one network to rule them all
play

One Network To Rule Them All: Open, Scalable & Integrated - PowerPoint PPT Presentation

Apr 19, 2023 •131 likes •323 views

One Network To Rule Them All: Open, Scalable & Integrated Networking for Containers and VMs Phil Estes <estesp@us.ibm.com> @estesp Kyle Mestery <mestery@us.ibm.com> @mestery Container Introduction Containers are a lie we

  1. One Network To Rule Them All: Open, Scalable & Integrated Networking for Containers and VMs Phil Estes <estesp@us.ibm.com> @estesp Kyle Mestery <mestery@us.ibm.com> @mestery

  2. Container Introduction “Containers are a lie we tell a process.” - Mark Shuttleworth Mount Why Containers? ● Extremely lightweight (only a IPC Linux process) Network ● Fast startup (process start + small Contained Contained Contained overhead for containment setup) Process Process Process User ● Container ecosystem has created simple and standard packaging UTS model for applications ● Great fit with current PID development and cloud-era initiatives: a) CI/CD ; b) microservice architectures Linux Kernel

  3. Container Introduction: Networking > There is no such thing as (Linux) container networking ! You may create a new network namespace in Linux. • Processes in this network namespace will have a unique list of network interfaces • This namespace will have its own routing table • Methods for creating , connecting and routing these virtual interfaces is up to the implementor of the container runtime. • Many runtimes default to using a Linux bridge with virtual ethernet pairs assigned to the container network namespace; this is the original Docker default networking style

  4. What Is Software Defined Networking? Software - defined networking ( SDN ) is an umbrella term encompassing several kinds of network technology aimed at making the network as agile and flexible as the virtualized server and storage infrastructure of the modern data center.” Fundamentally, it’s about: • Operational scale • Agility and speed • Moving complexity from HW to SW

  5. Neutron Abstractions Virtual Machine vm1 vm2 (or container) IP: 10.10.10.100 IP: 10.10.10.200 Virtual Interface (VIF) Virtual Port Virtual Network net1 Virtual Subnet 10.10.10.0/24

  6. ...You Can Then Build This: B-vm2 A-vm2 IP: 192.168.1.5 A-vm1 IP: 192.168.1.5 A-vm3 B-vm1 B-vm3 IP: 192.168.9.3 IP: 192.168.1.5 IP: 192.168.5.2 IP: 192.168.5.9 IP: 192.168.1.3 IP: 192.168.9.7 Tenant B Tenant A Tenant B Tenant A net1 net2 net2 net1 192.168.1.0/0 192.168.5.0/0 192.168.9.0/0 192.168.1.0/0 Public Network 10.50.50.0/24

  7. Open vSwitch 101 • Open vSwitch is a virtual switch which runs on a host or hypervisor • Open vSwitch is composed of: • Linux Kernel module • ovs-vswitchd daemon Open vSwitch • ovsdb-server daemon

  8. Open Virtual Networking 101 • OVN is a virtual networking system which: • manages Open vSwitch across a cluster of hosts • integrates with a cloud management system (CMS) • OVN adds the following components to an OVS environment: • ovn-northd daemon • Central ovsdb-server with OVN NB and SB databases OVN • ovn-controller daemon on each host in the cluster (Open Virtual Network)

  9. OVN Architecture OpenStack Plugin OVN Northbound DB ovn-northd OVN Southbound DB ovn-controller ovn-controller ovs-vswitchd ovsdb-server ovs-vswitchd ovsdb-server Hypervisor-1 Hypervisor-2

  10. Current Ecosystem: Containers & Networking There is more than one model for Linux container networking: > Container Network Interface (CNI) • Developed via CoreOS appc project; used by K8s, rkt, others > Container Network Model (CNM) • Developed by Socketplane team; acquired by Docker • libnetwork is an implementation of CNM • Project Kuryr supports CNM by way of implementing a libnetwork plugin

