OpenStack Networking

2

Understanding of OpenStack Components

3

Why OpenStack Networking has doubters

• Complex to understand

• Not easy to deploy

• Not fully understood OS distro dependencies

• Security not fully understood

• Unclear advanced services configuration

4

Road to Cloud Networking

#1DEPLOYMENT

ROADBLOCK

75 Open

Tickets

4Months

Delay

#1DEPLOYMENT

ENABLER

0 Open

Tickets

0 Weeks

Delay

5

Future of OpenStack Networking

5

Firewall

Router

Switch

Switch Switch

Router

Old Way OpenStack Way

On-Demand Virtual Network Functions

6

Removing OpenStack Network Doubts

• Right SDN can bring out following in OpenStack Network :

– Simple

– Easy to deploy

– Automated

– Secure

– Out of box operable with OpenStack Distros

7

Virtual Networks in OpenStack

PHYSICAL

INFRASTRUCTURE

VIRTUAL

INFRASTRUCTURE

Compute StorageNetwork

Virtual Compute Virtual Storage

CRM VDI ERP IaaSSaaS PaaS

Virtual Networks

Self Service Portal/Catalog

Cloud Management Platform

8

PH

YS

ICA

L

INF

RA

ST

RU

CT

UR

E

VIE

W

VIR

TU

AL

INF

RA

ST

RU

CT

UR

E

VIE

W

TENANT

NETWORKS

Physical Network Infrastructure

• QoS, Bandwidth & Latency

• Multicast

• Capacity

• Connectivity

Virtual Network Infrastructure

• On-Demand & Multi Tenant

• Automated & Self Service

• Virtual Domains

• Rich set of Network Functions

• Secure

Overlay Network

From Physical to Virtual Networks

9

PLUMgrid Open Networking Suite Components

• No single point of failure

• Highly resilient & self-healing

• Terabits of distributed scale out performance

Internet

IO Visor Edges

PLUMgrid

Directors

PLUMgrid

IO Visor Gateways

Virtual Domain A Virtual Domain B

10

Understanding Virtual Domains

• Isolate workloads

• Self-service provision of all

network functions

• Decouple changes from

physical infrastructure

• Fully distributed within IO

Visor layer

10

Bridge

Router

LB

Security Policies

Bridge

Security Policies

Bridge

DHCP

FW

11

From OpenStack Networks to PLUMgrid Virtual Domains

• OpenStack Networks • PLUMgrid Virtual Domains

12

PLUMgrid Open Networking Suite

VIRTUAL DOMAIN

Tenant A

PLUMgrid VIRTUAL

NETWORK

LIBRARY

Bridge

Router

LB

Security

Policies

Bridge

Security

Policies

Bridge

DHCP

FW

VIRTUAL DOMAIN

Tenant B

Scalable Architecture Non-Stop Forwarding Service Insertion

13

Test Driving OpenStack Networking

• Virtual environment

– Save time and effort to install and configure

• Learn at any time and place

– Spin up the environment on demand

• Focused learning

– Internal teams can use for OpenStack Network training

• Focus on the use case

– Tailored to the workload in hours

14

Hands-on Lab: Create OpenStack Network

Set up a network topologyfor 3 tier app cloud withweb, devtest, database

Configure a multi-tenant zone with edges, controllers

Create a multi-tenant network

15

Hands-on Lab: Configure Policies & Security

Modify security group and ingress/egress forwarding

policies

Monitor and troubleshoot Add bridging, routing, DHCP,

NAT services

Unpublished Work of SUSE. All Rights Reserved.

This work is an unpublished work and contains confidential, proprietary, and trade secret information of SUSE.

Access to this work is restricted to SUSE employees who have a need to know to perform tasks within the scope of

their assignments. No part of this work may be practiced, performed, copied, distributed, revised, modified, translated,

abridged, condensed, expanded, collected, or adapted without the prior written consent of SUSE.

Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability.

General Disclaimer

This document is not to be construed as a promise by any participating company to develop, deliver, or market a

product. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making

purchasing decisions. SUSE makes no representations or warranties with respect to the contents of this document,

and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose.

The development, release, and timing of features or functionality described for SUSE products remains at the sole

discretion of SUSE. Further, SUSE reserves the right to revise this document and to make changes to its content, at

any time, without obligation to notify any person or entity of such revisions or changes. All SUSE marks referenced in

this presentation are trademarks or registered trademarks of Novell, Inc. in the United States and other countries. All

third-party trademarks are the property of their respective owners.