1 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

VMware NSX & OpenStack Integration Somik Behera Twitter: @Strikesme

2 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

Agenda

OpenStack on VMware • OpenStack on VMware philosophy

OpenStack Network (Neutron) & VMware NSX • Brief history of OpenStack Neutron project

• Technical Overview: OpenStack Neutron

• Technical Deep Dive: OpenStack Neutron & NSX Integration

Demo - OpenStack & VMware NSX in Action Conclusion: Why OpenStack & VMware NSX • NSX Integrated OpenStack Partners

• NSX & OpenStack in Production

3 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

VMware Philosophy on OpenStack

Customer Choice • VMware supports Customer choice. • Our support for OpenStack enables choice

OpenStack • An open framework for building clouds • Assembles a solution from underlying

Compute, Network, Storage components. • Can be managed and automated using many

solutions.

An Opportunity for VMware SDDC • VMware SDDC provides best-in-class

Compute, Network, Storage & management solutions for OpenStack.

• We view OpenStack as an opportunity for VMware SDDC portfolio.

Public Clouds

Private Clouds

Hybrid Cloud Seamlessly extend your data center to the public cloud

Virtual Workspace Manage access to services, applications and data for any device

The Foundation for IT: Software Defined Datacenter

Software-Defined Data Center Virtualize the entire data center

Management and Automation Storage and Availability Compute Network and

Security

4 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

VMware Technologies and OpenStack Tenant-Side

Operator-Side

Benefits of OpenStack API & Ecosystem

Choice of best-in-class virtualization & management technologies

Horizon ( Web Portal )

vSphere & vCenter

CLI Tools & Scripts (DevOps Automation)

vCAC Application Director

Nova (Compute)

Neutron (Network)

Cinder (Block Storage)

Glance (Image Store)

NSX vSAN vCenter (Image Catalog)

Cloud Operator Tools (vCenter, vCOPs, Log Insight etc.)

Third Party Operator tools (Puppet/Chef, scripts, nagios...)

OpenStack or 3rd Party Component VMware Component

5 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

OpenStack Network (aka Neutron)

6 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

Brief History: OpenStack Neutron Project is

born!

1st experimental release accepted for incubation

1st NVP plugin release

Beyond L2: IPAM & L3 APIs

Nova-network feature parity Load balancing APIs

FW APIs VPN APIs

Nicira, Cisco, Rackspace and others launch Quantum

4/2011 9/2011 3/2012 9/2012 3/2013 9/2013

Accepted as OpenStack core project

NSX Plugin Havana:1980 commits

(and counting…)

Grizzly: 1414 commits

Folsom: 816 commits

Essex: 521 commits

Diablo Essex Folsom Grizzly Havana

7 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

Why OpenStack Neutron? Give tenants control over networking

• Provide technology-agnostic tenant API to manage virtual network topologies

Leverage advanced network technologies • Traditional approach (‘Nova-network’) provides

only basic technologies • VLANs are only option for multi-tenancy • “network controller” node is centralized single-point

of failure for large networks.

Who needs private networks? Trunking all VLANs is a great idea!

- Stone Age Man

8 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

What is OpenStack Neutron?

An API allowing cloud tenants to: • Define advanced network topologies

in the cloud • Manage IP addressing • Monitor network status • Define security and quality-of-service

policies • Configure advanced network services

A framework for leveraging advanced technologies

• Based on a ‘plugin’ mechanism

9 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

Reference OpenStack Neutron Architecture

Authentication & Authorization via OpenStack keystone

Core Neutron API API Extensions

Horizon Web UI Neutron CLI Heat - Orchestration Other tools API Tools

Open vSwitch

Nova Compute

Open vSwitch

Nova Compute

Open vSwitch

Nova Compute

Open vSwitch Plugin Layer-2

Agents

Interfaces from Nova plug into a

switch managed by the Neutron

plugin.

Neutron Pluggable Backend layer Open vSwitch Plugin

OpenStack Neutron API Server • Integrated AuthN/AuthZ with

OpenStack Keystone • Integrated out of the box NSX

Plugin • Advanced feature API

extensions.

10 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

Logical topologies enabled by Neutron APIs

Net_B1 192.168.0.0/24

DHCP DHCP DHCP

Net_A1 10.0.0.0/24

Net_A2 10.0.1.0/24

External Network

Router_A Router_B

Tenant “A”

VM_3 192.168.0.3

VM_2 10.0.1.3

VM_1 10.0.0.3

Tenant “B”

External Network

Net_A2 10.0.1.0/24

11 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

OpenStack Network (aka ‘Neutron’)

& VMware NSX

12 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

Brief History: VMware contributions to OpenStack Neutron

Folsom Havana

(in progress)

Grizzly

13 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

Why run OpenStack Neutron on VMware NSX HA & Scale

What? • Scale-out architecture with

sub-second HA Why?

• Distribute workloads without Networking boundaries

Performance What?

• Distributed architecture and efficient encapsulation

Why? • Get most out of your

existing 10GE NW & NICS

Enterprise-class features What?

• Gateways, QoS, BUM offload and many others

Why? • Eases cloud deployment &

integrates existing workloads.

Operational Agility What?

• Single pane of glass & operational model.

Why? • Better sleep at night

knowing support has tools to do their job.

14 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

Virtual Networks Virtual Networks

Physical or Virtual Workloads

Any Application

VMware NSX with OpenStack ‘Neutron’ Architecture

Overlay Transport

NSX vSwitch

NSX Controller & API

NSX Gateway

Any Network Hardware

Any Hypervisor

Phys

ical

to

Virtu

al

Virtual Networks

Authentication & Authorization VMware NSX Plugin for OpenStack Neutron

Core Neutron API API Extensions

OpenStack Neutron API Server • Integrated

AuthN/AuthZ with OpenStack Keystone

• Integrated out of the box NSX Plugin

• Advanced feature API extensions.

Horizon Web UI Neutron CLI Heat - Orchestration Other tools API Tools

15 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

VMware NSX & OpenStack Demo!

16 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

OpenStack Neutron on NSX demo – Logical Topology

DHCP Service DHCP Service

Private_1 Private_2

VM_1 VM_2

my_router

Floating IP (Destination NAT to Private IP)

Public

Private IP

Source NAT for Public Network access

17 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

Summary

18 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

NSX Integrated OpenStack Partners

NSX Controller

NSX API

Partner Extensions Network Security Platform

Network Gateway Services

Application Delivery Services

Security Services

+ Cloud Mgt Platforms

19 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.

Select OpenStack & VMware NSX customers

1 2 Public Clouds Enterprise Private Clouds