crossbow a vertically integrated qos stack
play

CrossBow: A vertically integrated QoS stack Sunay Tripathi, Nicolas - PowerPoint PPT Presentation

Feb 27, 2024 •342 likes •596 views

CrossBow: A vertically integrated QoS stack Sunay Tripathi, Nicolas Droux, Thirumalai Srinivasan, Kais Belgaied, Venu Iyer Aug 21 st . 2009 Sigcomm WREN 2009, Barcelona Sunay Tripathi, Distinguished Engineer, Sun Microsystems Inc

  1. CrossBow: A vertically integrated QoS stack Sunay Tripathi, Nicolas Droux, Thirumalai Srinivasan, Kais Belgaied, Venu Iyer Aug 21 st . 2009 Sigcomm WREN 2009, Barcelona Sunay Tripathi, Distinguished Engineer, Sun Microsystems Inc Sunay.Tripathi@Sun.Com

  2. Issues in Host based QoS solutions • Performance > Additional Classification/Queuing for all packets > QoS layers typically high up in the stack (bulk of the work already done) > Packet needs to be DMA'd into the system before any policy can be applied • QoS layers are typically bump in the stack • Management complexities www.opensolaris.org/os/project/crossbow 2

  3. Crossbow: Solaris Networking Stack • 8 years of development work to achieve > Scalability across multi-core CPUs and multi-10gigE bandwidth > Virtualization, QoS, High Availibility designed in > Exploit advanced NIC features • Key Enabler for > Server and Network Consolidation > Resource partitioning > Cloud computing www.opensolaris.org/os/project/crossbow 3

  4. Crossbow “Hardware Lanes” Ground-Up Design for multi-core and multi-10GigE • Linear Scalability using ' Hardware Lanes ' with dedicated resources • Network Virtualization and QoS designed in the stack • More Efficiency due to ' Dynamic Polling and Packet Chaining ' Physical Machine Physical NIC Kernel Threads Virtual Hardware C Virtual Rings/DMA and Queues NIC Machine/Zone L A Hardware Lane Hardware Kernel Threads Virtual Virtual S Rings/DMA and Queues NIC Machine/Zone S Switch I F VLAN I Separated E Hardware Kernel Threads Squeue Application R Rings/DMA and Queues www.opensolaris.org/os/project/crossbow 4

  5. Hardware Lanes and Dynamic Polling ● Partition the NIC Hardware (Rx/Tx rings, DMA), kernel queues/threads, and CPU to allow creation of “Hardware Lane” which can be assigned to VNICs & Flows ● Use Dynamic Polling on Rx/Tx rings to schedule rate of packet arrival and transmission on a per lane bassis ● Effect of dynamic polling Mpstat (older driver) intr ithr csw icsw migr smtx srw syscl usr sys wt idl 10818 8607 4558 1547 161 1797 289 19112 17 69 0 12 Mpstat (GLDv3 based driver) intr ithr csw icsw migr smtx srw syscl usr sys wt idl 2823 1489 875 151 93 261 1 19825 15 57 0 27 ● Use Dynamic polling for B/W partitioning and isolation without any support from switches and routers ~85% ~85% ~15% ~75% Fewer Fewer More Fewer Context Mutexes CPU Free Interrupts Switches www.opensolaris.org/os/project/crossbow 5

  6. Crossbow Flows : Service Virtualization Services and Protocols Compute Resources CPU 1 CPU 2 CPU 'n' VIRTUAL VIRTUAL VIRTUAL SQUEUE SQUEUE SQUEUE CPU 1 Virtual Squeue CPU 2 Virtual Squeue VOIP HTTPS DEFAULT TCP UDP DEFAULT SQUEUE SQUEUE SQUEUE SQUEUE SQUEUE SQUEUE Kernel Kernel Kernel Kernel Kernel Kernel threads/Qs threads/Qs threads/Qs threads/Qs threads/Qs threads/Qs Memory Memory Memory Memory Memory Memory Partition Partition Partition Partition Partition Partition Flow Classifier Flow Classifier NIC 1 NIC 2 www.opensolaris.org/os/project/crossbow 6

  7. Crossbow Flows Crossbow Flows based on: > Services (protocol + remote/local ports) > Transport (TCP, UDP, SCTP, iSCSI, etc) > Remote and local IP addresses > Remote IP Subnets > DSCP labels Following attributes can be set on each Flow > B/W limits > Priorities > CPUs # flowadm create-flow -l bge0 protocol=tcp,local_port=443 -p maxbw=50M http-1 # flowadm set-flowprop -l bge0 -p maxbw=100M http-1 www.opensolaris.org/os/project/crossbow 7

  8. Virtual Network Containers Virtualization Solaris Zone Zone xb1-z1 xb1-z2 Global Flows • Zone Virtual NICs & Virtual Switches • Virtual Virtual Virtual Wire • SQUEUE SQUEUE Resource Control Exclusive IP Exclusive IP Instance Instance Bandwidth Partitioning • NIC H/W Partitioning • VNIC1 VNIC2 bge0 (100Mbps) (200Mbps) CPUs/pri assignment • Observability Real time usage for each Link/flow • Rx/Tx Rx/Tx Rx/Tx DMA DMA DMA Finer grained stats per Link/flow • History at no cost • Flow Classifier NIC Client Client xb2 xb3 www.opensolaris.org/os/project/crossbow 8

  9. Defense against DOS/DDOS ● DDOS have the ability to cripple entire server farms and all services offered by them ● Only the impacted services or virtual machine takes the hit instead of the entire grid ● Under attack, impacted services start all new connections under lower priority flow with limited bandwidth ● Connections transition to appropriate priority stacks after application authentication ● IDS systems can use Crossbow APIs to create '0' B/W flows based on remote IP addresses or subnets of the attackers and minimize their impact www.opensolaris.org/os/project/crossbow 9

  10. BACKUP

  11. Solaris Core Network Functionality • Networking Services Developer Tools and Management Interfaces Routing Protocols using Quagga > L3/L4 Load Balancer kernel modules > Routing VRRP Perf IP Multi User > IP Firewall (IPFilter) Protocols (Routing Diag Pathing (Quagga) HA) Tools DNS, DHCP, NTP, SIP, VOIP, etc > Kernel Socket Kernel Sockets Scalable & Virtualized Network Stack • API Kernel Socket & Socket Filter > IP S Scalable IPFilter IP Modernized TCP/IP Stack Tunnels > (Firewall) Virtualized Hooks Y API QoS: B/W limits, Priorities, CPU bindings TCP/IP > L2 L3/L4 S Stack Bridge IP Multi Pathing (IPMP) Load Balancer > MAC Client IP Tunneling > Crossbow: Network Virtualization API Kernel A Defense against DDoS attacks > Virtual Virtual Virtual P • Crossbow: Virtual Networking NICs Switches Wire I VNICs, VSwitches, VWire > Observ- Flows QoS ability Service Virtualization (Flows) > s L2 Services: Classification, Filtering > L2 Classification, Filtering MAC Driver Generic LAN Driver v3 – GLDv3 • Generic LAN Driver – GLDv3 API > Aggregation Aggr, SR-IOV, Vanity Names Vanity Names > Driver 1gigE/10gigE Drivers (1GbE and 10GbE, FCoE, IPoIB) > FCOE IPoIB (Neptune, Niantic, etc) www.opensolaris.org/os/project/crossbow 11

  12. Virtual NIC (VNIC) & Virtual Switches Virtual NICs > Functionally physical NICs: > IP address assigned statically or via DHCP and snooped individually > Appear in MIB as separate ' if ' with configured link speed shown as ' ifspeed ' > VNICs can be created over Link Aggregation on can be assigned to IPMP groups for load balancing and failover support > VNICs Can have multiple hardware lanes assigned to them > Can be created over physical NIC (without needing a Vswitch) to provide external connectivity with switching done in NIC H/W > VNICs have configurable link speed, CPU and priority assignment > Standards based End to End Network Virtualization > VLAN tags and Priority Flow Control (PFC) assigned to VNIC extend Hardware Lanes to Switch > No configuration changes needed on switch to support virtualization Virtual Switches > Can be created to provide private connectivity between Virtual Machines www.opensolaris.org/os/project/crossbow 12

  13. Virtual NIC & Virtual Switch Usage # dladm create-vnic -l bge1 vnic1 # dladm create-vnic -l bge1 -m random -p maxbw=100M -p cpus=4,5,6 vnic2 # dladm create-etherstub vswitch1 # dladm show-etherstub LINK vswitch1 # dladm create-vnic -l vswitch1 -p maxbw=1000M vnic3 # dladm show-vnic LINK OVER MACTYPE MACVALUE BANDWIDTH CPUS vnic1 bge1 factory 0:1:2:3:4:5 - - vnic2 bge1 random 2:5:6:7:8:9 max=100M 4,5,6 vnic3 vswitch1 random 4:3:4:7:0:1 max=1000M - # dladm create-vnic -l ixgbe0 -v 1055 -p maxbw=500M -p cpus=1,2 vnic9 www.opensolaris.org/os/project/crossbow 13

  14. Physical Wire w/Physical Machines Router Host 1 Host 2 Client Port 6 Port 9 Port 3 Port 1 Port 2 20.0.03 20.0.01 10.0.03 10.0.01 10.0.02 1 Gbps 1 Gbps 1 Gbps 100 Mbps 1 Gbps Switch 3 Switch 1 Virtual Wire w/Virtual Network Machines Router Host 1 Host 2 (Virtual Client Router) VNIC6 VNIC9 VNIC3 VNIC1 VNIC2 20.0.03 20.0.01 10.0.03 10.0.01 10.0.02 1 Gbps 1 Gbps 1 Gbps 100 Mbps 1 Gbps EtherStub 3 EtherStub 1 www.opensolaris.org/os/project/crossbow 14

  15. Crossbow extends H/W Lanes to Switch Dedicated path from switch to the Virtual Machine • • VNIC A can send PFC pause to switch forcing the traffic from client A to slow down Zone/Virtual Zone/Virtual Machine Machine Incoming traffic for Virtual machine B (who has higher • A B configured link speed) does not suffer VNIC A VNIC B (100Mbps) (500Mbps) Client A (Sending traffic to Virtual Physical NIC Machine A faster than Rx/Tx Rx/Tx Rx/Tx 100 Mbps) Rings Rings Rings Packet Classifier Pause Frame sent By VNIC-A to switch asking Switch it to slow the incoming traffic for VM-A www.opensolaris.org/os/project/crossbow 15

  16. Virtual Machines Solaris Guest OS 2 Solaris Guest OS 1 Solaris Host OS NIC Virtualization Engine NIC Virtualization Engine NIC Virtualization Engine Guest OS 2 Guest OS 1 Host OS VIRTUAL SQUEUE VIRTUAL SQUEUE All Traffic VIRTUAL SQUEUE All Traffic HTTP HTTPS DEFAULT SQUEUE SQUEUE SQUEUE Guest OS 2 VNIC Virtual Virtual Virtual Host OS VNIC NIC NIC NIC Guest Guest Guest Guest Host OS OS 1 OS 1 OS 1 OS 2 All traffic HTTP HTTPS DEFAULT All Traffic H/W Flow Classifier NIC www.opensolaris.org/os/project/crossbow 16

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

I N V E S TO R P R E S E N TAT I O N J u n e 2 0 1 9 HORIZONTALLY DIVERSIFIED INTEGRATED

I N V E S TO R P R E S E N TAT I O N J u n e 2 0 1 9 HORIZONTALLY DIVERSIFIED INTEGRATED

HORIZONTALLY DIVERSIFIED INTEGRATED VERTICALLY I N V E S TO R P R E S E N TAT I O N J u n e 2 0 1 9 HORIZONTALLY DIVERSIFIED INTEGRATED VERTICALLY Disclaimer CAUTIONARY NOTE REGARDING FORWARD-LOOKING STATEMENTS: Certain information

549 views • 30 slides
I N V E S TO R P R E S E N TAT I O N J u l y 2 0 1 9 HORIZONTALLY DIVERSIFIED INTEGRATED

I N V E S TO R P R E S E N TAT I O N J u l y 2 0 1 9 HORIZONTALLY DIVERSIFIED INTEGRATED

HORIZONTALLY DIVERSIFIED INTEGRATED VERTICALLY I N V E S TO R P R E S E N TAT I O N J u l y 2 0 1 9 HORIZONTALLY DIVERSIFIED INTEGRATED VERTICALLY Disclaimer CAUTIONARY NOTE REGARDING FORWARD-LOOKING STATEMENTS: Certain information

1.19k views • 30 slides
Network virtualisation using Crossbow Technology Uro Nedi, MSc OpenSolaris Contributor

Network virtualisation using Crossbow Technology Uro Nedi, MSc OpenSolaris Contributor

Network virtualisation using Crossbow Technology Uro Nedi, MSc OpenSolaris Contributor Crossbow Technical Background Network Machines Network in a Bo x 2 Crossbow Features Virtualization > IP Instances > NIC

259 views • 15 slides
An Established Vertically Integrated Palm Oil Production Company, Cote dIvoire Focussed on

An Established Vertically Integrated Palm Oil Production Company, Cote dIvoire Focussed on

An Established Vertically Integrated Palm Oil Production Company, Cote dIvoire Focussed on Growth AGM Presentation: 16 July 2015 Overview An AIM quoted vertically integrated palm oil producer in Cote dIvoire Production Revenue 51%

539 views • 18 slides
90% of currently operating dispensaries throughout Nevada MOST ARE VERTICALLY INTEGRATED

90% of currently operating dispensaries throughout Nevada MOST ARE VERTICALLY INTEGRATED

NDA represents approximately 90% of currently operating dispensaries throughout Nevada MOST ARE VERTICALLY INTEGRATED Approximately half of licenses in operation. COLLABORATE WITH COMMUNITY STAKEHOLDERS, INDEPENDENT LICENSES, LABS, ETC.

1k views • 52 slides
Business profile NTLab is a vertically integrated center for electronics: from ICs to devices.

Business profile NTLab is a vertically integrated center for electronics: from ICs to devices.

Business profile NTLab is a vertically integrated center for electronics: from ICs to devices. Design and production Devices Integrated modules Semiconductor IP & chips NTLab services ASIC & IP design Off-the-shelf IPs IP porting

324 views • 28 slides
Visual factory Vertically integrated manufacturing BELT-DRIVEN AIR HANDLERS 800 12,000

Visual factory Vertically integrated manufacturing BELT-DRIVEN AIR HANDLERS 800 12,000

Colton, California USA Manufacturer of HVAC Equipment Since 1916 400,000 sq. ft. on 16 acres Visual factory Vertically integrated manufacturing BELT-DRIVEN AIR HANDLERS 800 12,000 CFM Horizontal (AH) Vertical (AV) Basic (B)

516 views • 32 slides
NC . Investor Presentation December 2016 2 Our Vision is to be a global, vertically integrated

NC . Investor Presentation December 2016 2 Our Vision is to be a global, vertically integrated

1 P G A S P ETROGRESS , I NC NC . Investor Presentation December 2016 2 Our Vision is to be a global, vertically integrated energy company well-regarded for its people, partnerships and performance. We look to continuously build on our

643 views • 25 slides
McDermott International + CB&I Creating a premier global fully vertically integrated

McDermott International + CB&I Creating a premier global fully vertically integrated

McDermott International + CB&I Creating a premier global fully vertically integrated onshore-offshore company with a broad EPCI offering, driven by technology and innovation with the scale and diversification to capitalize on global growth

456 views • 30 slides
McDermott International + CB&I Creating a premier global fully vertically integrated

McDermott International + CB&I Creating a premier global fully vertically integrated

McDermott International + CB&I Creating a premier global fully vertically integrated onshore-offshore company with a broad EPCI offering, driven by technology and innovation with the scale and diversification to capitalize on global growth

907 views • 48 slides
Green Mountain Power A vertically integrated Utility We serve 263,080 customers in 202

Green Mountain Power A vertically integrated Utility We serve 263,080 customers in 202

Green Mountain Power A vertically integrated Utility We serve 263,080 customers in 202 towns in 7,500 square miles of service territory Portfolio is 60% renewable 90% carbon-free We operate: 48 hydro plants o 6 peaking plants o

531 views • 20 slides
Vertically Integrated LED Lighting Manufacturer Entirely Based in the EU Company Brand Portfolio

Vertically Integrated LED Lighting Manufacturer Entirely Based in the EU Company Brand Portfolio

Vertically Integrated LED Lighting Manufacturer Entirely Based in the EU Company Brand Portfolio Retail retrofit lamps LED luminaires Light Emitting Diodes LED lighting design bulbs and tubes LED engines LED lighting projects CEM 2

288 views • 26 slides
May 2019 Corporate Presentation The Vertically Integrated Primary Vanadium Producer

May 2019 Corporate Presentation The Vertically Integrated Primary Vanadium Producer

May 2019 Corporate Presentation The Vertically Integrated Primary Vanadium Producer www.bushveldminerals.com Disclaimer (1 of 2) These presentation slides, or any part of them and any related video its Representatives for any loss howsoever

917 views • 62 slides
Investor Presentation February2020 A vertically integrated CBD Life Sciences company CSE: CBDT

Investor Presentation February2020 A vertically integrated CBD Life Sciences company CSE: CBDT

TM Investor Presentation February2020 A vertically integrated CBD Life Sciences company CSE: CBDT | OTC: EPWCF | FRA: 8EC version Jan 31, 2020 TM FORWARD LOOKING STATEMENT Certain statements contained in this clinics and via its

526 views • 23 slides
EMBEDDED RF AUTOMATION SYSTEMS R&D - PRODUCTION. Profelmnet has a vertically-integrated

EMBEDDED RF AUTOMATION SYSTEMS R&D - PRODUCTION. Profelmnet has a vertically-integrated

DESIGN. PRODUCTION. SUPPORT. EMBEDDED RF AUTOMATION SYSTEMS R&D - PRODUCTION. Profelmnet has a vertically-integrated production line, and implement quality assurance procedures covering production conditions and product quality control in

396 views • 5 slides
An Established Vertically Integrated Palm Oil Production Company, Cote dIvoire NURSER ERY

An Established Vertically Integrated Palm Oil Production Company, Cote dIvoire NURSER ERY

An Established Vertically Integrated Palm Oil Production Company, Cote dIvoire NURSER ERY PLANTED LAND 60T/HR 60 /HR MILL SMALLHOL OLDER DER PRODUCT CTIO ION EXPANSION ION LAND Invest estor Presen enta tati tion on July 2014

570 views • 19 slides
CSE326:DataStructures Lecture#4 HeapsmorePriorityQs BartNiswonger

CSE326:DataStructures Lecture#4 HeapsmorePriorityQs BartNiswonger

CSE326:DataStructures Lecture#4 HeapsmorePriorityQs BartNiswonger SummerQuarter2001 TodaysOutline Returnquizzes ThingsBartDidntFinishonFriday (insert&d-Heaps)

156 views • 14 slides
The Governing Equations of a Multi Loop Circuit Bernd Schr oder logo1 Bernd Schr oder

The Governing Equations of a Multi Loop Circuit Bernd Schr oder logo1 Bernd Schr oder

The Laws An Example The Governing Equations of a Multi Loop Circuit Bernd Schr oder logo1 Bernd Schr oder Louisiana Tech University, College of Engineering and Science The Governing Equations of a Multi Loop Circuit The Laws An

591 views • 25 slides
CS 528 Mobile and Ubiquitous Computing Lecture 9a: Wearables, Quantified Self &

CS 528 Mobile and Ubiquitous Computing Lecture 9a: Wearables, Quantified Self &

CS 528 Mobile and Ubiquitous Computing Lecture 9a: Wearables, Quantified Self & Physiological Sensing Emmanuel Agu Tracking Health, Wellness & Quantified Self Quantified Self (QS) QS: Community of People who want to measure, log,

1.33k views • 38 slides
Dynamic request management algorithms for Web-based services in Cloud computing Riccardo

Dynamic request management algorithms for Web-based services in Cloud computing Riccardo

Dynamic request management algorithms for Web-based services in Cloud computing Riccardo Lancellotti Mauro Andreolini Claudia Canali Michele Colajanni University of Modena and Reggio Emilia COMPSAC 2011 1 Request management for Cloud

370 views • 14 slides
Computational Code-Based Single-Server Private Information Retrieval Lukas Holzbaur , Camilla

Computational Code-Based Single-Server Private Information Retrieval Lukas Holzbaur , Camilla

Computational Code-Based Single-Server Private Information Retrieval Lukas Holzbaur , Camilla Hollanti, Antonia Wachter-Zeh Technical University of Munich Institute for Communications Engineering Private Information Retrieval Goal: Retrieve

431 views • 28 slides
Marcos Antonio Almeida Santos MD, PhD Tenured Professor at Universidade Tiradentes (UNIT)

Marcos Antonio Almeida Santos MD, PhD Tenured Professor at Universidade Tiradentes (UNIT)

Marcos Antonio Almeida Santos MD, PhD Tenured Professor at Universidade Tiradentes (UNIT) Brazil General physician and cardiologist at Clnica & Hospital So Lucas Aracaju (SE) Senior Teaching Assistant in PPCR Course at Harvard

668 views • 38 slides
To Teach QS, First Know Thyself WHO WE ARE Michael Lim Alex Truong Math 12th Grader Teacher

To Teach QS, First Know Thyself WHO WE ARE Michael Lim Alex Truong Math 12th Grader Teacher

Show & Tell QS 18 To Teach QS, First Know Thyself WHO WE ARE Michael Lim Alex Truong Math 12th Grader Teacher THE PROBLEM Real-World Relevance THE SOLUTION UNIVARIATE ANALYSIS MULTIVARIATE ANALYSIS BEING GUINEA PIGS Sleep

500 views • 11 slides
Q S QoS and DLC in d DLC i IaaS INDIGO- DataCloud Presenter : Patrick Fuhrmann Contributions

Q S QoS and DLC in d DLC i IaaS INDIGO- DataCloud Presenter : Patrick Fuhrmann Contributions

Q S QoS and DLC in d DLC i IaaS INDIGO- DataCloud Presenter : Patrick Fuhrmann Contributions by: Giacinto Donvito, INFN Marcus Hardt, KIT Paul Millar, DESY Alvaro Garcia, CSIC Alvaro Garcia, CSIC With ki d With kind contributions by t

760 views • 38 slides

More recommend