enabling federated cloud networking
play

Enabling Federated Cloud Networking Giovanni Merlino - University - PowerPoint PPT Presentation

Jan 29, 2023 •259 likes •634 views

Enabling Federated Cloud Networking Giovanni Merlino - University of Messina (Italy) Sbastien Dupont - CETIC (Belgium) Giuseppe Tricomi - University of Messina (Italy) OpenStack Summit 11/05/2017 Boston, USA Outline Intro

  1. Enabling Federated Cloud Networking Giovanni Merlino - University of Messina (Italy) Sébastien Dupont - CETIC (Belgium) Giuseppe Tricomi - University of Messina (Italy) OpenStack Summit 11/05/2017 Boston, USA

  2. Outline • Intro • Framework overview • Networking federation • Broker (demo) • Security considerations • SFC/NFV (Tacker, demo) • Network visualization (Skydive) • Wrap up 2

  3. Problem Definition Globally operating companies may need to: • deploy tiers of their applications across different time zones • diversify their choice of cloud providers, for a number of reasons 3

  4. Approach: Federated Cloud Networking Service Manifest OVN Internet With advanced features such as: - automated high availability - location aware elasticity - automated service function chaining OpenStack Summit 11/05/2017 Boston, USA

  5. Federating Virtual Cloud Networks: benefits • Virtual Networks – Flexibility – Security • Network Federations – Managed as an entity, via API and tools OpenStack Summit 11/05/2017 Boston, USA

  6. Cloud Federation: types OpenStack Summit 11/05/2017 Boston, USA

  7. Loosely Coupled Scenarios AWS-EU AWS-US OpenStack Summit 11/05/2017 Boston, USA

  8. Interop AWS-EU AWS-US OpenStack Summit 11/05/2017 Boston, USA

  9. Federated Networking: BEACON Architecture OpenStack Summit 11/05/2017 Boston, USA

  10. Networking: federation OpenStack Summit 11/05/2017 Boston, USA

  11. BEACON Broker: Scenario ● A Federation Tenant (we may also call it “borrower”) has to be already available, to enable a fully “federated” user experience (e.g., orchestration) ● Customers of the federation tenant prefer to deploy their application(s) just by selecting the area(s) where components should be deployed OpenStack Summit 11/05/2017 Boston, USA

  12. Beacon Service Manifest Custom extensions to the HOT standard: federation: ➢ Geographical Placement type: OS::Beacon::ServiceGroupManagement properties: ➢ Component grouping name: GroupName geo_deploy: { get_resource: geoshape_2} ➢ Elasticity management geoshape_2: resource: type: OS::Beacon::Georeferenced_deploy groups: {get_resource: [B,A] } properties: B: label: shape label type: OS::Nova::Server description: descripition properties: name: test shapes: key_name: {get_param: key_name } [{"type":"Feature","id":"BEL","properties":{"nam image: {get_param: cirros } elasticity_location_policy: e":"Belgium"},"geometry":{"type":"Polygon","coo networks: [{"fixed_ip": 80.0.0.62, "network": { get_param: private_network } }] type: OS::Beacon::ScalingPolicy flavor: m1.tiny rdinates":[[[3.314971,51.345781],[4.047071,51. properties: 267259],,...............,[3.314971,51.345781]]]}} A: policy_type: SunLight type: OS::Nova::Server geo_deploy: {get_resource: geoshape_2} properties: name: VM-A groupmonitored: {get_resource: federation} key_name: { get_param: key_name } min_gap: "-8" image: { get_param: image-A } flavor: { get_param: flavor } networks: [{"fixed_ip": 80.0.0.61, "network": { get_param: private_network } }] security_groups: [{ get_resource: server_security_group }] user_data: | #!/bin/bash echo root:vagrant | chpasswd sudo apt-get update 12

  13. BEACON Broker ● Sets the federation process in motion for the networks (invoking the FedSDN services) ● Instantiates resources ● Activates the elasticity manager for instantiated resources ● Manages the geographical placement and deployment 13

  14. Broker: Geographical Deployment Starting from a GeoShape, as described in the service manifest: ● a set of clouds identified ● clouds’ endpoints retrieved ● borrower’s credential retrieved geoshape_2: type: OS::Beacon::Georeferenced_deploy properties: description: descripition shapes: [{"type":"Feature","id":"BEL","properties":{"name":"Belgium"},"geo metry":{"type":"Polygon","coordinates":[[[3.314971,51.345781],[4.0 47071,51.267259],,...............,[3.314971,51.345781]]]}} OpenStack Summit 11/05/2017 Boston, USA

  15. Broker: demo time OpenStack Summit 11/05/2017 Boston, USA

  16. Security considerations At the local level : limited trust between clouds inside a federation e.g. Cloud A trusts cloud B but not cloud C. At the global level : ensure global security policies for the federation e.g. Intrusion detection and remediation on traffic between the federated clouds and the Internet OpenStack Summit 11/05/2017 Boston, USA

  17. Network security tools Network Function Virtualisation (NFV) - Virtualise all the things! Service Function Chaining (SFC) - design complex security workflows with VNF’s Firewall IDS monitoring OpenStack Summit 11/05/2017 Boston, USA

  18. SFC/NFV - Anomaly detection Cloud The internet VM1 NF - DPI NF - FWL7 Anomaly (ftp) Add FW rule: Remove VM1 Security Groups drop traffic from/to VM1 & apply quarantine SG OpenStack Summit 11/05/2017 Boston, USA

  19. SFC/NFV - Encryption Federation Cloud 1 (trusted) Cloud 3 (untrusted) NF - VM1 En/Decryption VMX NF - VM3 En/Decryption Cloud 2 (trusted) NF - VMY VM2 En/Decryption OpenStack Summit 11/05/2017 Boston, USA

  20. NFV in Openstack: Tacker project OpenStack service addressing NFV Orchestration and VNF Manager use-cases using standards (TOSCA) based architecture OpenStack Summit 11/05/2017 Boston, USA

  21. NFV/Tacker: demo time / nDPI 21

  22. NFV/Tacker: demo time (1) OpenStack Summit 11/05/2017 Boston, USA

  23. NFV/Tacker: demo time (2) 23

  24. NFV/Tacker: demo time (3) 24

  25. NFV/Tacker: demo time (4) 25

  26. Network visualization: Skydive Application Service admin Manifest Global Federated federated Network Manager network policy Cloud Cloud Manager Manager Network Network Manager Manager Overlay network BEACON Net BEACON Net Agent Agent Federated Federated Federation tunnel datapath datapath Internet Physical network OpenStack Summit 11/05/2017 Boston, USA

  27. Skydive Architecture OpenStack Summit 11/05/2017 Boston, USA

  28. Skydive WebUI: bird’s-eye view of a BEACON environment OpenStack Summit 11/05/2017 Boston, USA

  29. Skydive: single-Cloud view OpenStack Summit 11/05/2017 Boston, USA

  30. Skydive: single-node view OpenStack Summit 11/05/2017 Boston, USA

  31. BEACON Contributions to Skydive Real-time traffic stats visualization (overlaid on top of the topology) • Calculating aggregated traffic (over fed tunnel) and showing bandwidth consumption on the tunnel • Visualizing network load • Showing L2 bandwidth on the topology • Highlighting (color) network links, based on thresholds • Determining bottlenecks in each cloud and on the cloud interconnect Multi-region network topology visualization • Enabling definition of multiple separated clouds and their network interfaces • Grouping each cloud network with all its components in a specific area (for enhanced usability) OpenStack Summit 11/05/2017 Boston, USA

  32. Wrapping up: Impact and benefits • Integration of Network virtualisation and Software defined networking with Cloud Middleware • Code originating from research is being published under Open Source licenses • Some results are being fed back upstream (OVN, OpenStack and Open Nebula) already OpenStack Summit 11/05/2017 Boston, USA

  33. BEACON Website OpenStack Summit 11/05/2017 Boston, USA

  34. Consortium Duration: 30 months 02/2015-07/2017 6 countries 4 companies 2 universities 1 research institute 34

  35. Please help us by answering to our brief survey http://bit.ly/2q3IAqt 35

  36. Survey : http://bit.ly/2q3IAqt Giovanni Merlino - gmerlino@unime.it Sébastien Dupont - sebastien.dupont@cetic.be Giuseppe Tricomi - gtricomi@unime.it This work has been supported by the BEACON project, grant agreement number 644048, funded by the European Union’s Horizon 2020 Programme under topic ICT-07-2014. OpenStack Summit 11/05/2017 Boston, USA

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Docker in the EGI Docker in the EGI Federated Cloud Federated Cloud Carlos Gimeno

Docker in the EGI Docker in the EGI Federated Cloud Federated Cloud Carlos Gimeno

Docker in the EGI Docker in the EGI Federated Cloud Federated Cloud Carlos Gimeno cgimeno@bifi.es Instituto de Biocomputacin y Fsica de Sistemas Complejos info@bifi.es http://bifi.es 0. Index Introduction What is Docker? A

401 views • 14 slides
OpenStack on the EGI Federated Cloud Enol En l Fe Fernndez Cloud ud Archi hitect EGI

OpenStack on the EGI Federated Cloud Enol En l Fe Fernndez Cloud ud Archi hitect EGI

OpenStack on the EGI Federated Cloud Enol En l Fe Fernndez Cloud ud Archi hitect EGI Founda undation eno nol.ferna nande ndez@egi.eu EGI-Engage is co-funded by the Horizon 2020 Framework Programme www.egi.eu www of the

433 views • 30 slides
Can Cloud Computing Can Cloud Computing and Optical Networking and Optical Networking S S

Can Cloud Computing Can Cloud Computing and Optical Networking and Optical Networking S S

Can Cloud Computing Can Cloud Computing and Optical Networking and Optical Networking S S Save the Planet? Save the Planet? th th Pl Pl t? t? Rod Tucker, Jayant Baliga, Robert Ayre, Kerry Hinton ARC Special Research Centre for

247 views • 21 slides
A vision for Carrier Cloud Networking... Itzik Weinstein, CEO 1 Cloud Services The Cloud is

A vision for Carrier Cloud Networking... Itzik Weinstein, CEO 1 Cloud Services The Cloud is

A vision for Carrier Cloud Networking... Itzik Weinstein, CEO 1 Cloud Services The Cloud is highly scalable, and managed infrastructure capable of hosting end- customer applications and billed by consumption. - Forrester Virtual

399 views • 6 slides
Network and Computing Resource Sharing in Federated Cloud Systems Walter Cerroni Dept. of

Network and Computing Resource Sharing in Federated Cloud Systems Walter Cerroni Dept. of

Performance of Network and Computing Resource Sharing in Federated Cloud Systems Walter Cerroni Dept. of Electrical, Electronic and Information Engineering University of Bologna, Italy walter.cerroni@unibo.it Motivations Success of cloud

485 views • 35 slides
MULTI-ACCESS EDGE CLOUD OUZ SUNAY CHIEF ARCHITECT OPEN NETWORKING FOUNDATION 5G & NETWORK

MULTI-ACCESS EDGE CLOUD OUZ SUNAY CHIEF ARCHITECT OPEN NETWORKING FOUNDATION 5G & NETWORK

ENABLING 5G NETWORKS & MULTI-ACCESS EDGE CLOUD OUZ SUNAY CHIEF ARCHITECT OPEN NETWORKING FOUNDATION 5G & NETWORK TRANSFORMATION CONFERENCE OCTOBER 17, 2018 1 OUTLINE M-CORD ONFS NEXT STEPS WHY DO TELCOS NEED OPEN EDGE

567 views • 37 slides
Linking EUBrazilCloudConnect and EGI Federated Cloud Ignacio Blanquer on behalf of the

Linking EUBrazilCloudConnect and EGI Federated Cloud Ignacio Blanquer on behalf of the

Linking EUBrazilCloudConnect and EGI Federated Cloud Ignacio Blanquer on behalf of the EUBrazilCC consortium What EUBrazilCC aims at? Foster EUBrazil international cooperation in distributed computing infrastructures at three levels:

535 views • 16 slides
Modeling Cloud Compu.ng and Cloud Networking with VXDL Pascale

Modeling Cloud Compu.ng and Cloud Networking with VXDL Pascale

Modeling Cloud Compu.ng and Cloud Networking with VXDL Pascale Vicat-Blanc CEO of Lya.ss President of VXDLforum with collabora.on of Sebas.en Soudan

736 views • 18 slides
Enabling National Networking of Scientists and Resource Discovery Elaine Collier, MD May 10,

Enabling National Networking of Scientists and Resource Discovery Elaine Collier, MD May 10,

National Center for Research Resources T r a n s l a t I n g r e s e a r c h f r o m b a s i c d i s c o v e r y t o i m p r o v e d p a t I e n t c a r e NATIONAL INSTITUTES OF HEALTH Enabling National Networking of Scientists and

584 views • 13 slides
Experimental Federated Geoprocessing Cloud Services for Earth Science Community H. Astsatryan, A.

Experimental Federated Geoprocessing Cloud Services for Earth Science Community H. Astsatryan, A.

Experimental Federated Geoprocessing Cloud Services for Earth Science Community H. Astsatryan, A. Hayrapetyan, W. Narsisian Institute for Informatics and Automation Problems, National Academy of Sciences of the Republic of Armenia Institute for

325 views • 15 slides
Cloud Index Tracking: Enabling Predictable Costs in Cloud Spot Markets Supreeth Shastri and David

Cloud Index Tracking: Enabling Predictable Costs in Cloud Spot Markets Supreeth Shastri and David

Cloud Index Tracking: Enabling Predictable Costs in Cloud Spot Markets Supreeth Shastri and David Irwin University of Massachusetts Amherst Spot Servers are gaining significance in the cloud Servers that may terminate anytime after an advance

979 views • 54 slides
Exploring Architecture Options for a Federated, Cloud-based Systems Biology Knowledgebase Ian

Exploring Architecture Options for a Federated, Cloud-based Systems Biology Knowledgebase Ian

Exploring Architecture Options for a Federated, Cloud-based Systems Biology Knowledgebase Ian Gorton, Jenny Liu, Jian Yin 1 Systems Biology Systems Biology Integrated study of organisms as a whole Obtain, integrate, and analyze complex data

208 views • 16 slides
Enabling Efficient Batch Verification Enabling Efficient Batch Verification on Data Integrity for

Enabling Efficient Batch Verification Enabling Efficient Batch Verification on Data Integrity for

Enabling Efficient Batch Verification Enabling Efficient Batch Verification on Data Integrity for Cloud on Data Integrity for Cloud ChinLaung Lei Department of Electrical Engineering National Taiwan University 1 Outline Introduction

641 views • 41 slides
Federated Cloud Computing Environment for Malaria Fighting INNOVAR PARA GANAR Vilnius

Federated Cloud Computing Environment for Malaria Fighting INNOVAR PARA GANAR Vilnius

MORFEO NUBA http://nuba.morfeo-project.org Federated Cloud Computing Environment for Malaria Fighting INNOVAR PARA GANAR Vilnius April-11-2011 Aurelio Rodriguez, Carlos Fernndez, Ruben Dez, Hugo Gutierrez and lvaro Simn Proyecto

236 views • 22 slides
Enabling Cloud-Native Applications with Application Credentials in Keystone Colleen Murphy Cloud

Enabling Cloud-Native Applications with Application Credentials in Keystone Colleen Murphy Cloud

Enabling Cloud-Native Applications with Application Credentials in Keystone Colleen Murphy Cloud Developer at SUSE cmurphy @_colleenm Overview Why we needed application credentials What are application credentials? (with demo!)

637 views • 25 slides
Multi-Cloud Federated Kubernetes at CERN Clenimar Filemon @clenimar clenimar@lsd.ufcg.edu.br

Multi-Cloud Federated Kubernetes at CERN Clenimar Filemon @clenimar clenimar@lsd.ufcg.edu.br

Multi-Cloud Federated Kubernetes at CERN Clenimar Filemon @clenimar clenimar@lsd.ufcg.edu.br Ricardo Rocha @ahcorporto ricardo.rocha@cern.ch Fundamental Science Founded in 1954 What is 96% of the universe made of? What was the state of matter

665 views • 25 slides
NCCL 2.0 Sylvain Jeaugey DEEP LEARNING ON GPUS Making DL training times shorter Deeper neural

NCCL 2.0 Sylvain Jeaugey DEEP LEARNING ON GPUS Making DL training times shorter Deeper neural

NCCL 2.0 Sylvain Jeaugey DEEP LEARNING ON GPUS Making DL training times shorter Deeper neural networks, larger data sets training is a very, very long operation ! NCCL 2 CUDA NCCL 1 Multi-GPU Multi-core CPU GPU Multi-GPU Multi-node 2

318 views • 28 slides
Mobility Increases the Capacity of Ad-hoc Wireless Networks Matthias Grossglauser and David Tse

Mobility Increases the Capacity of Ad-hoc Wireless Networks Matthias Grossglauser and David Tse

Reviewing: Mobility Increases the Capacity of Ad-hoc Wireless Networks Matthias Grossglauser and David Tse Presented by Niko Stahl for R202 Context capacity of an ad-hoc wireless network Context capacity of an ad-hoc wireless network

938 views • 24 slides
ElasticTree: Saving Energy in Data Center Networks Brandon Heller, Srini Seetharaman, Priya

ElasticTree: Saving Energy in Data Center Networks Brandon Heller, Srini Seetharaman, Priya

ElasticTree: Saving Energy in Data Center Networks Brandon Heller, Srini Seetharaman, Priya Mahadevan, Yiannis Yiakoumis, Puneet Sharma, Sujata Banerjee, Nick McKeown Presentation by Micha Dereziski Problem Data centers consume huge

255 views • 21 slides
On Evolution of On Evolution of C2 Netw ork Topology C2 Netw ork Topology IC ICCR CRTS 2010

On Evolution of On Evolution of C2 Netw ork Topology C2 Netw ork Topology IC ICCR CRTS 2010

On Evolution of On Evolution of C2 Netw ork Topology C2 Netw ork Topology IC ICCR CRTS 2010 TS 2010 Paper 082 National Key Laboratory of Science and Technology on C4ISR Dr. Songhua Huang NRIEE, CETC, China Introduction C2 netw orks

458 views • 16 slides
Insights from bibliometric network properties into technology evolution - wind energy example -

Insights from bibliometric network properties into technology evolution - wind energy example -

Insights from bibliometric network properties into technology evolution - wind energy example - E. Boelman, T. Telsnig, G. Joanny European Commission, Joint Research Centre Aim and approach of this work Aim Detect/better understand

963 views • 18 slides
PERFORMANCEANALYSIS OFPPFNN PROBABILISTIC

PERFORMANCEANALYSIS OFPPFNN PROBABILISTIC

PERFORMANCEANALYSIS OFPPFNN PROBABILISTIC POTENTIALFUNCTIONNEURAL NETWORK GurselSerpen HongJiang LloydG.Allred*

136 views • 13 slides
Peixin Qiao Illinois Institute of Technology Mo#va#on Simulator & Applica#ons

Peixin Qiao Illinois Institute of Technology Mo#va#on Simulator & Applica#ons

Joint Effects of Application Communication Pattern, Job Placement and Network Routing on Fat-tree Systems Peixin Qiao Illinois Institute of Technology Mo#va#on Simulator & Applica#ons Methodology Fat-Tree Network Job Placement

480 views • 21 slides
BEST PATHS Project: Real-Time Demonstrator for the Integration of Offshore Wind Farms using Multi-

BEST PATHS Project: Real-Time Demonstrator for the Integration of Offshore Wind Farms using Multi-

BEST PATHS Project: Real-Time Demonstrator for the Integration of Offshore Wind Farms using Multi- Terminal HVDC Grids Carlos UGALDE ( Cardiff University, Wales) Salvatore DARCO ( SINTEF, Norway ); Daniel ADEUYI , Sheng WANG , Jun LIANG and

521 views • 31 slides

More recommend