cloudstack networking
play

CloudStack Networking Paul Angus Cloud Architect ShapeBlue - PowerPoint PPT Presentation

Mar 04, 2023 •899 likes •1.25k views

CloudStack Networking Paul Angus Cloud Architect ShapeBlue paul.angus@shapeblue.com @CloudyAngus @ShapeBlue About Me Cloud Architect with ShapeBlue Worked with CloudStack since 2.2.13 Specialising in deployment of CloudStack and

  1. CloudStack Networking Paul Angus Cloud Architect ShapeBlue paul.angus@shapeblue.com @CloudyAngus @ShapeBlue

  2. About Me  Cloud Architect with ShapeBlue  Worked with CloudStack since 2.2.13  Specialising in deployment of CloudStack and supporting infrastructure  Orange, TomTom, PaddyPower, Ascenty, BSkyB, SunGard, T ‐ Mobile  I view CloudStack from a ‘What can cloud consumers practically do with it’ point ‐ of ‐ view @ShapeBlue #CloudStack #CCCNA14

  3. About ShapeBlue “ShapeBlue are expert builders of public & private clouds. They are the leading global CloudStack / CloudPlatform integrator & consultancy” @ShapeBlue #CloudStack #CCCNA14

  4. @ShapeBlue #CloudStack #CCCNA14

  5. Why NaaS – The Use Cases VPS Cloud NaaS @ShapeBlue #CloudStack #CCCNA14

  6. CloudStack Networking  Logical Networking Models  Basic  Advanced @ShapeBlue #CloudStack #CCCNA14

  7. Basic Networking  AWS Style L3 isolation – Massive Scale  Simple Flat Network  Each POD has a unique CIDR  Optional Guest Isolation via Security Groups  Optional NetScaler Integration ‐ Elastic IPs and Elastic LB  Optional Nicira NVP Integration @ShapeBlue #CloudStack #CCCNA14

  8. Security Groups  Isolate traffic between VMs  Available for both Basic and Advanced Networking  XenServer must use Linux Bridge and not Open vSwitch  xe ‐ switch ‐ network ‐ backend bridge  Edit sysctl to enable net.bridge.bridge ‐ nf ‐ call ‐ iptables and net.bridge.bridge ‐ nf ‐ call ‐ arptables  Must be implemented before adding to CloudStack @ShapeBlue #CloudStack #CCCNA14

  9. Security Groups  Rules can be mapped to CIDR or another Account/Security Group @ShapeBlue #CloudStack #CCCNA14

  10. Advanced Networking  This network model provides the most flexibility in defining guest networks and providing custom network offerings such as firewall, VPN, Load Balancer & VPC functionality.  Guest isolation is provided through layer ‐ 2 means such as VLANs or SDN technologies @ShapeBlue #CloudStack #CCCNA14

  11. Advanced Networking  Private and Shared Guest Networks  Multiple Physical Networks  Virtual Router for each Network providing:  DNS & DHCP  Firewall  Client VPN  Load Balancing  Source / Static NAT  Port Forwarding @ShapeBlue #CloudStack #CCCNA14

  12. Advanced Networking & Security Groups  Effectively enables the deployment of multiple ‘Basic’ style networks which use Security Groups for isolation of VMs, but with each Network encapsulated within a unique VLAN. @ShapeBlue #CloudStack #CCCNA14

  13. Management Network Traffic between CloudStack Management Servers and the various cloud components (Hosts, System VMs, Storage*, vCenter etc) @ShapeBlue #CloudStack #CCCNA14

  14. Guest Network – Basic & Advanced @ShapeBlue #CloudStack #CCCNA14

  15. Guest Network – Basic Zone EIP / ELB @ShapeBlue #CloudStack #CCCNA14

  16. Public Network – Basic & Advanced @ShapeBlue #CloudStack #CCCNA14

  17. Public Network – System VMs CPVM, SSVM & VRs have a connection to the Public Network *VRs only have public connection in Advanced Network @ShapeBlue #CloudStack #CCCNA14

