infraXstructure Alexis Dacquay, "How to win back visibility into your network full of Containers, VMs and disintegrated nodes"
0 likes168 views
The document discusses strategies for restoring visibility within complex network environments filled with containers and virtual machines, emphasizing the evolution and features of Arista's EOS architecture. It highlights innovations like the VM Tracer and Container Tracer for monitoring and managing network conditions, as well as the integration of OpenConfig for improved programmability and monitoring. The emphasis is on the transition to modern, vendor-neutral data models and the agility provided by containerization and extensible network architecture.
infraXstructure Alexis Dacquay, "How to win back visibility into your network full of Containers, VMs and disintegrated nodes"
- 1. Gaining backVisibility in the Network Alexis Dacquay,Systems Engineer, [email protected]
- 2. How to win back visibility on your network Full of containers,VMs and disintegrated nodes
- 3. TechnicalForum Arista EOS Evolution Rich innovation in Extensible – Open – Scalable features EOS SysDB Architecture HFT Focus Leaf Spine Cloud VM Tracer for vCenter EOS Features Protocols SSU ASU SFC/SFR EOS ProgrammabilityEOS Scale Workflow Tracer Workload Automation CloudVision EOS SDK EAAS 2004-2009 2010 2011-2012 2014 2015 2016+2013 VXLAN Integration NSX-VMT Integration Openstack Integration EOS+ BGP MLAG ECMP LANZ/DANZ ZTP/R JSON EAPI EOS HA EOS-2016 EOS NetDB Streaming states Hybrid Cloud Containerization Macro-Segmentation Security Go, OpenConfig The software architecture is fundamental to keep the innovation pace Arista Proprietary
- 4. TechnicalForum Unmodified Linux . Arista hardware abstraction layer CLI eAPI OMI XMPP Arista EOS Notify PIM Mgt BGP MLAG Counters Kernel Logs etc… OVSDB SDK SysDB states Driver STP IGMP PIM § Single binary architecture for all platforms § Abstracts platform hardware specifics § Presents multiple open interfaces upstream § Delivers decoupled state sharing architecture (SysDB) § Publish-Subscribe model for scale and stability § Provides highly stable platform with great feature velocity § Highly extensible,fully open integration § Enables agility in hardware choice EOS Arista Proprietary
- 5. TechnicalForum Unmodified Linux . Arista hardware abstraction layer CLI eAPI OMI XMPP Arista EOS Notify Mgt BGP MLAG Counters Kernel Logs etc… OVSDB protobuf OpenConfig SDK For Analytics andTelemetry For YANG model configs container tracer MoreApplicationVisibility Add containers in EOS More languages (Go SDK, goapi) New protocols scaling: 1M+ Routes, 100K+ tunnels, Millisecond convergence Hybrid Cloud integration SysDB states Driver STP IGMP PIM Next Gen EOS Arista Proprietary
- 6. TechnicalForum # show event-monitor mac match-time last-hour 2013-07-14 12:19:57|100|00:0f:53:0d:62:84|||removed|666 2013-07-14 12:20:10|100|00:0f:53:0d:62:84|Ethernet24|learnedDynamicMac|added|667 2013-07-14 12:26:30|100|ec:46:70:00:33:e4|Ethernet22|learnedDynamicMac|added|668 2013-07-14 12:34:57|100|ec:46:70:00:33:e4|||removed|669 # show event-monitor arp match-time last-day 2013-07-13 13:29:03|192.168.1.101|Management1|68:96:7b:27:1d:e9|0|added|43 2013-07-13 16:06:08|192.168.1.253|Management1|||removed|44 2013-07-13 16:06:09|192.168.1.253|Management1|90:f6:52:c2:5d:24|0|added|45 # show event-monitor route match-time last-week 2013-07-08 09:21:56|1.1.1.1/32|receive|1|0|added|0 2013-07-08 09:21:56|127.0.0.1/32|connected|1|0|added|1 2013-07-08 09:21:56|172.168.1.1/32|receive|1|0|added|2 2013-07-08 09:22:06|192.168.1.255/32|receiveBcast|0|1|added|3 Event Monitor & Database Arista Proprietary
- 8. TechnicalForum § Offers visibility of µburst • Impact of congestion on latency,drops § Trigger-based • Guaranteed visibility (vs Polls) • Configurable high/low threshold LANZ High Threshold Eth8 Eth9 Eth10 Eth1 Eth2 Eth3 Congestion Low Threshold Congestion Event triggered by an Over-threshold event Packet buffering on Eth8 queue due to temp µburst from eth1 and eth2 EOS Arista 7150S#show queue-monitor length drops Report generated at 2013-01-16 20:48:09 Time Interface TX Drops ----------------------------------------------------------------- 0:02:32.18999 ago Et46 32755054 0:02:35.29710 ago Et46 53552534 0:02:40.29720 ago Et46 53552633 LANZ Agent Arista Proprietary
