peter bandzi ahmed maged
play

Peter Bandzi, Ahmed Maged @pbandzi @amaged Nov 2015 1 Assembling a - PowerPoint PPT Presentation

Jun 05, 2023 •207 likes •432 views

Peter Bandzi, Ahmed Maged @pbandzi @amaged Nov 2015 1 Assembling a VPN in the Cloud Service Learning Experience 2 3 - - - - - - - - - - - - - - - - - - - - - Application Home-grown Python Code Front End Back End /User Portal

  1. Peter Bandzi, Ahmed Maged @pbandzi @amaged Nov 2015 1

  2. • Assembling a VPN in the Cloud Service • Learning Experience 2

  3. 3 - - - - - - - - - - - - - - - - - - - - -

  4. Application Home-grown Python Code Front End Back End /User Portal Orchestration/ Dispatching Sharing VPN Meta- Data over Facebook

  5. Bootstrap/Get Started (BGS) • The main goal of BGS is to assemble and test a base set of infrastructure components for OPNFV. • This project achieved that by supporting two deployers for OPNFV Arno, we used Fuel for building our infrastructure. 5

  6. Application BGS/OPNFV Front End Back End Deployer /User Portal Orchestration/ Dispatching Sharing VPN Meta- Data over Facebook RESTConf REST API Virtual Infra Manager SDN Controller OpenStack OpenDayLight

  7. Application BGS/OPNFV Front End Back End Deployer /User Portal Orchestration/ Dispatching Sharing VPN Meta- Data over Facebook RESTConf REST API Virtual Infra Manager SDN Controller OpenStack OpenDayLight Netconf/Yang VNF VPN Termination

  8. App/ Open VNF/ OpenDay User Portal Stack Router Facebook Light Request VPN service 1 Peer Picking 2 Peer Picked 3 Spin up VNF 4 Instruct ODL to provision VNF 5 Provision IPSec 6 Report addressing and preshared key 7 Post addressing and Password 8 9 IPSec Tunnel Established 8

  9. ü Picking Peer from Facebook for rapid, painless setup * 9 * Inspired by Cedric Dessez, https://www.ietf.org/proceedings/87/slides/slides-87-homenet-6.pdf

  10. App/ Open VNF/ OpenDay User Portal Stack Router Facebook Light Request VPN service 1 Peer Picking 2 Peer Picked 3 Spin up VNF 4 Instruct ODL to provision VNF 5 Provision IPSec 6 Report addressing and preshared key 7 Post addressing and Password 8 9 IPSec Tunnel Established 10

  11. REST http://<api-server>/servers Calls Nova Server client_manager.compute.servers.create(’router', Python image, flavor, SDK key_name=keypair.name, nics=[{'net-id': network.id}]) VNF Create Hypervisor a VM RESTful (KVM, etc) API 11

  12. App/ Open VNF/ OpenDay User Portal Stack Router Facebook Light Request VPN service 1 Peer Picking 2 Peer Picked 3 Spin up VNF 4 Instruct ODL to provision VNF 5 Provision IPSec 6 Report addressing and preshared key 7 Post addressing and Password 8 9 IPSec Tunnel Established 12

  13. RESTConf Appl/ list node-subnets { Portal /restconf/data/ipsec-service:ipsec/ <list name>/ description "IP and mask behind route"; <key value(s)> key "ip inv-mask"; leaf ip {type inet:ipv4-address;} JSON leaf inv-mask {type inet:ipv4-address;} } { list shared-key { “ipsec-service:node-list” : key shared-key; [ Nova Server ODL leaf shared-key {type string;} { leaf peer-address {type inet:ip-address;} “node-name”: “vRouter”, } “node-ip”: “X.X.X.X” } ] } YANG Model VNF / Router 13

  14. App/ Open VNF/ OpenDay User Portal Stack Router Facebook Light Request VPN service 1 Peer Picking 2 Peer Picked 3 Spin up VNF 4 Instruct ODL to provision VNF 5 Provision IPSec 6 Report addressing and preshared key 7 Post addressing and Password 8 9 IPSec Tunnel Established 14

  15. crypto isakmp key KEY address x.x.x.x ! crypto ipsec transform-set TS esp-des esp-md5- hmac ! crypto map CRYPTO 10 ipsec-isakmp set peer y.y.y.y set transform-set TS match address Spoke Peer 2 ! interface TenGig0/0 ip address x.x.x.x 255.255.255.0 crypto map CRYPTO CLI Config Peer 1 15

