Demonstration of OpenDaylight and OpenStack Integration
Creating and managing virtual networks that are flexible, secure,and scalable
ODL Summit 2016 - Red Hat booth demo
Ali Kafel Technical Product Marketing @akafel [email protected]
NFV MANAGEMENT AND ORCHESTRATION (MANO)
ELEMENT MANAGEMENT SYSTEMS (EMS)
OPERATIONS/BUSINESS SUPPORT SYSTEMS (OSS/BSS)
TOOLS AND RUNTIME FOR OSS/BSS INTEGRATION
+
VALIDATED VNF1 CERTIFIED VNF2 CONTAINER3
VNF VNF
OTHER VNF
DPDK4 VNF app
NETWORK FUNCTIONS VIRTUALIZATION INFRASTRUCTURE (NFVI)
NETWORK
Instance HA
SR-IOV6 EPA5 features
CERTIFIED OPENSTACK PLUGINS
CERTIFIED HARDWARE
Compute Storage Network
+DPDK
Open vSwitch (OVS)
SFC7
OpenDaylight
COMPUTE
Real-time KVM
STORAGE
• Software-defined networking (SDN)
• Software-defined storage (SDS)
NFV MANAGEMENT AND ORCHESTRATION (MANO)
SYSTEMS ADMINISTRATION, AUTOMATION AND LIFE-CYCLE MANAGEMENT
+
VIRTUAL NETWORK FUNCTION (VNF)
MANAGER(S)
VIRTUALIZED
INFRASTRUCTURE MANAGER(S) or VIMs
NFV ORCHESTRATOR
ENHANCED OPERATIONS AND HYBRID CLOUD MANAGEMENT
KEY
Red Hat component
Optional Red Hat component
Red Hat partner component8
Other vendor component
ODLispartofRedHat’soverallOpenStack/NFVSolu=on
1 Validated VNFs run on operating systems other than Red Hat Enterprise Linux. 2 Certified VNFs are tested, verified, and supported on Red Hat Enterprise Linux. 3 Future development. 4 partners can certify products through the Red Hat Connect for
Technology Partners program.
5 Enhanced platform awareness delivers performance improvements through CPU pinning, memory hugepages, and non-uniform memory access (NUMA) affinity.
6 Single-root input/output virtualization. 7 Service function chaining with OpenDaylight is in Technology Preview.
8 Red Hat partners can certify products through the Red Hat Connect for Technology Partners program.
● OpenStack Neutron ○ networking-odl ○ ODL ML2 Driver
● OpenDaylight ○ Neutron Northbound ○ NetVirt ○ MD-SAL ○ Southbound Protocols
■ OVSDB ■ OpenFlow
OpenDaylight NetVirt and OpenStack
● Security Groups ○ Stateful using conntrack ○ Stateless ○ Learn (for OVS-DPDK)
● NAPT ● SNAT ● IPv6 ● Layer 2 Gateway
● Merge of NetVirt and VPNService projects
● L2 ● L3 ● Auto-bridge creation ● Auto-tunnel creation ● Floating IP’s ● VLAN and Flat provider network
support for multiple internal and external networks
Features Delivered in Boron
● Unit tests, integration tests, CSIT ● Transparent VLANS ● VLAN aware VMs ● QoS metering ● SFC integration ● L3 support for hw_vtep ● traceroute responder for
distributed router interface
● Stateful NAPT using conntrack (OVS 2.6)
● OVS-DPDK stateful conntrack testing
● TOR configuration by ODL ● Dynamic ARP ● L2 and L3 pipeline reversal ● Flow based VxLAN tunneling
Carbon Roadmap
Demo Description
Demonstrate network virtualization using vxlan overlay, L3 and floating ip ● Three nodes in a single ova that can be consumed by vm players:
○ openstack control, compute, OpenDaylight, CentOS 7, devstack ○ openstack compute, CentOS 7, devstack ○ router for external access, CentOS 6.5
● Can be found later here: ○ https://wiki.opendaylight.org/view/NetVirt
Demo Topology
Network Topology of the demo
bidirectional traffic
OpenDaylight - NetVirt Pipeline
VM Dest IP
(21) L3 - FIB
Floating Dest IP
IP - Default Route
Non IP
Group Local VM
Group Remote VM
Associated SFIP
(28) SNAT (FIP)
Associated DIP
(27) DNAT (FIP)
(220) Egress
Dispatcher
(36) Internal Tunnel
(19) DMAC Service Filter
ARP
(80) Non IP
Non-ARP
Ing. ACL Service (1)
(17) Dispatcher
L2 Service (4) L3 Service 3)
(44) NAPT Inbound
(46) NAPT Outbound
(47) NAPT FIB
Unknown NAPT Known NAPT
Other DMAC L3 DMAC
VM port
(0) Classifier
Provider Network Internal Tunnel
BGPoMPLS GW
(18*) BGPoMPLS DHCP
(38*) BGPoMPLS (Ext Tunnel)
Output to Controller
Resubmit to Dispatcher (17)
Known SMAC
(50) L2 SMAC Learning
Unknown SMAC
Known DMAC
(51) L2 DMAC Filter
Unknown DMAC
Tunnel In Port
(52) L2 Unknown DMACs
VM In Port
Group Full BC
Group Local BC
L.Register + Egress
(55) Filter Equal
? Match - Drop
(42*) Ingress ACL
3
(41) Ingress ACL
2 Match Allowed
(40) Ingress ACL
Match Allowed Match Allowed
(251) Egress ACL
Match Allowed
(252) Egress ACL 2
(253*) Egress ACL 3
(25) PDNAT (FIP) Associated DFIP
Associated SIP
(26) PSNAT
(FIP) Unknown SIP
DHCP Non-DHCP
Output to OpenFlow port
Group Provider Network
IPv6 Service (2)
OpenDaylight - NetVirt Pipeline IPv6 ND for
Router Interface
(45) IPv6
Other packets
(20) LFIB
Interested in Learning More?
● Give it a Try ○ Available in Red Hat OpenStack Platform 10 ○ OpenStack NetVirt tutorials and Demo
■ Cut and paste URL below ■ https://wiki.opendaylight.org/view/
NetVirt#Getting_Started_with_OpenDaylight_Network_Virtualization ● Help Out Upstream
○ NetVirt Project ■ https://wiki.opendaylight.org/view/NetVirt
○ OVSDB Project ■ https://wiki.opendaylight.org/view/OVSDB_Integration:Main
THANK YOU plus.google.com/+RedHat
linkedin.com/company/red-hat
youtube.com/user/RedHatVideos
facebook.com/redhatinc
twitter.com/RedHatNews
Top Related