Definition

What is a northbound interface/southbound interface?

By

A northbound interface (NBI) is an application programming interface (API) or protocol that allows a lower-level network component to communicate with a higher-level or more central component; conversely, a southbound interface (SBI) allows a higher-level component to send commands to lower-level network components. Northbound and southbound interfaces are most associated with software-defined networking (SDN), but can also be used in any system that uses a hub-and-spoke -- also called star -- or controller-and-nodes architecture.

Diagram comparing traditional networks and SDN. — Software-defined networking simplifies network design and management compared with traditional hardware-oriented networks.

Northbound interface and southbound interface in simple terms

In the context of networking, north and south can be thought of as directions on a map. The north is on the top and south on the bottom of the diagram. Using these cardinal directions helps to visualize internal network communications and how control moves from the top, or north, to the bottom, or south, of a network.

All networks consist of both higher-level elements and lower-level elements. Examples of the former include tools for network automation, network orchestration, administration consoles, network analytics and other management systems. Examples of lower-level elements include switches and routers.

The higher-level elements control the lower-level ones. At the same time, the network's lower-level components need to communicate with its higher-level components using APIs.

Some network designs also have east-west interfaces for communication among peers, also called peer-to-peer communication. These interfaces facilitate communication between the components -- servers, for example -- within the same data center or cloud environment.

What is northbound and southbound traffic in networking?

It is easy to confuse northbound/southbound interface with northbound/southbound data flow or traffic. The interface -- northbound or southbound -- defines the sender, receiver and data format; it expresses the conceptual level of communication and covers the entire bidirectional API.

Conversely, if data or traffic is said to be northbound, southbound or east-west, that merely describes whether it is going toward or away from the network core. It is therefore possible to say that a southbound command went from the core to a node over the northbound interface.

Simply put, north-south traffic refers to traffic coming in and going out of the internal network. For example, data traveling between a network server and an external client over the internet is north-south traffic. In contrast, east-west traffic is the internal traffic moving between devices within a network.

It's important to understand the flows of both north-south and east-west traffic for security reasons. The more north-south traffic there is in a network, the greater the chances of a cyberattack originating from outside that network. Ransomware attacks and data breaches often occur when there are inadequate security controls to manage and control north-south traffic because these attacks typically originate from outside the network.

Benefits of northbound and southbound interfaces

Northbound interfaces abstract the inherent complexities of networks, thus simplifying network management. Also, they provide enhanced flexibility and programmability in system configurations, making them essential for efficiently deploying and integrating the various applications and services in the network.

Other benefits of NBIs include the following:

Centralized network management and control.
Efficient resource allocation.
Faster application and service deployment.
Easier application customization.
Real-time monitoring of network infrastructure.
Network automation and orchestration.

Northbound interfaces help improve network efficiency, flexibility and agility. By reducing unnecessary complexity, they can also reduce the network's operational expenses and improve its return on investment.

Southbound interfaces, on the other hand, play a crucial role in policy implementation. They are also useful for creating actionable and feasible configurations for network devices. Without them, it can be difficult to translate the high-level commands from network management systems into practical configurations. SBIs can also help to improve network control and management.

Northbound and southbound interfaces in software-defined networking

In SDN and virtualized networks, the network logical design and data flows are set by software configurations instead of through hardware or physical cabling changes. SDN helps IT administrators to set up highly flexible network infrastructure, which in turn enables organizations to quickly adapt to evolving business requirements. The configuration of the elements is set by the SDN controller, which sits in the control layer at the center of the network diagram, with north and south established in relation to it.

It is important to note that in SDN, the northbound and southbound interfaces are for networking control commands and APIs. The data or traffic carried by the network stays on the data layer and does not traverse the northbound and southbound interfaces.

Northbound interface in SDN

The northbound interface in SDN provides a standardized approach for communication between the highest application layer and the SDN controller at the middle control layer. It thus enables the efficient exchange of network information between the SDN controller and high-level applications. The application layer consists of network orchestration services, networking design software, operator software or third-party applications that make decisions about the overall structure of the network.

Diagram of how APIs and protocols work with SDN and SD-WAN. — Northbound and southbound APIs link network applications and devices to the SDN controller.

In SDN, the operator or orchestration software does not directly issue commands or configurations to the network nodes. Instead, the operator uses the application layer to issue commands to the control layer over the northbound interface.

