Quantum Hyper- V plugin



Similar documents
Software Defined Network (SDN)

Windows Server 2012 Hyper-V Virtual Switch Extension Software UNIVERGE PF1000 Overview. IT Network Global Solutions Division UNIVERGE Support Center

How To Make A Vpc More Secure With A Cloud Network Overlay (Network) On A Vlan) On An Openstack Vlan On A Server On A Network On A 2D (Vlan) (Vpn) On Your Vlan

Server Virtualization

OpenStack/Quantum SDNbased network virtulization with Ryu

IPOP-TinCan: User-defined IP-over-P2P Virtual Private Networks

Feature Comparison. Windows Server 2008 R2 Hyper-V and Windows Server 2012 Hyper-V

CERN Cloud Infrastructure. Cloud Networking

Open Source Networking for Cloud Data Centers

Outline. Why Neutron? What is Neutron? API Abstractions Plugin Architecture

Cloud Networking Disruption with Software Defined Network Virtualization. Ali Khayam

Programmable Networking with Open vswitch

SDN CONTROLLER. Emil Gągała. PLNOG, , Kraków

Microsoft System Center

Windows Server 2008 R2 Hyper-V Server and Windows Server 8 Beta Hyper-V

Accelerating Network Virtualization Overlays with QLogic Intelligent Ethernet Adapters

Hybrid Cloud with NVGRE (Cloud OS)

Roman Hochuli - nexellent ag / Mathias Seiler - MiroNet AG

Control Tower for Virtualized Data Center Network

Research trends in abstraction of networks and orchestration of network services

Hyper-V Networking. Aidan Finn

SOFTWARE-DEFINED NETWORKING AND OPENFLOW

Windows Server 2008 R2 Hyper-V Live Migration

Extending Networking to Fit the Cloud

SDN v praxi overlay sítí pro OpenStack Daniel Prchal daniel.prchal@hpe.com

Hyper-V Network Virtualization Gateways - Fundamental Building Blocks of the Private Cloud

Cloud Optimize Your IT

DCB for Network Virtualization Overlays. Rakesh Sharma, IBM Austin IEEE 802 Plenary, Nov 2013, Dallas, TX

Overlay networking with OpenStack Neutron in Public Cloud environment. Trex Workshop 2015

Implementing and Managing Windows Server 2008 Hyper-V

NEC contribution to OpenDaylight: Virtual Tenant Network (VTN)

Palo Alto Networks. Security Models in the Software Defined Data Center

Lecture 02b Cloud Computing II

Windows Server 2012 Hyper-V Extensible Switch and Cisco Nexus 1000V Series Switches

CON8473 Oracle Distribution of OpenStack Making OpenStack an Enterprise Grade Solution

Data Center Virtualization and Cloud QA Expertise

Network performance in virtual infrastructures

A Case for Overlays in DCN Virtualization Katherine Barabash, Rami Cohen, David Hadas, Vinit Jain, Renato Recio and Benny Rochwerger IBM

Network Virtualization

What is SDN? And Why Should I Care? Jim Metzler Vice President Ashton Metzler & Associates

ConnectX -3 Pro: Solving the NVGRE Performance Challenge

PES. High Availability Load Balancing in the Agile Infrastructure. Platform & Engineering Services. HEPiX Bologna, April 2013

In addition to their professional experience, students who attend this training should have technical knowledge in the following areas.

Linux KVM Virtual Traffic Monitoring

Network Virtualization and Software-defined Networking. Chris Wright and Thomas Graf Red Hat June 14, 2013

NETFORT LANGUARDIAN INSTALLING LANGUARDIAN ON MICROSOFT HYPER V

Virtualization, SDN and NFV

Cisco Nexus 1000V Switch for Microsoft Hyper-V

OVERLAYING VIRTUALIZED LAYER 2 NETWORKS OVER LAYER 3 NETWORKS

Telecom - The technology behind

NVGRE Overlay Networks: Enabling Network Scalability for a Cloud Infrastructure

Installing Intercloud Fabric Firewall

Course Syllabus. Implementing and Managing Windows Server 2008 Hyper-V. Key Data. Audience. At Course Completion. Prerequisites

Windows Server 2012 R2 Hyper-V: Designing for the Real World

Network Virtualization for Large-Scale Data Centers

CON Software-Defined Networking in a Hybrid, Open Data Center

CompTIA Exam N CompTIA Network+ certification Version: 5.1 [ Total Questions: 1146 ]

Where IT perceptions are reality. Test Report. OCe14000 Performance. Featuring Emulex OCe14102 Network Adapters Emulex XE100 Offload Engine

Global Headquarters: 5 Speen Street Framingham, MA USA P F

OpenStack & Hyper-V. Alessandro Pilo- CEO Cloudbase

Deploying the Barracuda Load Balancer with Office Communications Server 2007 R2. Office Communications Server Overview.

SOFTWARE-DEFINED NETWORKING AND OPENFLOW

Windows Server 2012 Hyper-V: Deploying Hyper-V Enterprise Server Virtualization Platform Zahir Hussain Shah

Windows Server 2008 R2 Hyper-V Live Migration

IOS110. Virtualization 5/27/2014 1

SDN and Data Center Networks

Openstack. Cloud computing with Openstack. Saverio Proto

High Performance OpenStack Cloud. Eli Karpilovski Cloud Advisory Council Chairman

Cisco and Canonical: Cisco Network Virtualization Solution for Ubuntu OpenStack

5nine Cloud Security Azure Pack Extension. Version 5.2

New Security Perspective for Virtualized Platforms

State of the Art Cloud Infrastructure

5nine Cloud Security for Hyper-V. Version 6.0

Achieving a High-Performance Virtual Network Infrastructure with PLUMgrid IO Visor & Mellanox ConnectX -3 Pro

CloudEngine 1800V Virtual Switch

Simplify IT. With Cisco Application Centric Infrastructure. Barry Huang Nov 13, 2014

Multi Provider Cloud. Srinivasa Acharya, Engineering Manager, Hewlett-Packard

Storage Protocol Comparison White Paper TECHNICAL MARKETING DOCUMENTATION

Aerohive Networks Inc. Free Bonjour Gateway FAQ

Microsoft Lync Server Overview

Nuage Networks Virtualised Services Platform. Packet Pushers White Paper

Ethernet-based Software Defined Network (SDN) Cloud Computing Research Center for Mobile Applications (CCMA), ITRI 雲 端 運 算 行 動 應 用 研 究 中 心

Cloud on TIEN Part I: OpenStack Cloud Deployment. Vasinee Siripoonya Electronic Government Agency of Thailand Kasidit Chanchio Thammasat

The safer, easier way to help you pass any IT exams. Exam : Installing and Configuring Windows Server 2012 R2.

Analysis of Network Segmentation Techniques in Cloud Data Centers

Definition of a White Box. Benefits of White Boxes

IxChariot Virtualization Performance Test Plan

VLANs. Application Note

Server-Virtualisierung mit Windows Server Hyper-V und System Center MOC 20409

Virtualization. Nelson L. S. da Fonseca IEEE ComSoc Summer Scool Trento, July 9 th, 2015

ZEN LOAD BALANCER EE v3.04 DATASHEET The Load Balancing made easy

Chapter 2 Addendum (More on Virtualization)

Windows Server 2012 R2 Networking

Apache CloudStack 4.x (incubating) Network Setup: excerpt from Installation Guide. Revised February 28, :32 pm Pacific

Cisco Prime Network Services Controller. Sonali Kalje Sr. Product Manager Cloud and Virtualization, Cisco Systems

VIA CONNECT PRO Deployment Guide

EXAM Installing and Configuring Windows Server Buy Full Product.

Transcription:

Quantum Hyper- V plugin Project blueprint Author: Alessandro Pilotti <apilotti@cloudbase.it> Version: 1.0 Date: 01/10/2012 Hyper-V reintroduction in OpenStack with the Folsom release was primarily focused on Nova compute support, limiting, due to time constraints, the networking features required in a modern cloud infrastructure to basic options not suitable for multi tenant and advanced scenarios. The main goal of this project is to bring support for modern network configurations to deployments of any size, in particular multi tenant scenarios by creating a Quantum plugin that implements Hyper-V networking features. The plugin will be implemented entirely in Python and released as open source (Apache 2.0) as part of the OpenStack Quantum project. Interaction between Quantum and the underlying OS will be based on WMI, Powershell and if necessary Win32 API calls in a consistent way with the work done in the Nova and Cinder projects. Microsoft System Center VMM is not required. Most of the implementation is straightforward and doesn t require particular discussion at this stage, with the notable exception of network isolation and security group implementations, as detailed in the following paragraphs.

Network isolation Hyper-V supports the following options for network isolation. Feature Description Min. Hyper-V version Network virtualization IP address rewrite This feature provides layer 3 encapsulation of the layer 2 data via NVGRE tunneling. The NVGRE IETF protocol is currently in draft status. Each virtual machine customer address (CA) is mapped to a Tenant identification in third party equipment 2012 Yes, via NVGRE protocol id 2012 No unique provider address (PA) VLAN Traditional layer 2 virtual LANs 2008 Yes, via VLAN id Each option has various pros and cons, depending on the deployment scenario. All three options should be implemented, letting the user choose which one suits better a given configuration for maximum flexibility.

Network virtualization Also called Windows Network Virtualization (WNV), can be configured with the following Powershell cmdlets and underlying WMI calls: Enable-NetAdapterBinding Set-VMNetworkAdapter VirtualSubnetId <id> New-NetVirtualizationProviderAddres New-NetVirtualizationCustomerRoute New-NetVirtualizationLookupRecord The number of IP and MAC addresses that need to be learned by third party devices decreases dramatically compared to other options due to the encapsulation. No specific configuration needed by third party devices, except for the NVGRE support. All the traffic in a given subnet is encapsulated in a single tunnel, which could bring performance issues in case of heavy traffic. In general limits related to any tunneling solution apply, e.g. loss of MTU optimizations / packet fragmentation. Tenant identification for QoS / traffic shaping purposes in third party equipment in the network topology (e.g. switches) requires hardware supporting NVGRE. QoS / traffic shaping based on CA addresses is harder due to the encapsulation and requires proper support. Optimal performances require NICs supporting GRE offloading on Hyper-V Almost non existing interoperability options at the moment in case of subnets spawning different hypervisors (e.g. Hyper-V, Xen, KVM)

IP address rewrite No need for an encapsulation protocol, each packet is simply rewritten with a different address (PA). QoS / traffic shaping can be performed, although there s no data in the IP address that can help in tying a packet to a tenant / VM beside the source address. A potentially large number of IP and MAC addresses need to be learned by third party hardware (e.g. switches). VLAN VLANs are the traditional option in network isolation configuration, a tested, widely supported and well known solution. Excellent interoperability There s a maximum of 4096 possible values, which is a very tight limitation in large clouds. When a VLAN is added / modified, configurations need to be applied to a potentially large number of switches in the infrastructure, an error prone and complicated task, especially in case of heterogeneous hardware. A potentially large number of IP and MAC addresses need to be learned by third party hardware (e.g. switches).

Access control Quantum defines the concept of Security groups to specify an access control list (ACL) based configuration for networking resources, mainly IP addresses and TCP / UDP ports. From a feature perspective, it can be mainly considered as an extension of traditional firewalling and filtering solutions (e.g. iptables), brought outside of the VM and independent from the guest OS. Hyper-V 2012 introduces a partial support for port ACLs, supporting only IP addresses and not TCP / UDP ports (Add-VMNetworkAdapterAcl, etc). Support for complete Quantum security groups on Hyper-V can be obtained by implementing an extensible switch driver based on the Windows Filter Platform (WFP) APIs. Supported OS Windows Server 2012 Hyper-V Server 2012

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information