David Lapsley, profile picture
Uploaded byDavid Lapsley
PPTX, PDF2,349 views

VXLAN Distributed Service Node

The document discusses the implementation of VXLAN (Virtual Extensible LAN) for addressing scalability and performance issues in modern data center networks. It highlights VXLAN's ability to support over 16 million VLANs while reducing pressure on traditional tables and the use of distributed service nodes for efficient management. Additionally, it mentions integration options with Neutron and provides references for further exploration of the technologies discussed.

Embed presentation

Downloaded 77 times
David Lapsley (@devlaps), Chet Burgess (@cfbIV), Kahou Lei (@kahou82) May 20, 2015 OpenStack Vancouver Summit VXLAN Distributed Service Node
Virtualization in the data center has changed network requirements
Number of end hosts  Number of networks  Bandwidth requirements 
This is a problem for traditional data center networks
• L2 Access with L3 Aggregation • Wasted capacity: STP blocks ports to prevent loops • VLAN Exhaustion: only 4K with 802.1Q label • ToR Scalability: hw tables need to scale with endpoints Traditional Data Centers
L3 to the edge can help
• L3 is Scalable • Well known and supported • Equal Cost Multi-Path (ECMP) Routing • Each link active at all times L3
How do we scope tenants/projects?
• MAC over UDP/IP overlay • Re-uses existing IP core (L3 ECMP, No STP) • Reduces pressure on ToR L2 tables • Supports over 16M+ VLANs • Maintains L2 bridging semantics VXLAN
VXLAN Encapsulation
• Virtual Network Identifier • 24 bits  16+ million • VXLAN Tunnel End Point (VTEP) • Encapsulation, Decapsulation • Listen on UDP port 4789 (IANA), 8472 (Linux default) for incoming VXLAN packets • VNI to VTEP IP mapping VXLAN Components
VXLAN Example Deployment Hypervisor 1 VM1 VM2 VTEP (vxlan100) Tenant bridge (br101) VM1 VM2 VTEP (vxlan101) L3 Network eth0 Hypervisor 2 Tenant bridge (br100) VM3 VM4 VTEP (vxlan100) Tenant bridge (br101) VM3 VM4 VTEP (vxlan101) eth0 VXLAN 100 VXLAN 101 DMAC SMAC 802.1Q EType Payload CRC Outer MAC Outer IP Outer UDP VXLAN CRCPayload VXLAN Network Identifier (24 bits) VXLAN Flags (8 bits) Reserved (24 bits) Reserved (8 bits) Tenant bridge (br100)
• Broadcast, Unknown, and Multicast packets (e.g. ARP, DHCP, multi-cast, etc.) are flooded to all VTEPs for the given VNI • Two mechanisms used: • Multicast • Multi-cast address and VNI configured for each VXLAN segment • VTEP sends IGMP join/leave as VMs spin up/down • Broadcast domain implemented using multicast • Service Node: • Use a “central” service node to maintain mapping of VNIs to VTEP IPs Broadcast, Unknown and Multicast Packets
Service Node Hypervisor 1 VM1 VM2 vxlan100 (1.1.1.1) Tenant bridge (br101) VM1 VM2 vxlan101 (3.3.3.3) L3 Network eth0 Hypervisor 2 Tenant bridge (br100) VM3 VM4 vxlan100 (2.2.2.2) Tenant bridge (br101) VM3 VM4 vxlan101 (4.4.4.4) eth0 VXLAN 100 VXLAN 101 Tenant bridge (br100) VNI VTEPs 100 1.1.1.1 2.2.2.2 101 3.3.3.3 4.4.4.4 Remote Service Node
Service Node
Central Service Node
Central Service Node
Distributed Service Node
Distributed Service Node
Distributed Service Node
Distributed Service Node
VXLAN Distributed Service Node
Design
Design
Design Controller 1 Controller 2 Controller 3 L3 Network Hypervisor 1 Tenant bridge (br100) VM1 VM2 Tenant bridge (br101) VM1 VM2 VTEP (vxlan101) eth0 Hypervisor 500 Tenant bridge (br100) VM1 VM2 VTEP (vxlan100) Tenant bridge (br101) VM1 VM2 VTEP (vxlan101) eth0 eth0 VTEP (vxlan100) eth0 eth0 Distributed VXLAN Service Node Distributed VXLAN Service Node mcrouter memcache mcrouter memcache mcrouter memcache
Design Controller 1 Controller 2 Controller 3 L3 Network Hypervisor 1 Tenant bridge (br100) VM1 VM2 Tenant bridge (br101) VM1 VM2 VTEP (vxlan101) eth0 Hypervisor 500 Tenant bridge (br100) VM1 VM2 VTEP (vxlan100) Tenant bridge (br101) VM1 VM2 VTEP (vxlan101) eth0 eth0 VTEP (vxlan100) eth0 eth0 Distributed VXLAN Service Node Distributed VXLAN Service Node mcrouter memcache mcrouter memcache mcrouter memcache
Design Controller 1 Controller 2 Controller 3 L3 Network Hypervisor 1 Tenant bridge (br100) VM1 VM2 Tenant bridge (br101) VM1 VM2 VTEP (vxlan101) eth0 Hypervisor 500 Tenant bridge (br100) VM1 VM2 VTEP (vxlan100) Tenant bridge (br101) VM1 VM2 VTEP (vxlan101) eth0 eth0 VTEP (vxlan100) eth0 eth0 Distributed VXLAN Service Node Distributed VXLAN Service Node mcrouter memcache mcrouter memcache mcrouter memcache
• Multi-threaded python program (multiprocessing module) • Runs on every hypervisor • Shares state using Distributed Cache • FB Mcrouter – memcached protocol router (5B requests /second @ peak!) • Listens for new VTEP registrations • Forwards new mappings to Distributed Cache • Listens for Broadcast, Unknown, Multicast packets • Floods to all VTEPs in the Virtual Network VXLAN Distributed Service Node
Service Node
Service Node
Configuring VXLAN
ip link add vxlan1 type vxlan id 1 remote 169.254.1.1 dev eth0 ip addr add 172.16.1.1 dev vxlan1 ip link set dev vxlan1 mtu 1450 ip link set dev vxlan1 up Creating VXLAN interfaces
root@mhv2:~# ip addr show vxlan1 4: vxlan1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc noqueue state UNKNOWN group default link/ether f2:af:3f:62:cf:65 brd ff:ff:ff:ff:ff:ff inet 172.16.1.5/24 scope global vxlan1 valid_lft forever preferred_lft forever inet6 fe80::f0af:3fff:fe62:cf65/64 scope link valid_lft forever preferred_lft forever Configured VXLAN Interface
iptables –t nat -A OUTPUT -d 169.254.1.1/32 -p udp -m udp - -dport 8472 -j DNAT --to-destination 127.0.0.1:8473 The @cfbIV rule
-t nat -A OUTPUT -d 169.254.1.1/32 -p udp -m udp --dport 8472 -j DNAT --to-destination 127.0.0.1:8473 The @cfbIV rule
-t nat -A OUTPUT -d 169.254.1.1/32 -p udp -m udp --dport 8472 -j DNAT --to-destination 127.0.0.1:8473 The @cfbIV rule
-t nat -A OUTPUT -d 169.254.1.1/32 -p udp -m udp --dport 8472 -j DNAT --to-destination 127.0.0.1:8473 The @cfbIV rule
-t nat -A OUTPUT -d 169.254.1.1/32 -p udp -m udp --dport 8472 -j DNAT --to-destination 127.0.0.1:8473 The @cfbIV rule
Demo
Demo Setup Controller 1 Controller 2 Controller 3 L3 Network Hypervisor 1 VTEP (172.16.3.4) 192.168.225.231 Hypervisor 500 192.168.225.232 192.168.225.226 VTEP1 (172.16.1.4) 192.168.225.227 192.168.225.228 VTEP1 (172.16.1.4) VTEP (172.16.3.6)VTEP1 (172.16.1.5) VTEP1 (172.16.1.5) VXLAN Distributed Service Node VXLAN Distributed Service Node mcrouter memcache mcrouter memcache mcrouter memcache
• Open source VDSN source code • Integration with Neutron (if community interest) • Performance and scalability testing Future work
References
• Presentation slides: http://bit.ly/vdsn-presentation • VDSN Source Code and Ansible playbooks: • Simple, accessible model, horizontal scaling • http://bit.ly/vdsn-ansible • VDSN code coming soon (@devlaps, #devlaps) • Production Code: • Multi-area VXLAN! Highly optimized, requires expertise to configure/troubleshoot • http://bit.ly/multi-area-vxlan References
• C. Burgess, N. Leake, L3 + VXLAN Made Practical, OpenStack Summit Spring 2014. • M. Mahalingam, et. Al, Virtual eXtensible Local Area Network (VXLAN): A Framework for Overlaying Virtualized Layer 2 Networks over Layer 3 Networks, https://tools.ietf.org/html/rfc7348 References
• Sanjay K. Hooda, Shyam Kapadia, Padmanabhan Krishnan, Using TRILL, FabricPath, and VXLAN: Designing Massively Scalable Data Centers (MSDC) with Overlays, Cisco Press, 2014. • Introducing McRouter, http://bit.ly/introducing-mcrouter References
• McRouter on github, https://github.com/facebook/mcrouter • Pyroute2, https://pypi.python.org/pypi/pyroute2 • Maintaining a set in Memcached, http://bit.ly/memcache- sets • Ansible, http://docs.ansible.com References
@devlaps, dlapsley@cisco.com Thank You
VXLAN Distributed Service Node

