150 likes | 291 Views
A 5 minutes intro to Openstack (and a few more minutes on Openstack Networking). Salvatore Orlando 3 rd OSUG Italy Meetup Rome, May 9 th 2013. Ecosystem. Openstack is the code. Releated /Unofficial Projects. Incubating Projects. Integrated Projects.
E N D
A 5 minutes intro to Openstack(and a few more minutes on Openstack Networking) Salvatore Orlando 3rd OSUG Italy Meetup Rome, May 9th 2013
Ecosystem Openstack is the code Releated/Unofficial Projects Incubating Projects Integrated Projects For more info: https://wiki.openstack.org/wiki/Projects
Openstack is even more code! Infrastructure Gating (tempest, devstack, …) Client libraries Documentation(api, admin, …)
Openstack is the community • May 8th 2013: 9,342 people from 87 countries • Interact via: • Mailing lists: general, development, documentation, operators … • Ask Openstack (ask.openstack.org) • Launchpad • Home to all openstack integrated projects • IRC (#openstack-101, #openstack, #openstack-dev, …) • Local User Groups (like today!) • Summit & Conference (twice a year)
See Openstack evolving, everyday • http://status.openstack.org • Release status • Active Reviews • https://github.com/openstack • Grab the code
(Virtual) Networking in Openstack • Nova-network • L2/L3 networking with IP address management • Security Groups • Floating Ips and external gateway (SNAT) • Network redundancy with ‘multi-host’ • 3 Network Managers: • Flat, FlatDHCP: L3 isolation via security groups • VLAN Manager: L2 isolation • The project formerly known as Quantum* • L2 networking with choice of segmentation/virtualization techniques • Shared L2 networks • “Provider mappings” for L2 networks • IPAM with overlapping IPs and built-in, scalable DHCP • Security Groups • L3 east-west traffic (inter-subnet routing) • Static route configuration • Floating Ips and external gateway (SNAT) • Load Balancing • Nova metadata integration • Wide choice of pluggable backends
Openstack Network quick intro Quantum is an Openstack project to provide “networking as a service” between interface devices (e.g., vNICs) managed by other Openstack services (e.g., nova) • Manages network virtualization • just like compute (nova) manages server virtualisation • Advocates multi-tenancy • Technology-agnostic
Openstack Network:basic architecture API Requests • Simple technology agnosticAPI • Plugin translates API requestinto concrete, technologyspecific implementation • API guarantees isolation ofresources from management perspective • Plugin ensures isolation at data plane Authentication API Server Plugin
Plugin classification • Built-in • Solution (management, control, and data plane) entirely contained in the Quantum source tree • 3rd party • Plugin proxies request to an external “controller” • Can use one or more built-in components (e.g.: DHCP Agent, L3 agent) • 3rd party plugins can either be Open Source or Commercial
Openstack Network ArchitectureOpen vSwitch plugin Network Services Node Load Balancing Agent API Node L3 Agent Quantum Server OVS Plugin Metadata Agent DHCP Agent L2 Agent AMPQ Compute Node Compute Node Compute Node L2 Agent L2 Agent L2 Agent
Logical View External Network External Gateway External Gateway Rtr-B Rtr-A InternalGateway InternalGateway Internal Gateway Net-A2 Net-A1 Net-B1 A21 A12 A11 DHCP B12 B11 DHCP DHCP Tenant “B” Tenant “A”
Physical realizationOVS Plugin – GRE Overlays Compute Node C1 Network Node DHCP A11 Br-tun Br-int Br-tun Br-int L3 A2 1 Br-ex Local VLAN tags converted into GRE keys (and vice versa) Compute Node C2 Compute Node C3 B12 Br-tun Br-int Br-int Br-tun B11 A12
Network node - Details DHCP NS-Net-B1 Dnsmasq 10.0.0.0/24 NS-Net-A2 Dnsmasq 10.0.0.0/24 NS-Net-A1 Dnsmasq 10.0.1.0/24 Br-int Br-tun L3 Iptables SNAT/DNAT NS-Rtr-B L3Fwd Br-ex NS-Rtr-A Iptables SNAT/DNAT L3Fwd