openstack@cisco · •...
TRANSCRIPT
Cisco Confiden+al © 2010 Cisco and/or its affiliates. All rights reserved. 1
OpenStack @ Cisco
Daneyon Hansen
3/28/2012
• Customer value is moving up into soGware and web services
• Virtualiza+on and internet scale is changing data center architectures
• SoGware-‐defined networking is evolving
• Our Cloud Compu+ng strategy is evolving along with the industry
“Go where the puck is going to be, not where it’s been”
• OpenStack is open source soGware for building highly scalable public and private clouds under the Apache License
• Started in July 2010 -‐ ini+al contribu+ons from NASA and Rackspace
• Over 140 companies now par+cipa+ng
• Target customers: both enterprises and service providers
• Supports mul+ple hypervisors, designed for both large and small clouds, and is easily extended
• Moving to a founda+on-‐led governance model
OpenStack Community (+140 companies today)
Today’s Architectural Ba]le
Web Approach Small number of large distributed apps
Scale-out Architecture
Design for Failure
Enterprise Approach
Large number of transaction oriented apps
Vertical scaling
HA failover model
Innovation in Cloud Computing Open Source Software
Commercial Software
Open Source Is Where “Standard” Cloud Infrastructure Will Be Defined
Open standards [require] mul2ple providers, access to code and data, and interoperability of services.
The obvious solu,on is an open source reference model as the standard.
Poten2al examples of such would be the OpenStack effort.
-‐ Simon Wardley, CSC From “A Ques2on of Standards”
hHp://blog.gardeviance.org/2011/04/ques2on-‐of-‐standards.html
Core OpenStack • Nova: Compute Service (i.e. EC2) • Swi(: Object Store: Massive scale, key-‐value storage (i.e. S3) • Glance: Image Service: VM disk image store
Incuba+on Projects: • Keystone: Iden+ty Service • Horizon: Admin and User Self-‐service portal
Community Projects: • Quantum: Network Service* • Melange: Network Address Service (IPAM) • Donabe: container service* • +++ many many more
*Cisco contribu2ng
Compute Service
(VMs, Memory, Local Disk)
Storage Service
(Block, Massive Key-‐value store)
User and System Admin
Basic Network Connec+vity
Developer API
Servers Disks Accounts
Networking is only used for connec+vity.
Cloud APIs are being standardized using a very simplis+c network model
Quantum: As a peer to compute and storage
Compute Service
(VMs, Memory, Local Disk)
Storage Service
(Block, Massive Key-‐value store)
Network Service
(Virtual Networks, Services)
Basic Network Connec+vity
Developer API
Servers Disks Networks
At public design summit – merged proposals from several vendors
NetworkService Rackspace/Nicira
NetworkServicePOC NTT/Midokura
NetworkContainers Cisco
NetworkService Citrix/Rackspace/Nicira
Unified Plan
NaaS Core Design Intel
App
OS
VM
DataBase
OS
VM
App
OS
VM
Web Svr
OS
VM
Web Svr
OS
VM
Web Svr
OS
VM
App Svr
OS
VM
App Svr
OS
VM
MemCach
OS
VM
MemCach
OS
VM
DataBase
OS
VM
DataBase
OS
VM
Tenant “A” Tenant “B”
DataBase
OS
VM
App
OS
VM
Tenant “C”
Internet Access, Management Network and Mul+-‐tenant Services
Cloud Provider, Network-‐centric Services
Networking Services
VPN API
WAAS
API
Firewall API
App Mgmt Services
Monitoring
API
App/Service Catalog
API
Service Assurance
API
Iden+ty Mgmt
API
Other Services
Collab
API
VDI
API
License Mgmt
API
Database Backup
API Load
Balancer
API
User and System Admin
Compute Service Servers
Storage Service Disks
Network Service Networks
Hypervisor: KVM, Xen, ESX -‐ Nexus 1000v + Open vSwitch Network Virtualiza+on: VLAN, OpenFlow, LISP, VXLAN
Customer’s Applica+on
Virtual VPN
Virtual Waas
Virtual Firewall
App
OS
VM
DataBase
OS
VM
App
OS
VM
OpenStack Cloud Plalorm • Bridges the virtual and physical layers
Resource Virtualiza+on/hypervisor Layer • Creates and manages virtualized compute, storage
and networking resources
Physical Resource Layer • Networking, Storage and Compute resources
“Quantum Architecture” – L2 Network Services (released Sept 2011 – L3 in progress )
Quantum API
Quantum Service • L2 network abstrac+on defini+on and management • Device and service a]achment framework • Does NOT do any actual implementa+on of abstrac+on
Quantum Plug-‐in API
API Extensions
Vendor/User Plug-‐In • Maps abstrac+on to implementa+on on physical network • Makes all decisions about *how* a network is implemented • Can provide addi+onal features through API extensions
Cisco Plug-‐in’s for OpenStack Quantum
Quantum API
Quantum Service
Quantum Plug-‐in API
API Extensions
Cisco Cloud Networking Plug-‐In
NX-‐OS, UCS, Cisco Network Services Mgr (Overdrive), VXLAN, OpenFlow, …
Cisco Infrastructure Products
Unified Fabric
Unified Computing
Unified Network Services
Tenant VM
SP-‐Defined (Target) SP-‐Defined (Target)
SP defined target idenNfiers
Project/Tenant
VPN SP managed infrastructure Public
Network SP-‐Local Network
Tenant owned network resources
Tenant created target idenNfiers
Tenant VM Tenant VM
Plug
Create
Create
“VPN” (Target) “Public” (Target) SP-‐Defined (Target) Tenant VM ID Route Table ID
Route Target
“Private” (Target)
L2 Network L2 Network L2 Network L3 Subnet L3 Subnet L3 Subnet
Associate
Route Table Route Table Route Table
Map
Amazon’s Virtual Private Cloud Model
Tenant view of private resources
• Led by CTO Office with support from extended OpenStack@Cisco Team.
• Quantum moving to an OpenStack core project as of Folsem Release.
• Cisco’s Quantum contribu+on available for download from OpenStack site.
• Current Development
• Quantum L3 service for Essex Release (April 2012) • Cisco specific plugins and drivers (NX-‐OS, UCS, Palo)
• Stabilize Nova, Glance, SwiG, Keystone for Essex (April 2012)
• Cisco Product Integra+on
• Cisco Cloud Portal & Intelligent Automa+on for Cloud
• OpenStack on Cisco Validated Design (CVD) being developed
• OpenStack website: • h]p://www.openstack.org
• Quantum resources: • Project wiki: h]p://wiki.openstack.org/Projects/
IncubatorApplica+on/Quantum • API Spec: h]p://wiki.openstack.org/QuantumAPISpec • Overview: h]ps://launchpad.net/quantum • Source code: h]ps://github.com/openstack/quantum
Cisco Resources for OpenStack
Ques+ons?