  18. Storage Network @ShapeBlue #CloudStack #CCCNA14

  19. Physical Connectivity @ShapeBlue #CloudStack #CCCNA14

  20. Basic Zone – Example IP Schema @ShapeBlue #CloudStack #CCCNA14

  21. Advanced Zone – Example IP Schema @ShapeBlue #CloudStack #CCCNA14

  22. Network Service Providers  A Hardware or Virtual Appliance that provide Network Services to CloudStack e.g.  Virtual Router  Midokura Midonet  VPC Virtual Router  BigSwitch Vns  Internal LBVM  Cisco VNMC  Citrix NetScaler  Baremetal DHCP*  F5 Load Balancer  Baremetal PXE*  Juniper SRX Firewall  Palo Alto*  Nicira Nvp  Ovs (GRE/VXLAN) *new in 4.3 @ShapeBlue #CloudStack #CCCNA14

  23. Virtual Private Clouds (VPC)  Private multi ‐ tiered Virtual Networks  ACLs to control traffic isolation  Inter VLAN Routing  Site ‐ 2 ‐ Site VPN  Private Gateway  VPC ‐ 2 ‐ VPC VPN*  User VPN* *new in 4.3 @ShapeBlue #CloudStack #CCCNA14

  24. VPC Components Virtual Router – Connects all the VPC Components Network Tiers – Isolated Networks, each with unique VLAN and CIDR @ShapeBlue #CloudStack #CCCNA14

  25. VPC Components Public Gateway @ShapeBlue #CloudStack #CCCNA14

  26. VPC Components Site ‐ 2 ‐ Site VPN Linked to Public Gateway @ShapeBlue #CloudStack #CCCNA14

  27. VPC Components User VPN Linked to Public Gateway @ShapeBlue #CloudStack #CCCNA14

  28. VPC Components VPC ‐ 2 ‐ VPC VPN Linked to Public Gateway @ShapeBlue #CloudStack #CCCNA14

  29. VPC Components Private Gateway Created by Root Admins Configured by Users (Static Routes) @ShapeBlue #CloudStack #CCCNA14

  30. VPC Components @ShapeBlue #CloudStack #CCCNA14

  31. VPC Components @ShapeBlue #CloudStack #CCCNA14

  32. VPC Components @ShapeBlue #CloudStack #CCCNA14

  33. Communication Ports @ShapeBlue #CloudStack #CCCNA14

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Apache CloudStack & Apalia Involved with CloudStack since 2010 Dozens of CloudStack

Apache CloudStack & Apalia Involved with CloudStack since 2010 Dozens of CloudStack

Billing for Apache CloudStack Billing for Apache CloudStack CloudStack Collaboration Confer CloudStack Collaboration Conference US ence US Miami May 18 Miami May 18 th th 2017 2017 Apache CloudStack & Apalia Involved with

322 views • 15 slides
SDN in CloudStack Tuesday, October 15, 13 About me Hugo Trippaers Email:

SDN in CloudStack Tuesday, October 15, 13 About me Hugo Trippaers Email:

SDN in CloudStack Tuesday, October 15, 13 About me Hugo Trippaers Email: htrippaers@schubergphilis.com Twitter: @Spark404 Freenode: Spark404 http://www.schubergphilis.com Tuesday, October 15, 13 CloudStack networking - the

572 views • 35 slides
Developing API Plug-ins for CloudStack* * Specifically Using Version 4.5 Mike Tutkowski

Developing API Plug-ins for CloudStack* * Specifically Using Version 4.5 Mike Tutkowski

Developing API Plug-ins for CloudStack* * Specifically Using Version 4.5 Mike Tutkowski (@mtutkowski on Twitter) CloudStack Software Engineer Member of CloudStack Project Management Committee (PMC) Focused on CloudStacks storage

461 views • 26 slides
Architecting for the cloud: lessons learned from 100 CloudStack deployments Sheng Liang CTO,

Architecting for the cloud: lessons learned from 100 CloudStack deployments Sheng Liang CTO,

Architecting for the cloud: lessons learned from 100 CloudStack deployments Sheng Liang CTO, Cloud Platforms, Citrix CloudStack History 2008 2009 2010 2012 2011 Sept 2008: Nov 2009: May 2010: July 2011: April 2012: CloudStack

457 views • 34 slides
+ Monitoring Consolidate Prescriptive Analytics for Apache CloudStack Madan Ganesh Velayudham

+ Monitoring Consolidate Prescriptive Analytics for Apache CloudStack Madan Ganesh Velayudham

