v mware nsx_network_virtualization_open_stack
TRANSCRIPT
1 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
VMware NSX & OpenStack Integration Somik Behera Twitter: @Strikesme
2 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
Agenda
OpenStack on VMware • OpenStack on VMware philosophy
OpenStack Network (Neutron) & VMware NSX • Brief history of OpenStack Neutron project
• Technical Overview: OpenStack Neutron
• Technical Deep Dive: OpenStack Neutron & NSX Integration
Demo - OpenStack & VMware NSX in Action Conclusion: Why OpenStack & VMware NSX • NSX Integrated OpenStack Partners
• NSX & OpenStack in Production
3 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
VMware Philosophy on OpenStack
Customer Choice • VMware supports Customer choice. • Our support for OpenStack enables choice
OpenStack • An open framework for building clouds • Assembles a solution from underlying
Compute, Network, Storage components. • Can be managed and automated using many
solutions.
An Opportunity for VMware SDDC • VMware SDDC provides best-in-class
Compute, Network, Storage & management solutions for OpenStack.
• We view OpenStack as an opportunity for VMware SDDC portfolio.
Public Clouds
Private Clouds
Hybrid Cloud Seamlessly extend your data center to the public cloud
Virtual Workspace Manage access to services, applications and data for any device
The Foundation for IT: Software Defined Datacenter
Software-Defined Data Center Virtualize the entire data center
Management and Automation Storage and Availability Compute Network and
Security
4 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
VMware Technologies and OpenStack Tenant-Side
Operator-Side
Benefits of OpenStack API & Ecosystem
Choice of best-in-class virtualization & management technologies
Horizon ( Web Portal )
vSphere & vCenter
CLI Tools & Scripts (DevOps Automation)
vCAC Application Director
Nova (Compute)
Neutron (Network)
Cinder (Block Storage)
Glance (Image Store)
NSX vSAN vCenter (Image Catalog)
Cloud Operator Tools (vCenter, vCOPs, Log Insight etc.)
Third Party Operator tools (Puppet/Chef, scripts, nagios...)
OpenStack or 3rd Party Component VMware Component
5 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
OpenStack Network (aka Neutron)
6 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
Brief History: OpenStack Neutron Project is
born!
1st experimental release accepted for incubation
1st NVP plugin release
Beyond L2: IPAM & L3 APIs
Nova-network feature parity Load balancing APIs
FW APIs VPN APIs
Nicira, Cisco, Rackspace and others launch Quantum
4/2011 9/2011 3/2012 9/2012 3/2013 9/2013
Accepted as OpenStack core project
NSX Plugin Havana:1980 commits
(and counting…)
Grizzly: 1414 commits
Folsom: 816 commits
Essex: 521 commits
Diablo Essex Folsom Grizzly Havana
7 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
Why OpenStack Neutron? Give tenants control over networking
• Provide technology-agnostic tenant API to manage virtual network topologies
Leverage advanced network technologies • Traditional approach (‘Nova-network’) provides
only basic technologies • VLANs are only option for multi-tenancy • “network controller” node is centralized single-point
of failure for large networks.
Who needs private networks? Trunking all VLANs is a great idea!
- Stone Age Man
8 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
What is OpenStack Neutron?
An API allowing cloud tenants to: • Define advanced network topologies
in the cloud • Manage IP addressing • Monitor network status • Define security and quality-of-service
policies • Configure advanced network services
A framework for leveraging advanced technologies
• Based on a ‘plugin’ mechanism
9 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
Reference OpenStack Neutron Architecture
Authentication & Authorization via OpenStack keystone
Core Neutron API API Extensions
Horizon Web UI Neutron CLI Heat - Orchestration Other tools API Tools
Open vSwitch
Nova Compute
Open vSwitch
Nova Compute
Open vSwitch
Nova Compute
Open vSwitch Plugin Layer-2
Agents
Interfaces from Nova plug into a
switch managed by the Neutron
plugin.
Neutron Pluggable Backend layer Open vSwitch Plugin
OpenStack Neutron API Server • Integrated AuthN/AuthZ with
OpenStack Keystone • Integrated out of the box NSX
Plugin • Advanced feature API
extensions.
10 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
Logical topologies enabled by Neutron APIs
Net_B1 192.168.0.0/24
DHCP DHCP DHCP
Net_A1 10.0.0.0/24
Net_A2 10.0.1.0/24
External Network
Router_A Router_B
Tenant “A”
VM_3 192.168.0.3
VM_2 10.0.1.3
VM_1 10.0.0.3
Tenant “B”
External Network
Net_A2 10.0.1.0/24
11 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
OpenStack Network (aka ‘Neutron’)
& VMware NSX
12 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
Brief History: VMware contributions to OpenStack Neutron
Folsom Havana
(in progress)
Grizzly
13 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
Why run OpenStack Neutron on VMware NSX HA & Scale
What? • Scale-out architecture with
sub-second HA Why?
• Distribute workloads without Networking boundaries
Performance What?
• Distributed architecture and efficient encapsulation
Why? • Get most out of your
existing 10GE NW & NICS
Enterprise-class features What?
• Gateways, QoS, BUM offload and many others
Why? • Eases cloud deployment &
integrates existing workloads.
Operational Agility What?
• Single pane of glass & operational model.
Why? • Better sleep at night
knowing support has tools to do their job.
14 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
Virtual Networks Virtual Networks
Physical or Virtual Workloads
Any Application
VMware NSX with OpenStack ‘Neutron’ Architecture
Overlay Transport
NSX vSwitch
NSX Controller & API
NSX Gateway
Any Network Hardware
Any Hypervisor
Phys
ical
to
Virtu
al
Virtual Networks
Authentication & Authorization VMware NSX Plugin for OpenStack Neutron
Core Neutron API API Extensions
OpenStack Neutron API Server • Integrated
AuthN/AuthZ with OpenStack Keystone
• Integrated out of the box NSX Plugin
• Advanced feature API extensions.
Horizon Web UI Neutron CLI Heat - Orchestration Other tools API Tools
15 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
VMware NSX & OpenStack Demo!
16 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
OpenStack Neutron on NSX demo – Logical Topology
DHCP Service DHCP Service
Private_1 Private_2
VM_1 VM_2
my_router
Floating IP (Destination NAT to Private IP)
Public
Private IP
Source NAT for Public Network access
17 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
Summary
18 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
NSX Integrated OpenStack Partners
NSX Controller
NSX API
Partner Extensions Network Security Platform
Network Gateway Services
Application Delivery Services
Security Services
+ Cloud Mgt Platforms
19 © Copyright 2014 EMC Corporation. All rights reserved. © Copyright 2014 EMC Corporation. All rights reserved.
Select OpenStack & VMware NSX customers
1 2 Public Clouds Enterprise Private Clouds