fut1744be the benefits of vmware integrated openstack … · · 2017-10-12production openstack up...
TRANSCRIPT
Hassan HAMADEMauricio VALDUEZA
FUT1744BE
#VMworld #FUT1744BE
The Benefits of VMware Integrated OpenStack for Your NFV Platform
VMworld 2017 Content: Not fo
r publication or distri
bution
• This presentation may contain product features that are currently under development.
• This overview of new technology represents no commitment from VMware to deliver these features in any generally available product.
• Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind.
• Technical feasibility and market demand will affect final delivery.
• Pricing and packaging for any new technologies or features discussed or presented have not been determined.
Disclaimer
2#FUT1744BE CONFIDENTIAL
VMworld 2017 Content: Not fo
r publication or distri
bution
Introductions
Mauricio Valdueza is an NFV Strategist for VMware, responsible for increasingmarket awareness and driving growth of VMware’s NFV solutions in existing andnew enterprise accounts across the EMEA region. Mauricio brings more than 30years of experience in the IT and telecoms sector to the team. Prior to joiningVMware in February 2016, Mauricio spent three years at Dell as a SDN/NFVEnterprise Technologist and four years at Dell as a Specialist Consultant
Hassan is a Cloud Solution Architect at VMware in the EMEA SDDC technologypractice team. He works with large entreprises and service provider customers ontheir cloud initiatives and projects with a focus on CMP (cloud managementplatform) frameworks such as vRealize Automation, VIO (VMware IntegratedOpenStack) and NFV MANO (management and orchestration).
3
VMworld 2017 Content: Not fo
r publication or distri
bution
Agenda
CONFIDENTIAL4
1 VMware vCloud for NFV
2 A word on NFV orchestration…
3 VMware Integrated OpenStack
4 VIO as an NFV VIMVMworld 2017 Content: N
ot for publicatio
n or distribution
VMware vCloud NFV
VMworld 2017 Content: Not fo
r publication or distri
bution
vCloud NFV
6
• VMware vCloud NFV is an ETSI compliant, fullyintegrated and modular solution for all NFV deployments.
• A solution that is built, tested and packaged basedon a published reference architecture usingmultiple VMware Products for the SP market.
• A Solution that supports Multi-vendor Virtual NetworkFunctions (VNFs) and VNF Orchestrators (VNFOs).
• A Common Platform Architecture that can be deployedacross Access, Transport and Core Networks.
• Sold as hard bundle configuration witha single SKU either directly by from VMware or throughOEM/NEP partners (DELL, Nokia and Ericsson) to CSPs
vCloud NFV 2.0 Reference Architecture
VMworld 2017 Content: Not fo
r publication or distri
bution
7
VMware products mapping to ETSI NFV
VMware
Integrated
OpenStack
vCloud Director
VMworld 2017 Content: Not fo
r publication or distri
bution
vCloud NFV 2.0: Choice of Virtual Infrastructure Managers
8
Choice, Flexibility & Full Control of VIM Evolution Path and Timeline
VMware vCloud Director SP VMware Integrated OpenStack
VMworld 2017 Content: Not fo
r publication or distri
bution
NFV Orchestration
VMworld 2017 Content: Not fo
r publication or distri
bution
WHY do Service Providers need Orchestration ?
10
VMworld 2017 Content: Not fo
r publication or distri
bution
WHAT do Service Providers orchestrate ?
