SlideShare a Scribd company logo

Week_3.pptxmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm

Download as PPTX, PDF
N
NavumGupta1

nnnnnbgmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmlllllllllllllll k,lnnl

Environment
1 of 18
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
Week_3.pptxmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm
OpenStack Networking  This diagram depicts a sample OpenStack Networking deployment, with a dedicated OpenStack Networking node performing L3 routing and DHCP, and running the advanced services FWaaS and LBaaS.  Two Compute nodes run the Open vSwitch (openvswitch-agent) and have two physical network cards each, one for tenant traffic, and another for management connectivity.  The OpenStack Networking node has a third network card specifically for provider traffic
Open vSwitch  Open vSwitch (OVS) is a software-defined networking (SDN) virtual switch similar to the Linux software bridge.  OVS provides switching services to virtualized networks with support for industry standard NetFlow, OpenFlow, and sFlow. Open vSwitch is also able to integrate with physical switches using layer 2 features, such as STP, LACP, and 802.1Q VLAN tagging.  Tunneling with VXLAN and GRE is supported with Open vSwitch version 1.11.0-1.el6 or later
Modular Layer 2 (ML2) ML2 is the OpenStack Networking core plug-in introduced in OpenStack’s Havana release. Superseding the previous model of monolithic plug-ins, ML2’s modular design enables the concurrent operation of mixed network technologies. The monolithic Open vSwitch and Linux Bridge plug-ins have been deprecated and removed. Their functionality has instead been reimplemented as ML2 mechanism drivers.
ML2 network types  Multiple network segment types can be operated concurrently. In addition, these network segments can interconnect using ML2’s support for multi-segmented networks.  Ports are automatically bound to the segment with connectivity; it is not necessary to bind them to a specific segment. Depending on the mechanism driver, ML2 supports the following network segment types: 1. flat 2. GRE 3. local 4. VLAN 5. VXLAN
 The various Type drivers are enabled in the ML2 section of the ml2_conf.ini file Tenant networks  Tenant networks are created by users for connectivity within projects. They are fully isolated by default and are not shared with other projects. OpenStack Networking supports a range of tenant network types:  Flat - All instances reside on the same network, which can also be shared with the hosts. No VLAN tagging or other network segregation takes place.  VLAN - OpenStack Networking allows users to create multiple provider or tenant networks. They can also communicate with dedicated servers, firewalls, load balancers and other network infrastructure on the same layer 2 VLAN. [ml2]type_drivers = local,flat,vlan,gre,vxlan
 VXLAN and GRE tunnels - VXLAN and GRE use network overlays to support private communication between instances. An OpenStack Networking router is required to enable traffic to traverse outside of the GRE or VXLAN tenant network.  A router is also required to connect directly-connected tenant networks with external networks, including the Internet; the router provides the ability to connect to instances directly from an external network using floating IP addresses.
Configure controller nodes  Edit /etc/neutron/plugin.ini (symbolic link to /etc/neutron/plugins/ml2/ml2_conf.ini.  Add flat to existing list of values and set flat_networks to * Type_drivers = vxlan, flat Flat_networks =*  Create an external network as a flat network and associate it with the configured physical_network.
 Create a subnet using neutron subnet-create command.  Restart the neuton-server service to apply the changes.
Configure the Network and Compute nodes  1. Create an external network bridge (br-ex) and add an associated port (eth1) to it Create the external bridge in /etc/sysconfig/network-scripts/ifcfg-br-ex: In /etc/sysconfig/network-scripts/ifcfg-eth1, configure the eth1 to connect to br-ex Reboot the node or restart the network service for the changes to take effect 2. Configure physical networks in /etc/neutron/plugins/ml2/openvswitch_agent.ini and map bridges to the physical network 3. Restart the neutron-openvswitch-agent service on both the network and compute nodes for the changes to take effect
Open vSwitch with Data Plane Development Kit (OVS-DPDK) datapath
Standard OVS built out of three main components:  ovs-vswitchd – a user-space daemon that implements the switch logic  kernel module (fast path) – that processes received frames based on a lookup table  ovsdb-server – a database server that ovs-vswitchd queries to obtain its configuration. External clients can talk to ovsdb-server using OVSDB protocol
 When a frame is received, the fast path (kernel space) uses match fields from the frame header to determine the flow table entry and the set of actions to execute.  If the frame does not match any entry in the lookup table it is sent to the user-space daemon (vswitchd) which requires more CPU processing.  The user-space daemon then determines how to handle frames of this type and sets the right entries in the fast path lookup tables
OVS has several ports:  outbound ports which are connected to the physical NICs on the host using kernel device drivers,  Inbound ports which are connected to VMs. The VM guest operating system (OS) is presented with vNICs using the well- known VirtlO paravirtualized net work driver.
PCI Passthrough  Through Intel’s VT-d extension (IOMMU for AMD) it is possible to present PCI devices on the host system to the virtualized guest OS.  This is supported by KVM (Kernel-based Virtual Machine).  Using this technique it is possible to provide a guest VM exclusive access to a NIC. For all practical purposes, the VM thinks the NIC is directly connected to it.  PCI passthrough suffers from one major shortcoming - a single interface eth0 on one of the VNF1 has complete access and ownership of the physical NIC
Data Plane Development Kit (DPDK) The Data Plane Development Kit (DPDK) consists of a set of libraries and user-space drivers for fast packet processing. It’s designed to run mostly in user-space enabling applications to perform their own packet processing operations directly from/to the NIC. The DPDK libraries only provide minimal packet operations within the application but enable receiving and sending packets with a minimum number of CPU cycles. It does not provide any networking stack and instead helps to bypass the kernel network stack in order to deliver high performance.
DPDK-accelerated Open vSwitch (OVS-DPDK)  Open vSwitch can be bundled with DPDK for better performance, resulting in a DPDK-accelerated OVS (OVS+DPDK).  At a high level, the idea is to replace the standard OVS kernel datapath with a DPDK-based datapath, creating a user-space vSwitch on the host, which is using DPDK internally for its packet forwarding.  The nice thing about this architecture is that it is mostly transparent to users as the basic OVS features as well as the interfaces it exposes (such as OpenFlow, OVSDB, the command line, etc.) remains mostly the same.
DPDK with Red Hat OpenStack Platform Generally, we see two main use-cases for using DPDK with Red Hat and Red Hat OpenStack Platform.  DPDK enabled applications, or VNFs, written on top of Red Hat Enterprise Linux as a guest operating system. Here we are talking about Network Functions that are taking advantage of DPDK as opposed to the standard kernel networking stack for enhanced performance.  DPDK-accelerated Open vSwitch, running within Red Hat OpenStack Platform compute nodes (the hypervisors). Here it is all about boosting the performance of OVS and allowing for faster connectivity between VNFs.

