Software-Defined Networking — Technology Wiki

Overview

Direct Answer

Software-Defined Networking (SDN) is an architecture that decouples network control logic from underlying data forwarding hardware, enabling centralised management through software controllers. This separation allows dynamic reconfiguration of network behaviour independent of physical infrastructure.

How It Works

SDN uses a control plane (software controller) communicating with a data plane (network switches and devices) via standardised protocols, typically OpenFlow. The controller maintains a global view of the network topology and issues forwarding rules to switches, which then execute packet routing and handling decisions without local intelligence.

Why It Matters

Organisations benefit from reduced capital expenditure by commoditising switching hardware, improved network agility through programmatic policy changes, and simplified multi-tenant isolation in cloud environments. Rapid provisioning and dynamic traffic engineering address the limitations of traditional distributed routing protocols.

Common Applications

SDN deployment is prevalent in data centre networking for VM mobility and load balancing, wide-area network optimisation across enterprise branch offices, and network virtualisation in cloud computing platforms. Telecommunications providers utilise SDN for service chaining and mobile network slicing.

Key Considerations

Controller reliability becomes a single point of failure requiring redundancy; latency-sensitive applications may suffer if centralised control decisions introduce delays. Security models must account for controller compromise and the extended attack surface created by management interfaces.

Related in Protocols & Standards

Computer Network

A collection of interconnected computing devices that share resources and communicate using standardised protocols.

TCP/IP

Transmission Control Protocol/Internet Protocol — the fundamental communication protocol suite powering the internet.

HTTP

Hypertext Transfer Protocol — the application-layer protocol for transmitting hypermedia documents on the World Wide Web.

HTTPS

HTTP Secure — an encrypted version of HTTP using TLS for secure communication over the internet.

DNS

Domain Name System — the hierarchical system that translates human-readable domain names into numerical IP addresses.

IP Address

A unique numerical label assigned to each device connected to a computer network for identification and routing.

IPv6

The most recent version of the Internet Protocol, providing a vastly larger address space than IPv4.

Subnet

A logical subdivision of an IP network that improves security and performance by segmenting traffic.

Wi-Fi 6

The sixth generation of Wi-Fi technology offering improved speed, capacity, and performance in dense environments.

Network Latency

The time delay between sending and receiving data across a network, measured in milliseconds.

Bandwidth

The maximum rate of data transfer across a network path, typically measured in bits per second.

Throughput

The actual rate of successful data transfer across a network in a given time period.

More in Networking & Communications

Network Function Virtualisation

Cloud Networking

Replacing dedicated network hardware with software running on commodity servers.

Network Monitoring

Protocols & Standards

The practice of continuously observing a computer network for slow or failing components.

SD-WAN

Infrastructure

Software-Defined Wide Area Network — a virtualised network architecture that enables centralised management of geographically distributed networks.

Mesh Network

Protocols & Standards

A network topology where each node relays data for the network, providing self-healing and redundant paths.

Reverse Proxy

Infrastructure

A server that sits in front of web servers and forwards client requests to the appropriate backend server.

mTLS

Protocols & Standards

Mutual Transport Layer Security — a protocol where both client and server authenticate each other using certificates.

VLAN

Infrastructure

Virtual Local Area Network — a logical grouping of network devices that communicate as if on the same physical network.

VPN

Infrastructure

Virtual Private Network — a technology creating a secure, encrypted connection over a less secure network like the internet.