Successfully reported this slideshow.
Your SlideShare is downloading. ×

Open vSwitch Introduction

Jan. 06, 2020
1 like 864 views
Upcoming SlideShare
How Networking works with Data Science
How Networking works with Data Science
Loading in …3
×

Check these out next

"One network to rule them all" - OpenStack Summit Austin 2016
Phil Estes
Open v switch20150410b
Richard Kuo
Cilium - BPF & XDP for containers
Docker, Inc.
Ovs perf
Madhu c
Orchestration tool roundup kubernetes vs. docker vs. heat vs. terra form vs...
Nati Shalom
Open stack networking vlan, gre
Sim Janghoon
Docker Meetup: Docker Networking 1.11, by Madhu Venugopal
Michelle Antebi
Load Balancing 101
宏瑋 邱
1 of 42
1 of 42

Open vSwitch Introduction

Jan. 06, 2020
1 like 864 views

Download to read offline

Software

Introduce the basic concept of Open vSwitch. In this slide, we talked about how Linux kernel and networking stack worked together to forward and process the network packet and also compare those Linux networking stack functionality with Open vSwitch and Openflow.
At the end of this slide, we talk about the challenge to integrate the Open vSwitch with Kubernetes, what kind of the networking function we need to resolve and what is the benefit we can get from the Open Vswitch.

Introduce the basic concept of Open vSwitch. In this slide, we talked about how Linux kernel and networking stack worked together to forward and process the network packet and also compare those Linux networking stack functionality with Open vSwitch and Openflow.
At the end of this slide, we talk about the challenge to integrate the Open vSwitch with Kubernetes, what kind of the networking function we need to resolve and what is the benefit we can get from the Open Vswitch.

Software

Recommended

More Related Content

Slideshows for you

"One network to rule them all" - OpenStack Summit Austin 2016
Phil Estes
Open v switch20150410b
Richard Kuo
Cilium - BPF & XDP for containers
Docker, Inc.
Ovs perf
Madhu c
Orchestration tool roundup kubernetes vs. docker vs. heat vs. terra form vs...
Nati Shalom
Open stack networking vlan, gre
Sim Janghoon
Docker Meetup: Docker Networking 1.11, by Madhu Venugopal
Michelle Antebi
Load Balancing 101
宏瑋 邱
Docker networking tutorial 102
LorisPack Project
Running Legacy Applications with Containers
LinuxCon ContainerCon CloudOpen China
OpenStack 2012 fall summit observation - Quantum/SDN
Te-Yen Liu
Docker Networking with New Ipvlan and Macvlan Drivers
Brent Salisbury
Kubernetes networking in AWS
Zvika Gazit
Learning how AWS implement AWS VPC CNI
宏瑋 邱
iptables and Kubernetes
宏瑋 邱
Practical CNI
LinuxCon ContainerCon CloudOpen China
Linux Kernel Development
LinuxCon ContainerCon CloudOpen China
Virtualized network with openvswitch
Sim Janghoon
Ovn vancouver
Mason Mei

Similar to Open vSwitch Introduction

How to build a Kubernetes networking solution from scratch
All Things Open
Dragonflow 01 2016 TLV meetup
Eran Gampel
Network programmability: an Overview
Aymen AlAwadi
OpenStack and OpenFlow Demos
Brent Salisbury
Layer 123 SDN World Congress OpenDaylight Service Function Chaining Use Cases
abhijit2511
Network and Service Virtualization tutorial at ONUG Spring 2015
SDN Hub
SDN, OpenFlow, NFV, and Virtual Network
Tim4PreStartup
Introduction to OpenNetwork and SDN
宏瑋 邱
Cloud, sdn and nfv 기술동향 atto-research-박문기-20171016
문기 박
Ch 02 --- sdn and openflow architecture
Yoram Orzach
Software Defined Network - SDN
Venkata Naga Ravi
Software defined network
Sindhu Bharadwaj
Software defined network and Virtualization
idrajeev
Docker Networking (Libnetwork) - Lakshman Kumar
Neependra Khare
Ryu sdn framework
Isaku Yamahata
Distributed routing
Murali Reddy
OpenFlow Extensions
US-Ignite
SDN Fundamentals - short presentation
Azhar Khuwaja
SDN & NFV Introduction - Open Source Data Center Networking
Thomas Graf
Docker Online Meetup #22: Docker Networking
Docker, Inc.

More from 宏瑋 邱

以 eBPF 構建一個更為堅韌的 Kubernetes 叢集
宏瑋 邱
Jenkins & IaC
宏瑋 邱
The relationship between Docker, Kubernetes and CRI
宏瑋 邱
Life
宏瑋 邱
Introduction to CRI and OCI
宏瑋 邱
IP Virtual Server(IPVS) 101
宏瑋 邱
Opentracing 101
宏瑋 邱
Introduction to CircleCI
宏瑋 邱
Head First to Container&Kubernetes
宏瑋 邱
Kubernetes 1001
宏瑋 邱
Build Your Own CaaS (Container as a Service)
宏瑋 邱
Automatically Renew Certificated In Your Kubernetes Cluster
宏瑋 邱
Overview of kubernetes network functions
宏瑋 邱
Understand the iptables step by step
宏瑋 邱
The basic concept of Linux FIleSystem
宏瑋 邱
Integration kubernetes with docker private registry
宏瑋 邱
Introduction to CNI (Container Network Interface)
宏瑋 邱
Writing the Container Network Interface(CNI) plugin in golang
宏瑋 邱
Opening of Cloud Native Taiwan User Group Meetup#2
宏瑋 邱
Coscup SDN workshop - mininet
宏瑋 邱

Featured

What to Upload to SlideShare
SlideShare
Be A Great Product Leader (Amplify, Oct 2019)
Adam Nash
Trillion Dollar Coach Book (Bill Campbell)
Eric Schmidt
APIdays Paris 2019 - Innovation @ scale, APIs as Digital Factories' New Machi...
apidays
A few thoughts on work life-balance
Wim Vanderbauwhede
Is vc still a thing final
Mark Suster
The GaryVee Content Model
Gary Vaynerchuk
Mammalian Brain Chemistry Explains Everything
Loretta Breuning, PhD
Blockchain + AI + Crypto Economics Are We Creating a Code Tsunami?
Dinis Guarda
The AI Rush
Jean-Baptiste Dumont
AI and Machine Learning Demystified by Carol Smith at Midwest UX 2017
Carol Smith
10 facts about jobs in the future
Pew Research Center's Internet & American Life Project
Harry Surden - Artificial Intelligence and Law Overview
Harry Surden
Inside Google's Numbers in 2017
Rand Fishkin
Pinot: Realtime Distributed OLAP datastore
Kishore Gopalakrishna
How to Become a Thought Leader in Your Niche
Leslie Samuel
Visual Design with Data
Seth Familian
Designing Teams for Emerging Challenges
Aaron Irizarry
UX, ethnography and possibilities: for Libraries, Museums and Archives
Ned Potter
Study: The Future of VR, AR and Self-Driving Cars
LinkedIn

Related Books

Free with a 30 day trial from Scribd

See all
Emergence: The Connected Lives of Ants, Brains, Cities, and Software Steven Johnson
Free
Tubes: A Journey to the Center of the Internet Andrew Blum
Free
The Impulse Economy: Understanding Mobile Shoppers and What Makes Them Buy Gary Schwartz
Free
An Army of Davids: How Markets and Technology Empower Ordinary People to Beat Big Media, Big Government, and Other Goliaths Glenn Reynolds
Free
World Wide Mind: The Coming Integration of Humanity, Machines, and the Internet Michael Chorost
Free
In the Plex: How Google Thinks, Works, and Shapes Our Lives Steven Levy
Free
Hamlet's BlackBerry: A Practical Philosophy for Building a Good Life in the Digital Age William Powers
Free
Talking Back to Facebook: The Common Sense Guide to Raising Kids in the Digital Age James P. Steyer
Free
The Thank You Economy Gary Vaynerchuk
Free
Socialnomics: How Social Media Transforms the Way We Live and Do Business Erik Qualman
Free
The Nature of the Future: Dispatches from the Socialstructed World Marina Gorbis
Free
Public Parts: How Sharing in the Digital Age Improves the Way We Work and Live Jeff Jarvis
Free
Blog Schmog: The Truth About What Blogs Can (and Can't) Do for Your Business Robert W. Bly
Free
The End of Business As Usual: Rewire the Way You Work to Succeed in the Consumer Revolution Brian Solis
Free
How to Be Invisible: Protect Your Home, Your Children, Your Assets, and Your Life J. J. Luna
Free
101 Awesome Builds: Minecraft®™ Secrets from the World's Greatest Crafters Triumph Books
Free

