OpenStack Neutron Advanced Services by Akanda

•

2 likes•615 views

Sean Roberts, VP Development Akanda, gave this talk on 03 September 2015 at the HP Sunnyvale offices. This talk goes into detail of how Akanda delivers OpenStack Neutron Advanced Services. Event details can be found here http://www.meetup.com/openstack/events/215648162/

Technology

About Me
• Sean Roberts
• VP Development at
Akanda Inc
• Former OpenStack
Board Director
• Past Yahoo,
VMware, Stanford,
and Genentech

Where Are We Headed Today?
OpenStack Neutron Networking Basics
Advanced Services:
LBaaS, VPNaaS, FWaaS
Neutron: Liberty and Beyond

OSI Model
Physical Layer
Data Link Layer
Network Layer
Transport Layer
Session Layer
Presentation Layer
Application Layer
1
2
3
4
5
6
7
TCP, UDP
IPv4,IPv6, ICMP
HTTP, DNS, etc
ARP, Ethernet,
VLAN

Akanda Project
Architecture
Akanda
Management/
Orchestration Physical Network (L2)
Nova
Neutron
Open:OVS/LinuxBridge Proprietary
Akanda L2 Agnostic Overlay Support
Akanda Adv Services: Routing/LB/FW
OpenStack APIs

Reference Neutron
neutron-server
Database
L3 Agent
L3 Agent
L3 Agent
Advanced
Service
Advanced
Service
Advanced
Services
Message
Queue
DHCP Agent
DHCP Agent
DHCP Agent
L2 Agent
L2 Agent
L2 Agent
L2 Agent
L2 Agents

neutron-server
REST API
SERVICE
RPC
SERVICE
PLUGIN

Plugin Extensions
● Add logical resources to the REST API
● Discovered by server at startup
○ REST: /v2.0/extensions
● Common Extensions
○ Port binding extended attributes,
DHCP, L3, Provider, Quota, Security
Group

2 Types of Plugins
Monolithic
Plugin
Mech Mgr
Modular Plugin
Type Mgr

Monolithic Plugin
Typical among SDN
vendors
They come in two varieties:
● Proxy
● Direct control
PLUGIN

Modular Plugin
Delegates calls to proper
drivers
Two kinds of drivers
● Type Driver
● Mechanism Driver
Mech Mgr
PLUGIN
Type Mgr

IsolationVLAN
• 802.1Q
• limited
• underlay must
support
GRE/VXLAN
• L2 encapsulated in
L3
• routable
• overlay independence

Reference
Implementation
Load Balancing as a Service
HAProxy
Octavia Project
http://octavia.io

VPN as a Service
OpenSwan
Router
Metadata Proxy
VPN Driver
● Reference implementation
uses OpenSwan
● Site-to-Site
● Multiple connections per
tenant
● IKE, IPSec

Firewall as a Service
• Reference Implementation is
Currently Experimental and
not production ready
• Whats next?
L3 Agent
Router
Metadata Proxy
Firewall Driver

What is Akanda
● Akanda is a multi-process, multi-
threaded Neutron advanced
services orchestration service
● It currently supports routers and
in the near future, load
balancers, VPNs and firewalls

Core Akanda Principles
● Simple
● Compatible
● Open Development (Apache v2)

Neutron + the Rug
L2 Agent
L2 Agent
L2 Agent
L2 Agent
L2 Agent
Message
Queue
L3 Agent
L3 AgentService
Instance
neutron-server
Database
Akanda
(the rug)

Router Instance Lifecycle
● Router per tenant distributed throughout
the cluster
● The router controls the data flow at layer
3 level of the TCP/IP network stack

Akanda Project Details
● Get the source: https://github.
com/stackforge/akanda
● Project status and tarballs: https:
//launchpad.net/akanda
● Documentation: http://docs.akanda.io
● IRC - #akanda on freenode.net

OpenStack’s Big Tent
● Open Design
● Open Development
● Open Community
● Open Source

The Neutron Stadium
● Common Forum
● Improved
Consistency
● Shared
Governance

Neutron: Liberty
● IPAM
● BGP Speaker
● NFV
Enhancements
● Service Function
Chaining
● Enhanced
Security Groups
● Paying Down
Technical Debt Canadian2006 - Liberty, Saskatchewan (CC-by-sa-3.0)
commons.wikimedia.org/w/index.php?title=User:Canadian2006&action=edit&redlink=1

David Lenwell from Akanda will briefly recap basic Neutron topics around network architecture and common features such as security groups, plugins and agents, then dive in deeper, focusing on advanced services such as Routing and Load Balancing. We will then drill down into typical service provider network designs and the specific technologies in use such as Linuxbridge. We will discuss the Neutron Advanced Services driver model and how it can be useful to Service Providers (and Enterprises) based on our team's experience powering DreamCompute’s networking capabilities using Akanda. We will review Akanda, an open source suite of software, services, orchestration, and tools for providing L3+ services in OpenStack that builds on top of Linux and OpenStack Neutron. Using Akanda, an OpenStack provider can provide tenants with a rich, powerful set of L3+ services. Finally, we will provide an update on the latest discussions heading into Tokyo such as the status of LBaaS, FWaaS as well as the newer Neutron projects such as L2 Gateway, the Neutron Stadium effort and the new Lieutenant system.

Neutron high availability open stack architecture openstack israel event 2015

Arthur Berezin

Navigating OpenStack Networking

PLUMgrid

Openstack Neutron and SDNinakipascual

Neutron behind the scenes

inbroker

Introduction to Openstack Network

salv_orlando

How to write a Neutron Plugin - if you really need to

salv_orlando

These are slides from the OpenSTack Meeting in Boston on Marck 18, 2015. The session led by Fernando Sanchez - Principal Systems Engineer, at PLUMgrid. In this talk, Fernando discussed OpenStack architecture with a particular focus on networking. We’ll cover some important considerations for networking in your OpenStack cloud, provide a look at common terminology, and discuss how Open Networking Suite works with OpenStack to alleviate networking challenges.

ONUG Tutorial: Bridges and Tunnels Drive Through OpenStack Networking

markmcclain

OpenStack Neutron behind the Scenes

Anil Bidari ( CEO , Cloud Enabled)

High Availability in Neutron

Rossella Sblendido

OpenStack Neutron Havana Overview - Oct 2013

Edgar Magana

Can you trust Neutron?

salv_orlando

Inside Architecture of Neutron

markmcclain

OpenStack and the Transformation of the Data Center - Lew Tucker

Lew Tucker

From Nova-Network to Neutron and Beyond: A Look at OpenStack Networking

Cynthia Thomas

Simplifying the OpenStack and Kubernetes network stack with Romana

Juergen Brendel

Inside neutron 2Robin Gong

Opening of Cloud Native Taiwan User Group Meetup#2

HungWei Chiu

Quantum (OpenStack Meetup Feb 9th, 2012)

Dan Wendlandt

Quantum - The Network Mechanics

Kiran Murari

OpenStack Quantumopenstackindia

What's hot

Quantum - Virtual networks for Openstack

salv_orlando

Networking in OpenStack for non-networking people: Neutron, Open vSwitch and ...Dave Neary

Openstack Basic with NeutronKwonSun Bae

OpenStack Astara

Kiran Murari

OpenStack Networking and Automation

Adam Johnson

Open stack networking_101_update_2014

yfauser

OpenStack networking (Neutron)

CREATE-NET

OpenStack networking - Neutron deep dive with PLUMgrid

Kamesh Pemmaraju

ONUG Tutorial: Bridges and Tunnels Drive Through OpenStack Networking

markmcclain

OpenStack Neutron behind the Scenes

Anil Bidari ( CEO , Cloud Enabled)

High Availability in Neutron

Rossella Sblendido

OpenStack Neutron Havana Overview - Oct 2013

Edgar Magana

Can you trust Neutron?

salv_orlando

Inside Architecture of Neutron

markmcclain

OpenStack and the Transformation of the Data Center - Lew Tucker

Lew Tucker

From Nova-Network to Neutron and Beyond: A Look at OpenStack Networking

Cynthia Thomas

Simplifying the OpenStack and Kubernetes network stack with Romana

Juergen Brendel

Inside neutron 2Robin Gong

Opening of Cloud Native Taiwan User Group Meetup#2

HungWei Chiu

Quantum (OpenStack Meetup Feb 9th, 2012)

Dan Wendlandt

What's hot (20)

Quantum - Virtual networks for Openstack

Networking in OpenStack for non-networking people: Neutron, Open vSwitch and ...

Openstack Basic with Neutron

OpenStack Astara

OpenStack Networking and Automation

Open stack networking_101_update_2014

OpenStack networking (Neutron)

OpenStack networking - Neutron deep dive with PLUMgrid

ONUG Tutorial: Bridges and Tunnels Drive Through OpenStack Networking

OpenStack Neutron behind the Scenes

High Availability in Neutron

OpenStack Neutron Havana Overview - Oct 2013

Can you trust Neutron?

Inside Architecture of Neutron

OpenStack and the Transformation of the Data Center - Lew Tucker

From Nova-Network to Neutron and Beyond: A Look at OpenStack Networking

Simplifying the OpenStack and Kubernetes network stack with Romana

Inside neutron 2

Opening of Cloud Native Taiwan User Group Meetup#2

Quantum (OpenStack Meetup Feb 9th, 2012)

Similar to OpenStack Neutron Advanced Services by Akanda

Quantum - The Network Mechanics

Kiran Murari

OpenStack Quantumopenstackindia

neutron_icehouse_update

Akihiro Motoki

NaaS in OpenStack - CloudCamp MoscowIlya Alekseyev

Midokura OpenStack Meetup Taipei

Dan Mihai Dumitriu

[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...

OpenStack Korea Community

Bridges and Tunnels: A Drive Through OpenStack Networking

markmcclain

CloudKC: Evolution of Network Virtualization

Cynthia Thomas

Yechielthur1100red hat-cloud-infrastructure-networking-deep-dive-140417165107...Công TÔ

Networking in Openstack - Neutron 101

Mochamad Taufik Romdony

OpenStack: Networking Roadmap, Collaboration and Contribution

Open Networking Summit

Agile Networking with OpenStack

openstackcisco

OpenStack 2012 fall summit observation - Quantum/SDNTe-Yen Liu

Livnat Peer & Arthur Berezin, Red Hat - Neutron High Availability - OpenStack...

Cloud Native Day Tel Aviv

Nvp deep dive_session_cee-dayyfauser

Big mountain data and dev conference apache pulsar with mqtt for edge compu...

Timothy Spann

State of the OpenDaylight Union

Open Networking Summit

Lisa Caywood and Colin Dixon's presentation at the 2017 Open Networking Summit. OpenDaylight has become a nexus for open source integration, creating a new open networking stack and enabling a new generation of open source, agile IT infrastructure. The fifth “Boron” release provides new tooling and documentation to support application developers, as well as greater integration with industry frameworks from OPNFV and OpenStack to CORD and Atrium. Boron also brings a practical focus on two leading types of deployments: (1) direct control of virtual switches to provide network virtualization and NFV and (2) management and orchestration of existing networks to provide new features and automation. This talk will cover trends in open SDN and cloud networking, with a focus on Boron milestones. In particular, it dives into the architecture across OpenStack and OpenDaylight to enable OpenStack service function chaining support in OpenDaylight.

OpenStack and OpenDaylight Workshop: ONUG Spring 2014

mestery

Dreamhost deploying dreamcompute at scale

Cumulus Networks

Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...

Dan Mihai Dumitriu

OpenStack deployments for public or private clouds require overlay networking. Due to the scale and rate of change of virtual resources, it isn't practical to rely on traditional network constructs and isolation mechanims. Today's deployments require performance, resilience, and high availability to be considered truly production-ready. In this session, we deep dive into the MidoNet architecture, and process of sending a data packet across an OpenStack environment through a network overlay. A distributed architecture implements logical constructs that are used to build networks without a single point of failure, all while adding network functionality in a highly-scalable manner. Network functions are applied in a single virtual hop. By applying network services right at the ingress host, the network is free from unnecessary clogging and bottlenecks by avoiding additional hops. Packets reach their destination more efficiently with the single virtual hop. After this session, the audience will understand how distributed architectures allow efficient networking with routing decisions and network services applied at the edge. Also, the audience will understand how it is easier to scale clouds when the network intelligence is distributed.

Similar to OpenStack Neutron Advanced Services by Akanda (20)

Quantum - The Network Mechanics

OpenStack Quantum

neutron_icehouse_update

NaaS in OpenStack - CloudCamp Moscow

Midokura OpenStack Meetup Taipei

[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...

Bridges and Tunnels: A Drive Through OpenStack Networking

CloudKC: Evolution of Network Virtualization

Yechielthur1100red hat-cloud-infrastructure-networking-deep-dive-140417165107...

Networking in Openstack - Neutron 101

OpenStack: Networking Roadmap, Collaboration and Contribution

Agile Networking with OpenStack

OpenStack 2012 fall summit observation - Quantum/SDN

Livnat Peer & Arthur Berezin, Red Hat - Neutron High Availability - OpenStack...

Nvp deep dive_session_cee-day

Big mountain data and dev conference apache pulsar with mqtt for edge compu...

State of the OpenDaylight Union

OpenStack and OpenDaylight Workshop: ONUG Spring 2014

Dreamhost deploying dreamcompute at scale

Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...

Recently uploaded

Transcript: Selling digital books in 2024: Insights from industry leaders - T...

BookNet Canada

The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more. Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/ Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.

Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...

Ramesh Iyer

In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.

FIDO Alliance Osaka Seminar: Overview.pdf

FIDO Alliance

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

FIDO Alliance

The Art of the Pitch: WordPress Relationships and Sales

Laura Byrne

Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes? All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf

FIDO Alliance

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

James Anderson

Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management. The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM). Speakers: Bob Boule Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle. Gopinath Rebala Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.

Leading Change strategies and insights for effective change management pdf 1.pdf

OnBoard

Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...

Thierry Lestable

JMeter webinar - integration with InfluxDB and Grafana

RTTS

Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application. In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics. Length: 30 minutes Session Overview ------------------------------------------- During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana: - What out-of-the-box solutions are available for real-time monitoring JMeter tests? - What are the benefits of integrating InfluxDB and Grafana into the load testing stack? - Which features are provided by Grafana? - Demonstration of InfluxDB and Grafana using a practice web application To view the webinar recording, go to: https://www.rttsweb.com/jmeter-integration-webinar

Generating a custom Ruby SDK for your web service or Rails API using Smithy

g2nightmarescribd

Have you ever wanted a Ruby client API to communicate with your web service? Smithy is a protocol-agnostic language for defining services and SDKs. Smithy Ruby is an implementation of Smithy that generates a Ruby SDK using a Smithy model. In this talk, we will explore Smithy and Smithy Ruby to learn how to generate custom feature-rich SDKs that can communicate with any web service, such as a Rails JSON API.

Elevating Tactical DDD Patterns Through Object Calisthenics

Dorra BARTAGUIZ

After immersing yourself in the blue book and its red counterpart, attending DDD-focused conferences, and applying tactical patterns, you're left with a crucial question: How do I ensure my design is effective? Tactical patterns within Domain-Driven Design (DDD) serve as guiding principles for creating clear and manageable domain models. However, achieving success with these patterns requires additional guidance. Interestingly, we've observed that a set of constraints initially designed for training purposes remarkably aligns with effective pattern implementation, offering a more ‘mechanical’ approach. Let's explore together how Object Calisthenics can elevate the design of your tactical DDD patterns, offering concrete help for those venturing into DDD for the first time!

From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...

Product School

GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...

Sri Ambati

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

Product School

The Future of Platform Engineering

Jemma Hussein Allen

Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...

Jeffrey Haguewood

Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows. We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases. This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams. Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.

Accelerate your Kubernetes clusters with Varnish Caching

Thijs Feryn

Mission to Decommission: Importance of Decommissioning Products to Increase E...

Product School

Essentials of Automations: Optimizing FME Workflows with Parameters

Safe Software

Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place. Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects. Here’s what you’ll gain: - Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows. - Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy. - Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency. - Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity. We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic. Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.

Recently uploaded (20)

Transcript: Selling digital books in 2024: Insights from industry leaders - T...

Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...

FIDO Alliance Osaka Seminar: Overview.pdf

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

The Art of the Pitch: WordPress Relationships and Sales

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

Leading Change strategies and insights for effective change management pdf 1.pdf

Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...

JMeter webinar - integration with InfluxDB and Grafana

Generating a custom Ruby SDK for your web service or Rails API using Smithy

Elevating Tactical DDD Patterns Through Object Calisthenics

From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...

GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

The Future of Platform Engineering

Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...

Accelerate your Kubernetes clusters with Varnish Caching

Mission to Decommission: Importance of Decommissioning Products to Increase E...

Essentials of Automations: Optimizing FME Workflows with Parameters

OpenStack Neutron Advanced Services by Akanda

1. Neutron Advanced Services

2. About Me • Sean Roberts • VP Development at Akanda Inc • Former OpenStack Board Director • Past Yahoo, VMware, Stanford, and Genentech

3. Where Are We Headed Today? OpenStack Neutron Networking Basics Advanced Services: LBaaS, VPNaaS, FWaaS Neutron: Liberty and Beyond

4. OpenStack Neutron Networking Basics

5. OSI Model Physical Layer Data Link Layer Network Layer Transport Layer Session Layer Presentation Layer Application Layer 1 2 3 4 5 6 7 TCP, UDP IPv4,IPv6, ICMP HTTP, DNS, etc ARP, Ethernet, VLAN

6. Akanda Project Architecture Akanda Management/ Orchestration Physical Network (L2) Nova Neutron Open:OVS/LinuxBridge Proprietary Akanda L2 Agnostic Overlay Support Akanda Adv Services: Routing/LB/FW OpenStack APIs

7. OpenStack

8. Neutron

9. Reference Neutron neutron-server Database L3 Agent L3 Agent L3 Agent Advanced Service Advanced Service Advanced Services Message Queue DHCP Agent DHCP Agent DHCP Agent L2 Agent L2 Agent L2 Agent L2 Agent L2 Agents

10. neutron-server REST API SERVICE RPC SERVICE PLUGIN

11. Plugin Extensions ● Add logical resources to the REST API ● Discovered by server at startup ○ REST: /v2.0/extensions ● Common Extensions ○ Port binding extended attributes, DHCP, L3, Provider, Quota, Security Group

12. 2 Types of Plugins Monolithic Plugin Mech Mgr Modular Plugin Type Mgr

13. Monolithic Plugin Typical among SDN vendors They come in two varieties: ● Proxy ● Direct control PLUGIN

14. Modular Plugin Delegates calls to proper drivers Two kinds of drivers ● Type Driver ● Mechanism Driver Mech Mgr PLUGIN Type Mgr

15. Why Not Flat?

16. IsolationVLAN • 802.1Q • limited • underlay must support GRE/VXLAN • L2 encapsulated in L3 • routable • overlay independence

17. Tunneling A D CB

18. Neutron Advanced Services

19. Reference Implementation Load Balancing as a Service HAProxy Octavia Project http://octavia.io

20. VPN as a Service OpenSwan Router Metadata Proxy VPN Driver ● Reference implementation uses OpenSwan ● Site-to-Site ● Multiple connections per tenant ● IKE, IPSec

21. Firewall as a Service • Reference Implementation is Currently Experimental and not production ready • Whats next? L3 Agent Router Metadata Proxy Firewall Driver

22. Akanda

23. What is Akanda ● Akanda is a multi-process, multi- threaded Neutron advanced services orchestration service ● It currently supports routers and in the near future, load balancers, VPNs and firewalls

24. Core Akanda Principles ● Simple ● Compatible ● Open Development (Apache v2)

25. The Rug really tied the room together

26. Reference Neutron neutron-server Database L3 Agent L3 Agent L3 Agent Advanced Service Advanced Service Advanced Services Message Queue DHCP Agent DHCP Agent DHCP Agent L2 Agent L2 Agent L2 Agent L2 Agent L2 Agents

27. Neutron + the Rug L2 Agent L2 Agent L2 Agent L2 Agent L2 Agent Message Queue L3 Agent L3 AgentService Instance neutron-server Database Akanda (the rug)

28. Router Instance Lifecycle ● Router per tenant distributed throughout the cluster ● The router controls the data flow at layer 3 level of the TCP/IP network stack

29.

30.

31. Akanda Project Details ● Get the source: https://github. com/stackforge/akanda ● Project status and tarballs: https: //launchpad.net/akanda ● Documentation: http://docs.akanda.io ● IRC - #akanda on freenode.net

32. Neutron: Liberty and Beyond

33. OpenStack’s Big Tent ● Open Design ● Open Development ● Open Community ● Open Source

34. The Neutron Stadium ● Common Forum ● Improved Consistency ● Shared Governance

35. Neutron: Liberty ● IPAM ● BGP Speaker ● NFV Enhancements ● Service Function Chaining ● Enhanced Security Groups ● Paying Down Technical Debt Canadian2006 - Liberty, Saskatchewan (CC-by-sa-3.0) commons.wikimedia.org/w/index.php?title=User:Canadian2006&action=edit&redlink=1

36. Questions

OpenStack Neutron Advanced Services by Akanda

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to OpenStack Neutron Advanced Services by Akanda

Similar to OpenStack Neutron Advanced Services by Akanda (20)

Recently uploaded

Recently uploaded (20)

OpenStack Neutron Advanced Services by Akanda