SlideShare a Scribd company logo

CloudKC: Evolution of Network Virtualization

Cynthia Thomas
Cynthia Thomas

This document discusses the evolution of network virtualization. It begins with an overview of using VLANs for network virtualization, which provides L2 isolation but has limitations around scalability and management. OpenFlow is presented as an early approach that uses a centralized controller but has performance impacts. The document then introduces network overlays using software-defined networking as a more advanced approach, allowing network services to be decoupled from physical network hardware for improved scalability, agility and fault tolerance. It provides an overview of using the Midokura network virtualization platform with OpenStack Neutron for network automation and management.

Related slideshows

Arista Nuage meetup dublin 18-2
Arista Nuage meetup dublin 18-2Arista Nuage meetup dublin 18-2
Arista Nuage meetup dublin 18-2
 
VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...
VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...
VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...
 
Nvp deep dive_session_cee-day
Nvp deep dive_session_cee-dayNvp deep dive_session_cee-day
Nvp deep dive_session_cee-day
 
1 of 57
Download to read offline
Evolu&on of Network Virtualiza&on Cloud KC MeetUp August 2014
Agenda ▪ Network Virtualiza&on Requirements ▪ OpenFlow vs. Overlay ▪ Brief Overview of OpenStack and Neutron Networking (OVS) ▪ Use Cases for Network Virtualiza&on & Midokura Solu&on 1
2 Network Virtualization Requirements#
What is Network Virtualization (NV)? 3 Taking logical (virtual) networks and services, and decoupling them from the underlying network hardware. Well suited for highly virtualized environments. Any Application Virtual Networks Any Cloud Management Platform MidoNet Virtualiza&on PlaOorm Distributed Firewall Logical L2 Existing Network Hardware service Distributed Load Balancer ser Distributed VPN Service Logical L3 KVM, ESXi, Xen LXC
Requirements for NV 4 Requirements 4 Tenant/Project A Network A1 VM1 VM3 Network A2 VM5 Tenant/Project B Network B1 VM2 VM4 uplink Provider Virtual Router (L3) Tenant A Virtual Router Tenant B Virtual Router VM6 Virtual L2 Switch B1 Virtual L2 Switch A1 Virtual L2 Switch A2 TenantB office Tenant B VPN Router Office Network
Requirements for NV 5 Requirements 5 Tenant/Project A Network A1 VM1 VM3 Network A2 VM5 Tenant/Project B Network B1 VM2 VM4 uplink Provider Virtual Router (L3) Tenant A Virtual Router Tenant B Virtual Router VM6 Virtual L2 Switch B1 Virtual L2 Switch A1 Virtual L2 Switch A2 TenantB office Tenant B VPN Router Office Network Isolated tenant networks (virtual data center)
Requirements for NV 6 Requirements 6 Tenant/Project A Network A1 VM1 VM3 Network A2 VM5 L3 Isolation (similar to VPC and VRF) Tenant/Project B Network B1 VM2 VM4 uplink Provider Virtual Router (L3) Tenant A Virtual Router Tenant B Virtual Router VM6 Virtual L2 Switch B1 Virtual L2 Switch A1 Virtual L2 Switch A2 TenantB office Tenant B VPN Router Office Network
Requirements for NV Redundant, optimized, and fault tolerant paths to to/ from external networks (e.g. via eBGP) 7 Requirements 7 Tenant/Project A Network A1 VM1 VM3 Network A2 VM5 Tenant/Project B Network B1 VM2 VM4 uplink Provider Virtual Router (L3) Tenant A Virtual Router Tenant B Virtual Router VM6 Virtual L2 Switch B1 Virtual L2 Switch A1 Virtual L2 Switch A2 TenantB office Tenant B VPN Router Office Network Fault-tolerant devices and links
Requirements for NV 8 8 Tenant/Project A Network A1 VM1 VM3 Network A2 VM5 Tenant/Project B Network B1 VM2 VM4 uplink Provider Virtual Router (L3) Tenant A Virtual Router Tenant B Virtual Router VM6 Virtual L2 Switch B1 Virtual L2 Switch A1 Virtual L2 Switch A2 TenantB office Tenant B VPN Router Office Network Fault-tolerant devices and links Fault tolerant devices and links
Requirements for NV 9 Device-agnostic networking services: • Load Balancing • Firewalls • Stateful NAT • VPN Networks and services must be fault tolerant and scalable
Requirements for NV 10 Single pane of glass to manage it all.
Bonus Requirements for NV 11 Integration with cloud or virtualization management systems. Optimize network by exploiting management configuration. Single virtual hop for networking services Fully distributed control plane (ARP, DHCP, ICMP)
Checklist for Network Virtualization 12 q Multi-tenancy q Scalable, fault-tolerant devices (or device-agnostic network services). q L2 isolation q L3 routing isolation • VPC • Like VRF (virtual routing and fwd-ing) q Scalable gateways q Scalable control plane • ARP, DHCP, ICMP q Floating/Elastic Ips q Stateful NAT • Port masquerading • DNAT q ACLs q Stateful (L4) Firewalls • Security Groups q Load Balancing with health checks q Single Pane of Glass (API, CLI, GUI) q Integration with management platforms • OpenStack, CloudStack • vSphere, RHEV, System Center q Decoupled from Physical Network
Evolution of Network Virtualization 13 INNOVATION IN NETWORKING AGILITY VLAN APPROACH Manual End-to-End VLAN configured on physical switches • Static • Manual • Complex • Tenant state maintained in physical network 13
Using VLANs for NV 14 q Multi-tenancy q Scalable, fault-tolerant devices (or device-agnostic network services). ü L2 isolation q L3 routing isolation • VPC • Like VRF (virtual routing and fwd-ing) q Scalable gateways q Scalable control plane • ARP, DHCP, ICMP q Floating/Elastic IPs q Stateful NAT • Port masquerading • DNAT q ACLs q Stateful (L4) Firewalls • Security Groups q Load Balancing with health checks q Single Pane of Glass (API, CLI, GUI) q Integration with management platforms • OpenStack, CloudStack • vSphere, RHEV, System Center q Decoupled from Physical Network
Evolution of Network Virtualization 15 INNOVATION IN NETWORKING AGILITY OPENFLOW REACTIVE APPOACH Reactive End-to-End Requires programming of flows • Limited scalability • Hard to manage • Impact to performance • Still requires tenant state in physical network VLAN APPROACH Manual End-to-End VLAN configured on physical switches • Static • Manual • Complex • Tenant state maintained in physical network 15
What is OpenFlow? 16 A communication protocol that gives access to the forwarding plane of a network switch over the network.
What is OpenFlow? 17 A centralized remote controller decides the path of packets through the switches
Using OpenFlow for NV 18 ü Multi-tenancy q Scalable, fault-tolerant devices (or device-agnostic network services). ü L2 isolation △ L3 routing isolation • VPC • Like VRF (virtual routing and fwd-ing) q Scalable gateways q Scalable control plane • ARP, DHCP, ICMP q Floating/Elastic IPs q Stateful NAT • Port masquerading • DNAT q ACLs q Stateful (L4) Firewalls • Security Groups q Load Balancing with health checks △ Single Pane of Glass (API, CLI, GUI) △ Integration with management platforms • OpenStack, CloudStack • vSphere, RHEV, System Center q Decoupled from Physical Network
Evolution of Network Virtualization 19 PROACTIVE INNOVATION IN NETWORKING AGILITY SOFTWARE OVERLAY Virtual Network Overlays Decoupling hardware and software • Cloud-ready agility • Unlimited scalability • Open, standards-based • No impact to physical network OPENFLOW REACTIVE APPOACH Reactive End-to-End Requires programming of flows • Limited scalability • Hard to manage • Impact to performance • Still requires tenant state in physical network VLAN APPROACH Manual End-to-End VLAN configured on physical switches • Static • Manual • Complex • Tenant state maintained in physical network 19
