Confiden’al OpenStackネット ワーキング管者 201487 ミドクラジャパン株式会社 嶋隆 OpenStack最新情報セミナー
OpenStackネットワーキング管理者入門 - OpenStack最新情報セミナー 2014年8月
Sep 08, 2014
講師:ミドクラ 高嶋様
日時:2014/08/07
タイトル:OpenStackネットワーキング管理者入門
概要:
- 自己紹介
- 本日のターゲット
- OpenStack Networkingのおさらい
- OVS pluginの場合
- MidoNetの場合
- まとめ
日時:2014/08/07
タイトル:OpenStackネットワーキング管理者入門
概要:
- 自己紹介
- 本日のターゲット
- OpenStack Networkingのおさらい
- OVS pluginの場合
- MidoNetの場合
- まとめ
Welcome message from author
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
- Conden'al OpenStack 201487 OpenStack
- Confidential OpenStack Networking OVS plugin MidoNet MidoNet Updates 2
- Confidential 3 2013
- Confidential 4
- Confidential 5 OpenStack (?) OVS plugin MidoNet Photo Credit: t L via Compfight cc
- Confidential OpenStack Networking 6
- Confidential OpenStack 7
- Confidential Neutron 8 External Network VM Network Router VM Neutron (?) L3 VML2 SNAT, Floating IP
- Confidential Neutron / 9 External Network VM Network Router Outgoing SNAT Incoming DNAT VM ( Floating-IP ) OpenStack VM tap DHCPVM (Security-Group) Nova
- Confidential Neutron 10 Plugin
- Confidential 11 Photo Credit: ryoichi360 via Compfight cc OVS plugin
- Confidential OVS plugin 12
- Confidential OVS Plugin 13 nOVS Plugin Option OpenStack Havana OVS Integration 2 Option4 1. Network termination a. L3+L2 termination b. L2 termination 2. L2 Encapsulation between bridge devices A. VLAN mode B. GRE mode
- Confidential L2 termination L3+L2 termination 14 nL2 Termination OpenStack Bridge L3 Termination Cloud br-int br-ext DCHP agent L2 Agentbr-int L2 agent L2 Agentbr-int Network node Compute nodeCompute node Uplink Router VM (br-int) DHCP agent L2 Agent VM (br-int) Physical Network (*) pacemaker Active/Standby Default gateway Uplink router VRRP x SPoF (*) x Network Uplink Router interface Operation L2 bridging
- Confidential L2 termination L3+L2 termination 15 nL3 Termination OpenStack Bridge L3 Termination Network node br-int br-ext DCHP agent L2 Agentbr-int L2 agent L2 Agentbr-int Network node Compute nodeCompute node Uplink Router L3 Agent, DHCP Agent L2 Agent VM (br-int) Physical Network (*) pacemaker Active/Standby x SPoF (*) x Network Uplink Router interface Operation x Network node L3 agent L3 agent Tenant Network Namespace Routing Linux kernel L3 Routing
- Confidential VLAN mode GRE mode 16 nVLAN mode VM VLAN br-int br-ext DCHP agent L2 Agentbr-int L2 agent L2 Agentbr-int Network node Compute nodeCompute node Uplink Router VM (br-int) VID Physical Network o PerformanceL2 switching x VMMAC Physical Network x Physical Network L2 x VMVID x VMPhysical Network VLAN L3 agent L3 agent L3 Routing
- Confidential VLAN mode GRE mode 17 nGRE mode VM GRE br-int br-ext DCHP agent L2 Agentbr-int L2 agent L2 Agentbr-int Network node Compute nodeCompute node Uplink Router VM GRE L3 termination GRE Network node L3 agent) Physical Network o Physical Network L3 o MAC/VID L3 Physical Network resource x Performance GRE encap/ decap VLAN mode L3 agent L3 agent L3 Routing
- Confidential OVS plugin n Network node SPoF (*) (*) pacemaker Active/Standby n Network node L3 Agent n Network node Single node dnsmasq etc , etc 18
- Confidential Juno (?) 19 From: http://status.openstack.org/release/
- Confidential neutron-ovs-dvr 20 n Compute node l3-agent Compute to Compute Network node br-int br-ext DCHP agent L2 Agentbr-int L2 agent L2 Agentbr-int Network node Compute nodeCompute node Uplink Router Physical Network L3 agent L3 agent L3 Routing L3 agent L3 agent New Network node L3- agent Compute Current DVR New
- Confidential l3-agent high availability 21 n keepalived + conntrackd VRRP l3-agent https://wiki.openstack.org/wiki/Neutron/L3_High_Availability_VRRP
- Confidential OVS plugin Juno n Network node SPoF Active-Standby HA (?) n Network node L3 Agent DVR Compute (?) n Network node Single node dnsmasq etc , etc 22
- Confidential 23 Photo Credit: Micky Aldridge via ickr cc MidoNet
- Confidential 24 L2 Gateway VLAN L2 L3 L2/L3 L4L4 DHCPFloating IP L2 Gateway BGPActive-Active Single Point of Failure OpenStack Restful API Security Rule L4 BGP L2, L3
- Confidential 25 OVS plugin ?
- Confidential 26 VM The InternetvPort vPort vPort vPort VM VM vPort vPort VM VM vPort Tenant A Router Tenant A Bridge 1 Tenant A Bridge 2 Tenant B Bridge 1 Tenant B Router Virtual Topology (Overlay) BGP uplink Provider Router The Internet VM MidoNet Compute VM MidoNet Compute VM MidoNet Compute MidoNet Gateway MidoNet Gateway Back end Network Network State Node NW State DBNW State DBNW State DB Physical Topology (Underlay) BGP uplink API Node Cloud Mgmt System Only requirement is an IP reachability!
- Confidential 27 VM VM VM VM VM VM ToR ToR VM VM VM IaaS Overlay )
- Confidential 28 Juno OVS plugin GRE + L3 Termination ?
- Confidential 29
- Confidential MidoNet 30 The Internet VM MidoNet Compute Node VM MidoNet Compute Node VM MidoNet Compute Node MidoNet Gateway Node MidoNet Gateway Node Back-end Network Network State Node NW State DBNW State DBNW State DB MidoNet BGP uplink API Node Cloud Mgmt System OSOVS kernel module Data path OS NSDB Data path Agent Zookeeper, Cassandra IP-MAC table DB NSDB
- Confidential Gateway Compute Node 31 L2 Agent OVS plugin agent ovs-vswitchd iptables ovs kernel module L3 Agent dnsmasq Metadata Agent DHCP Agent NetworkNamespace L2 Agent OVS plugin agent ovs-vswitchd iptables ovs kernel module ovs kernel module MidoNet Agent NetworkNamespace MidoNet Agent ovs kernel module bgpd (quagga) Compute Node Network Node Metadata Agent DHCP Agent OVS plugin MidoNet MidoNet Agent
- Confidential 32
- Confidential OVS plugin MidoNet 33
- Confidential MSP 34 MSP OpenStack + KVM A A A Z OpenStack+MidoNet
- Confidential MSP 35 Why MidoNet ? > Answer OpenStack Default OVS plugin & br-int br-ext DCHP agent L2 Agentbr-int L2 agent L2 Agentbr-int Network Node ComputeCompute Physical Network L3 agent L3 agent Static Routing External Network Network Node Active- Standby 1:1 br-int br-ext DCHP agent L2 agent L3 agent L3 agent Active Standby Default OVS plugin Physical Network BGP Gateway ComputeCompute External Network MidoNet Gateway BGP Peer Active-Active MidoNet + OpenStack
- Confidential Z B A 36 OpenStack + KVM VMVM VM VM VMVM VM VM
- Confidential 37 Why MidoNet ? > Answer OpenStack Neutron Y B A VMVM VM VM VMVM VM VM Z VM VM C VM VM OK ! OK !NG! Policy 1 Policy 2
- Confidential MidoNet updates 38
- Confidential : L4 39 Gateway The Internet VM vPort vPort vPort vPort VM VM vPort vPort VM VM vPort Tenant Router Provider Router L4LB VM Compute VM Compute VM Compute Gateway Gateway Tenant Router L4 Load Balancer L2, L3 Ingress Load Balancer VM Load Balancer Gateway VM Compute The Internet Gateway LB Back-end Network
- Confidential : Cumulus OS 40 Cumulus OS VXLAN MidoNet Agent Compute Gateway 2014Q3 VM MidoNet Compute Node VM MidoNet Compute Node VM MidoNet Compute Node Back-end Network Network State Node NW State DBNW State DBNW State DB L2 API Node Cloud Mgmt System L2 Cumulus box VTEP Compute VXLAN OVSDB Protocol Zookeeper connection
- Confidential : VXLAN+NIC 41 Mellanox CloudX RedHat OpenStack + Mellanox + MidoNet MidoNet VXLANMellanox VXLAN NIC ! 2014Q3 RedHat Linux Midokura MidoNet + +
- Confidential 42
- Confidential OVS plugin Juno Network Node MidoNet HA L4LB ? 43
- Confidential Thank you !
Related Documents
