VMware NSX + Cumulus Networks: Software Defined Networking

20
v Software Defined Data Center With VMware NSX & Cumulus® Linux® Aug 6 th 2014

description

Witness the enablement of a true integration of a virtual network platform and an underlay physical network for a scalable data center orchestration, automation and multi-tenancy solution over high-capacity IP fabrics. With the integration of VMware NSX Layer 2 gateway services on networking hardware running Cumulus Linux, customers can now connect virtual workloads to physical workloads with no performance impact.

Transcript of VMware NSX + Cumulus Networks: Software Defined Networking

Page 1: VMware NSX + Cumulus Networks: Software Defined Networking

v

Software Defined Data Center

With

VMware NSX & Cumulus® Linux®

Aug 6th 2014

Page 2: VMware NSX + Cumulus Networks: Software Defined Networking

Introduction

August 6, 2014 2

Roberto Mari Manager Technical Marketing

VMware

Meena Sankaran Ecosystem & Solutions

Cumulus Networks

Page 3: VMware NSX + Cumulus Networks: Software Defined Networking

What is a Software Defined Data Center (SDDC)?

Software

Hardware

Virtual Machines

Virtual Networks

Virtual Storage

Compute Capacity

Network Capacity

Storage Capacity

Applications

Location Independence

Appl

icatio

n Co

nsum

ptio

n

Desktop Internet

Virtual Desktop Laptop Tablet Mobile

1

2

3

4 5

August 6, 2014 3

Page 4: VMware NSX + Cumulus Networks: Software Defined Networking

SDDC and VMware NSX Network Virtualization !  Abstracts, pools, automates networking for the SDDC

!  Reproduces L2/3 networking, L4-7 services

!  Runs on any existing networking hardware

!  Applications need no modification

!  Provides scale out / distributed switching, routing, firewalling

!  Enables seamless service insertion for application delivery, security, and network security partners

August 6, 2014 4

Page 5: VMware NSX + Cumulus Networks: Software Defined Networking

Provides A Faithful Reproduction of Network & Security Services in Software

Switching Routing Firewalling Load Balancing

VPN Connectivity to Physical

August 6, 2014 5

Page 6: VMware NSX + Cumulus Networks: Software Defined Networking

VMware NSX Logical Services

SCALABLE ROUTING – Simplifying Multi-tenancy

L2

L2

Tenant A

Tenant B

L2

L2

L2 Tenant C

L2

L2

L2

Ani

mat

ed S

lide

CMP

LOGICAL SWITCHING – Overlay Networks Enabling L2 over Layer 3

DISTRIBUTED FIREWALL – Micro segmentation of virtual workloads

August 6, 2014 6

NSX Controllers

Page 7: VMware NSX + Cumulus Networks: Software Defined Networking

Virtualized DC Physical Designs

August 6, 2014

WAN Internet

Compute Racks Infrastructure Racks

Edge Racks

Leaf

Spine

Edge Leaf (L3 to DC Fabric, L2 to External Networks)

L3

L2

L3

L2

L3

L2

Web Web App

Web App App

DB DB

DB

Web

App

DB

Cumulus® Linux®

August 6, 2014 7

Page 8: VMware NSX + Cumulus Networks: Software Defined Networking

Support for Physical & Virtual Workloads Ideal for DCs that have a mix of virtual and physical workloads

Cumulus® Linux®

Cumulus® Linux®

Cumulus® Linux® Cumulus® Linux®

Cumulus® Linux®

August 6, 2014 8

Page 9: VMware NSX + Cumulus Networks: Software Defined Networking

How do Hardware L2 Gateways work?

!  Registration of hardware appliance into NSX Controller (one time)

!  Creation of a L2 Gateway Service including the hardware appliance physical port.

!  NSX API calls to connect a physical port/VLAN to a Logical Switch

Open vSwitch Data Base (OVSDB) is a communication protocol between NSX Controllers and NSX 3rd party Gateways Internet Draft spec at: https://datatracker.ietf.org/doc/draft-pfaff-ovsdb-proto/

August 6, 2014 9

VXLAN

L2 L3 Virtual Network

L2 VMware NSX

OVSDB Server

OVSDB Client

Cumulus Hardware

Anim

ated

Slid

e

Page 10: VMware NSX + Cumulus Networks: Software Defined Networking

Cumulus Linux VXLAN Support – Integration with VMware NSX

10

VM1

Virtual Network VXLAN 100

VMware NSX Controllers, Manager and Service Node

Layer 3

swp2s1 – vxlan100 Enabled for gateway services LogicalPort2, VTEP attached

Cumulus Linux Gateway – vtep1

OVS1 swp2s0 – vxlan100

Enabled for gateway services LogicalPort2, VTEP attached LogicalPort3, vlxan100, type VIF

