Software-Defined Networking on Power Systems - …€¦IBM Systems Lab Services —Proven IT...

[email protected] IBM Systems Lab Services — Proven IT Infrastructure Expertise |1

IBM Systems Lab Services — Proven IT Infrastructure Expertise

Software-Defined Networking on Power Systems

Vess [email protected] Cloud Team LeaderIBM Systems Lab Services


Agenda

§ Software-defined networking (SDN) overview and terms§ Why SDN?§ Solution components

− PowerVC− PowerVM NovaLink− Open vSwitch and OpenStack Neutron network service

§ Sneak preview: ideas we are considering for Power cloud

2


Software-defined Networking (SDN)

§ PowerVC, NovaLink, Open vSwitch (OVS) and OpenStack Neutron bring SDN!− Support for VXLANs and software-defined routers

§ Build software-defined networks in seconds—no more waiting days / weeks§ Introduces policy-based management—control quality and security objectives

− Control VM throughput and if / how VMs can communicate§ Tech preview with PowerVC 1.3.2, using CLI only

− UI support in stages in 2017

3


§ Key Components− Overlay networks (VXLAN)− Floating IPs− Routers− Security Groups− QoS

§ New Resource Type− Network Nodes

§ These are planned UI screens for PowerVC releases in 2Q and 4Q 2017

4

Software-defined Networking


Why SDN?§ Limit of 4094 VLANs

− 16 million VXLAN IDs (VNIs/VNIDs)

§ Speed and flexibility of creating new networks for the cloud− Cloud users, server admins, app/DB teams can create networks for test/dev− Within the existing physical HW and security/firewall framework− Without impacting network conditions or putting test environments on core/prod network

§ Decoupling of physical infrastructure and IP/L3 segmentation from workloads that need to span different environments

§ For Power clients, this means:− Great flexibility for Power admins and users to create new test/dev networks without waiting on

network team for cabling, VLAN creation, IP address assignments, etc. – within the existing HW and security framework

− Being able to provide the same “cloud networking” capabilities to Power users that VMware users enjoy


SDN – Basic Private VXLAN Scenario

Computenode ComputenodeNovaOpenvSwitchKeystone

NovaOpenvSwitchKeystone

§ “Red” VMs on different systems are on a separate VXLAN from “blue” VMs§ The VMs have no knowledge of this, no additional configuration necessary in OS§ IP addresses can be the same on different VXLANs§ Red VMs communicate via L2/MAC layer Ethernet frames, maintain ARP tables, etc.§ VTEP (NovaLink in this case) encapsulates Ethernet frames into IP packets, inserts VXLAN header containing VNID, performs L3/IP routing§ A network node is not required for private VXLANs, including across physical systems and networks. NovaLink is sufficient, as long as:

− NovaLink VMs on different physical hosts can IP-route to one another− NovaLink VMs all have a physical interface

§ All PowerVC, NovaLink and network node requirements for SDN –https://www.ibm.com/support/knowledgecenter/en/SSXK2N_1.3.2/com.ibm.powervc.standard.help.doc/powervc_sdn_reqs.html


SDN – Basic Private VXLAN Scenario

§ Detailed basic VXLAN example from Cisco



PowerVC Mini-Overview


PowerVC Standard Edition Overview

9

Baseprovisioningandvirtualization• RapidLPARprovisioninganddeprovisioning• Storageprovisioning• Virtualnetworkconfiguration• Physicalandvirtualresourcediscovery• LPARresize(dynamicLPARchanges)• LPARmigration(LivePartitionMobility)• HostMaintenanceMode• Imagecapture• Imagerepositoryandauthenticationservices

RapidprovisioningandmanagementofVMs/LPARsonPowerSystemsusinganintuitiveWebinterface

Advancedcapabilities• Computetemplates(“t-shirtsizes”)• Storagetemplates• StorageConnectivityGroups• HostGroups• Placementpolicies• Collocationrules• SANvolumecreate/delete• Remoterestart• SwitchedHMCsupport• DynamicResourceOptimization(DRO)


Cloud PowerVC Manager Overview

10

Capabilities• Self-serviceportal• Projects• Imagetemplates• Approvals• Metering

PlusallPowerVCStandardEditionCapabilities

Self-serviceentrycloudsolutiononPowerSystems


BaseCapabilities– DeployLPAR


Key Features

Simple User Interfaceq Intuitive and appealingq Tuned for Power Systems

One-Click System Evacuationq Auto-relocate VMs to other hostsq Planned maintenance made easy!

