networking on the ground in the cloud and in containers
play

Networking on the ground, in the cloud, and in containers What is - PowerPoint PPT Presentation

Sep 23, 2022 •20 likes •200 views

Networking on the ground, in the cloud, and in containers What is in the box? Router A computer optimized for routing and forwarding Operating system to manage resources Routing protocol implementations (e.g., BGP, OSPF) Lots of

  1. Networking on the ground, in the cloud, and in containers

  2. What is in the box?

  3. Router A computer optimized for routing and forwarding • Operating system to manage resources • Routing protocol implementations (e.g., BGP, OSPF) • Lots of ports (not TCP ports) • Chip to forward traffic between ports at “line rate”

  4. Router (2) Traditionally, a hardware-software combo sold by a router vendor • Cisco • Juniper • Arista • …. But moving toward open systems • SONiC – open source router OS from Microsoft • Running on commodity hardware

  5. Configuring the router Routers are not plug-n-play • Configure IP addresses • Configure which protocols to run • Configure those protocols • Configure management aspects, e.g., DNS servers, NTP servers Configuration uses custom syntax: • Example Cisco file: https://github.com/batfish/pybatfish/blob/master/jupyter_notebooks/netwo rks/example/configs/as1border2.cfg

  6. Configuring the router (2) Traditionally, configuration has been done manually • Figure out the change, reason about it manually • Log in to the router and apply the change • High risk of logical errors and “fat fingers” Increasingly, more automation • Ansible, SaltStack, Nornir • Batfish

  7. Making a network out of routers 1. Get them connected

  8. Making a network out of routers 1. Get them connected 2. Configure routers • Basic initial configuration provides connectivity to the router 3. Monitor, monitor, monitor 4. Configuration changes and maintenance

  9. What is in this box?

  10. Originally App App Libs OS Hardware To network

  11. Then came virtual machines (VMs) App App App App HW became too powerful VM Libs Libs • Run multiple OSes on OS OS the same machine • Cheaper that way Virtual HW Virtual HW Hypervisor + OS The hypervisor virtualizes the HW and fools the OS Hardware • Provides isolation To network The network thinks multiple hosts are connected The hypervisor acts as a hub for inter-VM traffic

  12. VMs in the cloud Customer A Customer B Customer B Customer C App App App App App App App App 10.10.10.1 10.10.10.2 Libs Libs Libs Libs OS OS OS OS Overlay (virtual) Virtual HW Virtual HW Virtual HW Virtual HW Hypervisor Hypervisor 192.1.1.1 206.7.7.8 Hardware Hardware Underlay (physical) Forwarding between VMs involves a DNS-style lookup from overlay address to underlay location

  13. Enter containers App App Lighter-weight virtualization than VMs Container Libs Libs • Libraries, not the full OS Container runtime (Docker) Better isolation and packaging than apps • Bundle the library versions you need OS Hardware To network

  14. Container networking Connect containers to the outside world and to each other App App • Port conflicts among containers and other Libs Libs apps running on the same host Container runtime (Docker) • High performance between containers on the same host OS • (Virtual) private network between related Hardware containers (service mesh)

  15. Container networking: Host Containers share the IP address (and networking stack) of the host. • Cannot handle port conflicts • Minimal overhead

  16. Container networking: Bridge An internal network for containers on the same host. • Use NATs for outside world

  17. Container networking: Overlay Create a private network across containers on different hosts • VXLAN is a common way to do that

  18. CNI: Container networking interface Specification for writing plugins to configure network interfaces • Decouple runtime from network configuration • Plugins provide an interface that orchestration engines can use • GitHub repo: https://github.com/containernetworking/cni

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Cloud Native and Container Technology Landscape Chris Aniszczyk (@cra) Rise of Containers and

Cloud Native and Container Technology Landscape Chris Aniszczyk (@cra) Rise of Containers and

Cloud Native and Container Technology Landscape Chris Aniszczyk (@cra) Rise of Containers and Cloud Native Computing! Google running 2B+ containers per week! Internet scale companies are running containers too: Facebook, Twitter,

1.8k views • 49 slides
Brings OpenStack networking and storage to containers Kubernetes Neutron Networking

Brings OpenStack networking and storage to containers Kubernetes Neutron Networking

Brings OpenStack networking and storage to containers Kubernetes Neutron Networking Native OpenStack infrastructure for mixed workloads spec: podSelector: matchLabels: role: db policyTypes: -

773 views • 8 slides
fundamental technologies to work on for cloud-native networking Magnus Karlsson, Intel

fundamental technologies to work on for cloud-native networking Magnus Karlsson, Intel

fundamental technologies to work on for cloud-native networking Magnus Karlsson, Intel Cloud-Native Network Functions My View Many small network functions App App App App Runs in containers / processes Routing / Switching

207 views • 16 slides
CS 5220: VMs, containers, and clouds David Bindel 2017-10-12 1 Cloud vs HPC Is the cloud

CS 5220: VMs, containers, and clouds David Bindel 2017-10-12 1 Cloud vs HPC Is the cloud

CS 5220: VMs, containers, and clouds David Bindel 2017-10-12 1 Cloud vs HPC Is the cloud becoming a supercomputer? What does this even mean? Compute cycles and raw bits, or something higher level? Bare metal or virtual machines?

354 views • 31 slides
Can Cloud Computing Can Cloud Computing and Optical Networking and Optical Networking S S

Can Cloud Computing Can Cloud Computing and Optical Networking and Optical Networking S S

Can Cloud Computing Can Cloud Computing and Optical Networking and Optical Networking S S Save the Planet? Save the Planet? th th Pl Pl t? t? Rod Tucker, Jayant Baliga, Robert Ayre, Kerry Hinton ARC Special Research Centre for

247 views • 21 slides
X-Containers: Breaking Down Barriers to Improve Performance and Isolation of Cloud-Native

X-Containers: Breaking Down Barriers to Improve Performance and Isolation of Cloud-Native

X-Containers: Breaking Down Barriers to Improve Performance and Isolation of Cloud-Native Containers Zhiming Shen Cornell University Joint work with Zhen Sun, Gur-Eyal Sela, Eugene Bagdasaryan, Christina Delimitrou, Robbert Van Renesse, Hakim

266 views • 26 slides
A vision for Carrier Cloud Networking... Itzik Weinstein, CEO 1 Cloud Services The Cloud is

A vision for Carrier Cloud Networking... Itzik Weinstein, CEO 1 Cloud Services The Cloud is

A vision for Carrier Cloud Networking... Itzik Weinstein, CEO 1 Cloud Services The Cloud is highly scalable, and managed infrastructure capable of hosting end- customer applications and billed by consumption. - Forrester Virtual

399 views • 6 slides
Linux Containers Drive P2P Social Cloud Computing By Alex Karasulu Social cloud computing ,

Linux Containers Drive P2P Social Cloud Computing By Alex Karasulu Social cloud computing ,

Linux Containers Drive P2P Social Cloud Computing By Alex Karasulu Social cloud computing , generalizes cloud computing to include the sharing, bartering and renting of computing resources across peers whose owners and operators are verified

641 views • 31 slides
SERVERLESS + CONTAINERS = MODERN CLOUD APPLICATIONS Donna Malayeri Product Manager, Pulumi

SERVERLESS + CONTAINERS = MODERN CLOUD APPLICATIONS Donna Malayeri Product Manager, Pulumi

SERVERLESS + CONTAINERS = MODERN CLOUD APPLICATIONS Donna Malayeri Product Manager, Pulumi @PulumiCorp @lindydonna SERVERLESS AND CONTAINERS Tradeoff between control and productivity Containers give you full control over your compute

720 views • 40 slides
Containers At Scale At Google, the Google Cloud Platform and Beyond Joe Beda jbeda@google.com

Containers At Scale At Google, the Google Cloud Platform and Beyond Joe Beda jbeda@google.com

Containers At Scale At Google, the Google Cloud Platform and Beyond Joe Beda jbeda@google.com @jbeda google.com/+JoeBeda Senior Staff Software Engineer, Google Cloud Platform GlueCon - May 22, 2014 Google and Containers Everything

574 views • 18 slides
One Network To Rule Them All: Open, Scalable & Integrated Networking for Containers and VMs

One Network To Rule Them All: Open, Scalable & Integrated Networking for Containers and VMs

One Network To Rule Them All: Open, Scalable & Integrated Networking for Containers and VMs Phil Estes <estesp@us.ibm.com> @estesp Kyle Mestery <mestery@us.ibm.com> @mestery Container Introduction Containers are a lie we

323 views • 18 slides
Containers can actually improve your security story(!) Maya Kaczorowski, Google Cloud June 12

Containers can actually improve your security story(!) Maya Kaczorowski, Google Cloud June 12

Containers can actually improve your security story(!) Maya Kaczorowski, Google Cloud June 12 2019 Maya Kaczorowski Security PM, Google Cloud @MayaKaczorowski Objection: My security team is opposed to containers and Kubernetes 3

649 views • 41 slides
Project Kuryr Here comes advanced services for containers networking Mohammad Banikazemi

Project Kuryr Here comes advanced services for containers networking Mohammad Banikazemi

Project Kuryr Here comes advanced services for containers networking Mohammad Banikazemi @MBanikazemi Gal Sagie @GalSagie Antoni Segura Puimedon @celebdor Outline Motivation and Introduction Current state Kubernetes

582 views • 34 slides
Modeling Cloud Compu.ng and Cloud Networking with VXDL Pascale