More Related Content

PDF
Xpress path vxlan_bgp_evpn_appricot2019-v2_
byJide Akintola JNCIE-M&T/SP #496 CCIE-SP#28552
 
PPTX
Vxlan deep dive session rev0.5 final
byKwonSun Bae
 
PDF
OpenNebulaConf2018 - Scalable L2 overlay networks with routed VXLAN / BGP EVP...
byOpenNebula Project
 
PPTX
VXLAN
bySAliyev1
 
PPTX
VXLAN Practice Guide
byPrasenjit Sarkar
 
PPTX
Introduction to vxlan
byMohammed Umair
 
PDF
Virtual Extensible LAN (VXLAN)
byKHNOG
 
PPTX
Vxlan frame format and forwarding
byMohammed Umair
 
Xpress path vxlan_bgp_evpn_appricot2019-v2_
byJide Akintola JNCIE-M&T/SP #496 CCIE-SP#28552
 
Vxlan deep dive session rev0.5 final
byKwonSun Bae
 
OpenNebulaConf2018 - Scalable L2 overlay networks with routed VXLAN / BGP EVP...
byOpenNebula Project
 
VXLAN
bySAliyev1
 
VXLAN Practice Guide
byPrasenjit Sarkar
 
Introduction to vxlan
byMohammed Umair
 
Virtual Extensible LAN (VXLAN)
byKHNOG
 
Vxlan frame format and forwarding
byMohammed Umair
 

What's hot

PDF
VXLAN BGP EVPN: Technology Building Blocks
byAPNIC
 
PDF
Building DataCenter networks with VXLAN BGP-EVPN
byCisco Canada
 
PDF
20 - IDNOG03 - Franki Lim (ARISTA) - Overlay Networking with VXLAN
byIndonesia Network Operators Group
 
PPTX
Vxlan control plane and routing
byWilfredzeng
 
PPTX
OTV PPT by NETWORKERS HOME
bynetworkershome
 
PDF
vPC techonology for full ha from dc core to baremetel server.
byAjeet Singh
 
PDF
Operationalizing EVPN in the Data Center: Part 2
byCumulus Networks
 
PPTX
Fabric Path PPT by NETWORKERS HOME
bynetworkershome
 
PPTX
10.) vxlan
byJeff Green
 
PPTX
Vpc notes
byKrunal Shah
 
PDF
Dynamische Routingprotokolle Aufzucht und Pflege - OSPF
byMaximilan Wilhelm
 
PPTX
Operationalizing VRF in the Data Center
byCumulus Networks
 
PDF
Demystifying EVPN in the data center: Part 1 in 2 episode series
byCumulus Networks
 