Automated Virtual Machine Restartq Auto-detect failed hosts and restart VMsq Works for AIX, Linux and IBM i VMs

Host Groupsq Group hosts however you wantq Attach policies to groups:qAutomated VM restartqVM placementqDRO


Virtual Machine Console Launchq Open a VM console from UI

Dynamic Resource Optimizer (DRO)q Automatically balance cloud workloadsq Can run in “active” or “advise” mode

Collocation Rules (Affinity and Anti-Affinity)q Constraints on where VMs can be placedq Great for ensuring availability or performance

Software-Defined Networking (Tech Preview)q Leverages NovaLink and Open vSwitch (OVS)q VXLANs, routers, QoS and security groups

Key Features


Cloud PowerVC Manager: Cloud Admin and User View

IBM Cloud PowerVC Manager:Self-service Portal

All PowerVC Operations

Deploy Template Management

Approval Requests

Policies

Deploy VMs

Request Expiration Extension

Use the self-service portal to:q One-click request for VM deploymentsq Request VM expiration extensionsq View metering data

Cloud UsersCloud Administrators

Configure and manage:q Deploy templatesq Policies (VM age, etc.) q Approvals and expirationsq Metering data

”Deploying VMs for my application

development is so fast and easy!”

”I have so much more time now that users can provision their

own VMs!”


Cloud PowerVC Manager: Self-service User View



NovaLink Mini-Overview


Current Power Systems Cloud Management

PowerVM

PHYP

FSP

HMC1

VIOSVIOSVIOS

KVM

OPAL

BMC/FSP

PowerVM

PHYP

FSP

HMC2

VIOSVIOSVIOS

NovaControllerNova(PowerVM1)

Nova(PowerVM2)

Nova(PowerVM3)

Nova(PowerVM4)

Nova(PowerVM5)

Nova(PowerVM6)

Linux Nova


NovaLink Cloud Management

PowerVM

PHYP

FSP/BMC

NovaLink

VIOSVIOSVIOS

KVM

OPAL

BMC/FSP

PowerVC

NovaLinux Nova

HardwareService(HMC)

OpenStack

§ NovaLink partition delivers a new virtualization API

§ Decouples virtualization management§ Supports decentralized architecture

§ Native OpenStack community driver§ Moves compute services into host§ Enriched upward integration

§ Improved management scalability§ Reduced infrastructure complexity§ Order of magnitude faster provisioning

NovaLink

Infrastructure


NovaLink High-level Architecture

• NovaLink is a partition running on each system• POWER8 only• Ubuntu PPC64 LE or RHEL 72 LE• NovaLink Core provides base level

virtualization interaction with PHYP and VIOS

• NovaLink API provides a virtualization interface

• NovaLink runs OpenStack Nova Compute, Neutron Agents, and Ceilometer Agents

• VIOS LPARs and NovaLink Core will be sized on installation to minimize customer impact

• No licensing for NovaLink LPAR• Not an appliance

PowerVM(PHYP)

VIOS

VM1

VM2

VM3

VM...

VM100

0

VIOS

NovaLinkPartitionOpenStackServices

NovaLinkAPI

NovaLinkCore

NovaLink


SDN – PowerVC View

§ VXLAN networks show like any other flat or VLAN network in PowerVC§ They are then used the same way at deploy time


SDN – PowerVC View

§ Using a VXLAN network template during deploy


SDN – References

• VXLANOverview– http://www.cisco.com/c/en/us/products/collateral/switches/nexus-9000-series-switches/white-paper-c11-729383.html

• OpenStackOpenvSwitchConfiguration– http://docs.openstack.org/newton/networking-guide/scenario-classic-ovs.html

• OpenvSwitchovs-vsctl CommandManual– http://openvswitch.org/support/dist-docs/ovs-vsctl.8.txt• PowerVC1.3.2SDNDocumentation–https://www.ibm.com/support/knowledgecenter/en/SSXK2N_1.3.2/com.ibm.powervc.standard.help.doc/powervc_sdn.html

Software-Defined Networking on Power Systems - …€¦IBM Systems Lab Services —Proven IT...

Documents

Transcript of Software-Defined Networking on Power Systems - …€¦IBM Systems Lab Services —Proven IT...