+ Monitoring Consolidate Prescriptive Analytics for Apache CloudStack Madan Ganesh Velayudham Founder, CEO ActOnMagic madan@actonmagic.com + Agenda n Introduction n Different Stages of Analytics n Cloudstack Communitys concerns

438 views • 16 slides
Transparent Service Migration to the Cloud Clone existing VMs to CloudStack/OpenStack templates

Transparent Service Migration to the Cloud Clone existing VMs to CloudStack/OpenStack templates

Transparent Service Migration to the Cloud Clone existing VMs to CloudStack/OpenStack templates without user downtime CloudOpen Dublin 2015 #whoami Name: Tim Mackey Current roles: XenServer Community Manager and Evangelist; occasional coder

740 views • 29 slides
Ansible & CloudStack Cloud Era Configuration Management Paul Angus Cloud Architect

Ansible & CloudStack Cloud Era Configuration Management Paul Angus Cloud Architect

Ansible & CloudStack Cloud Era Configuration Management Paul Angus Cloud Architect paul.angus@shapeblue.com @CloudyAngus @ShapeBlue Ansible & CloudStack Configuration Management Ansible Using Ansible with CloudStack @ShapeBlue

1.39k views • 44 slides
Using Your Network 10-07-16 Networking & You What is networking? Benefits of

Using Your Network 10-07-16 Networking & You What is networking? Benefits of

Jordan Borrell Networking & Bioengineering Program Using Your Network 10-07-16 Networking & You What is networking? Benefits of networking. Who do I network with? Family/Friends/Neighbors School Connections

395 views • 14 slides
CloudStack and Big Data Sebastien Goasguen @sebgoa May 22 nd 2013 LinuxTag, Berlin Google

CloudStack and Big Data Sebastien Goasguen @sebgoa May 22 nd 2013 LinuxTag, Berlin Google

CloudStack and Big Data Sebastien Goasguen @sebgoa May 22 nd 2013 LinuxTag, Berlin Google trends Start of Clouds Cloud computing trending down, while Big Data is booming. Virtualization remains constant . BigData on

591 views • 42 slides
Why Apache CloudStack Alexandre Limas Santana, Gabriel Beims Br ascher, Lucas Berri

Why Apache CloudStack Alexandre Limas Santana, Gabriel Beims Br ascher, Lucas Berri

Why Apache CloudStack Alexandre Limas Santana, Gabriel Beims Br ascher, Lucas Berri Cristofolini, Pedro Henrique Pereira Martins, and Rafael Weing artner August 18, 2016 Florian opolis, SC Brazil Agenda Cloud computing

266 views • 24 slides
Junit-contracts: A Contract Testing Tool Claude N. Warren, Jr. CloudStack Collaboration

Junit-contracts: A Contract Testing Tool Claude N. Warren, Jr. CloudStack Collaboration

Junit-contracts: A Contract Testing Tool Claude N. Warren, Jr. CloudStack Collaboration Conference Europe October 8-9, 2015 Dublin, Ireland Who Is Claude Warren? claude@xenei.com Apache Jena Project Management Committee Member and

712 views • 32 slides
CloudStack Identity and Access Management (IAM) Min Chen Prachi Damle Citrix Agenda Background

CloudStack Identity and Access Management (IAM) Min Chen Prachi Damle Citrix Agenda Background

CloudStack Identity and Access Management (IAM) Min Chen Prachi Damle Citrix Agenda Background Our Design Goal Architecture Implementation Use Cases Next Steps Background Limited IAM Services Out-of-box fixed

251 views • 22 slides
Building an autonomic CloudStack Gabriel Beims Br ascher, Lucas Berri Cristofolini, and Rafael

Building an autonomic CloudStack Gabriel Beims Br ascher, Lucas Berri Cristofolini, and Rafael

Building an autonomic CloudStack Gabriel Beims Br ascher, Lucas Berri Cristofolini, and Rafael Weing artner January 19, 2017 Florian opolis, SC Brazil Agenda Current cloud environments The cloud we want How far are we from

441 views • 27 slides
Networking Don Porter CSE 506 Networking (2 parts) Goals: Review networking basics

Networking Don Porter CSE 506 Networking (2 parts) Goals: Review networking basics

Networking Don Porter CSE 506 Networking (2 parts) Goals: Review networking basics Discuss APIs Trace how a packet gets from the network device to the application (and back) Understand Receive livelock and NAPI 4

761 views • 48 slides
Distributed CI and testing for cloudstack in a hybrid community Daan Hoogland Not senior. Not

Distributed CI and testing for cloudstack in a hybrid community Daan Hoogland Not senior. Not

Distributed CI and testing for cloudstack in a hybrid community Daan Hoogland Not senior. Not manager. Other job titles apply. daan.hoogland@shapeblue.com +DaanHoogland https://www.slideshare.net/ShapeBlue/cccna17-distributed-ci-

620 views • 22 slides
NAMED DATA NETWORKING (NDN) Named Data Networking NDN BRIEF HISTORY When the Networking was

NAMED DATA NETWORKING (NDN) Named Data Networking NDN BRIEF HISTORY When the Networking was

NAMED DATA NETWORKING (NDN) Named Data Networking NDN BRIEF HISTORY When the Networking was developed in the 60s and 70s Networking was mainly used for resource sharing. IP was the effective communication protocol in place.

484 views • 29 slides
Internet Technologies 1- Introduction F. Ricci 2010/2011 Contact Details Francesco Ricci

Internet Technologies 1- Introduction F. Ricci 2010/2011 Contact Details Francesco Ricci

Internet Technologies 1- Introduction F. Ricci 2010/2011 Contact Details Francesco Ricci Room 204 (POS) fricci@unibz.it Availability Hours: Thursday 16:00 18:00 by prior arrangement via e-mail Course web site

1.45k views • 58 slides
CS 204: Advanced Computer Networks Jiasi Chen Lectures: MWF 12:10-1pm in WCH 139

CS 204: Advanced Computer Networks Jiasi Chen Lectures: MWF 12:10-1pm in WCH 139

CS 204: Advanced Computer Networks Jiasi Chen Lectures: MWF 12:10-1pm in WCH 139 http://www.cs.ucr.edu/~jiasi/teaching/cs204_spring16/ 1 Why Networks? Supports the applications that we use today Social media Video streaming Number of

592 views • 46 slides
CSE598k / CSE545 Advanced Network Security Lecture 1 - Introduction Prof. Patrick McDaniel

CSE598k / CSE545 Advanced Network Security Lecture 1 - Introduction Prof. Patrick McDaniel

426 views • 13 slides
Course Introduction Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011

Course Introduction Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011

Course Introduction Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011 CSE545 - Advanced Network Security - Professor McDaniel Page 1 Network Security No really good definition, so we will accept the following for

419 views • 20 slides
Next-Gen Mobile Network Architecture for Advanced Wireless December 2,

Next-Gen Mobile Network Architecture for Advanced Wireless December 2,

Next-Gen Mobile Network Architecture for Advanced Wireless December 2, 2016 Shreyasee Mukherjee The Advanced Wireless Research Ini?a?ve 2/16 Requirements for a Next-Gen Mobile

728 views • 16 slides
AIMS 2017 Things in a Fog (TGIF): A Framework to Support Multi- domain Research in the Internet

AIMS 2017 Things in a Fog (TGIF): A Framework to Support Multi- domain Research in the Internet

AIMS 2017 Things in a Fog (TGIF): A Framework to Support Multi- domain Research in the Internet of Things Dr Jim Martin School of Computing Clemson University (jmarty@clemson.edu) Talk Overview Setting the stage SC-CVT: South

288 views • 10 slides
Satellite - Technology Enabler for Advanced Wireless Networks Stanley Russo Senior Manager,

Satellite - Technology Enabler for Advanced Wireless Networks Stanley Russo Senior Manager,

Satellite - Technology Enabler for Advanced Wireless Networks Stanley Russo Senior Manager, System Architecture & Innovation December 2, 2016 WINLAB Fall/Winter 2016 Research Review Challenges For Advanced Wireless Networks Higher

844 views • 19 slides
EGEE SA2 / TERENA NRENs & Grids joint workshop EGEE09, 2009-09-22, Barcelona X. Jeannin,

EGEE SA2 / TERENA NRENs & Grids joint workshop EGEE09, 2009-09-22, Barcelona X. Jeannin,

Enabling Grids for E-sciencE EGEE SA2 / TERENA NRENs & Grids joint workshop EGEE09, 2009-09-22, Barcelona X. Jeannin, SA2 manager www.eu-egee.org

533 views • 6 slides

More recommend