Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

Contrail Service Orchestration Overview

 

Juniper Networks Contrail SD-WAN, SD-LAN, and NGFW management solutions offer automated branch connectivity while improving network service delivery and agility. CSO is a multi-tenant platform that manages physical and virtual network devices, creates and manages Juniper Networks and third-party virtualized network functions (VNFs), and uses those elements to deploy network solutions for both enterprises and service providers (SPs) and their customers. CSO multi-tenancy provides security and tenant isolation that keeps the objects and users belonging to one tenant or operating company (OpCo) from seeing or interacting with those of another tenant or OpCo.

The CSO can be deployed in one of two ways:

  • As a downloadable, on-premise platform in which you (or your company) become the SP administrator (cspadmin user). In an on-premise deployment, the cspadmin user has complete read-write management access and responsibility for the CSO micro-services platforms, orchestration and management infrastructure, and all underlay networks needed to allow access to CSO and its solutions. All CSO releases are delivered in signed packages that contain digital signatures to ensure official Juniper Networks software.

  • As a software as a service (SaaS) platform, hosted in a public cloud, to which tenants and OpCos subscribe. In an SaaS deployment, Juniper Networks manages the necessary micro-services infrastructure, the secure orchestration and management (OAM) infrastructure, and underlay networks needed to allow access to CSO and its solutions.

This guide provides information about installing the Contrail Service Orchestration (CSO) Release 5.1 on-premise solution.

CSO offers following solutions:

  • Contrail SD-WAN Solution—The Contrail SD-WAN solution offers a flexible and automated way to route traffic through the cloud using overlay networks.

  • Contrail Managed LAN Solution (SD-LAN)—The Managed LAN solution allows CSO to manage and monitor remote LAN devices like certain EX Series LAN switches, Mist WiFi access points, and certain SRX Series next generation firewall (NGFW) devices.

  • Hybrid WAN (Distributed CPE) Deployment Model—In a Hybrid WAN deployment, customers access network services from a CPE device, located at the customer’s site.

This guide provides information about installing the Contrail Service Orchestration (CSO) Release 5.1 on-premise solution.

The following CSO components connect to Network Service Orchestrator through its RESTful API:

  • Administration Portal—GUI to manage resources, customers, and availability of network services. It uses the RESTful APIs of other Contrail Service Orchestration components.

  • Customer Portal—GUI to manage sites, customer premises equipment (CPE) devices, and network services for organizations.

The portals offer role-based access control (RBAC) for administrators and operators.

Note

CSO Release 5.1.0 only supports KVM hypervisor whereas CSO 5.1.1 supports KVM as well ESXi 6.7 hypervisors.

Note

The upgrade procedure for CSO Release 4.1.x to 5.1.0 is not supported.

Figure 1: HA Deployment Topology
HA Deployment
Topology

For detailed information on configuring Contrail Service Orchestration, see Contrail Service Orchestration (CSO) Deployment Guide.