sdn in cloudstack
play

SDN in CloudStack Tuesday, October 15, 13 About me Hugo Trippaers - PowerPoint PPT Presentation

Jul 15, 2023 •205 likes •572 views

SDN in CloudStack Tuesday, October 15, 13 About me Hugo Trippaers Email: htrippaers@schubergphilis.com Twitter: @Spark404 Freenode: Spark404 http://www.schubergphilis.com Tuesday, October 15, 13 CloudStack networking - the

  1. SDN in CloudStack Tuesday, October 15, 13

  2. About me » Hugo Trippaers – Email: htrippaers@schubergphilis.com – Twitter: @Spark404 – Freenode: Spark404 – http://www.schubergphilis.com » Tuesday, October 15, 13

  3. CloudStack networking - the fi ve minute version » CloudStack networking – Basic, isolation using security groups (L3) – Advanced, isolation using network isolation (L2) » SDN was introduced to create isolated networks in Advanced zones » By now it can do much more... (Routing, Firewall, NAT) 3 Tuesday, October 15, 13

  4. Isolation with VLAN CloudStack takes care o ff the con fi guration of hypervisor switches. Who takes care of the networking gear? 4 Tuesday, October 15, 13

  5. Isolation with VLAN CloudStack takes care o ff the con fi guration of hypervisor switches. Who takes care of the networking gear? He does... 5 Tuesday, October 15, 13

  6. Isolation with Software De fi ned Networking CloudStack takes care o ff the con fi guration of hypervisor switches and L2 networking. Who takes care of the networking gear? 6 Tuesday, October 15, 13

  7. Isolation with Software De fi ned Networking CloudStack takes care o ff the con fi guration of hypervisor switches and L2 networking. Who takes care of the networking gear? 7 Tuesday, October 15, 13

  8. Software de fi ned networking - core concepts » Decouples the control plane (what data is going where) from the data plane (how to get data there) » Makes network management easier by abstracting low-level functionality into virtual services. – Independent of hardware and/or vendor » Provides a Northbound API – Allows administrators to use automated tooling to provision services » Scale? 8 Tuesday, October 15, 13

  9. Software De fi ned Networking - advanced » Where can we go if we have a software based network infrastructure. – Distributed routing? – Integrated security framework? – Application controlled networking? » Endless possibilities, it’s all software anyway 9 Tuesday, October 15, 13

  10. SDN in CloudStack » Where is it? 10 Tuesday, October 15, 13

  11. SDN in CloudStack » Where is it? Implemented in the core of CloudStack. “Movable parts” con fi gured per plugin. Controlled by existing o ff ering model. 11 Tuesday, October 15, 13

  12. SDN implementations Security Isolation DHCP Firewall NAT VPC Groups GRE isolation Pre ACS - - - - - 12 Tuesday, October 15, 13

  13. SDN implementations - GRE isolation » Uses the existing implementation of OpenVSwitch in XenServer and XCP – Uses the OpenVSwitch GRE tunnels to “link” OpenVSwitch bridges between hypervisors – Entirely controlled by CloudStack – GSOC project to add KVM and OpenDaylight » Pros – Doesn’t require external components » Cons – Bandwidth is limited due to lack of o ffl oading – Large deployments require a lot of tunnels – Limited set of hypervisors supported (XenServer, KVM) 13 Tuesday, October 15, 13

  14. SDN implementations Security Isolation DHCP Firewall NAT VPC Groups GRE isolation Pre ACS - - - - - Nicira NVP >= 4.0 - - - - - 14 Tuesday, October 15, 13

  15. SDN implementations - Nicira NVP » A commercial SDN solution developed by Nicira. Uses both OpenVSwitch and OpenFlow to build overlay tunnels on an existing network. » Pros – STT tunnel protocol is optimized for high-bandwidth – Includes a gateway to link existing L3 or L2 networks to the virtual switch » Cons – Requires custom OpenVSwitch on hypervisors. 15 Tuesday, October 15, 13

  16. SDN Implementations Security Isolation DHCP Firewall NAT VPC Groups GRE isolation Pre ACS - - - - - Nicira NVP >= 4.0 - >= 4.1 >= 4.1 - >= 4.1 Big Switch VNS >= 4.1 - - - - - 16 Tuesday, October 15, 13

