• Save
CloudStack Networking at CloudOpen Japan
Upcoming SlideShare
Loading in...5
×
 

CloudStack Networking at CloudOpen Japan

on

  • 1,248 views

This slide is for "CloudStack Networking" at CloudOpen Japan on 2013/05/31.

This slide is for "CloudStack Networking" at CloudOpen Japan on 2013/05/31.

Statistics

Views

Total Views
1,248
Views on SlideShare
1,214
Embed Views
34

Actions

Likes
3
Downloads
0
Comments
0

3 Embeds 34

http://eventifier.co 26
http://eventifier.com 7
https://twitter.com 1

Accessibility

Categories

Upload Details

Uploaded via as Adobe PDF

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

CloudStack Networking at CloudOpen Japan CloudStack Networking at CloudOpen Japan Presentation Transcript

  • Kimihiko KitaseSolution Marketing Manager at CitrixHiroaki KawaiSenior engineer at Stratosphere | Committer at Apache CloudStackCloudStack Networking
  • 北瀬 公彦KIMIHIKO KITASEBoard member at Japan CloudStack User GroupSolution marketing manager at CitrixJoined to Citrix on March, 2000. TS  R&D  SE  Sol | OSS community marketingtwitter: @kkitasemail: kkitase@gmail.comweb: http://v12n.jphttp://cloudstack.jpWrote lots of magazines, book, articles related virtualization and cloud.DesktopVirtualizationServerVirtualizationCloudand Network
  • • De Fact StandardCloud Management Platform• Beautiful self-service portal UI• Admin, group admin, end user• Various networking services• LB, FW, VPN, NAT, etc• Work with external network appliance• OSS: Apache Software Foundation• Apache CloudStack(Latest ver. 4.0.2)• Commercial Distribution: Citrix• Citrix CloudPlatform(Latest ver. 3.0.6)What is CloudStack?
  • CloudStack Supports Multiple Cloud StrategiesMulti-tenantPublic Cloud• Dedicated resources• Security & total control• Internal network• Managed by Enterprise or 3rdparty• Mix of shared anddedicated resources• Elastic scaling• Pay as you go• Public internet, VPN accessHostedPrivate Cloud• Dedicated resources• Security• SLA bound• 3rd party owned andoperatedPrivate Clouds Public CloudsOn-premisePrivate Cloud
  • 150+Clouds In Deployment40,000+Servers at scale
  • From the Latest Nikkei Computer““Our cloud infra is based on CloudStack” is sales talk.”by one service provider’s evangelist
  • APIforintegration User Interface API for developerAmazon CloudStackCloud admin Tenant admin End UserAvailability and SecurityServer Network StorageVirtualization Layerserver storage networkVM managementBackupLoadBalancerreliability monitoringImage LibraryService catalogOS templatesISOsResource managementCMS,Billing,Helpdesk,AccountManagement,etc…IaaS Archtecturemetering
  • APIforintegration User Interface API for developerAmazon CloudStackCloud admin Tenant admin End UserAvailability and SecurityServer Network StorageVirtualization Layerserver storage networkVM managementBackupLoadBalancerreliability monitoringImage LibraryService catalogOS templatesISOsResource managementCMS,Billing,Helpdesk,AccountManagement,etc…Area covered by Apache CloudStackmetering
  • Compute Storage NetworkManagement & Security PaaS AutomationBusiness Portals Migration&Monitoring Application Mgmt.yPublic CloudsCloud Ecosystem
  • CloudStack Architecture
  • Secondarystorage(NFS, OpenStack Swift)ManagementserverNetworkappliance(LB, FW, SDN/OpenFlow)Self-service portalPrimary storage(NFS, iSCSI, FC SAN, Local)CloudStack high level architecture
  • Pod 1….Cluster NL2 switchHost 2Cluster 1CloudStack componentsHost 1 Host is the basic unit of scale. Runs ahypervisor or is bare metal Cluster consists of one ore more hostsof same hypervisor All hosts in cluster have access toshared (primary) storage Pod is one or more clusters, usuallywith a L2 switch. Represents a rack Availability Zone has one or morepods, has access to secondary storage. Firewall and Load balancers separatepublic and private networks One or more zones represent cloudPrimaryStorageZone 1FirewallLoad Balancer….L3 switchSecondaryStoragePod N
  • Data Center 1Multi zones architectureAvailabilityZone 1Data Center 2SecondaryManagementServerMySQLReplicationData Center 3Data Center 4AvailabilityZone 2AvailabilityZone 3AvailabilityZone 4PrimaryManagementServer
  • Demo
  • CloudStack Network Model
  • Layer-3 Guest network - Basic Network65.11.1.2 Guest VM1Guest VM2Guest VM3Guest VM4Public networkNetScalerLoadBalancer65.11.1.365.11.1.465.11.1.5DHCPDNSVirtualRouterTenant ASecurity group 110.1.2.3 Guest VM1Guest VM2Guest VM3Guest VM410.1.2.410.1.2.510.1.2.6EIP, ELB65.11.1.265.11.1.3L3SwitchTenant BSecurity Group 2DHCPDNSVirtualRouterPublic networkNetworking Service modelprovided by Virtual RouterNetworking Service modelprovided by external network applianceTenant ASecurity group 1Tenant BSecurity Group 2
  • Layer-2 Gust network - Advanced NetworkGuest network10.1.1.1/8Gateway10.1.1.1DHCPDNSNATLoad BalancingVPNPublic IP65.37.141.1110.1.1.1Guest VM110.1.1.3Guest VM210.1.1.4Guest VM310.1.1.5Guest VM4Guest network10.1.1.1/8Private IP10.1.1.112DHCPDNSPublic IP65.37.141.11210.1.1.1Guest VM110.1.1.3Guest VM210.1.1.4Guest VM310.1.1.5Guest VM4NetScalerLoadBalancerPrivate IP10.1.1.111Public IP65.37.141.111 JuniperSRXFirewallNetworking Service modelprovided by Virtual RouterNetworking Service modelprovided by external network applianceVirtualRouterPublic network Public networkVirtualRouterTenant BVLAN 101Tenant AVLAN 100Tenant AVLAN 100Tenant BVLAN 101VirtualRouterVirtualRouter
  • Virtual Router• When Advanced network is used VR is deployed Per-Account• Provide multiple networking servicesᵒ DHCP, DNS, NAT, Source NAT, Firewall, VPN, User-data• VR detailsᵒ Debian 6.0 ("Squeeze"), 2.6.32 kernel with the latest security patchesfrom the Debian security APT repositoryᵒ Latest versions of dnsmasq, haproxy, iptables, ipsec, apacheᵒ Latest version of JRE• Can be accessed via SSH using key from management server
  • WebAppDBVirtual RouterVirtual Private Cloud a.k.a. VPCCreate one or more networksConfigure firewall rulesConfigure LB rulesDeploy & manage VMsVLAN 1VLAN 2VLAN 3Tenant A
  • CloudStack SDN ApproachHiroaki KawaiSenior engineer at Stratosphere | Committer at Apache CloudStack
  • Welcome to joinhttp://cloudstack.apache.orghttp://cloudstack.jptwitter: @kkitasemail: kkitase@gmail.com