PPTX
OTV(Overlay Transport Virtualization)
byNetProtocol Xpert
 
PDF
VXLAN with Cumulus
byFrancesco Gandolfo
 
PPTX
Scaleway Approach to VXLAN EVPN Fabric
byScaleway
 
PPTX
VPC PPT @NETWORKERSHOME
bynetworkershome
 
PPTX
Linux Native VXLAN Integration - CloudStack Collaboration Conference 2013, Sa...
byToshiaki Hatano
 
PDF
PLNOG15: Is there something less complicated than connecting two LAN networks...
byPROIDEA
 
PPTX
Otv notes
byKrunal Shah
 
VXLAN BGP EVPN: Technology Building Blocks
byAPNIC
 
Building DataCenter networks with VXLAN BGP-EVPN
byCisco Canada
 
20 - IDNOG03 - Franki Lim (ARISTA) - Overlay Networking with VXLAN
byIndonesia Network Operators Group
 
Vxlan control plane and routing
byWilfredzeng
 
OTV PPT by NETWORKERS HOME
bynetworkershome
 
vPC techonology for full ha from dc core to baremetel server.
byAjeet Singh
 
Operationalizing EVPN in the Data Center: Part 2
byCumulus Networks
 
Fabric Path PPT by NETWORKERS HOME
bynetworkershome
 
10.) vxlan
byJeff Green
 
Vpc notes
byKrunal Shah
 
Dynamische Routingprotokolle Aufzucht und Pflege - OSPF
byMaximilan Wilhelm
 
Operationalizing VRF in the Data Center
byCumulus Networks
 
Demystifying EVPN in the data center: Part 1 in 2 episode series
byCumulus Networks
 
OTV(Overlay Transport Virtualization)
byNetProtocol Xpert
 
VXLAN with Cumulus
byFrancesco Gandolfo
 
Scaleway Approach to VXLAN EVPN Fabric
byScaleway
 
VPC PPT @NETWORKERSHOME
bynetworkershome
 
Linux Native VXLAN Integration - CloudStack Collaboration Conference 2013, Sa...
byToshiaki Hatano
 
PLNOG15: Is there something less complicated than connecting two LAN networks...
byPROIDEA
 
Otv notes
byKrunal Shah
 

Similar to VXLAN Distributed Service Node

PPTX
NSX-MH
bysethuraman ramanathan
 
PPTX
VXLAN_Presentation_overlay-technology.pptx
bysiya89308
 
PPTX
VyOS Users Meeting #2, VyOSのVXLANの話
byupaa
 
PPTX
Automate programmable fabric in seconds with an open standards based solution
byTony Antony
 
PPTX
Network and Service Virtualization tutorial at ONUG Spring 2015
bySDN Hub
 
PPTX
#NET5488 - Troubleshooting Methodology for VMware NSX - VMworld 2015
byDmitri Kalintsev
 
PPTX
VXLAN Integration with CloudStack Advanced Zone
byYoshikazu Nojima
 
PDF
Contemporary Linux Networking
byMaximilan Wilhelm
 
PPTX
DevOps Guide to Container Networking
byDirk Wallerstorfer
 
PDF
Linux Networking Explained
byThomas Graf
 
PPTX
NSX-T and Service Interfaces presentation
byMarko4394
 
PPTX
Network Virtualization for Cloud Services Infrastructure
byShahryar Ali
 
PPTX
VXLAN in Data Centers and use cases.pptx
byabdullahteleng
 
PDF
Elephant &amp; mice flows
byJeff Green
 
PDF
Atf 3 q15-5 - streamlining and automating virtual network control
byMason Mei
 
PDF
VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...
byVMworld
 
PDF
Atf 3 q15-4 - scaling the the software driven cloud network
byMason Mei
 
PDF
Open stack advanced_part
bylilliput12
 
PPTX
NET4933_vDS_Best_Practices_For_NSX_Francois_Tallet_Shahzad_Ali
byshezy22
 
PDF
Net1674 final emea
byVMworld
 
NSX-MH
bysethuraman ramanathan
 
VXLAN_Presentation_overlay-technology.pptx
bysiya89308
 
VyOS Users Meeting #2, VyOSのVXLANの話
byupaa
 
Automate programmable fabric in seconds with an open standards based solution
byTony Antony
 
Network and Service Virtualization tutorial at ONUG Spring 2015
bySDN Hub
 
#NET5488 - Troubleshooting Methodology for VMware NSX - VMworld 2015
byDmitri Kalintsev
 
VXLAN Integration with CloudStack Advanced Zone
byYoshikazu Nojima
 
Contemporary Linux Networking
byMaximilan Wilhelm
 
DevOps Guide to Container Networking
byDirk Wallerstorfer
 
Linux Networking Explained
byThomas Graf
 
NSX-T and Service Interfaces presentation
byMarko4394
 
Network Virtualization for Cloud Services Infrastructure
byShahryar Ali
 
VXLAN in Data Centers and use cases.pptx
byabdullahteleng
 
Elephant &amp; mice flows
byJeff Green
 
Atf 3 q15-5 - streamlining and automating virtual network control
byMason Mei
 
VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...
byVMworld
 
Atf 3 q15-4 - scaling the the software driven cloud network
byMason Mei
 
Open stack advanced_part
bylilliput12
 
NET4933_vDS_Best_Practices_For_NSX_Francois_Tallet_Shahzad_Ali
byshezy22
 
Net1674 final emea
byVMworld
 

More from David Lapsley

PPTX
OpenStack Horizon: Controlling the Cloud using Django
byDavid Lapsley
 
PPTX
Openstack Quantum Security Groups Session
byDavid Lapsley
 
PPTX
Openstack Quantum + Devstack Tutorial
byDavid Lapsley
 
PPTX
Learn you some Ansible for great good!
byDavid Lapsley
 
PPTX
Empowering Admins by taking away root (Improving platform visibility in Horizon)
byDavid Lapsley
 
PPTX
Real-time Statistics with Horizon
byDavid Lapsley
 
PPTX
20140821 delapsley-cloudopen-public
byDavid Lapsley
 
PPTX
Openstack Nova and Quantum
byDavid Lapsley
 
PPTX
20141002 delapsley-socalangularjs-final
byDavid Lapsley
 
PPTX
20141001 delapsley-oc-openstack-final
byDavid Lapsley
 
PPTX
Client-side Rendering with AngularJS
byDavid Lapsley
 
OpenStack Horizon: Controlling the Cloud using Django
byDavid Lapsley
 
Openstack Quantum Security Groups Session
byDavid Lapsley
 
Openstack Quantum + Devstack Tutorial
byDavid Lapsley
 
Learn you some Ansible for great good!
byDavid Lapsley
 
Empowering Admins by taking away root (Improving platform visibility in Horizon)
byDavid Lapsley
 
Real-time Statistics with Horizon
byDavid Lapsley
 
20140821 delapsley-cloudopen-public
byDavid Lapsley
 
Openstack Nova and Quantum
byDavid Lapsley
 
20141002 delapsley-socalangularjs-final
byDavid Lapsley
 
20141001 delapsley-oc-openstack-final
byDavid Lapsley
 
Client-side Rendering with AngularJS
byDavid Lapsley
 

Recently uploaded

PPTX
tacacstrianingforwirelessnetworkengineers
byRaviTejaTammineni
 
PPTX
Why-Enterprises-Should-Build-Their-Own-Core-Network-and-Own-Their-ASN-and-Pub...
bybunhongkruy
 
PDF
Beacon Kit slides tech framework for world game (s) pdf
bySteven McGee
 
PPTX
Overview-of-Anti-DDoS-Solutions-On-Premise-vs-On-Cloud.pptx
bybunhongkruy
 
PPTX
Artificial Intelligence (AI) Technology Project Proposal _ by Slidesgo.pptx
byadhyaadi804
 
PDF
Here are the winners of KALIDASA SAMMAN.
byglcppro
 
PPTX
Lesson 3 - Methodology of Green Computing - part2 - dela cruz.pptx
byOmar Fernandez
 
PPTX
Lesson 5 - Cyber attack Pt 3 - Matsuhashi.pptx
byOmar Fernandez
 
PPTX
Number_Guessing_Game_Dsbsbssbzboc[1].pptx
byfbinsta3426
 
PDF
Key Duties and Roles of an Ecommerce Developer Singapore
byHachi Web Solution
 
PDF
Novi.LMS.Veseli.Cetvrtak.001 (1).pdfjjjj
byzoran radovic
 
PPTX
Dalhousie University Diploma
by文凭办理维多利亚大学购买毕业证学位认证知乎【Q微:1954292140】
 
PDF
LMS.Golconda.Vanredni.Broj.001.pdfjjjjjjj
byzoran radovic
 
DOCX
BestMaker.ai: The Complete Brand Story, Founder's Vision, and AI Creative Pla...
byssuser7381d6
 
PDF
Greetings All Students Update 3 by LDMMIA
by©LDMMIA, ©Reiki Yoga
 
tacacstrianingforwirelessnetworkengineers
byRaviTejaTammineni
 
Why-Enterprises-Should-Build-Their-Own-Core-Network-and-Own-Their-ASN-and-Pub...
bybunhongkruy
 
Beacon Kit slides tech framework for world game (s) pdf
bySteven McGee
 
Overview-of-Anti-DDoS-Solutions-On-Premise-vs-On-Cloud.pptx
bybunhongkruy
 
Artificial Intelligence (AI) Technology Project Proposal _ by Slidesgo.pptx
byadhyaadi804
 
Here are the winners of KALIDASA SAMMAN.
byglcppro
 
Lesson 3 - Methodology of Green Computing - part2 - dela cruz.pptx
byOmar Fernandez
 
Lesson 5 - Cyber attack Pt 3 - Matsuhashi.pptx
byOmar Fernandez
 
Number_Guessing_Game_Dsbsbssbzboc[1].pptx
byfbinsta3426
 
Key Duties and Roles of an Ecommerce Developer Singapore
byHachi Web Solution
 
Novi.LMS.Veseli.Cetvrtak.001 (1).pdfjjjj
byzoran radovic
 
Dalhousie University Diploma
by文凭办理维多利亚大学购买毕业证学位认证知乎【Q微:1954292140】
 
LMS.Golconda.Vanredni.Broj.001.pdfjjjjjjj
byzoran radovic
 
BestMaker.ai: The Complete Brand Story, Founder's Vision, and AI Creative Pla...
byssuser7381d6
 