  16. • Assembling a VPN in the Cloud Service • Learning Experience 16

  17. “Open source propagates to fill all the nooks and crannies that people want it to fill.” Mitch Kapor Founder of Lotus, Co-Founder EFF

  18. • In 1995, I almost lost my hair, building a Slackware server. • In 2005, I lost my hair, building/coding a Linux Jumpserver. • In 2015, We built a VPN in the Cloud server in a few days . Open Source Made it possible 18

  19. With BGS : Install scripts for automated deployment of • the test setup. Comprehensive source-to-tested- • deployment script for running the entire system start to end. Task Time Installing 1 Day Infra(Arno/Fuel)

  20. • APIs coming to networking, took networking out of its Silo. • Now Applications can easily control and interact with Networking. • Opening up the possibility to a wide range of use cases. I need REST APIs Task Time Write PoC Code* 3 Days 20 * Without Facebook App/Front End.

  21. Q&A Thanks 21

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

My Mum Mitchell Willoughby Sughra Ahmed Molly Carlile AM Rev Peter Pereira Olga Horak &amp;

My Mum Mitchell Willoughby Sughra Ahmed Molly Carlile AM Rev Peter Pereira Olga Horak &amp;

My Mum Mitchell Willoughby Sughra Ahmed Molly Carlile AM Rev Peter Pereira Olga Horak &amp; Alan Moore Sufi poet Rumi written on his shrine: Come, come whoever you are! Wanderer, worshipper, lover of leaving. It doesn t matter.

766 views • 32 slides
Separating value functions across time-scales Joshua Romoff* 1,2 , Peter Henderson* 3 , Ahmed

Separating value functions across time-scales Joshua Romoff* 1,2 , Peter Henderson* 3 , Ahmed

Separating value functions across time-scales Joshua Romoff* 1,2 , Peter Henderson* 3 , Ahmed Touati 2,4 , Emma Brunskill 3 , Joelle Pineau 1,2 , Yann Ollivier 2 1 MILA-McGill University, 2 Facebook AI Research, 3 Stanford University, 4

669 views • 34 slides
Work-in-Progress Abstract Compiler-Assisted Scientific Workflow Optimization Hadia Ahmed 1 , Peter

Work-in-Progress Abstract Compiler-Assisted Scientific Workflow Optimization Hadia Ahmed 1 , Peter

Work-in-Progress Abstract Compiler-Assisted Scientific Workflow Optimization Hadia Ahmed 1 , Peter Pirkelbauer 2 , Purushotham Bangalore 2 , Anthony Skjellum 3 1 Lawrence Berkeley National Laboratory 2 University of Alabama at Birmingham 3

95 views • 6 slides
Ahmed Ali Profile Ahmed has a long track record in the Australian poultry industry. After

Ahmed Ali Profile Ahmed has a long track record in the Australian poultry industry. After

Ahmed Ali Profile Ahmed has a long track record in the Australian poultry industry. After completing a Bachelor degree in agricultural science, Ahmed moved from Turkey to Australia to take up a position of Farm Manager at Ingham's Poultry in

403 views • 26 slides
On The Distribution of Linear Biases: Three Instructive Examples Mohamed Ahmed Abdelraheem 1 ,

On The Distribution of Linear Biases: Three Instructive Examples Mohamed Ahmed Abdelraheem 1 ,

On The Distribution of Linear Biases: Three Instructive Examples Mohamed Ahmed Abdelraheem 1 , Martin Agren 2 , Peter Beelen 1 , and Gregor Leander 1 1 Technical University of Denmark 2 Lund University, Sweden 120820 / Santa Barbara Outline 1

584 views • 41 slides
Local SGD for non-i.i.d. data Konstantin Mishchenko Work done together with Ahmed Khaled and

Local SGD for non-i.i.d. data Konstantin Mishchenko Work done together with Ahmed Khaled and

Local SGD for non-i.i.d. data Konstantin Mishchenko Work done together with Ahmed Khaled and Peter Richtrik &lt;latexit

668 views • 24 slides
GPAC: delivery of VR/360 videos using Tiles Ahmed Rida SEKKAT Ahmed JELIJLI Telecom ParisTech

GPAC: delivery of VR/360 videos using Tiles Ahmed Rida SEKKAT Ahmed JELIJLI Telecom ParisTech