  17. SDN implementations - Nicira NVP (>= ACS 4.1) » Nicira NVP plugin is updated to support L3 functionality. With this functionality the existing VRouter can be replaced with a SDN based construct. » Several changes have been made to the VPC setup to support SDN based networks in VPCs. 17 Tuesday, October 15, 13

  18. SDN implementations - BigSwitch VNS » The Big Switch Networks plugin is a CloudStack SDN plugin using the BigSwitch VNS platform. While BigSwitch VNS is a commercial solution, it is completely based on open standards like OpenFlow » Pros – Uses open standards » Cons – Requires hypervisors and switches to support OpenFlow 18 Tuesday, October 15, 13

  19. SDN Implementations Security Isolation DHCP Firewall NAT VPC Groups GRE isolation Pre ACS - - - - - Nicira NVP >= 4.0 - >= 4.1 >= 4.1 - >= 4.1 Big Switch VNS >= 4.1 - - - - - Midokura >= 4.2 >=4.2 >= 4.2 >= 4.2 - >=4.2 Midonet Stratosphere SSP >=4.2 - - - - - - - - - - 19 Tuesday, October 15, 13

  20. SDN implementations - Midokura Midonet » Midokura Midonet is implemented as a CloudStack plugin. It o ff ers a complete set of advanced features like DHCP, L3 Routing and various NAT options. » Pros – Complete solution for building standard networks including L3 functions. » Cons – Can only be used with the KVM hypervisor. 20 Tuesday, October 15, 13

  21. SDN implementations - Stratosphere » Stratosphre SSP is an SDN controller that controls or brokers physical and or virtual network devices. Stratosphere SSP will build a vxlan backed overlay network. The plugin makes L2 connectivity service provided by SSP. » Not much information available yet. 21 Tuesday, October 15, 13

  22. SDN Implementations Security Isolation DHCP Firewall NAT VPC Groups GRE isolation Pre ACS - - - - - Nicira NVP >= 4.0 - >= 4.1 >= 4.1 - >= 4.1 Big Switch VNS >= 4.1 - - - - - Midokura >= 4.2 >=4.2 >= 4.2 >= 4.2 - >=4.2 Midonet Stratosphere SSP >=4.2 - - - - - VXLAN - - - - - master 22 Tuesday, October 15, 13

  23. SDN implementations - VXLAN » Announced at CCC 2013 by Toshiaki Hatano. » Not much information available yet, be sure to watch the recording of the talk. 23 Tuesday, October 15, 13

  24. SDN Implementations Security Isolation DHCP Firewall NAT VPC Groups GRE isolation Pre ACS - - - - - Nicira NVP >= 4.0 - >= 4.1 >= 4.1 - >= 4.1 Big Switch VNS >= 4.1 - - - - - Midokura >= 4.2 >=4.2 >= 4.2 >= 4.2 - >=4.2 Midonet Stratosphere SSP >=4.2 - - - - - VXLAN - - - - - master 24 Tuesday, October 15, 13

  25. SDN implementations - next steps? » Support for VPC – Including private gateways » Common con fi guration and setup » Security » Con fi gurable on-ramp/o ff -ramp » IPv6 25 Tuesday, October 15, 13

  26. SDN in CloudStack - how does it work » Preparing a SDN solution for use requires some con fi guration work up front 26 Tuesday, October 15, 13

  27. Preparation - Con fi gure physical network » The physical network de fi nes the type of L2 isolation used. 27 Tuesday, October 15, 13

  28. Preparation - Setup Providers » The provider is the place to con fi gure the SDN controller » Not used by the GRE tunnels, that is con fi gured using con fi guration parameters. 28 Tuesday, October 15, 13

  29. Preparation - Setup network o ff erings » Connectivity is key » Services de fi ne where and how SDN is used in the o ff ering 29 Tuesday, October 15, 13

  30. SDN in CloudStack - how does it work » Preparing a SDN solution for use requires some con fi guration work up front » Using the SDN solution is as straight forward as any networking in CloudStack 30 Tuesday, October 15, 13