Greetings All Students Update 3 by LDMMIA
by©LDMMIA, ©Reiki Yoga
 

VXLAN Distributed Service Node

  • 1.
    David Lapsley (@devlaps),Chet Burgess (@cfbIV), Kahou Lei (@kahou82) May 20, 2015 OpenStack Vancouver Summit VXLAN Distributed Service Node
  • 2.
    Virtualization in thedata center has changed network requirements
  • 3.
    Number of endhosts  Number of networks  Bandwidth requirements 
  • 4.
    This is aproblem for traditional data center networks
  • 5.
    • L2 Accesswith L3 Aggregation • Wasted capacity: STP blocks ports to prevent loops • VLAN Exhaustion: only 4K with 802.1Q label • ToR Scalability: hw tables need to scale with endpoints Traditional Data Centers
  • 6.
    L3 to theedge can help
  • 7.
    • L3 isScalable • Well known and supported • Equal Cost Multi-Path (ECMP) Routing • Each link active at all times L3
  • 8.
    How do wescope tenants/projects?
  • 9.
    • MAC overUDP/IP overlay • Re-uses existing IP core (L3 ECMP, No STP) • Reduces pressure on ToR L2 tables • Supports over 16M+ VLANs • Maintains L2 bridging semantics VXLAN
  • 10.
  • 11.
    • Virtual NetworkIdentifier • 24 bits  16+ million • VXLAN Tunnel End Point (VTEP) • Encapsulation, Decapsulation • Listen on UDP port 4789 (IANA), 8472 (Linux default) for incoming VXLAN packets • VNI to VTEP IP mapping VXLAN Components
  • 12.
    VXLAN Example Deployment Hypervisor1 VM1 VM2 VTEP (vxlan100) Tenant bridge (br101) VM1 VM2 VTEP (vxlan101) L3 Network eth0 Hypervisor 2 Tenant bridge (br100) VM3 VM4 VTEP (vxlan100) Tenant bridge (br101) VM3 VM4 VTEP (vxlan101) eth0 VXLAN 100 VXLAN 101 DMAC SMAC 802.1Q EType Payload CRC Outer MAC Outer IP Outer UDP VXLAN CRCPayload VXLAN Network Identifier (24 bits) VXLAN Flags (8 bits) Reserved (24 bits) Reserved (8 bits) Tenant bridge (br100)
  • 13.
    • Broadcast, Unknown,and Multicast packets (e.g. ARP, DHCP, multi-cast, etc.) are flooded to all VTEPs for the given VNI • Two mechanisms used: • Multicast • Multi-cast address and VNI configured for each VXLAN segment • VTEP sends IGMP join/leave as VMs spin up/down • Broadcast domain implemented using multicast • Service Node: • Use a “central” service node to maintain mapping of VNIs to VTEP IPs Broadcast, Unknown and Multicast Packets
  • 14.
    Service Node Hypervisor 1 VM1VM2 vxlan100 (1.1.1.1) Tenant bridge (br101) VM1 VM2 vxlan101 (3.3.3.3) L3 Network eth0 Hypervisor 2 Tenant bridge (br100) VM3 VM4 vxlan100 (2.2.2.2) Tenant bridge (br101) VM3 VM4 vxlan101 (4.4.4.4) eth0 VXLAN 100 VXLAN 101 Tenant bridge (br100) VNI VTEPs 100 1.1.1.1 2.2.2.2 101 3.3.3.3 4.4.4.4 Remote Service Node
  • 15.
  • 16.
  • 17.
  • 18.
  • 19.
  • 20.
  • 21.
  • 22.
  • 23.
  • 24.
  • 25.
    Design Controller 1 Controller2 Controller 3 L3 Network Hypervisor 1 Tenant bridge (br100) VM1 VM2 Tenant bridge (br101) VM1 VM2 VTEP (vxlan101) eth0 Hypervisor 500 Tenant bridge (br100) VM1 VM2 VTEP (vxlan100) Tenant bridge (br101) VM1 VM2 VTEP (vxlan101) eth0 eth0 VTEP (vxlan100) eth0 eth0 Distributed VXLAN Service Node Distributed VXLAN Service Node mcrouter memcache mcrouter memcache mcrouter memcache
  • 26.
    Design Controller 1 Controller2 Controller 3 L3 Network Hypervisor 1 Tenant bridge (br100) VM1 VM2 Tenant bridge (br101) VM1 VM2 VTEP (vxlan101) eth0 Hypervisor 500 Tenant bridge (br100) VM1 VM2 VTEP (vxlan100) Tenant bridge (br101) VM1 VM2 VTEP (vxlan101) eth0 eth0 VTEP (vxlan100) eth0 eth0 Distributed VXLAN Service Node Distributed VXLAN Service Node mcrouter memcache mcrouter memcache mcrouter memcache
  • 27.
