Linux Clusters Institute: OpenStack Neutron

Similar documents
Cloud Networking (VITMMA02) Network Virtualization: Overlay Networks OpenStack Neutron Networking

Open vswitch in Neutron

Neutron: peeking behind the curtains

Introduction to Neutron. Network as a Service

OpenStack and OVN What s New with OVS 2.7 OpenStack Summit -- Boston 2017

Neutron networking with RHEL OpenStack Platform. Nir Yechiel Senior Technical Product Manager, OpenStack Red Hat

Project Calico v3.2. Overview. Architecture and Key Components. Project Calico provides network security for containers and virtual machine workloads.

Managing Demand Spikes in a highly flexible and agile deployment

Project Calico v3.1. Overview. Architecture and Key Components

OpenStack Icehouse on IPv6

Build Cloud like Rackspace with OpenStack Ansible

Building NFV Solutions with OpenStack and Cisco ACI

FloatingIP Enhancement For Public Cloud Infrastructure

Dan Williams Networking Services, Red Hat

Neutron 技術深入探討 /6/2 Lane

Fuel VMware DVS Plugin Guide

Red Hat OpenStack Platform 11

Red Hat OpenStack Platform 13

Fuel VMware DVS Plugin Guide

Wolfram Richter Red Hat. OpenShift Container Netzwerk aus Sicht der Workload

Cisco ACI with OpenStack OpFlex Architectural Overview

Deep Dive into OpenStack Networking

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Virtualization Design

Secure Kubernetes Container Workloads

A Brief Guide to Virtual Switching Franck Baudin (Red Hat) Billy O Mahony (Intel)

OpenContrail Overview Architecture & Demo

Fully Scalable Networking with MidoNet

Red Hat OpenStack Platform 13

Red Hat Enterprise Linux OpenStack Platform 7

Ethernet Fabrics- the logical step to Software Defined Networking (SDN) Frank Koelmel, Brocade

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Red Hat OpenStack Platform 13

Red Hat OpenStack Platform 9

Installation runbook for

Docker Networking: From One to Many. Don Mills

Razique Mahroua Red Hat Training - Services Content Architect

Empowering SDN SOFTWARE-BASED NETWORKING & SECURITY FROM VYATTA. Bruno Barba Systems Engineer Mexico & CACE

Red Hat OpenStack Platform 13

Red Hat OpenStack Platform 10 Red Hat OpenDaylight Product Guide

Life of a Packet. KubeCon Europe Michael Rubin TL/TLM in GKE/Kubernetes github.com/matchstick. logo. Google Cloud Platform

Deploying VMware NSX with OpenStack

Fulvio Risso, Matteo Bertrone, Mauricio Vasquez Bernal

MidoNet Operations Guide

Kubernetes networking in the telco space

VNS3 3.5 Container System Add-Ons

IPv6 in Avi Vantage for OpenStack

Simplify Container Networking With ican. Huawei Cloud Network Lab

Quantum, network services for Openstack. Salvatore Orlando Openstack Quantum core developer

Fuel VMware DVS plugin user guide

TungstenFabric (Contrail) at Scale in Workday. Mick McCarthy, Software Workday David O Brien, Software Workday

Singapore. Service Proxy, Container Networking & K8s. Acknowledgement: Pierre Pfister, Jerome John DiGiglio, Ray

OpenStack Havana On IPv6

BCS EXIN Specialist Certificate in OpenStack Software Neutron Specimen Paper A

NDN iptables match extension

Xen and CloudStack. Ewan Mellor. Director, Engineering, Open-source Cloud Platforms Citrix Systems

Dockercon 2017 Networking Workshop

CONTAINERS AND MICROSERVICES WITH CONTRAIL

OPENSHIFT FOR OPERATIONS. Jamie Cloud Guy - US Public Sector at Red Hat

BCS EXIN Foundation Certificate in OpenStack Software Neutron Syllabus

Red Hat Enterprise Linux OpenStack Platform User Group.

WIND RIVER TITANIUM CLOUD FOR TELECOMMUNICATIONS

Layer-4 to Layer-7 Services

Software Defined. All The Way with OpenStack. T. R. Bosworth Senior Product Manager SUSE OpenStack Cloud

CS-580K/480K Advanced Topics in Cloud Computing. OpenStack

Enabling DPDK Accelerated OVS in ODL and Accelerating SFC

Network Mul,tenancy in Xen- based Clouds. Chiradeep Vi;al CloudStack Commi;er Citrix Sep

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Network Automation using Contrail Cloud (NACC)

Test neutron network performance locally

Best Practice Deployment of F5 App Services in Private Clouds. Henry Tam, Senior Product Marketing Manager John Gruber, Sr. PM Solutions Architect

*Performance and capacities are measured under ideal testing conditions using PAN-OS.0. Additionally, for VM

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Load Balancing Bloxx Web Filter. Deployment Guide v Copyright Loadbalancer.org

Bringing Security and Multitenancy. Lei (Harry) Zhang

HPE HELION CLOUDSYSTEM 9.0. Copyright 2015 Hewlett Packard Enterprise Development LP

Zero to Microservices in 5 minutes using Docker Containers. Mathew Lodge Weaveworks

Learning From Real Practice of Providing Highly Available Hybrid Cloud Service with OpenStack Neutron

SDN+NFV Next Steps in the Journey

Installing Cisco Nexus 1000V for KVM

Using PCE for path computation, PCEP for device config and BGP-LS for topology discovery vcpe

Project Kuryr. Antoni Segura Puimedon (apuimedo) Gal Sagie (gsagie)

OpenStack Networking: Where to Next?

