Contrail Networking: Evolve your cloud with Containers

Similar documents
CONTAINERS AND MICROSERVICES WITH CONTRAIL

Service Automation Made Easy

Contrail Networking. Product Description. Data Sheet. Product Overview

Juniper Solutions for Turnkey, Managed Cloud Services

Instant evolution in the age of digitization. Turn technology into your competitive advantage

CONTRAIL NETWORKING. Product Description. Product Overview

JUNIPER NETWORKS PRODUCT BULLETIN

Deploying Data Center Switching Solutions

Software-Defined Secure Networks in Action

Contrail Cloud Platform Architecture

Transit VPC Deployment Using AWS CloudFormation Templates. White Paper

Contrail Cloud Platform Architecture

Topology-Independent In-Service Software Upgrades on the QFX5100

Juniper Care Plus Advanced Services Credits

Policy Enforcer. Product Description. Data Sheet. Product Overview

Extending Enterprise Security to Public and Hybrid Clouds

Juniper Sky Enterprise

Optimizing CloudEnabled Branch with. Juniper Services and Support. Protect and Ensure the Operational Success of Your Juniper Cloud-Enabled Branch

Automated Control and Orchestration within the Juniper Networks Mobile Cloud Architecture. White Paper

CONFIGURING WEBAPP SECURE TO PROTECT AGAINST CREDENTIAL ATTACKS

SDSN: Dynamic, Adaptive Multicloud Security

Cisco Cloud Application Centric Infrastructure

Cluster Upgrade. SRX Series Services Gateways for the Branch Upgrade Junos OS with Minimal Traffic Disruption and a Single Command APPLICATION NOTE

Disaggregation and Virtualization within the Juniper Networks Mobile Cloud Architecture. White Paper

OPEN CONTRAIL ARCHITECTURE GEORGIA TECH SDN EVENT

Cisco Container Platform

EASILY DEPLOY AND SCALE KUBERNETES WITH RANCHER

Cloud-Enable the Enterprise with Junos Fusion

Network Automation using Contrail Cloud (NACC)

OpenStack Networking: Where to Next?

Exploring Cloud Security, Operational Visibility & Elastic Datacenters. Kiran Mohandas Consulting Engineer

DEPLOY MODERN APPS WITH KUBERNETES AS A SERVICE

Extending Enterprise Security to Public and Hybrid Clouds

DEPLOY MODERN APPS WITH KUBERNETES AS A SERVICE

Juniper Networks Live-Live Technology

Securing Microservice Interactions in Openstack and Kubernetes

Open Cloud Interconnect: Use Cases for the QFX10000 Coherent DWDM Line Card

WELCOME. Chicago Juniper Users Group SEPT 18TH, 2013

Juniper JN0-410 Exam. Volume: 65 Questions. Question No: 1 What are two valid service VMs in a service chain? (Choose two.) A.

METAFABRIC ARCHITECTURE A SIMPLE, OPEN, AND SMART NETWORK FOR THE DATA CENTER

SDN TO BE OR NOT TO BE. Uwe Richter SE Director Russia/CIS, East and South East Europe

Juniper Sky Advanced Threat Prevention

Juniper Networks Champion Program

JUNIPER OPTIMUM CARE SERVICE

Product Description. Architecture and Key Components OSS/BSS. VNF Element Management Systems VNF1 NFVI. Virtual Computing Red Hat.

WHITE PAPER. RedHat OpenShift Container Platform. Benefits: Abstract. 1.1 Introduction

Junos Genius FAQs. What is Junos Genius? How can I access the Junos Genius platform? What learning assets are available on Junos Genius?

Project Calico v3.2. Overview. Architecture and Key Components. Project Calico provides network security for containers and virtual machine workloads.

Cisco Cloud Services Router 1000V and Amazon Web Services CASE STUDY

ANIKET DAPTARI & RANJINI RAJENDRAN CONTRAIL TEAM

Software Defined. All The Way with OpenStack. T. R. Bosworth Senior Product Manager SUSE OpenStack Cloud

Simplify Hybrid Cloud

JUNIPER SKY ADVANCED THREAT PREVENTION

by Cisco Intercloud Fabric and the Cisco

CONTRAIL SECURITY. Contrail Cloud Networking & Security

K8s(Kubernetes) and SDN for Multi-access Edge Computing deployment

JN0-210.juniper. Number: JN0-210 Passing Score: 800 Time Limit: 120 min.

