SlideShare a Scribd company logo

Deep inside the Cloud Managements Platforms: the OpenStack case study

Francesco Foresta
Francesco Foresta

Seminar given at VEM Sistemi, Forlì in July 2015. Based on the understanding of cloud computing and, in particular, of the platform OpenStack.

Engineering
1 of 45
Download to read offline
Deep inside the Cloud Management Platforms: the OpenStack case study Franco Callegati, Walter Cerroni, Chiara Contoli, Francesco Foresta, Arnau Salas Figuerola, Eduard Reina Fuente Alma Mater Studiorum - University of Bologna Department of Electrical, Electronic and Information Engineering G. Marconi Mail: francesco.foresta@unibo.it Jul 17, 2015 Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 1 / 19
Overview 1 Introduction Cloud computing and its management 2 The OpenStack case Introduction Components and structure Deep inside Network parts Virtual Network Infrastructure Security tricks 3 Dynamic Service Chaining in OpenStack L2 topology & VNI Proof-of-Concept 4 Conclusions Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 2 / 19
Introduction Cloud computing and its management What are Cloud Managing Platforms? The cloud computing paradigm points out that network resources, storage and computing are offered from a provider to a client as a service As it already is for water, gas, electricity, telephone. . . Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 3 / 19
Introduction Cloud computing and its management What are Cloud Managing Platforms? The cloud computing paradigm points out that network resources, storage and computing are offered from a provider to a client as a service As it already is for water, gas, electricity, telephone. . . A cloud platform is a cluster of physical machines which contains some servers that will be offered as a service to a client, in according to the IaaS (Infrastructure-as-a-Service) paradigm It has to be managed ⇒ Cloud management platform Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 3 / 19
Introduction Cloud computing and its management What are Cloud Managing Platforms? The cloud computing paradigm points out that network resources, storage and computing are offered from a provider to a client as a service As it already is for water, gas, electricity, telephone. . . A cloud platform is a cluster of physical machines which contains some servers that will be offered as a service to a client, in according to the IaaS (Infrastructure-as-a-Service) paradigm It has to be managed ⇒ Cloud management platform This is an integrated product that provide for the management of public, private and hybrid cloud environments Many platforms have been developed during these years, e.g. Amazon Web Services, Google Cloud Platform, HP Cloud, Microsoft Azure, Nebula, Rackspace Cloud, OpenStack. . . Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 3 / 19
The OpenStack case Introduction OpenStack It’s an Open Source joint project of Rackspace Cloud and NASA, assisted by more than 200 companies from the IT industry Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 4 / 19
The OpenStack case Introduction OpenStack It’s an Open Source joint project of Rackspace Cloud and NASA, assisted by more than 200 companies from the IT industry Once installed on a distributed system, users can create a virtual network infrastructure (VNI) composed of instances (e.g. implemented as virtual machines) and networks appliances (routers, firewalls, etc) in a simple and efficient way, taking advantages of multi-tenancy Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 4 / 19
The OpenStack case Components and structure OpenStack Components OpenStack is composed of various components: each of them works in a specific area Nova = computing, Neutron = networking, Keystone = credentials, Glance = image storaging, Horizon = Web dashboard. . . Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 5 / 19
The OpenStack case Components and structure OpenStack Components OpenStack is composed of various components: each of them works in a specific area Nova = computing, Neutron = networking, Keystone = credentials, Glance = image storaging, Horizon = Web dashboard. . . Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 5 / 19
The OpenStack case Components and structure Web Dashboard Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 6 / 19
The OpenStack case Components and structure OpenStack minimal cluster Every Neutron based OpenStack cluster is composed of at least three physical servers: A compute node, where the Virtual Machines are stored A network node, which provides connectivity for them A controller node, which manages all user requests Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 7 / 19
The OpenStack case Components and structure OpenStack minimal cluster Every Neutron based OpenStack cluster is composed of at least three physical servers: A compute node, where the Virtual Machines are stored A network node, which provides connectivity for them A controller node, which manages all user requests They contain the OpenStack components and communicate between them with REST API calls It means HTTP is used to make calls between machines in a very simple way Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 7 / 19
The OpenStack case Components and structure OpenStack minimal cluster Every Neutron based OpenStack cluster is composed of at least three physical servers: A compute node, where the Virtual Machines are stored A network node, which provides connectivity for them A controller node, which manages all user requests They contain the OpenStack components and communicate between them with REST API calls It means HTTP is used to make calls between machines in a very simple way These machines are connected by three networks Management net, used by the admin to access the cluster nodes and for interservice communications External net, which provides the Internet access to the VMs Data net, used for inter-VM communications Packets on this net will be VLAN tagged or encapsulated (GRE) Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 7 / 19
The OpenStack case Components and structure Cluster, in detail Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 8 / 19
The OpenStack case Deep inside Virtualization In the OpenStack environment acts a virtualization software which co-operate with Nova: Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 9 / 19
The OpenStack case Deep inside Virtualization In the OpenStack environment acts a virtualization software which co-operate with Nova: this hypervisor is used to create the virtual environment which emulates the physical machine’s behaviour ⇒ many virtual hosts are running inside a physical host, at the same time! Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 9 / 19
The OpenStack case Deep inside Virtualization In the OpenStack environment acts a virtualization software which co-operate with Nova: this hypervisor is used to create the virtual environment which emulates the physical machine’s behaviour ⇒ many virtual hosts are running inside a physical host, at the same time! it uses Libvirt, a generic API that supports various virtualization backends (VirtualBox, VMWare, XEN, QEMU+KVM) and allows the managing and migration of the VMs ⇒ NFV Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 9 / 19
The OpenStack case Deep inside Neutron abstractions Neutron defines some network abstractions: Network: an isolated L2 network segment Subnet: an IP address block on a certain network Router: a gateway between subnets Port: an attachment point to a network Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 10 / 19
The OpenStack case Deep inside Neutron abstractions Neutron defines some network abstractions: Network: an isolated L2 network segment Subnet: an IP address block on a certain network Router: a gateway between subnets Port: an attachment point to a network Neutron implements these abstractions inside the Virtual Network Infrastructure in the nodes (host level) ⇒ in this way VMs (at the guest level) can see the virtual networks Users only see these abstractions! Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 10 / 19
The OpenStack case Deep inside Neutron abstractions Neutron defines some network abstractions: Network: an isolated L2 network segment Subnet: an IP address block on a certain network Router: a gateway between subnets Port: an attachment point to a network Neutron implements these abstractions inside the Virtual Network Infrastructure in the nodes (host level) ⇒ in this way VMs (at the guest level) can see the virtual networks Users only see these abstractions! In order to implement more than one Virtual Router in the Network node, OpenStack uses network namespaces They replicate the network software stack ⇒ isolation between multiple network domains in the same host! Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 10 / 19
The OpenStack case Virtual Network Infrastructure Bridges In the compute and network node there are many OpenVSwitches: an integration bridge which acts as a hub of a star network, br-int ⇒ it is possible to implement SDN traffic steering on it! Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 11 / 19
The OpenStack case Virtual Network Infrastructure Bridges In the compute and network node there are many OpenVSwitches: an integration bridge which acts as a hub of a star network, br-int ⇒ it is possible to implement SDN traffic steering on it! a bridge for each physical network, br-data/br-tun if connected to the Data net or br-ex if connected to the External net Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 11 / 19