- 9. TechnicalForum Precision analysis of queues, ports and buffers + congestion capture! NMSApplications Switch detects potential congestion Application reacts to conditions NMS Identifies hotspots Arista Arista Arista Arista Arista Arista Arista Arista 7150S Arista LANZ Revolutionizes NetworkVisibility Arista Proprietary
- 11. TechnicalForum VMTracer Provides Integration andVisibility 7050# show vmtracer interface Ethernet48 Ethernet48: esx1.aristanetworks.com/ndsTest/dvuplink1 VM Name Network Adapter VLAN Status State ----------------------------------------------------- Exchange Network adapter 4 7 up/up -- Apache Network adapter 3 6 up/up vMotion MySQL Network adapter 1 5 up/up FT-A VLANTrunks Opened/Pruned based on allowed range VLANs Created/Removed based onVM demand VLANTrunks Opened/Pruned based onVM demand Detection of ESX host and VM machines, dynamic provisioning of VLANs Arista Proprietary
- 12. Technical Forum Run Docker on EOS
- 13. TechnicalForum Arista and Docker Solutions 1. Deploy Containers on EOS with Docker 2. Monitor Containers inside the Data Center app app app app app app Docker Swarm Arista Proprietary
- 14. TechnicalForum Containers on EOS - Examples Natural extension of Arista’s EOS+ Platform § Net Tools (sflowtool, fping, hping, nmap, netcat, etc) • https://github.com/gopher-net/dockerized-net-tools § Many applications had some versions to run on EOS Linux kernel, with dependencies (kernel, libraries, 32 vs 64bit, etc) • Containers remove those dependencies § Run Ubuntu/CentOS for testing/Mgt - small footprint vsVM § For DevOps / OSS: faster devàtestàprod Arista Proprietary
- 16. TechnicalForum End-to-End Visibility Device Health Complete Chassis Health Checks Container Application Map Reduce Track Nodes Monitor Statistics Virtual Machine Virtual Visibility Dynamic Provisioning Virtual Container Visibility Link / Path/Flow Active Fault Detection Hop-by-Hop Statistics Topology Visibility via NetworkTelemetry Arista Proprietary
- 17. TechnicalForum ContainerTracer § Displays container workloads § Provides current Docker node and exposed port information § Reduces MTTR and improves visibility ContainerVisibility app app Visibility for Containers,asVMTracer is for VMs Arista Proprietary
- 19. TechnicalForum OpenConfig for EOS – What? § Driven by network operators • Google, ATT, Comcast,others • for a modern, vendor-neutralAPI. § Arista is aligned with our customers • Cloud & SP leading innovation • new data models for a more programmable network § Goals • declarative configuration • modern • scalable monitoring • steaming data http://www.openconfig.net/ Arista Proprietary
- 20. TechnicalForum OpenConfig… Because data-models matter most What is this ? Classical Mgt Evolution to SDN config Customer’s ideal form of SDN Mgt Data models • Information to consume • For humans or machines • MIB • Data models decided by vendors • Arista-EOS-data "port": "Ethernet1” • Cisco-X-data "l_port_id": "Eth1/1" • Cisco-Y-data –YANG or else ... • Juniper,etc • YANG • A model is a structure to expose data • OpenConfig • Explicit and precise definitions • Vendor-neutral • Data-models decided by end-users (large Cloud and SP) Protocol • Communication method • SNMP • Not scaling • Anyone up for a full MIB walk to update states? Poll 5k intf/s ? • Poor at configuration • Automation • Security Mgt • APIs • RESTCONF • NETCONF • Multiple transport choices: • APIs • RESTCONF • NETCONF • EtcA protocol does not satisfy any data-model consistency NETCONF ≠ Data-model ! Arista Proprietary
- 21. TechnicalForum OpenConfig: Resuming “Why ?” Classical (MIB,NETCONF, CLI) § Vendor-specific Data models • Standard in appearance/name • Customers have to adapt to vendors § Rigid, poor scale OpenConfig § Vendor-neutral Data models • Standard down to the details • Vendors have to adapt to customers § Modern,flexible, scalable Arista Proprietary
- 22. TechnicalForum OpenConfig for EOS – How? § Data models defined by OpenConfig YANG models § OpenConfig Transports • RESTCONF - Supports JSON and XML encoding ofYANG config/state data • JSON-over-gRPC • gRPC (protobuf) • NETCONF Complete network-wide real-time state streaming gRPC ( protobuf ) RESTCONF NETCONF ODL or other Controller (YANG models) EOS OpenConfig EOS OpenConfig EOS OpenConfig EOS OpenConfig EOS OpenConfig Arista Proprietary