one-time licensing fee structure and an optional version assurance program. Choose from two volume-based tiers. Figure 2 SEL-5056 Licensing Page

3 Topology Hypertext Transfer Protocol Secure (HTTPS) provides encryption and authentication for secure management of SEL-5056 web browser communication. SEL-5056 communication to all SEL-2740S Switches occurs through encrypted and authenticated Transport Layer Security (TLS) communication. Touchless topology management and switch discovery ease commissioning and deployment efforts. Touchless node discovery enables new switches and hosts to be discovered and shown in the graphic display before they are added to the inventory, enabled to communicate with the SEL-5056, and prepared for configuration. Figure 3 SEL-5056 Topology View Management The SEL-5056 centrally manages an entire network as a single asset, controlling the access of traffic flows to the network and determining the path each flow takes. The SEL-5056 improves network performance by using predetermined failover conditions and eliminating the need for dynamic convergence protocols such as Rapid Spanning Tree Protocol (RSTP). The southbound interface is a standards-based OpenFlow 1.3 interface. Figure 4 Example Primary Logical Flow and Corresponding Physical Path

4 The SEL-5056 provides a system-wide change management capability so users can plan changes without interrupting service. The software is designed with a cybersecurity focus. The controller has a whitelisting architecture and deny-by-default network management at each hop. Near real-time operational diagnostics collected from all network assets provide superior situational awareness and detailed audit logging of users. Access control to change management is user-based and centrally controlled and logged. Applications The SEL-5056 is ideally suited for the commissioning, configuration, and management of an SDN for a substation LAN. Traffic Engineering The SEL-5056, coupled with the SEL-2740S, provides touchless device discovery and topology management. The SEL-5056 can discover network topologies, track host locations, and obtain a user interface from which to configure communications flows end-to-end while enabling system-wide visualization of each flow path. The flow controller binds securely to switches and facilitates the easy discovery and addition of new switches to the inventory. Automatic discovery does not impede operational data flows, thus enabling network scalability without interruption. Upon the addition of a switch to the inventory, the SEL-5056 begins the passive automatic discovery of hosts on the network. Configuration of flows occurs either through the addition of host-based logical paths (focusing on end-device functionally), or by direct flow entry into the switch tables. This traffic engineering focuses on improving the ability to proactively design the network for any failure case. Logical flow path configuration allows users to select the end points for each flow, the match criteria, and the action set. This way, every forwarding hop that the packet traverses is automatically programmed. This removes the need to configure flows in each switch individually, and it eliminates many tedious configuration tasks. Traffic engineering is made simple through the use of aliases for any host, port, link, flow, meter, or group. This allows the engineer to reference friendly names rather than identifier numbers. Counters are also referenced by these aliases, simplifying troubleshooting. Figure 5 Configured Network Diagram The SEL-5056 provides a global view of the entire network, showing the communications health and diagnostics information for each flow, and enabling system operators to understand what is happening on the communications infrastructure. The SEL-5056 also provides device views of the network so that the configuration of each individual network appliance and the configuration of all allowed host traffic can be centrally controlled and monitored.

5 Central Management and Monitoring The SEL-5056 manages and monitors all field networks as a single asset. The SEL-2740S works with the SEL-5056 to provide communications flow configuration and monitoring capabilities. This allows operators to monitor all flows and their attributes from a central location. No engineering access interface is necessary on the SEL-2740S. Everything is conveniently and centrally managed by the SEL-5056, greatly simplifying field deployment. In addition, the SEL-5056 provides backup and restore features for maintaining high reliability. Operators can take a snapshot of the system and use any backup as a restore point from the same version for recovery. Figure 6 SEL-5056 Software Banner Options and Requirements The SEL-5056 comes with two licensing options: Tier One a Two Maximum Number of Managed OpenFlow Switches 100 switches Unlimited a You can manage as many as four OpenFlow switches with an unlicensed SEL-5056. The SEL-5056 is the preferred OpenFlow controller for the SEL-2740S. All network configurations and settings are managed through the SEL-5056. The SEL-5056 is available for order either as a Windows application or preinstalled on an SEL-3355 Computer running Windows Server 2012 R2. Minimum System Requirements Operating system Windows Server 2012 R2 (64 bit) Hard disk drive 250 GB Processor speed 2.5 GHz RAM 8 GB Screen resolution a 1920 x 1080 Browser Google Chrome version 52 a Recommended. Software Requirements.NET 4.5 License SEL host-based licensing OpenSSL Version 1.0.2 WinPcap 4.1.3 Microsoft Visual C++ Redistributable Version 12.0.30501.0

6 Specifications Operating System Support Windows Server 2012 R2 Standard General Protocols OpenFlow 1.3 Transport Layer Security (TLS) Syslog Hypertext Transfer Protocol Secure (HTTPS) Secure REST Lightweight Directory Access Protocol (LDAP) Security X.509 certificate User-based accounts Monitoring Event collection, one switch per second

7 Notes

8 2016 2017 by All rights reserved. All brand or product names appearing in this document are the trademark or registered trademark of their respective holders. No SEL trademarks may be used without written permission. SEL products appearing in this document may be covered by U.S. and Foreign patents. reserves all rights and benefits afforded under federal and international copyright and patent laws in its products, including without limitation software, firmware, and documentation. The information in this document is provided for informational use only and is subject to change without notice. has approved only the English language document. 2350 NE Hopkins Court Pullman, WA 99163-5603 U.S.A. Tel: +1.509.332.1890 Fax: +1.509.332.7990 selinc.com info@selinc.com *PDS5056-01* Date Code 20171222

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback