flexible nfv wan interconnections with neutron bgp vpn
play

Flexible NFV WAN interconnections with Neutron BGP VPN Thomas Morin - PowerPoint PPT Presentation

Jan 25, 2023 •470 likes •650 views

Flexible NFV WAN interconnections with Neutron BGP VPN Thomas Morin Orange OpenStack Summit, May 2018, Vancouver BC 2 Agenda BGP VPNs as a key building block for Telcos 1-slide reminder on BGP VPNs Why we like dynamic routing in

  1. Flexible NFV WAN interconnections with Neutron BGP VPN Thomas Morin Orange OpenStack Summit, May 2018, Vancouver BC

  2. 2 Agenda BGP VPNs as a key building block for Telcos  1-slide reminder on BGP VPNs  Why we like dynamic routing in these contexts  An example with vEPC  How do OpenStack and SDN controllers come into the picture ?  Neutron BGP VPN  3-slides drill down  Live demo ! 

  3. 3 BGP VPNs: a base building block in the NFV toolbox  Telcos require network isolation mobile backhaul business,  public mobile, residential cloud wholesale/B2B offers  customers IP/MPLS triple-play backbones  core & access … these do not run directly NFV over the Internet ! internal cloud NFV POPs platforms & POPs OSS BGP VPNs: a key building block  used by Telcos to address this need for isolation And then NFV comes into the picture !  => need to interconnect these WAN BGP VPNs with the NFV Infrastructure, i.e. OpenStack

  4. 4 Base principles of BGP VPNs (simplified) dataplane: MPLS, to isolate the traffic of different VPNs on the wire  MPLS (in this context): an encapsulation carrying packets of a VPN  MPLS “label”: dataplane identifier used for isolation  control plane: BGP routing protocol, to indicate how to reach a destination  advertise routes:  “10.11.0.0/16 in VPN 888:42 is reachable via router @X using MPLS Label N”  VPN “identifiers”: “Route Target” (e.g. 888:42)  calling them ‘identifier’ is very simplified, there is much more flexibility – only present in the control plane, not on the wire! – initially for L3VPNs (end of 20th century)  then extended for L2/Ethernet, in particular E-VPN (a few years ago)  dataplane later extended to other encapsulations:  MPLS/GRE, MPLS/UDP  VXLAN for E-VPN 

  5. 5 Dynamic routing required, why ? [ 1/2 ] Anycast load-balancing « Anycast »: multiple hosts (e.g. VMs) sharing a given IP  Equal Cost Multi-Path (ECMP)  ECMP: the kind of packet load balancing done by routers  most often done per-flow  We like to combine per packet – these ! 5-tuple hashing to always load balance a given flow on the same path – Scale-up/Scale-down  Dynamic routing lets routers dynamically know the (multiple)  places where a given service IP is present e.g. the multiple VM ports where a given service IP is defined –

  6. 6 Dynamic routing required, why ? [2/2] Let's avoid router configuration provisioning when we can !  Typical hurdles if router configuration provisioning is involved:  need to configure VRFs, VLANs, static routes  router configuration is not managed by the same ops team (sometimes)  router automation tooling/standards: – not yet easy enough so that we can assume its here – even when done : need to interconnect the tools together  How to avoid that ? => dynamic routing from the SDN controller !  have the SDN controller advertise BGP VPN routes  only one-shot router configuration: no per-VPN, or per-VM configuration  IP/MPLS gateways know about VMs coming & going thanks to dynamic route updates

  7. 7 A (simplified) illustration: vEPC P-Gateways POP NFV Infrastructure 20.0.0.42 IP/MPLS VNF components for P-GWs Mobile backhaul Mobile backhaul 3.3.3.3 gateway reachable via BGP advertisements SDN Controller P-GW P-GW P-GW 3.3.3.3 3.3.3.3 3.3.3.3 Internet, or 20.0.0.0/24 a B2B customer VPN reachable via

  8. 8 Let's do this with the Openstack Networking API ! Initial context: some SDN  controllers support BGP VPN routing each with their own API  an API to control … no possibility to let tenants  BGP VPN features of ... manage their BGP VPN connectivity Need for an API being :  SDN-controller agnostic  multi-tenant 

  9. 9 BGP VPN : also with Neutron drivers ! Beyond an API towards BGPVPN  features in SDN controllers, an implementation in Neutron is also important : as a reference driver, for use in the an API to control …  OpenStack CI BGP VPN features of ... because you can want to use these  features with Neutron ML2 drivers, without adding a heavier SDN controller to your deployment

  10. 10 Networking BGPVPN features BGPVPN definitions: Drivers for...   Neutron ML2 L2 – EVPN   OVS L3 – IP VPN –  linuxbridge – Granularity of what is interconnected: OpenDaylight   a Network Tungsten Fabric / Contrail   a Router  Nuage Networks  a Port  And also... Fine-grained control of routing (Queens)   Heat bindings static prefixes reachable via a Port   a.k.a « static routes » Horizon GUI –  routes of another BGPVPN reachable Tempest suite   via a Port a.k.a « route leaking » – control of BGP local preference  e.g. active/backup –

  11. 11 Example workflow for BGPVPN API BGP VPN BGP VPN Neutron BGP VPN API resources BGP VPN BGP VPN “default VPN” “default VPN” creates a BGPVPN Type: L3 resource BGP Route-Target: 1234:42 and gives it to Tenant: Project Lambda “Project Lambda” Openstack Admin Network creates an Network Association Association Association resource to setup an interconnection Network X some user in Network X (already existing “Project Lambda” API resources)

  12. 12 Neutron BGPVPN service plugin architecture WAN  Backend X Backend X BGP (e.g. Neutron OVS, OpenDaylight, (e.g. Neutron OVS, OpenDaylight, API Neutron VPN API OpenContrail, Nuage, etc.) ? Neutron OpenContrail, Nuage, etc.) routes DC DC  GW BGPVPN GW BGPVPN router Service Plugin router  Service Plugin  driver for driver for X…  X… dataplane dataplane packets carried (vswitch/ vrouter) (vswitch/ vrouter) over MPLS to/from VPNs … … VMs … … VMs

  13. 13 Let's do a demo !  What will we do ?  a set of anycast DNS servers dynamically made reachable in a BGPVPN end-user  dynamically scale up / down – zero touch on the gateway IP/MPLS router  How ?  Under the hood: VPN red – IP/MPLS router running in a VM – simulated end-user (VM) connected in the VPN IP/MPLS router – Openstack : a devstack VM – Neutron OVS reference driver for BGP VPN (a.k.a bagpipe) – OpenVSwtich >= 2.8 (for MPLS/GRE support)  In the OpenStack tenant : – a BGPVPN (L3/IPVPN) devstack – one-shot creation by the admin – match VPN instance on router – simple DNS server VMs – each configured to give a different DNS answer DNS DNS DNS DNS to make load balancing easily observed VM-1 VM-2 VM-3 – each VM Port is associated with the BGPVPN, VM-1 10.8.8.8 10.8.8.8 10.8.8.8 with a route set for the DNS servers anycast IP (10.8.8.8)

  14. (demo script)  bgpvpn list  port create port1 --network private  server create dns-vm1 --port port1 --user-data cloudinit-dns1.sh --flavor cirros256 --image cirros  port set port1 --allowed-address ip-address=10.8.8.8  bgpvpn port association create vpn-red port1 --prefix-route prefix=10.8.8.8/32  # dig @10.8.8.8 vancouver.demo  port create port2 --network private  server create dns-vm2 --port port2 --user-data cloudinit-dns2.sh --flavor cirros256 --image cirros  port set port2 --allowed-address ip-address=10.8.8.8  bgpvpn port association create vpn-red port2 --prefix-route prefix=10.8.8.8/32  # dig @10.8.8.8 vancouver.demo # multiple times to see the effect of load balancing  port create port3 --network private  server create dns-vm3 --port port3 --user-data cloudinit-dns3.sh --flavor cirros256 --image cirros  port set port3 --allowed-address ip-address=10.8.8.8  bgpvpn port association create vpn-red port3 --prefix-route prefix=10.8.8.8/32  # dig @10.8.8.8 vancouver.demo  server delete dns-vm1  # dig @10.8.8.8 vancouver.demo  server delete dns-vm3 cloudinit-dns.sh: #!/bin/sh  # dig @10.8.8.8 vancouver.demo ip addr add 10.8.8.8/32 dev lo echo vancouver.demo 1.1.1.1 > /etc/dnsd.conf dnsd

  15. 15 What's next... ?  Rocky  Implement support for Router Association advertise_extra_routes attribute  On the radar  possible API evolutions... – BGPaaS – trigger to enable BFD healthcheck – control of BGP Communities – P2P/VPWS – self-service BGPVPN  driver for networking-ovn ?  driver for dragonflow ?  Related  « Neutron-Neutron Interconnections » how to let cloud users get private, on-demand interconnections without the overhead of IPSec

  16. 16 Wrap up Neutron BGPVPN API extension provides key features to let us do  NFV interconnects in flexible ways Many other use cases as well  multi-DC / inter-DC  cloud / business interconnects  This is opensource: your contributions are welcome !  (and needed!) #openstack-net-bgpvpn (irc.freenode.net) 

  17. Useful pointers... Related talks during this summit:  « Integration of Multiple OpenStack Clouds with a Core MPLS Network »  « Using Neutron BGP VPN for edge networking »  Related work in progress  « Neutron-Neutron Interconnections »  https://specs.openstack.org/openstack/neutron-specs/specs/rocky/neutron-inter.html Docs  API: https://developer.openstack.org/api-ref/network/v2/#bgp-mpls-vpn-interconnection  Service plugin and drivers: https://docs.openstack.org/networking-bgpvpn/latest  Release notes  https://docs.openstack.org/releasenotes/networking-bgpvpn  Hint: these links are clickable in the PDF at

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

? VM VM VM VM VM VM VM VM VM VM VM VM How to interconnect two OpenStack deployments ?

? VM VM VM VM VM VM VM VM VM VM VM VM How to interconnect two OpenStack deployments ?

Neutron-Neutron interconnections Thomas Morin ? VM VM VM VM VM VM VM VM VM VM VM VM How to interconnect two OpenStack deployments ? ( two or more OpenStack ? two regions ?) Between datacenters or between NFV POPs, you may

203 views • 7 slides
Introduction to neutron scattering for MENA3100 Part 1: - Geir Helgesen The neutron Neutron

Introduction to neutron scattering for MENA3100 Part 1: - Geir Helgesen The neutron Neutron

Introduction to neutron scattering for MENA3100 Part 1: - Geir Helgesen The neutron Neutron production Interactions between neutrons and matter Neutron detection What can be studied using neutrons Small-angle neutron

642 views • 26 slides
Interconnections Benchmarking Overview July 25, 2016 Agenda Introduction

Interconnections Benchmarking Overview July 25, 2016 Agenda Introduction

Interconnections Benchmarking Overview July 25, 2016 Agenda Introduction Interconnections Overview Benchmarking Background & Process Key Findings, Themes & Issues Recommendations & Our Plan Questions

718 views • 34 slides
CKM Unitarity and Neutron Beta Decay Measuring V ud in Neutron Beta Decay Bastian Mrkisch

CKM Unitarity and Neutron Beta Decay Measuring V ud in Neutron Beta Decay Bastian Mrkisch

CKM Unitarity and Neutron Beta Decay Measuring V ud in Neutron Beta Decay Bastian Mrkisch Physik-Department Technische Universitt Mnchen CKM Matrix Element V ud Effective CC Couplings Neutron Lifetime Neutron Decay Corellations Neutron

838 views • 37 slides
Development of a New Search for Neutron/Anti-neutron Oscillation at the European Spallation

Development of a New Search for Neutron/Anti-neutron Oscillation at the European Spallation

Development of a New Search for Neutron/Anti-neutron Oscillation at the European Spallation Source Matthew Frost UTK HEP Seminar April 5, 2017 Why study NNbar? Novel Observation: The spontaneous transmutation of a neutron to an

483 views • 22 slides
Neutron Imaging Principles and Status Historical and theoretical introduction to neutron

Neutron Imaging Principles and Status Historical and theoretical introduction to neutron

Wir schaffen Wissen heute fr morgen Paul Scherrer Institut Eberhard H. Lehmann in the name of the Neutron Imaging & Activation Group (NIAG) Neutron Imaging Principles and Status Historical and theoretical introduction to neutron