    Design Controller 1 Controller2 Controller 3 L3 Network Hypervisor 1 Tenant bridge (br100) VM1 VM2 Tenant bridge (br101) VM1 VM2 VTEP (vxlan101) eth0 Hypervisor 500 Tenant bridge (br100) VM1 VM2 VTEP (vxlan100) Tenant bridge (br101) VM1 VM2 VTEP (vxlan101) eth0 eth0 VTEP (vxlan100) eth0 eth0 Distributed VXLAN Service Node Distributed VXLAN Service Node mcrouter memcache mcrouter memcache mcrouter memcache
  • 28.
    • Multi-threaded pythonprogram (multiprocessing module) • Runs on every hypervisor • Shares state using Distributed Cache • FB Mcrouter – memcached protocol router (5B requests /second @ peak!) • Listens for new VTEP registrations • Forwards new mappings to Distributed Cache • Listens for Broadcast, Unknown, Multicast packets • Floods to all VTEPs in the Virtual Network VXLAN Distributed Service Node
  • 29.
  • 30.
  • 31.
  • 32.
    ip link addvxlan1 type vxlan id 1 remote 169.254.1.1 dev eth0 ip addr add 172.16.1.1 dev vxlan1 ip link set dev vxlan1 mtu 1450 ip link set dev vxlan1 up Creating VXLAN interfaces
  • 33.
    root@mhv2:~# ip addrshow vxlan1 4: vxlan1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc noqueue state UNKNOWN group default link/ether f2:af:3f:62:cf:65 brd ff:ff:ff:ff:ff:ff inet 172.16.1.5/24 scope global vxlan1 valid_lft forever preferred_lft forever inet6 fe80::f0af:3fff:fe62:cf65/64 scope link valid_lft forever preferred_lft forever Configured VXLAN Interface
  • 34.
    iptables –t nat-A OUTPUT -d 169.254.1.1/32 -p udp -m udp - -dport 8472 -j DNAT --to-destination 127.0.0.1:8473 The @cfbIV rule
  • 35.
    -t nat -AOUTPUT -d 169.254.1.1/32 -p udp -m udp --dport 8472 -j DNAT --to-destination 127.0.0.1:8473 The @cfbIV rule
  • 36.
    -t nat -AOUTPUT -d 169.254.1.1/32 -p udp -m udp --dport 8472 -j DNAT --to-destination 127.0.0.1:8473 The @cfbIV rule
  • 37.
    -t nat -AOUTPUT -d 169.254.1.1/32 -p udp -m udp --dport 8472 -j DNAT --to-destination 127.0.0.1:8473 The @cfbIV rule
  • 38.
    -t nat -AOUTPUT -d 169.254.1.1/32 -p udp -m udp --dport 8472 -j DNAT --to-destination 127.0.0.1:8473 The @cfbIV rule
  • 39.
  • 40.
    Demo Setup Controller 1Controller 2 Controller 3 L3 Network Hypervisor 1 VTEP (172.16.3.4) 192.168.225.231 Hypervisor 500 192.168.225.232 192.168.225.226 VTEP1 (172.16.1.4) 192.168.225.227 192.168.225.228 VTEP1 (172.16.1.4) VTEP (172.16.3.6)VTEP1 (172.16.1.5) VTEP1 (172.16.1.5) VXLAN Distributed Service Node VXLAN Distributed Service Node mcrouter memcache mcrouter memcache mcrouter memcache
  • 43.
    • Open sourceVDSN source code • Integration with Neutron (if community interest) • Performance and scalability testing Future work
  • 44.
  • 45.
    • Presentation slides:http://bit.ly/vdsn-presentation • VDSN Source Code and Ansible playbooks: • Simple, accessible model, horizontal scaling • http://bit.ly/vdsn-ansible • VDSN code coming soon (@devlaps, #devlaps) • Production Code: • Multi-area VXLAN! Highly optimized, requires expertise to configure/troubleshoot • http://bit.ly/multi-area-vxlan References
  • 46.
    • C. Burgess,N. Leake, L3 + VXLAN Made Practical, OpenStack Summit Spring 2014. • M. Mahalingam, et. Al, Virtual eXtensible Local Area Network (VXLAN): A Framework for Overlaying Virtualized Layer 2 Networks over Layer 3 Networks, https://tools.ietf.org/html/rfc7348 References
  • 47.
    • Sanjay K.Hooda, Shyam Kapadia, Padmanabhan Krishnan, Using TRILL, FabricPath, and VXLAN: Designing Massively Scalable Data Centers (MSDC) with Overlays, Cisco Press, 2014. • Introducing McRouter, http://bit.ly/introducing-mcrouter References
  • 48.
    • McRouter ongithub, https://github.com/facebook/mcrouter • Pyroute2, https://pypi.python.org/pypi/pyroute2 • Maintaining a set in Memcached, http://bit.ly/memcache- sets • Ansible, http://docs.ansible.com References
  • 49.

Editor's Notes