The OpenStack case Virtual Network Infrastructure Bridges In the compute and network node there are many OpenVSwitches: an integration bridge which acts as a hub of a star network, br-int ⇒ it is possible to implement SDN traffic steering on it! a bridge for each physical network, br-data/br-tun if connected to the Data net or br-ex if connected to the External net a Linux Bridge for each interface of VMs, qbr-X Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 11 / 19
The OpenStack case Virtual Network Infrastructure Multi-tenancy and security groups In the compute node there are also veth pairs and/or patch ports that connect the different bridges Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 12 / 19
The OpenStack case Virtual Network Infrastructure Multi-tenancy and security groups In the compute node there are also veth pairs and/or patch ports that connect the different bridges One of the main issue in OpenStack, as every other cloud management platform, is to divide different users’ traffic For every network there is a VLAN internal ID ⇒ the veth pair port attached to the integration bridge is access for a specific VLAN ID (the internal one related to the VM network) Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 12 / 19
The OpenStack case Virtual Network Infrastructure Multi-tenancy and security groups In the compute node there are also veth pairs and/or patch ports that connect the different bridges One of the main issue in OpenStack, as every other cloud management platform, is to divide different users’ traffic For every network there is a VLAN internal ID ⇒ the veth pair port attached to the integration bridge is access for a specific VLAN ID (the internal one related to the VM network) As many GRE tunnels ID or as many VLAN external ID as tenants, depending on the type of data network configured Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 12 / 19
The OpenStack case Virtual Network Infrastructure Multi-tenancy and security groups In the compute node there are also veth pairs and/or patch ports that connect the different bridges One of the main issue in OpenStack, as every other cloud management platform, is to divide different users’ traffic For every network there is a VLAN internal ID ⇒ the veth pair port attached to the integration bridge is access for a specific VLAN ID (the internal one related to the VM network) As many GRE tunnels ID or as many VLAN external ID as tenants, depending on the type of data network configured It is also important to implement a set of firewall rules for every VM ⇒ Security Groups They are implemented by Neutron applying the native kernel filtering functions to bridged VM tap interface on Linux Bridge Simply, they are a number of iptables rules on the compute node Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 12 / 19
The OpenStack case Virtual Network Infrastructure Inside the nodes Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 13 / 19
Dynamic Service Chaining in OpenStack L2 topology & VNI Dynamic Service Chaining: implementation details The topology is similar to the L2 one in the Mininet case, but there are some noteworthy differences All virtual network appliances as well as users are implemented as VMs, configured for the case study Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 14 / 19
Dynamic Service Chaining in OpenStack L2 topology & VNI Dynamic Service Chaining: implementation details The topology is similar to the L2 one in the Mininet case, but there are some noteworthy differences All virtual network appliances as well as users are implemented as VMs, configured for the case study The implementation of a real WAN Accelerator, Trafficsqueezer, has been done both at the source and destination through the installation of a specific kernel and the configuration via browser Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 14 / 19
Dynamic Service Chaining in OpenStack L2 topology & VNI Dynamic Service Chaining: implementation details The topology is similar to the L2 one in the Mininet case, but there are some noteworthy differences All virtual network appliances as well as users are implemented as VMs, configured for the case study The implementation of a real WAN Accelerator, Trafficsqueezer, has been done both at the source and destination through the installation of a specific kernel and the configuration via browser The destination host is located, as the other destination network appliances, in a remote server out of the OpenStack cluster ⇒ more realistic measurements Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 14 / 19
Dynamic Service Chaining in OpenStack L2 topology & VNI Dynamic Service Chaining: implementation details The topology is similar to the L2 one in the Mininet case, but there are some noteworthy differences All virtual network appliances as well as users are implemented as VMs, configured for the case study The implementation of a real WAN Accelerator, Trafficsqueezer, has been done both at the source and destination through the installation of a specific kernel and the configuration via browser The destination host is located, as the other destination network appliances, in a remote server out of the OpenStack cluster ⇒ more realistic measurements The Traffic Shaper has been implemented with the Linux Traffic Control command suite, setting the bandwidth to 10 MBit/s Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 14 / 19
Dynamic Service Chaining in OpenStack L2 topology & VNI Dynamic Service Chaining: implementation details The topology is similar to the L2 one in the Mininet case, but there are some noteworthy differences All virtual network appliances as well as users are implemented as VMs, configured for the case study The implementation of a real WAN Accelerator, Trafficsqueezer, has been done both at the source and destination through the installation of a specific kernel and the configuration via browser The destination host is located, as the other destination network appliances, in a remote server out of the OpenStack cluster ⇒ more realistic measurements The Traffic Shaper has been implemented with the Linux Traffic Control command suite, setting the bandwidth to 10 MBit/s Every VM had an additional interface for all the traffic not related to the test-bed (e.g. Internet traffic) Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 14 / 19
Dynamic Service Chaining in OpenStack L2 topology & VNI Case study: L2 topology & VNI Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 15 / 19
Dynamic Service Chaining in OpenStack Proof-of-Concept Results At the source 1 10 100 1000 0 50 100 150 200 250 300 350 400 450 Throughput(Mbit/s) Time (s) DPI-in (p3) WANA1-in (p4) WANA1-out (p5) TC-in (p6) TC-out (p7) Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 16 / 19
Dynamic Service Chaining in OpenStack Proof-of-Concept Results At the source 1 10 100 1000 0 50 100 150 200 250 300 350 400 450 Throughput(Mbit/s) Time (s) DPI-in (p3) WANA1-in (p4) WANA1-out (p5) TC-in (p6) TC-out (p7) At the destination Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 16 / 19
Conclusions What’s next? Dynamic Service Chaining in a L3-like topology Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 17 / 19
Conclusions What’s next? Dynamic Service Chaining in a L3-like topology Use of new OpenFlow controllers (OpenDayLight, Ryu) carrying new OpenFlow versions Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 17 / 19
Conclusions What’s next? Dynamic Service Chaining in a L3-like topology Use of new OpenFlow controllers (OpenDayLight, Ryu) carrying new OpenFlow versions More context awareness ⇒ we will use an orchestrator to install more dinamically flows in the OVSs Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 17 / 19
Conclusions What’s next? Dynamic Service Chaining in a L3-like topology Use of new OpenFlow controllers (OpenDayLight, Ryu) carrying new OpenFlow versions More context awareness ⇒ we will use an orchestrator to install more dinamically flows in the OVSs Generalization of the case study, making the whole thing more automatic Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 17 / 19
Conclusions What’s next? Dynamic Service Chaining in a L3-like topology Use of new OpenFlow controllers (OpenDayLight, Ryu) carrying new OpenFlow versions More context awareness ⇒ we will use an orchestrator to install more dinamically flows in the OVSs Generalization of the case study, making the whole thing more automatic Experiments with VMs live migration Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 17 / 19
Conclusions What’s next? Dynamic Service Chaining in a L3-like topology Use of new OpenFlow controllers (OpenDayLight, Ryu) carrying new OpenFlow versions More context awareness ⇒ we will use an orchestrator to install more dinamically flows in the OVSs Generalization of the case study, making the whole thing more automatic Experiments with VMs live migration Cloud perfomances tests Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 17 / 19
Conclusions What’s next? Dynamic Service Chaining in a L3-like topology Use of new OpenFlow controllers (OpenDayLight, Ryu) carrying new OpenFlow versions More context awareness ⇒ we will use an orchestrator to install more dinamically flows in the OVSs Generalization of the case study, making the whole thing more automatic Experiments with VMs live migration Cloud perfomances tests Application of Virtual Tenant Network: a way to create virtual networks in a complete automated way, using REST API calls Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 17 / 19
Conclusions Questions? Do you have any questions? Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 18 / 19
Conclusions And that is all! Thanks for your attention! Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 19 / 19

