Introduction to Openstack Network


Published on

A quick introduction to Openstack Network Features, an overview of the Open vSwitch plugin with logical-2-physical mappins

3rd meetup Openstack User Group Italy

Published in: Technology
  • Be the first to comment

No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide

Introduction to Openstack Network

  1. 1. A 5 minutes intro to Openstack(and a few more minutes on Openstack Networking)Salvatore Orlando3rd OSUG Italy MeetupRome, May 9th 2013
  2. 2. EcosystemReleated/Unofficial ProjectsIncubating ProjectsOpenstack is the codeFor more info:
  3. 3. Openstack is even more code!ClientlibrariesDocumentation(api, admin, …)InfrastructureGating(tempest,devstack, …)
  4. 4. Openstack is the community• May 8th 2013: 9,342 people from 87 countries• Interact via:– Mailing lists: general, development, documentation,operators …– Ask Openstack (– Launchpad• Home to all openstack integrated projects– IRC (#openstack-101, #openstack, #openstack-dev, …)– Local User Groups (like today!)– Summit & Conference (twice a year)
  5. 5. See Openstack evolving,everyday•– Release status– Active Reviews•– Grab the code
  6. 6. (Virtual) Networking in Openstack• Nova-network– L2/L3 networking with IP address management– Security Groups– Floating Ips and external gateway (SNAT)– Network redundancy with ‘multi-host’– 3 Network Managers:• Flat, FlatDHCP: L3 isolation via security groups• VLAN Manager: L2 isolation• The project formerly known as Quantum*– L2 networking with choice of segmentation/virtualization techniques– Shared L2 networks– “Provider mappings” for L2 networks– IPAM with overlapping IPs and built-in, scalable DHCP– Security Groups– L3 east-west traffic (inter-subnet routing)– Static route configuration– Floating Ips and external gateway (SNAT)– Load Balancing– Nova metadata integration– Wide choice of pluggable backends
  7. 7. Openstack Network quick introQuantum is an Openstack project to provide“networking as a service” between interfacedevices (e.g., vNICs) managed by otherOpenstack services (e.g., nova)• Manages network virtualization– just like compute (nova) manages server virtualisation• Advocates multi-tenancy• Technology-agnostic
  8. 8. Openstack Network:basic architecture• Simple technology agnostic API• Plugin translates API requestinto concrete, technologyspecific implementation• API guarantees isolation ofresources from management perspective• Plugin ensures isolation at data planeAPI ServerPluginAuthenticationAPI Requests
  9. 9. Plugin classification• Built-in– Solution (management, control, and data plane)entirely contained in the Quantum source tree• 3rd party– Plugin proxies request to an external “controller”– Can use one or more built-in components (e.g.:DHCP Agent, L3 agent)– 3rd party plugins can either be Open Source orCommercial
  10. 10. Quick plugin referenceBuilt-in Hyper-VLinux BridgeOpen vSwitch3rd party - Opensource Big SwitchNECRyu3rd Party - Commercial Big Switch (?)BrocadeCiscoMidonetNicira NVPPlumgrid
  11. 11. Openstack Network ArchitectureOpen vSwitch pluginQuantum ServerOVS PluginDHCP AgentL3 AgentMetadata AgentL2 AgentL2 Agent L2 Agent L2 AgentAMPQLoad Balancing AgentAPI NodeNetwork Services NodeCompute Node Compute Node Compute Node
  12. 12. Logical ViewNet-A1 Net-A2 Net-B1Rtr-A Rtr-BExternal NetworkTenant “A” Tenant “B”DHCP DHCP DHCPA11A12A21B11B12InternalGatewayInternalGatewayInternalGatewayExternalGatewayExternalGateway
  13. 13. Physical realizationOVS Plugin – GRE OverlaysCompute Node C2 Compute Node C3Network NodeCompute Node C1Br-tunBr-intBr-tunBr-intBr-tunBr-intBr-tunBr-intA12B11B12A21A11Local VLAN tagsconverted into GRE keys(and vice versa)DHCPL3Br-ex
  14. 14. Network node - DetailsBr-tunBr-intDHCPL3Br-exNS-Net-A1NS-Net-A2NS-Net-B1Dnsmasq10.0.0.0/24Dnsmasq10.0.0.0/24Dnsmasq10.0.1.0/24NS-Rtr-BNS-Rtr-AIptablesSNAT/DNATIptablesSNAT/DNATL3FwdL3Fwd