11
VMworld 2017 Content: Not fo
r publication or distri
bution
A deeper look at the VIM in NFV Architectures
Functions
• An Über Resource ManagerIaaS provider (network, compute and storage) to northbound layers
• Enforces of multi-tenancy
Resource guarantees, fine-grained policy controls
• Exposes a Northbound API to NFV MANO
Covers the deployment and management
of the complete VNFs lifecycle
Requirements
• Carrier-gradeness
Minimal downtime (5*9s), HA/resiliency, ease
of operations, performance, scalability, etc…
12
VMworld 2017 Content: Not fo
r publication or distri
bution
A VIM in action
13
Basic NFV orchestration workflow
RE
ST
Infr
astr
uctu
re Multi-tenancy
Infrastructure Modeling
Inventory
Management
NFVO
Orchestrator
VNF4 VNF5VNF 3VNF 2VNF1
NFVO API
REST Infrastructure
Specific
Components
Service
Chaining
Manager
Element
Management
NetConf/YANG
NetConf/YANG
NFVI API VIMVNFManager
NFVO API
VMworld 2017 Content: Not fo
r publication or distri
bution
14
VMworld 2017 Content: Not fo
r publication or distri
bution
VMware Integrated OpenStack
VMworld 2017 Content: Not fo
r publication or distri
bution
VMware is OpenStack!
VMware Integrated OpenStack
OpenStack Ocata Release
CLI / API HeatHorizon
VMware Optimized
OpenStack Install
+
Management
+
Upgrade
VMware SDDC
Nova Cinder Glance Neutron
vCenter vCenter vCenter
VSAN / vSphere Datastores / vVols
NSX
vRealize Operations
vRealize Business
vRealize Log Insight
• A VMware Distribution.
• Simple Installation.
• Rich Infrastructure Features.
• Supported by vRealize Operations.
• Log Insight for Diagnostics.
• Hardened and Tested by VMware.
• Single Vendor Support.
Production OpenStack Up and Running in 15 mins.
vCenter
VMworld 2017 Content: Not fo
r publication or distri
bution
17
Simplify OpenStack
Operations
VMware SDDC(vSphere, NSX, VSAN, vROps, LI…)
OpenStack Value
Battle-testedInfrastructure & Operations
Differentiated
Features
Standard, Production Ready &
Fully Supported OpenStack
VMware Integrated OpenStack Approach
CONFIDENTIAL
VMworld 2017 Content: Not fo
r publication or distri
bution
Virtual Infrastructure
What is VMware Integrated OpenStack (VIO) ?
• It’s OpenStack!
– Not a “proprietary distribution”
– DefCore API compliant (From Trunk)
• Preconfigured drivers & plugins for VMware infrastructure technology
– vSphere
– NSX
– VMDK (any datastore – VMFS, NFS, VSAN)
• Free license with vSphere Enterprise/Plus
Framework
OpenStack APIs
VMDK
Driver
vCenter
Plugin
NSX
VMFS
NFS
vSAN
vSphere
Physical Infrastructure
NSX
Plugin
VMworld 2017 Content: Not fo
r publication or distri
bution
CONFIDENTIALVMware SDDC
VMware Integrated OpenStack
What is VMware Integrated OpenStack (VIO) ?
• VIO is an “Integrated Product” Approach to OpenStack
• Standard OpenStack Distribution (delivered as OVA)
• Deploys & Manages Proven Production Architecture on VMware SDDC
• Fully Supported by VMware
Standard OpenStack
Nova Neutron Cinder
Keystone HeatHorizon Ceilometer
Glance
VIO Management
Server(Deploy, configure, patch,
upgrade …OpenStack)
vSphere NSX vSphere Datastores:
3rd-party / Virtual SAN
19
VMworld 2017 Content: Not fo
r publication or distri
bution
VIO Deployment Approach
21
vCenter Server
Management Cluster Compute Cluster 1 Compute Cluster 2
OpenStack
Mgmt
Server
(OMS)
1. Import OVA and power on
2. Configure IP parameters
VMworld 2017 Content: Not fo
r publication or distri
bution
Ubuntu
VMware
Integrated
OpenStack
Manager
OpenStack Deployment
Nova Neutron Cinder
Glance Keystone Swift
Heat
Ceilometer
Load
Balancers
Management from within vCenter
22
vCenter Server
Compute Cluster 1 Compute Cluster 2
Tenant VMs Tenant VMs
Management Cluster
VMworld 2017 Content: Not fo
r publication or distri
bution
Slim Full HA Control Plane Architecture
Users (+ cloud brokers, etc.)
