Simplified Network

Building efficient, intelligent, and open 5G Cloud & Network

Flexible and Intelligent Navigation Cloud Network

The cloud networking platform provides software-defined networking controllers ZENIC vDC controllers, high-performance virtual bridges DVS, converged elastic networking services iENS family of products, where the iENS includes software gateway iENS GW, software load balancer iENS LB, and software firewall iENS FW.

The ZENIC vDC controller is a carrier class cluster controller product developed by ZTE for the cloud data center. It is designed for the application scenarios of the telecom cloud (NFVI), private cloud, public cloud and hybrid cloud. It works with the service orchestrator and cloud platform to provide end-to-end virtualized network solution. The ZENIC vDC controller is northbound to the VIM/Openstack cloud platform, accepts the invocation of the cloud platform, and converts the network service requirements into the forwarding plane model. Through the management and control of routers, switches, vSwitch, smart NICs, NEO card and firewalls, the ZENIC vDC controller provides automatic end-to-end distribution of network services, so that the network can be linked with the cloud. The ZENIC vDC controller provides three-system cluster to prevent single-point failure and dual-system split-brain. The controller cluster and the forwarding device are decoupled strictly. The failure of the controller cluster does not affect the operation of the forwarding plane. The controller provides a variety of intelligent fault location and analysis functions to improve the operation and maintenance efficiency and ensure the high sustainability of services.

High-performance virtual network bridge DVS, a high-performance carrier-class virtual network switch launched by ZTE, provides access capability to the virtualized server. Based on the open source OVS architecture and DPDK technology, telecom-related customized requirements are realized, and the high performance layer-2/layer-3 network functions are finally provided. It can serve as VTEP, supports SDN, has high interoperability and can be interconnected with third-party SDN controller. It supports application scenarios that require live migration, has software flexibility, and facilitates subsequent evolution.

The Virtual Edge Gateway iENS GW is a flexible and elastic software gateway developed by ZTE. It provides border gateway services in the form of VMs on the cloud platform, and implements L2 and L3 forwarding capabilities of the data center. The can be deployed on a general server without special dependence on hardware, and can be flexibly expanded or reduced as required. It can serve as SDN GW to provide public network services and access public network for the cloud. Based on the software gateway and iENS series products, ZTE provides a pure software networking solution to decouple software from hardware for the private cloud.

The software load balancer iENS LB is deployed on the cloud platform as a VM, and balances traffic distribution and scheduling among multiple cloud servers to improve the reliability and throughput of the application system. LB provides the traditional layer-4-oriented load balancing service and layer-7-oriented application load balancing service. Software deployment in forms can effectively reduce costs, and flexible features can rapidly adapt to increasingly fast changing service requirements, reduce hardware dependency, and provide flexible capacity expansion and reduction capabilities.

The software firewall iENS FW abstracts and virtualizes firewall resources, provides VPC security protection, VPC security isolation, and EIP, and provides network security guarantee for data centers.

Products Advantages

Super-Large-Scale Network Architecture
Super Data Center Network
Cluster supports 2K-8K VTEP
16M tenants/networks

Various Networking Forms

On-demand selection of multiple physical network architectures and overlay solutions
Network devices are configured as required.
Flexible interconnection with third-party products

High Availability/Flexible Scale-In/Scale-Out

Cluster-Based Multi-Node Architecture
Node fault recovery within seconds
Flexible Scale-In/Scale-Out in Software Deployment

Major Function

  • ZENIC vDC Controller

    1. All-Programmable Architecture

    The kernel of the ZENIC vDC controller is based on the unified platform of ZTE, and can dynamically load and unload components, and can be programmed at the local API and northbound interface levels.

    2. Distributed Controller Cluster

    The ZENIC vDC controller supports a distributed controller cluster, which consists of at least three controller nodes and provides a high availability of the control plane. The controller cluster scale depends on the specific network requirements.

    3. Dynamic Orchestration of Distributed + Centralized Routes

    The ZENIC vDC controller supports distributed route. The eastbound and westbound layer-3 traffic can be forwarded only through the VTEP without passing through the GW. This avoids alternative routes of large data traffic and reduces the network communication load. The ZENIC vDC controller supports route suppression for specific traffic at the same time. The traffic is specified to traverse the GW, reducing the number of routing entries on the VTEP and greatly improving the network bearing capability for small traffic and multi-service traffic. The above two capabilities can be dynamically orchestrated and combined to meet the forwarding requirements of different types of traffic and improve the large-scale networking capability of the system.

    4. Abundant  Built-In O&M Functions

    The ZENIC vDC controller has built-in topology visualization, alarm, end-to-end fault diagnosis, protocol tracing, data audit, configuration reconciliation, periodical preventive maintenance and repair functions for administrators to manage network status and locate faults.

    5. Hierarchical Disaster Recovery Function

    ZENIC vDC controller supports three nodes of local cluster protection, local and remote data backup/restoration, cross-DC dual-cluster disaster recovery and switchover to deal with faults and disasters in different scopes and degrees and guarantee the reliable operation of services.

  • High-Performance Virtual Bridge DVS

    1. VLAN/VxLAN Isolation

    Data streams are isolated. Different data streams do not affect each other, and broadcast domains are also separated to shield broadcast storms.

    2. Distributed Routing

    In the server, the distributed route implements L3 route forwarding through OVS, so as to avoid centralized route forwarding to the gateway node and implement load sharing of data flow.

    3. Upgrade Without Link Disconnection

    The ZXVMAX-R system is the first non-chain upgrade in the telecommunications industry to ensure that services are not interrupted during the upgrade process and provide highly reliable services.

  • iENS GW

    1. Dynamic Routing

    Flexibly adapts to different network topologies.

    2. BFD

    Static routes can be monitored to ensure that network faults can be switched over in a timely manner.

    3. VPC Interworking

    Provides L3 network interconnection for different tenants.

  • iENS LB

    1. Load Balancing

    The user can flexibly configure the L4 and L7 services as required, or deploy the services separately if they are co-located.

    2. Multiple Load Balancing Algorithms
    It supports multiple load balancing algorithms such as round-robin, minimum number of connections, source ip hash, source ip hash and source port hash, and the user selects as required.

    3. Session Hold
    During a session lifecycle, requests from the same client are forwarded to the same back-end cloud host to improve service performance.

  • iENS FW

    1. VPC Security Protection

    The iENS FW supports traffic isolation in the north and south directions, and ensures the security of the virtual data center by setting the access control policy of the iENS FW.

    2. VPC Security Isolation

    Different VMs in the same cloud network can be isolated through the iENS FW service in the cloud network.

    3. EIP

    EIP refers to binding the elastic IP address to the associated service in the subnet based on the static IP address on the Internet. Internet users can access services in the cloud by providing fixed public IP addresses.

    In addition, after an EIP is bound to the cloud platform, a QoS bandwidth limit template is bound by default. The maximum rate of the EIP can be specified in accordance with the maximum bandwidth set in the template.