  11. Ecosystem Players: Container Networking Growing list of ecosystem players for container networking Docker has enabled pluggability at Project Calico several layers in the engine: storage, networking, authorization, layer (graph) store Weave.works Several 3rd party networking plugins available for libnetwork OVN (Open Virtual Network)

  12. Container Networking: libnetwork Network Sandbox Network Sandbox Network Sandbox Endpoint Endpoint Endpoint Endpoint Frontend Network Backend Network

  13. Project Kuryr: Docker Networking for Neutron Docker Engine ● libnetwork ● ○ Neutron https://github.com/openstack/kuryr

  14. Kuryr: Docker to Neutron Mapping Sandbox Endpoint plug() unplug() Network requires code for different vif types:

  15. Advantages of Kuryr • Use your existing OpenStack Neutron networking layer! • Tie together your VMs and containers (and bare metal with Ironic!) into the same virtual networking layer!

  16. IBM Bluemix: Built on Open (Networking) ● Bluemix container service runs on OpenStack ○ Neutron provides networking layer to Docker containers ● Next-generation container service implementation using Kuryr ○ Will allow unified networking across containers, VMs, and bare metal ○ Continue to exploit underlayer of Neutron + OVS / OVN improvements

  17. Demo Demo Components: • Docker (1.10.3) • Kuryr (Newton) • Neutron (Newton) • OVN (from master)

  18. Awesome! Questions?

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Rule #1: Have a takeaway. Rule #2: Keep It Simple. Rule #3: Repetition is Good. Rule #4: Be

Rule #1: Have a takeaway. Rule #2: Keep It Simple. Rule #3: Repetition is Good. Rule #4: Be

The 4 Rules of Public Speaking Rule #1: Have a takeaway. Rule #2: Keep It Simple. Rule #3: Repetition is Good. Rule #4: Be Prepared! But at the end of the day, we can have the most dedicated teachers, the most supportive parents, the best

395 views • 12 slides
A Framework for Rule Processing in Reconfigurable Network Systems Michael Attig and John Lockwood

A Framework for Rule Processing in Reconfigurable Network Systems Michael Attig and John Lockwood

A Framework for Rule Processing in Reconfigurable Network Systems Michael Attig and John Lockwood Washington University in Saint Louis Applied Research Laboratory Department of Computer Science and Engineering May 1, 2005 Rule Processing

154 views • 12 slides
Competition in metering and related services rule change Stakeholder workshop 2: Network

Competition in metering and related services rule change Stakeholder workshop 2: Network

Competition in metering and related services rule change Stakeholder workshop 2: Network regulatory arrangements Friday 1 August 2014 AUSTRALIAN ENERGY MARKET COMMISSION AEMC PAGE 1 Introduction AEMC PAGE 2 Core elements of the rule

535 views • 34 slides
Curtailable Load Dispatch for Network Control Services Services - Market Rule Restrictions

Curtailable Load Dispatch for Network Control Services Services - Market Rule Restrictions

Curtailable Load Dispatch for Network Control Services Services - Market Rule Restrictions Presentation Market Advisory Committee 8 June 2011 By Brendan Clarke Current Issue A Network Operator must , under the access code, seek local A

195 views • 4 slides
Rule of 85 Rule of 85 - Key Points Rule of 85 is not a type of retirement Way of assessing

Rule of 85 Rule of 85 - Key Points Rule of 85 is not a type of retirement Way of assessing

Rule of 85 Rule of 85 - Key Points Rule of 85 is not a type of retirement Way of assessing whether a members pension would be reduced for early payment. Abolished in 2006 but at this point transitional protection was put in place

431 views • 13 slides
tree into a rule set Straightforward, but rule set overly complex More effective

tree into a rule set Straightforward, but rule set overly complex More effective

Can convert decision tree into a rule set Straightforward, but rule set overly complex More effective conversions are not trivial Instead, can generate rule set directly For each class in turn find rule set that covers all

455 views • 23 slides
1 Comments to Rule 1.12 Yes. The duty defined in this Rule applies to governmental

