Mastering OpenStack - Episode 14 - Network Design
•
1 recomendación•907 vistas
A presentation about OpenStack network design in production that presented in Iran OpenStack users group in 19th January of 2016.
Recomendados
Recomendados
Más contenido relacionado
La actualidad más candente
La actualidad más candente (20)
Destacado
Destacado (11)
Similar a Mastering OpenStack - Episode 14 - Network Design
Similar a Mastering OpenStack - Episode 14 - Network Design (20)
Último
Último (20)
Mastering OpenStack - Episode 14 - Network Design
- 1. Presentation By: Roozbeh Shafiee Winter 2016 IRAN OpenStack Users Group MASTERING OPENSTACK (Episode 14) Network Design
- 2. IRAN Community| OpenStack.ir Agenda: • Network Topology • Flat Networking Deployment • FlatDHCP Networking Deployment • VLAN Manager Networking Deployment • FlatDHCP Multi Host with HA Networking Deployment • Iran OpenStack Community OpenStack Network Design
- 3. IRAN Community| OpenStack.ir Network Topology OpenStack Network Design
- 4. IRAN Community| OpenStack.ir Network Topology • OpenStack Compute with nova-network provides predefined network deployment models, each with its own strengths and weaknesses. • The selection of a network manager changes your network topology, so the choice should be made carefully. • You also have a choice between the tried-and-true legacy nova-network settings or the neutron project for OpenStack Networking. OpenStack Network Design
- 5. IRAN Community| OpenStack.ir Network Topology For OpenStack Networking with the neutron project, typical configurations are documented with the idea that any setup you can configure with real hardware you can recreate with a software-defined equivalent. Each tenant can contain typical network elements such as routers, and services such as DHCP. OpenStack Network Design
- 6. IRAN Community| OpenStack.ir Flat Networking Deployment OpenStack Network Design
- 7. IRAN Community| OpenStack.ir Flat Networking Deployment • Strengths: - Extremely simple topology - No DHCP overhead • Weaknesses: - Requires file injection into the instance to configure network interfaces • Neutron Equivalent: - Configure a single bridge as the integration bridge (br-int) - Connect bridge to a physical network interface with the Modular Layer 2 plug-in - Uses Open vSwitch by default OpenStack Network Design
- 8. IRAN Community| OpenStack.ir FlatDHCP Networking Deployment OpenStack Network Design
- 9. IRAN Community| OpenStack.ir FlatDHCP Networking Deployment • Strengths: - Relatively simple to deploy - Standard networking - Works with all guest operating systems • Weaknesses: - Requires its own DHCP broadcast domain OpenStack Network Design
- 10. IRAN Community| OpenStack.ir • Neutron Equivalent: - Configure DHCP agents and routing agents - Network Address Translation (NAT) performed outside of compute nodes - Typically on one or more network nodes OpenStack Network Design FlatDHCP Networking Deployment
- 11. IRAN Community| OpenStack.ir VLAN Manager Networking Deployment OpenStack Network Design
- 12. IRAN Community| OpenStack.ir VLAN Manager Networking Deployment • Strengths: - Each tenant is isolated to its own VLANs • Weaknesses: - More complex to set up - Requires its own DHCP broadcast domain - Requires many VLANs to be trunked onto a single port - Standard VLAN number limitation - Switches must support 802.1q VLAN tagging OpenStack Network Design
- 13. IRAN Community| OpenStack.ir • Neutron Equivalent: - Isolated tenant networks implement some form of isolation of layer 2 traffic between distinct networks. - VLAN tagging is key concept, where traffic is tagged with an ordinal identifier for the VLAN. - Isolated network implementations may or may not include additional services like DHCP, NAT, and routing. OpenStack Network Design VLAN Manager Networking Deployment
- 14. IRAN Community| OpenStack.ir FlatDHCP Multi Host with HA Networking Deployment OpenStack Network Design
- 15. IRAN Community| OpenStack.ir FlatDHCP MultiHost with HA Networking Deployment • Strengths: - Networking failure is isolated to the VMs running on the a affected hypervisor. - DHCP traffic can be isolated within an individual host. - Network traffic is distributed to the compute nodes. • Weaknesses: - More complex to set up. - Compute nodes typically need IP addresses accessible by external networks. - Options must be carefully con gured for live migration to work with networking services. OpenStack Network Design
- 16. IRAN Community| OpenStack.ir • Neutron Equivalent: - Configure neutron with multiple DHCP and layer-3 agents. - Network nodes are not able to failover to each other, so the controller runs networking services, such as DHCP. - Compute nodes run the ML2 plug-in with support for agents such as Open vSwitch or Linux Bridge. OpenStack Network Design FlatDHCP MultiHost with HA Networking Deployment
- 17. IRAN Community| OpenStack.ir Iran OpenStack Community OpenStack Network Design
- 18. IRAN Community| OpenStack.ir Stay in Touch and Join Us: • Home Page: OpenStack.ir • Meetup Page: Meetup.com/Iran-OpenStack • Mailing List: OpenStack-ir@Lists.OpenStack.org • Twitter: @OpenStackIR , #OpenStackIRAN • IRC Channel on FreeNode: #OpenStack-ir OpenStack Network Design
- 19. Roozbeh Shafiee Iran OpenStack Community Manager Roozbeh@OpenStack.ir OpenStack.ir Thank You We need to work together to build a better community