SlideShare a Scribd company logo

Vbrownbag container networking for real workloads

Cisco DevNet
Cisco DevNet

This document summarizes Matt Johnson's presentation on container networking at Cisco LIVE! 2015. The presentation discussed: 1) The default Docker networking model of using NAT which has limits like containers only having private IPs tied to the host IP. 2) Emerging solutions like Kubernetes that provide services for containers but still rely on tunnels. 3) The benefits of integrating containers as "first class citizens" on the real network using standards like BGP without NAT or tunnels so containers can have public IPs and mobility. 4) Cisco's work to implement these ideas in an open source project called the Cisco Microservices Environment based on Mesos to provide a preconfigured environment for real workloads.

Technology
1 of 30
Download to read offline
Matt Johnson #vBrownBag at Cisco LIVE! 2015 9th June 2015 Container networking for real workloads. Why Default isn’t Best matjohn2@cisco.com @mattdashj Presentation recording available at: https://www.youtube.com/watch?v=z-GD-ctjCRc
2© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Hard to say ‘container’ nowadays without… So we’ll start our story here.
3© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Quick Overview: Docker Networking host docker0 172.17.42.1/16 veth049e89e eth0 172.17.0.21/16 veth049e88f veth049e87af eth0 192.168.1.10 eth0 192.168.1.10 eth0 192.168.1.10 host eth0 docker run --net=bridge (default) docker run --net=host Container shares the host’s IP address and MAC address. vEth pair linked into container from docker0 bridge. DNAT provides inbound ports to containerized apps. •  Default IP address is dynamically allocated from unused range (ie 172.17.0.0/16.) can be set with –fixed-cidr on docker daemon •  Default GW for containers is the IP addr of the host docker0 interface can be set with –bip on docker daemon eth0 172.17.0.21/16 eth0 172.17.0.21/16 containers 3 iptables (NAT)iptables (NAT)
4© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Why NAT? -  Works out of the box on a host with a single IP Dockers’ rise to prominence due to User Experience. Not new tech. - LXC, Existed - Containers, Nothing new (Solaris Zones Anyone?) The difference is it had never been as easy to use/explain/build/share.
Not without it’s limits: -  Container IP tied to Host. -  Only one container can have a ‘common’ port per host. -  Careful manual port assignment. -  Dynamic assignment with support in the app to support it. -  App’s need to be told to read ‘real’ network info from $ENV’s
6© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Extending Networking: Kubernetes Pod - a co-located group of Docker containers with shared volumes. They're the smallest deployable units that can be created, scheduled, and managed with Kubernetes. Service - provide a single, stable name and address for a set of pods. They act as basic load balancers. Label - are used to organize and select groups of objects based on key/value pairs. Replication Controller - are used to organize and select groups of objects based on key/value pairs. master server apiserver etcd controller manager scheduler skydns pod C11 C12 C13 minion pod C21 C22 C23 pod C41 C42 C43 minion pod C14 C15 pod C44 minion pod C24 pod C44 C45 minion pod C24 pod C11 C12 C13 minion pod C21 C22 C23 service(IP addr/DN)replication Controller service(IP addr/DN) cluster 6
7© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Extending Networking: Kubernetes 7
Tunnels are great… Right?
9© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Tunnels We don’t have to deal with whatever the underlying network is.
10© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Tunnels Although we do have to deal with… Ramps! On/Off the overlay. Potential bottleneck / scalability issues An Interesting L2 Design. Subject to implementation, may lack multicast support, treat broadcast strangely etc. Debug overhead. I only have 50 VM’s, but which one of my 1,225 tunnels (full mesh) is causing the issue.
11© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Tunnels Although we do have to deal with… MTU and Frag. avoidance. It is a tunnel after all! Security. Subject to implementation, spanning ARP really isn’t ideal. Lots of containers running privileged.
12© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Future Docker Networking: libnetwork The Container Network Model (CMN) 12 Docker Container Docker Container Docker Container Network Sandbox Network Sandbox Network Sandbox Endpoint Endpoint Endpoint Endpoint Backend Network Frontend Network •  Network Sandbox -- isolated environment where container network configuration lives •  Endpoint – network interface tied to a specific network •  Network – a uniquely identifiable collection of Endpoints that are able to communicate with each other A pluggable interface. Expected to first ship in Docker 1.7. Distributed bridge plugin under development.
13© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Future Docker Networking: Overlay/L2 Centric The Container Network Model (CMN) 13
14© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public So wouldn’t it be great if… We could network containers without NAT, Without requiring a ‘tunnels everywhere’ approach, Without on or off ramps, With full IPv4 and IPv6 support, And at Internet-scale?
15© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public We Can! .. If we don’t treat containers as Unique/Special
16© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Scalable DataCenter topologies have existed for quite a while…
And no, this isn’t about to turn into a Cisco sales pitch… promise!
18© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Standards Use Networking standards tried and tested by the rest of the industry. Already used every day at unprecedented Scale. Don’t reinvent the wheel. Integrate and benefit from existing network team skillsets.
19© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Proposed solution with Docker / Container Networking
20© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Containers as a first class citizen of the real network •  Devolve routing down into each host. •  BGP as the saleable, proven control plane. •  Standard, proven linux networking stack. •  Containers have IP’s.. •  No NAT. •  DNS works properly. •  No tunnels necessary. •  Support for legacy applications & clustering. •  Support for multicast. •  IPv4 & IPv6 Support. •  Standard network protocols that the rest of the industry uses •  Service providers and Enterprises can easily integrate.
21© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Buy Today… And we’ll throw in container mobility for free! IP’s no longer bound to the IP of the host, If a workload moves, the IP can go with it. Containerized data services will benefit massively from this.
22© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public So where is this work going? Validated ideas through other container Industry supporters. Not the only people thinking this way. Implementation is happening now! Which brings me onto a side note…
Matt Johnson #vBrownBag at Cisco LIVE! 2015 9th June 2015 This isn’t a real title. The ‘Nothing really to do with networking’ part of the talk @mattdashj
Snowflakes!
25© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public GLUEFlakes!
Snowflakes!
27© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Avoid GlueFlakes! There’s something to this whole ‘user experience’ thing! MicroServices Infrastructure release 0.3 TODAY! we’re changing the name to something less sucky soon too!
28© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public •  Cisco Microservices Environment based on Mesos. •  Fully open source. •  Framework support in Mesos leveraged to deploy scalable data, monitoring and assurance services all-in-one. •  We’ve designed, written and tested the glue. •  ‘Dogfooding’ internally. We’ve built it to solve real problems. •  Contribute vs Creating a new GlueFlake. •  ‘Out of the Box’ environment for real-life workloads. Enable the automatic deployment of development dependencies!
29© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public So back to that network thing… You guessed it… It’s going into MicroServices Infrastructure. Preconfigured to work with data and marathon workloads out of the box. /ciscocloud/microservices-infrastructure Roadmap updates and official announcements soon…
Thanks for Listening! Questions?

Recommended

DEVNET-2010 Remote Expert Mobile Web/Android/iOS SDK Live Coding Tutorial and...
DEVNET-2010 Remote Expert Mobile Web/Android/iOS SDK Live Coding Tutorial and...DEVNET-2010 Remote Expert Mobile Web/Android/iOS SDK Live Coding Tutorial and...
DEVNET-2010 Remote Expert Mobile Web/Android/iOS SDK Live Coding Tutorial and...
Cisco DevNet
 
DEVNET-2011 Jabber Guest - Android SDK Live Coding Tutorial
DEVNET-2011 Jabber Guest - Android SDK Live Coding TutorialDEVNET-2011 Jabber Guest - Android SDK Live Coding Tutorial
DEVNET-2011 Jabber Guest - Android SDK Live Coding Tutorial
Cisco DevNet
 
To Build or Not to Build Your WebRTC Infrastructure
To Build or Not to Build Your WebRTC InfrastructureTo Build or Not to Build Your WebRTC Infrastructure
To Build or Not to Build Your WebRTC Infrastructure
Tsahi Levent-levi
 
DevConf.CZ 2020 @ Brno, Czech Republic : WebAuthn support for keycloak
DevConf.CZ 2020 @ Brno, Czech Republic : WebAuthn support for keycloakDevConf.CZ 2020 @ Brno, Czech Republic : WebAuthn support for keycloak
DevConf.CZ 2020 @ Brno, Czech Republic : WebAuthn support for keycloak
Hitachi, Ltd. OSS Solution Center.
 
NetDevOps Development Environments
NetDevOps Development EnvironmentsNetDevOps Development Environments
NetDevOps Development Environments
Joel W. King
 
Going Serverless Using the Spring Framework Ecosystem
Going Serverless Using the Spring Framework EcosystemGoing Serverless Using the Spring Framework Ecosystem
Going Serverless Using the Spring Framework Ecosystem
VMware Tanzu
 
Beyond the MCU
Beyond the MCUBeyond the MCU
Beyond the MCU
Dialogic Inc.
 
You and your containers: strumenti di automazione in Cloud (parte 2) - Gabrie...
You and your containers: strumenti di automazione in Cloud (parte 2) - Gabrie...You and your containers: strumenti di automazione in Cloud (parte 2) - Gabrie...
You and your containers: strumenti di automazione in Cloud (parte 2) - Gabrie...
Codemotion
 

Recommended

DEVNET-2010 Remote Expert Mobile Web/Android/iOS SDK Live Coding Tutorial and...
DEVNET-2010 Remote Expert Mobile Web/Android/iOS SDK Live Coding Tutorial and...DEVNET-2010 Remote Expert Mobile Web/Android/iOS SDK Live Coding Tutorial and...
DEVNET-2010 Remote Expert Mobile Web/Android/iOS SDK Live Coding Tutorial and...
Cisco DevNet
 
DEVNET-2011 Jabber Guest - Android SDK Live Coding Tutorial
DEVNET-2011 Jabber Guest - Android SDK Live Coding TutorialDEVNET-2011 Jabber Guest - Android SDK Live Coding Tutorial
DEVNET-2011 Jabber Guest - Android SDK Live Coding Tutorial
Cisco DevNet
 
To Build or Not to Build Your WebRTC Infrastructure
To Build or Not to Build Your WebRTC InfrastructureTo Build or Not to Build Your WebRTC Infrastructure
To Build or Not to Build Your WebRTC Infrastructure
Tsahi Levent-levi
 
DevConf.CZ 2020 @ Brno, Czech Republic : WebAuthn support for keycloak
DevConf.CZ 2020 @ Brno, Czech Republic : WebAuthn support for keycloakDevConf.CZ 2020 @ Brno, Czech Republic : WebAuthn support for keycloak
DevConf.CZ 2020 @ Brno, Czech Republic : WebAuthn support for keycloak
Hitachi, Ltd. OSS Solution Center.
 
NetDevOps Development Environments
NetDevOps Development EnvironmentsNetDevOps Development Environments
NetDevOps Development Environments
Joel W. King
 
Going Serverless Using the Spring Framework Ecosystem
Going Serverless Using the Spring Framework EcosystemGoing Serverless Using the Spring Framework Ecosystem
Going Serverless Using the Spring Framework Ecosystem
VMware Tanzu
 
Beyond the MCU
Beyond the MCUBeyond the MCU
Beyond the MCU
Dialogic Inc.
 
You and your containers: strumenti di automazione in Cloud (parte 2) - Gabrie...
You and your containers: strumenti di automazione in Cloud (parte 2) - Gabrie...You and your containers: strumenti di automazione in Cloud (parte 2) - Gabrie...
You and your containers: strumenti di automazione in Cloud (parte 2) - Gabrie...
Codemotion
 
Microservices and containers networking: Contiv, an industry leading open sou...
Microservices and containers networking: Contiv, an industry leading open sou...Microservices and containers networking: Contiv, an industry leading open sou...
Microservices and containers networking: Contiv, an industry leading open sou...
Codemotion
 
Video production in the cloud for live streaming
Video production in the cloud for live streamingVideo production in the cloud for live streaming
Video production in the cloud for live streaming
Paul Richards
 
Cloud Based Video Production and Editing
Cloud Based Video Production and EditingCloud Based Video Production and Editing
Cloud Based Video Production and Editing
Paul Richards
 
Comparison of Current Service Mesh Architectures
Comparison of Current Service Mesh ArchitecturesComparison of Current Service Mesh Architectures
Comparison of Current Service Mesh Architectures
Mirantis
 
Security Patterns for Microservice Architectures - SpringOne 2020
Security Patterns for Microservice Architectures - SpringOne 2020Security Patterns for Microservice Architectures - SpringOne 2020
Security Patterns for Microservice Architectures - SpringOne 2020
Matt Raible
 
WebRTC with Java
WebRTC with JavaWebRTC with Java
WebRTC with Java
amithap07
 
Securing k8s With Kubernetes Goat
Securing k8s With Kubernetes GoatSecuring k8s With Kubernetes Goat
Securing k8s With Kubernetes Goat
Muhammad Yuga Nugraha
 
WebRTC for Telco: Informa's WebRTC Global Summit Preconference
WebRTC for Telco: Informa's WebRTC Global Summit PreconferenceWebRTC for Telco: Informa's WebRTC Global Summit Preconference
WebRTC for Telco: Informa's WebRTC Global Summit Preconference
Tsahi Levent-levi
 
Programming with the Finesse API
Programming with the Finesse APIProgramming with the Finesse API
Programming with the Finesse API
Cisco DevNet
 
WebRTC for Mobile
WebRTC for MobileWebRTC for Mobile
WebRTC for Mobile
Shubh Agarwal
 
ARM Mali "Egil" technical preview
ARM Mali "Egil" technical previewARM Mali "Egil" technical preview
ARM Mali "Egil" technical preview
Phil Hughes
 
Server-side WebRTC Infrastructure
Server-side WebRTC InfrastructureServer-side WebRTC Infrastructure
Server-side WebRTC Infrastructure
Dialogic Inc.
 
Microservice Pattern Launguage
Microservice Pattern LaunguageMicroservice Pattern Launguage
Microservice Pattern Launguage
Inho Kang
 
A jQuery for WebRTC
A jQuery for WebRTCA jQuery for WebRTC
A jQuery for WebRTC
Thomas Gorissen
 
Istio service mesh introduction
Istio service mesh introductionIstio service mesh introduction
Istio service mesh introduction
Kyohei Mizumoto
 
Webex Devices xAPI - DEVNET_2071 - Cisco Live - San Diego 2019
Webex Devices xAPI - DEVNET_2071 - Cisco Live - San Diego 2019Webex Devices xAPI - DEVNET_2071 - Cisco Live - San Diego 2019
Webex Devices xAPI - DEVNET_2071 - Cisco Live - San Diego 2019
Cisco DevNet
 
Workshop web rtc implementation details
Workshop web rtc implementation detailsWorkshop web rtc implementation details
Workshop web rtc implementation details
Douglas Tait
 
StripeCon 2021: A Cloud-Native approach to running Silverstripe on Google Clo...
StripeCon 2021: A Cloud-Native approach to running Silverstripe on Google Clo...StripeCon 2021: A Cloud-Native approach to running Silverstripe on Google Clo...
StripeCon 2021: A Cloud-Native approach to running Silverstripe on Google Clo...
Jon Su
 
Securing Your Apps & APIs in the Cloud
Securing Your Apps & APIs in the CloudSecuring Your Apps & APIs in the Cloud
Securing Your Apps & APIs in the Cloud
Olivia LaMar
 
Spring Data JDBC: Beyond the Obvious
Spring Data JDBC: Beyond the ObviousSpring Data JDBC: Beyond the Obvious
Spring Data JDBC: Beyond the Obvious
VMware Tanzu
 
Patrick Kerpan's CSA EMEA Congress presentation "Overlay Networks: Connecting...
Patrick Kerpan's CSA EMEA Congress presentation "Overlay Networks: Connecting...Patrick Kerpan's CSA EMEA Congress presentation "Overlay Networks: Connecting...
Patrick Kerpan's CSA EMEA Congress presentation "Overlay Networks: Connecting...
Cohesive Networks
 
Laporan kegiatan
Laporan kegiatanLaporan kegiatan
Laporan kegiatanmaiyunk
 

More Related Content

What's hot

Microservices and containers networking: Contiv, an industry leading open sou...
Microservices and containers networking: Contiv, an industry leading open sou...Microservices and containers networking: Contiv, an industry leading open sou...
Microservices and containers networking: Contiv, an industry leading open sou...
Codemotion
 
Video production in the cloud for live streaming
Video production in the cloud for live streamingVideo production in the cloud for live streaming
Video production in the cloud for live streaming
Paul Richards
 
Cloud Based Video Production and Editing
Cloud Based Video Production and EditingCloud Based Video Production and Editing
Cloud Based Video Production and Editing
Paul Richards
 
Comparison of Current Service Mesh Architectures
Comparison of Current Service Mesh ArchitecturesComparison of Current Service Mesh Architectures
Comparison of Current Service Mesh Architectures
Mirantis
 
Security Patterns for Microservice Architectures - SpringOne 2020
Security Patterns for Microservice Architectures - SpringOne 2020Security Patterns for Microservice Architectures - SpringOne 2020
Security Patterns for Microservice Architectures - SpringOne 2020
Matt Raible
 
WebRTC with Java
WebRTC with JavaWebRTC with Java
WebRTC with Java
amithap07
 
Securing k8s With Kubernetes Goat
Securing k8s With Kubernetes GoatSecuring k8s With Kubernetes Goat
Securing k8s With Kubernetes Goat
Muhammad Yuga Nugraha
 
WebRTC for Telco: Informa's WebRTC Global Summit Preconference
WebRTC for Telco: Informa's WebRTC Global Summit PreconferenceWebRTC for Telco: Informa's WebRTC Global Summit Preconference
WebRTC for Telco: Informa's WebRTC Global Summit Preconference
Tsahi Levent-levi
 
Programming with the Finesse API
Programming with the Finesse APIProgramming with the Finesse API
Programming with the Finesse API
Cisco DevNet
 
WebRTC for Mobile
WebRTC for MobileWebRTC for Mobile
WebRTC for Mobile
Shubh Agarwal
 
ARM Mali "Egil" technical preview
ARM Mali "Egil" technical previewARM Mali "Egil" technical preview
ARM Mali "Egil" technical preview
Phil Hughes
 
Server-side WebRTC Infrastructure
Server-side WebRTC InfrastructureServer-side WebRTC Infrastructure
Server-side WebRTC Infrastructure
Dialogic Inc.
 
Microservice Pattern Launguage
Microservice Pattern LaunguageMicroservice Pattern Launguage
Microservice Pattern Launguage
Inho Kang
 
A jQuery for WebRTC
A jQuery for WebRTCA jQuery for WebRTC
A jQuery for WebRTC
Thomas Gorissen
 
Istio service mesh introduction
Istio service mesh introductionIstio service mesh introduction
Istio service mesh introduction
Kyohei Mizumoto
 
Webex Devices xAPI - DEVNET_2071 - Cisco Live - San Diego 2019
Webex Devices xAPI - DEVNET_2071 - Cisco Live - San Diego 2019Webex Devices xAPI - DEVNET_2071 - Cisco Live - San Diego 2019
Webex Devices xAPI - DEVNET_2071 - Cisco Live - San Diego 2019
Cisco DevNet
 
Workshop web rtc implementation details
Workshop web rtc implementation detailsWorkshop web rtc implementation details
Workshop web rtc implementation details
Douglas Tait
 
StripeCon 2021: A Cloud-Native approach to running Silverstripe on Google Clo...
StripeCon 2021: A Cloud-Native approach to running Silverstripe on Google Clo...StripeCon 2021: A Cloud-Native approach to running Silverstripe on Google Clo...
StripeCon 2021: A Cloud-Native approach to running Silverstripe on Google Clo...
Jon Su
 
Securing Your Apps & APIs in the Cloud
Securing Your Apps & APIs in the CloudSecuring Your Apps & APIs in the Cloud
Securing Your Apps & APIs in the Cloud
Olivia LaMar
 
Spring Data JDBC: Beyond the Obvious
Spring Data JDBC: Beyond the ObviousSpring Data JDBC: Beyond the Obvious
Spring Data JDBC: Beyond the Obvious
VMware Tanzu
 

What's hot (20)

Microservices and containers networking: Contiv, an industry leading open sou...
Microservices and containers networking: Contiv, an industry leading open sou...Microservices and containers networking: Contiv, an industry leading open sou...
Microservices and containers networking: Contiv, an industry leading open sou...
 
Video production in the cloud for live streaming
Video production in the cloud for live streamingVideo production in the cloud for live streaming
Video production in the cloud for live streaming
 
Cloud Based Video Production and Editing
Cloud Based Video Production and EditingCloud Based Video Production and Editing
Cloud Based Video Production and Editing
 
Comparison of Current Service Mesh Architectures
Comparison of Current Service Mesh ArchitecturesComparison of Current Service Mesh Architectures
Comparison of Current Service Mesh Architectures
 
Security Patterns for Microservice Architectures - SpringOne 2020
Security Patterns for Microservice Architectures - SpringOne 2020Security Patterns for Microservice Architectures - SpringOne 2020
Security Patterns for Microservice Architectures - SpringOne 2020
 
WebRTC with Java
WebRTC with JavaWebRTC with Java
WebRTC with Java
 
Securing k8s With Kubernetes Goat
Securing k8s With Kubernetes GoatSecuring k8s With Kubernetes Goat
Securing k8s With Kubernetes Goat
 
WebRTC for Telco: Informa's WebRTC Global Summit Preconference
WebRTC for Telco: Informa's WebRTC Global Summit PreconferenceWebRTC for Telco: Informa's WebRTC Global Summit Preconference
WebRTC for Telco: Informa's WebRTC Global Summit Preconference
 
Programming with the Finesse API
Programming with the Finesse APIProgramming with the Finesse API
Programming with the Finesse API
 
WebRTC for Mobile
WebRTC for MobileWebRTC for Mobile
WebRTC for Mobile
 
ARM Mali "Egil" technical preview
ARM Mali "Egil" technical previewARM Mali "Egil" technical preview
ARM Mali "Egil" technical preview
 
Server-side WebRTC Infrastructure
Server-side WebRTC InfrastructureServer-side WebRTC Infrastructure
Server-side WebRTC Infrastructure
 
Microservice Pattern Launguage
Microservice Pattern LaunguageMicroservice Pattern Launguage
Microservice Pattern Launguage
 
A jQuery for WebRTC
A jQuery for WebRTCA jQuery for WebRTC
A jQuery for WebRTC
 
Istio service mesh introduction
Istio service mesh introductionIstio service mesh introduction
Istio service mesh introduction
 
Webex Devices xAPI - DEVNET_2071 - Cisco Live - San Diego 2019
Webex Devices xAPI - DEVNET_2071 - Cisco Live - San Diego 2019Webex Devices xAPI - DEVNET_2071 - Cisco Live - San Diego 2019
Webex Devices xAPI - DEVNET_2071 - Cisco Live - San Diego 2019
 
Workshop web rtc implementation details
Workshop web rtc implementation detailsWorkshop web rtc implementation details
Workshop web rtc implementation details
 
StripeCon 2021: A Cloud-Native approach to running Silverstripe on Google Clo...
StripeCon 2021: A Cloud-Native approach to running Silverstripe on Google Clo...StripeCon 2021: A Cloud-Native approach to running Silverstripe on Google Clo...
StripeCon 2021: A Cloud-Native approach to running Silverstripe on Google Clo...
 
Securing Your Apps & APIs in the Cloud
Securing Your Apps & APIs in the CloudSecuring Your Apps & APIs in the Cloud
Securing Your Apps & APIs in the Cloud
 
Spring Data JDBC: Beyond the Obvious
Spring Data JDBC: Beyond the ObviousSpring Data JDBC: Beyond the Obvious
Spring Data JDBC: Beyond the Obvious
 

Viewers also liked

Patrick Kerpan's CSA EMEA Congress presentation "Overlay Networks: Connecting...
Patrick Kerpan's CSA EMEA Congress presentation "Overlay Networks: Connecting...Patrick Kerpan's CSA EMEA Congress presentation "Overlay Networks: Connecting...
Patrick Kerpan's CSA EMEA Congress presentation "Overlay Networks: Connecting...
Cohesive Networks
 
Laporan kegiatan
Laporan kegiatanLaporan kegiatan
Laporan kegiatanmaiyunk
 
Global Aerogel market
Global Aerogel marketGlobal Aerogel market
Global Aerogel market
ReportsandIntelligence
 
20130930 2013 annual_report-aveo group
20130930 2013 annual_report-aveo group20130930 2013 annual_report-aveo group
20130930 2013 annual_report-aveo groupMark McCormack
 
Kil for bb_desktop_software_7_1_bundle_42
Kil for bb_desktop_software_7_1_bundle_42Kil for bb_desktop_software_7_1_bundle_42
Kil for bb_desktop_software_7_1_bundle_42William Tjang
 
Causative verb
Causative verbCausative verb
Causative verb
Panacea
 
Flare: an overview
Flare: an overviewFlare: an overview
Flare: an overview
Cisco DevNet
 
DEVNET-1129 WAN Automation Engine - Develop Traffic Aware Applications Using ...
DEVNET-1129 WAN Automation Engine - Develop Traffic Aware Applications Using ...DEVNET-1129 WAN Automation Engine - Develop Traffic Aware Applications Using ...
DEVNET-1129 WAN Automation Engine - Develop Traffic Aware Applications Using ...
Cisco DevNet
 
Profesion docente
Profesion docenteProfesion docente
Profesion docente
stemenle
 
SPED - Public Digital Bookkeeping System: influence in the economic-financial...
SPED - Public Digital Bookkeeping System: influence in the economic-financial...SPED - Public Digital Bookkeeping System: influence in the economic-financial...
SPED - Public Digital Bookkeeping System: influence in the economic-financial...berbone
 
DEVNET-2009 Intercloud Fabric REST APIs for Providers
DEVNET-2009 Intercloud Fabric REST APIs for ProvidersDEVNET-2009 Intercloud Fabric REST APIs for Providers
DEVNET-2009 Intercloud Fabric REST APIs for Providers
Cisco DevNet
 
SEO: Core Understanding, Solid Strategy & Advanced Tactics
SEO: Core Understanding, Solid Strategy & Advanced TacticsSEO: Core Understanding, Solid Strategy & Advanced Tactics
SEO: Core Understanding, Solid Strategy & Advanced Tactics
IslamAmeen
 
Lookbook Fullah Sugah AW 14/15 - The October Issue
Lookbook Fullah Sugah AW 14/15 - The October IssueLookbook Fullah Sugah AW 14/15 - The October Issue
Lookbook Fullah Sugah AW 14/15 - The October Issue
Fullah Sugah
 
Pengenalan dbase IV
Pengenalan dbase IVPengenalan dbase IV
Pengenalan dbase IV
Aziz Sudrajat95
 

Viewers also liked (14)

Patrick Kerpan's CSA EMEA Congress presentation "Overlay Networks: Connecting...
Patrick Kerpan's CSA EMEA Congress presentation "Overlay Networks: Connecting...Patrick Kerpan's CSA EMEA Congress presentation "Overlay Networks: Connecting...
Patrick Kerpan's CSA EMEA Congress presentation "Overlay Networks: Connecting...
 
Laporan kegiatan
Laporan kegiatanLaporan kegiatan
Laporan kegiatan
 
Global Aerogel market
Global Aerogel marketGlobal Aerogel market
Global Aerogel market
 
20130930 2013 annual_report-aveo group
20130930 2013 annual_report-aveo group20130930 2013 annual_report-aveo group
20130930 2013 annual_report-aveo group
 
Kil for bb_desktop_software_7_1_bundle_42
Kil for bb_desktop_software_7_1_bundle_42Kil for bb_desktop_software_7_1_bundle_42
Kil for bb_desktop_software_7_1_bundle_42
 
Causative verb
Causative verbCausative verb
Causative verb
 
Flare: an overview
Flare: an overviewFlare: an overview
Flare: an overview
 
DEVNET-1129 WAN Automation Engine - Develop Traffic Aware Applications Using ...
DEVNET-1129 WAN Automation Engine - Develop Traffic Aware Applications Using ...DEVNET-1129 WAN Automation Engine - Develop Traffic Aware Applications Using ...
DEVNET-1129 WAN Automation Engine - Develop Traffic Aware Applications Using ...
 
Profesion docente
Profesion docenteProfesion docente
Profesion docente
 
SPED - Public Digital Bookkeeping System: influence in the economic-financial...
SPED - Public Digital Bookkeeping System: influence in the economic-financial...SPED - Public Digital Bookkeeping System: influence in the economic-financial...
SPED - Public Digital Bookkeeping System: influence in the economic-financial...
 
DEVNET-2009 Intercloud Fabric REST APIs for Providers
DEVNET-2009 Intercloud Fabric REST APIs for ProvidersDEVNET-2009 Intercloud Fabric REST APIs for Providers
DEVNET-2009 Intercloud Fabric REST APIs for Providers
 
SEO: Core Understanding, Solid Strategy & Advanced Tactics
SEO: Core Understanding, Solid Strategy & Advanced TacticsSEO: Core Understanding, Solid Strategy & Advanced Tactics
SEO: Core Understanding, Solid Strategy & Advanced Tactics
 
Lookbook Fullah Sugah AW 14/15 - The October Issue
Lookbook Fullah Sugah AW 14/15 - The October IssueLookbook Fullah Sugah AW 14/15 - The October Issue
Lookbook Fullah Sugah AW 14/15 - The October Issue
 
Pengenalan dbase IV
Pengenalan dbase IVPengenalan dbase IV
Pengenalan dbase IV
 

Similar to Vbrownbag container networking for real workloads

Cisco Live: Containers on Enterprise Compute and Networks
Cisco Live: Containers on Enterprise Compute and NetworksCisco Live: Containers on Enterprise Compute and Networks
Cisco Live: Containers on Enterprise Compute and Networks
Michael Duarte
 
Cisco Live 2017: Container networking deep dive with Docker Enterprise Editio...
Cisco Live 2017: Container networking deep dive with Docker Enterprise Editio...Cisco Live 2017: Container networking deep dive with Docker Enterprise Editio...
Cisco Live 2017: Container networking deep dive with Docker Enterprise Editio...
Sanjeev Rampal
 
DEVNET-1148 Leveraging Cisco OpenStack Private Cloud for Developers
DEVNET-1148 Leveraging Cisco OpenStack Private Cloud for DevelopersDEVNET-1148 Leveraging Cisco OpenStack Private Cloud for Developers
DEVNET-1148 Leveraging Cisco OpenStack Private Cloud for Developers
Cisco DevNet
 
Introduction to SDN and Network Programmability - BRKRST-1014 | 2017/Las Vegas
Introduction to SDN and Network Programmability - BRKRST-1014 | 2017/Las VegasIntroduction to SDN and Network Programmability - BRKRST-1014 | 2017/Las Vegas
Introduction to SDN and Network Programmability - BRKRST-1014 | 2017/Las Vegas
Bruno Teixeira
 
Docker Enterprise Networking and Cisco Contiv - Cisco Live 2017 BRKSDN-2256
Docker Enterprise Networking and Cisco Contiv - Cisco Live 2017 BRKSDN-2256Docker Enterprise Networking and Cisco Contiv - Cisco Live 2017 BRKSDN-2256
Docker Enterprise Networking and Cisco Contiv - Cisco Live 2017 BRKSDN-2256
Mark Church
 
Metaswitch Project Calico
Metaswitch Project CalicoMetaswitch Project Calico
Metaswitch Project Calico
Andrew Kennedy
 
Cumbre PR/AR sobre el mercado Telco en America Latina
Cumbre PR/AR sobre el mercado Telco en America LatinaCumbre PR/AR sobre el mercado Telco en America Latina
Cumbre PR/AR sobre el mercado Telco en America LatinaFelipe Lamus
 
Cisco Connect Vancouver 2017 - Cisco's Digital Network Architecture - deeper ...
Cisco Connect Vancouver 2017 - Cisco's Digital Network Architecture - deeper ...Cisco Connect Vancouver 2017 - Cisco's Digital Network Architecture - deeper ...
Cisco Connect Vancouver 2017 - Cisco's Digital Network Architecture - deeper ...
Cisco Canada
 
Cisco's journey from Verbs to Libfabric
Cisco's journey from Verbs to LibfabricCisco's journey from Verbs to Libfabric
Cisco's journey from Verbs to Libfabric
Jeff Squyres
 
What the business thinks about
What the business thinks aboutWhat the business thinks about
What the business thinks about
DevOps4Networks
 
Microservices and containers networking: Contiv, an industry leading open sou...
Microservices and containers networking: Contiv, an industry leading open sou...Microservices and containers networking: Contiv, an industry leading open sou...
Microservices and containers networking: Contiv, an industry leading open sou...
Codemotion
 
Dlbpos 20
Dlbpos 20Dlbpos 20
Dlbpos 20
David Alfonso
 
BRKDCT-2445 Agile OpenStack Networking with Cisco Solutions-Cisco Live! US 20...
BRKDCT-2445 Agile OpenStack Networking with Cisco Solutions-Cisco Live! US 20...BRKDCT-2445 Agile OpenStack Networking with Cisco Solutions-Cisco Live! US 20...
BRKDCT-2445 Agile OpenStack Networking with Cisco Solutions-Cisco Live! US 20...
Rohit Agarwalla
 
Cisco Connect 2018 Singapore - Cisco Software Defined Access
Cisco Connect 2018 Singapore - Cisco Software Defined AccessCisco Connect 2018 Singapore - Cisco Software Defined Access
Cisco Connect 2018 Singapore - Cisco Software Defined Access
NetworkCollaborators
 
NSO: Network Service Orchestrator enabled by Tail-f Hands-on Lab
NSO: Network Service Orchestrator enabled by Tail-f Hands-on LabNSO: Network Service Orchestrator enabled by Tail-f Hands-on Lab
NSO: Network Service Orchestrator enabled by Tail-f Hands-on Lab
Cisco Canada
 
CA Performance Manager Agility by using Docker Containers for Network Manag...
CA Performance Manager Agility by using Docker Containers for Network Manag...CA Performance Manager Agility by using Docker Containers for Network Manag...
CA Performance Manager Agility by using Docker Containers for Network Manag...
CA Technologies
 
IoT Panel- Cisco and Intel
IoT Panel- Cisco and Intel IoT Panel- Cisco and Intel
IoT Panel- Cisco and Intel
Bessie Wang
 
Luca Relandini - Microservices and containers networking: Contiv, deep dive a...
Luca Relandini - Microservices and containers networking: Contiv, deep dive a...Luca Relandini - Microservices and containers networking: Contiv, deep dive a...
Luca Relandini - Microservices and containers networking: Contiv, deep dive a...
Codemotion
 
Cisco Keynote at NetApp Insight - Berlin
Cisco Keynote at NetApp Insight - BerlinCisco Keynote at NetApp Insight - Berlin
Cisco Keynote at NetApp Insight - Berlin
Tim Stack
 
Cisco usNIC libfabric provider
Cisco usNIC libfabric providerCisco usNIC libfabric provider
Cisco usNIC libfabric provider
Jeff Squyres
 

Similar to Vbrownbag container networking for real workloads (20)

Cisco Live: Containers on Enterprise Compute and Networks
Cisco Live: Containers on Enterprise Compute and NetworksCisco Live: Containers on Enterprise Compute and Networks
Cisco Live: Containers on Enterprise Compute and Networks
 
Cisco Live 2017: Container networking deep dive with Docker Enterprise Editio...
Cisco Live 2017: Container networking deep dive with Docker Enterprise Editio...Cisco Live 2017: Container networking deep dive with Docker Enterprise Editio...
Cisco Live 2017: Container networking deep dive with Docker Enterprise Editio...
 
DEVNET-1148 Leveraging Cisco OpenStack Private Cloud for Developers
DEVNET-1148 Leveraging Cisco OpenStack Private Cloud for DevelopersDEVNET-1148 Leveraging Cisco OpenStack Private Cloud for Developers
DEVNET-1148 Leveraging Cisco OpenStack Private Cloud for Developers
 
Introduction to SDN and Network Programmability - BRKRST-1014 | 2017/Las Vegas
Introduction to SDN and Network Programmability - BRKRST-1014 | 2017/Las VegasIntroduction to SDN and Network Programmability - BRKRST-1014 | 2017/Las Vegas
Introduction to SDN and Network Programmability - BRKRST-1014 | 2017/Las Vegas
 
Docker Enterprise Networking and Cisco Contiv - Cisco Live 2017 BRKSDN-2256
Docker Enterprise Networking and Cisco Contiv - Cisco Live 2017 BRKSDN-2256Docker Enterprise Networking and Cisco Contiv - Cisco Live 2017 BRKSDN-2256
Docker Enterprise Networking and Cisco Contiv - Cisco Live 2017 BRKSDN-2256
 
Metaswitch Project Calico
Metaswitch Project CalicoMetaswitch Project Calico
Metaswitch Project Calico
 
Cumbre PR/AR sobre el mercado Telco en America Latina
Cumbre PR/AR sobre el mercado Telco en America LatinaCumbre PR/AR sobre el mercado Telco en America Latina
Cumbre PR/AR sobre el mercado Telco en America Latina
 
Cisco Connect Vancouver 2017 - Cisco's Digital Network Architecture - deeper ...
Cisco Connect Vancouver 2017 - Cisco's Digital Network Architecture - deeper ...Cisco Connect Vancouver 2017 - Cisco's Digital Network Architecture - deeper ...
Cisco Connect Vancouver 2017 - Cisco's Digital Network Architecture - deeper ...
 
Cisco's journey from Verbs to Libfabric
Cisco's journey from Verbs to LibfabricCisco's journey from Verbs to Libfabric
Cisco's journey from Verbs to Libfabric
 
What the business thinks about
What the business thinks aboutWhat the business thinks about
What the business thinks about
 
Microservices and containers networking: Contiv, an industry leading open sou...
Microservices and containers networking: Contiv, an industry leading open sou...Microservices and containers networking: Contiv, an industry leading open sou...
Microservices and containers networking: Contiv, an industry leading open sou...
 
Dlbpos 20
Dlbpos 20Dlbpos 20
Dlbpos 20
 
BRKDCT-2445 Agile OpenStack Networking with Cisco Solutions-Cisco Live! US 20...
BRKDCT-2445 Agile OpenStack Networking with Cisco Solutions-Cisco Live! US 20...BRKDCT-2445 Agile OpenStack Networking with Cisco Solutions-Cisco Live! US 20...
BRKDCT-2445 Agile OpenStack Networking with Cisco Solutions-Cisco Live! US 20...
 
Cisco Connect 2018 Singapore - Cisco Software Defined Access
Cisco Connect 2018 Singapore - Cisco Software Defined AccessCisco Connect 2018 Singapore - Cisco Software Defined Access
Cisco Connect 2018 Singapore - Cisco Software Defined Access
 
NSO: Network Service Orchestrator enabled by Tail-f Hands-on Lab
NSO: Network Service Orchestrator enabled by Tail-f Hands-on LabNSO: Network Service Orchestrator enabled by Tail-f Hands-on Lab
NSO: Network Service Orchestrator enabled by Tail-f Hands-on Lab
 
CA Performance Manager Agility by using Docker Containers for Network Manag...
CA Performance Manager Agility by using Docker Containers for Network Manag...CA Performance Manager Agility by using Docker Containers for Network Manag...
CA Performance Manager Agility by using Docker Containers for Network Manag...
 
IoT Panel- Cisco and Intel
IoT Panel- Cisco and Intel IoT Panel- Cisco and Intel
IoT Panel- Cisco and Intel
 
Luca Relandini - Microservices and containers networking: Contiv, deep dive a...
Luca Relandini - Microservices and containers networking: Contiv, deep dive a...Luca Relandini - Microservices and containers networking: Contiv, deep dive a...
Luca Relandini - Microservices and containers networking: Contiv, deep dive a...
 
Cisco Keynote at NetApp Insight - Berlin
Cisco Keynote at NetApp Insight - BerlinCisco Keynote at NetApp Insight - Berlin
Cisco Keynote at NetApp Insight - Berlin
 
Cisco usNIC libfabric provider
Cisco usNIC libfabric providerCisco usNIC libfabric provider
Cisco usNIC libfabric provider
 

More from Cisco DevNet

How to Contribute to Ansible
How to Contribute to AnsibleHow to Contribute to Ansible
How to Contribute to Ansible
Cisco DevNet
 
Rome 2017: Building advanced voice assistants and chat bots
Rome 2017: Building advanced voice assistants and chat botsRome 2017: Building advanced voice assistants and chat bots
Rome 2017: Building advanced voice assistants and chat bots
Cisco DevNet
 
How to Build Advanced Voice Assistants and Chatbots
How to Build Advanced Voice Assistants and ChatbotsHow to Build Advanced Voice Assistants and Chatbots
How to Build Advanced Voice Assistants and Chatbots
Cisco DevNet
 
Cisco Spark and Tropo and the Programmable Web
Cisco Spark and Tropo and the Programmable WebCisco Spark and Tropo and the Programmable Web
Cisco Spark and Tropo and the Programmable Web
Cisco DevNet
 
Device Programmability with Cisco Plug-n-Play Solution
Device Programmability with Cisco Plug-n-Play SolutionDevice Programmability with Cisco Plug-n-Play Solution
Device Programmability with Cisco Plug-n-Play Solution
Cisco DevNet
 
Building a WiFi Hotspot with NodeJS: Cisco Meraki - ExCap API
Building a WiFi Hotspot with NodeJS: Cisco Meraki - ExCap APIBuilding a WiFi Hotspot with NodeJS: Cisco Meraki - ExCap API
Building a WiFi Hotspot with NodeJS: Cisco Meraki - ExCap API
Cisco DevNet
 
Application Visibility and Experience through Flexible Netflow
Application Visibility and Experience through Flexible NetflowApplication Visibility and Experience through Flexible Netflow
Application Visibility and Experience through Flexible Netflow
Cisco DevNet
 
WAN Automation Engine API Deep Dive
WAN Automation Engine API Deep DiveWAN Automation Engine API Deep Dive
WAN Automation Engine API Deep Dive
Cisco DevNet
 
Cisco's Open Device Programmability Strategy: Open Discussion
Cisco's Open Device Programmability Strategy: Open DiscussionCisco's Open Device Programmability Strategy: Open Discussion
Cisco's Open Device Programmability Strategy: Open Discussion
Cisco DevNet
 
Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)
Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)
Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)
Cisco DevNet
 
NETCONF & YANG Enablement of Network Devices
NETCONF & YANG Enablement of Network DevicesNETCONF & YANG Enablement of Network Devices
NETCONF & YANG Enablement of Network Devices
Cisco DevNet
 
UCS Management APIs A Technical Deep Dive
UCS Management APIs A Technical Deep DiveUCS Management APIs A Technical Deep Dive
UCS Management APIs A Technical Deep Dive
Cisco DevNet
 
OpenStack Enabling DevOps
OpenStack Enabling DevOpsOpenStack Enabling DevOps
OpenStack Enabling DevOps
Cisco DevNet
 
NetDevOps for the Network Dude: How to get started with API's, Ansible and Py...
NetDevOps for the Network Dude: How to get started with API's, Ansible and Py...NetDevOps for the Network Dude: How to get started with API's, Ansible and Py...
NetDevOps for the Network Dude: How to get started with API's, Ansible and Py...
Cisco DevNet
 
Getting Started: Developing Tropo Applications
Getting Started: Developing Tropo ApplicationsGetting Started: Developing Tropo Applications
Getting Started: Developing Tropo Applications
Cisco DevNet
 
Cisco Spark & Tropo API Workshop
Cisco Spark & Tropo API WorkshopCisco Spark & Tropo API Workshop
Cisco Spark & Tropo API Workshop
Cisco DevNet
 
Coding 102 REST API Basics Using Spark
Coding 102 REST API Basics Using SparkCoding 102 REST API Basics Using Spark
Coding 102 REST API Basics Using Spark
Cisco DevNet
 
Cisco APIs: An Interactive Assistant for the Web2Day Developer Conference
Cisco APIs: An Interactive Assistant for the Web2Day Developer ConferenceCisco APIs: An Interactive Assistant for the Web2Day Developer Conference
Cisco APIs: An Interactive Assistant for the Web2Day Developer Conference
Cisco DevNet
 
DevNet Express - Spark & Tropo API - Lisbon May 2016
DevNet Express - Spark & Tropo API - Lisbon May 2016DevNet Express - Spark & Tropo API - Lisbon May 2016
DevNet Express - Spark & Tropo API - Lisbon May 2016
Cisco DevNet
 
DevNet @TAG - Spark & Tropo APIs - Milan/Rome May 2016
DevNet @TAG - Spark & Tropo APIs - Milan/Rome May 2016DevNet @TAG - Spark & Tropo APIs - Milan/Rome May 2016
DevNet @TAG - Spark & Tropo APIs - Milan/Rome May 2016
Cisco DevNet
 

More from Cisco DevNet (20)

How to Contribute to Ansible
How to Contribute to AnsibleHow to Contribute to Ansible
How to Contribute to Ansible
 
Rome 2017: Building advanced voice assistants and chat bots
Rome 2017: Building advanced voice assistants and chat botsRome 2017: Building advanced voice assistants and chat bots
Rome 2017: Building advanced voice assistants and chat bots
 
How to Build Advanced Voice Assistants and Chatbots
How to Build Advanced Voice Assistants and ChatbotsHow to Build Advanced Voice Assistants and Chatbots
How to Build Advanced Voice Assistants and Chatbots
 
Cisco Spark and Tropo and the Programmable Web
Cisco Spark and Tropo and the Programmable WebCisco Spark and Tropo and the Programmable Web
Cisco Spark and Tropo and the Programmable Web
 
Device Programmability with Cisco Plug-n-Play Solution
Device Programmability with Cisco Plug-n-Play SolutionDevice Programmability with Cisco Plug-n-Play Solution
Device Programmability with Cisco Plug-n-Play Solution
 
Building a WiFi Hotspot with NodeJS: Cisco Meraki - ExCap API
Building a WiFi Hotspot with NodeJS: Cisco Meraki - ExCap APIBuilding a WiFi Hotspot with NodeJS: Cisco Meraki - ExCap API
Building a WiFi Hotspot with NodeJS: Cisco Meraki - ExCap API
 
Application Visibility and Experience through Flexible Netflow
Application Visibility and Experience through Flexible NetflowApplication Visibility and Experience through Flexible Netflow
Application Visibility and Experience through Flexible Netflow
 
WAN Automation Engine API Deep Dive
WAN Automation Engine API Deep DiveWAN Automation Engine API Deep Dive
WAN Automation Engine API Deep Dive
 
Cisco's Open Device Programmability Strategy: Open Discussion
Cisco's Open Device Programmability Strategy: Open DiscussionCisco's Open Device Programmability Strategy: Open Discussion
Cisco's Open Device Programmability Strategy: Open Discussion
 
Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)
Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)
Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)
 
NETCONF & YANG Enablement of Network Devices
NETCONF & YANG Enablement of Network DevicesNETCONF & YANG Enablement of Network Devices
NETCONF & YANG Enablement of Network Devices
 
UCS Management APIs A Technical Deep Dive
UCS Management APIs A Technical Deep DiveUCS Management APIs A Technical Deep Dive
UCS Management APIs A Technical Deep Dive
 
OpenStack Enabling DevOps
OpenStack Enabling DevOpsOpenStack Enabling DevOps
OpenStack Enabling DevOps
 
NetDevOps for the Network Dude: How to get started with API's, Ansible and Py...
NetDevOps for the Network Dude: How to get started with API's, Ansible and Py...NetDevOps for the Network Dude: How to get started with API's, Ansible and Py...
NetDevOps for the Network Dude: How to get started with API's, Ansible and Py...
 
Getting Started: Developing Tropo Applications
Getting Started: Developing Tropo ApplicationsGetting Started: Developing Tropo Applications
Getting Started: Developing Tropo Applications
 
Cisco Spark & Tropo API Workshop
Cisco Spark & Tropo API WorkshopCisco Spark & Tropo API Workshop
Cisco Spark & Tropo API Workshop
 
Coding 102 REST API Basics Using Spark
Coding 102 REST API Basics Using SparkCoding 102 REST API Basics Using Spark
Coding 102 REST API Basics Using Spark
 
Cisco APIs: An Interactive Assistant for the Web2Day Developer Conference
Cisco APIs: An Interactive Assistant for the Web2Day Developer ConferenceCisco APIs: An Interactive Assistant for the Web2Day Developer Conference
Cisco APIs: An Interactive Assistant for the Web2Day Developer Conference
 
DevNet Express - Spark & Tropo API - Lisbon May 2016
DevNet Express - Spark & Tropo API - Lisbon May 2016DevNet Express - Spark & Tropo API - Lisbon May 2016
DevNet Express - Spark & Tropo API - Lisbon May 2016
 
DevNet @TAG - Spark & Tropo APIs - Milan/Rome May 2016
DevNet @TAG - Spark & Tropo APIs - Milan/Rome May 2016DevNet @TAG - Spark & Tropo APIs - Milan/Rome May 2016
DevNet @TAG - Spark & Tropo APIs - Milan/Rome May 2016
 

Recently uploaded

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdfFIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance
 
JMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and GrafanaJMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and Grafana
RTTS
 
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualitySoftware Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
Inflectra
 
When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...
Elena Simperl
 
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Albert Hoitingh
 
Knowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and backKnowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and back
Elena Simperl
 
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdfSmart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
91mobiles
 
The Future of Platform Engineering
The Future of Platform EngineeringThe Future of Platform Engineering
The Future of Platform Engineering
Jemma Hussein Allen
 
Accelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish CachingAccelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish Caching
Thijs Feryn
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
DianaGray10
 
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Tobias Schneck
 
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdfFIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance
 
Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........
Alison B. Lowndes
 
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
Sri Ambati
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
OnBoard
 
GraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge GraphGraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge Graph
Guy Korland
 
Connector Corner: Automate dynamic content and events by pushing a button
Connector Corner: Automate dynamic content and events by pushing a buttonConnector Corner: Automate dynamic content and events by pushing a button
Connector Corner: Automate dynamic content and events by pushing a button
DianaGray10
 
The Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and SalesThe Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and Sales
Laura Byrne
 
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdfFIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance
 
Neuro-symbolic is not enough, we need neuro-*semantic*
Neuro-symbolic is not enough, we need neuro-*semantic*Neuro-symbolic is not enough, we need neuro-*semantic*
Neuro-symbolic is not enough, we need neuro-*semantic*
Frank van Harmelen
 

Recently uploaded (20)

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdfFIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
 
JMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and GrafanaJMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and Grafana
 
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualitySoftware Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
 
When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...
 