20 How do overlays achieve real network virtualization?
21 Encapsulation and Tunneling Provides isolation
22 Stateless core. Stateful edge.
23 Network processing at the edge Decoupled from the physical network
24 Virtual network changes don’t affect the physical network
25 Single virtual hop network services avoid “traffic trombones”
26 Centralized state and control for maximum agility
27 Scalable, fault tolerant gateways to external networks
Using Overlays for NV 28 ü Multi-tenancy ü Scalable, fault-tolerant devices (or device-agnostic network services). ü L2 isolation ü L3 routing isolation • VPC • Like VRF (virtual routing and fwd-ing) ü Scalable Gateways ü Scalable control plane • ARP, DHCP, ICMP ü Floating/Elastic IPs ü Stateful NAT • Port masquerading • DNAT ü ACLs ü Stateful (L4) Firewalls • Security Groups ü Load Balancing with health checks ü Single Pane of Glass (API, CLI, GUI) ü Integration with management platforms • OpenStack, CloudStack • vSphere, RHEV, System Center ü Decoupled from Physical Network
29 Sounds great, but when will it be a reality?
Network Virtualization Overlays Today 30
OpenStack 31
What is OpenStack? 32
33 Before Neutron: Nova Networking # Nova-Networking was the only option in OpenStack prior to Quantum/Neutron. Still available today as an alternative to Neutron, but will likely be phased out. # Options Available within nova-networking initially: • Only Flat • Flat DHCP # Limitations • No flexibility with topologies (no 3-tier) • Tenants can’t create/manage L3 Routers • Scaling limitations (L2 domain)# • No 3rd party vendors supported • Complex HA model#
34 Nova-­‐network slightly evolves Introduced VLAN DHCP mode Improvements: • L2 Isolation – each project gets a VLAN assigned to it # Limitations • Need to pre-configure VLANs on physical network. • Scaling Limitations - VLANs • No L3 • No 3-tier topologies • No 3rd party vendors
Introducing Neutron 35 OpenStack Networking as a first class Service # • Pluggable Architecture • Standard API • Many choices# # Plugins Available! • MidoNet! • OVS Plugin • Linux Bridges • Flat DHCP • VLAN DHCP# • ML2 # # • Supports Overlay Technology • More Services (LBaaS, VPNaaS) • Flexible network topologies# # # # • NSX • Plumgrid# • Nuage# • Contrail • Ryu#
36 OVS Plugin Overview#
OVS Agent - receives tunnel/flow setup info from OVS Plugin, and programs Open vSwitch to setup tunnels and send traffic through the tunnel# # DHCP Agent - Sets up dnsmasq in a namespace per network/subnet and enters mac/ ip into dhcp lease file # L3 Agent – OVS Plugin orchestrates to set up IPTables, Routing, NAT tables# 37 OVS Open Source Plugin
38 Challenges with OVS Plugin Neutron Network Node is a SPOF# Need to use corosync, etc for active/standby failover. # Challenging at Scale Since there’s a single network node, this becomes a bottleneck fairly quickly. ! Inefficient Networking IPTables, L3 Agent, multiple hops for single flow are causing unnecessary traffic and added latency on your physical network !
39 MidoNet Overview#
40 MidoNet Network Virtualiza&on PlaOorm Logical L2 Switching -­‐ L2 isola&on and path op&miza&on with distributed virtual switching Interconnect with VLAN enabled network via L2 Gateway Logical L3 Rou&ng – L3 isola&on and rou&ng between virtual networks No need to exit the so]ware container -­‐ no hardware required Distributed Firewall – Provides ACLs, high performance kernel integrated firewall via a flexible rule chain system Logical Layer 4 Load Balancer – Provides applica&on load balancing in so]ware form -­‐ no need for hardware based firewalls VxLAN/GRE – Provides VxLAN and GRE tunneling Provides L2 connec&vity across L3 transport. This is useful when L2 fabric doesn’t reach all the way from the racks hos&ng the VMs to the physical L2 segment of interest. MidoNet/Neutron API– Alignment with OpenStack Neutron’s API for integra&on into compa&ble cloud management so]ware Any Application OpenStack/Cloud Management System MidoNet Network Virtualiza&on PlaOorm v Distributed Firewall Layer 4 Load Balancer Logical L2 Logical L3 Any Network Hardware VxLAN/GRE Any Hypervisor NAT MidoNet / Neutron API NAT – Provides Dynamic NAT, Port masquerading
OpenStack Integra&on 5 Easy integra&on with OpenStack: MidoNet provides a plugin for Neutron. MidoNet Plugin
Architecture Overview
Use Cases Automated Provisioning Isolated Sandboxes Enhanced Security Enable Compliance Scale out L3 Gateway Bridge legacy VLANs Do it Faster Do it Bigger Val u e Agility Provide rapid provisioning of isolated network infrastructure for labs and devops. Logical Network Provisioning Control Network admins can better secure, control & view network traffic. Single Pane of Glass OpsTools Do it Better IaaS Cloud Build multi-tenant clouds with visibility into usage. Tenant Control Automated Self Service Metering Performance Improve network performance using edge overlay & complementary technologies. Single Hop Virtual Networking VXLAN Hardware Gateway Massive performance with 40Gb Support Scale Add virtual network infra & services simply & resiliently without hardware & bottlenecks. Distributed Logical Networking FW, LB, L2/3, NAT Limitless “VLANs” IPv6 Solution for OpenStack Networking Use MN to overcome limitations of Neutron for OpenStack users. Replaces OVS Plugin
44 So what’s next for Network Virtualization?
45 Get more out of the physical network.
46 Network Virtualization decouples the logical network from the physical network.
NVOs can’t ignore the physical network 47 Dynamic changes to logical network are not dependent on the physical network configuration. Sharing state to and from the physical network can be supplementary. - Monitoring - Traffic Engineering
48 Get more intelligence out of your network
NVOs provide a wealth of information 49 NVOs centralize information on your network We can start taking advantage of this information - Security - Compliance - Optimizing Networks
50 Bridge physical and virtual networks more efficiently
Midokura VTEP Solution 51 IP Fabric MidoNet MidoNet Virtual Any Cloud Management PlaHorm MidoNet Network State Database VM VM VM VM VM VM OVSDBc Server Storage Services Physical VM VM VTEP TCP/IP OVSDB VxLAN Tunnel Physical Connection Key OVSDBs
52 Break through performance barriers of software networking
Performance 40Gb VxLAN Offloading: virtualized environments require high throughput infrastructure • Integra&on with Mellanox provides 40 Gbps satura&on • VxLAN offloading improves CPU u&liza&on levels • Scale with performance through HW interconnect • Increase throughput with offloading where no offloading would otherwise have flat results • High bandwidth can now be achieved in so]ware
54 Q&A
55 MidoNet Advantages # Check out our blog: hjp://blog.midokura.com/ Follow us on Twijer: @midokura
Thank You Cynthia Thomas @_techcet_ 56

More Related Content

What's hot

Arista Nuage meetup dublin 18-2
Arista Nuage meetup dublin 18-2Arista Nuage meetup dublin 18-2
Arista Nuage meetup dublin 18-2
Patrick Lynchehaun
 
VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...
VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...
VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...
VMworld
 
Nvp deep dive_session_cee-day
Nvp deep dive_session_cee-dayNvp deep dive_session_cee-day
Nvp deep dive_session_cee-day
yfauser
 
Virt july-2013-meetup
Virt july-2013-meetupVirt july-2013-meetup
Virt july-2013-meetup
nvirters
 
PLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDNPLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDN
PROIDEA
 
Reference design for v mware nsx
Reference design for v mware nsxReference design for v mware nsx
Reference design for v mware nsx
solarisyougood
 
MidoNet 101: Face to Face with the Distributed SDN
MidoNet 101: Face to Face with the Distributed SDNMidoNet 101: Face to Face with the Distributed SDN
MidoNet 101: Face to Face with the Distributed SDN
MidoNet
 
Technical introduction to MidoNet
Technical introduction to MidoNetTechnical introduction to MidoNet
Technical introduction to MidoNet
MidoNet
 
OpenContrail Silicon Valley Meetup Aug 25 2015
OpenContrail Silicon Valley Meetup Aug 25 2015OpenContrail Silicon Valley Meetup Aug 25 2015
OpenContrail Silicon Valley Meetup Aug 25 2015
Scott Sneddon
 
VMworld 2013: Deploying VMware NSX Network Virtualization
VMworld 2013: Deploying VMware NSX Network Virtualization VMworld 2013: Deploying VMware NSX Network Virtualization
VMworld 2013: Deploying VMware NSX Network Virtualization
VMworld
 
VMworld 2013: Designing Network Virtualization for Data-Centers: Greenfield D...
VMworld 2013: Designing Network Virtualization for Data-Centers: Greenfield D...VMworld 2013: Designing Network Virtualization for Data-Centers: Greenfield D...
VMworld 2013: Designing Network Virtualization for Data-Centers: Greenfield D...
VMworld
 
Secure Multi Tenant Cloud with OpenContrail
Secure Multi Tenant Cloud with OpenContrailSecure Multi Tenant Cloud with OpenContrail
Secure Multi Tenant Cloud with OpenContrail
Priti Desai
 
OpenStack: Virtual Routers On Compute Nodes
OpenStack: Virtual Routers On Compute NodesOpenStack: Virtual Routers On Compute Nodes
OpenStack: Virtual Routers On Compute Nodes
clayton_oneill
 
OpenFlow tutorial
OpenFlow tutorialOpenFlow tutorial
OpenFlow tutorial
openflow
 
Technical Deep Dive into MidoNet - Taku Fukushima, Developer at Midokura
Technical Deep Dive into MidoNet - Taku Fukushima, Developer at MidokuraTechnical Deep Dive into MidoNet - Taku Fukushima, Developer at Midokura
Technical Deep Dive into MidoNet - Taku Fukushima, Developer at Midokura
MidoNet
 
MidoNet gives OpenStack Neutron a Boost
MidoNet gives OpenStack Neutron a BoostMidoNet gives OpenStack Neutron a Boost
MidoNet gives OpenStack Neutron a Boost
OpenStack_Online
 
Understanding network and service virtualization
Understanding network and service virtualizationUnderstanding network and service virtualization
Understanding network and service virtualization
SDN Hub
 
Cloud Network Virtualization with Juniper Contrail
Cloud Network Virtualization with Juniper ContrailCloud Network Virtualization with Juniper Contrail
Cloud Network Virtualization with Juniper Contrail
buildacloud
 
OPNFV Service Function Chaining
OPNFV Service Function ChainingOPNFV Service Function Chaining
OPNFV Service Function Chaining
OPNFV
 
The Juniper SDN Landscape
The Juniper SDN LandscapeThe Juniper SDN Landscape
The Juniper SDN Landscape
Chris Jones
 

What's hot (20)

Arista Nuage meetup dublin 18-2
Arista Nuage meetup dublin 18-2Arista Nuage meetup dublin 18-2
Arista Nuage meetup dublin 18-2
 
VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...
VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...
VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...
 
Nvp deep dive_session_cee-day
Nvp deep dive_session_cee-dayNvp deep dive_session_cee-day
Nvp deep dive_session_cee-day
 
Virt july-2013-meetup
Virt july-2013-meetupVirt july-2013-meetup
Virt july-2013-meetup
 
PLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDNPLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDN
 
Reference design for v mware nsx
Reference design for v mware nsxReference design for v mware nsx
Reference design for v mware nsx
 
MidoNet 101: Face to Face with the Distributed SDN
MidoNet 101: Face to Face with the Distributed SDNMidoNet 101: Face to Face with the Distributed SDN
MidoNet 101: Face to Face with the Distributed SDN
 
Technical introduction to MidoNet
Technical introduction to MidoNetTechnical introduction to MidoNet
Technical introduction to MidoNet
 
OpenContrail Silicon Valley Meetup Aug 25 2015
OpenContrail Silicon Valley Meetup Aug 25 2015OpenContrail Silicon Valley Meetup Aug 25 2015
OpenContrail Silicon Valley Meetup Aug 25 2015
 
VMworld 2013: Deploying VMware NSX Network Virtualization
VMworld 2013: Deploying VMware NSX Network Virtualization VMworld 2013: Deploying VMware NSX Network Virtualization
VMworld 2013: Deploying VMware NSX Network Virtualization
 
VMworld 2013: Designing Network Virtualization for Data-Centers: Greenfield D...
VMworld 2013: Designing Network Virtualization for Data-Centers: Greenfield D...VMworld 2013: Designing Network Virtualization for Data-Centers: Greenfield D...
VMworld 2013: Designing Network Virtualization for Data-Centers: Greenfield D...
 
Secure Multi Tenant Cloud with OpenContrail
Secure Multi Tenant Cloud with OpenContrailSecure Multi Tenant Cloud with OpenContrail
Secure Multi Tenant Cloud with OpenContrail
 
OpenStack: Virtual Routers On Compute Nodes
OpenStack: Virtual Routers On Compute NodesOpenStack: Virtual Routers On Compute Nodes
OpenStack: Virtual Routers On Compute Nodes
 
OpenFlow tutorial
OpenFlow tutorialOpenFlow tutorial
OpenFlow tutorial
 
Technical Deep Dive into MidoNet - Taku Fukushima, Developer at Midokura
Technical Deep Dive into MidoNet - Taku Fukushima, Developer at MidokuraTechnical Deep Dive into MidoNet - Taku Fukushima, Developer at Midokura
Technical Deep Dive into MidoNet - Taku Fukushima, Developer at Midokura
 
MidoNet gives OpenStack Neutron a Boost
MidoNet gives OpenStack Neutron a BoostMidoNet gives OpenStack Neutron a Boost
MidoNet gives OpenStack Neutron a Boost
 
Understanding network and service virtualization
Understanding network and service virtualizationUnderstanding network and service virtualization
Understanding network and service virtualization
 
Cloud Network Virtualization with Juniper Contrail
Cloud Network Virtualization with Juniper ContrailCloud Network Virtualization with Juniper Contrail
Cloud Network Virtualization with Juniper Contrail
 
OPNFV Service Function Chaining
OPNFV Service Function ChainingOPNFV Service Function Chaining
OPNFV Service Function Chaining
 
The Juniper SDN Landscape
The Juniper SDN LandscapeThe Juniper SDN Landscape
The Juniper SDN Landscape
 

Viewers also liked

LCA 2012: High Availability Sprint
LCA 2012: High Availability SprintLCA 2012: High Availability Sprint
LCA 2012: High Availability Sprint
hastexo
 
Storage with Ceph (OSDC 2013)
Storage with Ceph (OSDC 2013)Storage with Ceph (OSDC 2013)
Storage with Ceph (OSDC 2013)
hastexo
 
Storage with ceph (osdc 2013)
Storage with ceph (osdc 2013)Storage with ceph (osdc 2013)
Storage with ceph (osdc 2013)
Martin Loschwitz
 
Florian Haas, hastexo - heat, cloud-init and cloud-config: OpenStack Orchestr...
Florian Haas, hastexo - heat, cloud-init and cloud-config: OpenStack Orchestr...Florian Haas, hastexo - heat, cloud-init and cloud-config: OpenStack Orchestr...
Florian Haas, hastexo - heat, cloud-init and cloud-config: OpenStack Orchestr...
Cloud Native Day Tel Aviv
 
Openstack Basic with Neutron
Openstack Basic with NeutronOpenstack Basic with Neutron
Openstack Basic with Neutron
KwonSun Bae
 
OpenStack Neutron Tutorial
OpenStack Neutron TutorialOpenStack Neutron Tutorial
OpenStack Neutron Tutorial
mestery
 

Viewers also liked (6)

LCA 2012: High Availability Sprint
LCA 2012: High Availability SprintLCA 2012: High Availability Sprint
LCA 2012: High Availability Sprint
 
Storage with Ceph (OSDC 2013)
Storage with Ceph (OSDC 2013)Storage with Ceph (OSDC 2013)
Storage with Ceph (OSDC 2013)
 
Storage with ceph (osdc 2013)
Storage with ceph (osdc 2013)Storage with ceph (osdc 2013)
Storage with ceph (osdc 2013)
 
Florian Haas, hastexo - heat, cloud-init and cloud-config: OpenStack Orchestr...
Florian Haas, hastexo - heat, cloud-init and cloud-config: OpenStack Orchestr...Florian Haas, hastexo - heat, cloud-init and cloud-config: OpenStack Orchestr...
Florian Haas, hastexo - heat, cloud-init and cloud-config: OpenStack Orchestr...
 
Openstack Basic with Neutron
Openstack Basic with NeutronOpenstack Basic with Neutron
Openstack Basic with Neutron
 
OpenStack Neutron Tutorial
OpenStack Neutron TutorialOpenStack Neutron Tutorial
OpenStack Neutron Tutorial
 

Similar to CloudKC: Evolution of Network Virtualization

From Nova-Network to Neutron and Beyond: A Look at OpenStack Networking
From Nova-Network to Neutron and Beyond: A Look at OpenStack NetworkingFrom Nova-Network to Neutron and Beyond: A Look at OpenStack Networking
From Nova-Network to Neutron and Beyond: A Look at OpenStack Networking
Cynthia Thomas
 
[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...
[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...
[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...
OpenStack Korea Community
 
Operators experience and perspective on SDN with VLANs and L3 Networks
Operators experience and perspective on SDN with VLANs and L3 NetworksOperators experience and perspective on SDN with VLANs and L3 Networks
Operators experience and perspective on SDN with VLANs and L3 Networks
Jakub Pavlik
 
Opencontrail network virtualization
Opencontrail network virtualizationOpencontrail network virtualization
Opencontrail network virtualization
Nicolai van der Smagt
 
VMworld 2013: Advanced VMware NSX Architecture
VMworld 2013: Advanced VMware NSX Architecture VMworld 2013: Advanced VMware NSX Architecture
VMworld 2013: Advanced VMware NSX Architecture
VMworld
 
[OpenStack 스터디] OpenStack With Contrail
[OpenStack 스터디] OpenStack With Contrail[OpenStack 스터디] OpenStack With Contrail
[OpenStack 스터디] OpenStack With Contrail
OpenStack Korea Community
 
SDN & NFV Introduction - Open Source Data Center Networking
SDN & NFV Introduction - Open Source Data Center NetworkingSDN & NFV Introduction - Open Source Data Center Networking
SDN & NFV Introduction - Open Source Data Center Networking
Thomas Graf
 
Network Virtualization & Software-defined Networking
Network Virtualization & Software-defined NetworkingNetwork Virtualization & Software-defined Networking
Network Virtualization & Software-defined Networking
Digicomp Academy AG
 
Open stack networking_101_update_2014-os-meetups
Open stack networking_101_update_2014-os-meetupsOpen stack networking_101_update_2014-os-meetups
Open stack networking_101_update_2014-os-meetups
yfauser
 
CloudStack and SDN
CloudStack and SDNCloudStack and SDN
CloudStack and SDN
Sebastien Goasguen
 
OpenStack Networking
OpenStack NetworkingOpenStack Networking
OpenStack Networking
Ilya Shakhat
 
Quantum - The Network Mechanics
Quantum - The Network MechanicsQuantum - The Network Mechanics
Quantum - The Network Mechanics
Kiran Murari
 
OpenStack Quantum
OpenStack QuantumOpenStack Quantum
OpenStack Quantum
openstackindia
 
Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...
Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...
Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...
nvirters
 
Understanding and deploying Network Virtualization
Understanding and deploying Network VirtualizationUnderstanding and deploying Network Virtualization
Understanding and deploying Network Virtualization
SDN Hub
 
OpenStack 2012 fall summit observation - Quantum/SDN
OpenStack 2012 fall summit observation - Quantum/SDNOpenStack 2012 fall summit observation - Quantum/SDN
OpenStack 2012 fall summit observation - Quantum/SDN
Te-Yen Liu
 
Dave Chandler Presents SDN at World Wide Technology's TECday - St. Louis
Dave Chandler Presents SDN at World Wide Technology's TECday - St. LouisDave Chandler Presents SDN at World Wide Technology's TECday - St. Louis
Dave Chandler Presents SDN at World Wide Technology's TECday - St. Louis
World Wide Technology
 
NSX: La Virtualizzazione di Rete e il Futuro della Sicurezza
NSX: La Virtualizzazione di Rete e il Futuro della SicurezzaNSX: La Virtualizzazione di Rete e il Futuro della Sicurezza
NSX: La Virtualizzazione di Rete e il Futuro della Sicurezza
VMUG IT
 
Network virtualization
Network virtualizationNetwork virtualization
Network virtualization
Damian Parniewicz
 
VMworld 2014: Advanced Topics & Future Directions in Network Virtualization w...
VMworld 2014: Advanced Topics & Future Directions in Network Virtualization w...VMworld 2014: Advanced Topics & Future Directions in Network Virtualization w...
VMworld 2014: Advanced Topics & Future Directions in Network Virtualization w...
VMworld
 

Similar to CloudKC: Evolution of Network Virtualization (20)

From Nova-Network to Neutron and Beyond: A Look at OpenStack Networking
From Nova-Network to Neutron and Beyond: A Look at OpenStack NetworkingFrom Nova-Network to Neutron and Beyond: A Look at OpenStack Networking
From Nova-Network to Neutron and Beyond: A Look at OpenStack Networking
 
[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...
[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...
[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...
 
Operators experience and perspective on SDN with VLANs and L3 Networks
Operators experience and perspective on SDN with VLANs and L3 NetworksOperators experience and perspective on SDN with VLANs and L3 Networks
Operators experience and perspective on SDN with VLANs and L3 Networks
 
Opencontrail network virtualization
Opencontrail network virtualizationOpencontrail network virtualization
Opencontrail network virtualization
 
VMworld 2013: Advanced VMware NSX Architecture
VMworld 2013: Advanced VMware NSX Architecture VMworld 2013: Advanced VMware NSX Architecture
VMworld 2013: Advanced VMware NSX Architecture
 
[OpenStack 스터디] OpenStack With Contrail
[OpenStack 스터디] OpenStack With Contrail[OpenStack 스터디] OpenStack With Contrail
[OpenStack 스터디] OpenStack With Contrail
 
SDN & NFV Introduction - Open Source Data Center Networking
SDN & NFV Introduction - Open Source Data Center NetworkingSDN & NFV Introduction - Open Source Data Center Networking
SDN & NFV Introduction - Open Source Data Center Networking
 
Network Virtualization & Software-defined Networking
Network Virtualization & Software-defined NetworkingNetwork Virtualization & Software-defined Networking
Network Virtualization & Software-defined Networking
 
Open stack networking_101_update_2014-os-meetups
Open stack networking_101_update_2014-os-meetupsOpen stack networking_101_update_2014-os-meetups
Open stack networking_101_update_2014-os-meetups
 
CloudStack and SDN
CloudStack and SDNCloudStack and SDN
CloudStack and SDN
 
OpenStack Networking
OpenStack NetworkingOpenStack Networking
OpenStack Networking
 
Quantum - The Network Mechanics
Quantum - The Network MechanicsQuantum - The Network Mechanics
Quantum - The Network Mechanics
 
OpenStack Quantum
OpenStack QuantumOpenStack Quantum
OpenStack Quantum
 
Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...
Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...
Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...
 
Understanding and deploying Network Virtualization
Understanding and deploying Network VirtualizationUnderstanding and deploying Network Virtualization
Understanding and deploying Network Virtualization
 
OpenStack 2012 fall summit observation - Quantum/SDN
OpenStack 2012 fall summit observation - Quantum/SDNOpenStack 2012 fall summit observation - Quantum/SDN
OpenStack 2012 fall summit observation - Quantum/SDN
 
Dave Chandler Presents SDN at World Wide Technology's TECday - St. Louis
Dave Chandler Presents SDN at World Wide Technology's TECday - St. LouisDave Chandler Presents SDN at World Wide Technology's TECday - St. Louis
Dave Chandler Presents SDN at World Wide Technology's TECday - St. Louis
 
NSX: La Virtualizzazione di Rete e il Futuro della Sicurezza
NSX: La Virtualizzazione di Rete e il Futuro della SicurezzaNSX: La Virtualizzazione di Rete e il Futuro della Sicurezza
NSX: La Virtualizzazione di Rete e il Futuro della Sicurezza
 
Network virtualization
Network virtualizationNetwork virtualization
Network virtualization
 
VMworld 2014: Advanced Topics & Future Directions in Network Virtualization w...
VMworld 2014: Advanced Topics & Future Directions in Network Virtualization w...VMworld 2014: Advanced Topics & Future Directions in Network Virtualization w...
VMworld 2014: Advanced Topics & Future Directions in Network Virtualization w...
 

More from Cynthia Thomas

CNSCon 2024 Lightning Talk: Don’t Make Me Impersonate My Identity
CNSCon 2024 Lightning Talk: Don’t Make Me Impersonate My IdentityCNSCon 2024 Lightning Talk: Don’t Make Me Impersonate My Identity
CNSCon 2024 Lightning Talk: Don’t Make Me Impersonate My Identity
Cynthia Thomas
 
KubeCon NA'22 Lightning Talk: Where did all my IPs go?
KubeCon NA'22 Lightning Talk: Where did all my IPs go?KubeCon NA'22 Lightning Talk: Where did all my IPs go?
KubeCon NA'22 Lightning Talk: Where did all my IPs go?
Cynthia Thomas
 
Kernel advantages for Istio realized with Cilium
Kernel advantages for Istio realized with CiliumKernel advantages for Istio realized with Cilium
Kernel advantages for Istio realized with Cilium
Cynthia Thomas
 
Cilium:: Application-Aware Microservices via BPF
Cilium:: Application-Aware Microservices via BPFCilium:: Application-Aware Microservices via BPF
Cilium:: Application-Aware Microservices via BPF
Cynthia Thomas
 
Cilium: Seattle Kubernetes MeetUp Dec 2017
Cilium: Seattle Kubernetes MeetUp Dec 2017Cilium: Seattle Kubernetes MeetUp Dec 2017
Cilium: Seattle Kubernetes MeetUp Dec 2017
Cynthia Thomas
 
Cilium – Kernel Native Security & DDOS Mitigation for Microservices with BPF
Cilium – Kernel Native Security & DDOS Mitigation for Microservices with BPFCilium – Kernel Native Security & DDOS Mitigation for Microservices with BPF
Cilium – Kernel Native Security & DDOS Mitigation for Microservices with BPF
Cynthia Thomas
 
Secure Your Containers: What Network Admins Should Know When Moving Into Prod...
Secure Your Containers: What Network Admins Should Know When Moving Into Prod...Secure Your Containers: What Network Admins Should Know When Moving Into Prod...
Secure Your Containers: What Network Admins Should Know When Moving Into Prod...
Cynthia Thomas
 

More from Cynthia Thomas (7)

CNSCon 2024 Lightning Talk: Don’t Make Me Impersonate My Identity
CNSCon 2024 Lightning Talk: Don’t Make Me Impersonate My IdentityCNSCon 2024 Lightning Talk: Don’t Make Me Impersonate My Identity
CNSCon 2024 Lightning Talk: Don’t Make Me Impersonate My Identity
 
KubeCon NA'22 Lightning Talk: Where did all my IPs go?
KubeCon NA'22 Lightning Talk: Where did all my IPs go?KubeCon NA'22 Lightning Talk: Where did all my IPs go?
KubeCon NA'22 Lightning Talk: Where did all my IPs go?
 
Kernel advantages for Istio realized with Cilium
Kernel advantages for Istio realized with CiliumKernel advantages for Istio realized with Cilium
Kernel advantages for Istio realized with Cilium
 
Cilium:: Application-Aware Microservices via BPF
Cilium:: Application-Aware Microservices via BPFCilium:: Application-Aware Microservices via BPF
Cilium:: Application-Aware Microservices via BPF
 
Cilium: Seattle Kubernetes MeetUp Dec 2017
Cilium: Seattle Kubernetes MeetUp Dec 2017Cilium: Seattle Kubernetes MeetUp Dec 2017
Cilium: Seattle Kubernetes MeetUp Dec 2017
 
Cilium – Kernel Native Security & DDOS Mitigation for Microservices with BPF
Cilium – Kernel Native Security & DDOS Mitigation for Microservices with BPFCilium – Kernel Native Security & DDOS Mitigation for Microservices with BPF
Cilium – Kernel Native Security & DDOS Mitigation for Microservices with BPF
 
Secure Your Containers: What Network Admins Should Know When Moving Into Prod...
Secure Your Containers: What Network Admins Should Know When Moving Into Prod...Secure Your Containers: What Network Admins Should Know When Moving Into Prod...
Secure Your Containers: What Network Admins Should Know When Moving Into Prod...
 

Recently uploaded

Retrieval Augmented Generation Evaluation with Ragas
Retrieval Augmented Generation Evaluation with RagasRetrieval Augmented Generation Evaluation with Ragas
Retrieval Augmented Generation Evaluation with Ragas
Zilliz
 
The History of Embeddings & Multimodal Embeddings
The History of Embeddings & Multimodal EmbeddingsThe History of Embeddings & Multimodal Embeddings
The History of Embeddings & Multimodal Embeddings
Zilliz
 
Generative AI Reasoning Tech Talk - July 2024
Generative AI Reasoning Tech Talk - July 2024Generative AI Reasoning Tech Talk - July 2024
Generative AI Reasoning Tech Talk - July 2024
siddu769252
 
"Making .NET Application Even Faster", Sergey Teplyakov.pptx
"Making .NET Application Even Faster", Sergey Teplyakov.pptx"Making .NET Application Even Faster", Sergey Teplyakov.pptx
"Making .NET Application Even Faster", Sergey Teplyakov.pptx
Fwdays
 
FIDO Munich Seminar Blueprint for In-Vehicle Payment Standard.pptx
FIDO Munich Seminar Blueprint for In-Vehicle Payment Standard.pptxFIDO Munich Seminar Blueprint for In-Vehicle Payment Standard.pptx
FIDO Munich Seminar Blueprint for In-Vehicle Payment Standard.pptx
FIDO Alliance
 
How UiPath Discovery Suite supports identification of Agentic Process Automat...
How UiPath Discovery Suite supports identification of Agentic Process Automat...How UiPath Discovery Suite supports identification of Agentic Process Automat...
How UiPath Discovery Suite supports identification of Agentic Process Automat...
DianaGray10
 
Demystifying Neural Networks And Building Cybersecurity Applications
Demystifying Neural Networks And Building Cybersecurity ApplicationsDemystifying Neural Networks And Building Cybersecurity Applications
Demystifying Neural Networks And Building Cybersecurity Applications
Priyanka Aash
 
FIDO Munich Seminar Introduction to FIDO.pptx
FIDO Munich Seminar Introduction to FIDO.pptxFIDO Munich Seminar Introduction to FIDO.pptx
FIDO Munich Seminar Introduction to FIDO.pptx
FIDO Alliance
 
The Path to General-Purpose Robots - Coatue
The Path to General-Purpose Robots - CoatueThe Path to General-Purpose Robots - Coatue
The Path to General-Purpose Robots - Coatue
Razin Mustafiz
 
Top 12 AI Technology Trends For 2024.pdf
Top 12 AI Technology Trends For 2024.pdfTop 12 AI Technology Trends For 2024.pdf
Top 12 AI Technology Trends For 2024.pdf
Marrie Morris
 
Self-Healing Test Automation Framework - Healenium
Self-Healing Test Automation Framework - HealeniumSelf-Healing Test Automation Framework - Healenium
Self-Healing Test Automation Framework - Healenium
Knoldus Inc.
 
Choosing the Best Outlook OST to PST Converter: Key Features and Considerations
Choosing the Best Outlook OST to PST Converter: Key Features and ConsiderationsChoosing the Best Outlook OST to PST Converter: Key Features and Considerations
Choosing the Best Outlook OST to PST Converter: Key Features and Considerations
webbyacad software
 
Keynote : AI & Future Of Offensive Security
Keynote : AI & Future Of Offensive SecurityKeynote : AI & Future Of Offensive Security
Keynote : AI & Future Of Offensive Security
Priyanka Aash
 
Increase Quality with User Access Policies - July 2024
Increase Quality with User Access Policies - July 2024Increase Quality with User Access Policies - July 2024
Increase Quality with User Access Policies - July 2024
Peter Caitens
 
Enterprise_Mobile_Security_Forum_2013.pdf
Enterprise_Mobile_Security_Forum_2013.pdfEnterprise_Mobile_Security_Forum_2013.pdf
Enterprise_Mobile_Security_Forum_2013.pdf
Yury Chemerkin
 
History and Introduction for Generative AI ( GenAI )
History and Introduction for Generative AI ( GenAI )History and Introduction for Generative AI ( GenAI )
History and Introduction for Generative AI ( GenAI )
Badri_Bady
 
AMD Zen 5 Architecture Deep Dive from Tech Day
AMD Zen 5 Architecture Deep Dive from Tech DayAMD Zen 5 Architecture Deep Dive from Tech Day
AMD Zen 5 Architecture Deep Dive from Tech Day
Low Hong Chuan
 
Camunda Chapter NY Meetup July 2024.pptx
Camunda Chapter NY Meetup July 2024.pptxCamunda Chapter NY Meetup July 2024.pptx
Camunda Chapter NY Meetup July 2024.pptx
ZachWylie3
 
FIDO Munich Seminar In-Vehicle Payment Trends.pptx
FIDO Munich Seminar In-Vehicle Payment Trends.pptxFIDO Munich Seminar In-Vehicle Payment Trends.pptx
FIDO Munich Seminar In-Vehicle Payment Trends.pptx
FIDO Alliance
 
The Challenge of Interpretability in Generative AI Models.pdf
The Challenge of Interpretability in Generative AI Models.pdfThe Challenge of Interpretability in Generative AI Models.pdf
The Challenge of Interpretability in Generative AI Models.pdf
Sara Kroft
 

Recently uploaded (20)

Retrieval Augmented Generation Evaluation with Ragas
Retrieval Augmented Generation Evaluation with RagasRetrieval Augmented Generation Evaluation with Ragas
Retrieval Augmented Generation Evaluation with Ragas
 
The History of Embeddings & Multimodal Embeddings
The History of Embeddings & Multimodal EmbeddingsThe History of Embeddings & Multimodal Embeddings
The History of Embeddings & Multimodal Embeddings
 
Generative AI Reasoning Tech Talk - July 2024
Generative AI Reasoning Tech Talk - July 2024Generative AI Reasoning Tech Talk - July 2024
Generative AI Reasoning Tech Talk - July 2024
 
"Making .NET Application Even Faster", Sergey Teplyakov.pptx
"Making .NET Application Even Faster", Sergey Teplyakov.pptx"Making .NET Application Even Faster", Sergey Teplyakov.pptx
"Making .NET Application Even Faster", Sergey Teplyakov.pptx
 
FIDO Munich Seminar Blueprint for In-Vehicle Payment Standard.pptx
FIDO Munich Seminar Blueprint for In-Vehicle Payment Standard.pptxFIDO Munich Seminar Blueprint for In-Vehicle Payment Standard.pptx
FIDO Munich Seminar Blueprint for In-Vehicle Payment Standard.pptx
 
How UiPath Discovery Suite supports identification of Agentic Process Automat...
How UiPath Discovery Suite supports identification of Agentic Process Automat...How UiPath Discovery Suite supports identification of Agentic Process Automat...
How UiPath Discovery Suite supports identification of Agentic Process Automat...
 
Demystifying Neural Networks And Building Cybersecurity Applications
Demystifying Neural Networks And Building Cybersecurity ApplicationsDemystifying Neural Networks And Building Cybersecurity Applications
Demystifying Neural Networks And Building Cybersecurity Applications
 
FIDO Munich Seminar Introduction to FIDO.pptx
FIDO Munich Seminar Introduction to FIDO.pptxFIDO Munich Seminar Introduction to FIDO.pptx
FIDO Munich Seminar Introduction to FIDO.pptx
 
The Path to General-Purpose Robots - Coatue
The Path to General-Purpose Robots - CoatueThe Path to General-Purpose Robots - Coatue
The Path to General-Purpose Robots - Coatue
 
Top 12 AI Technology Trends For 2024.pdf
Top 12 AI Technology Trends For 2024.pdfTop 12 AI Technology Trends For 2024.pdf
Top 12 AI Technology Trends For 2024.pdf
 
Self-Healing Test Automation Framework - Healenium
Self-Healing Test Automation Framework - HealeniumSelf-Healing Test Automation Framework - Healenium
Self-Healing Test Automation Framework - Healenium
 
Choosing the Best Outlook OST to PST Converter: Key Features and Considerations
Choosing the Best Outlook OST to PST Converter: Key Features and ConsiderationsChoosing the Best Outlook OST to PST Converter: Key Features and Considerations
Choosing the Best Outlook OST to PST Converter: Key Features and Considerations
 
Keynote : AI & Future Of Offensive Security
Keynote : AI & Future Of Offensive SecurityKeynote : AI & Future Of Offensive Security
Keynote : AI & Future Of Offensive Security
 
Increase Quality with User Access Policies - July 2024
Increase Quality with User Access Policies - July 2024Increase Quality with User Access Policies - July 2024
Increase Quality with User Access Policies - July 2024
 
Enterprise_Mobile_Security_Forum_2013.pdf
Enterprise_Mobile_Security_Forum_2013.pdfEnterprise_Mobile_Security_Forum_2013.pdf
Enterprise_Mobile_Security_Forum_2013.pdf
 
History and Introduction for Generative AI ( GenAI )
History and Introduction for Generative AI ( GenAI )History and Introduction for Generative AI ( GenAI )
History and Introduction for Generative AI ( GenAI )
 
AMD Zen 5 Architecture Deep Dive from Tech Day
AMD Zen 5 Architecture Deep Dive from Tech DayAMD Zen 5 Architecture Deep Dive from Tech Day
AMD Zen 5 Architecture Deep Dive from Tech Day
 
Camunda Chapter NY Meetup July 2024.pptx
Camunda Chapter NY Meetup July 2024.pptxCamunda Chapter NY Meetup July 2024.pptx
Camunda Chapter NY Meetup July 2024.pptx
 
FIDO Munich Seminar In-Vehicle Payment Trends.pptx
FIDO Munich Seminar In-Vehicle Payment Trends.pptxFIDO Munich Seminar In-Vehicle Payment Trends.pptx
FIDO Munich Seminar In-Vehicle Payment Trends.pptx
 
The Challenge of Interpretability in Generative AI Models.pdf
The Challenge of Interpretability in Generative AI Models.pdfThe Challenge of Interpretability in Generative AI Models.pdf
The Challenge of Interpretability in Generative AI Models.pdf
 

CloudKC: Evolution of Network Virtualization

  • 1. Evolu&on of Network Virtualiza&on Cloud KC MeetUp August 2014
  • 2. Agenda ▪ Network Virtualiza&on Requirements ▪ OpenFlow vs. Overlay ▪ Brief Overview of OpenStack and Neutron Networking (OVS) ▪ Use Cases for Network Virtualiza&on & Midokura Solu&on 1
  • 3. 2 Network Virtualization Requirements#
  • 4. What is Network Virtualization (NV)? 3 Taking logical (virtual) networks and services, and decoupling them from the underlying network hardware. Well suited for highly virtualized environments. Any Application Virtual Networks Any Cloud Management Platform MidoNet Virtualiza&on PlaOorm Distributed Firewall Logical L2 Existing Network Hardware service Distributed Load Balancer ser Distributed VPN Service Logical L3 KVM, ESXi, Xen LXC
  • 5. Requirements for NV 4 Requirements 4 Tenant/Project A Network A1 VM1 VM3 Network A2 VM5 Tenant/Project B Network B1 VM2 VM4 uplink Provider Virtual Router (L3) Tenant A Virtual Router Tenant B Virtual Router VM6 Virtual L2 Switch B1 Virtual L2 Switch A1 Virtual L2 Switch A2 TenantB office Tenant B VPN Router Office Network
  • 6. Requirements for NV 5 Requirements 5 Tenant/Project A Network A1 VM1 VM3 Network A2 VM5 Tenant/Project B Network B1 VM2 VM4 uplink Provider Virtual Router (L3) Tenant A Virtual Router Tenant B Virtual Router VM6 Virtual L2 Switch B1 Virtual L2 Switch A1 Virtual L2 Switch A2 TenantB office Tenant B VPN Router Office Network Isolated tenant networks (virtual data center)
  • 7. Requirements for NV 6 Requirements 6 Tenant/Project A Network A1 VM1 VM3 Network A2 VM5 L3 Isolation (similar to VPC and VRF) Tenant/Project B Network B1 VM2 VM4 uplink Provider Virtual Router (L3) Tenant A Virtual Router Tenant B Virtual Router VM6 Virtual L2 Switch B1 Virtual L2 Switch A1 Virtual L2 Switch A2 TenantB office Tenant B VPN Router Office Network
  • 8. Requirements for NV Redundant, optimized, and fault tolerant paths to to/ from external networks (e.g. via eBGP) 7 Requirements 7 Tenant/Project A Network A1 VM1 VM3 Network A2 VM5 Tenant/Project B Network B1 VM2 VM4 uplink Provider Virtual Router (L3) Tenant A Virtual Router Tenant B Virtual Router VM6 Virtual L2 Switch B1 Virtual L2 Switch A1 Virtual L2 Switch A2 TenantB office Tenant B VPN Router Office Network Fault-tolerant devices and links
  • 9. Requirements for NV 8 8 Tenant/Project A Network A1 VM1 VM3 Network A2 VM5 Tenant/Project B Network B1 VM2 VM4 uplink Provider Virtual Router (L3) Tenant A Virtual Router Tenant B Virtual Router VM6 Virtual L2 Switch B1 Virtual L2 Switch A1 Virtual L2 Switch A2 TenantB office Tenant B VPN Router Office Network Fault-tolerant devices and links Fault tolerant devices and links
  • 10. Requirements for NV 9 Device-agnostic networking services: • Load Balancing • Firewalls • Stateful NAT • VPN Networks and services must be fault tolerant and scalable
  • 11. Requirements for NV 10 Single pane of glass to manage it all.
  • 12. Bonus Requirements for NV 11 Integration with cloud or virtualization management systems. Optimize network by exploiting management configuration. Single virtual hop for networking services Fully distributed control plane (ARP, DHCP, ICMP)
  • 13. Checklist for Network Virtualization 12 q Multi-tenancy q Scalable, fault-tolerant devices (or device-agnostic network services). q L2 isolation q L3 routing isolation • VPC • Like VRF (virtual routing and fwd-ing) q Scalable gateways q Scalable control plane • ARP, DHCP, ICMP q Floating/Elastic Ips q Stateful NAT • Port masquerading • DNAT q ACLs q Stateful (L4) Firewalls • Security Groups q Load Balancing with health checks q Single Pane of Glass (API, CLI, GUI) q Integration with management platforms • OpenStack, CloudStack • vSphere, RHEV, System Center q Decoupled from Physical Network
  • 14. Evolution of Network Virtualization 13 INNOVATION IN NETWORKING AGILITY VLAN APPROACH Manual End-to-End VLAN configured on physical switches • Static • Manual • Complex • Tenant state maintained in physical network 13
  • 15. Using VLANs for NV 14 q Multi-tenancy q Scalable, fault-tolerant devices (or device-agnostic network services). ü L2 isolation q L3 routing isolation • VPC • Like VRF (virtual routing and fwd-ing) q Scalable gateways q Scalable control plane • ARP, DHCP, ICMP q Floating/Elastic IPs q Stateful NAT • Port masquerading • DNAT q ACLs q Stateful (L4) Firewalls • Security Groups q Load Balancing with health checks q Single Pane of Glass (API, CLI, GUI) q Integration with management platforms • OpenStack, CloudStack • vSphere, RHEV, System Center q Decoupled from Physical Network
  • 16. Evolution of Network Virtualization 15 INNOVATION IN NETWORKING AGILITY OPENFLOW REACTIVE APPOACH Reactive End-to-End Requires programming of flows • Limited scalability • Hard to manage • Impact to performance • Still requires tenant state in physical network VLAN APPROACH Manual End-to-End VLAN configured on physical switches • Static • Manual • Complex • Tenant state maintained in physical network 15
  • 17. What is OpenFlow? 16 A communication protocol that gives access to the forwarding plane of a network switch over the network.
  • 18. What is OpenFlow? 17 A centralized remote controller decides the path of packets through the switches
  • 19. Using OpenFlow for NV 18 ü Multi-tenancy q Scalable, fault-tolerant devices (or device-agnostic network services). ü L2 isolation △ L3 routing isolation • VPC • Like VRF (virtual routing and fwd-ing) q Scalable gateways q Scalable control plane • ARP, DHCP, ICMP q Floating/Elastic IPs q Stateful NAT • Port masquerading • DNAT q ACLs q Stateful (L4) Firewalls • Security Groups q Load Balancing with health checks △ Single Pane of Glass (API, CLI, GUI) △ Integration with management platforms • OpenStack, CloudStack • vSphere, RHEV, System Center q Decoupled from Physical Network
  • 20. Evolution of Network Virtualization 19 PROACTIVE INNOVATION IN NETWORKING AGILITY SOFTWARE OVERLAY Virtual Network Overlays Decoupling hardware and software • Cloud-ready agility • Unlimited scalability • Open, standards-based • No impact to physical network OPENFLOW REACTIVE APPOACH Reactive End-to-End Requires programming of flows • Limited scalability • Hard to manage • Impact to performance • Still requires tenant state in physical network VLAN APPROACH Manual End-to-End VLAN configured on physical switches • Static • Manual • Complex • Tenant state maintained in physical network 19
  • 21. 20 How do overlays achieve real network virtualization?
  • 22. 21 Encapsulation and Tunneling Provides isolation
  • 23. 22 Stateless core. Stateful edge.
  • 24. 23 Network processing at the edge Decoupled from the physical network
  • 25. 24 Virtual network changes don’t affect the physical network
  • 26. 25 Single virtual hop network services avoid “traffic trombones”
  • 27. 26 Centralized state and control for maximum agility
  • 28. 27 Scalable, fault tolerant gateways to external networks
  • 29. Using Overlays for NV 28 ü Multi-tenancy ü Scalable, fault-tolerant devices (or device-agnostic network services). ü L2 isolation ü L3 routing isolation • VPC • Like VRF (virtual routing and fwd-ing) ü Scalable Gateways ü Scalable control plane • ARP, DHCP, ICMP ü Floating/Elastic IPs ü Stateful NAT • Port masquerading • DNAT ü ACLs ü Stateful (L4) Firewalls • Security Groups ü��� Load Balancing with health checks ü Single Pane of Glass (API, CLI, GUI) ü Integration with management platforms • OpenStack, CloudStack • vSphere, RHEV, System Center ü Decoupled from Physical Network
  • 30. 29 Sounds great, but when will it be a reality?
  • 34. 33 Before Neutron: Nova Networking # Nova-Networking was the only option in OpenStack prior to Quantum/Neutron. Still available today as an alternative to Neutron, but will likely be phased out. # Options Available within nova-networking initially: • Only Flat • Flat DHCP # Limitations • No flexibility with topologies (no 3-tier) • Tenants can’t create/manage L3 Routers • Scaling limitations (L2 domain)# • No 3rd party vendors supported • Complex HA model#
  • 35. 34 Nova-­‐network slightly evolves Introduced VLAN DHCP mode Improvements: • L2 Isolation – each project gets a VLAN assigned to it # Limitations • Need to pre-configure VLANs on physical network. • Scaling Limitations - VLANs • No L3 • No 3-tier topologies • No 3rd party vendors
  • 36. Introducing Neutron 35 OpenStack Networking as a first class Service # • Pluggable Architecture • Standard API • Many choices# # Plugins Available! • MidoNet! • OVS Plugin • Linux Bridges • Flat DHCP • VLAN DHCP# • ML2 # # • Supports Overlay Technology • More Services (LBaaS, VPNaaS) • Flexible network topologies# # # # • NSX • Plumgrid# • Nuage# • Contrail • Ryu#
  • 37. 36 OVS Plugin Overview#
  • 38. OVS Agent - receives tunnel/flow setup info from OVS Plugin, and programs Open vSwitch to setup tunnels and send traffic through the tunnel# # DHCP Agent - Sets up dnsmasq in a namespace per network/subnet and enters mac/ ip into dhcp lease file # L3 Agent – OVS Plugin orchestrates to set up IPTables, Routing, NAT tables# 37 OVS Open Source Plugin
  • 39. 38 Challenges with OVS Plugin Neutron Network Node is a SPOF# Need to use corosync, etc for active/standby failover. # Challenging at Scale Since there’s a single network node, this becomes a bottleneck fairly quickly. ! Inefficient Networking IPTables, L3 Agent, multiple hops for single flow are causing unnecessary traffic and added latency on your physical network !
  • 41. 40 MidoNet Network Virtualiza&on PlaOorm Logical L2 Switching -­‐ L2 isola&on and path op&miza&on with distributed virtual switching Interconnect with VLAN enabled network via L2 Gateway Logical L3 Rou&ng – L3 isola&on and rou&ng between virtual networks No need to exit the so]ware container -­‐ no hardware required Distributed Firewall – Provides ACLs, high performance kernel integrated firewall via a flexible rule chain system Logical Layer 4 Load Balancer – Provides applica&on load balancing in so]ware form -­‐ no need for hardware based firewalls VxLAN/GRE – Provides VxLAN and GRE tunneling Provides L2 connec&vity across L3 transport. This is useful when L2 fabric doesn’t reach all the way from the racks hos&ng the VMs to the physical L2 segment of interest. MidoNet/Neutron API– Alignment with OpenStack Neutron’s API for integra&on into compa&ble cloud management so]ware Any Application OpenStack/Cloud Management System MidoNet Network Virtualiza&on PlaOorm v Distributed Firewall Layer 4 Load Balancer Logical L2 Logical L3 Any Network Hardware VxLAN/GRE Any Hypervisor NAT MidoNet / Neutron API NAT – Provides Dynamic NAT, Port masquerading
  • 42. OpenStack Integra&on 5 Easy integra&on with OpenStack: MidoNet provides a plugin for Neutron. MidoNet Plugin
  • 44. Use Cases Automated Provisioning Isolated Sandboxes Enhanced Security Enable Compliance Scale out L3 Gateway Bridge legacy VLANs Do it Faster Do it Bigger Val u e Agility Provide rapid provisioning of isolated network infrastructure for labs and devops. Logical Network Provisioning Control Network admins can better secure, control & view network traffic. Single Pane of Glass OpsTools Do it Better IaaS Cloud Build multi-tenant clouds with visibility into usage. Tenant Control Automated Self Service Metering Performance Improve network performance using edge overlay & complementary technologies. Single Hop Virtual Networking VXLAN Hardware Gateway Massive performance with 40Gb Support Scale Add virtual network infra & services simply & resiliently without hardware & bottlenecks. Distributed Logical Networking FW, LB, L2/3, NAT Limitless “VLANs” IPv6 Solution for OpenStack Networking Use MN to overcome limitations of Neutron for OpenStack users. Replaces OVS Plugin
  • 45. 44 So what’s next for Network Virtualization?
  • 46. 45 Get more out of the physical network.
  • 47. 46 Network Virtualization decouples the logical network from the physical network.
  • 48. NVOs can’t ignore the physical network 47 Dynamic changes to logical network are not dependent on the physical network configuration. Sharing state to and from the physical network can be supplementary. - Monitoring - Traffic Engineering
  • 49. 48 Get more intelligence out of your network
  • 50. NVOs provide a wealth of information 49 NVOs centralize information on your network We can start taking advantage of this information - Security - Compliance - Optimizing Networks
  • 51. 50 Bridge physical and virtual networks more efficiently
  • 52. Midokura VTEP Solution 51 IP Fabric MidoNet MidoNet Virtual Any Cloud Management PlaHorm MidoNet Network State Database VM VM VM VM VM VM OVSDBc Server Storage Services Physical VM VM VTEP TCP/IP OVSDB VxLAN Tunnel Physical Connection Key OVSDBs
  • 53. 52 Break through performance barriers of software networking
  • 54. Performance 40Gb VxLAN Offloading: virtualized environments require high throughput infrastructure • Integra&on with Mellanox provides 40 Gbps satura&on • VxLAN offloading improves CPU u&liza&on levels • Scale with performance through HW interconnect • Increase throughput with offloading where no offloading would otherwise have flat results • High bandwidth can now be achieved in so]ware
  • 56. 55 MidoNet Advantages # Check out our blog: hjp://blog.midokura.com/ Follow us on Twijer: @midokura
  • 57. Thank You Cynthia Thomas @_techcet_ 56