Recommended

Harvesting dispersed computational resources with Openstack
Harvesting dispersed computational resources with OpenstackHarvesting dispersed computational resources with Openstack
Harvesting dispersed computational resources with OpenstackMirko Mariotti
 
Computer_Clustering_Technologies
Computer_Clustering_TechnologiesComputer_Clustering_Technologies
Computer_Clustering_TechnologiesManish Chopra
 
Digital Transformations 2012 - Cloud Computing
Digital Transformations 2012 - Cloud ComputingDigital Transformations 2012 - Cloud Computing
Digital Transformations 2012 - Cloud ComputingTodd Berrett
 
Openstack Pakistan intro
Openstack Pakistan introOpenstack Pakistan intro
Openstack Pakistan introAffan Syed
 
Towards a Lightweight Multi-Cloud DSL for Elastic and Transferable Cloud-nati...
Towards a Lightweight Multi-Cloud DSL for Elastic and Transferable Cloud-nati...Towards a Lightweight Multi-Cloud DSL for Elastic and Transferable Cloud-nati...
Towards a Lightweight Multi-Cloud DSL for Elastic and Transferable Cloud-nati...Nane Kratzke
 
Nova network, the dirty details 041613
Nova network, the dirty details 041613Nova network, the dirty details 041613
Nova network, the dirty details 041613OpenStack Foundation
 
Exploring Openstack Swift(Object Storage) and Swiftstack
Exploring Openstack Swift(Object Storage) and Swiftstack Exploring Openstack Swift(Object Storage) and Swiftstack
Exploring Openstack Swift(Object Storage) and Swiftstack Ramit Surana
 
Open Stack compute-service-nova
Open Stack compute-service-novaOpen Stack compute-service-nova
Open Stack compute-service-novaGHANSHYAM MANN
 

Recommended

Harvesting dispersed computational resources with Openstack
Harvesting dispersed computational resources with OpenstackHarvesting dispersed computational resources with Openstack
Harvesting dispersed computational resources with OpenstackMirko Mariotti
 
Computer_Clustering_Technologies
Computer_Clustering_TechnologiesComputer_Clustering_Technologies
Computer_Clustering_TechnologiesManish Chopra
 
Digital Transformations 2012 - Cloud Computing
Digital Transformations 2012 - Cloud ComputingDigital Transformations 2012 - Cloud Computing
Digital Transformations 2012 - Cloud ComputingTodd Berrett
 
Openstack Pakistan intro
Openstack Pakistan introOpenstack Pakistan intro
Openstack Pakistan introAffan Syed
 
Towards a Lightweight Multi-Cloud DSL for Elastic and Transferable Cloud-nati...
Towards a Lightweight Multi-Cloud DSL for Elastic and Transferable Cloud-nati...Towards a Lightweight Multi-Cloud DSL for Elastic and Transferable Cloud-nati...
Towards a Lightweight Multi-Cloud DSL for Elastic and Transferable Cloud-nati...Nane Kratzke
 
Nova network, the dirty details 041613
Nova network, the dirty details 041613Nova network, the dirty details 041613
Nova network, the dirty details 041613OpenStack Foundation
 
Exploring Openstack Swift(Object Storage) and Swiftstack
Exploring Openstack Swift(Object Storage) and Swiftstack Exploring Openstack Swift(Object Storage) and Swiftstack
Exploring Openstack Swift(Object Storage) and Swiftstack Ramit Surana
 
Open Stack compute-service-nova
Open Stack compute-service-novaOpen Stack compute-service-nova
Open Stack compute-service-novaGHANSHYAM MANN
 
OpenStack Cinder
OpenStack CinderOpenStack Cinder
OpenStack CinderDeepti Ramakrishna
 
Introduction to Puppet Scripting
Introduction to Puppet ScriptingIntroduction to Puppet Scripting
Introduction to Puppet ScriptingAchieve Internet
 
Openstack Study Nova 1
Openstack Study Nova 1Openstack Study Nova 1
Openstack Study Nova 1Jinho Shin
 
Puppet fundamentals
Puppet fundamentalsPuppet fundamentals
Puppet fundamentalsMurali Boyapati
 
OpenStack 101 update
OpenStack 101 updateOpenStack 101 update
OpenStack 101 updateKamesh Pemmaraju
 
OpenStack Framework Introduction
OpenStack Framework IntroductionOpenStack Framework Introduction
OpenStack Framework IntroductionJason TC HOU (侯宗成)
 
OpenStack Explained: Learn OpenStack architecture and the secret of a success...
OpenStack Explained: Learn OpenStack architecture and the secret of a success...OpenStack Explained: Learn OpenStack architecture and the secret of a success...
OpenStack Explained: Learn OpenStack architecture and the secret of a success...Giuseppe Paterno'
 
Beyond the future: a practical approach of Telco changes
Beyond the future: a practical approach of Telco changesBeyond the future: a practical approach of Telco changes
Beyond the future: a practical approach of Telco changesFrancesco Foresta
 
Research Inventy : International Journal of Engineering and Science
Research Inventy : International Journal of Engineering and ScienceResearch Inventy : International Journal of Engineering and Science
Research Inventy : International Journal of Engineering and Scienceinventy
 
