suse bu presentation template 2014understanding virtual domains • isolate workloads •...
TRANSCRIPT
OpenStack Networking
2
Understanding of OpenStack Components
3
Why OpenStack Networking has doubters
• Complex to understand
• Not easy to deploy
• Not fully understood OS distro dependencies
• Security not fully understood
• Unclear advanced services configuration
4
Road to Cloud Networking
#1DEPLOYMENT
ROADBLOCK
75 Open
Tickets
4Months
Delay
#1DEPLOYMENT
ENABLER
0 Open
Tickets
0 Weeks
Delay
5
Future of OpenStack Networking
5
Firewall
Router
Switch
Switch Switch
Router
Old Way OpenStack Way
On-Demand Virtual Network Functions
6
Removing OpenStack Network Doubts
• Right SDN can bring out following in OpenStack Network :
– Simple
– Easy to deploy
– Automated
– Secure
– Out of box operable with OpenStack Distros
7
Virtual Networks in OpenStack
PHYSICAL
INFRASTRUCTURE
VIRTUAL
INFRASTRUCTURE
Compute StorageNetwork
Virtual Compute Virtual Storage
CRM VDI ERP IaaSSaaS PaaS
Virtual Networks
Self Service Portal/Catalog
Cloud Management Platform
8
PH
YS
ICA
L
INF
RA
ST
RU
CT
UR
E
VIE
W
VIR
TU
AL
INF
RA
ST
RU
CT
UR
E
VIE
W
TENANT
NETWORKS
Physical Network Infrastructure
• QoS, Bandwidth & Latency
• Multicast
• Capacity
• Connectivity
Virtual Network Infrastructure
• On-Demand & Multi Tenant
• Automated & Self Service
• Virtual Domains
• Rich set of Network Functions
• Secure
Overlay Network
From Physical to Virtual Networks
9
PLUMgrid Open Networking Suite Components
• No single point of failure
• Highly resilient & self-healing
• Terabits of distributed scale out performance
Internet
IO Visor Edges
PLUMgrid
Directors
PLUMgrid
IO Visor Gateways
Virtual Domain A Virtual Domain B
10
Understanding Virtual Domains
• Isolate workloads
• Self-service provision of all
network functions
• Decouple changes from
physical infrastructure
• Fully distributed within IO
Visor layer
10
Bridge
Router
LB
Security Policies
Bridge
Security Policies
Bridge
DHCP
FW
11
From OpenStack Networks to PLUMgrid Virtual Domains
• OpenStack Networks • PLUMgrid Virtual Domains
12
PLUMgrid Open Networking Suite
VIRTUAL DOMAIN
Tenant A
PLUMgrid VIRTUAL
NETWORK
LIBRARY
Bridge
Router
LB
Security
Policies
Bridge
Security
Policies
Bridge
DHCP
FW
VIRTUAL DOMAIN
Tenant B
Scalable Architecture Non-Stop Forwarding Service Insertion
13
Test Driving OpenStack Networking
• Virtual environment
– Save time and effort to install and configure
• Learn at any time and place
– Spin up the environment on demand
• Focused learning
– Internal teams can use for OpenStack Network training
• Focus on the use case
– Tailored to the workload in hours
14
Hands-on Lab: Create OpenStack Network
Set up a network topologyfor 3 tier app cloud withweb, devtest, database
Configure a multi-tenant zone with edges, controllers
Create a multi-tenant network
15
Hands-on Lab: Configure Policies & Security
Modify security group and ingress/egress forwarding
policies
Monitor and troubleshoot Add bridging, routing, DHCP,
NAT services
Unpublished Work of SUSE. All Rights Reserved.
This work is an unpublished work and contains confidential, proprietary, and trade secret information of SUSE.
Access to this work is restricted to SUSE employees who have a need to know to perform tasks within the scope of
their assignments. No part of this work may be practiced, performed, copied, distributed, revised, modified, translated,
abridged, condensed, expanded, collected, or adapted without the prior written consent of SUSE.
Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability.
General Disclaimer
This document is not to be construed as a promise by any participating company to develop, deliver, or market a
product. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making
purchasing decisions. SUSE makes no representations or warranties with respect to the contents of this document,
and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose.
The development, release, and timing of features or functionality described for SUSE products remains at the sole
discretion of SUSE. Further, SUSE reserves the right to revise this document and to make changes to its content, at
any time, without obligation to notify any person or entity of such revisions or changes. All SUSE marks referenced in
this presentation are trademarks or registered trademarks of Novell, Inc. in the United States and other countries. All
third-party trademarks are the property of their respective owners.