Related Audiobooks

Free with a 30 day trial from Scribd

See all
Cognitive Surplus: Creativity and Generosity in a Connected Age Clay Shirky
Free
Ten Arguments for Deleting Your Social Media Accounts Right Now Jaron Lanier
Free
Everybody Lies: Big Data, New Data, and What the Internet Can Tell Us About Who We Really Are Seth Stephens-Davidowitz
Free
The New New Thing: A Silicon Valley Story Michael Lewis
Free
The Social Life of Information: Updated, with a New Preface-Revised John Seely Brown
Free
An Introduction to Information Theory: Symbols, Signals and Noise John R. Pierce
Free
Who Owns the Future? Jaron Lanier
Free
The Dark Net: Inside the Digital Underworld Jamie Bartlett
Free
The Death of Expertise: The Campaign Against Established Knowledge and Why it Matters Tom Nichols
Free
Alone Together: Why We Expect More from Technology and Less from Each Other Sherry Turkle
Free
Algorithms to Live By: The Computer Science of Human Decisions Brian Christian
Free
Failure Is Not an Option: Mission Control from Mercury to Apollo 13 and Beyond Gene Kranz
Free
New Dark Age: Technology and the End of the Future James Bridle
Free
Blockchain Revolution: How the Technology Behind Bitcoin Is Changing Money, Business, and the World Don Tapscott
Free
The Emperor's New Mind: Concerning Computers, Minds, and the Laws of Physics Roger Penrose
Free
Data and Goliath: The Hidden Battles to Capture Your Data and Control Your World Bruce Schneier
Free

Open vSwitch Introduction

  1. 1. Open vSwitch Introduction HungWei Chiu
  2. 2. Who Am I • HungWei Chiu (hwchiu) • Open Networking Foundation • Member of Technical Staff • https://hwchiu.com • Kubernetes/Container • Networking/Linux/Kernel • Co-Organizer of SDNDS-TW/ CNTUG
  3. 3. Agenda • What/How • TCP/IP Model • Linux Bridge • What/How • Open vSwitch • Open vSwitch in Kubernetes
  4. 4. We all learned
  5. 5. Data Link Switch v.s Router TCP/IP Model Network Transport Application Physical Data Link Physical Data Link Network Physical Data Link Network Transport Application Physical Client Server Switch Router
  6. 6. Router v.s Switch • Both • Store and forward packets • Network layer • Data Link layer • Router: • Routing table • Routing algorithms • Switch • Switch table • Learning algorithms
  7. 7. Docker eth0 Linux Bridge br0 Container 172.17.8.1 172.17.8.56 10.1.2.3 Linux Host Container 172.17.8.57
  8. 8. Can You Explain
  9. 9. Data Link Switch v.s Router TCP/IP Model Network Transport Application Physical Data Link Physical Data Link Network Physical Data Link Network Transport Application Physical Client Server Switch Router eth0 Linux Bridge br0 Container 172.17.8.1 172.17.8.56 10.1.2.3 Linux Host Container 172.17.8.57 Container to WAN
  10. 10. Linux Host Switch v.s Router TCP/IP Model Data Link Network Transport Application Physical Data Link Physical Data Link Network Physical Data Link Network Transport Application Physical Client Server Switch Router Container WAN Linux Bridge Linux Bridge Instances veth function call function call
  11. 11. Docker eth0 Linux Bridge br0 Container 172.17.8.1 172.17.8.56 10.1.2.3 Linux Host Container 172.17.8.57 net_dev Kernel object Packet Linux Bridge br0 • Received Packets • ebtables • iptables • Forward to net_dev (172.17.9.1) Packet: 172.17.8.56 -> 172.17.8.1
  12. 12. Docker eth0 Linux Bridge br0 Container 172.17.8.1 172.17.8.56 10.1.2.3 Linux Host Container 172.17.8.57 net_dev Kernel object Linux Kernel • Received Packet • Iptables • Routing tables • ARP tables • Forward to eth0 (10.1.2.3) Packet: 172.17.8.56 -> 172.17.8.1 Packet
  13. 13. Tables • Arp Table (Learning MAC/IP) • Linux Bridge • Forwarding Table (Forward by MAC) • Netfilter • Iptables (Layer 3, NAT…etc) • Ebtables (Layer 2 filter…etc) • Linux Kernel • Routing table (Routing by IP (Destination/Source))
  14. 14. Control • Arp • arp • Forwarding • brctl show/brctl showman’s • Routing • route • ip route • netfilter • iptables/ebtables • iptables-save/iptables-restore …etc
  15. 15. Multiple Nodes Host Agent • No Standard Protocol Host Agent Host Agent Host Agent Host Controller Agent • Execute commands • API Call (netlink)
  16. 16. Open vSwitch
  17. 17. Introduction https://www.openvswitch.org/
  18. 18. Openflow • Maintained by Open Networking Foundation (ONF) • The first standard communication interface defined between control and forwarding layers of an SDN architecture. https://en.wikipedia.org/wiki/OpenFlow
  19. 19. Openflow controller Openflow Enabled Switch Security Channel Flow Table Openflow Enabled Switch Security Channel Flow Table Openflow protocol Architecture
  20. 20. Format Rule Action Stats • Forward packet to ports • Encapsulate and forward to controller • Modify fields • Normal Pipeline • Extension Packet/Bytes counter Switch Port Layer 2 Header Layer 3 Header Layer 4 Header
  21. 21. Example Switch Port dst_mac Layer 3 Layer 4src_mac Action port 3*** * 00:11:32:…. Switching Switch Port src_ip Layer 4Layer 2 Action port 4*** * Routing dst_ip 140.113.2.4 Switch Port src_ip Layer 4Layer 2 Action drop*1.2.0.0/16* * Firewall dst_ip 140.113.2.4
  22. 22. Compare • Linux • Arp Table (Learning MAC/IP) • Linux Bridge • Forwarding Table (Forward by MAC) • Netfilter • Iptables (Layer 3, NAT…etc) • Ebtables (Layer 2 filter…etc) • Linux Kernel • Routing table (Routing by IP (Destination/Source)) • Openflow • Rules • Switch Port • Layer 2/3/4 Header • Action • Forward/Drop • Normal Pipeline • Modify fields • …etc • Stats • Counter
  23. 23. Docker example again
  24. 24. Docker eth0 Open vSwith Ovsbr0 Container 172.17.8.1 172.17.8.56 Linux Host Container 172.17.8.57
  25. 25. Flows Switch Port Layer 2 Layer 3 Layer 4eth_type Action …*…* Arp ARP Switch Port Layer 3 Header Layer 4 HeaderLayer2 Action • Change src/dst Mac • Forward to port…..…..* * Routing Switch Port Layer 3 Header Layer 4 Action * * NAT * Layer2 ….. ….. • Change src/dst IP • Forward to port
  26. 26. Open vSwtich • Need to prepare all flow rules • Without Linux Kernel (mostly) • Openflow controller • Program your logic • CLI • Difficult to maintain all logics.
  27. 27. Other functions • Linux • Tunneling • GRE/VXLAN/GRE/ STT/NVGRE • iptables extension • nfqueue ..etc • 802.1q VLAN • Linux • Link Aggregation with/ without LACP • QoS • Traffic Shaping • Socket Applications • VPN, other networking functions.
  28. 28. Multiple Nodes Host OVS Host OVS Host OVS Host OVS Host Openflow Controller
  29. 29. Kubernetes & OVS
  30. 30. Kubernetes & Networking • Pod communication • Pod to Pod • Pod to Wan • Service • ClusterIP • NodePort • NetworkPolicy CNI Flannel • Linux Bridge • ARP Table • Routing Table • Iptables Iptables Implemented by CNI.
  31. 31. Challenge • CNI • Pod to Pod • Same Node • Different Node • Overlay ? • Pod to Wan • NAT
  32. 32. Challenge • Kube-proxy (service) • Monitor service object • Create/Update/Remove rules • Translate policy to OpenFlow rules and apply to all switches. • NetworkPolicy • Monitor network policy object • Create/Update/Remove rules • Translate policy to OpenFlow rules and apply to all switches.
  33. 33. Challenge • Additional controller • Open vSwitch controller • Openflow • OVSDB • …etc • Kubernetes controller
  34. 34. Projects • K-vswitch • SONA-CNI • Ovn-kubernetes • ..etc
  35. 35. https://github.com/k-vswitch/k-vswitch k-vswitch
  36. 36. sona-cni https://wiki.onosproject.org/display/ONOS/SONA-CNI+Installation
  37. 37. Why OVS?
  38. 38. Why • Networking performance? • Open vSwitch + DPDK (Kernel Bypass) • Hardware offloading • Service chain? • Rewrite packets header • Redirect packets within different Pods • Networking Traffic Monitor? • Latency • Counters
  39. 39. K8S Node Pod Pod Pod eth0 Openflow Switch Openflow Switch Openflow Switch Data network K8S Node Pod Pod Pod eth0 K8S Node Pod Pod Pod eth0 Openflow Controller Reference Architecture
  40. 40. Do I Need It?
  41. 41. One • Learn how system works • Computing/Storage/Networking • Linux • Increase your value • Don’t rely on Framework or Tools • Helm/Operator …etc • Never be the Yaml Engineer
  42. 42. Q&A

×