Infn os summit_2015_v1.0
Infn os summit_2015_v1.0Infn os summit_2015_v1.0
Infn os summit_2015_v1.0caifti
 
Openstack Global Meetup
Openstack Global Meetup Openstack Global Meetup
Openstack Global Meetup openstackindia
 
OpenStack 7th Birthday Deck
OpenStack 7th Birthday DeckOpenStack 7th Birthday Deck
OpenStack 7th Birthday DeckStacy Véronneau
 
SDN :: Software Defined Networking –2017 Executive Overview
SDN :: Software Defined Networking –2017 Executive OverviewSDN :: Software Defined Networking –2017 Executive Overview
SDN :: Software Defined Networking –2017 Executive OverviewChristian Esteve Rothenberg
 
Cloud open unveillithium-odlnewrelease-2-ns
Cloud open unveillithium-odlnewrelease-2-nsCloud open unveillithium-odlnewrelease-2-ns
Cloud open unveillithium-odlnewrelease-2-nsNEC Corporation
 
Netsoft19 Keynote: Fluid Network Planes
Netsoft19 Keynote: Fluid Network PlanesNetsoft19 Keynote: Fluid Network Planes
Netsoft19 Keynote: Fluid Network PlanesChristian Esteve Rothenberg
 
OpenStack - An Overview
OpenStack - An OverviewOpenStack - An Overview
OpenStack - An Overviewgraziol
 
NFV Open Source projects
NFV Open Source projectsNFV Open Source projects
NFV Open Source projectsMarie-Paule Odini
 
Case Study Layar
Case Study LayarCase Study Layar
Case Study LayarLaura Benitez
 
OpenStack-101-Modular-Deck-1.pptx
OpenStack-101-Modular-Deck-1.pptxOpenStack-101-Modular-Deck-1.pptx
OpenStack-101-Modular-Deck-1.pptxLarrySevilla3
 
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growthシスコシステムズ合同会社
 
CHIEF: Controller Farm for Clouds of Software-Defined Community Networks
CHIEF: Controller Farm for Clouds of Software-Defined Community NetworksCHIEF: Controller Farm for Clouds of Software-Defined Community Networks
CHIEF: Controller Farm for Clouds of Software-Defined Community NetworksPradeeban Kathiravelu, Ph.D.
 
OpenStack Neutron Havana Overview - Oct 2013
OpenStack Neutron Havana Overview - Oct 2013OpenStack Neutron Havana Overview - Oct 2013
OpenStack Neutron Havana Overview - Oct 2013Edgar Magana
 

More Related Content

Viewers also liked

Introduction to Puppet Scripting
Introduction to Puppet ScriptingIntroduction to Puppet Scripting
Introduction to Puppet ScriptingAchieve Internet
 
Openstack Study Nova 1
Openstack Study Nova 1Openstack Study Nova 1
Openstack Study Nova 1Jinho Shin
 
OpenStack Explained: Learn OpenStack architecture and the secret of a success...
OpenStack Explained: Learn OpenStack architecture and the secret of a success...OpenStack Explained: Learn OpenStack architecture and the secret of a success...
OpenStack Explained: Learn OpenStack architecture and the secret of a success...Giuseppe Paterno'
 

Viewers also liked (7)

OpenStack Cinder
OpenStack CinderOpenStack Cinder
OpenStack Cinder
 
Introduction to Puppet Scripting
Introduction to Puppet ScriptingIntroduction to Puppet Scripting
Introduction to Puppet Scripting
 
Openstack Study Nova 1
Openstack Study Nova 1Openstack Study Nova 1
Openstack Study Nova 1
 
Puppet fundamentals
Puppet fundamentalsPuppet fundamentals
Puppet fundamentals
 
OpenStack 101 update
OpenStack 101 updateOpenStack 101 update
OpenStack 101 update
 
OpenStack Framework Introduction
OpenStack Framework IntroductionOpenStack Framework Introduction
OpenStack Framework Introduction
 
OpenStack Explained: Learn OpenStack architecture and the secret of a success...
OpenStack Explained: Learn OpenStack architecture and the secret of a success...OpenStack Explained: Learn OpenStack architecture and the secret of a success...
OpenStack Explained: Learn OpenStack architecture and the secret of a success...
 

Similar to Deep inside the Cloud Managements Platforms: the OpenStack case study

Beyond the future: a practical approach of Telco changes
Beyond the future: a practical approach of Telco changesBeyond the future: a practical approach of Telco changes
Beyond the future: a practical approach of Telco changesFrancesco Foresta
 
Research Inventy : International Journal of Engineering and Science
Research Inventy : International Journal of Engineering and ScienceResearch Inventy : International Journal of Engineering and Science
Research Inventy : International Journal of Engineering and Scienceinventy
 
Infn os summit_2015_v1.0
Infn os summit_2015_v1.0Infn os summit_2015_v1.0
Infn os summit_2015_v1.0caifti
 
Openstack Global Meetup
Openstack Global Meetup Openstack Global Meetup
Openstack Global Meetup openstackindia
 
OpenStack 7th Birthday Deck
OpenStack 7th Birthday DeckOpenStack 7th Birthday Deck
OpenStack 7th Birthday DeckStacy Véronneau
 
SDN :: Software Defined Networking –2017 Executive Overview
SDN :: Software Defined Networking –2017 Executive OverviewSDN :: Software Defined Networking –2017 Executive Overview
SDN :: Software Defined Networking –2017 Executive OverviewChristian Esteve Rothenberg
 
Cloud open unveillithium-odlnewrelease-2-ns
Cloud open unveillithium-odlnewrelease-2-nsCloud open unveillithium-odlnewrelease-2-ns
Cloud open unveillithium-odlnewrelease-2-nsNEC Corporation
 
OpenStack - An Overview
OpenStack - An OverviewOpenStack - An Overview
OpenStack - An Overviewgraziol
 
OpenStack-101-Modular-Deck-1.pptx
OpenStack-101-Modular-Deck-1.pptxOpenStack-101-Modular-Deck-1.pptx
OpenStack-101-Modular-Deck-1.pptxLarrySevilla3
 
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growthシスコシステムズ合同会社
 
CHIEF: Controller Farm for Clouds of Software-Defined Community Networks
CHIEF: Controller Farm for Clouds of Software-Defined Community NetworksCHIEF: Controller Farm for Clouds of Software-Defined Community Networks
CHIEF: Controller Farm for Clouds of Software-Defined Community NetworksPradeeban Kathiravelu, Ph.D.
 
