Scribd Logo
Hochladen

Willkommen bei Scribd!

  • Contrail Cloudstack PDF

    Hochgeladen von

    Son Tran Hong Nam
    24 Ansichten14 Seiten

    Originaltitel

    contrail-cloudstack.pdf

    Copyright

    © © All Rights Reserved

    Verfügbare Formate

    PDF, TXT oder online auf Scribd lesen

    Stufen Sie dieses Dokument als nützlich ein?

    Sind diese Inhalte unangemessen?

    Dieses Dokument melden

    Copyright:

    © All Rights Reserved
    Als PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    24 Ansichten14 Seiten

    Contrail Cloudstack PDF

    Hochgeladen von

    Son Tran Hong Nam

    Copyright:

    © All Rights Reserved
    Als PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    von 14

    SDN CONTRAIL

    ENABLING CLOUD
    Parantap Lahiri Suresh Balineni
    Sr. Director, Solutions Engineering Staff Engineer
    FUNDAMENTAL SHIFT: EVOLVING APPS

    Standalone Application
    Technology Scale-Out Evolving Applications
    (Dedicated Resources) Silo Model (on Resource Pool)

    Physical
    Servers Dynamic Virtual Network VM VM VM
    LB VM VM VM
    + VM VM VM
    Policies
    VLAN
    Service Orchestration COMPUTE POOL

    LBs
    VLAN ? STORAGE POOL
    FW
    IPS Policies
    FWs LB Service POOL

    VLAN

    SEGMENTED FW Service POOL


    NETWORKS ACLs
    Common Resource Pools (Datacenter & Beyond)
    Routers

    Virtual WAN
    Network
    External Cloud
    WAN WAN Based Resources

    2 Copyright 2013 Juniper Networks, Inc.


    BRIDGING PHYSICAL/VIRTUAL NETWORKS
    AUTOMATION, ANALYTICS
    CONVERGED NETWORK ORCHESTRATION

    CONTROL PLANE - PHYSICAL, VIRTUAL


    OPEN, STANDARDS-BASED,
    FEDERATED CONTROLLER SCALABLE, RESILIENT

    VIRTUAL NETWORK OVERLAY

    PRESERVE AND INSERT DYNAMIC SERVICES (FIREWALL, LB)

    PHYSICAL NETWORK
    INTEROPERABILITY WITH
    TRADITIONAL NETWORK DEVICES

    3 Copyright 2013 Juniper Networks, Inc.

    CONFIDENTIAL DO NOT DISTRIBUTE


    Legacy Datacenter Underlay

    L3 L3

    L2/L3 L2/L3 L2/L3 L2/L3

    Mul/-Chassis LAG
    TRUNK

    L2 Switch ToR L2 Switch L2 Switch ToR L2 Switch

    L2 L2 L2 L2 L2 L2 L2 L2 L2 L2 L2 L2

    VMs

    Servers
    Legacy Datacenter Limited VLAN Span

    L3 L3
    Rou/ng & Filtering
    Rou/ng & Filtering
    between VLANs
    between VLANs

    FW No VLANs Across L3 L2/L3 L2/L3 FW


    L2/L3 L2/L3
    LB LB

    Mul/-Chassis LAG
    TRUNK

    L2 Switch ToR L2 Switch L2 Switch ToR L2 Switch

    L2 L2 L2 L2 L2 L2 L2 L2 L2 L2 L2 L2

    VMs
    Servers
    VLAN Span Limit
    Legacy Datacenter
    No Mul/-tenant overlapping IP space support; NAT on HW Appliances

    L3 L3

    FW L2/L3 L2/L3 Single Rou/ng Table L2/L3 L2/L3 FW


    LB (No support for overlapping LB
    mul/-tenant space)

    Mul/-Chassis LAG
    TRUNK

    L2 Switch ToR L2 Switch L2 Switch ToR L2 Switch

    L2 L2 L2 L2 L2 L2 L2 L2 L2 L2 L2 L2

    VMs
    Servers
    VLAN Span Limit
    Legacy Datacenter
    Mul/-tenant Support with MPLS

    Tenant Specic
    Tenant Specic HW Appliance
    HW Appliance Services
    L3-MPLS L3-MPLS
    Services

    FW FW
    LB LB
    FW MPLS Enabled links
    LB FW
    LB
    L2/L3 -MPLS L2/L3 -MPLS L2/L3 -MPLS L2/L3 -MPLS
    FW MPLS with VRF for mul/-tenant
    FW
    LB isola/on
    LB

    Tenant-VRF Tenant-VRF
    Mul/-Chassis LAG
    TRUNK

    L2 Switch ToR L2 Switch L2 Switch ToR L2 Switch

    L2 L2 L2 L2 L2 L2 L2 L2 L2 L2 L2 L2

    VMs
    Servers
    VLAN Span Limit
    Typical L2 Overlay
    Hypervisor Switch only forward L2
    Separate VM based router perform rou/ng
    Separate VM based router perform NAT

    L3 L3 L3
    External Network
    External Network

    L3 L3 L3 L3

    L3 ToR L3 ToR L3 ToR L3 ToR


    VXLAN
    VXLAN VXLAN


    L2-SW L2-SW L2-SW L2-SW L2-SW L2-SW L2-SW L2-SW L2-SW L2-SW L2-SW L2-SW

    Servers
    Contrail Overlay
    = mul/-tenant VRF
    Hypervisor Router handles L2/L3
    Hypervisor Router perform na/ve rou/ng
    Hypervisor router perform na/ve NAT

    L3 L3 L3
    External Network External Network

    L3 L3 L3 L3

    L3 ToR L3 ToR L3 ToR L3 ToR

    vRouter vRouter
    vRouter vRouter vRouter
    vRouter vRouter vRouter
    vRouter vRouter vRouter
    vRouter
    L2/L3 L2/L3 L2/L3 L2/L3 L2/L3 L2/L3 L2/L3 L2/L3 L2/L3 L2/L3 L2/L3 L2/L3


    Servers Service Inser/on Service Inser/on
    Contrail Overlay Datacenter Abstrac/on
    Router
    L3VPN Internet

    L3 L3 L3

    L3 L3 L3 L3

    L3 ToR L3 ToR L3 ToR L3 ToR

    Tenant 3
    VN1
    Tenant 1 VN2
    VN1
    VN2
    Tenant 4
    Tenant 2 VN1 VN2
    VN1
    VN2
    Contrail Overlay Mul/-DC

    L3VPN MX Internet

    Tenant 3
    VN1
    Tenant 1 VN2
    VN1
    VN2

    Tenant 4
    Tenant 2 VN1 VN2
    VN1
    VN2

    IP Underlay

    vRouter vRouter
    vRouter
    L2/L3 L2/L3 L2/L3
    Datacenter 3
    Datacenter 1

    Datacenter 2
    CONTRAIL ON IP NETWORK

    REST/API

    Congura/on Management

    Control Plane Control Plane


    BGP Based Control Plane
    XMPP XMPP
    10.1.1.2:NH = 151.10.10.1; LBL = 17 10.1.1.1:NH = 70.10.10.1; LBL = 39

    10.1.1.1:NH = 70.10.10.1; LBL = 39 10.1.1.2:NH = 151.10.10.1; LBL = 17

    PubDstIP PubSrcIP PriDstIP PriSrcIP


    151.10.10.1 70.10.10.1 GRE LBL=17 10.1.1.2 10.1.1.1 PAYLOAD

    IP Network
    70.10.10.1 151.10.10.1

    10.1.1.2: NH = 151.10.10.1; LBL = 17 10.1.1.1: NH = 70.10.10.1; LBL = 39


    Agent Agent
    VRF (Dynamic Tunnel Encapsula/on) VRF (Dynamic Tunnel Decapsula/on)
    PriDstIP PriSrcIP 10.1.1.1 10.1.1.2 PriDstIP PriSrcIP
    10.1.1.2 10.1.1.1 PAYLOAD VM VM 10.1.1.2 10.1.1.1 PAYLOAD
    Server 1 Server 2
    12 *Outer MAC header was le_ out inten/onally to reduce clu`er 2013 Juniper Networks, Inc.
    Copyright
    CONTRAIL TECHNICAL APPROACH
    Orchestrator
    Cloud Orchestration

    Contrail Controller

    Congura/on Analy/cs
    JunosV Contrail
    Control Plane

    Virtualized Server Virtualized Server


    VM VM VM IP fabric VM VM VM Juniper & 3rd party Services *
    (underlay network)

    Hypervisor, Contrail vRouter

    Router
    VXLAN or MPLSoGRE/UDP
    Gateway
    XMPP
    External IP
    Network
    BGP, Netconf
    = Juniper and 3rd party services can also be physical devices (e.g. SRX) or hypervisor services (e.g. vGW)
    ** = Other Orchestration System support like Cloudstack, Customer OSS/BSS System
    13 Copyright 2013 Juniper Networks, Inc.
    SUMMARY SCALE-OUT NETWORKING SYSTEM
    Orchestrator
    (OpenStack)

    REST

    CONTRAIL System

    Analy/cs Analy/cs
    Node Node

    Congura/on Congura/on
    Node Node

    IF-MAP

    IBGP
    Control Control
    Node Node

    XMPP BGP, NETCONF

    Compute Gateway Service


    Node Node Node
    (Virtual Router) (MX, EX/QFX, ...) (SRX, Firey, JSP, ...)

    14 Copyright 2013 Juniper Networks, Inc.

    Das könnte Ihnen auch gefallen