Modeling Cloud Compu.ng and Cloud Networking with VXDL Pascale

Modeling Cloud Compu.ng and Cloud Networking with VXDL Pascale Vicat-Blanc CEO of Lya.ss President of VXDLforum with collabora.on of Sebas.en Soudan

736 views • 18 slides
Surviving the Zombie Apocalypse Security in the Cloud Containers, KVM and Xen Ian Jackson

Surviving the Zombie Apocalypse Security in the Cloud Containers, KVM and Xen Ian Jackson

Surviving the Zombie Apocalypse Security in the Cloud Containers, KVM and Xen Ian Jackson <ian.jackson@eu.citrix.com> FOSDEM 2015 originally based on a talk and research by George Dunlap "Some people make the mistake of thinking

328 views • 6 slides
Power-up Networking for Containers Jason Messer, Microsoft Focus and Key Takeaways Microsoft

Power-up Networking for Containers Jason Messer, Microsoft Focus and Key Takeaways Microsoft

Power-up Networking for Containers Jason Messer, Microsoft Focus and Key Takeaways Microsoft is active in and engaged with the FOSS community Microsoft understands DevOps and Microservice architectures Developers and IT Pros have a

710 views • 43 slides
CCN-CERT Setting up a Governmental CERT: The CCN-CERT Case Study Sevilla, June 2007

CCN-CERT Setting up a Governmental CERT: The CCN-CERT Case Study Sevilla, June 2007

CCN-CERT Setting up a Governmental CERT: The CCN-CERT Case Study Sevilla, June 2007 Presentation FORUM: 19th Annual FIRST Conference SESSION: CCN Initiative of a Governmental CERT OBJECTIVE: Set the scope and goals of CCN

648 views • 28 slides
Ontology and Cyber Security May 18 th 2013 Bill Mandrick, PhD Senior Ontologist 2 2/12/2013

Ontology and Cyber Security May 18 th 2013 Bill Mandrick, PhD Senior Ontologist 2 2/12/2013

Ontology and Cyber Security May 18 th 2013 Bill Mandrick, PhD Senior Ontologist 2 2/12/2013 AGENDA Ontology of Computer Network Operations DoD and USG Efforts Cyber Fast Track Computer Network Operations (CNO) Computer

646 views • 27 slides
Polarization analysis of antiprotons produced in pA collisions D. GRZONKA, FORSCHUNGSZENTRUM

Polarization analysis of antiprotons produced in pA collisions D. GRZONKA, FORSCHUNGSZENTRUM

Polarization analysis of antiprotons produced in pA collisions D. GRZONKA, FORSCHUNGSZENTRUM JLICH CERN/PS P349 D. Alfs , D. Grzonka, F. Hauenstein*, K. Kilian, IKP, Forschungszentrum Jlich, 52425 Jlich, Germany D. Lersch, J. Ritman, T.

570 views • 20 slides
Industry Responses to the European Directive on Security of Network and Information Systems

Industry Responses to the European Directive on Security of Network and Information Systems

Industry Responses to the European Directive on Security of Network and Information Systems (NIS) Dr Ola Michalec, Dr Sveta Milyaeva, Dr Dirk van der Linden, Prof Awais Rashid Image credit: Terrence J Sullivan. CC Licensed.

750 views • 9 slides
Equilibrium in Continuous-Time Financial Markets: Endogenously Complete Markets (with Roberto

Equilibrium in Continuous-Time Financial Markets: Endogenously Complete Markets (with Roberto

Equilibrium in Continuous-Time Financial Markets: Endogenously Complete Markets (with Roberto Raimondo, University of Melbourne) Dedicated to the Memory of Gerard Debreu and Shizuo Kakutani 1 General Equilibrium Theory : Theory of

236 views • 13 slides
The CNI Open Source Satellite Simulator based on OMNeT++ Brian Niehfer, Sebastian Subik and

The CNI Open Source Satellite Simulator based on OMNeT++ Brian Niehfer, Sebastian Subik and

University of Technology Dortmund 6th International OMNeT++ Workshop The CNI Open Source Satellite Simulator based on OMNeT++ Brian Niehfer, Sebastian Subik and Christian Wietfeld 05.03.2013 Faculty of Electrical Engineering and IT

510 views • 19 slides
Dependability Analysis Using SAM Tianjun Shi, Xudong He School of Computer Science Florida

Dependability Analysis Using SAM Tianjun Shi, Xudong He School of Computer Science Florida

Dependability Analysis Using SAM Tianjun Shi, Xudong He School of Computer Science Florida International University {tshi01, hex}@cs.fiu.edu Goal & Method Goal Enable the Software Architecture Model (SAM) to model and analyze both

297 views • 13 slides
Climate Research Activities on Garuda-NKN Platform S. K. Dash S. K. Dash

Climate Research Activities on Garuda-NKN Platform S. K. Dash S. K. Dash

Climate Research Activities on Garuda-NKN Platform S. K. Dash S. K. Dash

1.11k views • 32 slides

More recommend