SlideShare a Scribd company logo
INTERCONNECTING NEUTRON
AND NETWORK OPERATORS'
BGP VPNS
Paul Carver Tim Irnich Thomas Morin
TELCO STUFF AHEAD, DON’T BE AFRAID
WHAT ARE BGP VPNS ?
FIRST, WHAT THEY ARE NOT…
 No encryption
 ‘P’ stands for ‘Private’: think Private Addressing
 (one can obviously add encryption over a BGP VPN, just like over
any IP network)
 Isolation is…
 not managed by customers
 managed by the operator of the shared physical network
 Hence: not like IPSec or SSL VPNs
WHAT ARE BGP VPNS ?
BASE PRINCIPLES OF BGP/MPLS VPNS (SIMPLIFIED)
 use MPLS to isolate the traffic of different VPNs on the wire
 MPLS here: an encapsulation layer stacked onto IP packets of a VPN
 MPLS “label” : dataplane field used for isolation:
 use the BGP routing protocol to indicate where/how to send packets
 advertise routes:
“10.11.0.0/16 in VPN 888:42 is reachable via router X using MPLS Label N”
 VPN “identifiers”: “Route Target” (e.g. 888:42)
 (calling them ‘identifier’ is very simplified, much more flexibility)
 only present in the control plane!
 initially for L3VPNs, extended for L2/Ethernet (in particular E-VPN)
 later extended to other encaps: MPLS/GRE, MPLS/UDP, VXLAN
 the reason to use “BGP VPNs” rather than “BGP/MPLS VPNs”
WHAT ARE BGP VPNS ?
“OLD”, PROVEN, INTEROPERABLE AND VERY SCALABLE
 Late 90’s, then incremental protocol improvements since
 Lot’s of deployments
 Very interoperable
 IETF RFCs
 starting point references: RFC4364, RFC 7432
 multi-vendor deployments common place
 How scalable ?
 some BGP/MPLS deployment serve millions of VPN sites
 toolbox of established practices and protocol extensions to improve
scaling
WHAT ARE BGP VPNS ?
WHAT ARE THEY USED FOR ?
 In the past 15+ years:
business customers VPNs
(e.g. replace leased lines, Frame Relay,
etc.)
 Later in the 2000’s: increasing use in
converged IP/MPLS backbones (e.g. carry
services for triple play)
 Cloud inter-DC
 Interconnect for NFV platforms
 between NFV POPs
 between NFV platforms and service BGP VPNs
Today, all these
need to be
interconnected
with OpenStack
OpenStack as
the elected
IaaS foundation
for NFV
WHAT IS THE NEED ?
 Admin-only API to control the technical details
 “VPN Foo of tenant Lambda will use Route Target 13879:11, etc.”
 Tenant API to let tenant choose what
 “I want to interconnect Neutron network 11e304ec-5b67-4980-
aa57-da10d0f057a6 with my VPN Foo”
 Actual implementation is automated, need to accommodate
different solutions that automate differently
The networking-bgpvpn Neutron Stadium project was
created to address this need (June 2015)
NEW API RESOURCES
(already existing
API resources)
Network X Router Ysome user in
“Project Lambda”
Openstack Admin
Network
Associationcreates
associations
to setup
interconnections
BGP VPN
“default VPN”
Type: L3
BGP Route-Target: 1234:42
Tenant: Project Lambda
Router
Association
creates a
BGPVPN
and gives it to
“Project Lambda”
NEUTRON BGP VPN INTERCONNECTIONS SERVICE PLUGIN
OVERVIEW
Neutron
BGP
Peers
dataplane
(vswitch/ vrouter)
VMs… …
Backend X
(e.g. Neutron+Bagpipe, OpenDaylight,
OpenContrail, Nuage, etc.)API
BGPVPN
Service Plugin


packets carried
over MPLS
to/from VPNs

BGP
VPN
routes


driver for
X…
?
Neutron
SDN Controller
BGP
Peers
driver for
backend X
packets carried
over MPLS
to/from VPNs
API
BGPVPN
Service Plugin

 REST
BGP
VPN
routes


HOW IT WORKS WITH AN SDN CONTROLLER…
E.G. OPENDAYLIGHT, OPENCONTRAIL, NUAGE NETWORKS, ETC.
driver for SDN
Controller X
compute node
VMs VMs
compute node
VMs VMs
vswitch vswitch

NBI
BGP
SBI
Rabbit
MQ
HOW IT WORKS WITH NEUTRON OVS + BAGPIPE …
Neutron
compute node
BGP
Peers
…VMs …
API
BGPVPN
Service Plugin

OpenVSwitch
br-int | br-tun | br-mpls
packets carried
over MPLS
towards VPNs

Neutron OVS
agent
BGP
VPN
routes



bagpipe
-bgp
bagpipe
driver
ML2 as Core Plugin
openvswitch
mech driver
bagpipe
extension
DEMO
TIME!
 Starting point
 an Openstack cloud
 peering with BGP/MPLS
routers
 pre-existing VPNs in the WAN
for customers Red and Blue
 Platform: devstack VM using
ovs/bagpipe driver, lab
router (VM), VPN site (VM)
 Let’s let tenant Red
interconnect an Openstack
VM and its VPN, and test the
result from a VPN site
DC network
control / compute
(devstack)
VM
(tenant
‘Blue’)
…
VM
(tenant
‘Red’)
192.168.10.x
IP/MPLS
WAN
BGP/MPLS
provider edge
router
BGP/MPLS
border routers
BGP/MPLS
provider edge
‘lab-router’
MPLS
encapsulation
lnx02
test box
192.168.177.102
INTEGRATION IN NEUTRON & OPENSTACK
networking-bgpvpn leverages drivers/plugin hooks
to integrate with other components:
 Neutron
 extension API hooks, service plugin and driver loading
 for ovs-bagpipe driver:
 registry callbacks
 an L2 agent extension
 increasing use of neutron-lib
 CLI
 an entrypoint for the neutronclient extension
(CLI part currently being ported to OSC)
 Heat plugin
 Tempest plugin
 Horizon plugin
 OpenStack CI hooks for test job configuration
collaboration
with Neutron
devs to bring
improvements
or fixes
An hospitable enough
environment

