O slideshow foi denunciado.
Utilizamos seu perfil e dados de atividades no LinkedIn para personalizar e exibir anúncios mais relevantes. Altere suas preferências de anúncios quando desejar.
Neutron Advanced Services
About Me • Sean Roberts • VP Development at Akanda Inc • Former OpenStack Board Director • Past Yahoo, VMware, Stanford, a...
Where Are We Headed Today? OpenStack Neutron Networking Basics Advanced Services: LBaaS, VPNaaS, FWaaS Neutron: Liberty an...
OpenStack Neutron Networking Basics
OSI Model Physical Layer Data Link Layer Network Layer Transport Layer Session Layer Presentation Layer Application Layer ...
Akanda Project Architecture Akanda Management/ Orchestration Physical Network (L2) Nova Neutron Open:OVS/LinuxBridge Propr...
OpenStack
Neutron
Reference Neutron neutron-server Database L3 Agent L3 Agent L3 Agent Advanced Service Advanced Service Advanced Services M...
neutron-server REST API SERVICE RPC SERVICE PLUGIN
Plugin Extensions ● Add logical resources to the REST API ● Discovered by server at startup ○ REST: /v2.0/extensions ● Com...
2 Types of Plugins Monolithic Plugin Mech Mgr Modular Plugin Type Mgr
Monolithic Plugin Typical among SDN vendors They come in two varieties: ● Proxy ● Direct control PLUGIN
Modular Plugin Delegates calls to proper drivers Two kinds of drivers ● Type Driver ● Mechanism Driver Mech Mgr PLUGIN Typ...
Why Not Flat?
IsolationVLAN • 802.1Q • limited • underlay must support GRE/VXLAN • L2 encapsulated in L3 • routable • overlay independen...
Tunneling A D CB
Neutron Advanced Services
Reference Implementation Load Balancing as a Service HAProxy Octavia Project http://octavia.io
VPN as a Service OpenSwan Router Metadata Proxy VPN Driver ● Reference implementation uses OpenSwan ● Site-to-Site ● Multi...
Firewall as a Service • Reference Implementation is Currently Experimental and not production ready • Whats next? L3 Agent...
Akanda
What is Akanda ● Akanda is a multi-process, multi- threaded Neutron advanced services orchestration service ● It currently...
Core Akanda Principles ● Simple ● Compatible ● Open Development (Apache v2)
The Rug really tied the room together
Reference Neutron neutron-server Database L3 Agent L3 Agent L3 Agent Advanced Service Advanced Service Advanced Services M...
Neutron + the Rug L2 Agent L2 Agent L2 Agent L2 Agent L2 Agent Message Queue L3 Agent L3 AgentService Instance neutron-ser...
Router Instance Lifecycle ● Router per tenant distributed throughout the cluster ● The router controls the data flow at la...
Akanda Project Details ● Get the source: https://github. com/stackforge/akanda ● Project status and tarballs: https: //lau...
Neutron: Liberty and Beyond
OpenStack’s Big Tent ● Open Design ● Open Development ● Open Community ● Open Source
The Neutron Stadium ● Common Forum ● Improved Consistency ● Shared Governance
Neutron: Liberty ● IPAM ● BGP Speaker ● NFV Enhancements ● Service Function Chaining ● Enhanced Security Groups ● Paying D...
Questions
OpenStack Neutron Advanced Services by Akanda
OpenStack Neutron Advanced Services by Akanda
Próximos SlideShares
Carregando em…5
×

OpenStack Neutron Advanced Services by Akanda

544 visualizações

Publicada em

Sean Roberts, VP Development Akanda, gave this talk on 03 September 2015 at the HP Sunnyvale offices. This talk goes into detail of how Akanda delivers OpenStack Neutron Advanced Services. Event details can be found here http://www.meetup.com/openstack/events/215648162/

Publicada em: Tecnologia
no profile picture user

  • Entre para ver os comentários

OpenStack Neutron Advanced Services by Akanda

  1. 1. Neutron Advanced Services
  2. 2. About Me • Sean Roberts • VP Development at Akanda Inc • Former OpenStack Board Director • Past Yahoo, VMware, Stanford, and Genentech
  3. 3. Where Are We Headed Today? OpenStack Neutron Networking Basics Advanced Services: LBaaS, VPNaaS, FWaaS Neutron: Liberty and Beyond
  4. 4. OpenStack Neutron Networking Basics
  5. 5. OSI Model Physical Layer Data Link Layer Network Layer Transport Layer Session Layer Presentation Layer Application Layer 1 2 3 4 5 6 7 TCP, UDP IPv4,IPv6, ICMP HTTP, DNS, etc ARP, Ethernet, VLAN
  6. 6. Akanda Project Architecture Akanda Management/ Orchestration Physical Network (L2) Nova Neutron Open:OVS/LinuxBridge Proprietary Akanda L2 Agnostic Overlay Support Akanda Adv Services: Routing/LB/FW OpenStack APIs
  7. 7. OpenStack
  8. 8. Neutron
  9. 9. Reference Neutron neutron-server Database L3 Agent L3 Agent L3 Agent Advanced Service Advanced Service Advanced Services Message Queue DHCP Agent DHCP Agent DHCP Agent L2 Agent L2 Agent L2 Agent L2 Agent L2 Agents
  10. 10. neutron-server REST API SERVICE RPC SERVICE PLUGIN
  11. 11. Plugin Extensions ● Add logical resources to the REST API ● Discovered by server at startup ○ REST: /v2.0/extensions ● Common Extensions ○ Port binding extended attributes, DHCP, L3, Provider, Quota, Security Group
  12. 12. 2 Types of Plugins Monolithic Plugin Mech Mgr Modular Plugin Type Mgr
  13. 13. Monolithic Plugin Typical among SDN vendors They come in two varieties: ● Proxy ● Direct control PLUGIN
  14. 14. Modular Plugin Delegates calls to proper drivers Two kinds of drivers ● Type Driver ● Mechanism Driver Mech Mgr PLUGIN Type Mgr
  15. 15. Why Not Flat?
  16. 16. IsolationVLAN • 802.1Q • limited • underlay must support GRE/VXLAN • L2 encapsulated in L3 • routable • overlay independence
  17. 17. Tunneling A D CB
  18. 18. Neutron Advanced Services
  19. 19. Reference Implementation Load Balancing as a Service HAProxy Octavia Project http://octavia.io
  20. 20. VPN as a Service OpenSwan Router Metadata Proxy VPN Driver ● Reference implementation uses OpenSwan ● Site-to-Site ● Multiple connections per tenant ● IKE, IPSec
  21. 21. Firewall as a Service • Reference Implementation is Currently Experimental and not production ready • Whats next? L3 Agent Router Metadata Proxy Firewall Driver
  22. 22. Akanda
  23. 23. What is Akanda ● Akanda is a multi-process, multi- threaded Neutron advanced services orchestration service ● It currently supports routers and in the near future, load balancers, VPNs and firewalls
  24. 24. Core Akanda Principles ● Simple ● Compatible ● Open Development (Apache v2)
  25. 25. The Rug really tied the room together
  26. 26. Reference Neutron neutron-server Database L3 Agent L3 Agent L3 Agent Advanced Service Advanced Service Advanced Services Message Queue DHCP Agent DHCP Agent DHCP Agent L2 Agent L2 Agent L2 Agent L2 Agent L2 Agents
  27. 27. Neutron + the Rug L2 Agent L2 Agent L2 Agent L2 Agent L2 Agent Message Queue L3 Agent L3 AgentService Instance neutron-server Database Akanda (the rug)
  28. 28. Router Instance Lifecycle ● Router per tenant distributed throughout the cluster ● The router controls the data flow at layer 3 level of the TCP/IP network stack
  29. 29. Akanda Project Details ● Get the source: https://github. com/stackforge/akanda ● Project status and tarballs: https: //launchpad.net/akanda ● Documentation: http://docs.akanda.io ● IRC - #akanda on freenode.net
  30. 30. Neutron: Liberty and Beyond
  31. 31. OpenStack’s Big Tent ● Open Design ● Open Development ● Open Community ● Open Source
  32. 32. The Neutron Stadium ● Common Forum ● Improved Consistency ● Shared Governance
  33. 33. Neutron: Liberty ● IPAM ● BGP Speaker ● NFV Enhancements ● Service Function Chaining ● Enhanced Security Groups ● Paying Down Technical Debt Canadian2006 - Liberty, Saskatchewan (CC-by-sa-3.0) commons.wikimedia.org/w/index.php?title=User:Canadian2006&action=edit&redlink=1
  34. 34. Questions

×