Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

Introduction

 

Juniper Networks Contrail Service Orchestration (CSO) transforms traditional branch networks, offering opportunities for high flexibility of the network, rapid introduction of new services, automation of network administration, and cost savings. The solution supports both Juniper Networks and third-party virtualized network functions (VNFs) that network providers use to create network services.

CSO Release 4.1.0 is a secure software-defined WAN (SD-WAN) solution that builds on the existing capabilities of CSO and the Cloud CPE solution. The following are the highlights of the features available in Release 4.1.0:

  • Dynamic VPN

  • Breakout profiles

  • Gateway sites

  • Enhancements to PKI support

  • Support for low-bandwidth, high-latency links

  • Member-level Return Material Authorization (RMA)

CSO can be implemented by service providers to offer network services to their customers or by Enterprise IT departments in a campus and branch environment. In these release notes, service providers and Enterprise IT departments are called service providers, and the consumers of their services are called customers.

The solution offers the following deployment models:

  • Cloud CPE distributed deployment Model (distributed deployment)

    In the distributed deployment, customers access network services on a CPE device, located at a customer’s site. These sites are called on-premise sites in these release notes.

    Sites can be configured as one of the following types:

    • Hybrid WAN

    • SD-WAN

    In a distributed deployment:

    • Network Service Orchestrator, together with Network Service Controller, provides ETSI-compliant management of the life cycle of network service instances.

    • Network Service Controller provides the VIM.

    • The CPE device provides the NFV infrastructure.

  • Cloud CPE centralized deployment Model (centralized deployment)

    In a centralized deployment, customers access network services in a service provider’s cloud. Sites that access network services in this way are called cloud sites in these release notes.

    In this deployment, CSO uses the following components for the NFV environment:

    • Network Service Orchestrator provides ETSI-compliant management of the life cycle of network service instances.

    • Contrail Cloud Platform provides the underlying software-defined networking (SDN), NFV infrastructure (NFVI), and the virtualized infrastructure manager (VIM).

CSO can be deployed in three deployment types—small, medium, or large. Table 1 shows the number of sites and VNFs supported for each environment.

Table 1: Number of Sites and VNFs Supported

Deployment Type

Number of VNFs Supported for a Centralized Deployment

Number of Sites and VNFs Supported for a Distributed Deployment

Number of Sites Supported for a Hub and Spoke SD-WAN Deployment

 

Small

10 VNFs

Up to 500, 2 VNFs per site

Up to 500

Medium

100 VNFs, 20 VNFs per Contrail compute node

Up to 3500, 2 VNFs per site

Up to 3500

Large

500 VNFs, 20 VNFs per Contrail compute node

Up to 6000, 2 VNFs per site

Up to 6000

The following table provides the number of sites and tunnels supported by full-mesh deployments:

Table 2: Number of Sites, Tenants, and Tunnels Supported for a Full-Mesh SD-WAN Deployment

Description

Scale

Number of full-mesh DVPN tunnels supported per tenant

50000

Number of full-mesh DVPN tunnels supported across a CSO installation

125000

Number of full-mesh tenants qualified across a CSO installation

200 tenants with 10 sites per tenant

Number of full-mesh sites qualified for a given tenant

250 sites

Maximum number of events per second that can be processed by SD-WAN log processing

90000

Number of tunnels supported on NFX250

600 tunnels

Number of tunnels supported on SRX4100 and SRX 4200

1500 tunnels