Logical Switch VXLAN 100

Logical View

VM

A B

A B

LogicalPort3

LogicalPort1

LogicalPort2

Page 11: VMware NSX + Cumulus Networks: Software Defined Networking

Virtualized DC Physical Designs

August 6, 2014

WAN Internet

Compute Racks Infrastructure Racks

Edge Racks

Leaf

Spine

VXLAN and OVSDB capable Cumulus ToRs allowing L2 to non-virtualized

workloads

L3

L2 L3

L2

L3

L2

Web Web App

Web App App

DB DB

DB

Web

App

DB

Cumulus® Linux®

August 6, 2014 11

Cumulus® Linux® Cumulus® Linux®

Page 12: VMware NSX + Cumulus Networks: Software Defined Networking

Unlock the power of an Open Ecosystem

August 6, 2014 12

Empowered Natively by Linux Tools

App App sFlow App App

Cumulus® Linux®

App

v No hardware lock-in

Orchestration NW Virtualization

NW Automation Routing Monitoring Security

Form Factor Configurations Supply chain diversity

Technology diversity

Open Networking Hardware

Global Fulfillment, Logistics, and Professional Services

Page 13: VMware NSX + Cumulus Networks: Software Defined Networking

Switch HAL

Cumulus Linux NSX Integration

August 6, 2014 13

Routing Table

ARP Table

Ethernet Interfaces

CPU, RAM, Flash, etc

Routing Protocols 3rd Party/Customer

Applications

Automation Routing Suite Monitoring Overlay Network

Switch Silicon

Front Panel Ports

Centralized management of physical and virtual ports

Linux Kernel Bridge Table

OVSDB Server

NSXd

switchd

Switch Driver

User

Spa

ce

NSX Manager

VXLAN config (iproute2/netlink)

VXLAN Driver

• Leveraging existing Linux VXLAN forwarding logic

• Flexible controller integration through OVSDB server and NSXd

• VXLAN Hardware acceleration

Controller Cluster

CMP

Page 14: VMware NSX + Cumulus Networks: Software Defined Networking

Why VMware & Cumulus Networks ?

!  Leverages existing Linux expertise

!  Faster time to Market (Accelerate Innovation)

!  Hardware Independence (Power of Choice )

!  Operational flexibility to the customer with Open Standards

!  DevOps /SysAdmins & Cloud Team interactions – Natural extension

!  Lowest Cost Solution with no performance penalty

August 6, 2014 14

Page 15: VMware NSX + Cumulus Networks: Software Defined Networking

Myths about Overlay Networks

Software-based Overlays have performance limitations

Lack of visibility in software overlay networks

Cannot integrate physical workloads into a software overlay

August 6, 2014 15

Page 16: VMware NSX + Cumulus Networks: Software Defined Networking

Performance & Logical Networks

Software-based Overlays have performance limitations

0

5

10

15

20

VXLAN Bridge Ban

dwid

th in

Gbp

s

Send Receive

VXLAN based Overlay and a native bridged network have identical performance characteristics

No Additional Impact due to Encap/De-cap of Overlay Traffic August 6, 2014 16

Page 17: VMware NSX + Cumulus Networks: Software Defined Networking

Providing Visibility in Overlay Networks

Lack of visibility in software overlay networks

Traffic Flow visibility IPFIX / Netflow Flow Monitoring

Traffic Analysis per VM RSPAN/ERSPAN (VM Traffic) Packet Capture and Wireshark Plugins for VXLAN

Network Inventory, Fault Management NSX Manager, SNMP (MIBS for ports, Switch etc)

Multi-level logging, Event tracking & Auditing Syslog Export

Transport (Overlay) Health NSX Manager Connectivity Check NSX Controller Central CLI, Per host CLI

Tools in your chest

Full Visibility to traffic in the network

August 6, 2014 17

Page 18: VMware NSX + Cumulus Networks: Software Defined Networking

Connecting to Physical Workloads

Cannot integrate physical workloads into a software overlay

Physical Workloads VXLAN VLAN

Virtual Bridge

Physical Workloads VXLAN VLAN

ToR VTEP

August 6, 2014 18

Page 19: VMware NSX + Cumulus Networks: Software Defined Networking

Next Steps

! Resources available at http://cumulusnetworks.com/solutions/network-virtualization-overlays/vmware-nsx/

!  Solution Brief !  Demo Videos !  Blog Posts !  Combined Webinar w/Facebook !  Knowledge Base Articles !  User-Guides

! Customer Support available through the sales field teams at VMware and Cumulus Networks

August 6, 2014 19

Page 20: VMware NSX + Cumulus Networks: Software Defined Networking

© 2014 Cumulus Networks. Cumulus Networks, the Cumulus Networks Logo, and Cumulus Linux are trademarks or registered trademarks of Cumulus Networks, Inc. or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. The registered trademark Linux® is used pursuant to a sublicense from LMI, the exclusive licensee of Linus Torvalds, owner of the mark on a world-wide basis.

! Thank You!

August 6, 2014 20