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
 
Knowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and backKnowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and back
 
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdfSmart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
 
The Future of Platform Engineering
The Future of Platform EngineeringThe Future of Platform Engineering
The Future of Platform Engineering
 
Accelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish CachingAccelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish Caching
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
 
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
 
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdfFIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
 
Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........
 
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
 
GraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge GraphGraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge Graph
 
Connector Corner: Automate dynamic content and events by pushing a button
Connector Corner: Automate dynamic content and events by pushing a buttonConnector Corner: Automate dynamic content and events by pushing a button
Connector Corner: Automate dynamic content and events by pushing a button
 
The Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and SalesThe Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and Sales
 
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdfFIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
 
Neuro-symbolic is not enough, we need neuro-*semantic*
Neuro-symbolic is not enough, we need neuro-*semantic*Neuro-symbolic is not enough, we need neuro-*semantic*
Neuro-symbolic is not enough, we need neuro-*semantic*
 

Vbrownbag container networking for real workloads

  • 1. Matt Johnson #vBrownBag at Cisco LIVE! 2015 9th June 2015 Container networking for real workloads. Why Default isn’t Best matjohn2@cisco.com @mattdashj Presentation recording available at: https://www.youtube.com/watch?v=z-GD-ctjCRc
  • 2. 2© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Hard to say ‘container’ nowadays without… So we’ll start our story here.
  • 3. 3© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Quick Overview: Docker Networking host docker0 172.17.42.1/16 veth049e89e eth0 172.17.0.21/16 veth049e88f veth049e87af eth0 192.168.1.10 eth0 192.168.1.10 eth0 192.168.1.10 host eth0 docker run --net=bridge (default) docker run --net=host Container shares the host’s IP address and MAC address. vEth pair linked into container from docker0 bridge. DNAT provides inbound ports to containerized apps. •  Default IP address is dynamically allocated from unused range (ie 172.17.0.0/16.) can be set with –fixed-cidr on docker daemon •  Default GW for containers is the IP addr of the host docker0 interface can be set with –bip on docker daemon eth0 172.17.0.21/16 eth0 172.17.0.21/16 containers 3 iptables (NAT)iptables (NAT)
  • 4. 4© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Why NAT? -  Works out of the box on a host with a single IP Dockers’ rise to prominence due to User Experience. Not new tech. - LXC, Existed - Containers, Nothing new (Solaris Zones Anyone?) The difference is it had never been as easy to use/explain/build/share.
  • 5. Not without it’s limits: -  Container IP tied to Host. -  Only one container can have a ‘common’ port per host. -  Careful manual port assignment. -  Dynamic assignment with support in the app to support it. -  App’s need to be told to read ‘real’ network info from $ENV’s
  • 6. 6© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Extending Networking: Kubernetes Pod - a co-located group of Docker containers with shared volumes. They're the smallest deployable units that can be created, scheduled, and managed with Kubernetes. Service - provide a single, stable name and address for a set of pods. They act as basic load balancers. Label - are used to organize and select groups of objects based on key/value pairs. Replication Controller - are used to organize and select groups of objects based on key/value pairs. master server apiserver etcd controller manager scheduler skydns pod C11 C12 C13 minion pod C21 C22 C23 pod C41 C42 C43 minion pod C14 C15 pod C44 minion pod C24 pod C44 C45 minion pod C24 pod C11 C12 C13 minion pod C21 C22 C23 service(IP addr/DN)replication Controller service(IP addr/DN) cluster 6
  • 7. 7© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Extending Networking: Kubernetes 7
  • 9. 9© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Tunnels We don’t have to deal with whatever the underlying network is.
  • 10. 10© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Tunnels Although we do have to deal with… Ramps! On/Off the overlay. Potential bottleneck / scalability issues An Interesting L2 Design. Subject to implementation, may lack multicast support, treat broadcast strangely etc. Debug overhead. I only have 50 VM’s, but which one of my 1,225 tunnels (full mesh) is causing the issue.
  • 11. 11© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Tunnels Although we do have to deal with… MTU and Frag. avoidance. It is a tunnel after all! Security. Subject to implementation, spanning ARP really isn’t ideal. Lots of containers running privileged.
  • 12. 12© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Future Docker Networking: libnetwork The Container Network Model (CMN) 12 Docker Container Docker Container Docker Container Network Sandbox Network Sandbox Network Sandbox Endpoint Endpoint Endpoint Endpoint Backend Network Frontend Network •  Network Sandbox -- isolated environment where container network configuration lives •  Endpoint – network interface tied to a specific network •  Network – a uniquely identifiable collection of Endpoints that are able to communicate with each other A pluggable interface. Expected to first ship in Docker 1.7. Distributed bridge plugin under development.
  • 13. 13© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Future Docker Networking: Overlay/L2 Centric The Container Network Model (CMN) 13
  • 14. 14© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public So wouldn’t it be great if… We could network containers without NAT, Without requiring a ‘tunnels everywhere’ approach, Without on or off ramps, With full IPv4 and IPv6 support, And at Internet-scale?
  • 15. 15© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public We Can! .. If we don’t treat containers as Unique/Special
  • 16. 16© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Scalable DataCenter topologies have existed for quite a while…
  • 17. And no, this isn’t about to turn into a Cisco sales pitch… promise!
  • 18. 18© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Standards Use Networking standards tried and tested by the rest of the industry. Already used every day at unprecedented Scale. Don’t reinvent the wheel. Integrate and benefit from existing network team skillsets.
  • 19. 19© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Proposed solution with Docker / Container Networking
  • 20. 20© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public Containers as a first class citizen of the real network •  Devolve routing down into each host. •  BGP as the saleable, proven control plane. •  Standard, proven linux networking stack. •  Containers have IP’s.. •  No NAT. •  DNS works properly. •  No tunnels necessary. •  Support for legacy applications & clustering. •  Support for multicast. •  IPv4 & IPv6 Support. •  Standard network protocols that the rest of the industry uses •  Service providers and Enterprises can easily integrate.
  • 21. 21© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Buy Today… And we’ll throw in container mobility for free! IP’s no longer bound to the IP of the host, If a workload moves, the IP can go with it. Containerized data services will benefit massively from this.
  • 22. 22© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public So where is this work going? Validated ideas through other container Industry supporters. Not the only people thinking this way. Implementation is happening now! Which brings me onto a side note…
  • 23. Matt Johnson #vBrownBag at Cisco LIVE! 2015 9th June 2015 This isn’t a real title. The ‘Nothing really to do with networking’ part of the talk @mattdashj
  • 25. 25© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public GLUEFlakes!
  • 27. 27© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Avoid GlueFlakes! There’s something to this whole ‘user experience’ thing! MicroServices Infrastructure release 0.3 TODAY! we’re changing the name to something less sucky soon too!
  • 28. 28© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public •  Cisco Microservices Environment based on Mesos. •  Fully open source. •  Framework support in Mesos leveraged to deploy scalable data, monitoring and assurance services all-in-one. •  We’ve designed, written and tested the glue. •  ‘Dogfooding’ internally. We’ve built it to solve real problems. •  Contribute vs Creating a new GlueFlake. •  ‘Out of the Box’ environment for real-life workloads. Enable the automatic deployment of development dependencies!
  • 29. 29© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public So back to that network thing… You guessed it… It’s going into MicroServices Infrastructure. Preconfigured to work with data and marathon workloads out of the box. /ciscocloud/microservices-infrastructure Roadmap updates and official announcements soon…