Juniper Networks Contrail Service Orchestration (CSO) transforms traditional branch networks, offering opportunities for high flexibility of the network, rapid introduction of new services, automation of network administration, and cost savings. The solution supports both Juniper Networks and third-party virtualized network functions (VNFs) that network providers use to create network services.
CSO Release 4.1.0 is a secure software-defined WAN (SD-WAN) solution that builds on the existing capabilities of CSO and the Cloud CPE solution. The following are the highlights of the features available in Release 4.1.0:
Dynamic VPN
Breakout profiles
Gateway sites
Enhancements to PKI support
Support for low-bandwidth, high-latency links
Member-level Return Material Authorization (RMA)
CSO can be implemented by service providers to offer network services to their customers or by Enterprise IT departments in a campus and branch environment. In these release notes, service providers and Enterprise IT departments are called service providers, and the consumers of their services are called customers.
The solution offers the following deployment models:
Cloud CPE distributed deployment Model (distributed deployment)
In the distributed deployment, customers access network services on a CPE device, located at a customer’s site. These sites are called on-premise sites in these release notes.
Sites can be configured as one of the following types:
Hybrid WAN
SD-WAN
In a distributed deployment:
Network Service Orchestrator, together with Network Service Controller, provides ETSI-compliant management of the life cycle of network service instances.
Network Service Controller provides the VIM.
The CPE device provides the NFV infrastructure.
Cloud CPE centralized deployment Model (centralized deployment)
In a centralized deployment, customers access network services in a service provider’s cloud. Sites that access network services in this way are called cloud sites in these release notes.
In this deployment, CSO uses the following components for the NFV environment:
Network Service Orchestrator provides ETSI-compliant management of the life cycle of network service instances.
Contrail Cloud Platform provides the underlying software-defined networking (SDN), NFV infrastructure (NFVI), and the virtualized infrastructure manager (VIM).
CSO can be deployed in three deployment types—small, medium, or large. Table 1 shows the number of sites and VNFs supported for each environment.
Table 1: Number of Sites and VNFs Supported
Deployment Type | Number of VNFs Supported for a Centralized Deployment | Number of Sites and VNFs Supported for a Distributed Deployment | Number of Sites Supported for a Hub and Spoke SD-WAN Deployment |
|---|---|---|---|
Small | 10 VNFs | Up to 500, 2 VNFs per site | Up to 500 |
Medium | 100 VNFs, 20 VNFs per Contrail compute node | Up to 3500, 2 VNFs per site | Up to 3500 |
Large | 500 VNFs, 20 VNFs per Contrail compute node | Up to 6000, 2 VNFs per site | Up to 6000 |
The following table provides the number of sites and tunnels supported by full-mesh deployments:
Table 2: Number of Sites, Tenants, and Tunnels Supported for a Full-Mesh SD-WAN Deployment
Description | Scale |
|---|---|
Number of full-mesh DVPN tunnels supported per tenant | 50000 |
Number of full-mesh DVPN tunnels supported across a CSO installation | 125000 |
Number of full-mesh tenants qualified across a CSO installation | 200 tenants with 10 sites per tenant |
Number of full-mesh sites qualified for a given tenant | 250 sites |
Maximum number of events per second that can be processed by SD-WAN log processing | 90000 |
Number of tunnels supported on NFX250 | 600 tunnels |
Number of tunnels supported on SRX4100 and SRX 4200 | 1500 tunnels |