OpenStack Neutron Havana Overview - Oct 2013
OpenStack Neutron Havana Overview - Oct 2013OpenStack Neutron Havana Overview - Oct 2013
OpenStack Neutron Havana Overview - Oct 2013Edgar Magana
 
Semantic Web Methodologies, Best Practices and Ontology Engineering Applied t...
Semantic Web Methodologies, Best Practices and Ontology Engineering Applied t...Semantic Web Methodologies, Best Practices and Ontology Engineering Applied t...
Semantic Web Methodologies, Best Practices and Ontology Engineering Applied t...Ghislain ATEMEZING
 
The Future of Networks is Open...Source
The Future of Networks is Open...SourceThe Future of Networks is Open...Source
The Future of Networks is Open...SourceFrancois Duthilleul
 
Openstack Pakistan Workshop (intro)
Openstack Pakistan Workshop (intro)Openstack Pakistan Workshop (intro)
Openstack Pakistan Workshop (intro)Affan Syed
 

Similar to Deep inside the Cloud Managements Platforms: the OpenStack case study (20)

Beyond the future: a practical approach of Telco changes
Beyond the future: a practical approach of Telco changesBeyond the future: a practical approach of Telco changes
Beyond the future: a practical approach of Telco changes
 
Research Inventy : International Journal of Engineering and Science
Research Inventy : International Journal of Engineering and ScienceResearch Inventy : International Journal of Engineering and Science
Research Inventy : International Journal of Engineering and Science
 
Infn os summit_2015_v1.0
Infn os summit_2015_v1.0Infn os summit_2015_v1.0
Infn os summit_2015_v1.0
 
Openstack Global Meetup
Openstack Global Meetup Openstack Global Meetup
Openstack Global Meetup
 
OpenStack 7th Birthday Deck
OpenStack 7th Birthday DeckOpenStack 7th Birthday Deck
OpenStack 7th Birthday Deck
 
SDN :: Software Defined Networking –2017 Executive Overview
SDN :: Software Defined Networking –2017 Executive OverviewSDN :: Software Defined Networking –2017 Executive Overview
SDN :: Software Defined Networking –2017 Executive Overview
 
Cloud open unveillithium-odlnewrelease-2-ns
Cloud open unveillithium-odlnewrelease-2-nsCloud open unveillithium-odlnewrelease-2-ns
Cloud open unveillithium-odlnewrelease-2-ns
 
Netsoft19 Keynote: Fluid Network Planes
Netsoft19 Keynote: Fluid Network PlanesNetsoft19 Keynote: Fluid Network Planes
Netsoft19 Keynote: Fluid Network Planes
 
OpenStack - An Overview
OpenStack - An OverviewOpenStack - An Overview
OpenStack - An Overview
 
NFV Open Source projects
NFV Open Source projectsNFV Open Source projects
NFV Open Source projects
 
Case Study Layar
Case Study LayarCase Study Layar
Case Study Layar
 
OpenStack-101-Modular-Deck-1.pptx
OpenStack-101-Modular-Deck-1.pptxOpenStack-101-Modular-Deck-1.pptx
OpenStack-101-Modular-Deck-1.pptx
 
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth
 
CHIEF: Controller Farm for Clouds of Software-Defined Community Networks
CHIEF: Controller Farm for Clouds of Software-Defined Community NetworksCHIEF: Controller Farm for Clouds of Software-Defined Community Networks
CHIEF: Controller Farm for Clouds of Software-Defined Community Networks
 
OpenStack Neutron Havana Overview - Oct 2013
OpenStack Neutron Havana Overview - Oct 2013OpenStack Neutron Havana Overview - Oct 2013
OpenStack Neutron Havana Overview - Oct 2013
 
Semantic Web Methodologies, Best Practices and Ontology Engineering Applied t...
Semantic Web Methodologies, Best Practices and Ontology Engineering Applied t...Semantic Web Methodologies, Best Practices and Ontology Engineering Applied t...
Semantic Web Methodologies, Best Practices and Ontology Engineering Applied t...
 
2016 open-source-network-softwarization
2016 open-source-network-softwarization2016 open-source-network-softwarization
2016 open-source-network-softwarization
 
2016 open-source-network-softwarization
2016 open-source-network-softwarization2016 open-source-network-softwarization
2016 open-source-network-softwarization
 
The Future of Networks is Open...Source
The Future of Networks is Open...SourceThe Future of Networks is Open...Source
The Future of Networks is Open...Source
 
Openstack Pakistan Workshop (intro)
Openstack Pakistan Workshop (intro)Openstack Pakistan Workshop (intro)
Openstack Pakistan Workshop (intro)
 

Recently uploaded

Introduction and different types of Ethernet.pptx
Introduction and different types of Ethernet.pptxIntroduction and different types of Ethernet.pptx
Introduction and different types of Ethernet.pptxupamatechverse
 
Call Girls in Nagpur Suman Call 7001035870 Meet With Nagpur Escorts
Call Girls in Nagpur Suman Call 7001035870 Meet With Nagpur EscortsCall Girls in Nagpur Suman Call 7001035870 Meet With Nagpur Escorts
Call Girls in Nagpur Suman Call 7001035870 Meet With Nagpur EscortsCall Girls in Nagpur High Profile
 
result management system report for college project
result management system report for college projectresult management system report for college project
result management system report for college projectTonystark477637
 
Introduction to Multiple Access Protocol.pptx
Introduction to Multiple Access Protocol.pptxIntroduction to Multiple Access Protocol.pptx
Introduction to Multiple Access Protocol.pptxupamatechverse
 
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escortsranjana rawat
 
Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...
Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...
Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...Christo Ananth
 
(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...ranjana rawat
 
Call for Papers - Educational Administration: Theory and Practice, E-ISSN: 21...
Call for Papers - Educational Administration: Theory and Practice, E-ISSN: 21...Call for Papers - Educational Administration: Theory and Practice, E-ISSN: 21...
Call for Papers - Educational Administration: Theory and Practice, E-ISSN: 21...Christo Ananth
 
UNIT - IV - Air Compressors and its Performance
UNIT - IV - Air Compressors and its PerformanceUNIT - IV - Air Compressors and its Performance
UNIT - IV - Air Compressors and its Performancesivaprakash250
 
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130Suhani Kapoor
 
The Most Attractive Pune Call Girls Manchar 8250192130 Will You Miss This Cha...
The Most Attractive Pune Call Girls Manchar 8250192130 Will You Miss This Cha...The Most Attractive Pune Call Girls Manchar 8250192130 Will You Miss This Cha...
The Most Attractive Pune Call Girls Manchar 8250192130 Will You Miss This Cha...ranjana rawat
 
APPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICS
APPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICSAPPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICS
APPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICSKurinjimalarL3
 
MANUFACTURING PROCESS-II UNIT-2 LATHE MACHINE
MANUFACTURING PROCESS-II UNIT-2 LATHE MACHINEMANUFACTURING PROCESS-II UNIT-2 LATHE MACHINE
MANUFACTURING PROCESS-II UNIT-2 LATHE MACHINESIVASHANKAR N
 
UNIT-II FMM-Flow Through Circular Conduits
UNIT-II FMM-Flow Through Circular ConduitsUNIT-II FMM-Flow Through Circular Conduits
UNIT-II FMM-Flow Through Circular Conduitsrknatarajan
 
Call Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur Escorts
Call Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur EscortsCall Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur Escorts
Call Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur EscortsCall Girls in Nagpur High Profile
 
Processing & Properties of Floor and Wall Tiles.pptx
Processing & Properties of Floor and Wall Tiles.pptxProcessing & Properties of Floor and Wall Tiles.pptx
Processing & Properties of Floor and Wall Tiles.pptxpranjaldaimarysona
 
Microscopic Analysis of Ceramic Materials.pptx
Microscopic Analysis of Ceramic Materials.pptxMicroscopic Analysis of Ceramic Materials.pptx
Microscopic Analysis of Ceramic Materials.pptxpurnimasatapathy1234
 
(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...ranjana rawat
 

Recently uploaded (20)

Water Industry Process Automation & Control Monthly - April 2024
Water Industry Process Automation & Control Monthly - April 2024Water Industry Process Automation & Control Monthly - April 2024
Water Industry Process Automation & Control Monthly - April 2024
 
Introduction and different types of Ethernet.pptx
Introduction and different types of Ethernet.pptxIntroduction and different types of Ethernet.pptx
Introduction and different types of Ethernet.pptx
 
Call Girls in Nagpur Suman Call 7001035870 Meet With Nagpur Escorts
Call Girls in Nagpur Suman Call 7001035870 Meet With Nagpur EscortsCall Girls in Nagpur Suman Call 7001035870 Meet With Nagpur Escorts
Call Girls in Nagpur Suman Call 7001035870 Meet With Nagpur Escorts
 
result management system report for college project
result management system report for college projectresult management system report for college project
result management system report for college project
 
Introduction to Multiple Access Protocol.pptx
Introduction to Multiple Access Protocol.pptxIntroduction to Multiple Access Protocol.pptx
Introduction to Multiple Access Protocol.pptx
 
DJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINE
DJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINEDJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINE
DJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINE
 
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts
 
Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...
Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...
Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...
 
(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANJALI) Dange Chowk Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
 
Call for Papers - Educational Administration: Theory and Practice, E-ISSN: 21...
Call for Papers - Educational Administration: Theory and Practice, E-ISSN: 21...Call for Papers - Educational Administration: Theory and Practice, E-ISSN: 21...
Call for Papers - Educational Administration: Theory and Practice, E-ISSN: 21...
 
UNIT - IV - Air Compressors and its Performance
UNIT - IV - Air Compressors and its PerformanceUNIT - IV - Air Compressors and its Performance
UNIT - IV - Air Compressors and its Performance
 
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130
 
The Most Attractive Pune Call Girls Manchar 8250192130 Will You Miss This Cha...
The Most Attractive Pune Call Girls Manchar 8250192130 Will You Miss This Cha...The Most Attractive Pune Call Girls Manchar 8250192130 Will You Miss This Cha...
The Most Attractive Pune Call Girls Manchar 8250192130 Will You Miss This Cha...
 
APPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICS
APPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICSAPPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICS
APPLICATIONS-AC/DC DRIVES-OPERATING CHARACTERISTICS
 
MANUFACTURING PROCESS-II UNIT-2 LATHE MACHINE
MANUFACTURING PROCESS-II UNIT-2 LATHE MACHINEMANUFACTURING PROCESS-II UNIT-2 LATHE MACHINE
MANUFACTURING PROCESS-II UNIT-2 LATHE MACHINE
 
UNIT-II FMM-Flow Through Circular Conduits
UNIT-II FMM-Flow Through Circular ConduitsUNIT-II FMM-Flow Through Circular Conduits
UNIT-II FMM-Flow Through Circular Conduits
 
Call Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur Escorts
Call Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur EscortsCall Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur Escorts
Call Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur Escorts
 
Processing & Properties of Floor and Wall Tiles.pptx
Processing & Properties of Floor and Wall Tiles.pptxProcessing & Properties of Floor and Wall Tiles.pptx
Processing & Properties of Floor and Wall Tiles.pptx
 
Microscopic Analysis of Ceramic Materials.pptx
Microscopic Analysis of Ceramic Materials.pptxMicroscopic Analysis of Ceramic Materials.pptx
Microscopic Analysis of Ceramic Materials.pptx
 
(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(PRIYA) Rajgurunagar Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
 