GPAC: delivery of VR/360 videos using Tiles Ahmed Rida SEKKAT Ahmed JELIJLI Telecom ParisTech FOSDEM17 05/02/2017 Institut Mines-Tlcom What is GPAC? Multimedia Packagers, Streamers and Player Multi-platform: all

563 views • 17 slides
Cdm dmCL CL, a Specific Textual Constraint Language for Common Data Model Ahmed Ahmed, Paola

Cdm dmCL CL, a Specific Textual Constraint Language for Common Data Model Ahmed Ahmed, Paola

Cdm dmCL CL, a Specific Textual Constraint Language for Common Data Model Ahmed Ahmed, Paola Vallejo, Mickal Kerboeuf, Jean-Philippe Babau Lab-STICC, University Of Western Brittany - France alahmed4ever@yahoo.com,{vallejoco,kerboeuf,

884 views • 36 slides
Nasr Nasradin adin-Ahmed Ahmed Ibr Ibrahim ahim Geophys Geophysicist icist Geology

Nasr Nasradin adin-Ahmed Ahmed Ibr Ibrahim ahim Geophys Geophysicist icist Geology

Nasr Nasradin adin-Ahmed Ahmed Ibr Ibrahim ahim Geophys Geophysicist icist Geology geochemistry Geophysics HUMAN RESSOURCES 6 3 5 Senior 0 0 2 engineer 1 2 4 Technician 5 1 1 2 engineer and 1 to recruit 3 technician for 2018

109 views • 10 slides
Verification of One Integer Parameter Recursive Sequential Procedures Ahmed Bouajjani Liafa -

Verification of One Integer Parameter Recursive Sequential Procedures Ahmed Bouajjani Liafa -

Verification of One Integer Parameter Recursive Sequential Procedures Ahmed Bouajjani Liafa - University of Paris 7 joint work with Peter Habermehl and Richard Mayr 1 Verification of Boolean Recursive Procedures Boolean Recursive Procedures

639 views • 42 slides
Emerging Trends In Insulation By Shahab Z Ahmed (AVP) Shahab Z Ahmed -AVP ALP Aeroflex India

Emerging Trends In Insulation By Shahab Z Ahmed (AVP) Shahab Z Ahmed -AVP ALP Aeroflex India

ALP Aeroflex India Pvt. Ltd. Emerging Trends In Insulation By Shahab Z Ahmed (AVP) Shahab Z Ahmed -AVP ALP Aeroflex India Pvt. Ltd. Presentation Overview ALP Aeroflex India (P) Ltd Introduction Energy Consumption and Co2 Emission

1.11k views • 75 slides
Mining Software Engineering Data Tao Xie Ahmed E. Hassan North Carolina State University

Mining Software Engineering Data Tao Xie Ahmed E. Hassan North Carolina State University

Mining Software Engineering Data Tao Xie Ahmed E. Hassan North Carolina State University University of Victoria www.csc.ncsu.edu/faculty/xie www.ece.uvic.ca/~ahmed xie@csc.ncsu.edu ahmed@uvic.ca Some slides are adapted from KDD 06 tutorial

1.39k views • 120 slides
CS226 Big-Data Management Instructor: Ahmed Eldawy 1 Welcome (back) to UCR! 2 Class

CS226 Big-Data Management Instructor: Ahmed Eldawy 1 Welcome (back) to UCR! 2 Class

CS226 Big-Data Management Instructor: Ahmed Eldawy 1 Welcome (back) to UCR! 2 Class information Classes: Monday, Wednesday, Friday 1:00 1:50 PM at Humanities and Social Sciences1501 Instructor: Ahmed Eldawy TA: Saheli Ghosh Office

1.16k views • 40 slides
MRI Texture Analysis for the Characterisation of Childhood Brain Tumours Ahmed E. Fetit

MRI Texture Analysis for the Characterisation of Childhood Brain Tumours Ahmed E. Fetit

MRI Texture Analysis for the Characterisation of Childhood Brain Tumours Ahmed E. Fetit Supervisors: Prof Theo Arvanitis, Prof Andrew Peet and Dr Jan Novak Ahmed E. Fetit University of Warwick &amp; Birmingham Childrens Hospital UK

314 views • 30 slides
Ahmed E Hassan Ahmed E. Hassan NSERC/RIM Software Engineering Research Chair Queens

Ahmed E Hassan Ahmed E. Hassan NSERC/RIM Software Engineering Research Chair Queens

Ahmed E Hassan Ahmed E. Hassan NSERC/RIM Software Engineering Research Chair Queens University, Canada y, Mining Software Engineering Data g g g Leads the SAIL research group at Queens Co-chair for Workshop on Mining

321 views • 21 slides
L0ng-SUffeRing 1 Peter 3:8 1 Peter 3:8- -12 12 1 Peter 3:8 1 Peter 3:8 - - 12 12 MOVIE

L0ng-SUffeRing 1 Peter 3:8 1 Peter 3:8- -12 12 1 Peter 3:8 1 Peter 3:8 - - 12 12 MOVIE

L0ng-SUffeRing 1 Peter 3:8 1 Peter 3:8- -12 12 1 Peter 3:8 1 Peter 3:8 - - 12 12 MOVIE CLIP 1 Jackie Meets Branch Rickey L0ng-SUffeRing: 42 L0ng-SUffeRing: 42 The Questions: -What am I being asked to face injustice for?

547 views • 30 slides
MAD families, splitting families and large continuum Vera Fischer Kurt G odel Research Center

MAD families, splitting families and large continuum Vera Fischer Kurt G odel Research Center

Introduction Con ( b = a = &lt; s = ) The forcing construction Open Questions MAD families, splitting families and large continuum Vera Fischer Kurt G odel Research Center University of Vienna April 2012 Vera Fischer MAD families,

730 views • 42 slides
Weighted Automata and Logics for Infinite Nested Words Manfred Droste and Stefan D uck

Weighted Automata and Logics for Infinite Nested Words Manfred Droste and Stefan D uck

Nested Words Weighted Automata and Logics Weighted Automata and Logics for Infinite Nested Words Manfred Droste and Stefan D uck Leipzig University, Germany 8th LATA, March 2014 Manfred Droste and Stefan D uck Weighted Automata and

776 views • 46 slides
The Johnson-Lindenstrauss Lemma in Linear Programming Leo Liberti , Vu Khac Ky, Pierre-Louis

The Johnson-Lindenstrauss Lemma in Linear Programming Leo Liberti , Vu Khac Ky, Pierre-Louis

The Johnson-Lindenstrauss Lemma in Linear Programming Leo Liberti , Vu Khac Ky, Pierre-Louis Poirion CNRS LIX Ecole Polytechnique, France Aussois COW 2016 The gist Goal : solving very large LPs min { c x | Ax = b x 0 }

530 views • 31 slides
Evaluation of accuracy, integrity and availability of ARNS multi-constellation signals for

Evaluation of accuracy, integrity and availability of ARNS multi-constellation signals for

Department of Spatial Sciences Evaluation of accuracy, integrity and availability of ARNS multi-constellation signals for aviation users in Australia Manoj Deo &amp; A/Prof Ahmed El-Mowafy International Global Navigation Satellite Systems

447 views • 19 slides
On the complexity of the asymmetric VPN problem Thomas Rothvo &amp; Laura Sanit` a Institute

On the complexity of the asymmetric VPN problem Thomas Rothvo &amp; Laura Sanit` a Institute

On the complexity of the asymmetric VPN problem Thomas Rothvo &amp; Laura Sanit` a Institute of Mathematics EPFL, Lausanne ISMP09 Concave Cost VPN Given: Undirected graph G = ( V, E ), costs c : E Q + Outgoing traffic bound

993 views • 56 slides
Fighting Censorship with TunnelBear Internet Measurement Village - July 2, 2020 Mission driven

Fighting Censorship with TunnelBear Internet Measurement Village - July 2, 2020 Mission driven

Fighting Censorship with TunnelBear Internet Measurement Village - July 2, 2020 Mission driven development We think the Internet is a much better place when everyone can browse privately, and browse the same Internet as everyone else.

234 views • 19 slides
EE 457 Unit 7d Virtual Memory 2 Virtual Memory Concept A mechanism for hiding the details of

EE 457 Unit 7d Virtual Memory 2 Virtual Memory Concept A mechanism for hiding the details of

1 EE 457 Unit 7d Virtual Memory 2 Virtual Memory Concept A mechanism for hiding the details of how much physical memory exists and how its being shared Allows the OS to Efficiently share the physical memory between several

821 views • 54 slides
Overview Simple camera is limiting and it is necessary to model a camera that can be moved

Overview Simple camera is limiting and it is necessary to model a camera that can be moved

General Camera Overview Simple camera is limiting and it is necessary to model a camera that can be moved We will define parameters for a camera in terms of where it is, the direction it points and the direction it considers to

390 views • 7 slides

More recommend