Implementing Container Application Platforms with Cisco ACI

Load Balancing Web Proxies / Filters / Gateways. Deployment Guide v Copyright Loadbalancer.org

Host Dataplane Acceleration: SmartNIC Deployment Models

Evaluation of virtualization and traffic filtering methods for container networks

*Performance and capacities are measured under ideal testing conditions using PAN-OS 8.0. Additionally, for VM

Agenda Introduce NSX-T: Architecture Switching Routing Firewall Disclaimer This presentation may contain product features that are currently under dev

OpenStack Network Design using Cisco Solutions Shannon McFarland CCIE #5245 Principal

The Road to Rolling Upgrade of Intel Private Cloud

HOW-TO-GUIDE: demonstrating Fabric Attach using OpenVSwitch

Container System Overview

SDN Controller/ Orchestration/ FastDataStacks. Joel Halpern (Ericsson) Frank Brockners (Cisco)

Cisco ACI Unified Plug-in for OpenStack Architectural Overview

IPv6 in the Telco Cloud

Next Gen Virtual Switch. CloudNetEngine Founder & CTO Jun Xiao

Kubernetes - Networking. Konstantinos Tsakalozos

SUPERFLUIDITY. Research and Innovation Action GA Deliverable Type: Report. Dissemination Level: PU

"Charting the Course... H8Q14S HPE Helion OpenStack. Course Summary

Transcription:

Linux Clusters Institute: OpenStack Neutron Yale, August 13 th 17 th 2018 John Michael Lowe Senior Cloud Engineer Indiana University jomlowe@iu.edu

Neutron SDN or not Network Namespaces Components Security groups Virtual Routers Troubleshooting methods Additional items August 13th-17th 2018 2

SDN or Not Software Defined Networking the treatment of layer 2 and layer 3 is manipulated programmatically OpenVSwitch is the most commonly used SDN with OpenStack SDN offload onto NICs and Switches via DPDK (Data Path Development Kit) is becoming popular The simplicity, flexibility, and reliability of using in kernel bridging and overlay networks outweighs features of SDN in most cases August 13th-17th 2018 3

Network Namespaces One of the 7 namespaces in the Linux kernel Isolated Interfaces Iptables Routing tables IP address assignments Try it yourself ip netns add foo Ip netns list ip link add veth0 type veth peer name veth1 ip link set veth1 netns foo ip netns exec foo ip link list August 13th-17th 2018 4

Components neutron-server neutron-linuxbridge-agent neutron-metadata-agent neutron-l3-agent neutron-dhcp-agent August 13th-17th 2018 5

Components: Neutron Server Serves API requests, database requests Configuration Files /etc/neutron/neutron.conf /etc/neutron/plugins/ml2/ml2_conf.ini Runs on controller August 13th-17th 2018 6

Components: Linuxbridge Agent Creates kernel bridges and adds needed interfaces Mapping from interfaces to OpenStack physical network names done in this agents configuration files Configuration files /etc/neutron/neutron.conf /etc/neutron/plugins/ml2/ml2_conf.ini /etc/plugins/ml2/linuxbridge_agent.ini Runs on network and compute August 13th-17th 2018 7

Components: L3 Agent Creates a network namespace for NAT, floating ip addresses, routing IPV6 Works together with L2 agent Configuration files /etc/neutron/neutron.conf /etc/neutron/l3_agent.ini Runs on network node (compute in DVR w/ OVS) August 13th-17th 2018 8

Components: Metadata Agent Proxies metadata requests from http://169.254.169.254 to compute service via haproxy and DNAT rules in virtual router Configuration files /etc/neutron/neutron.conf /etc/neutron/metadata_agent.ini Runs on network node August 13th-17th 2018 9

Components: DHCP Agent Runs Dnsmasq in a network namespace to serve dhcp and caching dns requests Configuration files /etc/neutron/neutron.conf /etc/neutron/dhcp_agent.ini Runs on network node August 13th-17th 2018 10

Neutron Networking Hypervisor VM Bridge VXLAN Hypervisor VM Network node VXLAN Bridge T a p NetNS T a p Bridge Bridge VXLAN Internet

Security Groups Set of iptables explicit allow rules (default disallow) applied to outside of an instance s interfaces Applied by linuxbridge agent The default group has a rule allowing all traffic in from any other instance with the same security group applied The default group allows all IPv4 and IPv6 traffic out August 13th-17th 2018 12

Virtual Routers In HA mode they run keepalived inside the network namespace for failover, faster than dead agent detection and rescheduling With OVS and Distributed Virtual Router traffic flow is asymmetrical, in the network node and out the compute One of two network namespaces used August 13th-17th 2018 13

Troubleshooting Methods Enter the namespace ip netns exec qrouter-<router id> bash Ip netns exec qdhcp-<network id> bash Tcpdump tcpdump I <bridge name> -n Ip link list ip d link list Example output snippet: vxlan id 446 group 239.0.0.62 dev bond0 August 13th-17th 2018 14

Resources Admin Guide https://docs.openstack.org/neutron/latest/admin/ Deployment Guide https://docs.openstack.org/neutron/latest/install/ August 13th-17th 2018 15

Questions August 13th-17th 2018 16

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback