1 / 28

Network Virtualization in The Hybrid Cloud

Network Virtualization in The Hybrid Cloud. Stanislav Zhelyazkov Microsoft MVP 21/11/2013. Session Objectives. VMM Networking Network Virtualization in Windows Server Hyper-V 2012 and VMM 2012 SP1 Improvements in Windows Server 2012 R2 and VMM 2012 R2 Microsoft Multi-Tenant Gateway.

valin
Download Presentation

Network Virtualization in The Hybrid Cloud

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Network Virtualization in The Hybrid Cloud Stanislav Zhelyazkov Microsoft MVP 21/11/2013

  2. Session Objectives • VMM Networking • Network Virtualization in Windows Server Hyper-V 2012 and VMM 2012 SP1 • Improvements in Windows Server 2012 R2 and VMM 2012 R2 • Microsoft Multi-Tenant Gateway

  3. VMM Networking

  4. Isolation Types in VMM Network Virtualization Isolation through encapsulation. Independence from physical address space. Layer 2: VLAN Tag is applied to packets which is used to control the forwarding Layer 2: Private VLAN (PVLAN) Primary and Secondary tags are used to isolate clients while still giving access to shared services.* Physical separation Physical switches and adapters for each type of traffic * VMM 2012 SP1 and R2 only supports creation of isolated PVLAN VMs

  5. Where and What Isolation We Should Use? Infrastructure networks VLAN or No isolation Load balancer back end and internet facing PVLAN Tenant networks Network virtualization or External

  6. Logical Networks • Models the physical Network • Separates like subnets and VLANs into named objects that can be scoped to a site • Container for fabric static IP address pools • VM networks are created on logical network

  7. Port Profiles and Classifications • Two Port Profile Types • Uplink • Virtual • Port Classifications • Container for port profile settings • Reusable • Exposed to tenants through cloud

  8. Logical Switch Logical Switch in VMM • Central container for virtual switch settings • Consistent port profiles across data center • Consistent extensions • Compliance enforcement Switch settings Switch settings Port Profiles (Uplink) Port Profiles (Virtual) Corp Clust. Mgmt

  9. VM Networks, VM Subnets and IP Pools

  10. Network Virtualization in Windows Server Hyper-V 2012 and VMM 2012 SP1

  11. Hyper-V Network Virtualization Concept Customer Address VSID Provider Address 192.168.2.22 192.168.5.55 GRE Key 5001 MACCA 10.0.0.5  10.0.0.7 NVGRE Packet 192.168.2.22 192.168.5.55 GRE Key 6001 MACCA 10.0.0.5  10.0.0.7 192.168.2.22 Different subnets 192.168.5.55 10.0.0.5 10.0.0.5 10.0.0.7 10.0.0.7 10.0.0.5 10.0.0.7 10.0.0.5  10.0.0.7 10.0.0.5 10.0.0.7 10.0.0.5 10.0.0.7

  12. Improvements in Windows Server 2012 R2 and VMM 2012 R2

  13. Network Virtualization Improvements in Windows Server 2012 R2 Hyper-V • Network Virtualization is now virtual switch extension • Hyper-V network virtualization and forwarding extensions can coexist • Hyper-V Network Virtualization enabled by default • Broadcast/Multicast Support • Dynamic IP Address Learning • Support for Guest Clustering • DHCP inside VM Networks • Inbound and outbound spread on virtualized traffic • Higher performance with teamed NICs • Utilizes LBFO’s new Dynamic Mode

  14. Network Virtualization Improvements in Windows Server 2012 R2 Hyper-V • Provider Addresses configured with a MAC address • *-NetVirtualizationProviderAddresscmdlets updated to take a MAC address • Optimal performance when you have 1 (or more) PAs per NIC in the team • Enhanced diagnostics - Test-VMNetworkAdapter and Select-NetVirtualizationNextHop • NVGRE Encapsulated Task Offload – Available in 2012 but recently Emulex and Mellanox have announced products supporting NVGRE Task Offload

  15. Network Virtualization Improvements in VMM 2012 R2 Network Service • Improved HNV policy applying • All network devices* and services are now “network services” • Highly available Multi-Tenant Gateway • Full IPAM Integration • In-box plugin for Microsoft IPAM • Exchange logical networks, sites and subnets • More error resistant VMM Server Virtual Switch Extension Network Manager Net. Virt. Policy Gateway Physical Switch *except load balancers

  16. Microsoft Multi-Tenant Gateway

  17. Hybrid Networking in WS2012 S2S tunnel S2S tunnel • One S2S GW per tenant • Limited routing capability • Manual provisioning • Internet connectivity back to remote site • No VMM Integration Contoso Site 1 Contoso VM Network Contoso Site 2 S2S tunnel Northwind VM Network Northwind S2S tunnel S2S tunnel Fabrikam VM Network Fabrikam Site 1 Fabrikam Site 2 Internet Hoster

  18. Hybrid Networking in WS2012 R2 S2S tunnel • Multitenant S2S network virtualization GW • Clustering for high availability on guest and host level • Uses BGP for dynamic routes update • Multitenant aware NAT for Internet access • Integration with VMM 2012 R2 • Up to 200 S2S VPN Connections, 50 Routing domains and 500 virtual subnets BGP Contoso Site 1 S2S tunnel Contoso VM Network S2S tunnel Contoso Site 2 S2S tunnel Northwind VM Network S2S tunnel Northwind Fabrikam VM Network Fabrikam Site 1 Fabrikam Site 2 Internet Hoster

  19. Multi-Tenant Networking Stack Network Services TCP/IP IP Interface VM VM NIC Hyper-V switch

  20. Multi-Tenant Networking Stack Existing Network Services Multitenant Network Services TCP/IP Compartment for Tenant VM Network Default Compartment Compartment for Tenant VM Network IP Interface IP Interface IP Interface IP Interface VM VM NIC Hyper-V switch

  21. Network Virtualization Gateway Layout

  22. IPsec Parameters for S2S VPNs

  23. Known Compatible VPN Devices

  24. DEMO

  25. Summary

  26. Check Out Our Whitepaper Hybrid Cloud with NVGRE (WSSC 2012 R2)http://gallery.technet.microsoft.com/Hybrid-Cloud-with-NVGRE-aa6e1e9a

  27. Questions

  28. Очакваме вашата обратна връзка, чрез мобилното ни приложение! Изтеглете го от: http://www.eventboardmobile.com/download и изберете “In Charge”.

More Related