  31. Usage - Creating a new network » The role of Network Gurus – each guru supports a speci fi c type of network – select based on a number of criteria, of which isolation type is only one » Selected guru is stored in the database for this particular network. 31 Tuesday, October 15, 13

  32. Usage - Creating a new network » The role of Network Elements – triggered when ever a new NIC is attached to a network – con fi gure devices like fi rewall, routers, etc.. » Elements are selected based on the network o ff ering used to create the network. 32 Tuesday, October 15, 13

  33. Usage - My fi rst VM » Multiple actions happen at the same time – network elements – hypervisor resources » The NIC is the linking pin between a VM and the SDN implementation » The hypervisor sets fl ags to allow the VIF to be found » The network element tells the SDN solution what to look for » Not a generic way of doing things, depends on the SDN in use. 33 Tuesday, October 15, 13

  34. Usage - Ready 34 Tuesday, October 15, 13

  35. Thats all there is to it » http://apache.cloudstack.org » http://www.nicira.com » http://www.bigswitch.com » http://www.midokura.com » http://www.iij.ad.jp/en/ – Email: htrippaers@schubergphilis.com – Twitter: @Spark404 – IRC Freenode: Spark404 35 Tuesday, October 15, 13

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Apache CloudStack & Apalia Involved with CloudStack since 2010 Dozens of CloudStack

Apache CloudStack & Apalia Involved with CloudStack since 2010 Dozens of CloudStack

Billing for Apache CloudStack Billing for Apache CloudStack CloudStack Collaboration Confer CloudStack Collaboration Conference US ence US Miami May 18 Miami May 18 th th 2017 2017 Apache CloudStack & Apalia Involved with

322 views • 15 slides
Developing API Plug-ins for CloudStack* * Specifically Using Version 4.5 Mike Tutkowski

Developing API Plug-ins for CloudStack* * Specifically Using Version 4.5 Mike Tutkowski

Developing API Plug-ins for CloudStack* * Specifically Using Version 4.5 Mike Tutkowski (@mtutkowski on Twitter) CloudStack Software Engineer Member of CloudStack Project Management Committee (PMC) Focused on CloudStacks storage

461 views • 26 slides
Architecting for the cloud: lessons learned from 100 CloudStack deployments Sheng Liang CTO,

Architecting for the cloud: lessons learned from 100 CloudStack deployments Sheng Liang CTO,

Architecting for the cloud: lessons learned from 100 CloudStack deployments Sheng Liang CTO, Cloud Platforms, Citrix CloudStack History 2008 2009 2010 2012 2011 Sept 2008: Nov 2009: May 2010: July 2011: April 2012: CloudStack

457 views • 34 slides
+ Monitoring Consolidate Prescriptive Analytics for Apache CloudStack Madan Ganesh Velayudham

+ Monitoring Consolidate Prescriptive Analytics for Apache CloudStack Madan Ganesh Velayudham

+ Monitoring Consolidate Prescriptive Analytics for Apache CloudStack Madan Ganesh Velayudham Founder, CEO ActOnMagic madan@actonmagic.com + Agenda n Introduction n Different Stages of Analytics n Cloudstack Communitys concerns

438 views • 16 slides
CloudStack Networking Paul Angus Cloud Architect ShapeBlue paul.angus@shapeblue.com @CloudyAngus

CloudStack Networking Paul Angus Cloud Architect ShapeBlue paul.angus@shapeblue.com @CloudyAngus

CloudStack Networking Paul Angus Cloud Architect ShapeBlue paul.angus@shapeblue.com @CloudyAngus @ShapeBlue About Me Cloud Architect with ShapeBlue Worked with CloudStack since 2.2.13 Specialising in deployment of CloudStack and

1.25k views • 33 slides
Transparent Service Migration to the Cloud Clone existing VMs to CloudStack/OpenStack templates

Transparent Service Migration to the Cloud Clone existing VMs to CloudStack/OpenStack templates

Transparent Service Migration to the Cloud Clone existing VMs to CloudStack/OpenStack templates without user downtime CloudOpen Dublin 2015 #whoami Name: Tim Mackey Current roles: XenServer Community Manager and Evangelist; occasional coder

740 views • 29 slides
Ansible & CloudStack Cloud Era Configuration Management Paul Angus Cloud Architect