Enabling Network Automation with Junos OS

Juniper Unite Cloud-Enabled Enterprise Reference Architecture

JUNIPER NETWORKS VIRTUAL CHASSIS FABRIC TECHNOLOGY

STRATEGIC WHITE PAPER. Securing cloud environments with Nuage Networks VSP: Policy-based security automation and microsegmentation overview

TEN LAYERS OF CONTAINER SECURITY

Accelerating Contrail vrouter

Casa Systems Axyom Software Platform

Use Case Brief BUILDING A PRIVATE CLOUD PROVIDING PUBLIC CLOUD FUNCTIONALITY WITHIN THE SAFETY OF YOUR ORGANIZATION

TRANSFORM YOUR NETWORK

Nuage Networks Product Architecture. White Paper

Project Calico v3.1. Overview. Architecture and Key Components

Opendaylight: Enabling 5G through Cloud Native Telco Architecture Edgar Lombara Lumina Networks Inc.

White Paper. Why Remake Storage For Modern Data Centers

BROCADE CLOUD-OPTIMIZED NETWORKING: THE BLUEPRINT FOR THE SOFTWARE-DEFINED NETWORK

FROM SDN TO CLOUD NETWORKING. Bob Muglia EXECUTIVE VICE PRESIDENT, SOFTWARE SOLUTIONS DIVISION

Solution Overview Cisco Tetration Analytics and AlgoSec: Business Application Connectivity Visibility, Policy Enforcement, and Business-Based Risk and

DELL EMC TECHNICAL SOLUTION BRIEF

FROM CLOUD TO MULTICLOUD

K8s(Kubernetes) and SDN for Multi-access Edge Computing deployment

Overview of the Juniper Networks Mobile Cloud Architecture

Juniper Care Plus Services

Cisco Application Centric Infrastructure

Weiterentwicklung von OpenStack Netzen 25G/50G/100G, FW-Integration, umfassende Einbindung. Alexei Agueev, Systems Engineer

2018 Cisco and/or its affiliates. All rights reserved.

Kubernetes made easy with Docker EE. Patrick van der Bleek Sr. Solutions Engineer NEMEA

Virtualization to Transform Service Provider Business and Operational Economics

Red Hat OpenStack Platform 10 Red Hat OpenDaylight Product Guide

FROM A RIGID ECOSYSTEM TO A LOGICAL AND FLEXIBLE ENTITY: THE SOFTWARE- DEFINED DATA CENTRE

Cisco ACI vpod. One intent: Any workload, Any location, Any cloud. Introduction

Title DC Automation: It s a MARVEL!

Introduction. Delivering Management as Agile as the Cloud: Enabling New Architectures with CA Technologies Virtual Network Assurance Solution

Merging Enterprise Applications with Docker* Container Technology

White Paper. Juniper Networks Cloud Security

Architectural overview Turbonomic accesses Cisco Tetration Analytics data through Representational State Transfer (REST) APIs. It uses telemetry data

Cisco CloudCenter Solution with Cisco ACI: Common Use Cases

ENHANCE APPLICATION SCALABILITY AND AVAILABILITY WITH NGINX PLUS AND THE DIAMANTI BARE-METAL KUBERNETES PLATFORM

Cloud Deployment Scenarios

CloudVision Macro-Segmentation Service

Seven Key Considerations Before Your Upcoming F5 or Citrix Load Balancer Refresh

PUBLIC AND HYBRID CLOUD: BREAKING DOWN BARRIERS

JUNIPER NETWORKS AND AEROHIVE NETWORKS: CLOUD- ENABLED SOLUTIONS FOR THE ENTERPRISE

Flip the Switch to Container-based Clouds

WIND RIVER TITANIUM CLOUD FOR TELECOMMUNICATIONS

Transcription:

Contrail Networking: Evolve your cloud with Containers INSIDE Containers and Microservices Transformation of the Cloud Building a Network for Containers Juniper Networks Contrail Solution BUILD MORE THAN A NETWORK

Preface Large enterprises are exploring the possibilities enabled by emerging container technologies such as Docker. At Juniper, we see this trend as a milestone in data center innovation, offering significant gains in efficiency, productivity, and agility for large enterprises that offer cloud as a service. Containers and Microservices The primary purpose of containerized applications is to improve the effectiveness of software teams, making it easier for people to work together while lowering the communications overhead. In large enterprises, applications such as ERP or CRM software suites often begin as simple projects, but as time passes, they quickly become clunky and inefficient, with a monolithic code base that slows progress for development teams. Containers free developers to focus on their core competency, while operations staff benefit from flexibility, a smaller footprint in the data center, and lower overhead. To get beyond this inefficiency, a new approach breaks down the application into smaller, bitesize components known as microservices. Adopting a microservices architecture gives development teams agility and operational efficiency by virtue of the smaller code base in each application component. As the software goes through its various stages of development, it may move from the developer s PC to a lab or test environment; it may move from a physical to a virtual environment, and ultimately, to a production environment. In each of these, the app must perform consistently. Containers address the problem of how to make software work in different computing environments. They enable software developers to encapsulate an application component in a single, lightweight package. Inherently Linux-based, containers offer the promise of running consistently from one computing environment to another, virtual or physical. 1

Contrail Networking: Inside the Linux Container Ecosystem Adopting a microservices architecture gives development teams agility and operational efficiency by virtue of the smaller code base in each application component. Transformation of the Cloud With containers inherently lightweight nature, a single host can support many more container instances than traditional virtual machines (VMs). Typically short lived, containers can be created and moved more efficiently than VMs, and they can also be managed as groups of logically related elements. These container characteristics impact the requirements for container networking solutions: the network must be agile and scalable. The transition from VMs to containers will not happen overnight, so VMs, containers, and baremetal servers will need to coexist in the same cloud environment. The container network, therefore, must be seamless across diverse environments. It also must be agnostic to work with whatever compute vehicle is in use to deploy applications. Building a Network for Containers The network plays a vital role in containerization. In multitenant environments, one essential need is the ability to provide access control and auditing capabilities for network flows. The access controls provided by the network complement application-based authentication and authorization mechanisms. Together, they provide a common layer across heterogeneous authentication methods. This function addresses a frequent requirement in environments where thirdparty software such as virtualized firewalls is in use, or when multiple generations of software technologies are running simultaneously. Network access-control, combined with security at Layers 3 7, should encompass the clusters that are executing containerized workloads, as well as external environments such as existing OpenStack or bare-metal servers. In these heterogeneous environments, the network is the glue that holds together the diverse elements. 2

Juniper Networks Contrail Solution Juniper Networks Contrail is a simple, open, and agile Cloud Network Automation platform that can provide microsegmentation for a container ecosystem, securely isolating networks within a multi-tenant environment. It enables the cluster management tool to connect different virtual networks between applications running on containers and VMs, and also connect elements outside the cluster management tool, such as legacy infrastructure or databases running on bare-metal servers in private, public, and hybrid clouds. The Contrail solution is composed of two products: Contrail Networking and Contrail Cloud Platform. Contrail Networking: An open SDN solution that consists of Contrail Controller, Contrail vrouter, an analytics engine, and published northbound APIs for cloud and NFV. Contrail Networking improves business agility by delivering unique security, availability, performance, automation, and elasticity capabilities Contrail Cloud Platform: A turnkey cloud orchestration and automation platform that consists of Contrail Networking, Juniper s OpenStack Distribution, Server Manager, and Ceph-Based Distributed Storage. K8s Components Kubernetes Master kube-network-manager REST kube-network-manager New OC daemon for kuberbetes to listen to k8s API and automate the creation of virtual networks and policy Controller BGP Federation Controller Configuration Analytics Control BGP Clustering Controller XMPP BGP + Netconf XMPP Minion IP Fabric (Underlay Network) Minion Container s Docker & Kubelet Docker & Kubelet vrouter (L2 & L3) on replaces docker0 MPLS over GRE/UDP or VXLAN kube-minion-plugin and vrouter Kuberbetes proxy is removed Attaches containers veth-pair bridge between the container and pod s VRF in the vrouter (replacing the docker0 interface) 3

Benefits and Features Provides the ability to weave virtual overlay networks with heterogeneous environments that straddle private and public clouds, orchestration tools, and compute workload vehicles. Allows tenants to specify traffic selection criteria and the network function sequences to which selected traffic will be subjected a capability referred to as Service Function Chaining. Implements secure multitenancy for tenants utilizing containers and/or groups of containers, ensuring clear segmentation between tenants sharing the pooled infrastructure. Enforces security policies at every server host where containers are running by implementing a fully distributed firewall in the vrouter. Additional Information Product URL: http://www.juniper.net/us/en/products-services/ sdn/contrail Contrail Sandbox: www.opencontrail.org/sandbox Contrail Package: https://www.juniper.net/support/ downloads/?p=contrail About Juniper Networks Juniper Networks challenges the status quo with products, solutions and services that transform the economics of networking. Our team co-innovates with customers and partners to deliver automated, scalable and secure networks with agility, performance and value. Additional information can be found at Juniper Networks or connect with Juniper on Twitter and Facebook. Corporate and Sales Headquarters Juniper Networks, Inc. 1133 Innovation Way Sunnyvale, CA 94089 USA Phone: 888.JUNIPER (888.586.4737) or +1.408.745.2000 Fax: +1.408.745.2100 www.juniper.net APAC and EMEA Headquarters Juniper Networks International B.V. Boeing Avenue 240 1119 PZ Schiphol-Rijk Amsterdam, The Netherlands Phone: +31.0.207.125.700 Fax: +31.0.207.125.701 EXPLORE JUNIPER Get the App. Copyright 2016 Juniper Networks, Inc. All rights reserved. Juniper Networks, the Juniper Networks logo, Junos and QFabric are registered trademarks of Juniper Networks, Inc. in the United States and other countries. All other trademarks, service marks, registered marks, or registered service marks are the property of their respective owners. Juniper Networks assumes no responsibility for any inaccuracies in this document. Juniper Networks reserves the right to change, modify, transfer, or otherwise revise this publication without notice. 7400034-001-EN May 2016

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback