This document provides an overview of the OpenVirteX (OVX) network virtualization platform. OVX allows multiple virtual networks to run over a single physical network in an isolated manner. It provides topology and address virtualization so each tenant can specify their own virtual network topology and IP addressing scheme. OVX acts as a network hypervisor, mapping virtual network elements to physical network elements and managing the interactions between virtual and physical networks.
OVN provides virtual networking capabilities for Open vSwitch including logical switches, routers, security groups, and ACLs. It uses OVSDB to configure OVN components and provides native integration with OpenStack Neutron. OVN's architecture includes a northbound database for logical network definitions, a southbound database for physical mappings, and daemons like ovn-northd and ovn-controller that translate between the databases.
The document discusses VMware NSX and its technical overview. It begins with defining what software defined networking means, including decoupling the control plane from the data plane. It then provides an agenda and overview of NSX architecture, including its components in the data plane, control plane, and management plane. Key features of NSX like logical switching, routing, and distributed firewalling are described.
OpenStack 운영을 통해 얻은 교훈을 공유합니다.
목차
1. TOAST 클라우드 지금의 모습
2. OpenStack 선택의 이유
3. 구성의 어려움과 극복 사례
4. 활용 사례
5. 풀어야 할 문제들
대상
- TOAST 클라우드를 사용하고 싶은 분
- WMI를 처음 들어보시는 분
Overview of Distributed Virtual Router (DVR) in Openstack/Neutronvivekkonnect
The document discusses distributed virtual routers (DVR) in OpenStack Neutron. It describes the high-level architecture of DVR, which distributes routing functions from network nodes to compute nodes to improve performance and scalability compared to legacy centralized routing. Key aspects covered include east-west and north-south routing mechanisms, configuration, agent operation modes, database extensions, scheduling, and support for services. Plans are outlined for enhancing DVR in upcoming OpenStack releases.
The document discusses NSX design and deployment considerations including:
1. Physical and logical infrastructure requirements for NSX including IP connectivity and MTU size.
2. Edge cluster design with options for collapsed or separated edge and infrastructure racks.
3. NSX manager and controller placement and sizing within management clusters.
4. Transport zone, VTEP, and VXLAN switching concepts which are fundamental to the NSX overlay architecture.
OVN provides virtual networking capabilities for Open vSwitch including logical switches, routers, security groups, and ACLs. It uses OVSDB to configure OVN components and provides native integration with OpenStack Neutron. OVN's architecture includes a northbound database for logical network definitions, a southbound database for physical mappings, and daemons like ovn-northd and ovn-controller that translate between the databases.
The document discusses VMware NSX and its technical overview. It begins with defining what software defined networking means, including decoupling the control plane from the data plane. It then provides an agenda and overview of NSX architecture, including its components in the data plane, control plane, and management plane. Key features of NSX like logical switching, routing, and distributed firewalling are described.
OpenStack 운영을 통해 얻은 교훈을 공유합니다.
목차
1. TOAST 클라우드 지금의 모습
2. OpenStack 선택의 이유
3. 구성의 어려움과 극복 사례
4. 활용 사례
5. 풀어야 할 문제들
대상
- TOAST 클라우드를 사용하고 싶은 분
- WMI를 처음 들어보시는 분
Overview of Distributed Virtual Router (DVR) in Openstack/Neutronvivekkonnect
The document discusses distributed virtual routers (DVR) in OpenStack Neutron. It describes the high-level architecture of DVR, which distributes routing functions from network nodes to compute nodes to improve performance and scalability compared to legacy centralized routing. Key aspects covered include east-west and north-south routing mechanisms, configuration, agent operation modes, database extensions, scheduling, and support for services. Plans are outlined for enhancing DVR in upcoming OpenStack releases.
The document discusses NSX design and deployment considerations including:
1. Physical and logical infrastructure requirements for NSX including IP connectivity and MTU size.
2. Edge cluster design with options for collapsed or separated edge and infrastructure racks.
3. NSX manager and controller placement and sizing within management clusters.
4. Transport zone, VTEP, and VXLAN switching concepts which are fundamental to the NSX overlay architecture.
NSX-T Data Center uses a distributed architecture with separate management, control, and data planes. The management plane includes the NSX Manager cluster for storing configurations. The control plane includes the NSX Controller for maintaining and propagating states. The data plane forwards traffic on various endpoints like ESXi hosts, NSX Edges, and bare metal servers. Logical switching uses overlay networking to connect virtual machines, while logical routing provides east-west and north-south routing between logical networks and physical infrastructure.
Session Description:
An early overview of the upcoming new and exciting features and improvements in the next major LTS release of CloudStack, 4.19. Abhishek Kumar, who will be acting as the release manager for the CloudStack 4.19, gives a quick recap of the major additions in the previous LTS release - 4.18.0, discusses the timeline for the 4.19.0 release and talks about the planned and expected new features in the upcoming release.
Speaker Bio:
Abhishek is a committer of the Apache CloudStack project and has worked on the notable features such as VM ingestion, CloudStack Kubernetes Service, IPv6 support, etc. He works as a Software Engineer at ShapeBlue.
---------------------------------------------
On Friday 18th August, the Apache CloudStack India User Group 2023 took place in Bangalore, seeing CloudStack enthusiasts, experts, and industry leaders from across the country, discuss the open-source project. The meetup served as a vibrant platform to delve into the depths of Apache CloudStack, share insights, and forge new connections.
This document provides an overview of vMotion capabilities in VMware vSphere, including:
- Types of virtual machine migrations like vMotion, Storage vMotion, and shared-nothing vMotion.
- Requirements for vMotion like compatible CPUs and network connectivity.
- Enhanced features in vSphere 6 like separate vMotion networking stacks and long distance vMotion.
- Best practices for vMotion planning, limitations, and troubleshooting migration errors.
In this talk, Vladi looks at the new Volume encryption option (due in CloudStack 4.18). He presents the new ability to use encrypted root and data volumes on different storage types, the benefits and the current limitations of the implementation.
Vladimir Petrov is a QA engineer with more than 20 years of experience in the IT field. He is using and testing Apache CloudStack for almost 3 years now. Currently working as a QA Engineer in ShapeBlue.
-----------------------------------------
CloudStack Collaboration Conference 2022 took place on 14th-16th November in Sofia, Bulgaria and virtually. The day saw a hybrid get-together of the global CloudStack community hosting 370 attendees. The event hosted 43 sessions from leading CloudStack experts, users and skilful engineers from the open-source world, which included: technical talks, user stories, new features and integrations presentations and more.
OVN (Open Virtual Network) を用いる事により、OVS (Open vSwitch)が動作する複数のサーバー(Hypervisor/Chassis)を横断する仮想ネットワークを構築する事ができます。
本スライドはOVNを用いた論理ネットワークの構成と設定サンプルのメモとなります。
Using OVN, you can build logical network among multiple servers (Hypervisor/Chassis) running OVS (Open vSwitch).
This slide is describes HOW TO example of OVN configuration to create 2 logical switch connecting 4 VMs running on 2 chassis.
Building a redundant CloudStack management cluster - Vladimir MelnikShapeBlue
Building a redundant CloudStack management cluster. Building and maintaining an open-source-driven clustered environment for Apache CloudStack management server with GNU Linux, HAProxy, HeartBeat, Bind, OpenLDAP and other tools.
During this presentation, we will cover a deep dive into Aruba Central and its features. Check out the webinar recording where this presentation was used:
https://community.arubanetworks.com/t5/Cloud-Managed-Networks/Technical-Webinar-Advance-Aruba-Central/m-p/496064
CloudStack - Top 5 Technical Issues and TroubleshootingShapeBlue
Cloudstack Top 5 technical issues and troubleshooting. Cloudstack is a mature product in use by companies world-wide. While being associated with CloudStack development for over 5 years, Abhi has come across some technical issues that once in a while affect the CloudStack deployment. This presentation is an effort to put together top 5 such issues, analyze their symptoms, see them from CloudStack architecture perspective and from the distributed nature of cloud orchestration, then look at ways to avoid them and finally be able to troubleshoot if they occur.
NSX for vSphere Logical Routing Deep DivePooja Patel
This document provides an overview of NSX logical routing capabilities including:
- NSX logical routing uses distributed logical routers that provide scalable tenant routing and security across ESXi hosts.
- NSX Edge services gateways provide connectivity between logical and physical networks and offer services like firewalls, VPN, and load balancing.
- NSX supports both active-standby and equal-cost multi-path high availability models for logical routers and edge gateways to ensure continuity of operations.
This document discusses deploying IPv6 on OpenStack. It provides an overview of IPv6, including that IPv6 addresses the shortage of IPv4 addresses by providing a vastly larger 128-bit address space. It describes IPv6 address types and allocation methods. It also discusses IPv6 configuration modes in OpenStack, including stateless address autoconfiguration (SLAAC) and DHCPv6 stateless and stateful modes. Additionally, it covers deployment options for IPv6 on OpenStack like dual stack, NAT64/DNS64, and network tunnels. It provides details on IPv6 address and router advertisement configuration in OpenStack.
This document discusses OVN (Open Virtual Network) and its integration with OpenStack Neutron. It provides an overview of OVN, how it integrates with Neutron, deployment models, and performance comparisons with ML2/OVS. Some key advantages of ML2/OVN include native support for DHCP, distributed routing, load balancing, and DPDK support. Disadvantages include lack of firewall and VPN support and some quality of service limitations.
The Proxy Wars - MySQL Router, ProxySQL, MariaDB MaxScaleColin Charles
This document discusses MySQL proxy technologies including MySQL Router, ProxySQL, and MariaDB MaxScale. It provides an overview of each technology, including when they were released, key features, and comparisons between them. ProxySQL is highlighted as a popular option currently with integration with Percona tools, while MySQL Router may become more widely used due to its support for MySQL InnoDB Cluster. MariaDB MaxScale is noted for its binlog routing capabilities. Overall the document aims to help people understand and choose between the different MySQL proxy options.
Understanding Cisco’ Next Generation SD-WAN TechnologyCisco Canada
Cisco's SD-WAN solution aims to address challenges facing the modern WAN and branch networks by providing:
(1) Secure, flexible connectivity to applications and services across hybrid networks including broadband internet, cellular and MPLS.
(2) Application-aware policies and intelligent routing to optimize the user experience for priority applications.
(3) Agile operations through centralized, template-based management and zero-touch provisioning of edge routers.
Increase security, evolve your datacentre, and innovate faster with Microsoft Windows Server 2016—the cloud-ready operating system.
Learn more about:
» Windows Server 2016 as the 4th Era of Windows Server
» Editions & features
» Hardware requirements
» Features:
• Nano server
• Containers
• Hyper-V Hot-Add Virtual Hardware
• Nested Virtualization
Fernando Nunez's ANDICOM 2016 presentation discusses NFV and SDN and outlines use cases of vE-CPE and SD-WAN. He focuses on how combining these two use cases creates a comprehensive and powerful solution and describes the concept of Ensemble SmartWAN (SD-WAN 2.0).
The document discusses OpenStack Quantum and OpenFlow/SDN. It provides an overview of Quantum, which allows network connectivity as a service in OpenStack. It describes how Quantum works by creating networks and ports and plugging interface devices. It also lists several Quantum plugins that can be used, such as plugins for Cisco, Linux bridge, NVP, and Open vSwitch. Finally, it introduces OpenFlow/SDN and provides basics on the OpenFlow protocol and how OpenFlow switching works.
This document introduces programmable virtual networks and discusses their advantages over traditional network slicing. It describes FlowVisor, an early network slicing tool, and its limitations in providing full network virtualization. The document then introduces OpenVirteX, a new system that aims to provide complete programmable virtual networks through topology, address, and policy virtualization. OpenVirteX maps virtual and physical network elements and allows independent control of virtual networks. While still in development, OpenVirteX has the potential to enable more flexible and innovative virtualized networks than previous solutions.
NSX-T Data Center uses a distributed architecture with separate management, control, and data planes. The management plane includes the NSX Manager cluster for storing configurations. The control plane includes the NSX Controller for maintaining and propagating states. The data plane forwards traffic on various endpoints like ESXi hosts, NSX Edges, and bare metal servers. Logical switching uses overlay networking to connect virtual machines, while logical routing provides east-west and north-south routing between logical networks and physical infrastructure.
Session Description:
An early overview of the upcoming new and exciting features and improvements in the next major LTS release of CloudStack, 4.19. Abhishek Kumar, who will be acting as the release manager for the CloudStack 4.19, gives a quick recap of the major additions in the previous LTS release - 4.18.0, discusses the timeline for the 4.19.0 release and talks about the planned and expected new features in the upcoming release.
Speaker Bio:
Abhishek is a committer of the Apache CloudStack project and has worked on the notable features such as VM ingestion, CloudStack Kubernetes Service, IPv6 support, etc. He works as a Software Engineer at ShapeBlue.
---------------------------------------------
On Friday 18th August, the Apache CloudStack India User Group 2023 took place in Bangalore, seeing CloudStack enthusiasts, experts, and industry leaders from across the country, discuss the open-source project. The meetup served as a vibrant platform to delve into the depths of Apache CloudStack, share insights, and forge new connections.
This document provides an overview of vMotion capabilities in VMware vSphere, including:
- Types of virtual machine migrations like vMotion, Storage vMotion, and shared-nothing vMotion.
- Requirements for vMotion like compatible CPUs and network connectivity.
- Enhanced features in vSphere 6 like separate vMotion networking stacks and long distance vMotion.
- Best practices for vMotion planning, limitations, and troubleshooting migration errors.
In this talk, Vladi looks at the new Volume encryption option (due in CloudStack 4.18). He presents the new ability to use encrypted root and data volumes on different storage types, the benefits and the current limitations of the implementation.
Vladimir Petrov is a QA engineer with more than 20 years of experience in the IT field. He is using and testing Apache CloudStack for almost 3 years now. Currently working as a QA Engineer in ShapeBlue.
-----------------------------------------
CloudStack Collaboration Conference 2022 took place on 14th-16th November in Sofia, Bulgaria and virtually. The day saw a hybrid get-together of the global CloudStack community hosting 370 attendees. The event hosted 43 sessions from leading CloudStack experts, users and skilful engineers from the open-source world, which included: technical talks, user stories, new features and integrations presentations and more.
OVN (Open Virtual Network) を用いる事により、OVS (Open vSwitch)が動作する複数のサーバー(Hypervisor/Chassis)を横断する仮想ネットワークを構築する事ができます。
本スライドはOVNを用いた論理ネットワークの構成と設定サンプルのメモとなります。
Using OVN, you can build logical network among multiple servers (Hypervisor/Chassis) running OVS (Open vSwitch).
This slide is describes HOW TO example of OVN configuration to create 2 logical switch connecting 4 VMs running on 2 chassis.
Building a redundant CloudStack management cluster - Vladimir MelnikShapeBlue
Building a redundant CloudStack management cluster. Building and maintaining an open-source-driven clustered environment for Apache CloudStack management server with GNU Linux, HAProxy, HeartBeat, Bind, OpenLDAP and other tools.
During this presentation, we will cover a deep dive into Aruba Central and its features. Check out the webinar recording where this presentation was used:
https://community.arubanetworks.com/t5/Cloud-Managed-Networks/Technical-Webinar-Advance-Aruba-Central/m-p/496064
CloudStack - Top 5 Technical Issues and TroubleshootingShapeBlue
Cloudstack Top 5 technical issues and troubleshooting. Cloudstack is a mature product in use by companies world-wide. While being associated with CloudStack development for over 5 years, Abhi has come across some technical issues that once in a while affect the CloudStack deployment. This presentation is an effort to put together top 5 such issues, analyze their symptoms, see them from CloudStack architecture perspective and from the distributed nature of cloud orchestration, then look at ways to avoid them and finally be able to troubleshoot if they occur.
NSX for vSphere Logical Routing Deep DivePooja Patel
This document provides an overview of NSX logical routing capabilities including:
- NSX logical routing uses distributed logical routers that provide scalable tenant routing and security across ESXi hosts.
- NSX Edge services gateways provide connectivity between logical and physical networks and offer services like firewalls, VPN, and load balancing.
- NSX supports both active-standby and equal-cost multi-path high availability models for logical routers and edge gateways to ensure continuity of operations.
This document discusses deploying IPv6 on OpenStack. It provides an overview of IPv6, including that IPv6 addresses the shortage of IPv4 addresses by providing a vastly larger 128-bit address space. It describes IPv6 address types and allocation methods. It also discusses IPv6 configuration modes in OpenStack, including stateless address autoconfiguration (SLAAC) and DHCPv6 stateless and stateful modes. Additionally, it covers deployment options for IPv6 on OpenStack like dual stack, NAT64/DNS64, and network tunnels. It provides details on IPv6 address and router advertisement configuration in OpenStack.
This document discusses OVN (Open Virtual Network) and its integration with OpenStack Neutron. It provides an overview of OVN, how it integrates with Neutron, deployment models, and performance comparisons with ML2/OVS. Some key advantages of ML2/OVN include native support for DHCP, distributed routing, load balancing, and DPDK support. Disadvantages include lack of firewall and VPN support and some quality of service limitations.
The Proxy Wars - MySQL Router, ProxySQL, MariaDB MaxScaleColin Charles
This document discusses MySQL proxy technologies including MySQL Router, ProxySQL, and MariaDB MaxScale. It provides an overview of each technology, including when they were released, key features, and comparisons between them. ProxySQL is highlighted as a popular option currently with integration with Percona tools, while MySQL Router may become more widely used due to its support for MySQL InnoDB Cluster. MariaDB MaxScale is noted for its binlog routing capabilities. Overall the document aims to help people understand and choose between the different MySQL proxy options.
Understanding Cisco’ Next Generation SD-WAN TechnologyCisco Canada
Cisco's SD-WAN solution aims to address challenges facing the modern WAN and branch networks by providing:
(1) Secure, flexible connectivity to applications and services across hybrid networks including broadband internet, cellular and MPLS.
(2) Application-aware policies and intelligent routing to optimize the user experience for priority applications.
(3) Agile operations through centralized, template-based management and zero-touch provisioning of edge routers.
Increase security, evolve your datacentre, and innovate faster with Microsoft Windows Server 2016—the cloud-ready operating system.
Learn more about:
» Windows Server 2016 as the 4th Era of Windows Server
» Editions & features
» Hardware requirements
» Features:
• Nano server
• Containers
• Hyper-V Hot-Add Virtual Hardware
• Nested Virtualization
Fernando Nunez's ANDICOM 2016 presentation discusses NFV and SDN and outlines use cases of vE-CPE and SD-WAN. He focuses on how combining these two use cases creates a comprehensive and powerful solution and describes the concept of Ensemble SmartWAN (SD-WAN 2.0).
The document discusses OpenStack Quantum and OpenFlow/SDN. It provides an overview of Quantum, which allows network connectivity as a service in OpenStack. It describes how Quantum works by creating networks and ports and plugging interface devices. It also lists several Quantum plugins that can be used, such as plugins for Cisco, Linux bridge, NVP, and Open vSwitch. Finally, it introduces OpenFlow/SDN and provides basics on the OpenFlow protocol and how OpenFlow switching works.
This document introduces programmable virtual networks and discusses their advantages over traditional network slicing. It describes FlowVisor, an early network slicing tool, and its limitations in providing full network virtualization. The document then introduces OpenVirteX, a new system that aims to provide complete programmable virtual networks through topology, address, and policy virtualization. OpenVirteX maps virtual and physical network elements and allows independent control of virtual networks. While still in development, OpenVirteX has the potential to enable more flexible and innovative virtualized networks than previous solutions.
The document discusses an ONOS-based virtual tenant network (VTN) implementation. It provides an overview of the architecture, including that ONOS uses a distributed architecture to provide high availability, scalability, and performance. It also allows for linear scalability. The VTN architecture runs on top of ONOS and uses Neutron and OpenStack for management of virtual networks and tenants. It allows for VTN management and scalability, high availability, and live migration of VM hosts.
This document describes OpenVirteX, a network virtualization platform that enables multiple virtual networks to run concurrently over a single physical network infrastructure. It allows each tenant to define their own virtual network topologies. OpenVirteX decouples the physical and virtual networks and provides isolation between tenant traffic. It performs functions like topology virtualization, address space virtualization, and control function virtualization to manage the virtual networks. OpenVirteX also enables networks to be reconfigured at runtime and automatically recovers from physical network failures.
This document discusses SDN (Software-Defined Networking) and ONOS (Open Network Operating System). It provides an overview of SDN, describing it as managing and controlling networks through software and making networks programmable. It then introduces ONOS, an open-source SDN controller developed to be carrier-grade and support high availability, performance, and scalability. It discusses ONOS's architecture, key subsystems, and capabilities for network virtualization including topology, address, and control function virtualization and virtual network snapshotting.
This document discusses deploying VMware NSX Network Virtualization. It covers:
1. The objectives are to learn about NSX deployments with multiple hypervisors, NSX components required, and packet flows in logical networks.
2. The NSX architecture includes features like logical switching, routing, firewall, load balancing and VPN. Key components are the NSX controller, vSwitch, logical switches and NSX gateway.
3. Deploying NSX involves building the physical infrastructure, preparing NSX including the controller and manager, and then consuming applications through the network API.
Atf 3 q15-4 - scaling the the software driven cloud networkMason Mei
This document discusses network virtualization and the Arista CloudVision eXchange (CVX) platform. It provides 3 key points:
1. Network virtualization using VXLAN allows for any-to-any Layer 2 connectivity across Layer 3 subnets, enabling VM mobility. The CVX platform provides automation of VXLAN deployment without a controller.
2. CVX acts as a single point of integration and provisioning for the physical network. It aggregates network state from EOS switches and presents it to controllers through open APIs. This provides visibility, simplifies provisioning, and improves scalability of controller integration.
3. CVX services include providing the physical topology database, distributing VXLAN configuration
This document discusses network virtualization. It begins by defining virtualization as decoupling infrastructure services from physical hardware. There are two types of network virtualization: internal virtualization replicates network functionality within a single system, while external virtualization combines multiple networks. Network virtualization involves virtualizing network devices and communication paths between access points. Common virtualization techniques operate at layers 2-3 and include VLAN tagging, VPN tunneling, and overlay networks. The document also examines approaches to network virtualization in Xen and KVM virtualization systems and options for improving performance.
SDN decouples the control plane from the data plane, moving network intelligence and policy making to a centralized controller. This allows network services to be abstracted and treated as logical entities. SDN enables network virtualization, centralized control, automated provisioning, and better utilization of network resources. The key aspects of SDN include defining flow-based forwarding using an interface like OpenFlow, having a centralized network operating system to manage switches, and programming networks through software applications running on controllers.
PLNOG16: VXLAN Gateway, efektywny sposób połączenia świata wirtualnego z fizy...PROIDEA
The document discusses VXLAN gateways and how they connect virtual and physical networks. It provides details on Juniper QFX5100 VXLAN gateways and their integration with NSX, including how they dynamically learn virtual networks via OVSDB, handle multidestination traffic, and store MAC address tables. The document also shows configurations and statuses when viewing the integration through NSX and Network Director management tools.
Optimising nfv service chains on open stack using dockerAnanth Padmanabhan
Uploading slides presented in the OpenStack summit, at Austin in April, 2016. Here is the link to the video,
https://www.openstack.org/videos/video/optimising-nfv-service-chains-on-openstack-using-docker
This document discusses optimizing network function virtualization (NFV) service chains on OpenStack using Docker containers. Docker containers provide better utilization of resources and higher density of workloads compared to virtual machines, with reduced overhead since there is no hypervisor layer. The design presented uses Docker containers as network functions chained locally on each OpenStack host for low latency. Areas of work include running Docker and KVM on the same host, configuring Open vSwitch for service chains, and Docker daemon interactions for on-demand network functions and tenant isolation.
Uploading slides presented in the OpenStack summit, at Austin in April, 2016. Here is the link to the video,
https://www.openstack.org/videos/video/optimising-nfv-service-chains-on-openstack-using-docker
This document provides an overview of OpenStack Neutron, the networking component of OpenStack. It describes Neutron's architecture and components, how it uses Linux networking and Open vSwitch, and how network packets flow through the Neutron distributed virtual router architecture. Key concepts covered include Neutron plugins, agents, GRE tunnels, Linux network namespaces, and east-west vs north-south traffic flows in a DVR configuration.
This document provides an overview and deep dive into VMware's NSX networking and security virtualization platform. It begins with a brief introduction to NSX's architecture, including its data plane, control plane, and management plane components. The presentation then covers key NSX capabilities like logical switching, distributed routing, microsegmentation using the distributed firewall, and network services. It aims to provide attendees with an in-depth understanding of the NSX platform and how it implements virtual networking and security functions.
