hands-on lab: test drive your openstack network

OpenStack Summit | Austin, TX

OpenStack Networking: Hands-on Lab

Copyright © PLUMgrid, Inc. 2011-20162

IntroductionSpeaker(s)

Sr Director Product & Solution Marketing, PLUMgrid

Valentina Alaria

Part of the OpenStack community for 6+ years and has worked with 100s of users throughout their journey of learning, designing and deploying OpenStack-based cloud solutions. A product innovation strategist and technology evangelist, Valentina has 10+ years experience with Cloud and Datacenter Infrastructure and has been involved with SDN since the early days throughout her endeavors at PLUMgrid, Nicira and Cisco.

System Engineer, PLUMgrid

Jamal Arif

Jamal Arif is a self-motivated and passionate professional having 5+ years of experience in Cloud & Data Center technologies, Telecommunications, Virtualization and Software Defined Networking.

He has been a part of the OpenStack Community for last couple of years with more focus in building SDN based OpenStack Private/Public Cloud infrastructures for enterprises, telcos, & service providers etc.


• OpenStack Networking Refresher• PLUMgrid Plugin• Hands-on Lab• Next Steps

Agenda

OpenStack Networking Refresh


• Provide Network as a Service

• Provide Operator & Tenants ability to

create and offer rich network topologies

and configure advanced policies

• Offer a technology agnostic layer while

enabling vendor extensions

• Support for advanced services

Why Neutron?

Compute StorageNetwork


OpenStack Neutron Architecture Components

Neutron Server

Core APIs API Extensions

Plugins


Neutron API Flow

Neutron Server Plugin

Backend Implementation

(controllers, agents,

appliances)Neutron API Request


What can users do with Neutron?

Provide external connectivity (e.g. Internet)

to workloads

Interconnect networks with routers

Create multi-tenant networks with private IP

space

Connect workloads to each network


• Created by end-users• Details of how they are “implemented” are hidden from the users• VMs can connect to tenant networks• Supported types: flat, local, VLAN, Overlay based

Tenant Network


• Created with admin credentials• Specify they physical implementation and usually map to existing

data center constructs• VMs can connect directly to provider networks (burning IPs of

physical infra) or via an external network and floating IP/NAT• Provide connectivity with legacy network

Provider Network

Mapping OpenStack to PLUMgrid


You always need to select a plugin


“Overlay-based” Networking Model

• Multi-tenancy achieved by “overlaying” MAC-in-IP ‘Tunnels’ onto the physical switch fabric (underlay, transport network)

• Encapsulation header (VXLAN, NVGRE, STT) convey tenant network ID to enable full isolation and overlapping IP Address spaces support

• Software layers to implement routing / switching operations within and across tenant networks


PLUMgrid Open Networking Suite

Internet

IO Visor Gateway

IO Visor Edges (Compute Nodes)

PLUMgrid Directors

VXLAN-based Overlay

PLUMgrid CloudApex & OpsVM


From OpenStack Networks to Virtual Domains

OpenStack Networks Virtual Domains


PLUMgrid Virtual Network FunctionsDistributed Virtual Network Functions Description

Connector • Connectivity: External, Port Bundle (“Multi-gateway LAG”), Appliance and Inter Virtual Domain

Bridge • Distributed Layer 2 network function• Connects VMs on same IP subnet inside Virtual Domain• Include Private VLAN functionality

Router• Distributed Layer 3 network function• Connects VMs from different subnets inside a Virtual Domain• Includes Dynamic Routing Protocols (RIP, OSPF, BGP)

DHCP • Distributed DHCP function for dynamic IP Address allocation• Associated on per Bridge basis

NAT • Distributed Network Address Translation function• Supports Inbound / Outbound, Many to One, One to One NAT

Security Policies • Distributed Layer 4 Security network function• Substitute for Layer 4 ACLs / Firewalls

DNS • Distributed Domain Name Service

Hands-on Lab


• Check you have following:• IP Address• Password

• Hands-on Lab Guide

Login Information

• If you have VNC client – Good• If you don't have VNC Client

• Download Real VNC Viewer

• If Macbook • Open Safari Browser

• vnc://xxx.xxx.xxx.xxx• Put username and password


Hands-on Lab Step by Step

Set up a network topologyfor 3 tier app cloud with

web, app, db

Create multiple projectsin OpenStack


Hands-on Lab Step by Step

Monitor and troubleshoot Modify security group and ingress/egress forwarding

policies

Enable external connectivity

Next Steps

PLUMgrid Certified OpenStack Networking Associate

Design Center Transformation

OpenStackOveriew

OpenStackNetworkingIntroduction

Hands-on LabTraining

Register Today! www.plumgrid.com/plumgrid-university

HANDS-ON

23


Hands-on Lab

Overview Environment

Use Case

What to Expect

Multi-tenant Virtual Network Infrastructure for Private Clouds

Strict isolation & micro-segmentation

Rich portfolio of networking functions

On-demand creation of networks via CMS

In-depth control over network functions

Visit Us @ Booth C21

THANK YOU!

www.plumgrid.com

hands-on lab: test drive your openstack network

Technology