1 Comments to Rule 1.12 Yes. The duty defined in this Rule applies to governmental

Ethics Rule 1.12 Representation of an Organization &amp; Privilege Charles W. Thompson, Jr. Executive Director and General Counsel Rule 1.12 Whos the Privilege Cases Pot pouri client? $200 $200 $200 $200 $200 $400 $400 $400 $400

483 views • 25 slides
Marketplace Stabilization Rule Webinar State Health Reform Assistance Network Manatt Health

Marketplace Stabilization Rule Webinar State Health Reform Assistance Network Manatt Health

Marketplace Stabilization Rule Webinar State Health Reform Assistance Network Manatt Health February 24, 2017 Agenda Overview Enrollment Periods Actuarial Value Network Adequacy Discussion/Q&amp;A Next Steps 4 Overview 5 Overview of

449 views • 31 slides
Counting Rules, etc Product Rule Generalized Product Rule Division Rule Bijection

Counting Rules, etc Product Rule Generalized Product Rule Division Rule Bijection

4/1/16 Counting - supplement Counting Rules, etc Product Rule Generalized Product Rule Division Rule Bijection Rule Sum Rule Combinatorial argument Binomial Theorem Pigeonhole Principle When applying generalized

319 views • 5 slides
Scale Efficient Network Extensions Background and issues this Rule change is seeking to address

Scale Efficient Network Extensions Background and issues this Rule change is seeking to address

Scale Efficient Network Extensions Background and issues this Rule change is seeking to address Chris Spangaro and Elisabeth Ross Wholesale, Environment and Transmission team Adelaide 20 October 2010 AEMC PAGE 1 Purpose of this presentation

514 views • 24 slides
70/80 GHz for 5G Backhaul March 2020 Agenda 2 5G Network Trends and Densification E-Band

70/80 GHz for 5G Backhaul March 2020 Agenda 2 5G Network Trends and Densification E-Band

1 70/80 GHz for 5G Backhaul March 2020 Agenda 2 5G Network Trends and Densification E-Band Technology Evolution Proposed Rule Change to Permit Smaller Antennas: Antenna Gain Additional Rule Change (Desired but Not Required):

904 views • 24 slides
In-Network Filtering of Distributed Denial-of-Service Traffic with Near-Optimal Rule Selection

In-Network Filtering of Distributed Denial-of-Service Traffic with Near-Optimal Rule Selection

In-Network Filtering of Distributed Denial-of-Service Traffic with Near-Optimal Rule Selection Devkishen Sisodia, Jun Li, Lei Jiao {dsisodia, lijun, jiao}@cs.uoregon.edu C ENTER F OR C YBER S ECURITY &amp; P RIVACY Outline Introduction

730 views • 47 slides
One Sketch to Rule Them All: Rethinking Network Flow Monitoring with UnivMon Zaoxing Liu, Antonis

One Sketch to Rule Them All: Rethinking Network Flow Monitoring with UnivMon Zaoxing Liu, Antonis

One Sketch to Rule Them All: Rethinking Network Flow Monitoring with UnivMon Zaoxing Liu, Antonis Manousis, Greg Vorsanger, Vyas Sekar, and Vladimir Braverman Many Monitoring Requirements Traffic Engineering Anomaly Detection Flow Size

511 views • 28 slides
Association Rule Mining 1 What Is Association Rule Mining? Association rule mining is finding

Association Rule Mining 1 What Is Association Rule Mining? Association rule mining is finding

Association Rule Mining 1 What Is Association Rule Mining? Association rule mining is finding frequent patterns or associations among sets of items or objects, usually amongst transactional data Applications include Market Basket

1.19k views • 49 slides
Rule Changes - Non rule change year Review of 2017 rule changes - just the easy to forgot

Rule Changes - Non rule change year Review of 2017 rule changes - just the easy to forgot

2018 Rule and Mechanic Presentation Rule Changes - Non rule change year Review of 2017 rule changes - just the easy to forgot ones - most are in the book - some approved rulings 2018 Rule and Mechanic Presentation Rules related to