The northbound interface is often a representational state transfer API, or REST API, exposed by the SDN controller. Various SDN controllers provide northbound interfaces to enable easy software-defined network management and control. These include the OpenDaylight platform, Open Networking Operating System and Cisco Application Policy Infrastructure Controller.

Southbound interface in SDN

The southbound interface in SDN is the communication between the SDN controller at the middle control layer and the lower networking elements at the data layer. The data layer consists of the physical or virtual network switches and ports.

The SDN controller takes the desired state of the network and translates it into specific commands and configurations that are then pushed to the network devices over the southbound interface. SBIs enable the controller to operate efficiently and to make fast adjustments in response to real-time business requirements.

Popular southbound interface standards are Simple Network Management Protocol, OpenFlow and Open Shortest Path First. Other protocols available for southbound APIs include Network Configuration Protocol, Multiprotocol Label Switching and Intermediate System to Intermediate System.

Examples of northbound and southbound interfaces

An example of how the northbound and southbound interfaces are used is a network engineer defining a specific data route with network orchestration software. The orchestration software sends the instructions to the SDN controller over the northbound interface. The SDN controller then sends the specific configurations to the physical switches over the southbound interface.

A more detailed example is Microsoft Azure software load balancing. The network controller is at the center layer and runs the software load balancer (SLB). The network operator sits at the application layer and uses Windows Admin Center to set the desired state. Windows Admin Center uses PowerShell as the northbound interface to send the commands to the SLB. The SLB then sends Border Gateway Protocol (BGP) updates as the southbound interface to the virtual routers on the data layer. If the SLB finds an error in a router, it can automatically send the new configurations to the other routers through the southbound interface BGP, and then send a notification through the northbound interface to alert the operator of the issue.

Northbound and southbound interfaces in other systems

The concept of northbound and southbound interfaces can also be used in systems with automated control systems and nodes. It can be used when components communicate with different APIs or where an orchestrator is used. The use of separate interfaces contrasts with using a bus architecture.

In a software-defined network, the data center controllers are essential components. When evaluating controller options, consider factors such as performance and compatibility. Learn what SDN data center controllers do in a network.

This was last updated in April 2025

Continue Reading About What is a northbound interface/southbound interface?

Important components of SDN controllers

The role of network virtualization and SDN in data centers

Network diagramming tools for architects

Self-healing networks: The next evolution in network management

Best practices for data center network optimization

Search Networking

What is dynamic and static?
In general, dynamic means 'energetic or forceful,' while static means 'stationary.'
What is open networking?
Open networking describes a network that uses open standards and commodity hardware.
What is Border Gateway Protocol (BGP)?
BGP (Border Gateway Protocol) is the protocol that enables the internet's global routing system.

Search Security

What is a brute-force attack?
A brute-force attack is a trial-and-error hacking method cybercriminals use to decode login information and encryption keys to ...
What is Pretty Good Privacy and how does it work?
Pretty Good Privacy, or PGP, was a popular program used to encrypt and decrypt email over the internet, as well as authenticate ...
What is cloud security?
Cloud security, or cloud computing security, is a set of policies, practices and controls deployed to protect cloud-based data, ...

Search CIO

What is quantum machine learning? How it works
Quantum machine learning (QML), also called quantum-enhanced machine learning, blends the computing power of quantum systems with...
What are quantum coherence and decoherence?
Quantum coherence and decoherence are fundamental indications of how well a system of quantum objects -- atoms or other quantum ...
What is a SWOT analysis? Definition, examples and how to
SWOT analysis is a framework for identifying and analyzing an organization's strengths, weaknesses, opportunities and threats.

Search HRSoftware

What is talent management? Definition, basics and strategy
Talent management is a strategic approach organizations use to attract, develop, retain, and optimize employees.
What is employee experience?
Employee experience is a worker's perception of the organization they work for during their tenure.
What are performance appraisals? A how-to guide for managers
A performance appraisal is the structured practice of regularly reviewing an employee's job performance.

Search Customer Experience

What are customer service and support?
Customer service is the support organizations offer to customers before, during and after purchasing a product or service.
What is quality of experience (QoE or QoX)?
Quality of experience (QoE or QoX) is a measure of the overall level of a customer's satisfaction and experience with a product ...
What is voice of the customer? A guide to VOC Strategy
Voice of the customer (VOC) is the component of customer experience (CX) that focuses on customer needs, wants, expectations and ...

Close