773 views • 50 slides
Di-neutron correlation and BCS-BEC crossover in the structure and decay of light neutron-rich

Di-neutron correlation and BCS-BEC crossover in the structure and decay of light neutron-rich

Di-neutron correlation and BCS-BEC crossover in the structure and decay of light neutron-rich nuclei Kouichi Hagino Tohoku University, Sendai, Japan Hiroyuki Sagawa RIKEN/ University of Aizu 1. Neutron-rich nuclei 2. Di-neutron correlation

487 views • 12 slides
Neutron Scattering Guorong Li Advanced Solid State Physics II Outline Background

Neutron Scattering Guorong Li Advanced Solid State Physics II Outline Background

Introduction to Neutron Scattering Guorong Li Advanced Solid State Physics II Outline Background Properties of Neutron Neutron Scattering Principles Neutron Scattering Experiments Neutron Production Summary Why Scientist

387 views • 14 slides
The search for a neutron EDM at the Spallation Neutron Source, ORNL Kent Leung North Carolina

The search for a neutron EDM at the Spallation Neutron Source, ORNL Kent Leung North Carolina

The search for a neutron EDM at the Spallation Neutron Source, ORNL Kent Leung North Carolina State University & Triangle Universities Nuclear Laboratory International Workshop on Particle Physics at Neutron Sources 2018: May 24-26

296 views • 28 slides
Are neutron stars turbulent? Anthony van Eysden & Bennett Link Outline Neutron star

Are neutron stars turbulent? Anthony van Eysden & Bennett Link Outline Neutron star

Are neutron stars turbulent? Anthony van Eysden & Bennett Link Outline Neutron star observations Convective turbulence Rotation-powered instabilities General picture and conclusions Neutron stars Ultra-compact stellar corpses

459 views • 32 slides
Neutron Rich Matter and Neutron Star Crusts C. J. Horowitz, Indiana University INT Workshop,

Neutron Rich Matter and Neutron Star Crusts C. J. Horowitz, Indiana University INT Workshop,

Neutron Rich Matter and Neutron Star Crusts C. J. Horowitz, Indiana University INT Workshop, June 2007 Neutron Rich Matter and Neutron Star Crusts I) Neutrinosphere in supernovae and the viral expansion. II) Crust properties and the density

756 views • 37 slides
Flexible Infrastructure Qualification What Is Flexible Infrastructure/Benefits Flexible

Flexible Infrastructure Qualification What Is Flexible Infrastructure/Benefits Flexible

Flexible Infrastructure Qualification What Is Flexible Infrastructure/Benefits Flexible Infrastructure is a system of systems that will provide capabilities for rapid space changes without the use of hot work. Benefits:

546 views • 8 slides
Neutrons for magnetism Used in magnetic neutron diffraction in 1949 (Clifford Shull)

Neutrons for magnetism Used in magnetic neutron diffraction in 1949 (Clifford Shull)

8/25/11 Neutrons Neutron discovered by James Chadwick in 1932 Neutrons for magnetism Used in magnetic neutron diffraction in 1949 (Clifford Shull) Neutron mass close to proton mass Stephen Blundell Neutron decays in ~15 minutes

310 views • 8 slides
Neutron Star Crust Accreting neutron stars presents a unique environment for nuclear reactions

Neutron Star Crust Accreting neutron stars presents a unique environment for nuclear reactions

Fusion of Neutron-Rich Light Nuclei: What can we learn? Sylvie Hudan Indiana University Astrophysical interest Fusion dynamics Alpha cluster structure INDIANA UNIVERSITY DOE Grant: DE.FG02-88ER.40404 A024 Neutron Star Crust

245 views • 12 slides
Personalized Learning Flexible Seating and Space Flexible Seating and Space Flexible Seating and

Personalized Learning Flexible Seating and Space Flexible Seating and Space Flexible Seating and

Personalized Learning Flexible Seating and Space Flexible Seating and Space Flexible Seating and Space Flexible Seating and Space Departmentalizing and Schedule -Homerooms -ELA/MATH -Science/SS/Writing Independent Study Must Dos:

275 views • 10 slides
Diagnosing Implosion Performance at the NIF by Means of Neutron-Spectrometry and Neutron-Imaging