Ansible & CloudStack Cloud Era Configuration Management Paul Angus Cloud Architect

Ansible & CloudStack Cloud Era Configuration Management Paul Angus Cloud Architect paul.angus@shapeblue.com @CloudyAngus @ShapeBlue Ansible & CloudStack Configuration Management Ansible Using Ansible with CloudStack @ShapeBlue

1.39k views • 44 slides
CloudStack and Big Data Sebastien Goasguen @sebgoa May 22 nd 2013 LinuxTag, Berlin Google

CloudStack and Big Data Sebastien Goasguen @sebgoa May 22 nd 2013 LinuxTag, Berlin Google

CloudStack and Big Data Sebastien Goasguen @sebgoa May 22 nd 2013 LinuxTag, Berlin Google trends Start of Clouds Cloud computing trending down, while Big Data is booming. Virtualization remains constant . BigData on

591 views • 42 slides
Why Apache CloudStack Alexandre Limas Santana, Gabriel Beims Br ascher, Lucas Berri

Why Apache CloudStack Alexandre Limas Santana, Gabriel Beims Br ascher, Lucas Berri

Why Apache CloudStack Alexandre Limas Santana, Gabriel Beims Br ascher, Lucas Berri Cristofolini, Pedro Henrique Pereira Martins, and Rafael Weing artner August 18, 2016 Florian opolis, SC Brazil Agenda Cloud computing

266 views • 24 slides
Junit-contracts: A Contract Testing Tool Claude N. Warren, Jr. CloudStack Collaboration

Junit-contracts: A Contract Testing Tool Claude N. Warren, Jr. CloudStack Collaboration

Junit-contracts: A Contract Testing Tool Claude N. Warren, Jr. CloudStack Collaboration Conference Europe October 8-9, 2015 Dublin, Ireland Who Is Claude Warren? claude@xenei.com Apache Jena Project Management Committee Member and

712 views • 32 slides
CloudStack Identity and Access Management (IAM) Min Chen Prachi Damle Citrix Agenda Background

CloudStack Identity and Access Management (IAM) Min Chen Prachi Damle Citrix Agenda Background

CloudStack Identity and Access Management (IAM) Min Chen Prachi Damle Citrix Agenda Background Our Design Goal Architecture Implementation Use Cases Next Steps Background Limited IAM Services Out-of-box fixed

251 views • 22 slides
Building an autonomic CloudStack Gabriel Beims Br ascher, Lucas Berri Cristofolini, and Rafael

Building an autonomic CloudStack Gabriel Beims Br ascher, Lucas Berri Cristofolini, and Rafael

Building an autonomic CloudStack Gabriel Beims Br ascher, Lucas Berri Cristofolini, and Rafael Weing artner January 19, 2017 Florian opolis, SC Brazil Agenda Current cloud environments The cloud we want How far are we from

441 views • 27 slides
Distributed CI and testing for cloudstack in a hybrid community Daan Hoogland Not senior. Not

Distributed CI and testing for cloudstack in a hybrid community Daan Hoogland Not senior. Not

Distributed CI and testing for cloudstack in a hybrid community Daan Hoogland Not senior. Not manager. Other job titles apply. daan.hoogland@shapeblue.com +DaanHoogland https://www.slideshare.net/ShapeBlue/cccna17-distributed-ci-

620 views • 22 slides
Dynamic Roles in CloudStack Boris Stoyanov Software Development Engineer in Test

Dynamic Roles in CloudStack Boris Stoyanov Software Development Engineer in Test

Dynamic Roles in CloudStack Boris Stoyanov Software Development Engineer in Test boris.stoyanov@shapeblue.com twitter: @shapeblue The Cloud Specialists About Me Break Stuff @ ShapeBlue Background: C l i c k t o e d i t More

759 views • 31 slides
Championing CloudStack Development with Tools Rohit Yadav

Championing CloudStack Development with Tools Rohit Yadav

Championing CloudStack Development with Tools Rohit Yadav Software Architect, ShapeBlue rohit.yadav@shapeblue.com Twitter: @_bhaisaab About Me v Software Architect

277 views • 16 slides
Reliable Host Fencing In CloudStack Rohit Yadav (Software Architect) Boris Stoyanov (Sr. Software