481 views • 19 slides
Y N A B You Need a Budget! You have not budgeted like this The YNAB Methodology Four rules:

Y N A B You Need a Budget! You have not budgeted like this The YNAB Methodology Four rules:

Y N A B You Need a Budget! You have not budgeted like this The YNAB Methodology Four rules: Rule 1 . Give every dollar a job Rule 2 . Save for a rainy day Rule 3 . Roll with the punches Rule 4 . Live on last month's income Rule

723 views • 20 slides
Current Status of Thailand s Grid Community and Grid Development Activities Piyawut

Current Status of Thailand s Grid Community and Grid Development Activities Piyawut

Current Status of Thailand s Grid Community and Grid Development Activities Piyawut Srichaikul Computing Research and Development Division National Electronics and Computer Technology Center National Science and Technology Development

672 views • 30 slides
Projects from the Onset 27 th August 2019 making the difference Health &amp; safety moment MML

Projects from the Onset 27 th August 2019 making the difference Health &amp; safety moment MML

Creating Commercially Viable Projects from the Onset 27 th August 2019 making the difference Health &amp; safety moment MML Turner &amp; Townsend We are a global consultancy Turner &amp; Townsend is an independent professional services company

531 views • 23 slides
Consolidated Workforce Stimulus Super RFP (#107) by SF Office of Economic &amp;

Consolidated Workforce Stimulus Super RFP (#107) by SF Office of Economic &amp;

OEWDs Proposal to WISF for Consolidated Workforce Stimulus Super RFP (#107) by SF Office of Economic &amp; Workforce Development 05/27/09 Revised 05/12/2009 SRC Goals: RFP #107 (Super RFP) Through this RFP, OEWD will

269 views • 9 slides
Program Supervisor Sr. A.Q. Engineer May 11, 2016 DISCUSSION TOPICS Welcome &amp;

Program Supervisor Sr. A.Q. Engineer May 11, 2016 DISCUSSION TOPICS Welcome &amp;

Al Baez Jason Aspell Program Supervisor Sr. A.Q. Engineer May 11, 2016 DISCUSSION TOPICS Welcome &amp; Introductions Brief BACT History and Background Role of SRC Proposed updates for BACT Guidelines 2 Why is BACT

497 views • 20 slides
FEZ HAZARASP Free economic zone Hazarasp established according to the Decree of the

FEZ HAZARASP Free economic zone Hazarasp established according to the Decree of the

FEZ HAZARASP Free economic zone Hazarasp established according to the Decree of the President of the Republic of Uzbekistan 4931 of January 12, 2017. By this Decree, members of the free economic zone are granted tax and customs

475 views • 18 slides
Global financial crises impact on Macedonian economy CEA February 2009 Making Difference

Global financial crises impact on Macedonian economy CEA February 2009 Making Difference

Making Difference Global financial crises impact on Macedonian economy CEA February 2009 Making Difference What is behind the financial crisis: Large macroeconomic imbalances Excessive household and government

997 views • 14 slides
Fiscal Performance in 2019 Macroeconomics and Fiscal Policy Directorate General March 4, 2019

Fiscal Performance in 2019 Macroeconomics and Fiscal Policy Directorate General March 4, 2019

Fiscal Performance in 2019 Macroeconomics and Fiscal Policy Directorate General March 4, 2019 Revenue Collection Based on RMIS database Actual Collection Actual Vs IMF Agencies IMF Target (bn) target Custom 79.8 13.22 19% Mustofiat

356 views • 10 slides
DEIR Pre-Release Informational Meeting May 13, 2020 History of Project Changes 2 Levi-Cushman

DEIR Pre-Release Informational Meeting May 13, 2020 History of Project Changes 2 Levi-Cushman

DEIR Pre-Release Informational Meeting May 13, 2020 History of Project Changes 2 Levi-Cushman Plan (Existing Zoning) Plan #1 (1987) Equivalent of 9,000 Units Channelization of the River High-rise buildings 3 Changes for

740 views • 21 slides

More recommend