Deep inside the Cloud Managements Platforms: the OpenStack case study

  • 1. Deep inside the Cloud Management Platforms: the OpenStack case study Franco Callegati, Walter Cerroni, Chiara Contoli, Francesco Foresta, Arnau Salas Figuerola, Eduard Reina Fuente Alma Mater Studiorum - University of Bologna Department of Electrical, Electronic and Information Engineering G. Marconi Mail: francesco.foresta@unibo.it Jul 17, 2015 Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 1 / 19
  • 2. Overview 1 Introduction Cloud computing and its management 2 The OpenStack case Introduction Components and structure Deep inside Network parts Virtual Network Infrastructure Security tricks 3 Dynamic Service Chaining in OpenStack L2 topology & VNI Proof-of-Concept 4 Conclusions Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 2 / 19
  • 3. Introduction Cloud computing and its management What are Cloud Managing Platforms? The cloud computing paradigm points out that network resources, storage and computing are offered from a provider to a client as a service As it already is for water, gas, electricity, telephone. . . Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 3 / 19
  • 4. Introduction Cloud computing and its management What are Cloud Managing Platforms? The cloud computing paradigm points out that network resources, storage and computing are offered from a provider to a client as a service As it already is for water, gas, electricity, telephone. . . A cloud platform is a cluster of physical machines which contains some servers that will be offered as a service to a client, in according to the IaaS (Infrastructure-as-a-Service) paradigm It has to be managed ⇒ Cloud management platform Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 3 / 19
  • 5. Introduction Cloud computing and its management What are Cloud Managing Platforms? The cloud computing paradigm points out that network resources, storage and computing are offered from a provider to a client as a service As it already is for water, gas, electricity, telephone. . . A cloud platform is a cluster of physical machines which contains some servers that will be offered as a service to a client, in according to the IaaS (Infrastructure-as-a-Service) paradigm It has to be managed ⇒ Cloud management platform This is an integrated product that provide for the management of public, private and hybrid cloud environments Many platforms have been developed during these years, e.g. Amazon Web Services, Google Cloud Platform, HP Cloud, Microsoft Azure, Nebula, Rackspace Cloud, OpenStack. . . Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 3 / 19
  • 6. The OpenStack case Introduction OpenStack It’s an Open Source joint project of Rackspace Cloud and NASA, assisted by more than 200 companies from the IT industry Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 4 / 19
  • 7. The OpenStack case Introduction OpenStack It’s an Open Source joint project of Rackspace Cloud and NASA, assisted by more than 200 companies from the IT industry Once installed on a distributed system, users can create a virtual network infrastructure (VNI) composed of instances (e.g. implemented as virtual machines) and networks appliances (routers, firewalls, etc) in a simple and efficient way, taking advantages of multi-tenancy Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 4 / 19
  • 8. The OpenStack case Components and structure OpenStack Components OpenStack is composed of various components: each of them works in a specific area Nova = computing, Neutron = networking, Keystone = credentials, Glance = image storaging, Horizon = Web dashboard. . . Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 5 / 19
  • 9. The OpenStack case Components and structure OpenStack Components OpenStack is composed of various components: each of them works in a specific area Nova = computing, Neutron = networking, Keystone = credentials, Glance = image storaging, Horizon = Web dashboard. . . Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 5 / 19
  • 10. The OpenStack case Components and structure Web Dashboard Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 6 / 19
  • 11. The OpenStack case Components and structure OpenStack minimal cluster Every Neutron based OpenStack cluster is composed of at least three physical servers: A compute node, where the Virtual Machines are stored A network node, which provides connectivity for them A controller node, which manages all user requests Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 7 / 19
  • 12. The OpenStack case Components and structure OpenStack minimal cluster Every Neutron based OpenStack cluster is composed of at least three physical servers: A compute node, where the Virtual Machines are stored A network node, which provides connectivity for them A controller node, which manages all user requests They contain the OpenStack components and communicate between them with REST API calls It means HTTP is used to make calls between machines in a very simple way Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 7 / 19
  • 13. The OpenStack case Components and structure OpenStack minimal cluster Every Neutron based OpenStack cluster is composed of at least three physical servers: A compute node, where the Virtual Machines are stored A network node, which provides connectivity for them A controller node, which manages all user requests They contain the OpenStack components and communicate between them with REST API calls It means HTTP is used to make calls between machines in a very simple way These machines are connected by three networks Management net, used by the admin to access the cluster nodes and for interservice communications External net, which provides the Internet access to the VMs Data net, used for inter-VM communications Packets on this net will be VLAN tagged or encapsulated (GRE) Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 7 / 19
  • 14. The OpenStack case Components and structure Cluster, in detail Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 8 / 19
  • 15. The OpenStack case Deep inside Virtualization In the OpenStack environment acts a virtualization software which co-operate with Nova: Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 9 / 19
  • 16. The OpenStack case Deep inside Virtualization In the OpenStack environment acts a virtualization software which co-operate with Nova: this hypervisor is used to create the virtual environment which emulates the physical machine’s behaviour ⇒ many virtual hosts are running inside a physical host, at the same time! Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 9 / 19
  • 17. The OpenStack case Deep inside Virtualization In the OpenStack environment acts a virtualization software which co-operate with Nova: this hypervisor is used to create the virtual environment which emulates the physical machine’s behaviour ⇒ many virtual hosts are running inside a physical host, at the same time! it uses Libvirt, a generic API that supports various virtualization backends (VirtualBox, VMWare, XEN, QEMU+KVM) and allows the managing and migration of the VMs ⇒ NFV Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 9 / 19
  • 18. The OpenStack case Deep inside Neutron abstractions Neutron defines some network abstractions: Network: an isolated L2 network segment Subnet: an IP address block on a certain network Router: a gateway between subnets Port: an attachment point to a network Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 10 / 19
  • 19. The OpenStack case Deep inside Neutron abstractions Neutron defines some network abstractions: Network: an isolated L2 network segment Subnet: an IP address block on a certain network Router: a gateway between subnets Port: an attachment point to a network Neutron implements these abstractions inside the Virtual Network Infrastructure in the nodes (host level) ⇒ in this way VMs (at the guest level) can see the virtual networks Users only see these abstractions! Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 10 / 19
  • 20. The OpenStack case Deep inside Neutron abstractions Neutron defines some network abstractions: Network: an isolated L2 network segment Subnet: an IP address block on a certain network Router: a gateway between subnets Port: an attachment point to a network Neutron implements these abstractions inside the Virtual Network Infrastructure in the nodes (host level) ⇒ in this way VMs (at the guest level) can see the virtual networks Users only see these abstractions! In order to implement more than one Virtual Router in the Network node, OpenStack uses network namespaces They replicate the network software stack ⇒ isolation between multiple network domains in the same host! Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 10 / 19
  • 21. The OpenStack case Virtual Network Infrastructure Bridges In the compute and network node there are many OpenVSwitches: an integration bridge which acts as a hub of a star network, br-int ⇒ it is possible to implement SDN traffic steering on it! Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 11 / 19
  • 22. The OpenStack case Virtual Network Infrastructure Bridges In the compute and network node there are many OpenVSwitches: an integration bridge which acts as a hub of a star network, br-int ⇒ it is possible to implement SDN traffic steering on it! a bridge for each physical network, br-data/br-tun if connected to the Data net or br-ex if connected to the External net Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 11 / 19
  • 23. The OpenStack case Virtual Network Infrastructure Bridges In the compute and network node there are many OpenVSwitches: an integration bridge which acts as a hub of a star network, br-int ⇒ it is possible to implement SDN traffic steering on it! a bridge for each physical network, br-data/br-tun if connected to the Data net or br-ex if connected to the External net a Linux Bridge for each interface of VMs, qbr-X Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 11 / 19