Other Neutron projects to
take inspiration from
TRYING TO BE A GOOD STADIUM PROJECT
 A significant effort is required to match the expectations
raised for Neutron Stadium projects
 in particular getting everything ready on CI testing
 Downside: less features in last cycle
 But pushes/forces us in the right direction
OPENSTACK NET’-BGPVPN AND OPNFV SDNVPN
 OPNFV: a mid-stream integration project providing
automated install of all required components for a
given use case, as well as E2E testing
• BGPVPN is such a use case
• Gives upstream projects additional visibility if
their changes break something at system level
(i.e. when multiple components interplay)
 The OPNFV SDNVPN project aims at
integrating a complete stack for
BGPVPNs
• focusing on cases where an SDN controller
is used
• a BaGPipe scenario is planned as well
• Integration with installers:
Fuel (Mirantis) and TripleO/Apex (RedHat)
• Provides deployment scenarios derived from odl_l3,
both HA and non-HA
WRAP UP
 One API allowing tenants to control interconnections with
their BGP VPNs
• Public/operator cloud <-> business customers of MPLS VPN offers
• inter-DC, distributed cloud, edge cloud
• NFV multi-POP deployments
 Drivers for several SDN controllers and a Neutron driver
 CLI interface, Horizon GUI, and Heat bindings
 Now / Soon / On the radar:
• complete E-VPN part of API
• remaining work to match Neutron Stadium requirements
(e.g. more functional testing!)
• API evolution for finer-grained control of routing
(static routes, preferences, route leaking)
• consider supporting multiple drivers/backends simultaneously
• see MPLS/GRE support land in OpenVSwitch (next MPLS/UDP!)
• expectations of improved feature parity among drivers
 a Neutron’s Stadium project working hand in hand with OPNFV
OpenStack / OPNFV
contributors around BGP
VPN…
Antoine Eiche
Bruno Fernando
Édouard Thuleau
Cédric Savignan
Daniel Radez
Darek Smiegel
Henry Gessau
Jean-Philipe Braun
Mathieu Rohon
Michal Skalski
Nikolas Hermanns
Nishant Kumar
Paul Carver
Peter V. Saveliev
Pierre Crégut
R. R. Palleti
Suresh K.
Tim Irnich
Tim Rozet
Thomas Monguillon
Thomas Morin
Vishal Thapar
Wim De Clercq
Yannick Thomas

More Related Content

What's hot

ML2/OVN アーキテクチャ概観
ML2/OVN アーキテクチャ概観ML2/OVN アーキテクチャ概観
ML2/OVN アーキテクチャ概観
Yamato Tanaka
 
OVN 設定サンプル | OVN config example 2015/12/27
OVN 設定サンプル | OVN config example 2015/12/27OVN 設定サンプル | OVN config example 2015/12/27
OVN 設定サンプル | OVN config example 2015/12/27
Kentaro Ebisawa
 
知っているようで知らないNeutron -仮想ルータの冗長と分散- - OpenStack最新情報セミナー 2016年3月
知っているようで知らないNeutron -仮想ルータの冗長と分散- - OpenStack最新情報セミナー 2016年3月 知っているようで知らないNeutron -仮想ルータの冗長と分散- - OpenStack最新情報セミナー 2016年3月
知っているようで知らないNeutron -仮想ルータの冗長と分散- - OpenStack最新情報セミナー 2016年3月
VirtualTech Japan Inc.
 
Large scale overlay networks with ovn: problems and solutions
Large scale overlay networks with ovn: problems and solutionsLarge scale overlay networks with ovn: problems and solutions
Large scale overlay networks with ovn: problems and solutions
Han Zhou
 
Taking Security Groups to Ludicrous Speed with OVS (OpenStack Summit 2015)
Taking Security Groups to Ludicrous Speed with OVS (OpenStack Summit 2015)Taking Security Groups to Ludicrous Speed with OVS (OpenStack Summit 2015)
Taking Security Groups to Ludicrous Speed with OVS (OpenStack Summit 2015)
Thomas Graf
 
OpenStack Neutron IPv6 Lessons
OpenStack Neutron IPv6 LessonsOpenStack Neutron IPv6 Lessons
OpenStack Neutron IPv6 Lessons
Akihiro Motoki
 
Routed Provider Networks on OpenStack
Routed Provider Networks on OpenStack Routed Provider Networks on OpenStack
Routed Provider Networks on OpenStack
Romana Project
 
OpenvSwitch Deep Dive
OpenvSwitch Deep DiveOpenvSwitch Deep Dive
OpenvSwitch Deep Dive
rajdeep
 
[242]open stack neutron dataplane 구현
[242]open stack neutron   dataplane 구현[242]open stack neutron   dataplane 구현
[242]open stack neutron dataplane 구현
NAVER D2
 
ONIC-Japan-2019-OVN public
ONIC-Japan-2019-OVN publicONIC-Japan-2019-OVN public
ONIC-Japan-2019-OVN public
Manabu Ori
 
大規模DCのネットワークデザイン
大規模DCのネットワークデザイン大規模DCのネットワークデザイン
大規模DCのネットワークデザイン
Masayuki Kobayashi
 
20150511 jun lee_openstack neutron 분석 (최종)
20150511 jun lee_openstack neutron 분석 (최종)20150511 jun lee_openstack neutron 분석 (최종)
20150511 jun lee_openstack neutron 분석 (최종)
rootfs32
 
「Neutronになって理解するOpenStack Network」~Neutron/Open vSwitchなどNeutronと周辺技術の解説~ - ...
「Neutronになって理解するOpenStack Network」~Neutron/Open vSwitchなどNeutronと周辺技術の解説~  - ...「Neutronになって理解するOpenStack Network」~Neutron/Open vSwitchなどNeutronと周辺技術の解説~  - ...
「Neutronになって理解するOpenStack Network」~Neutron/Open vSwitchなどNeutronと周辺技術の解説~ - ...
VirtualTech Japan Inc.
 
[OpenInfra Days Korea 2018] (Track 2) Neutron LBaaS 어디까지 왔니? - Octavia 소개
[OpenInfra Days Korea 2018] (Track 2) Neutron LBaaS 어디까지 왔니? - Octavia 소개[OpenInfra Days Korea 2018] (Track 2) Neutron LBaaS 어디까지 왔니? - Octavia 소개
[OpenInfra Days Korea 2018] (Track 2) Neutron LBaaS 어디까지 왔니? - Octavia 소개
OpenStack Korea Community
 
Deploying CloudStack and Ceph with flexible VXLAN and BGP networking
Deploying CloudStack and Ceph with flexible VXLAN and BGP networking Deploying CloudStack and Ceph with flexible VXLAN and BGP networking
Deploying CloudStack and Ceph with flexible VXLAN and BGP networking
ShapeBlue
 
OpenStack超入門シリーズ いまさら聞けないNeutronの使い方
OpenStack超入門シリーズ いまさら聞けないNeutronの使い方OpenStack超入門シリーズ いまさら聞けないNeutronの使い方
OpenStack超入門シリーズ いまさら聞けないNeutronの使い方
Toru Makabe
 