More Related Content

PPTX
Accelerating Neutron with Intel DPDK
Alexander Shalimov
 
PDF
Bridges and Tunnels: A Drive Through OpenStack Networking
markmcclain
 
PDF
ONUG Tutorial: Bridges and Tunnels Drive Through OpenStack Networking
markmcclain
 
PPTX
Networking in Openstack - Neutron 101
Mochamad Taufik Romdony
 
PDF
Ovn vancouver
Mason Mei
 
PPTX
Neutron behind the scenes
inbroker
 
PDF
Network Virtualization & Software-defined Networking
Digicomp Academy AG
 
PDF
SDN & NFV Introduction - Open Source Data Center Networking
Thomas Graf
 
Accelerating Neutron with Intel DPDK
Alexander Shalimov
 
Bridges and Tunnels: A Drive Through OpenStack Networking
markmcclain
 
ONUG Tutorial: Bridges and Tunnels Drive Through OpenStack Networking
markmcclain
 
Networking in Openstack - Neutron 101
Mochamad Taufik Romdony
 
Ovn vancouver
Mason Mei
 
Neutron behind the scenes
inbroker
 
Network Virtualization & Software-defined Networking
Digicomp Academy AG
 
SDN & NFV Introduction - Open Source Data Center Networking
Thomas Graf
 

Similar to Week_3.pptxmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm (20)

PDF
Open stack networking_101_part-2_tech_deep_dive
yfauser
 
PPTX
OpenStack Networking and Automation
Adam Johnson
 
PDF
Introduction to OpenNetwork and SDN
HungWei Chiu
 
PPTX
OpenStack and OpenDaylight Workshop: ONUG Spring 2014
mestery
 
PPTX
Meetup 23 - 02 - OVN - The future of networking in OpenStack
Vietnam Open Infrastructure User Group
 