  • 24. The OpenStack case Virtual Network Infrastructure Multi-tenancy and security groups In the compute node there are also veth pairs and/or patch ports that connect the different bridges Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 12 / 19
  • 25. The OpenStack case Virtual Network Infrastructure Multi-tenancy and security groups In the compute node there are also veth pairs and/or patch ports that connect the different bridges One of the main issue in OpenStack, as every other cloud management platform, is to divide different users’ traffic For every network there is a VLAN internal ID ⇒ the veth pair port attached to the integration bridge is access for a specific VLAN ID (the internal one related to the VM network) Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 12 / 19
  • 26. The OpenStack case Virtual Network Infrastructure Multi-tenancy and security groups In the compute node there are also veth pairs and/or patch ports that connect the different bridges One of the main issue in OpenStack, as every other cloud management platform, is to divide different users’ traffic For every network there is a VLAN internal ID ⇒ the veth pair port attached to the integration bridge is access for a specific VLAN ID (the internal one related to the VM network) As many GRE tunnels ID or as many VLAN external ID as tenants, depending on the type of data network configured Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 12 / 19
  • 27. The OpenStack case Virtual Network Infrastructure Multi-tenancy and security groups In the compute node there are also veth pairs and/or patch ports that connect the different bridges One of the main issue in OpenStack, as every other cloud management platform, is to divide different users’ traffic For every network there is a VLAN internal ID ⇒ the veth pair port attached to the integration bridge is access for a specific VLAN ID (the internal one related to the VM network) As many GRE tunnels ID or as many VLAN external ID as tenants, depending on the type of data network configured It is also important to implement a set of firewall rules for every VM ⇒ Security Groups They are implemented by Neutron applying the native kernel filtering functions to bridged VM tap interface on Linux Bridge Simply, they are a number of iptables rules on the compute node Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 12 / 19
  • 28. The OpenStack case Virtual Network Infrastructure Inside the nodes Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 13 / 19
  • 29. Dynamic Service Chaining in OpenStack L2 topology & VNI Dynamic Service Chaining: implementation details The topology is similar to the L2 one in the Mininet case, but there are some noteworthy differences All virtual network appliances as well as users are implemented as VMs, configured for the case study Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 14 / 19
  • 30. Dynamic Service Chaining in OpenStack L2 topology & VNI Dynamic Service Chaining: implementation details The topology is similar to the L2 one in the Mininet case, but there are some noteworthy differences All virtual network appliances as well as users are implemented as VMs, configured for the case study The implementation of a real WAN Accelerator, Trafficsqueezer, has been done both at the source and destination through the installation of a specific kernel and the configuration via browser Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 14 / 19
  • 31. Dynamic Service Chaining in OpenStack L2 topology & VNI Dynamic Service Chaining: implementation details The topology is similar to the L2 one in the Mininet case, but there are some noteworthy differences All virtual network appliances as well as users are implemented as VMs, configured for the case study The implementation of a real WAN Accelerator, Trafficsqueezer, has been done both at the source and destination through the installation of a specific kernel and the configuration via browser The destination host is located, as the other destination network appliances, in a remote server out of the OpenStack cluster ⇒ more realistic measurements Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 14 / 19
  • 32. Dynamic Service Chaining in OpenStack L2 topology & VNI Dynamic Service Chaining: implementation details The topology is similar to the L2 one in the Mininet case, but there are some noteworthy differences All virtual network appliances as well as users are implemented as VMs, configured for the case study The implementation of a real WAN Accelerator, Trafficsqueezer, has been done both at the source and destination through the installation of a specific kernel and the configuration via browser The destination host is located, as the other destination network appliances, in a remote server out of the OpenStack cluster ⇒ more realistic measurements The Traffic Shaper has been implemented with the Linux Traffic Control command suite, setting the bandwidth to 10 MBit/s Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 14 / 19
  • 33. Dynamic Service Chaining in OpenStack L2 topology & VNI Dynamic Service Chaining: implementation details The topology is similar to the L2 one in the Mininet case, but there are some noteworthy differences All virtual network appliances as well as users are implemented as VMs, configured for the case study The implementation of a real WAN Accelerator, Trafficsqueezer, has been done both at the source and destination through the installation of a specific kernel and the configuration via browser The destination host is located, as the other destination network appliances, in a remote server out of the OpenStack cluster ⇒ more realistic measurements The Traffic Shaper has been implemented with the Linux Traffic Control command suite, setting the bandwidth to 10 MBit/s Every VM had an additional interface for all the traffic not related to the test-bed (e.g. Internet traffic) Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 14 / 19
  • 34. Dynamic Service Chaining in OpenStack L2 topology & VNI Case study: L2 topology & VNI Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 15 / 19
  • 35. Dynamic Service Chaining in OpenStack Proof-of-Concept Results At the source 1 10 100 1000 0 50 100 150 200 250 300 350 400 450 Throughput(Mbit/s) Time (s) DPI-in (p3) WANA1-in (p4) WANA1-out (p5) TC-in (p6) TC-out (p7) Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 16 / 19
  • 36. Dynamic Service Chaining in OpenStack Proof-of-Concept Results At the source 1 10 100 1000 0 50 100 150 200 250 300 350 400 450 Throughput(Mbit/s) Time (s) DPI-in (p3) WANA1-in (p4) WANA1-out (p5) TC-in (p6) TC-out (p7) At the destination Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 16 / 19
  • 37. Conclusions What’s next? Dynamic Service Chaining in a L3-like topology Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 17 / 19
  • 38. Conclusions What’s next? Dynamic Service Chaining in a L3-like topology Use of new OpenFlow controllers (OpenDayLight, Ryu) carrying new OpenFlow versions Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 17 / 19
  • 39. Conclusions What’s next? Dynamic Service Chaining in a L3-like topology Use of new OpenFlow controllers (OpenDayLight, Ryu) carrying new OpenFlow versions More context awareness ⇒ we will use an orchestrator to install more dinamically flows in the OVSs Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 17 / 19
  • 40. Conclusions What’s next? Dynamic Service Chaining in a L3-like topology Use of new OpenFlow controllers (OpenDayLight, Ryu) carrying new OpenFlow versions More context awareness ⇒ we will use an orchestrator to install more dinamically flows in the OVSs Generalization of the case study, making the whole thing more automatic Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 17 / 19
  • 41. Conclusions What’s next? Dynamic Service Chaining in a L3-like topology Use of new OpenFlow controllers (OpenDayLight, Ryu) carrying new OpenFlow versions More context awareness ⇒ we will use an orchestrator to install more dinamically flows in the OVSs Generalization of the case study, making the whole thing more automatic Experiments with VMs live migration Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 17 / 19
  • 42. Conclusions What’s next? Dynamic Service Chaining in a L3-like topology Use of new OpenFlow controllers (OpenDayLight, Ryu) carrying new OpenFlow versions More context awareness ⇒ we will use an orchestrator to install more dinamically flows in the OVSs Generalization of the case study, making the whole thing more automatic Experiments with VMs live migration Cloud perfomances tests Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 17 / 19
  • 43. Conclusions What’s next? Dynamic Service Chaining in a L3-like topology Use of new OpenFlow controllers (OpenDayLight, Ryu) carrying new OpenFlow versions More context awareness ⇒ we will use an orchestrator to install more dinamically flows in the OVSs Generalization of the case study, making the whole thing more automatic Experiments with VMs live migration Cloud perfomances tests Application of Virtual Tenant Network: a way to create virtual networks in a complete automated way, using REST API calls Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 17 / 19
  • 44. Conclusions Questions? Do you have any questions? Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 18 / 19
  • 45. Conclusions And that is all! Thanks for your attention! Research Fellow: Francesco Foresta (DEI) Deep inside OpenStack platform Jul 17, 2015 19 / 19