Reliable Host Fencing In CloudStack Rohit Yadav (Software Architect) Boris Stoyanov (Sr. Software

Reliable Host Fencing In CloudStack Rohit Yadav (Software Architect) Boris Stoyanov (Sr. Software Test Engineer) rohit.yadav@shapeblue.com boris.stoyanov@shapeblue.com @rhtyd / @bsstoyanov The Cloud Specialists A b o u t M e Rohit Yadav

639 views • 25 slides
Multiparty Asynchronous Session Types http://mrg.doc.ic.ac.uk/ Nobuko Yoshida Imperial College

Multiparty Asynchronous Session Types http://mrg.doc.ic.ac.uk/ Nobuko Yoshida Imperial College

Multiparty Asynchronous Session Types http://mrg.doc.ic.ac.uk/ Nobuko Yoshida Imperial College London 1 Selected Publications 2015/2016 [CC16] Nicholas Ng, NY: Static Deadlock Detection for Concurrent Go by Global Session Graph

1.1k views • 68 slides
Health Reform Implementation Thursday, July 21, 2011 This webcast will begin at 2:00 P.M. EDT

Health Reform Implementation Thursday, July 21, 2011 This webcast will begin at 2:00 P.M. EDT

Advancing Health Equity through Health Reform Implementation Thursday, July 21, 2011 This webcast will begin at 2:00 P.M. EDT Please hold until we start the conference. The audio portion of this webcast can be accessed by dialing: 800.757.7641

784 views • 50 slides
AI and Predictive Analytics in Data-Center Environments Distributed Computing using Spark

AI and Predictive Analytics in Data-Center Environments Distributed Computing using Spark

AI and Predictive Analytics in Data-Center Environments Distributed Computing using Spark Distributing Neural Networks using Spark and Intel BigDL Josep Ll. Berral @BSC Intel Academic Education Mindshare Initiative for AI Introduction

276 views • 14 slides
Germn Llort gllort@bsc.es >10k processes + long runs = large traces Blind tracing is

Germn Llort gllort@bsc.es >10k processes + long runs = large traces Blind tracing is

Germn Llort gllort@bsc.es >10k processes + long runs = large traces Blind tracing is not an option Profilers also start presenting issues Can you even store the data? How patient are you? 2 IPDPS - Atlanta, April 2010

494 views • 20 slides
Master Theorem Carola Wenk Slides courtesy of Charles Leiserson with changes and additions by

Master Theorem Carola Wenk Slides courtesy of Charles Leiserson with changes and additions by

CMPS 6610/4610 Fall 2016 Master Theorem Carola Wenk Slides courtesy of Charles Leiserson with changes and additions by Carola Wenk 1 CMPS 6610/4610 Algorithms The divide-and-conquer design paradigm 1. Divide the problem (instance) into

367 views • 12 slides
Click to edit Master title style DRVR Click to edit Master title style Click to edit Master

Click to edit Master title style DRVR Click to edit Master title style Click to edit Master

Click to edit Master title style DRVR Click to edit Master title style Click to edit Master title style DRVR Topic Areas Click to edit Master title style Click to edit Master title style Regional Trends Click to edit Master title style

386 views • 12 slides
Rural Health Learning Collaborative QIN QIOS BU ILDING D IABETES S ELF-MANAGEMENT P R OGRAM

Rural Health Learning Collaborative QIN QIOS BU ILDING D IABETES S ELF-MANAGEMENT P R OGRAM

Rural Health Learning Collaborative QIN QIOS BU ILDING D IABETES S ELF-MANAGEMENT P R OGRAM CAP ACITY IN R U R AL COMMU NITIES AP R IL 25 , 20 16 Collaborative Highlights The National Organization of State Offices of Rural Health is

288 views • 10 slides
Master of Science in Business Analytics Brad Price Director, MSBA Program Clinical Assistant

Master of Science in Business Analytics Brad Price Director, MSBA Program Clinical Assistant

Master of Science in Business Analytics Brad Price Director, MSBA Program Clinical Assistant Professor Department of Management Science Structure of Our Program 10 Month, full-time 2 Year and On-line are possible 32 credits,

209 views • 6 slides

More recommend