openstack orchestrated service chaining · openstack orchestrated service chaining ... openstack...
TRANSCRIPT
OpenStack Orchestrated Service ChainingSu-Hun YUN, Hideyuki Tai, Masashi Kudo
NEC
#ODSummit
Agenda
• Virtual Tenant Network (VTN) in ODL• VTN models
• Service Chaining
• OpenStack integration
• Demo
#ODSummit
Service Chaining with Virtual Tenant Network
#ODSummit
OpenDaylight Virtual Tenant Network (VTN) Project
#ODSummit
VTN
Coordinator
VTN
Manager
・Provides VTN API (Northbound)
・Builds VTN models using
OpenDaylight API
・Controls multiple SDN controllers
VTN Coordinator:
・Enables multi tenant
・End-to-end dynamic path control
VTN Manager:
#ODSummit
• Network virtualization for multi tenant, traffic isolation, abstraction of physical network
VTN (Virtual Tenant Network)
#ODSummit
DDoS
Server-D
LB
OFS
WAN Optimizer
Virtual
Physical
Server-B
Server-BServer-A
WAN Optimizer FW
VTN #1
Server-C
Server-A
FW
Server-DServer-C
DDoSVTN #2
FW
OFS
LB
ODL Controller
Policy Target Description
VTN logical representation of virtual network
Virtual node
(vNode)
vBridge logical representation of L2 switch function
vRouter logical representation of L3 router function
vTerminalLogical representation of virtual node that is connected to an interface mapped to a physical port
vTunnellogical representation of Tunnel (consists of vTEPs and vBypass(es))
vTEP logical representation of Tunnel End Point (TEP)
vBypasslogical representation of connectivity between controlled networks
Virtual Interface
Interfacerepresentation of end point on the virtual node (VM, servers, appliance, vBridge, vRouter, etc)
VTN Models
#ODSummit
Intent based actions
#ODSummit
VTN
•Define matching conditions •Apply intent and actions
Traffic
Redirect(Eg. Service Chaining)
Forward(Eg. To destination Port)
Mark(Eg. QoS)
Drop(Eg. ACL)
Traffic redirection
#ODSummit
Intent
Redirect traffic
Server-BServer-A
Tenant1vBridge1
vtn Tenant1{vbridge vBridge1{
flow-filter in{
sequence-number 1{match flow-list match-list-aaction redirectredirect-destination vTerminal1 interface if1
}(snip)
}
Server-C
vTerminal1
192.168.10.3
VTN Model
Service Chaining on VTN
#ODSummit
DDoS
Server-D
LB
OFS
WAN Optimizer
Virtual
Physical
Server-B
Server-BServer-A
WAN Optimizer FW LB
Server-C
Server-A
FW
Server-DServer-C
DDoS FW
OFS
VTN #1
VTN #2
ODL Controller
OpenStack and VTN
#ODSummit
OpenStack and VTN
#ODSummit
Neutron
Neutron Interface
ML2 Plug-inGUI
VTN Coordinator
OVSDB
VTN Manager
OpenStack
ODL
App
MD-SAL
OpenFlow
OVS Switch OVS
Applications
Service
Chain Policy
Switch
REST API
OpenStack and VTN : Automatic mapping
#ODSummit
Neutron
Neutron Interface
ML2 Plug-inGUI
VTN Coordinator
OVSDB
VTN Manager
OpenStack
ODL
App
MD-SAL
OpenFlow
OVS Switch OVS
Applications
Service
Chain Policy
Switch
REST API
FWVM
network -> VTNsubnet -> vBridgeport -> interfaceport mapping
Create FW as VM
Ready for service!
OpenStack and VTN: service chaining
#ODSummit
Neutron
Neutron Interface
ML2 Plug-inGUI
VTN Coordinator
OVSDB
VTN Manager
OpenStack
ODL
App
MD-SAL
OpenFlow
OVS Switch OVS
Applications
Service
Chain Policy
Switch
REST API
FWVM
match condition: filter = xyzaction: redirect to FW
Match condition & action
Flow xyz needs to go through FW
Demo
#ODSummit
Service Chaining on VTN
#ODSummit
DDoS
Server-D
LB
OFS
WAN Optimizer
Virtual
Physical
Server-B
Server-BServer-A
WAN Optimizer FW LB
Server-C
Server-A
FW
Server-DServer-C
DDoS FW
OFS
VTN #1
VTN #2
ODL Controller
Demo Features
• Seamless integration with OpenStack
• Ability to insert service functions dynamically
• Not require NSH capability, work with OpenFlow switches
• Ability to visualize list of end-to-end flows
#ODSummit
Demo Software Components
• OpenDaylight Lithium• odl-vtn-manager-rest enabled
• odl-vtn-manager-neutron enabled
• VTN Coordinator
• GUI for VTN Coordinator
• OpenStack Juno
#ODSummit
Deployment
#ODSummit
OpenStack (Control Node)
OVS
OpenStack (Compute Node)
VMService
Function
OpenDaylight
GUI Service Chain PolicyDemo Operation
VTN Manager
OpenFlow Switch OpenFlow Switch
OpenFlow Switch OpenFlow Switch
OpenFlow SwitchOpenFlow Switch
VM
Applications
OVS
VMService
FunctionVM
MD-SAL
Neutron InterfaceNeutron
ML2 Plug-in
VTN Coordinator
OVSDB OpenFlow
Thank You
#ODSummit