Pushing Packets - How do the ML2 Mechanism Drivers Stack Up
Pushing Packets - How do the ML2 Mechanism Drivers Stack UpPushing Packets - How do the ML2 Mechanism Drivers Stack Up
Pushing Packets - How do the ML2 Mechanism Drivers Stack Up
James Denton
 
OpenShift Virtualization- Technical Overview.pdf
OpenShift Virtualization- Technical Overview.pdfOpenShift Virtualization- Technical Overview.pdf
OpenShift Virtualization- Technical Overview.pdf
ssuser1490e8
 
The Basic Introduction of Open vSwitch
The Basic Introduction of Open vSwitchThe Basic Introduction of Open vSwitch
The Basic Introduction of Open vSwitch
Te-Yen Liu
 
[KubeCon NA 2020] containerd: Rootless Containers 2020
[KubeCon NA 2020] containerd: Rootless Containers 2020[KubeCon NA 2020] containerd: Rootless Containers 2020
[KubeCon NA 2020] containerd: Rootless Containers 2020
Akihiro Suda
 

What's hot (20)

ML2/OVN アーキテクチャ概観
ML2/OVN アーキテクチャ概観ML2/OVN アーキテクチャ概観
ML2/OVN アーキテクチャ概観
 
OVN 設定サンプル | OVN config example 2015/12/27
OVN 設定サンプル | OVN config example 2015/12/27OVN 設定サンプル | OVN config example 2015/12/27
OVN 設定サンプル | OVN config example 2015/12/27
 
知っているようで知らないNeutron -仮想ルータの冗長と分散- - OpenStack最新情報セミナー 2016年3月
知っているようで知らないNeutron -仮想ルータの冗長と分散- - OpenStack最新情報セミナー 2016年3月 知っているようで知らないNeutron -仮想ルータの冗長と分散- - OpenStack最新情報セミナー 2016年3月
知っているようで知らないNeutron -仮想ルータの冗長と分散- - OpenStack最新情報セミナー 2016年3月
 
Large scale overlay networks with ovn: problems and solutions
Large scale overlay networks with ovn: problems and solutionsLarge scale overlay networks with ovn: problems and solutions
Large scale overlay networks with ovn: problems and solutions
 
Taking Security Groups to Ludicrous Speed with OVS (OpenStack Summit 2015)
Taking Security Groups to Ludicrous Speed with OVS (OpenStack Summit 2015)Taking Security Groups to Ludicrous Speed with OVS (OpenStack Summit 2015)
Taking Security Groups to Ludicrous Speed with OVS (OpenStack Summit 2015)
 
OpenStack Neutron IPv6 Lessons
OpenStack Neutron IPv6 LessonsOpenStack Neutron IPv6 Lessons
OpenStack Neutron IPv6 Lessons
 
Routed Provider Networks on OpenStack
Routed Provider Networks on OpenStack Routed Provider Networks on OpenStack
Routed Provider Networks on OpenStack
 
OpenvSwitch Deep Dive
OpenvSwitch Deep DiveOpenvSwitch Deep Dive
OpenvSwitch Deep Dive
 
[242]open stack neutron dataplane 구현
[242]open stack neutron   dataplane 구현[242]open stack neutron   dataplane 구현
[242]open stack neutron dataplane 구현
 
ONIC-Japan-2019-OVN public
ONIC-Japan-2019-OVN publicONIC-Japan-2019-OVN public
ONIC-Japan-2019-OVN public
 
大規模DCのネットワークデザイン
大規模DCのネットワークデザイン大規模DCのネットワークデザイン
大規模DCのネットワークデザイン
 
20150511 jun lee_openstack neutron 분석 (최종)
20150511 jun lee_openstack neutron 분석 (최종)20150511 jun lee_openstack neutron 분석 (최종)
20150511 jun lee_openstack neutron 분석 (최종)
 
「Neutronになって理解するOpenStack Network」~Neutron/Open vSwitchなどNeutronと周辺技術の解説~ - ...
「Neutronになって理解するOpenStack Network」~Neutron/Open vSwitchなどNeutronと周辺技術の解説~  - ...「Neutronになって理解するOpenStack Network」~Neutron/Open vSwitchなどNeutronと周辺技術の解説~  - ...
「Neutronになって理解するOpenStack Network」~Neutron/Open vSwitchなどNeutronと周辺技術の解説~ - ...
 
[OpenInfra Days Korea 2018] (Track 2) Neutron LBaaS 어디까지 왔니? - Octavia 소개
[OpenInfra Days Korea 2018] (Track 2) Neutron LBaaS 어디까지 왔니? - Octavia 소개[OpenInfra Days Korea 2018] (Track 2) Neutron LBaaS 어디까지 왔니? - Octavia 소개
[OpenInfra Days Korea 2018] (Track 2) Neutron LBaaS 어디까지 왔니? - Octavia 소개
 
Deploying CloudStack and Ceph with flexible VXLAN and BGP networking
Deploying CloudStack and Ceph with flexible VXLAN and BGP networking Deploying CloudStack and Ceph with flexible VXLAN and BGP networking
Deploying CloudStack and Ceph with flexible VXLAN and BGP networking
 
OpenStack超入門シリーズ いまさら聞けないNeutronの使い方
OpenStack超入門シリーズ いまさら聞けないNeutronの使い方OpenStack超入門シリーズ いまさら聞けないNeutronの使い方
OpenStack超入門シリーズ いまさら聞けないNeutronの使い方
 
Pushing Packets - How do the ML2 Mechanism Drivers Stack Up
Pushing Packets - How do the ML2 Mechanism Drivers Stack UpPushing Packets - How do the ML2 Mechanism Drivers Stack Up
Pushing Packets - How do the ML2 Mechanism Drivers Stack Up
 
OpenShift Virtualization- Technical Overview.pdf
OpenShift Virtualization- Technical Overview.pdfOpenShift Virtualization- Technical Overview.pdf
OpenShift Virtualization- Technical Overview.pdf
 
The Basic Introduction of Open vSwitch
The Basic Introduction of Open vSwitchThe Basic Introduction of Open vSwitch
The Basic Introduction of Open vSwitch
 
[KubeCon NA 2020] containerd: Rootless Containers 2020
[KubeCon NA 2020] containerd: Rootless Containers 2020[KubeCon NA 2020] containerd: Rootless Containers 2020
[KubeCon NA 2020] containerd: Rootless Containers 2020
 

Viewers also liked

BGP Dynamic Routing and Neutron
BGP Dynamic Routing and NeutronBGP Dynamic Routing and Neutron
BGP Dynamic Routing and Neutron
rktidwell
 
OpenStack Neutron Tutorial
OpenStack Neutron TutorialOpenStack Neutron Tutorial
OpenStack Neutron Tutorial
mestery
 
VPNaaS neutron
VPNaaS neutronVPNaaS neutron
VPNaaS neutron
Narasimha sreeram
 
Provisioning VPNs on an heterogeneous network with OpenDayLight and NETCONF_bcom
Provisioning VPNs on an heterogeneous network with OpenDayLight and NETCONF_bcomProvisioning VPNs on an heterogeneous network with OpenDayLight and NETCONF_bcom
Provisioning VPNs on an heterogeneous network with OpenDayLight and NETCONF_bcom
IRT b-com
 
VPNaaS in Neutron
VPNaaS in NeutronVPNaaS in Neutron
VPNaaS in Neutron
Kazunori Takeuchi
 
Mastering OpenStack - Episode 14 - Network Design
Mastering OpenStack - Episode 14 - Network DesignMastering OpenStack - Episode 14 - Network Design
Mastering OpenStack - Episode 14 - Network Design
Roozbeh Shafiee
 
Open stack implementation
Open stack implementation Open stack implementation
Open stack implementation
Soumyajit Basu
 
Tacker - a generic VNF Manager using OpenStack
Tacker - a generic VNF Manager using OpenStackTacker - a generic VNF Manager using OpenStack
Tacker - a generic VNF Manager using OpenStack
Sridhar Ramaswamy
 
Accelerating Neutron with Intel DPDK
Accelerating Neutron with Intel DPDKAccelerating Neutron with Intel DPDK
Accelerating Neutron with Intel DPDK
Alexander Shalimov
 
Running OpenStack on Amazon AWS, Alex Fishman
Running OpenStack on Amazon AWS, Alex FishmanRunning OpenStack on Amazon AWS, Alex Fishman
Running OpenStack on Amazon AWS, Alex Fishman
Cloud Native Day Tel Aviv
 
OVS and DPDK - T.F. Herbert, K. Traynor, M. Gray
OVS and DPDK - T.F. Herbert, K. Traynor, M. GrayOVS and DPDK - T.F. Herbert, K. Traynor, M. Gray
OVS and DPDK - T.F. Herbert, K. Traynor, M. Gray
harryvanhaaren
 
NFV Orchestration for Telcos using OpenStack Tacker
NFV Orchestration for Telcos using OpenStack TackerNFV Orchestration for Telcos using OpenStack Tacker
NFV Orchestration for Telcos using OpenStack Tacker
Sridhar Ramaswamy
 
Contrail Basics
Contrail BasicsContrail Basics
Contrail Basics
Kimberly Macias
 
Summit 16: OpenStack Tacker - Open Platform for NFV Orchestration
Summit 16: OpenStack Tacker - Open Platform for NFV OrchestrationSummit 16: OpenStack Tacker - Open Platform for NFV Orchestration
Summit 16: OpenStack Tacker - Open Platform for NFV Orchestration
OPNFV
 
OpenStack Quantum Intro (OS Meetup 3-26-12)
OpenStack Quantum Intro (OS Meetup 3-26-12)OpenStack Quantum Intro (OS Meetup 3-26-12)
OpenStack Quantum Intro (OS Meetup 3-26-12)
Dan Wendlandt
 
Contrail Deep-dive - Cloud Network Services at Scale
Contrail Deep-dive - Cloud Network Services at ScaleContrail Deep-dive - Cloud Network Services at Scale
Contrail Deep-dive - Cloud Network Services at Scale
MarketingArrowECS_CZ
 
Cloud Network Virtualization with Juniper Contrail
Cloud Network Virtualization with Juniper ContrailCloud Network Virtualization with Juniper Contrail
Cloud Network Virtualization with Juniper Contrail
buildacloud
 
Advanced network services insertions framework
Advanced network services insertions frameworkAdvanced network services insertions framework
Advanced network services insertions framework
salv_orlando
 
How to write a Neutron plugin (stadium edition)
How to write a Neutron plugin (stadium edition)How to write a Neutron plugin (stadium edition)
How to write a Neutron plugin (stadium edition)
salv_orlando
 
It's Not the Technology, It's You
It's Not the Technology, It's YouIt's Not the Technology, It's You
It's Not the Technology, It's You
Mirantis
 

Viewers also liked (20)

BGP Dynamic Routing and Neutron
BGP Dynamic Routing and NeutronBGP Dynamic Routing and Neutron
BGP Dynamic Routing and Neutron
 
OpenStack Neutron Tutorial
OpenStack Neutron TutorialOpenStack Neutron Tutorial
OpenStack Neutron Tutorial
 
VPNaaS neutron
VPNaaS neutronVPNaaS neutron
VPNaaS neutron
 
Provisioning VPNs on an heterogeneous network with OpenDayLight and NETCONF_bcom
Provisioning VPNs on an heterogeneous network with OpenDayLight and NETCONF_bcomProvisioning VPNs on an heterogeneous network with OpenDayLight and NETCONF_bcom
Provisioning VPNs on an heterogeneous network with OpenDayLight and NETCONF_bcom
 
VPNaaS in Neutron
VPNaaS in NeutronVPNaaS in Neutron
VPNaaS in Neutron
 
Mastering OpenStack - Episode 14 - Network Design
Mastering OpenStack - Episode 14 - Network DesignMastering OpenStack - Episode 14 - Network Design
Mastering OpenStack - Episode 14 - Network Design
 
Open stack implementation
Open stack implementation Open stack implementation
Open stack implementation
 
Tacker - a generic VNF Manager using OpenStack
Tacker - a generic VNF Manager using OpenStackTacker - a generic VNF Manager using OpenStack
Tacker - a generic VNF Manager using OpenStack
 
Accelerating Neutron with Intel DPDK
Accelerating Neutron with Intel DPDKAccelerating Neutron with Intel DPDK
Accelerating Neutron with Intel DPDK
 
Running OpenStack on Amazon AWS, Alex Fishman
Running OpenStack on Amazon AWS, Alex FishmanRunning OpenStack on Amazon AWS, Alex Fishman
Running OpenStack on Amazon AWS, Alex Fishman
 
OVS and DPDK - T.F. Herbert, K. Traynor, M. Gray
OVS and DPDK - T.F. Herbert, K. Traynor, M. GrayOVS and DPDK - T.F. Herbert, K. Traynor, M. Gray
OVS and DPDK - T.F. Herbert, K. Traynor, M. Gray
 
NFV Orchestration for Telcos using OpenStack Tacker
NFV Orchestration for Telcos using OpenStack TackerNFV Orchestration for Telcos using OpenStack Tacker
NFV Orchestration for Telcos using OpenStack Tacker
 
Contrail Basics
Contrail BasicsContrail Basics
Contrail Basics
 
Summit 16: OpenStack Tacker - Open Platform for NFV Orchestration
Summit 16: OpenStack Tacker - Open Platform for NFV OrchestrationSummit 16: OpenStack Tacker - Open Platform for NFV Orchestration
Summit 16: OpenStack Tacker - Open Platform for NFV Orchestration
 
OpenStack Quantum Intro (OS Meetup 3-26-12)
OpenStack Quantum Intro (OS Meetup 3-26-12)OpenStack Quantum Intro (OS Meetup 3-26-12)
OpenStack Quantum Intro (OS Meetup 3-26-12)
 
Contrail Deep-dive - Cloud Network Services at Scale
Contrail Deep-dive - Cloud Network Services at ScaleContrail Deep-dive - Cloud Network Services at Scale
Contrail Deep-dive - Cloud Network Services at Scale
 
Cloud Network Virtualization with Juniper Contrail
Cloud Network Virtualization with Juniper ContrailCloud Network Virtualization with Juniper Contrail
Cloud Network Virtualization with Juniper Contrail
 
Advanced network services insertions framework
Advanced network services insertions frameworkAdvanced network services insertions framework
Advanced network services insertions framework
 
How to write a Neutron plugin (stadium edition)
How to write a Neutron plugin (stadium edition)How to write a Neutron plugin (stadium edition)
How to write a Neutron plugin (stadium edition)
 
It's Not the Technology, It's You
It's Not the Technology, It's YouIt's Not the Technology, It's You
It's Not the Technology, It's You
 

Similar to Interconnecting Neutron and Network Operators' BGP VPNs

Flexible NFV WAN interconnections with Neutron BGP VPN
 Flexible NFV WAN interconnections with Neutron BGP VPN Flexible NFV WAN interconnections with Neutron BGP VPN
Flexible NFV WAN interconnections with Neutron BGP VPN
Thomas Morin
 
International Journal of Engineering Research and Development (IJERD)
International Journal of Engineering Research and Development (IJERD)International Journal of Engineering Research and Development (IJERD)
International Journal of Engineering Research and Development (IJERD)
IJERD Editor
 
Development, test, and characterization of MEC platforms with Teranium and Dr...
Development, test, and characterization of MEC platforms with Teranium and Dr...Development, test, and characterization of MEC platforms with Teranium and Dr...
Development, test, and characterization of MEC platforms with Teranium and Dr...
Michelle Holley
 
Mellanox Approach to NFV & SDN
Mellanox Approach to NFV & SDNMellanox Approach to NFV & SDN
Mellanox Approach to NFV & SDN
Mellanox Technologies
 
Branching out with SDN
Branching out with SDNBranching out with SDN
Branching out with SDN
APNIC
 
09 (IDNOG02) Services SDN & NFV Delivering more with less by Mochammad Irzan
09 (IDNOG02) Services SDN & NFV Delivering more with less by Mochammad Irzan09 (IDNOG02) Services SDN & NFV Delivering more with less by Mochammad Irzan
09 (IDNOG02) Services SDN & NFV Delivering more with less by Mochammad Irzan
Indonesia Network Operators Group
 
OpenStack MeetUp - OpenContrail Presentation
OpenStack MeetUp - OpenContrail PresentationOpenStack MeetUp - OpenContrail Presentation
OpenStack MeetUp - OpenContrail Presentation
Stacy Véronneau
 
Summit 16: How to Compose a New OPNFV Solution Stack?
Summit 16: How to Compose a New OPNFV Solution Stack?Summit 16: How to Compose a New OPNFV Solution Stack?
Summit 16: How to Compose a New OPNFV Solution Stack?
OPNFV
 
VPN - Virtual Private Network
VPN - Virtual Private NetworkVPN - Virtual Private Network
VPN - Virtual Private Network
Peter R. Egli
 
Pristine rina-sdk-icc-2016
Pristine rina-sdk-icc-2016Pristine rina-sdk-icc-2016
Pristine rina-sdk-icc-2016
ICT PRISTINE
 
Osnug meetup-tungsten fabric - overview.pptx
Osnug meetup-tungsten fabric - overview.pptxOsnug meetup-tungsten fabric - overview.pptx
Osnug meetup-tungsten fabric - overview.pptx
M.Qasim Arham
 
Challenges of L2 NID Based Architecture for vCPE and NFV Deployment
Challenges of L2 NID Based Architecture for vCPE and NFV Deployment Challenges of L2 NID Based Architecture for vCPE and NFV Deployment
Challenges of L2 NID Based Architecture for vCPE and NFV Deployment
Bangladesh Network Operators Group
 
Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...
Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...
Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...
nvirters
 
Simplify Networking for Containers
Simplify Networking for ContainersSimplify Networking for Containers
Simplify Networking for Containers
LinuxCon ContainerCon CloudOpen China
 
PLNOG14: Evolved Programmable Network, architektura dla sieci operatorskich -...
PLNOG14: Evolved Programmable Network, architektura dla sieci operatorskich -...PLNOG14: Evolved Programmable Network, architektura dla sieci operatorskich -...
PLNOG14: Evolved Programmable Network, architektura dla sieci operatorskich -...
PROIDEA
 
PLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDNPLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDN
PROIDEA
 
Opencontrail network virtualization
Opencontrail network virtualizationOpencontrail network virtualization
Opencontrail network virtualization
Nicolai van der Smagt
 
Colt SD-WAN experience learnings and future plans
Colt SD-WAN experience learnings and future plansColt SD-WAN experience learnings and future plans
Colt SD-WAN experience learnings and future plans
Colt Technology Services
 
OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....
OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....
OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....
OpenNebula Project
 
Software Innovations and Control Plane Evolution in the new SDN Transport Arc...
Software Innovations and Control Plane Evolution in the new SDN Transport Arc...Software Innovations and Control Plane Evolution in the new SDN Transport Arc...
Software Innovations and Control Plane Evolution in the new SDN Transport Arc...
Cisco Canada
 

Similar to Interconnecting Neutron and Network Operators' BGP VPNs (20)

Flexible NFV WAN interconnections with Neutron BGP VPN
 Flexible NFV WAN interconnections with Neutron BGP VPN Flexible NFV WAN interconnections with Neutron BGP VPN
Flexible NFV WAN interconnections with Neutron BGP VPN
 
International Journal of Engineering Research and Development (IJERD)
International Journal of Engineering Research and Development (IJERD)International Journal of Engineering Research and Development (IJERD)
International Journal of Engineering Research and Development (IJERD)
 
Development, test, and characterization of MEC platforms with Teranium and Dr...
Development, test, and characterization of MEC platforms with Teranium and Dr...Development, test, and characterization of MEC platforms with Teranium and Dr...
Development, test, and characterization of MEC platforms with Teranium and Dr...
 
Mellanox Approach to NFV & SDN
Mellanox Approach to NFV & SDNMellanox Approach to NFV & SDN
Mellanox Approach to NFV & SDN
 
Branching out with SDN
Branching out with SDNBranching out with SDN
Branching out with SDN
 
09 (IDNOG02) Services SDN & NFV Delivering more with less by Mochammad Irzan
09 (IDNOG02) Services SDN & NFV Delivering more with less by Mochammad Irzan09 (IDNOG02) Services SDN & NFV Delivering more with less by Mochammad Irzan
09 (IDNOG02) Services SDN & NFV Delivering more with less by Mochammad Irzan
 
OpenStack MeetUp - OpenContrail Presentation
OpenStack MeetUp - OpenContrail PresentationOpenStack MeetUp - OpenContrail Presentation
OpenStack MeetUp - OpenContrail Presentation
 
Summit 16: How to Compose a New OPNFV Solution Stack?
Summit 16: How to Compose a New OPNFV Solution Stack?Summit 16: How to Compose a New OPNFV Solution Stack?
Summit 16: How to Compose a New OPNFV Solution Stack?
 
VPN - Virtual Private Network
VPN - Virtual Private NetworkVPN - Virtual Private Network
VPN - Virtual Private Network
 
Pristine rina-sdk-icc-2016
Pristine rina-sdk-icc-2016Pristine rina-sdk-icc-2016
Pristine rina-sdk-icc-2016
 
Osnug meetup-tungsten fabric - overview.pptx
Osnug meetup-tungsten fabric - overview.pptxOsnug meetup-tungsten fabric - overview.pptx
Osnug meetup-tungsten fabric - overview.pptx
 
Challenges of L2 NID Based Architecture for vCPE and NFV Deployment
Challenges of L2 NID Based Architecture for vCPE and NFV Deployment Challenges of L2 NID Based Architecture for vCPE and NFV Deployment
Challenges of L2 NID Based Architecture for vCPE and NFV Deployment
 
Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...
Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...
Tech Talk by John Casey (CTO) CPLANE_NETWORKS : High Performance OpenStack Ne...
 
Simplify Networking for Containers
Simplify Networking for ContainersSimplify Networking for Containers
Simplify Networking for Containers
 
PLNOG14: Evolved Programmable Network, architektura dla sieci operatorskich -...
PLNOG14: Evolved Programmable Network, architektura dla sieci operatorskich -...PLNOG14: Evolved Programmable Network, architektura dla sieci operatorskich -...
PLNOG14: Evolved Programmable Network, architektura dla sieci operatorskich -...
 
PLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDNPLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDN
 
Opencontrail network virtualization
Opencontrail network virtualizationOpencontrail network virtualization
Opencontrail network virtualization
 
Colt SD-WAN experience learnings and future plans
Colt SD-WAN experience learnings and future plansColt SD-WAN experience learnings and future plans
Colt SD-WAN experience learnings and future plans
 
OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....
OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....
OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....
 
Software Innovations and Control Plane Evolution in the new SDN Transport Arc...
Software Innovations and Control Plane Evolution in the new SDN Transport Arc...Software Innovations and Control Plane Evolution in the new SDN Transport Arc...
Software Innovations and Control Plane Evolution in the new SDN Transport Arc...
 

Recently uploaded

Recommendation System using RAG Architecture
Recommendation System using RAG ArchitectureRecommendation System using RAG Architecture
Recommendation System using RAG Architecture
fredae14
 
WeTestAthens: Postman's AI & Automation Techniques
WeTestAthens: Postman's AI & Automation TechniquesWeTestAthens: Postman's AI & Automation Techniques
WeTestAthens: Postman's AI & Automation Techniques
Postman
 
5th LF Energy Power Grid Model Meet-up Slides
5th LF Energy Power Grid Model Meet-up Slides5th LF Energy Power Grid Model Meet-up Slides
5th LF Energy Power Grid Model Meet-up Slides
DanBrown980551
 
Choosing The Best AWS Service For Your Website + API.pptx
Choosing The Best AWS Service For Your Website + API.pptxChoosing The Best AWS Service For Your Website + API.pptx
Choosing The Best AWS Service For Your Website + API.pptx
Brandon Minnick, MBA
 
Skybuffer AI: Advanced Conversational and Generative AI Solution on SAP Busin...
Skybuffer AI: Advanced Conversational and Generative AI Solution on SAP Busin...Skybuffer AI: Advanced Conversational and Generative AI Solution on SAP Busin...
Skybuffer AI: Advanced Conversational and Generative AI Solution on SAP Busin...
Tatiana Kojar
 
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
Jeffrey Haguewood
 
A Comprehensive Guide to DeFi Development Services in 2024
A Comprehensive Guide to DeFi Development Services in 2024A Comprehensive Guide to DeFi Development Services in 2024
A Comprehensive Guide to DeFi Development Services in 2024
Intelisync
 
Presentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of GermanyPresentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of Germany
innovationoecd
 
Columbus Data & Analytics Wednesdays - June 2024
Columbus Data & Analytics Wednesdays - June 2024Columbus Data & Analytics Wednesdays - June 2024
Columbus Data & Analytics Wednesdays - June 2024
Jason Packer
 
Trusted Execution Environment for Decentralized Process Mining
Trusted Execution Environment for Decentralized Process MiningTrusted Execution Environment for Decentralized Process Mining
Trusted Execution Environment for Decentralized Process Mining
LucaBarbaro3
 
Operating System Used by Users in day-to-day life.pptx
Operating System Used by Users in day-to-day life.pptxOperating System Used by Users in day-to-day life.pptx
Operating System Used by Users in day-to-day life.pptx
Pravash Chandra Das
 
Nordic Marketo Engage User Group_June 13_ 2024.pptx
Nordic Marketo Engage User Group_June 13_ 2024.pptxNordic Marketo Engage User Group_June 13_ 2024.pptx
Nordic Marketo Engage User Group_June 13_ 2024.pptx
MichaelKnudsen27
 
Driving Business Innovation: Latest Generative AI Advancements & Success Story
Driving Business Innovation: Latest Generative AI Advancements & Success StoryDriving Business Innovation: Latest Generative AI Advancements & Success Story
Driving Business Innovation: Latest Generative AI Advancements & Success Story
Safe Software
 
Finale of the Year: Apply for Next One!
Finale of the Year: Apply for Next One!Finale of the Year: Apply for Next One!
Finale of the Year: Apply for Next One!
GDSC PJATK
 
Monitoring and Managing Anomaly Detection on OpenShift.pdf
Monitoring and Managing Anomaly Detection on OpenShift.pdfMonitoring and Managing Anomaly Detection on OpenShift.pdf
Monitoring and Managing Anomaly Detection on OpenShift.pdf
Tosin Akinosho
 
System Design Case Study: Building a Scalable E-Commerce Platform - Hiike
System Design Case Study: Building a Scalable E-Commerce Platform - HiikeSystem Design Case Study: Building a Scalable E-Commerce Platform - Hiike
System Design Case Study: Building a Scalable E-Commerce Platform - Hiike
Hiike
 
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
alexjohnson7307
 
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
saastr
 
Building Production Ready Search Pipelines with Spark and Milvus
Building Production Ready Search Pipelines with Spark and MilvusBuilding Production Ready Search Pipelines with Spark and Milvus
Building Production Ready Search Pipelines with Spark and Milvus
Zilliz
 
Letter and Document Automation for Bonterra Impact Management (fka Social Sol...
Letter and Document Automation for Bonterra Impact Management (fka Social Sol...Letter and Document Automation for Bonterra Impact Management (fka Social Sol...
Letter and Document Automation for Bonterra Impact Management (fka Social Sol...
Jeffrey Haguewood
 

Recently uploaded (20)

Recommendation System using RAG Architecture
Recommendation System using RAG ArchitectureRecommendation System using RAG Architecture
Recommendation System using RAG Architecture
 
WeTestAthens: Postman's AI & Automation Techniques
WeTestAthens: Postman's AI & Automation TechniquesWeTestAthens: Postman's AI & Automation Techniques
WeTestAthens: Postman's AI & Automation Techniques
 
5th LF Energy Power Grid Model Meet-up Slides
5th LF Energy Power Grid Model Meet-up Slides5th LF Energy Power Grid Model Meet-up Slides
5th LF Energy Power Grid Model Meet-up Slides
 
Choosing The Best AWS Service For Your Website + API.pptx
Choosing The Best AWS Service For Your Website + API.pptxChoosing The Best AWS Service For Your Website + API.pptx
Choosing The Best AWS Service For Your Website + API.pptx
 
Skybuffer AI: Advanced Conversational and Generative AI Solution on SAP Busin...
Skybuffer AI: Advanced Conversational and Generative AI Solution on SAP Busin...Skybuffer AI: Advanced Conversational and Generative AI Solution on SAP Busin...
Skybuffer AI: Advanced Conversational and Generative AI Solution on SAP Busin...
 
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
 
A Comprehensive Guide to DeFi Development Services in 2024
A Comprehensive Guide to DeFi Development Services in 2024A Comprehensive Guide to DeFi Development Services in 2024
A Comprehensive Guide to DeFi Development Services in 2024
 
Presentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of GermanyPresentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of Germany
 
Columbus Data & Analytics Wednesdays - June 2024
Columbus Data & Analytics Wednesdays - June 2024Columbus Data & Analytics Wednesdays - June 2024
Columbus Data & Analytics Wednesdays - June 2024
 
Trusted Execution Environment for Decentralized Process Mining
Trusted Execution Environment for Decentralized Process MiningTrusted Execution Environment for Decentralized Process Mining
Trusted Execution Environment for Decentralized Process Mining
 
Operating System Used by Users in day-to-day life.pptx
Operating System Used by Users in day-to-day life.pptxOperating System Used by Users in day-to-day life.pptx
Operating System Used by Users in day-to-day life.pptx
 
Nordic Marketo Engage User Group_June 13_ 2024.pptx
Nordic Marketo Engage User Group_June 13_ 2024.pptxNordic Marketo Engage User Group_June 13_ 2024.pptx
Nordic Marketo Engage User Group_June 13_ 2024.pptx
 
Driving Business Innovation: Latest Generative AI Advancements & Success Story
Driving Business Innovation: Latest Generative AI Advancements & Success StoryDriving Business Innovation: Latest Generative AI Advancements & Success Story
Driving Business Innovation: Latest Generative AI Advancements & Success Story
 
Finale of the Year: Apply for Next One!
Finale of the Year: Apply for Next One!Finale of the Year: Apply for Next One!
Finale of the Year: Apply for Next One!
 
Monitoring and Managing Anomaly Detection on OpenShift.pdf
Monitoring and Managing Anomaly Detection on OpenShift.pdfMonitoring and Managing Anomaly Detection on OpenShift.pdf
Monitoring and Managing Anomaly Detection on OpenShift.pdf
 
System Design Case Study: Building a Scalable E-Commerce Platform - Hiike
System Design Case Study: Building a Scalable E-Commerce Platform - HiikeSystem Design Case Study: Building a Scalable E-Commerce Platform - Hiike
System Design Case Study: Building a Scalable E-Commerce Platform - Hiike
 
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
 
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
 
Building Production Ready Search Pipelines with Spark and Milvus
Building Production Ready Search Pipelines with Spark and MilvusBuilding Production Ready Search Pipelines with Spark and Milvus
Building Production Ready Search Pipelines with Spark and Milvus
 
Letter and Document Automation for Bonterra Impact Management (fka Social Sol...
Letter and Document Automation for Bonterra Impact Management (fka Social Sol...Letter and Document Automation for Bonterra Impact Management (fka Social Sol...
Letter and Document Automation for Bonterra Impact Management (fka Social Sol...
 

Interconnecting Neutron and Network Operators' BGP VPNs

  • 1. INTERCONNECTING NEUTRON AND NETWORK OPERATORS' BGP VPNS Paul Carver Tim Irnich Thomas Morin
  • 2. TELCO STUFF AHEAD, DON’T BE AFRAID
  • 3. WHAT ARE BGP VPNS ? FIRST, WHAT THEY ARE NOT…  No encryption  ‘P’ stands for ‘Private’: think Private Addressing  (one can obviously add encryption over a BGP VPN, just like over any IP network)  Isolation is…  not managed by customers  managed by the operator of the shared physical network  Hence: not like IPSec or SSL VPNs
  • 4. WHAT ARE BGP VPNS ? BASE PRINCIPLES OF BGP/MPLS VPNS (SIMPLIFIED)  use MPLS to isolate the traffic of different VPNs on the wire  MPLS here: an encapsulation layer stacked onto IP packets of a VPN  MPLS “label” : dataplane field used for isolation:  use the BGP routing protocol to indicate where/how to send packets  advertise routes: “10.11.0.0/16 in VPN 888:42 is reachable via router X using MPLS Label N”  VPN “identifiers”: “Route Target” (e.g. 888:42)  (calling them ‘identifier’ is very simplified, much more flexibility)  only present in the control plane!  initially for L3VPNs, extended for L2/Ethernet (in particular E-VPN)  later extended to other encaps: MPLS/GRE, MPLS/UDP, VXLAN  the reason to use “BGP VPNs” rather than “BGP/MPLS VPNs”
  • 5. WHAT ARE BGP VPNS ? “OLD”, PROVEN, INTEROPERABLE AND VERY SCALABLE  Late 90’s, then incremental protocol improvements since  Lot’s of deployments  Very interoperable  IETF RFCs  starting point references: RFC4364, RFC 7432  multi-vendor deployments common place  How scalable ?  some BGP/MPLS deployment serve millions of VPN sites  toolbox of established practices and protocol extensions to improve scaling
  • 6. WHAT ARE BGP VPNS ? WHAT ARE THEY USED FOR ?  In the past 15+ years: business customers VPNs (e.g. replace leased lines, Frame Relay, etc.)  Later in the 2000’s: increasing use in converged IP/MPLS backbones (e.g. carry services for triple play)  Cloud inter-DC  Interconnect for NFV platforms  between NFV POPs  between NFV platforms and service BGP VPNs Today, all these need to be interconnected with OpenStack OpenStack as the elected IaaS foundation for NFV
  • 7. WHAT IS THE NEED ?  Admin-only API to control the technical details  “VPN Foo of tenant Lambda will use Route Target 13879:11, etc.”  Tenant API to let tenant choose what  “I want to interconnect Neutron network 11e304ec-5b67-4980- aa57-da10d0f057a6 with my VPN Foo”  Actual implementation is automated, need to accommodate different solutions that automate differently The networking-bgpvpn Neutron Stadium project was created to address this need (June 2015)
  • 8. NEW API RESOURCES (already existing API resources) Network X Router Ysome user in “Project Lambda” Openstack Admin Network Associationcreates associations to setup interconnections BGP VPN “default VPN” Type: L3 BGP Route-Target: 1234:42 Tenant: Project Lambda Router Association creates a BGPVPN and gives it to “Project Lambda”
  • 9. NEUTRON BGP VPN INTERCONNECTIONS SERVICE PLUGIN OVERVIEW Neutron BGP Peers dataplane (vswitch/ vrouter) VMs… … Backend X (e.g. Neutron+Bagpipe, OpenDaylight, OpenContrail, Nuage, etc.)API BGPVPN Service Plugin   packets carried over MPLS to/from VPNs  BGP VPN routes   driver for X… ?
  • 10. Neutron SDN Controller BGP Peers driver for backend X packets carried over MPLS to/from VPNs API BGPVPN Service Plugin   REST BGP VPN routes   HOW IT WORKS WITH AN SDN CONTROLLER… E.G. OPENDAYLIGHT, OPENCONTRAIL, NUAGE NETWORKS, ETC. driver for SDN Controller X compute node VMs VMs compute node VMs VMs vswitch vswitch  NBI BGP SBI
  • 11. Rabbit MQ HOW IT WORKS WITH NEUTRON OVS + BAGPIPE … Neutron compute node BGP Peers …VMs … API BGPVPN Service Plugin  OpenVSwitch br-int | br-tun | br-mpls packets carried over MPLS towards VPNs  Neutron OVS agent BGP VPN routes    bagpipe -bgp bagpipe driver ML2 as Core Plugin openvswitch mech driver bagpipe extension
  • 12. DEMO TIME!  Starting point  an Openstack cloud  peering with BGP/MPLS routers  pre-existing VPNs in the WAN for customers Red and Blue  Platform: devstack VM using ovs/bagpipe driver, lab router (VM), VPN site (VM)  Let’s let tenant Red interconnect an Openstack VM and its VPN, and test the result from a VPN site DC network control / compute (devstack) VM (tenant ‘Blue’) … VM (tenant ‘Red’) 192.168.10.x IP/MPLS WAN BGP/MPLS provider edge router BGP/MPLS border routers BGP/MPLS provider edge ‘lab-router’ MPLS encapsulation lnx02 test box 192.168.177.102
  • 13. INTEGRATION IN NEUTRON & OPENSTACK networking-bgpvpn leverages drivers/plugin hooks to integrate with other components:  Neutron  extension API hooks, service plugin and driver loading  for ovs-bagpipe driver:  registry callbacks  an L2 agent extension  increasing use of neutron-lib  CLI  an entrypoint for the neutronclient extension (CLI part currently being ported to OSC)  Heat plugin  Tempest plugin  Horizon plugin  OpenStack CI hooks for test job configuration collaboration with Neutron devs to bring improvements or fixes An hospitable enough environment  Other Neutron projects to take inspiration from
  • 14. TRYING TO BE A GOOD STADIUM PROJECT  A significant effort is required to match the expectations raised for Neutron Stadium projects  in particular getting everything ready on CI testing  Downside: less features in last cycle  But pushes/forces us in the right direction
  • 15. OPENSTACK NET’-BGPVPN AND OPNFV SDNVPN  OPNFV: a mid-stream integration project providing automated install of all required components for a given use case, as well as E2E testing • BGPVPN is such a use case • Gives upstream projects additional visibility if their changes break something at system level (i.e. when multiple components interplay)  The OPNFV SDNVPN project aims at integrating a complete stack for BGPVPNs • focusing on cases where an SDN controller is used • a BaGPipe scenario is planned as well • Integration with installers: Fuel (Mirantis) and TripleO/Apex (RedHat) • Provides deployment scenarios derived from odl_l3, both HA and non-HA
  • 16. WRAP UP  One API allowing tenants to control interconnections with their BGP VPNs • Public/operator cloud <-> business customers of MPLS VPN offers • inter-DC, distributed cloud, edge cloud • NFV multi-POP deployments  Drivers for several SDN controllers and a Neutron driver  CLI interface, Horizon GUI, and Heat bindings  Now / Soon / On the radar: • complete E-VPN part of API • remaining work to match Neutron Stadium requirements (e.g. more functional testing!) • API evolution for finer-grained control of routing (static routes, preferences, route leaking) • consider supporting multiple drivers/backends simultaneously • see MPLS/GRE support land in OpenVSwitch (next MPLS/UDP!) • expectations of improved feature parity among drivers  a Neutron’s Stadium project working hand in hand with OPNFV OpenStack / OPNFV contributors around BGP VPN… Antoine Eiche Bruno Fernando Édouard Thuleau Cédric Savignan Daniel Radez Darek Smiegel Henry Gessau Jean-Philipe Braun Mathieu Rohon Michal Skalski Nikolas Hermanns Nishant Kumar Paul Carver Peter V. Saveliev Pierre Crégut R. R. Palleti Suresh K. Tim Irnich Tim Rozet Thomas Monguillon Thomas Morin Vishal Thapar Wim De Clercq Yannick Thomas