OpenStack 2012 Fall Summit Observation - Quantum/SDN

Danny LiuDec 5, 2012

1

Agenda

• Keynote• Quantum• Quantum Plugins• OpenStack Quantum Use cases• SDN and what we do for it

2

Keynote speech -- Troy Toman, Rackspace– Rackspace contribution percentages have been steadily declining, from

54% of commits in Essex to 30% in Folsom– Continuous delivery by running trunk in production– Deploying every few weeks in less than an hour– Private cloud (Alamo) which runs on OpenStack: 120 million API hits,

99.97% availability

3

OpenStack Folsom

• What is the big feeling in Folsom Summit– OpenStack is in production

• Two of the most noteworthy new features in the OpenStack Folsom release are Quantum and Cinder

• Quantum– The interest around network virtualization and the Quantum project

was overwhelming and very gratifying– Not just about L2 virtual network, also about network services ( load

balancing, firewall…) and SDN

4

Quantum Design Session

• Learn about what the design session processes

• The main subject in this design session– IPv6, DHCP, VPN access– Modeling the insertion of

services– LBaaS, firewall– Metering– Quantum L3 and adv APIs

improvements

5

What is Quantum

• To provide "network connectivity as a service" between interface devices (e.g., vNICs) managed by other Openstack services ( L2 )– Quote: Provides a “building block” for sophisticated cloud network

topologies. @Dan Wendlandt

• The functionality of Quantum– Tenant-facing APIs– Rich network topologies– Allow to plugin different virtualization technologies

6

Quantum Evolution

• Essex (L2 Support)– network segments– ports

• Folsom (L2 + L3 Support, to replace Nova Network )– IP subnets– DHCP– Routing

• Grizzly (more L3, L4-L7)– Firewalling, Load balancers, and more

7

Quantum Architecture

8

A generic tenant API to create and configure “virtual

networks”

A “plugin” architecture with different back-end

“engines”

An eco-system of tools that leverage the Quantum API.

Tenant Tools(GUI, CLI, API code)

Compute API

Network API

Storage API

Generic OpenStack APIs

Operator Selected Backends

KVM

OVS plugin

Ceph

Quantum Architecture

9

Tenant Scripts

Horizon GUI

Orchestration Code

API Clients Quantum Service

PluginX

Quantum API

Create-net..

Create-port

API Extension

s

Nova Compute

virtual switch Physical Network

Backend X

Basic API Abstractions

• “virtual networks” and “virtual subnets” are fundamentally multi-tenant, just like virtual servers (e.g., overlapping IPs can be used on different networks).

10

Net110.0.0.0/24

VM110.0.0.2Nov

a

Quantum

L2 virtual network

VM210.0.0.3

virtual port

virtual server

virtual interface (VIF)

virtual subnet

Dynamic Network Creation + Association

• Tenant can use API to create many networks.• Can even plug-in “instances” that provide more advanced

network functionality (e.g., routing + NAT)

11

TenantA-VM110.0.0.2

TenantA-VM39.0.0.2

TenantA-VM210.0.0.3 9.0.0.3

Router

External Net88.0.0.0/18

Tenant-A Net110.0.0.0/24

Tenant-A Net29.0.0.0/24

Quantum API Extensions

• Enables innovation in virtual networking.• Add properties on top of existing network/port abstractions:

– QoS/SLA guarantees / limits– Security Filter Policies– port statistics / netflow

• New Services– L3 forwarding, ACLs + NAT (“elastic” or “floating” IPs)– VPN connectivity between cloud and customer site, or another cloud

datacenter.

12

Available Quantum Plugins– Open vSwitch

• L2 isolation with VLAN or GRE Tunneling– Cisco UCS/Nexus

• L2 isolation with VLAN and UCS products– Linux Bridge

• Pure Linux solution with Linux bridge, L2 isolation with VLAN – NTT-Data Ryu

• L2 isolation with OpenFlow– Nicira NVP

• Proprietary solution ( also with OpenFlow )– NEC OpenFlow

• L2 isolation with OpenFlow– Big Switch

• L2 isolation with OpenFlow– MidoNet

• Proprietary solution with OVS for L2 to L4– Juniper

13

Many of them are related with OpenFlow/SDN

Quantum Project Update

• Folsom release:– v2 API, with L2 + IP address mgmt (IPAM)– Tenant API with Keystone + Horizon Integration– Updated CLI– Extensions:

• L3 “routers” and floating IPs• “provider networks” mapped to specific VLANs• Tenant quotas• Notifications

14

Use Case in Quantum/Nova Network

• Rackspace– Quantum NVP Plugin

• Intel– Nova Network Now – move to Quantum with Grizzly

• DreamHost– Nicira NVP Plugin– Switch OEM by Delta Networks

• Cisco Webex – Quantum UCS Plugin

• eBay– Nicira NVP Plugin

• Sina– Nova Network Now – move to Quantum with Grizzly

15

What is SDN• SDN separates the control plane from the data plane in

network switches and routers.• Most well known in the SDN world is OpenFlow

– an open protocol designed to expose the internals of a router or switch and provide functionality to modify it. ( OpenFlow != SDN )

16

What do we do in Quantum/SDN• We use OpenStack + Quantum with

Plugin ( OVS ) in overlay model:– Provide L2 isolation + Virtual Networks + L3

routing

• We focus on OpenFlow in hop by hop model:– Leverage Open Source Project Trema,

ZeroMQ…– Provide flow management and traffic

engineering– In Hop by Hop model– Provide Northbound API

17

Our SDN Framework Concept

18

Trema Framework

Northbound API

Http / Restful

TopologyDiscovery

Monitoring

Flow Manager

Routing Switch

ECMP / Re-routing

Traffic Engineering

ZeroMQ

SDN Applications / Orchestration

OpenFlow Protocol

Trema Apps

We are implementing

zmq

My point of view and conclusion

• Networking can blend into the computing world with software abstractions ( APIs )

• Quantum opens a door for networking vendors to plugin their SDN solution

• Expect to see Grizzly version of OpenStack/Quantum

19

Reference Sources• OpenStack Folsom Summit

– http://www.openstack.org/summit/san-diego-2012/

• Quantum Project Update– http://www.slideshare.net/danwent/quantum-grizzly-summit

• SDN is bussniess, OpenFlow is technology– http://www.networkcomputing.com/next-gen-network-tech-center/sdn

-is-business-openflow-is-technology/240142193?pgno=1

• Mirantis : OpenStack Super bootcamp material– http://www.slideshare.net/openstack/openstack-super-bootcamppdf

• Quantum Plugin Comparison– http://www.sebastien-han.fr/blog/2012/09/28/quantum-plugin-compa

rison/

20

Q&A

Thank you

liu.danny@inventec.com

The comparison of Nova-network and Quantum• http://www.sebastien-han.fr/blog/2012/09/25/from-nova-network-to-quantum/

22