PPTX
OpenvSwitch Deep Dive
rajdeep
 
PDF
OpenStack networking (Neutron)
CREATE-NET
 
PDF
OpenStack Networking
Ilya Shakhat
 
PDF
Open stack networking_101_update_2014
yfauser
 
PPTX
Demystifying openvswitch
Prasad Mukhedkar
 
PPTX
OVN - Basics and deep dive
Trinath Somanchi
 
PPTX
OpenStack SDN
Adrian Norte Fernandez
 
PDF
The Open vSwitch and OVN Projects
LinuxCon ContainerCon CloudOpen China
 
PDF
neutron_icehouse_update
Akihiro Motoki
 
PDF
Openstack Networking Internals - first part
lilliput12
 
PDF
Open Source Backends for OpenStack Neutron
mestery
 
PDF
Inside Architecture of Neutron
markmcclain
 
PDF
Open stack networking_101_part-1
yfauser
 
PPTX
Openstack openswitch basics
nshah061
 
PPTX
Harmonia open iris_basic_v0.1
Yongyoon Shin
 
Open stack networking_101_part-2_tech_deep_dive
yfauser
 
OpenStack Networking and Automation
Adam Johnson
 
Introduction to OpenNetwork and SDN
HungWei Chiu
 
OpenStack and OpenDaylight Workshop: ONUG Spring 2014
mestery
 
Meetup 23 - 02 - OVN - The future of networking in OpenStack
Vietnam Open Infrastructure User Group
 
OpenvSwitch Deep Dive
rajdeep
 
OpenStack networking (Neutron)
CREATE-NET
 
OpenStack Networking
Ilya Shakhat
 
Open stack networking_101_update_2014
yfauser
 
Demystifying openvswitch
Prasad Mukhedkar
 
OVN - Basics and deep dive
Trinath Somanchi
 
OpenStack SDN
Adrian Norte Fernandez
 
The Open vSwitch and OVN Projects
LinuxCon ContainerCon CloudOpen China
 
neutron_icehouse_update
Akihiro Motoki
 
Openstack Networking Internals - first part
lilliput12
 
Open Source Backends for OpenStack Neutron
mestery
 
Inside Architecture of Neutron
markmcclain
 
Open stack networking_101_part-1
yfauser
 
Openstack openswitch basics
nshah061
 
Harmonia open iris_basic_v0.1
Yongyoon Shin
 
Ad

Recently uploaded (20)

PPTX
Oil & Gas Laboratory Services Saudi Arabia.pptx
ETLCO
 
PPTX
Session 9 Panel 3 - Status of Air Quality and Sport IPCC Meeting in Mombasa.pptx
ipcc-media
 
PDF
Circular Economy in Lighting Industry.pptx.pdf
Mina Anis
 
PPTX
Nitrogen pollutions possible scientific eco-friendly solutions by B.pptx
B. BHASKAR
 
PPTX
India’s Environmental Revolution 2025 Policies You Need To Know!.pptx
Dr. Fayaz Ahmad Malla
 
PDF
DOC-20250402-fhfmjfjffgfgfjfjWA0041..pdf
tauseefalaman11
 
PDF
indonesia-sustainable-transformation.pdf
YudiSaputra43
 
DOCX
Light Fuel Oil Storage Reliable Welded Steel Tanks.docx
AllenLin596164
 
PPTX
Tobacco-and-alcohol-abuse.pptx for reporting
ayselprettysomuch
 
PPT
solar-energy.ppt based on the today's environment
Zoya372552
 
DOCX
Epoxy Coated Tanks for Industrial Process Water Vital for Manufacturing.docx
AllenLin596164
 
PPTX
Expert Exchange: Renewables Pull for a Just Energy Transition
Just Energy Transition in Coal Regions Knowledge Hub
 
PPTX
Forests The Lungs of Our Planet Forests
rt8932484
 
PDF
2025-07-26 Composting at Home 101 with video for SlideShare.pdf
Ellen Book
 
PPTX
Nitrogen deficiency in plants final.pptx
nasath17mn
 
PPTX
Angle Pair.pptx Angle Pair.pptx Angle Pair.pptx Angle Pair.pptx Angle Pair.pp...
YuseiFudo10
 
PPTX
Environmental Management & Sustainable Development.pptx
PoojaShetty805509
 
PDF
Wicked Cool Mystic Newsletter_MyRWA2025.pdf
dariaclark1
 
PDF
Federal Tax Credits for Electric School Buses
ShannonPaton1
 
PDF
Shelling and Schooling: Educational Disruptions and Social Consequences for C...
AI Publications
 
Oil & Gas Laboratory Services Saudi Arabia.pptx
ETLCO
 
Session 9 Panel 3 - Status of Air Quality and Sport IPCC Meeting in Mombasa.pptx
ipcc-media
 
Circular Economy in Lighting Industry.pptx.pdf
Mina Anis
 
Nitrogen pollutions possible scientific eco-friendly solutions by B.pptx
B. BHASKAR
 
India’s Environmental Revolution 2025 Policies You Need To Know!.pptx
Dr. Fayaz Ahmad Malla
 
DOC-20250402-fhfmjfjffgfgfjfjWA0041..pdf
tauseefalaman11
 
indonesia-sustainable-transformation.pdf
YudiSaputra43
 
Light Fuel Oil Storage Reliable Welded Steel Tanks.docx
AllenLin596164
 
Tobacco-and-alcohol-abuse.pptx for reporting
ayselprettysomuch
 
solar-energy.ppt based on the today's environment
Zoya372552
 
Epoxy Coated Tanks for Industrial Process Water Vital for Manufacturing.docx
AllenLin596164
 
Expert Exchange: Renewables Pull for a Just Energy Transition
Just Energy Transition in Coal Regions Knowledge Hub
 
Forests The Lungs of Our Planet Forests
rt8932484
 
2025-07-26 Composting at Home 101 with video for SlideShare.pdf
Ellen Book
 
Nitrogen deficiency in plants final.pptx
nasath17mn
 
Angle Pair.pptx Angle Pair.pptx Angle Pair.pptx Angle Pair.pptx Angle Pair.pp...
YuseiFudo10
 
Environmental Management & Sustainable Development.pptx
PoojaShetty805509
 
Wicked Cool Mystic Newsletter_MyRWA2025.pdf
dariaclark1
 
Federal Tax Credits for Electric School Buses
ShannonPaton1
 
Shelling and Schooling: Educational Disruptions and Social Consequences for C...
AI Publications
 
Ad

Week_3.pptxmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm

  • 2. OpenStack Networking  This diagram depicts a sample OpenStack Networking deployment, with a dedicated OpenStack Networking node performing L3 routing and DHCP, and running the advanced services FWaaS and LBaaS.  Two Compute nodes run the Open vSwitch (openvswitch-agent) and have two physical network cards each, one for tenant traffic, and another for management connectivity.  The OpenStack Networking node has a third network card specifically for provider traffic
  • 3. Open vSwitch  Open vSwitch (OVS) is a software-defined networking (SDN) virtual switch similar to the Linux software bridge.  OVS provides switching services to virtualized networks with support for industry standard NetFlow, OpenFlow, and sFlow. Open vSwitch is also able to integrate with physical switches using layer 2 features, such as STP, LACP, and 802.1Q VLAN tagging.  Tunneling with VXLAN and GRE is supported with Open vSwitch version 1.11.0-1.el6 or later
  • 4. Modular Layer 2 (ML2) ML2 is the OpenStack Networking core plug-in introduced in OpenStack’s Havana release. Superseding the previous model of monolithic plug-ins, ML2’s modular design enables the concurrent operation of mixed network technologies. The monolithic Open vSwitch and Linux Bridge plug-ins have been deprecated and removed. Their functionality has instead been reimplemented as ML2 mechanism drivers.
  • 5. ML2 network types  Multiple network segment types can be operated concurrently. In addition, these network segments can interconnect using ML2’s support for multi-segmented networks.  Ports are automatically bound to the segment with connectivity; it is not necessary to bind them to a specific segment. Depending on the mechanism driver, ML2 supports the following network segment types: 1. flat 2. GRE 3. local 4. VLAN 5. VXLAN
  • 6.  The various Type drivers are enabled in the ML2 section of the ml2_conf.ini file Tenant networks  Tenant networks are created by users for connectivity within projects. They are fully isolated by default and are not shared with other projects. OpenStack Networking supports a range of tenant network types:  Flat - All instances reside on the same network, which can also be shared with the hosts. No VLAN tagging or other network segregation takes place.  VLAN - OpenStack Networking allows users to create multiple provider or tenant networks. They can also communicate with dedicated servers, firewalls, load balancers and other network infrastructure on the same layer 2 VLAN. [ml2]type_drivers = local,flat,vlan,gre,vxlan
  • 7.  VXLAN and GRE tunnels - VXLAN and GRE use network overlays to support private communication between instances. An OpenStack Networking router is required to enable traffic to traverse outside of the GRE or VXLAN tenant network.  A router is also required to connect directly-connected tenant networks with external networks, including the Internet; the router provides the ability to connect to instances directly from an external network using floating IP addresses.
  • 8. Configure controller nodes  Edit /etc/neutron/plugin.ini (symbolic link to /etc/neutron/plugins/ml2/ml2_conf.ini.  Add flat to existing list of values and set flat_networks to * Type_drivers = vxlan, flat Flat_networks =*  Create an external network as a flat network and associate it with the configured physical_network.
  • 9.  Create a subnet using neutron subnet-create command.  Restart the neuton-server service to apply the changes.
  • 10. Configure the Network and Compute nodes  1. Create an external network bridge (br-ex) and add an associated port (eth1) to it Create the external bridge in /etc/sysconfig/network-scripts/ifcfg-br-ex: In /etc/sysconfig/network-scripts/ifcfg-eth1, configure the eth1 to connect to br-ex Reboot the node or restart the network service for the changes to take effect 2. Configure physical networks in /etc/neutron/plugins/ml2/openvswitch_agent.ini and map bridges to the physical network 3. Restart the neutron-openvswitch-agent service on both the network and compute nodes for the changes to take effect
  • 11. Open vSwitch with Data Plane Development Kit (OVS-DPDK) datapath
  • 12. Standard OVS built out of three main components:  ovs-vswitchd – a user-space daemon that implements the switch logic  kernel module (fast path) – that processes received frames based on a lookup table  ovsdb-server – a database server that ovs-vswitchd queries to obtain its configuration. External clients can talk to ovsdb-server using OVSDB protocol
  • 13.  When a frame is received, the fast path (kernel space) uses match fields from the frame header to determine the flow table entry and the set of actions to execute.  If the frame does not match any entry in the lookup table it is sent to the user-space daemon (vswitchd) which requires more CPU processing.  The user-space daemon then determines how to handle frames of this type and sets the right entries in the fast path lookup tables
  • 14. OVS has several ports:  outbound ports which are connected to the physical NICs on the host using kernel device drivers,  Inbound ports which are connected to VMs. The VM guest operating system (OS) is presented with vNICs using the well- known VirtlO paravirtualized net work driver.
  • 15. PCI Passthrough  Through Intel’s VT-d extension (IOMMU for AMD) it is possible to present PCI devices on the host system to the virtualized guest OS.  This is supported by KVM (Kernel-based Virtual Machine).  Using this technique it is possible to provide a guest VM exclusive access to a NIC. For all practical purposes, the VM thinks the NIC is directly connected to it.  PCI passthrough suffers from one major shortcoming - a single interface eth0 on one of the VNF1 has complete access and ownership of the physical NIC
  • 16. Data Plane Development Kit (DPDK) The Data Plane Development Kit (DPDK) consists of a set of libraries and user-space drivers for fast packet processing. It’s designed to run mostly in user-space enabling applications to perform their own packet processing operations directly from/to the NIC. The DPDK libraries only provide minimal packet operations within the application but enable receiving and sending packets with a minimum number of CPU cycles. It does not provide any networking stack and instead helps to bypass the kernel network stack in order to deliver high performance.
  • 17. DPDK-accelerated Open vSwitch (OVS-DPDK)  Open vSwitch can be bundled with DPDK for better performance, resulting in a DPDK-accelerated OVS (OVS+DPDK).  At a high level, the idea is to replace the standard OVS kernel datapath with a DPDK-based datapath, creating a user-space vSwitch on the host, which is using DPDK internally for its packet forwarding.  The nice thing about this architecture is that it is mostly transparent to users as the basic OVS features as well as the interfaces it exposes (such as OpenFlow, OVSDB, the command line, etc.) remains mostly the same.
  • 18. DPDK with Red Hat OpenStack Platform Generally, we see two main use-cases for using DPDK with Red Hat and Red Hat OpenStack Platform.  DPDK enabled applications, or VNFs, written on top of Red Hat Enterprise Linux as a guest operating system. Here we are talking about Network Functions that are taking advantage of DPDK as opposed to the standard kernel networking stack for enhanced performance.  DPDK-accelerated Open vSwitch, running within Red Hat OpenStack Platform compute nodes (the hypervisors). Here it is all about boosting the performance of OVS and allowing for faster connectivity between VNFs.