External network (API Access)
Load Balancers (HA pair)
Public Virtual IP
Private Virtual IP
management network
OS
Controller 2
OS
Controller 1
OS API / Horizon Nodes (active/active)
OpenS
tack c
ore
vS
phere
/ VIO
mgm
t
NSX
Manager
vCenter /
SSOVIO
Manager
OS mpute 2
Nova
Compute 1N times Nova Compute
(per vSphere Cluster)
DB 1
DB 2
(active/active DB Cluster)
DB 3
vSphereCluster(s)
vSphereDatastores
vSphereDatastores
vSphere Datastoresfor Glance (Images)
VMworld 2017 Content: Not fo
r publication or distri
bution
VIO Upgrade Process
External network (API Access)
Load Balancers (HA pair)
Public Virtual IP
Private Virtual IP management network
OS
Controller 2
OS
Controller 1
OS API / Horizon Nodes
(active/active)
memcache 1
memcache 2
RabbitMQ 1
RabbitMQ 2
(active/active)
(active/active)
OS mpute 2
Nova
Compute 1N times Nova Compute
(per vSphere Cluster)
DB 1
DB 2
(active/active DB Cluster)
DB 3
OpenStack core
vSphere Web Client provides a new tab: upgrade
(upwards arrow is the upgrade button)
Step
2
CLI at OMS (OpenStack Management Server)
stage the patch and upgrade OMS
Step
1
sudo viopatch add …
sudo viopatch list …
sudo viopatch install …
vSphere / VIO mgmt
NSX
Manager
vCenter /
SSOVIO
Manager
1) Optional customer experience program
2) Configure new deployment name
3) Configure (temp.) LB addresses
4) Verification and go
Upgrade Wizard (4 steps)Step
3
VMworld 2017 Content: Not fo
r publication or distri
bution
VIO Upgrade Process
External network (API Access)
Public Virtual IP
Private Virtual IP management network
vSphere / VIO mgmt
NSX
Manager
vCenter /
SSOVIO
Manager
New (prepared)
vSphere Web Client
Right click existing OpenStack and „migrate data“
Step
4
Old
Old (running)
Load Balancers (HA pair)
Temp
Verify new deployment via temp. LB addressStep
5vSphere Web Client
Switch to new deployment
Step
6
VMworld 2017 Content: Not fo
r publication or distri
bution
DAY 2: vRealize Operations & Log Insight
26
Learned Behavior Real-time Events Expected Demand
AgilityEfficiency Visibility
VMworld 2017 Content: Not fo
r publication or distri
bution
VIO as VIM solution for NFV
VMworld 2017 Content: Not fo
r publication or distri
bution
NVF is not Cloud ComputingThe network differs from the computing environment in 2 key areas:
Data plane workloads
HIGH demands
Network requires shape
E2E interconnection
HIGH AND PREDICTABLE
PERFORMANCE
GLOBAL NETWORK VIEW
for MANAGEMENT VMworld 2017 Content: Not fo
r publication or distri
bution
29
VMworld 2017 Content: Not fo
r publication or distri
bution
NFV vs Cloud. Performance Figures (even 100 time faster)
30Source: Telefonica
Even large frame sizes cannot hide the actual difference between both scenarios.
VMworld 2017 Content: Not fo
r publication or distri
bution
Dual Socket Technology
31
QPI
NUMA1
NUMA1CORE 0
TH1 TH2
LI /L2 Cache
CORE nTH1 TH2
LI /L2 Cache
CORE
TH1 TH2
LI /L2 Cache
CORE
TH1 TH2
LI /L2 Cache
I/0 I/0I/0
NUMA0CORE 0
TH1 TH2
LI /L2 Cache
CORE nTH1 TH2
LI /L2 Cache
CORE
TH1 TH2
LI /L2 Cache
CORE
TH1 TH2
LI /L2 Cache
I/O Controller
I/0I/0
Memory Controller
Memory
Memory
VMworld 2017 Content: Not fo
r publication or distri
bution
Dual Socket Technology
32
QPI
NUMA1
NUMA1CORE 0
TH1 TH2
LI /L2 Cache
CORE nTH1 TH2
LI /L2 Cache
CORE
TH1 TH2
LI /L2 Cache
CORE
TH1 TH2
LI /L2 Cache
NUMA0CORE 0
TH1 TH2
LI /L2 Cache
CORE nTH1 TH2
LI /L2 Cache
CORE
TH1 TH2
LI /L2 Cache
CORE
TH1 TH2
LI /L2 Cache
I/0 I/0I/0
I/0I/0
I/O Controller
Memory Controller
Memory
Memory
Mem
ory
Mem
ory
Mem
ory
Mem
ory
Mem
ory
Mem
ory
QPI
QPI
To 9.6GT/s
I/0 I/0I/0
I/0 I/0I/0
Local
Remote
~ 70ns
~ 130ns
NUMA Awareness
CPU Pinning
Minimize QPI usage Full I/O Assignment
Enable Hugepages
E.P.A. (Enhanced Platform Awareness)(NUMA) Non Uniform Memory Access
VMworld 2017 Content: Not fo
r publication or distri
bution
VMworld 2017 Content: Not fo
r publication or distri
bution
VMware and OpenStack: Best of Both Worlds
Out of the box integration with VMware SDDC Stack
Most Proven NFV Infrastructure in Production
OpenStack Standard Northbound Interface and API’s
2017.01 Compliant OpenStack Distribution
VMworld 2017 Content: Not fo
r publication or distri
bution
vCloud NFV OpenStack - Key Differentiators
Seamless
Upgrades
Zero Service downtime during upgrades and patching
Control and Data Plane Separation
Hitless Upgrade with vCenter maintenance mode
Simplified
Installation
Fastest path to fully operational OpenStack environment
Seamless Experience with vCenter Integration
Templated install and deployment with few clicks
Intelligent
Operations
360 degree visibility
Proactive and Predictive Analytics
Root Cause Analysis (RCA) and fast remediation
VMworld 2017 Content: Not fo
r publication or distri
bution
VMware vCloud NFV - OpenStack Edition
vRealize Log Insight [4.3]
vSphere [6.5 U1]
VIO Carrier Edition [4.0]
vSAN [6.6]
vCenter Server [6.5]
NSX [6.3.3]
vRealize NI [3.3]
SRM [6.5.1]
Compute
Storage
Operations Management
& Analytics
VIM & Cloud Management
Networking
Network Analytics
Cloud Management
Site Recovery
Management
vRealize Operations [6.5]
NFV (RA) Reference Architecture - OpenStack Design for Carrier Deployments
- Performance Tuning Guidelines
Carrier Grade Support- SLA based support
NFV Certification Program for OS- VMware Ready for NFV
- Interoperability Validation
Orchestration and OSS extensions- ONAP, OSM, integration
- Service Assurance/Analytics integration
VMworld 2017 Content: Not fo
r publication or distri
bution
VMware Integrated OpenStack-CE Key Capabilities
Telco/NFV Features
Core VIO 4.0 Features
Dynamic Scaling Enhanced Platform Awareness
Ocata Based
Enhanced NetworkingMulti Tenancy
Advanced Logging & AnalyticsScalability and HA
Native Containers SupportVMworld 2017 Content: N
ot for publicatio
n or distribution
38
Enhanced Platform AwarenessIncreased Data Plane performance
CPU Pinning
• Driving predictable characteristics for latency sensitive workloads / VNFs
NUMA Placement
• Increased VNF performance through optimized system resource alignment
SR-IOV
• Line-rate performance through pass-through
Huge Pages
• Reduced memory access overhead through page-size up to 2MB
Superior performance throughput
Lowest possible latency
Optimized system resource utilization
VMworld 2017 Content: Not fo
r publication or distri
bution
39
Secure Multi-TenancyResource level tenant isolation and guaranteed resource availability
Tenant_vDC for VNF Resource Allocation
• CPU & Memory capacity carve out
• Compatible with OpenStack ‘Flavor’
Flexible Resource Reservation Policy
• Pay-as-you-go
• Reservation Pool
• Allocation Pool
Improved capacity planning and Utilization
Increased SLA per VNF
Secure Isolation
Virtual SAN NSXvSphere
VMware
Integrated
OpenStack
TvDC A TvDC B TvDC C TvDC D
Tenant 1 Tenant 2 Tenant 3
Availability Zone 1
Availability Zone 2
VMworld 2017 Content: Not fo
r publication or distri
bution
40
Advanced NetworkingSupport for multiple NIC types and Guest VLAN tagging
Multiple NIC type support
• Choice of Virtual NIC or Direct pass-through interface
• Flexible mix and match between data plane and control plane functionality
Guest VLAN tagging
• Allows VMs to insert custom VLAN tags
• Enable legacy to virtual transition
VNF choice in network interface type configuration
Enablement of legacy telco VNFs
Optimized intra-VM communication
VNF
vSwitch
Hypervisor
Management Plane
Control Plane
DataPlane
Directpass-throughinterface
C
VMworld 2017 Content: Not fo
r publication or distri
bution
41
Dynamic Scaling
Resize running VMs to respond to dynamic network traffic
Support for Auto-scaling
• VNF scaling based on workload demand
• Tighter closed-loop automation with NFV-O and VNF-M
• Integrated Operations Management real-time indicators through Ceilometer integration
VNF Live Resize
• Hot Add: Dynamic add for incremental CPU and memory capacity to VMs under load
• Full compatibility with Advanced vSphere Operations (vMotion)
Respond to change in traffic conditions
Avoid VM restart on capacity increase
Secure Isolation
vCPU vCPU
vCPUvCPU
vCPU vCPU
vCPUvCPU
vCPU vCPU
vCPUvCPU
vCPU vCPU
vCPUvCPU
vCPU vCPU
vCPUvCPU
vCPU vCPU
vCPUvCPU
vCPU vCPU
vCPUvCPU
vCPU vCPU
vCPUvCPU
vCPU
vCPU
vCPU
vCPU
Compute Node A Compute Node B
Live Resize command for 2 additional vCPUs
VM location after being resized
VMworld 2017 Content: Not fo
r publication or distri
bution
42
Containers SupportIntegrated Kubernetes Support
Fully integrated Container Support
• Integrated K8S support with rolling upgrades to latest distribution
• K8S Lifecycle Management
Enterprise Ready
• Built in Security, HA and Scale
Persistent Storage
Native Container Networking
• LB as a Service (LBaaS)
• NSX-T native integration
Day 2 Operations
• Self Healing and Monitoring
• Elastic Scaling for K8S Clusters
• Rolling upgrades to latest K8S release
VIM
VNFs
VM VM VM
VM VM VM
VM VM VM
CC
C
C C
CC C C
C C C
C CC
C
NFV-O
NFVI
vSANvSphere NSX
Integrated OpenStack
VMworld 2017 Content: Not fo
r publication or distri
bution
43
Advanced Logging & Analytics
Native Integration with vRealize
• Operations (vROps)
• Log Insight (vRLI)
• Network Insight (vRLI)
KPI export through Ceilometer
• Feedback Loop Enablement
Single pane of glass for entire NFV Infrastructure
• 360 Degrees Visibility
Proactive Issue Isolation and Troubleshooting
Out-of-box OpenStack dashboards
• OpenStack services (Nova, Neutron, Keystone, etc..)
vRealize Network Insight
vRealize Log InsightvRealize Operations
vRealize Business
VMworld 2017 Content: Not fo
r publication or distri
bution
44
Ecosystem of Certified VNF’sVMware Ready for NFV
VMware Ready for NFV
Certification Program
• Test reports published on VMware Solution Exchange
45 Certified VNF’s
20+ Already certified on VMware Integrated OpenStack
Acceleration
&
Time to Market
VMworld 2017 Content: Not fo
r publication or distri
bution
VMworld 2017 Content: Not fo
r publication or distri
bution
VMworld 2017 Content: Not fo
r publication or distri
bution