Diagnosing Implosion Performance at the NIF by Means of Neutron-Spectrometry and Neutron-Imaging

Diagnosing Implosion Performance at the NIF by Means of Neutron-Spectrometry and Neutron-Imaging Techniques Presentation to 24 th IAEA Fusion Energy Conference San Diego, CA, USA October 8-13, 2012 Johan Frenje on behalf of the NIF team

489 views • 22 slides
Mini-1 VMM2 Presentation of measurements done at Technion . 3/11/2015 Technion Alex &

Mini-1 VMM2 Presentation of measurements done at Technion . 3/11/2015 Technion Alex &

Results from tests done lately Mini-1 VMM2 Presentation of measurements done at Technion . 3/11/2015 Technion Alex & Nachman 1 Content Revisit the problems related with the sTGC PAD High Capacitance. Revisit the dynamic range ,

346 views • 11 slides
Company Information norxe AS, established Sept 1st, 2015 Organization number: 915 912 850 MVA

Company Information norxe AS, established Sept 1st, 2015 Organization number: 915 912 850 MVA

Company Information norxe AS, established Sept 1st, 2015 Organization number: 915 912 850 MVA Norxe will develop, manufacture and sell value based innovative professional products and services worldwide. We will support partners pre and post

291 views • 16 slides
Ral Torrego Ikerlan-IK4 rtorrego@ikerlan.es INDEX Introduction Software Defined Radios

Ral Torrego Ikerlan-IK4 rtorrego@ikerlan.es INDEX Introduction Software Defined Radios

OQPSK COGNITIVE MODULATOR FULLY FPGA-IMPLEMENTED VIA DYNAMIC PARTIAL RECONFIGURATION AND RAPID PROTOTYPING TOOLS Ral Torrego Ikerlan-IK4 rtorrego@ikerlan.es INDEX Introduction Software Defined Radios / Cognitive Radios Rapid

733 views • 16 slides
Rosinter Restaurants Holding (RRH) Investors and analysts conference call February 18, 2013

Rosinter Restaurants Holding (RRH) Investors and analysts conference call February 18, 2013

Rosinter Restaurants Holding (RRH) Investors and analysts conference call February 18, 2013 Disclaimer This presentation contains "forward-looking statements" which include all statements other than statements of historical fact. Such

309 views • 10 slides
CADRE NAV08Presentation November2008 Tim Thornton Smartcom Software

CADRE NAV08Presentation November2008 Tim Thornton Smartcom Software

CADRE NAV08Presentation November2008 Tim Thornton Smartcom Software tt@smartcomsoftware.com CADRE NAV08 Slide 1 Congestion CADRE Avoidance Dynamic Routing Engine Vehicle routing and traffic

808 views • 22 slides
A U R I S M I C R O - S E R V I C E S Empowering Businesses Through Simple

A U R I S M I C R O - S E R V I C E S Empowering Businesses Through Simple

A U R I S M I C R O - S E R V I C E S Empowering Businesses Through Simple Enablement This has been our commitment since 1981. Headquartered in Miami and with offices in Orlando, Buenos Aires, Guayaquil and Madrid ; Cima Group is

662 views • 17 slides
Environm ental sensitivity Alpine Ecosystem Jochen Tschiersch Helmholtz Zentrum Mnchen

Environm ental sensitivity Alpine Ecosystem Jochen Tschiersch Helmholtz Zentrum Mnchen

Environm ental sensitivity Alpine Ecosystem Jochen Tschiersch Helmholtz Zentrum Mnchen Institute of Radiation Protection Exp. Radioecology Vienna, 25-29/ 01/ 2010 Alpine Ecosystem Alpine ecosystem s show a very distinct behaviour:

977 views • 8 slides
20 Dynamic Practice Guidelines for Emergency General Surgery 18 Committee on Acute Care

20 Dynamic Practice Guidelines for Emergency General Surgery 18 Committee on Acute Care

20 Dynamic Practice Guidelines for Emergency General Surgery 18 Committee on Acute Care Surgery, Canadian Association of General Surgeons 19 AN ACUTE PRESENTATION OF A HERNIA Dynamic Practice Guidelines for Emergency General Surgery Sarah

2.57k views • 17 slides

More recommend