PSOCLD-1006 Cisco Cloud Architectures on OpenStack - Cisco Live! US 2015 San Diego

Cisco Cloud Architectures on OpenStack

Duane DeCapite, Director, Product Management

PSOCLD-1006

Rohit Agarwalla, Technical Leader

3© 2015 Cisco and/or its affiliates. All rights reserved. Cisco PublicPSOCLD-1006

• Introduction to OpenStack

• Cisco Cloud Architectures

• OpenStack on Cisco Infrastructure

• Cisco OpenStack Community Involvement

• OpenStack on Cisco Product Offerings

• Summary/Q&A

Agenda


Introduction to OpenStack

© 2015 Cisco and/or its affiliates. All rights reserved. Cisco PublicPSOCLD-1006 5

OpenStack Overview

Designed for building Public and Private

clouds

Open Source software developed by community

Multi-tenant and Scalable Cloud

Operating System


Evolving set of open API’s and services for cloud applications

OpenStack Software Architecture

Compute

Service

(Nova)

Storage

Service

(Cinder/

Swift)

Network

Service

(Neutron)

Many more

Services

Applications / Services

Physical and Virtualized Infrastructure

OpenStack Service APIs, SDK, CLI

Infrastructure Plugins


OpenStack Projects

Compute (Nova) Telemetry (Ceilometer) Key Management (Barbican)

Network (Neutron) Orchestration (Heat) DNS (Designate)

Object Storage (Swift) Database (Trove) Shared File System (Manila)

Block Storage (Cinder) Bare Metal (Ironic) Deployment (Triple O)

Dashboard (Horizon) Data Processing (Sahara) Application Catalog (Murano)

Image (Glance) Containers (Magnum) Policy (Congress)

Identity (KeyStone) Messaging (Zaqar) ….


OpenStack IS Ready!

• Innovation not cost, saving is the number one business driver

• Innovative customers choose Cisco, not commodity vendors

#1 Ability to InnovateThis is why you pick Cisco

47%

• Almost 50% of customers polled in November have OpenStack running in production networks

• Private (53%), Public (40%), Hybrid (7%)

46%

Production

• Most common service is web-services

• Not just fringe apps or Dev Ops Apps

• These are business-critical, customer-facing Apps

Web ServicesDatabases

Enterprise Apps

57%

Source: Openstack.org community poll http://superuser.openstack.org/articles/openstack-user-survey-insights-november-2014


Cisco Cloud Architectures


Cisco OpenStack Private Cloud Bundle Architecture Highlights

• Self-contained within Availability Zones (AZ)

• Multi-tenant environment

• OpenStack deployment - Highly Available Controller node services- Optimized Compute node configuration- L2 and L3 Network using Cisco Nexus9000 and

ASR1000- Instance Block Storage- Authentication and Authorization

• Enhanced Dashboard

• Admin Monitoring and Metrics

Availability Zone

Physical Infrastructure: Cisco ASR1000 Routers, Cisco UCS C-Series, and Cisco Nexus

9000 Series

Service Orchestration

Compute Network Storage

Identity and Security

Private Cloud Management and Orchestration


OpenStack Cloud APIs

Physical Infrastructure: Cisco UCS C-Series, Cisco UCS Fabric Interconnects, and Cisco Nexus 9000 Series

Operating Systems: Red Hat Enterprise Linux 7.0

Inkt

an

k C

ep

h(B

lock

Sto

rag

e)Nova

(Computing)

Hypervisor(KVM)

Neu

tron

(Ne

two

rkin

g)

Hea

t(O

rch

est

ratio

n)

Cei

lom

ete

r(T

ele

me

try)

Cin

de

r(V

olu

mes

)

Key

sto

ne

(Id

entit

y)

Red Hat OpenStack Dashboard (Horizon)

Red Hat Components

Cisco Components

Gla

nce

(Im

ag

e)

Cisco UCS Integrated Infrastructure for Red Hat Enterprise Linux OpenStack: Starter Edition• OpenStack services on single controller node

• Network node and Storage cluster

• OpenStack deployment

- Packstack installer

- Network link level redundancy

- Compute cluster can support up to ~500

- m1.small VM’s

- Neutron Provider Network Model

- Ceph services on controller node and back end block storage for Cinder Volumes and Glance VM Images


Cisco Cloud Services Tenant Network Resource View on Cisco Cloud Services

Tenant B Network

Tenant A Network

Tenant A Network

Subnet

Subnet

Subnet

VM

VM

VMFloating IP

Floating IP

Floating IP

Floating IP

Floating IP

Outside World(Internet)