Get a technical understanding of the components of NSX, including how switching, routing, firewalling, load-balancing and other services work within NSX.
VMworld 2013: Operational Best Practices for NSX in VMware Environments VMworld
VMworld 2013
Ben Basler, VMware
Roberto Mari, VMware
Learn more about VMworld and register at http://www.vmworld.com/index.jspa?src=socmed-vmworld-slideshare
VMworld 2013: Bringing Network Virtualization to VMware Environments with NSX VMworld
1. NSX brings network virtualization to VMware environments by providing scalable logical switching and distributed logical routing without dependency on physical network hardware or topology.
2. NSX has two consumption models - optimized for vSphere which leverages VMware infrastructure or as a multi-hypervisor, multi-cloud platform.
3. NSX deployment involves three simple steps - deploying the network infrastructure, deploying NSX manager and controllers, and consuming applications on the virtual networks.
"One network to rule them all" - OpenStack Summit Austin 2016Phil Estes
Presentation at IBM Client Day by Kyle Mestery and Phil Estes, OpenStack Summit 2016 - Austin, Texas on April 26, 2016. "Open, Scalable and Integrated Networking for Containers and VMs" covering Project Kuryr, Docker's libnetwork, and Neutron & OVS and OVN network stacks
VXLAN with NSX -MH describes VXLAN and how it is implemented with NSX Micro Segmentation. It discusses VXLAN basics like encapsulation and VTEPs. It then covers the NSX control plane and data plane views including logical network view with logical switches/ports and physical transport node view. It provides examples of VXLAN L2 and L3 gateways for inter and intra-subnet communication deployed on NSX managed switches or physical gateways.
VMworld 2013: An Introduction to Network Virtualization VMworld
The document discusses network virtualization and VMware NSX. It begins with an agenda that covers objectives, network virtualization, NSX system architecture and use cases. It then discusses what network virtualization is, how it abstracts and automates the network. The NSX architecture uses Open vSwitch and tunnels traffic between virtual networks. Key use cases include automated provisioning and cross-datacenter connectivity. Physical and logical relationships are illustrated on a whiteboard. Takeaways focus on the benefits of network virtualization in building scalable software-defined datacenters.
- OpenStack provides network virtualization and automation capabilities through projects like Neutron, Heat, and plugins like Midonet.
- Neutron evolved networking in OpenStack to allow pluggable networking models beyond the initial Nova networking. It supports overlay technologies and network automation.
- Heat allows you to define infrastructure like servers, networks, and their relationships in templates that can be deployed through the OpenStack API. This provides automation of virtual network deployment.
- Plugins like Midonet provide distributed virtual networking models to improve scalability and performance over overlay approaches like OVS. They also allow automation of physical network configuration.
This document discusses using an ultrasonic distance sensor with a Raspberry Pi to measure distance. It describes the necessary components, including a Raspberry Pi, breadboard, resistors, and ultrasonic sensor. It explains how to configure the circuit by connecting the sensor to specific Raspberry Pi pins. The document then provides Python code to set up GPIO pins for the trigger and echo signals, send ultrasonic pulses, measure the time until the echo is received, and calculate the distance based on the time elapsed and speed of sound.
This document describes how to use a Raspberry Pi to measure light levels and control an LED. It provides an overview of using a photoresistor sensor to measure analog light levels and convert them to digital values. The circuit connects the photoresistor to measure light input on GPIO 17 and controls an LED output on GPIO 18. The Python code imports GPIO, sets the pins, reads the sensor input, and turns the LED on or off depending on the light level. When executed, the LED will turn on in the dark and off in bright light.
The document describes how to blink an LED connected to a Raspberry Pi by using a Python program. It outlines the necessary components including an LED, resistor, and jumper cables. It then explains how to configure the circuit by connecting the cathode of the LED to ground, anode to a resistor, and resistor to GPIO pin 17. Finally, it provides the Python code to import GPIO and turn the pin on and off to blink the LED, and discusses how to write and execute the Python program.
This document provides instructions for setting up a Raspberry Pi. It discusses the hardware requirements, installing the Raspbian operating system using NOOBS or downloading the image file, and setting up the Korean language. It also explains how to access the Raspberry Pi remotely using a "headless" setup with VNC server and client software, allowing control without an attached monitor or keyboard. Major topics covered include installing OSes like Raspbian, connecting to WiFi or Ethernet, and configuring language and timezone settings.
The document introduces Raspberry Pi, a credit-card sized single-board computer developed by the Raspberry Pi Foundation to promote computer science education. It describes the hardware components of Raspberry Pi including a System on Chip processor, microSD card for storage, and ports for connecting keyboards, mice and monitors. It also discusses the Raspbian operating system and popular programming languages like Scratch and Python used on Raspberry Pi. Finally, it outlines some example projects that have been built with Raspberry Pi like a supercomputer cluster and a quadcopter drone.
This document describes how to use an infrared proximity sensor to measure distance with an Arduino board. The sensor outputs an analog voltage between 3.1V at 10cm and 0.4V at 80cm that is read by the Arduino. The sketch declares variables for voltage and distance, initializes serial communication, reads the analog voltage from the sensor, converts it to a distance using the sensor's formula, prints the distance to the serial monitor, and delays to display results over time as the distance changes. When run, the circuit successfully measures distances from 10cm to 80cm as demonstrated in the serial output.
This document provides instructions for blinking the built-in LED on an Arduino board and controlling an external LED using a breadboard. For blinking the built-in LED, the code uses pinMode, digitalWrite, and Delay functions to turn the LED on and off. To control an external LED, the circuit is built on a breadboard connecting the LED, resistor, and Arduino pin 2. The code is similar to blink the external LED by writing high and low values to pin 2.
This Arduino tutorial teaches how to turn an LED on and off by writing simple code. It explains that the built-in LED is internally connected to digital pin 13, and shows the code to set pin 13 as an output and write either a HIGH or LOW value to turn the LED on or off, respectively. The result is demonstrated of the LED turning on when writing HIGH and off when writing LOW.
This document describes how to measure light levels using an Arduino. It explains that a photoresistor (LDR) is used as a light sensor, whose resistance changes with brightness. The circuit connects the LDR to an LED and Arduino analog pin. Code samples show configuring the Arduino pin modes, reading the LDR value, and using it to set the LED brightness level. The result is the LED brightness changing in response to environmental light levels measured by the LDR.
This document provides instructions for getting started with Arduino. It outlines the necessary materials, including an Arduino Uno board, USB cable, sensors and jumper cables. It then describes the 6 step process to write and run a simple program: 1) download and install the Arduino IDE software; 2) connect the board to a PC; 3) launch the IDE; 4) select the board and serial port; 5) write and compile the code; and 6) upload the program to the board. The document also provides references for additional Arduino tutorials.
This document provides an introduction to Arduino, including what Arduino is, the different types of Arduino boards, common add-ons like shields and sensors, example projects, and references for further information. It describes Arduino as an open-source hardware and software platform that allows users to create interactive electronic devices by connecting sensors and actuators. The core components are a microcontroller board and IDE software. Many versions of Arduino boards exist with varying sizes, processors, and input/output capabilities. Common add-ons expand the boards' functionality through shields, modules, and sensors. The document outlines several example Arduino projects and provides references for additional learning resources.
Mobile App Development Company In Noida | Drona InfotechDrona Infotech
Looking for a reliable mobile app development company in Noida? Look no further than Drona Infotech. We specialize in creating customized apps for your business needs.
Visit Us For : https://www.dronainfotech.com/mobile-application-development/
Top Features to Include in Your Winzo Clone App for Business Growth (4).pptxrickgrimesss22
Discover the essential features to incorporate in your Winzo clone app to boost business growth, enhance user engagement, and drive revenue. Learn how to create a compelling gaming experience that stands out in the competitive market.
E-commerce Development Services- Hornet DynamicsHornet Dynamics
For any business hoping to succeed in the digital age, having a strong online presence is crucial. We offer Ecommerce Development Services that are customized according to your business requirements and client preferences, enabling you to create a dynamic, safe, and user-friendly online store.
Neo4j - Product Vision and Knowledge Graphs - GraphSummit ParisNeo4j
Dr. Jesús Barrasa, Head of Solutions Architecture for EMEA, Neo4j
Découvrez les dernières innovations de Neo4j, et notamment les dernières intégrations cloud et les améliorations produits qui font de Neo4j un choix essentiel pour les développeurs qui créent des applications avec des données interconnectées et de l’IA générative.
Artificia Intellicence and XPath Extension FunctionsOctavian Nadolu
The purpose of this presentation is to provide an overview of how you can use AI from XSLT, XQuery, Schematron, or XML Refactoring operations, the potential benefits of using AI, and some of the challenges we face.
OpenMetadata Community Meeting - 5th June 2024OpenMetadata
The OpenMetadata Community Meeting was held on June 5th, 2024. In this meeting, we discussed about the data quality capabilities that are integrated with the Incident Manager, providing a complete solution to handle your data observability needs. Watch the end-to-end demo of the data quality features.
* How to run your own data quality framework
* What is the performance impact of running data quality frameworks
* How to run the test cases in your own ETL pipelines
* How the Incident Manager is integrated
* Get notified with alerts when test cases fail
Watch the meeting recording here - https://www.youtube.com/watch?v=UbNOje0kf6E
UI5con 2024 - Boost Your Development Experience with UI5 Tooling ExtensionsPeter Muessig
The UI5 tooling is the development and build tooling of UI5. It is built in a modular and extensible way so that it can be easily extended by your needs. This session will showcase various tooling extensions which can boost your development experience by far so that you can really work offline, transpile your code in your project to use even newer versions of EcmaScript (than 2022 which is supported right now by the UI5 tooling), consume any npm package of your choice in your project, using different kind of proxies, and even stitching UI5 projects during development together to mimic your target environment.
Do you want Software for your Business? Visit Deuglo
Deuglo has top Software Developers in India. They are experts in software development and help design and create custom Software solutions.
Deuglo follows seven steps methods for delivering their services to their customers. They called it the Software development life cycle process (SDLC).
Requirement — Collecting the Requirements is the first Phase in the SSLC process.
Feasibility Study — after completing the requirement process they move to the design phase.
Design — in this phase, they start designing the software.
Coding — when designing is completed, the developers start coding for the software.
Testing — in this phase when the coding of the software is done the testing team will start testing.
Installation — after completion of testing, the application opens to the live server and launches!
Maintenance — after completing the software development, customers start using the software.
May Marketo Masterclass, London MUG May 22 2024.pdfAdele Miller
Can't make Adobe Summit in Vegas? No sweat because the EMEA Marketo Engage Champions are coming to London to share their Summit sessions, insights and more!
This is a MUG with a twist you don't want to miss.
GraphSummit Paris - The art of the possible with Graph TechnologyNeo4j
Sudhir Hasbe, Chief Product Officer, Neo4j
Join us as we explore breakthrough innovations enabled by interconnected data and AI. Discover firsthand how organizations use relationships in data to uncover contextual insights and solve our most pressing challenges – from optimizing supply chains, detecting fraud, and improving customer experiences to accelerating drug discoveries.
Enterprise Resource Planning System includes various modules that reduce any business's workload. Additionally, it organizes the workflows, which drives towards enhancing productivity. Here are a detailed explanation of the ERP modules. Going through the points will help you understand how the software is changing the work dynamics.
To know more details here: https://blogs.nyggs.com/nyggs/enterprise-resource-planning-erp-system-modules/
Microservice Teams - How the cloud changes the way we workSven Peters
A lot of technical challenges and complexity come with building a cloud-native and distributed architecture. The way we develop backend software has fundamentally changed in the last ten years. Managing a microservices architecture demands a lot of us to ensure observability and operational resiliency. But did you also change the way you run your development teams?
Sven will talk about Atlassian’s journey from a monolith to a multi-tenanted architecture and how it affected the way the engineering teams work. You will learn how we shifted to service ownership, moved to more autonomous teams (and its challenges), and established platform and enablement teams.
Neo4j - Product Vision and Knowledge Graphs - GraphSummit ParisNeo4j
Dr. Jesús Barrasa, Head of Solutions Architecture for EMEA, Neo4j
Découvrez les dernières innovations de Neo4j, et notamment les dernières intégrations cloud et les améliorations produits qui font de Neo4j un choix essentiel pour les développeurs qui créent des applications avec des données interconnectées et de l’IA générative.
DDS Security Version 1.2 was adopted in 2024. This revision strengthens support for long runnings systems adding new cryptographic algorithms, certificate revocation, and hardness against DoS attacks.
Hand Rolled Applicative User ValidationCode KataPhilip Schwarz
Could you use a simple piece of Scala validation code (granted, a very simplistic one too!) that you can rewrite, now and again, to refresh your basic understanding of Applicative operators <*>, <*, *>?
The goal is not to write perfect code showcasing validation, but rather, to provide a small, rough-and ready exercise to reinforce your muscle-memory.
Despite its grandiose-sounding title, this deck consists of just three slides showing the Scala 3 code to be rewritten whenever the details of the operators begin to fade away.
The code is my rough and ready translation of a Haskell user-validation program found in a book called Finding Success (and Failure) in Haskell - Fall in love with applicative functors.
SOCRadar's Aviation Industry Q1 Incident Report is out now!
The aviation industry has always been a prime target for cybercriminals due to its critical infrastructure and high stakes. In the first quarter of 2024, the sector faced an alarming surge in cybersecurity threats, revealing its vulnerabilities and the relentless sophistication of cyber attackers.
SOCRadar’s Aviation Industry, Quarterly Incident Report, provides an in-depth analysis of these threats, detected and examined through our extensive monitoring of hacker forums, Telegram channels, and dark web platforms.
Energy consumption of Database Management - Florina Jonuzi
OpenVirtex (OVX) Tutorial
1. 1/47
Dongho Son
Dept. of CSE, POSTECH
donghoson@postech.ac.kr
http://dpnm.postech.ac.kr
2016. 11. 07
2. 2/47
Outline
Introduction
Use cases
Previous work
Architecture
Features
Results
Conclusion & Future work
OVX Tutorial
References
3. 3/47
Introduction
Virtual Networks
To provide virtualized network resource, the network is decoupled from
its physical manifestation
Network virtualization has emerged as one of the key capabilities of
computing and networking infrastructure
• Why? These virtual networks can offer strong isolation, migration, snapshot and
customize topology
• So..? Infrastructure providers are focusing on network virtualization using SDN to
better utilize their network resources
OpenVirteX(OVX)
A network virtualization platform that can …
• Provide address virtualization to keep tenant traffic separate
• Provide topology virtualization to enable tenants to specify their topology
• Deliver each virtual network to the tenants’ NOS as Infrastructure
OVX is a network hypervisor that manage network virtualization
4. 4/47
Use Cases
NFV
Nowadays network function, such as firewall, DPI, load-balancing and
authentication, are implemented in dedicated H/W appliances
NFV offers such network functions in S/W and VMs to reduce
CAPEX/OPEX and allow more flexibility
NFV will require dynamic virtual networks management
5. 5/47
Previous Work(1/2)
FlowVisor
A S/W platform for slicing an OpenFlow network into multiple resource
pools, or slices
All slices share the same flow or address space, and thus a slice
doesn’t have a completely separate and independent address space
FlowVisor also doesn’t allow a slice to have an arbitrary virtual network
topology. It only offer a subset of the physical topology
6. 6/47
Previous Work(2/2)
VeRTIGO
An extension to FlowVisor which provides topology virtualization
Each tenant can specify virtual links in the network slice
Since VeRTIGO is based on FlowVisor it is unable to provide each
tenant with a full isolated address space
FlowN
Add a database storage system to maintain a mapping between the
physical and virtual realms
Since each tenant’s logic must be embedded in the FlowN controller, a
tenant is constrained to developing their application with the FlowN
framework
7. 7/47
Architecture(1/3)
Network virtualization platform
OVX is a network virtualization platform capable of spawning virtual
networks with OpenFlow semantics
These virtual networks may have arbitrary topology and addressing
schemes, configured as per tenant request
Requests are conveyed via API calls to OVX with a tool such as a
network embedder
8. 8/47
Architecture(2/3)
Internal OVX architecture
Internally, OVX relies on a loose decoupling of virtual elements from
physical counterparts
OVX models all virtual and physical elements and maintains the
mapping between them
All virtual network elements are mapped to at least one physical
element
9. 9/47
Architecture(3/3)
Topology virtualization
OVX allows the tenants to specify their own arbitrary topology
These topologies don’t have to correspond to the actual physical
network, but exactly match what the tenants desire
Address virtualization
OVX grants tenants the ability to choose address assignments for their
end hosts, allowing multiple, potentially over-lapping IP address blocks
to exist in the same physical network
To differentiate hosts, OVX generates unique tenant IDs for each tenant
Control function virtualization
Each virtual network can have its own NOS and applications that can
program the virtual network switches
OVX is responsible for mapping various control functions for the virtual
network on to the corresponding physical network
10. 10/47
Features(1/2)
Loose coupling of virtual and physical
components introduces significant amounts of
flexibility
Topology customization
• A virtual link may encompass multiple contiguous hops, and virtual switches may
abstract away parts or all of a network
Resiliency
• A resilient virtual link is characterized by multiple physical paths between the points
corresponding to the virtual link endpoints
Dynamic vSDN reconfiguration
• Since the mappings themselves don’t store any network state, these can be changed
at runtime.
11. 11/47
Features(2/2)
Persistence
Each network and network element maintains a collection of
preservable attributes
• It allows OVX to record and store information in storage
• vSDNs can be torn down and re-created at a later time
• It gives OVX the ability to save and recover vSDN configuration, persistence which
can enable to snapshot tenant networks
Troubleshooting
Extensive rewriting of control messages complicates the already difficult
process of troubleshooting networks
OVX enables it to integrate with network debuggers by providing
connection into vSDNs
12. 12/47
Results(1/2)
Control channel overhead and virtual network
generation time
A figure shows the latency introduced by OVX, FlowVisor, and FlowN
and the reference case where no virtualization software is used and the
packets are sent directly from the switch to the controller
Compared with other platforms, OVX offers better performance than
similar virtualization platforms
It just adds around 0.2 ms latency to the control channel
13. 13/47
Results(2/2)
Control channel overhead and virtual network
generation time
A Table shows the time needed to create and configure a virtual
network up to the point where the network OS has connected
Virtual networks can be created through the API or loaded from
persistent storage(DB)
OVX clearly can offer with provisioning times in the order of several
(tens of) seconds
14. 14/47
Conclusion & Future Work
OVX provides programmable vSDNs
These vSDNs are customizable in terms of topology and addressing
scheme used, and each tenant can control his virtual SDN with the
NOS of his choice
Three additional functionalities
Snapshotting and migration of vSDNs
• The ability to preserve the state and data of VM at a specific point in time has
become a key functionality
• This allows not only fast recovery in case of failure, but also eases the migration and
duplication of a working VM in other location
Evolving beyond OF1.0
• Replace the standard java openflowj library, strictly tied to OF1.0, with LOXI
• Plan to implement OF1.3 in the southbound interface
vSDN-based QoS
• OVX will use flow-based meters to enforce QoS for the virtual networks, thus offering
to the tenants a fully isolated environment with performance guarantees
16. 16/47
Introduction
Pre-requisites
Need a computer with at least 2GB of RAM & at least 5GB
of free hard disk space
Windows, Mac OS X or Linux – all work fine with VirtualBox
Download two files
VirtualBox (https://www.virtualbox.org/)
Tutorial VM (http://ovx.wpengine.com/wp-
content/uploads/ovx-vm-x86_64-2014-10-14.zip)
• Unzip it! Then you can see vmdk file.
17. 17/47
Setup Your Environment
Create Virtual Machine(VM)
Start up VirtualBox
Select Machine>New, give it a name, and select Linux as
type and Ubuntu(64bit) as version.
Configure the VM with 2GB of memory.
Select ‘Use an existing virtual hard drive file’, and point it to
the vmdk file you download. Select create.
Start VM
Login with user ovx and password ovx
19. 19/47
Setup Your Environment
Scenario
11 core switches
Each core switch has 4 hosts attached
Hosts connect to their core switch on ports 1 through 4
Other port number are shown in the topology image.
20. 20/47
Setup Your Environment
Scenario
DPIDs are listed in the table
Host MAC addresses are the last 6 bytes of the DPIDs,
with the last byte equal to host number
Example)
DPID of SFO
00:00:00:00:00:00:02:00
MAC of the 3rd host on SFO
00:00:00:00:02:03
21. 21/47
Setup Your Environment
Start Mininet
Start a terminal and run internet2.py
• $ sudo python internet2.py
• It will run Mininet and construct topology
It will point all switches to connect to OVX
OVX
22. 22/47
Setup Your Environment
Start OVX
Start another terminal and run OVX
• $ cd OpenVirtex/scripts
• $ sh ovx.sh
OVX connect to all switches and links in the network
OVX
23. 23/47
Learning to Fly
Introduction
Try to create a simple virtual network composed out of two
hosts, h_SEA_1 and h_LAX_2
Final virtual network will look like figure
h_SEA_1
h_LAX_2
24. 24/47
Learning to Fly
Virtual Network Configuration
Create virtual network
• Start a new terminal
• $ python ovxctl.py –n createNetwork tcp:localhost:10000 10.0.0.0 16
• A virtual network will have a controller speaking tcp protocol and running on localhost
port 10000. Virtual network’s hosts will be using Ips in the 10.0.0.0/16 range.
• Above command returns a tenant ID (ex. ‘tenantId’:1 )
Create virtual switches
• $ python ovxctl.py –n createSwitch 1 00:00:00:00:00:00:01:00 SEA
• $ python ovxctl.py –n createSwitch 1 00:00:00:00:00:00:02:00 SFO
• $ python ovxctl.py –n createSwitch 1 00:00:00:00:00:00:03:00 LAX
• Each time we create a virtual switch, we get a virtual switch DPID.
• Virtual DPID of SEA : 00:a4:23:05:00:00:00:01
• Virtual DPID of SFO : 00:a4:23:05:00:00:00:02
• Virtual DPID of LAX : 00:a4:23:05:00:00:00:03
tenantId Physical DPID
27. 27/47
Learning to Fly
Virtual Network Configuration
Create virtual links
• $ python ovxctl –n connectLink 1 00:a4:23:05:00:00:00:01 2 00:a4:23:05:00:00:00:02 1 spf 1
• $ python ovxctl –n connectLink 1 00:a4:23:05:00:00:00:01 2 00:a4:23:05:00:00:00:02 1 spf 1
• The call returns the virtual link ID. Note that OVX will automatically create the reverse link as well,
which has the same link ID.
Connect hosts
• $ python ovxctl –n connectHost 1 00:a4:23:05:00:00:00:01 1 00:00:00:00:01:01
• $ python ovxctl –n connectHost 1 00:a4:23:05:00:00:00:03 2 00:00:00:00:03:02
• Connect h_SEA_1 to port 1 on the first virtual switch
• Connect h_LAX_2 to port 2 on the third virtual switch
tenantId src virtual DPID dst virtual DPID
src port dst port
tenantId virtual switch DPID
virtual switch port
Host MAC address
28. 28/47
Learning to Fly
Virtual Network Configuration
OVX
3) Create virtual ports
4) Create virtual links
①
②
SEA
SFO
LAX
00:a4:23:05:00:00:00:01
00:a4:23:05:00:00:00:02
00:a4:23:05:00:00:00:03
②
②
①
①
h_SEA_1
00:00:00:00:01:01
h_LAX_2
00:00:00:00:03:02
5) Connect hosts
29. 29/47
Learning to Fly
Starting a virtual network
Our virtual network is ready to be booted
• $ python ovxctl.py –n startNetwork 1
• The virtual switches connect to the controller(Floodlight)
• From the controller’s point of view, OVX will look and behave exactly like a physical network.
• OVX looks like a controller from the physical switches’ perspective
tenantId
That is a physical
network!
That is a
controller!
OVX
30. 30/47
Learning to Fly
Starting a virtual network
Ping between two hosts
• Try to ping between h_SEA_1 and h_LAX_2 Everything works fine!
Floodlight’s GUI
• http://localhost:10001/ui/index.html
31. 31/47
Learning to Fly
Starting a virtual network
Inspecting the flow tables on the physical switches
• cookie=0x100000002, … , dl_src=00:00:00:00:01:01, dl_dst=00:00:00:00:03:02
actions=mod_nw_dst:1.0.0.4, mod_nw_src:1.0.0.3, mod_dl_src:a4:23:05:01:00:00,mod_dl_dst:a4:23:05:10:00:04
• cookie=0x100000003, … ,dl_src=a4:23:05:01:00:00,dl_dst=a4:23:05:10:00:02
actions=mod_nw_dst:10.0.0.2,mod_nw_src:10.0.0.1,mod_dl_src:00:00:00:00:03:02,mod_dl_dst:00:00:00:00:01:01
• cookie=0x100000002, … , dl_src=a4:23:05:01:00:00, dl_dst=a4:23:05:10:00:04
actions=mod_dl_src:a4:23:05:01:00:00,mod_dl_dst:a4:23:05:10:00:04
• cookie=0x100000003, … ,dl_src=a4:23:05:01:00:00,dl_dst=a4:23:05:20:00:02
actions=mod_dl_src:a4:23:05:01:00:00,mod_dl_dst:a4:23:05:10:00:02
• cookie=0x100000002, … , dl_src=00:00:00:00:03:02, dl_dst=00:00:00:00:01:01
actions=mod_nw_dst:1.0.0.3, mod_nw_src:1.0.0.4, mod_dl_src:a4:23:05:01:00:00,mod_dl_dst:a4:23:05:20:00:02
• cookie=0x100000003, … ,dl_src=a4:23:05:01:00:00,dl_dst=a4:23:05:20:00:04
actions=mod_nw_dst:10.0.0.1,mod_nw_src:10.0.0.2,mod_dl_src:00:00:00:00:01:01,mod_dl_dst:00:00:00:00:03:02
OVX rewrites packets at the edge of the network
• IP address of h_SEA_1 and h_LAX_2 get rewritten from 10.0.0.x to 1.0.0.x and back
• MAC address of packets are also rewritten
• The controller is unaware of all this rewriting. It only deals with packets that have their original IP (in the 10.0/16
range) and MAC address
SEA
SFO
LAX
32. 32/47
Learning to Fly
SEA
LAX
SFO
MAC=00:00:00:00:01:01
IP : 10.0.0.1
Host2
Host1
MAC=00:00:00:00:03:02
IP : 10.0.0.2
dl_src=a4:23:05:01:00:00
dl_dst=a4:23:05:20:00:04
mod_dl_src=00:00:00:0:01:01
mod_dl_dst=00:00:00:0:03:02
mod_nw_src=10.0.0.1
mod_nw_dst=10.0.0.2
dl_src=00:00:00:00:01:01
dl_dst=00:00:00:00:03:02
mod_dl_src=a4:23:05:01:00:00
mod_dl_dst=a4:23:05:10:00:04
mod_nw_src=1.0.0.3
mod_nw_dst=1.0.0.4
MACs are changed!
IPs are changed!
dl_src=a4:23:05:01:00:00
dl_dst=a4:23:05:10:00:04
mod_dl_src=a4:23:05:01:00:00
mod_dl_dst=a4:23:05:10:00:04
33. 33/47
Learning to Fly
SEA
LAX
SFO
MAC=00:00:00:00:01:01
IP : 10.0.0.1
Host2
Host1
MAC=00:00:00:00:03:02
IP : 10.0.0.2
dl_src=a4:23:05:01:00:00
dl_dst=a4:23:05:10:00:02
mod_dl_src=00:00:00:00:03:02
mod_dl_dst=00:00:00:00:01:01
mod_nw_src=10.0.0.2
mod_nw_dst=10.0.0.1
dl_src=00:00:00:0:03:02
dl_dst=00:00:00:0:01:01
mod_dl_src=a4:23:05:01:00:00
mod_dl_dst=a4:23:05:20:00:02
mod_nw_src=1.0.0.4
mod_nw_dst=1.0.0.3
MACs are changed!
IPs are changed!
dl_src=a4:23:05:01:00:00
dl_dst=a4:23:05:20:00:02
mod_dl_src=a4:23:05:01:00:00
mod_dl_dst=a4:23:05:10:00:02
34. 34/47
Air Traffic Control
Add another virtual network
This network uses the same IP addresses space as the first
Traffic is completely isolated among tenants
mininet> h_SEA_3 ping –c3 h_LAX_4 works fine.
• h_SEA_3 and h_LAX_4 are in the second virtual network
mininet> h_SEA_1 ping –c3 h_LAX_4 No ping.
• h_SEA_1 is in the first virtual network but h_LAX_4 is in the second virtual network
①
②
SEA
SFO
LAX
00:a4:23:05:00:00:00:01
00:a4:23:05:00:00:00:02
00:a4:23:05:00:00:00:03
②
②
①
①
h_SEA_3
00:00:00:00:01:03
h_LAX_4
00:00:00:00:03:04
35. 35/47
Build Your Own Topology
Big switches
Create a single virtual switch that is composed out of
multiple physical switches
• $ pyhon ovxctl.py –n createSwitch 3
00:00:00:00:00:00:05:00,00:00:00:00:00:00:06:00,00:00:00:00:00:00:0A:00
• It returns switch_id 00:a4:23:05:00:00:00:01
CLE
IAD
EWR
h_CLE_3
h_EWR_2
h_IAD_1
CLE
IAD
EWR
00:a4:23:05:00:00:00:01
36. 36/47
Build Your Own Topology
Big switches
It’s interesting to see that, from the controller’s perspective,
traffic is forwarded between ports on a single switch
It makes controller’s job so easier, as all it has to do is
forward traffic between ports on a switch
Multiple physical switches can be aggregated into a virtual
switch. But it cannot partition a single physical switch into
multiple virtual switches.
37. 37/47
Build Your Own Topology
Virtual links
A virtual link is simply a link between two virtual switches
OVX calculate the routing automatically for the virtual link
• User can specify a manual route by configuring the routing algorithm
I don’t care here.
I just want to
connect MCI to
Big switch
h_CLE_3
h_EWR_2
h_IAD_1
CLE
IAD
EWR
00:a4:23:05:00:00:00:01
MCI
h_MCI_4
00:a4:23:05:00:00:00:02
③
④
①
②
②
①
38. 38/47
Automagic Networks
Big switch
All we want is to connect hosts over a single big switch
automatically
h_SFO_1
h_IAD_2
h_EWR_3
h_ORD_4
39. 39/47
Automagic Network
Big switch
Using json file, it can automatically create virtual switch
h_SFO_1
h_IAD_2
h_EWR_3
h_ORD_4
ORD
EWR
IAD
SFO
②
④
③
①
40. 40/47
Automagic Networks
Physical clone
We want a clone of the physical network
Using json file, it can automatically copy physical network
h_SEA_1
h_MCI_3
h_IAH_4
h_ATL_2
41. 41/47
Networking. Uninterrupted.
OVX ensures user’s network is there and
operating as expected
If a physical link fails, OVX can automatically switch over to
the backup path without the controller noticing a thing
OVX calculated both a primary and backup path
42. 42/47
Networking. Uninterrupted.
Fast reroute
As soon as OVX detects that a link has gone down, it finds
out which flows are currently using that link, and shifts
traffic away onto the backup path
Time for ping sequence number 9
is much higher than the rest.
Since OVX pre-calculated the path,
it could push down the new rules
over the full path very quickly
Original path
Backup path
43. 43/47
Networking. Uninterrupted.
More backups
OVX calculates a single backup path by default
If user want to have more then user can ask OVX to
calculate more backups
After a link failure, OVX automatically switches to a backup
path. After the link comes back up, OVX will revert to the
original situation
Taking control of routing
OVX calculates shortest path routes by default
But user also can configure the routes
44. 44/47
What goes up must come down
Start and stop
How to stop and start the switch
• A ping between h_ATL_2 & h_MCI_3
• $ python ovxctl.py –n stopSwitch 2 00:00:00:00:00:00:04:00
• $ python ovxctl.py –n startSwitch 2 00:00:00:00:00:00:04:00
45. 45/47
What goes up must come down
Clean up
How to remove the host
• Want to remove host h_IAH_4
• $ python ovxctl.py –n disconnectHost 2 4
h_SEA_1
h_MCI_3
h_IAH_4
h_ATL_2
가상네트워크 자원을 제공하기 위해서는 물리적인 네트워크 명세로부터 네트워크를 분리한다.
네트워크 가상화는 컴퓨팅 및 네트워킹 하부구조의 핵심 기능으로 떠올랐다.
왜? 이러한 가상네트워크는 강력한 isolation, 마이그레이션, 스냅샷을 제공하고 토폴로지를 커스터마이징 가능하게 한다.
그래서? 네트워크 인프라 사업자는 자신들의 네트워크 자원을 더 잘 활용할 수 있도록 하기 위해 SDN을 이용한 네트워크 가상화에 눈을 돌리고 있다.
OVX 는 네트워크 가상화 플랫폼이다 . OVX는 다음과 같은 내용을 가능하게 한다.
테넌트 트래픽을 분리할 수 있는 주소 가상화
테넌트가 자신의 토폴로지를 정의할 수 있는 토폴로지 가상화
각각의 가상 네트워크를 테넌트의 NOS에 제공하여 인프라를 관리
OVX 네트워크 가상화를 관리하는 네트워크 하이퍼바이저라고 볼 수 있다.
현재 방화벽, DPI, Load balancing 및 인증과 같은 네트워크 기능들은 전용 하드웨어로 구현되고 있다.
NFV는 CAPEX/OPEX 절감과 융통성을 주기 위해 이러한 네트워크 기능들을 S/W와 VM으로 제공하는 새롭고 유망한 접근법이다.
이러한 NFV는 동적인 가상 네트워크 관리를 요한다.
FlowVisor는 OpenFlow 네트워크를 다수의 자원 pool 또는 slice로 나누는 플랫폼이다
몇가지 제약이 있는데,
모든 slice들은 근복적으로 동일한 flow나 주소공간을 공유하므로, 하나의 slice는 완전히 분리되지 못하고 독립된 주소 공간을 갖지 못한다.
Flowvisor는 하나의 slice가 어떤 임의의 가상 네트워크 토폴로지를 갖도록 하지도 못한다.
Vertigo는 FlowVisor를 확장하여 토폴로지 가상호를 제공하도록 하느 솔루션이다.
이것은 각 테넌트들이 네트워크 slice내에 가상 링크를 정의하도록 해준다
그렇지만 vertigo는 FlowVisor를 기반으로 했기 때문에 테넌트들에게 완전히 격리된 주소 공간을 제공하지는 못한다.
FlowN은 물리 및 가상 네트워크 간의 매핑을 유지하기 위해 데이터베이스 저장 시스템을 추가한 것이다. 하지만 각 테넌트의 로직이 FlowN 컨트롤러에 내장되어야 하므로 테넌트가 자신의 애플리케이션을 개발하려면 FlowN 프레임워크의 제약을 받는다는 단점이 있다.
OVX는 OpenFlow semantics로 가상 네트워크를 만드는 것을 가능케 해주는 플랫폼이다
이 가상네트워크는 임의의 토폴로지와 주소 체계를 가질 수 있고, 테넌트 별 요청에 따라 구성이 가능하다.
요청은 network embedder와 같은 툴을 이용하여 ovx에 api call로 전달된다.
내부적으로, OVX는 물리적인 것으로부터 가상요소를 loose decoupling하는 방법을 사용한다.
이를 실현하기 위해, OVX는 모든 가상 및 물리적 요소를 리모델링하고 이들간의 매핑을 유지한다.
모든 가상 네트워크 요소들은 최소한 하나의 물리적 요소에 매핑된다.
OVX는 테넌트들이 자신만의 임의의 토폴로지를 정의할 수 있게 한다.
이러한 토폴로지는 실제의 물리적 네트워크에 일치할 필요는 없지만, 테넌트가 바라는 것에 정확히 매치되어야 한다.
OVX는 테넌트들에게 그들의 end hosts를 위한 주소를 선택할 수 있는 능력을 부여한다.
즉, 동일한 물리 네트워크 내에서 다수의, 잠재적으로 중복되는 IP 주소 블록을 사용할 수 있게 한다.
호스트들을 구분하기 위해, 각 테넌트 별로 고유한 tenant ID 를 생성한다.
각 가상 네트워크는 가상 네트워크 스위치들을 프로그래밍할 수 있는 자신의 NOS와 애플리케이션을 가질 수 있다.
OVX는 가상 네트워크에 대한 다양한 제어 기능들을 해당 물리 네트워크에 매핑하는 기능을 수행한다.
가상 및 물리 컴포넌트 사이의 느슨한 결합 구조는 상당한 융통성을 제공한다.
토폴로지 구성 : 가상 링크는 다수의 인접 hop들을 통과할 수 도 잇고, 가상 스위치는 전체 네트워크의 일부나 전체를 추상화할 수 있다.
탄성(리질리언시,복구능력) : 가상 링크의 end points에 대응하는 points들 사이에 여러 개의 물리경로를 두어서 탄성력 있는 가상 링크를 만들 수 있다. (무슨말이냐면, 여러 경로를 후보로 만들어 놓으면 한 경로가 잘못 되어도 다른 백업경로로 우회하면 된다는 말)
매핑 자체는 어떤 네트워크 상태 정보도 저장하지 않으므로 실행 도중에도 변경 가능하다.
각 네트워크 및 네트워크 요소는 보존할 수 있는 속성의 모음을 유지한다. 이것은 정보를 영구저장장치에 기록 관리한다
그럼으로써 vSDN은 제거되거나 나중에 재구성될 수 있다.
OVX에게 VSDN 구성을 저장 및 복구할 수 있게 하며, 테넌트 네트워크를 스냅샷 가능케 하는 지속성을 제공한다.
광범위하게 제어메시지를 재작성하는 것은 이미 어려운 장애처리 과정응ㄹ 더 복잡하게 만든다
OVX는 vSDN 연결을 제공함으로써 네트워크 디버거와의 통합을 제공한다.
The tests discussed here focus on control channel overhead introduced by OVX, and virtual network generation time
여기서 시험한 것은 가상네트워크 생성과 컨트롤 채널 오버헤드에 관한 것이다.
그림은 OVX,FlowVisor,FlowN 그리고 가상화 소프트웨어를 사용하지 않은 상태 , 이렇게 4가지 경우에 대해서
패킷이 스위치와 컨트롤러 간에서 오가는 경우에 생기는 latenc를 보여준다
결과에 따르면 OVX가 다른 플랫폼에 비해 더 좋은 성능을 보이고, 단지 0.2ms의 latenc만 컨트롤 채널에 추가함을 알 수 있다.
표는 NOS가 연결된 지점까지 하나의 가상 네트워크를 생성하고 구성하는데 소요되는 시간을 나타낸다
가상네트워크는 API를 통해 생성 및 구성하거나 영구저장 장치로 부터 로딩하여 생성 가능하다.
OVX는 수(수십)초의 단위로 프로비저닝(공급,제공) 가능하다.
가상화 환경에서 특정 시점에서 VM의 상태와 데이터를 보존하는 능력은 핵심적인 기능이 되고 있다. 이것은 장애 시에 빠른 복구뿐 아니라 동작 중인 VM을 다른 위치로 이전하고 복제한 것을 용이하게 해준다.
OpenFlow1.0에 의존하는 현재의 표준 java openflowj 라이브러리를 LOXI로 교체하고 있다.
OpenFlow1.3을 southbound I/F로 구현할 예정이다.
OVX는 가상네트워크에 QoS를 적용할 수 있는 flow기반의 meter를 사용할 수 있으므로 테넌트에게 성능이 보장되고 완전히 격리된 환경을 제공할 수 있을 것이다.
LOXI와 openflow 1.3으로의 이전이 완료되면, OVX는 가상 네트워크에 QoS를 적용할 수 있는 flow 기반의 meter를 사용할 수 있으므로 테넌트에게 성능이 보장되고 완전히 격리된 환경을 제공할 수 있을 것이다.
3가지 프롬프트가 사용된다.
실행 프롬프트
미니넷 프롬프트
OVX 로그메시지 프롬프트
OVX log messages start with a date and time.
OVX looks and behaves like a real network from the controller’s perspective.
Physical 스위치의 플로우테이블을 들여다보자.
dl_dst : Ethernet destination address
nw_dst : IP destination address
Mod = Modify
From an existing physical network, we created a virtual topology.
We told OVX that switches, links and hosts should make up our virtual network
In the following slides, we will create another virtual network and show that we can use the same IP addressing while traffic remains fully isolated among virtual networks.
We need a way to rapidly deploy virtual network topologies
Network embedder automate the process of mapping the virtual topology onto the physical.