Accelerating SDN Applications with Open Source Network Overlays
23
v Enabling Open Network Automation with Open Contrail & Cumulus® Linux® Dec 10 th 2014
-
Upload
cumulus-networks -
Category
Documents
-
view
772 -
download
1
Transcript of Accelerating SDN Applications with Open Source Network Overlays
v
Enabling Open Network Automation
with
Open Contrail & Cumulus® Linux®
Dec 10th 2014
Introduction
2
Jennifer Lin Product Management
OpenContrail (Juniper Networks)
Meena Sankaran Ecosystem & Solutions
Cumulus Networks Twitter : @meena_sankaran
December 10, 2014
SDN Evolution to Cloud
December 10, 2014 3
Hybrid Cloud Infrastructure
VLAN - A
VLAN - B
VLAN - C
VLAN - D
Front-End Web
Back-End DB
Security
LB
FIREWALL
LB LB
FIREWALL
§ VLAN; VXLAN – flooding; VXLAN – L2/L3 § Limited control plane § Static, North-South Traffic; Dedicated resources § Manual Configuration
L2, VLAN/server-centric
Internet, IP-VPN, MPLS-VPN
§ L3 fabric, gateways; BGP control plane § Interoperate with Public Clouds / IPVPNs § Intelligent Policy Automation; System Abstraction § XaaS, Open API’s
L3 GW
VM
Front-end Tier
VM VM
Back-end Tier
VM
VM VM VM …
VM VM VM
DC Management
Cloud Orchestration &
Automation
Introducing OpenContrail (Opencontrail.org)
4
API driven § OpenStack Neutron v2 API, Amazon
EC2 VPC API, etc. § Open APIs to apps/ orchestration
systems for config, monitoring, etc
Built as a scalable, resilient, and carrier-grade network/services platform for Cloud infrastructure
An open-source cloud network automation initiative (Apache v2) Built using standards-based protocols and policy-based services
Provides all components for network virtualization à Overlay networks to
§ virtual machines § Linux containers and § network namespaces.
OPENCONTRAIL IS …
December 10, 2014
Why OpenContrail ?
PROGRAMMABILITY
ACCELERATED TTM
LOWER TCO
NETWORK INSIGHTS
OPENNESS & INTEROPERABILITY
§ Agile deployment of network services for faster time to revenue § Multi-vendor approach eliminates need for custom development
§ Higher utilization of existing infrastructure § Centralized management reducing operational cost & complexity § Use of open standard protocols obviating need for re-training
§ Network complexity abstracted out using rich and programmatic interfaces and enabling policy-based automation
§ Collects & analyzes huge amounts of network state information § Offers APIs for 3rd party analytics & visualization software to
integrate with the system
§ Open-source and integrates with other open-source software § Minimizes the need for incremental network/services gateways § Interoperable with other multi-vendor infrastructure and services
5 December 10, 2014
6
Why OpenContrail ?
Distributed Routing, Switching (vRouter)
IPAM, DNS/DHCP
Load Balancing Automated Policy Enforcement
L3/L2 GW Services Network Analytics Service Chaining Scale-out, HA
December 10, 2014
OpenContrail Open Community
OpenContrail Advisory Board (OCAB) § Industry veterans and key project contributors and adopters
Code Review / Merge Process
OpenContrail Developer Community § Juniper, customers, partners § Propose features & Contribute Code
(features & bug-fixes) § Participate in Code review process Features & Bug-fixes Launchpad
End-customers
Filing bugs
Tracking bugs & other info
Single Github Source Code Repository
7 December 10, 2014
Use Cases : Open Contrail
8
SERVICE PROVIDER
ENTERPRISE
EMERGING
Rat
e of
Clo
ud S
ervi
ces
Ado
ptio
n
Incumbent Infrastructure
Public Cloud Repatriation
Platform, Software-as-a-Service
Virtual Private Cloud
IT-as-a-Service
Infrastructure-as-a-Service
Network Functions Virtualization
Network Platform-as-a-Service
USE CASES
Hybrid Cloud Migration
December 10, 2014
How do Hardware L2 Gateways work ?
Bare Metal Servers
VMs on any Hypervisor
TOR (L2 GW)
VM1
VM2
L3 GW
…
VLAN Red
PHYSICAL
VM1
VM2
WAN / Internet
L3 GW
LOGICAL
Overlay VXLAN Tunnels
§ VLAN based architecture interconnecting with an overlay Cloud architecture via an L2 gateway
VLAN Blue
Red
VM4
VM4
VM5
Blue
VM3
From VM in overlay to non-overlay VMs or BMS, traffic needs to go through the L3 GW
Intra-VN traffic from VM to BMS goes through the L2 Gateway
Virtual Network
Virtual Network
VM5
VM3
L2 GW
9 December 10, 2014
Cumulus Linux VXLAN Support – Integration with Open Contrail
Bare Metal Servers Physical + Virtual Workloads
Control & Config = OVSDB Control & Config = OVSDB
VLA
N R
ed
VX
LAN
Tun
nels
VLA
N G
reen
…
Contrail Controller L3 Gateway
§ Contrail Controller talks OVSDB to TOR § Allows bare metal as well as virtualized
workloads in same virtual network
10 December 10, 2014
Customer Architectures
11
LB
WAN OPT
FIREWALL
Physical Svc Appliances Virtualized Svc VMs
Legacy Servers & Storage (VLAN-based) Public Clouds
AWS
Azure
SE
RV
ICE
O
VE
RLA
Y
UN
DE
RLA
Y
GCE
Legacy Interconnect
Hybrid Cloud
Data Center 2
Multi-DC Distributed
Cloud Phy + Virt
Interconnect Phy. + Virtual Svc Insertion
MG
MT
VMs, Containers
Data Center 1
Gateway router
Gateway router
Bare-metal Servers & Storage
December 10, 2014
Customer Architectures
December 10, 2014
Customer Needs OpenContrail enables a private cloud infrastructure for Big Data application development and deployment for an Enterprise / SaaS customer § Secure, multi-tenant private cloud environment
§ On-demand creation and dynamic scale-out of custom services § Rapid, seamless deployment of new services to internal users § Hadoop support: massive storage, on-demand data ingest, real-
time stream processing, DB-as-a-Service (NoSQL / SQL) § ‘As-a-service’ model for network functions (LB-aaS, DNS-aaS)
Contrail Cloud (OpenStack)
Big Data Racks Infra Racks Openstack Racks
L3 GW
FW Dynamically scaled application edge
Scale-out Big Data Apps
LB
2
1
3
Solution Highlights
1 Contrail overlay on a pure L3 underlay running a CLOS architecture & running virtualized and bare metal servers
2 L3 gateway router to Interconnect public internet & L3VPN capability; and physical service appliances (LB, FW)
3 Centralized security policy definition, distributed enforcement § API-based policy definition § Security policy at virtual network level and VM level
12 December 10, 2014
Networking is Open in the New Data Center Blueprint
13
Now: Networking Transforms
First: Compute
Transformed
Applications, OS and Hardware
LOCKED OPEN
Disaggregation Enables Platform Choice and Affordable Capacity 13 December 10, 2014
Bare Metal Switch Provisioning
§ Network OS installation framework § Supported hardware from HCL (preloaded with ONIE) § Network OS installation image
bare metal server
Server OS
app app app
BIOS and PXE
bare metal switch
Network OS
app app app
Boot Loader and ONIE
Similar to installing a server OS using PXE
Network OS Boot Loader and ONIE
boot into
Boot Loader and ONIE
boot into
ONIE looks for and installs network OS image
14 December 10, 2014
Benefits of Cumulus Networks for the Enterprise
Decoupled hardware and software empowers IT to deliver business agility Pricing transparency optimizes sales cycle and accelerates adoption
Rich ecosystem of mature hardware partners
Community innovation with diverse portfolio of software partners
Technology Ecosystem
A True DevOps model aligned with the rest of IT
No vendor lock-in and longer depreciation of assets
Widespread Customer Adoption: Over 1,000,000 Switch Ports in Production
Business Agility Operational Efficiency
15 December 10, 2014
Broad Set of Hardware Platforms
CL 1.5 CL 2.2
# Pl
atfo
rms
Timeline CL 2.0
Hardware Agnostic OS
x86 CPU architectures • 16 Platforms • 5 Hardware Vendors • 6 Switch Silicon • 2 CPU architectures
40G Fixed Platforms Trident II switches • 13 Platforms • 5 Hardware Vendors • 6 Switch Silicon
1G Fixed Platforms 10G Fixed Platforms • 6 Platforms • 4 Hardware Vendors • 4 Switch Silicon
CL 2.5
10G Trident II Platforms 19 Platforms • 5 Hardware Vendors • 6 Switch Silicon • 2 CPU architectures
Broad portfolio of next gen leaf/spine switches • VXLAN-capable • x86 architectures
16 December 10, 2014
Loosely Coupled Architecture vs. Proprietary Stack
§ Standard Linux Interface (No need for a defined REST API – Solution Ecosystem can grow rapidly) § Choice for customers at every tier of the stack – Switching Hardware ,Network Virtualization Overlays,
Orchestration Tools, Automation Tools, Monitoring etc…. § Accelerated Innovation – No Single Vendor dependency, so faster feature deployment § Proven Expertise with standard protocols , Open Source communities and Linux adoption
17 December 10, 2014
Cumulus Linux Integration
18
18 December 10, 2014
Why Open Contrail & Cumulus Networks ?
Embrace Open, interoperable environments and ecosystems
‘No vendor-lock in’ and multi-vendor approach
Complementary offering - loosely coupled components
Enable automation and agility through programmatic API’s
Open source momentum (Cloud Providers, Enterprise)
19 December 10, 2014
Myths about Overlay Networks
20
Compromises in performance/scaling/interoperability
Tied to physical hardware, difficult for DevOps to troubleshoot
Only applicable to virtualized/hypervisor environments
December 10, 2014
Contrail - Physical-Virtual Correlation via Open API’s
21
Service VM
Virtual Network BE
Virtual Network FE
…
B1 G1 G2 B2
B1 B2 G1 G2
L1 L2 L3 L4 L5 L6
Data from multiple sources correlated to offer Topology discovery, monitoring, and troubleshooting
LOG
ICA
L P
HY
SIC
AL
December 10, 2014
Next Steps
Upcoming …
§ Solution Overview /Technical White Papers
§ Demo Videos /Blogs
§ Customer Case Studies
§ Field Resources (Solution Portal)
Check out existing solutions : http://cumulusnetworks.com/solutions/network-virtualization-overlays/
Try out Cumulus Linux for no investment and risk free on Cumulus Workbench:http://cumulusnetworks.com/cumulus-workbench/
22 December 10, 2014
© 2014 Cumulus Networks. Cumulus Networks, the Cumulus Networks Logo, and Cumulus Linux are trademarks or registered trademarks of Cumulus Networks, Inc. or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. The registered trademark Linux® is used pursuant to a sublicense from LMI, the exclusive licensee of Linus Torvalds, owner of the mark on a world-wide basis.
§ Thank You!
23 December 10, 2014