VM

VM

Public DirectSubnetVM

VM

Router

Unrouted NetworkSubnet

VM

VM

DHCP

DHCP

DHCP

DHCP

DHCP

LBaaS

LBaaS

VPNaaS

VPNaaS


Cisco Intercloud Fabric (ICF) support for OpenStack

DC/Private Cloud Provider Clouds

vSphere

Cisco Intercloud Fabric Director

VMware

KVM

Cisco Intercloud Fabric for Providers

(Cisco Cloud Services, Intercloud Partners)

OpenStack

Cisco Intercloud Fabric

Secure Network Extension

• Secure Hybrid Cloud enabled using ICF

• Layer 2 network extension from

VMware private cloud environment to

OpenStack based provide clouds

• Automatic image conversion from

vSphere to KVM and back

• REST API based Intercloud Fabric

Director (ICFD)


OpenStack on Cisco Infrastructure


OpenStack integration with Cisco Nexus

• Neutron Modular Layer 2 Nexus 1000v Driver• Neutron API Resource extensions for Network

and Port• VSM based centralized management using REST

API• Driver capabilities include Layer 2 tenant isolation

using host based overlay configurations (VXLAN)• Multicast and Unicast modes

Virtual

Cisco Nexus virtual switch

• Neutron Modular Layer 2 Nexus Driver• Works with Neutron core Resources – Network,

Port and Subnet• Validated on NXOS based platforms 3k/5k/6k/7k

and 9k standalone mode• Driver capabilities include Layer 2 tenant isolation

using VLAN and multicast network based overlay configurations (VXLAN)

Physical

Cisco Nexus hardware


Nova HostNova HostNova Host

Networking With Neutron Reference Implementation

VM1 Controller Host(s)

Router

NeutronHost(s)

API NetworkExternal Network

Management Network

VM6VM5VM2 VM3 VM4

Internet

vSW vSW vSWvSW

Data Network

Virtual Router

Switch Switch

Switch trunk port with allowed VLANs.

Virtual Switch trunk port.

Tenant Networks


Issues in Neutron Reference L3 and ASR1K Solutions • NAT for External Connectivity:

• Issue - Scale limitation in Linux iptables software NAT.

• Solution - ASR1K can scale up to 4 million dynamic NAT entries and 16K static NAT entries.

• Tenant Routing:

• Issue - Scale limitations in Linux namespaces based software tenant networking.

• Solution - ASR1K uses Virtual Routing and Forwarding (VRF) instances for tenant routers. ASR1K can scale up to 4k VRFs (8k in upcoming release).

• Tenant Networks:

• Issue- Scale limitations in Linux software based interfaces.

• Solution - ASR1K plugin maps tenant networks to sub-interfaces on ASR1K. ASR1K supports up to 64k sub-interfaces.

• Data Throughput:

• Issue - Performance limitations with software packet forwarding and NAT on generic compute hardware.

• Solution - ASR1K can perform packet forwarding and NAT at rates upto 230 Gbps.


ASR1K

NeutronHost(s)

Nova HostNova HostNova Host

OpenStack Networking With ASR1K L3 Services Plugin

VM1Controller Node(s)

RouterAPI NetworkExternal Network

Data Network

Management Network

VM6VM5VM2 VM3 VM4

Internet

Switch trunk port with allowed VLANs.

vSW vSW vSW

Switch Switch

ASR1K L3 Plugin

VRF with default GW and NAT (to global routing).

Virtual Switch trunk port.

Virtual Router

Tenant Networks


ASR1K-2

ASR1K-1

NeutronHost

Nova HostNova Host

Demo Topology – Physical and Virtual Networks

VM-11-A

OVS OVSRouter 1(nrouter-

4d9bc2-pkn)

NexusSwitch

NexusSwitch

Internet

VM-22-A

VM-11-B

VM-33-ARouter 2(nrouter-

4d9bc2-pkn)

Gig0/2/0

Gig0/0/1

• UCS C-Series hosts.

• ASR 1001/1002.

• Nexus 9300 /3500.


OpenStack Compute Scheduler• Constraint based PlaceWise Nova Scheduler for both UCS blade

and rack-mount servers to meet your OpenStack deployment requirements

UCS Manager

SR-IOV VM-FEX• Neutron VM-FEX driver to configure Layer 2 tenant VLAN segment• Operations controlled using Port Profiles on UCSM

• Ironic PXE driver to manage power operations of Cisco UCS servers

• Operations controlled using Service Profiles on UCSM

Cisco Unified Computing System (UCS)


Cisco Application Centric Infrastructure (ACI)

Group Based Policy Model

• Automation• Intent-drive

Physical + Virtual

• Zero-touch performance

• Physical server• Multi-hypervisor

Fabric Tunnels

• Automatic VXLAN

• Distributed L2• Distributed L3

Service Chaining

• Service chaining and redirection

Telemetry

• Health Metrics• Visibility• Troubleshoot


OpenStack Group Based Policy Overview

Group Policy

CLI Horizon Heat

Neutron Driver

Neutron

Any Existing Plugins and ML2 Drivers

Native Driver

Neutron Driver maps GBP to existing Neutron API and offers compatibility with any existing Neutron Plugin

1

1

2

2 Native Drivers exist for OpenDaylight as well as multiple vendors (Cisco, Nuage Networks, and One Convergence)


Community Involvement


Cisco is a Leading OpenStack Contributor

#1Contributor to

Juno in Neutron

Top 6Total Reviews

in Juno

ViceChair

39Completed

Juno Blueprints

90Engineers

Contributed to Kilo

141Resolved

Juno Bugs

Top 5In OpenStack

Member

447Commits

#1Kilo Neutron

Blueprints

Top 4in Neutron

Kilo Commits


Cisco OpenStack on Leading Linux Distros

SUSE Cloud

Ubuntu OpenStack

Planning Design End-to-End Validation Documentation

Uni

t

Fea

ture

Inte

grat

ion

Sys

tem

Cus

tom

er

OpenStack Platform

Deploy with confidence and full Cisco Support!


OpenStack on Cisco Product Offerings


Cisco OpenStack® Private Cloud

Design andArchitect

PlatformInstallation

24X7Monitoring

ProblemMitigation

MaintenanceCoordination

PlatformUpdates

CapacityPlanning

Cisco

OpenStack® Private Cloud

Remote private cloud engineering and operations

Delivered “as a service”

In your data center, on your hardware(that meets minimum specifications)


Network-Centric Ecosystem of Clouds (Marketplace)

Intercloud

EnterprisePrivateClouds

Public Clouds

Partner CloudsCloud Services and ApplicationsIntercloud Fabric

APIs

Portal

APIs

APIs

OpenStack

HCS

MicrosoftSuite aaS

DRaaS

PaaS

IaaS

Meraki

Security

Analytics

vDesktop aaS

WebEx

HANA aaS

IOE aaS

Collaborationand Video

Big Dataand Analytics Native Cloud

Applications

EnterpriseWorkloads

Cisco OpenStack Private Cloud


• Cisco validated hardware and software solution for enterprise customers targeting KVM cloud-native workloads on OpenStack

• Ability to deploy virtual private data center with tenants and VMs on a Cisco Powered™ cloud

Red Hat OSP 5 Cisco UCS C240 M3 (Ceph storage cluster) Cisco UCS C220 M3 (computing , OpenStack) Cisco UCS fabric interconnects and Cisco UCS Manager Cisco Nexus 9000 Series

• Excellent starting point for DevOps deployments• Foundation for advanced and ACI cloud capabilities• Deployment can be facilitated via Cisco Services

Virtual Private Data Center

Cisco UCS Integrated Infrastructure for OpenStackStarter Edition


Summary


Relevant, large contributions to open source code

Software

solution innovation

Drive innovation into Cisco products

Build WORLD-CLASS global Cisco Cloud Services

Programs that enable success for every deployment

model


Participate in the “My Favorite Speaker” Contest

• Promote your favorite speaker through Twitter and you could win $200 of Cisco Press products (@CiscoPress)

• Send a tweet and include • Your favorite speaker’s Twitter handle <@DuaneDeCapite and @rohitagarwalla>• Two hashtags: #CLUS #MyFavoriteSpeaker

• You can submit an entry for more than one of your “favorite” speakers

• Don’t forget to follow @CiscoLive and @CiscoPress

• View the official rules at http://bit.ly/CLUSwin

Promote Your Favorite Speaker and You Could Be a Winner

http://bit.ly/CLUSwin

© 2015 Cisco and/or its affiliates. All rights reserved. Cisco PublicPSOCLD-1006

Complete Your Online Session Evaluation

Don’t forget: Cisco Live sessions will be available for viewing on-demand after the event at CiscoLive.com/Online

54

• Give us your feedback to be entered into a Daily Survey Drawing. A daily winner will receive a $750 Amazon gift card.

• Complete your session surveys though the Cisco Live mobile app or your computer on Cisco Live Connect.


Continue Your Education• Demos in the Cisco campus

• Walk-in Self-Paced Labs

• Table Topics

• Meet the Engineer 1:1 meetings

• Related sessions

Thank you


PSOCLD-1006 Cisco Cloud Architectures on OpenStack - Cisco Live! US 2015 San Diego

Technology

Transcript of PSOCLD-1006 Cisco Cloud Architectures on OpenStack - Cisco Live! US 2015 San Diego