SlideShare une entreprise Scribd logo

OpenStack Network Planning

Télécharger en tant que PPTX, PDF
Hui Cheng
Hui Cheng

Session about OpenStack Network Planning by Yong Peng in the 2012 OpenStack APAC Conference

Technologie
1  sur  25
Openstack网络规划 { 构建有弹性的、可扩展的共有云网络平台 @公云彭勇 ppyy@pubyun.com
目录 挑战和选择 Vlan规划 IP地址规划 PubYun参与openstack
亚马逊aws的规模 数据来源:http://venturebeat.com/2010/08/03/ amazon-web-services-generating-an-estimated-500m -in-revenue-thanks-in-part-to-growth-of-social-games/
亚马逊aws的规模  2011年aws营收$1.2billion  2012第一季度$500million  2012年aws预计$2billion
亚马逊aws的规模 数据中心 机架数量 服务器数量 US East (Virginia) 5030 321920 US West (Oregon) 41 2624 US West (N. California) 630 40320 EU West (Ireland) 814 52096 AP Northeast (Japan) 314 20096 AP Southeast (Singapore) 246 15744 SA East (Sao Paulo) 26 1600 Total 7100 45440 分析来源:http://huanliu.wordpress.com/2012/03/13/amazon-data-center-size/
挑战  高密度,系统规模,故障是高概率事件  廉价PC,通用硬件  网络复杂,互联复杂  业务连续性  数据可靠性  灾难恢复  安全防护(DDOS,ARP,挂马)  用户应用水平低,认知度低  政策要求(备案)  Openstack有待成熟(功能、可靠性、文档、社区)
挑战—知识要求  DevOPs  Linux操作系统  Python语言, 开发工具  虚拟化技术(KVM, XEN…)  网络技术(交换、路由、SDN…)  运维技术(部署、监控、报警…)  开源技术+社区支持+自我支持
挑战和选择—运维技术  System Provisioning(crowbar, orchestra)  Application Deployment (chef, puppet,juju)  Monitoring&Alerting(Ganglia, nagios, zabbix)  configuration management(git)
选择-策略  跟踪和储备最新技术、最新版本  生产机保守,采用稳定版本,不做小白兔 网络结构、openstack版本
网络承载业务  物理机管理地址  物理机IPMI  虚拟机静态地址  虚拟机浮动地址  存储  设备互联  设备管理  管理、运维网络  hosting
公共业务  DNS服务器  DHCP服务器  NTP时间服务器  PXE网络安装  Chef服务器  Git服务器  打包、软件库服务器  操作系统镜像和补丁服务器  监控、报警服务器  数据备份服务器
管理业务 VPN 备用线路接入,线路拥塞时的备用通道  IDC办公
IPMI  电源管理(开机、关机、重启)  远程安装操作系统  远程控制台  硬件资源监控(温度、硬件告警)
网络规划原则  有弹性,可扩展 考虑未来的扩容。进行地址块预留和块内地址预留  可汇总,便于路由 按照区域划分网段,在区域的边缘,得到一个简单的前 缀  便于维护,便于识别 地址段应该有一定的规律和特征,看到IP就知道用途  安全 不同业务,采用策略,互相隔离  承载各种业务  唯一性,全网可达
网络方案选择  Openstack网络管理器:flatdhcp + multi-host 三层划分 核心层,汇聚层,接入层  VLAN规划+IP地址规划
网络高可靠性 - Multi-host
网络高可靠性 - Multi-host  每个计算节点安装三个服务 nova-compute, nova-network,nova-api  Nova.conf 开启选项: multi_host=True enabled_apis=metadata
VLAN划分 VLAN 用途 2-299 管理网段 1000-1499 物理机 1500-1999 IPMI 2000-2499 虚拟机浮动地址 2500-2999 虚拟机固定地址
VLAN划分 VLAN 用途 10 VPN 11 IDC办公网 20 公共服务 100-199 设备互联 200-299 设备管理
IP地址选择 物理机 172.16.0.0/12 1个B为分配单位,给数据中心。 虚拟机 10.0.0.0/8 给数据中心分配16个B。每个数据中心有多个单 元,每个单元32个C  浮动地址 公网地址(电信、cnnic分配)
IP地址分配-物理机管理  每个数据中心占用一个B,比如172.16.0.0/16  172.16.0.0/18 64个C,每个openstack cell一个C  172.16.64.0/19 32个C,保留  172.16.96.0/20 16个C,hosting  172.16.112.0/20 16个C,管理  172.16.128.0/17 128个C,ipmi
IP地址分配-一个cell 用途 IP地址 VLAN 物理机 172.16.0.0/24 1000 物理机IPMI 172.16.128.0/24 1500 云主机固定IP 10.0.0.0/19 2500 云主机浮动IP 2000
IP地址分配-一个cell  云主机固定IP分配 考虑效率、安全,32个C,共8192个IP,划分成8 个或者16个网段,每个网段最多1024或者512个IP
安全策略  管理网段,物理机地址,物理机ipmi地址全通  云主机静态地址和上述地址隔离
联系我 彭勇 Email:ppyy@pubyun.com 微博:http://weibo.com/refactor https://github.com/pubyun

Recommandé

Openstack的研究与实践
Openstack的研究与实践Openstack的研究与实践
Openstack的研究与实践OpenCity Community
 
XASUN WORKSTATION
XASUN WORKSTATIONXASUN WORKSTATION
XASUN WORKSTATIONxasun
 
資訊新聞
資訊新聞資訊新聞
資訊新聞建霖 陳建霖
 
資訊新聞
資訊新聞資訊新聞
資訊新聞blue920213
 
AI使能网络自动驾驶 AI Building Autonomous Driving Network
AI使能网络自动驾驶 AI Building Autonomous Driving NetworkAI使能网络自动驾驶 AI Building Autonomous Driving Network
AI使能网络自动驾驶 AI Building Autonomous Driving NetworkLeo Zhou
 
Planet Lab
Planet LabPlanet Lab
Planet LabYishuai Chen
 
Hp Storage
Hp StorageHp Storage
Hp Storageamulopan
 
TibaMe 課程 - OpenStack 技術實作 (爆滿加開第五期)
TibaMe 課程 - OpenStack 技術實作 (爆滿加開第五期)TibaMe 課程 - OpenStack 技術實作 (爆滿加開第五期)
TibaMe 課程 - OpenStack 技術實作 (爆滿加開第五期)Hubert Yang
 

Recommandé

Openstack的研究与实践
Openstack的研究与实践Openstack的研究与实践
Openstack的研究与实践OpenCity Community
 
XASUN WORKSTATION
XASUN WORKSTATIONXASUN WORKSTATION
XASUN WORKSTATIONxasun
 
資訊新聞
資訊新聞資訊新聞
資訊新聞建霖 陳建霖
 
資訊新聞
資訊新聞資訊新聞
資訊新聞blue920213
 
AI使能网络自动驾驶 AI Building Autonomous Driving Network
AI使能网络自动驾驶 AI Building Autonomous Driving NetworkAI使能网络自动驾驶 AI Building Autonomous Driving Network
AI使能网络自动驾驶 AI Building Autonomous Driving NetworkLeo Zhou
 
Planet Lab
Planet LabPlanet Lab
Planet LabYishuai Chen
 
Hp Storage
Hp StorageHp Storage
Hp Storageamulopan
 
TibaMe 課程 - OpenStack 技術實作 (爆滿加開第五期)
TibaMe 課程 - OpenStack 技術實作 (爆滿加開第五期)TibaMe 課程 - OpenStack 技術實作 (爆滿加開第五期)
TibaMe 課程 - OpenStack 技術實作 (爆滿加開第五期)Hubert Yang
 
Asia pacopenstack joe-draft 2012-08-08
Asia pacopenstack joe-draft 2012-08-08Asia pacopenstack joe-draft 2012-08-08
Asia pacopenstack joe-draft 2012-08-08Hui Cheng
 
Nutrition fat
Nutrition fatNutrition fat
Nutrition fateffron
 
Cableado estructurado
Cableado estructuradoCableado estructurado
Cableado estructuradoGabriela Ramirez
 
Start your own beauty
Start your own beautyStart your own beauty
Start your own beautydinda_dinda
 
Nutrition fat
Nutrition fatNutrition fat
Nutrition fateffron
 
Distributed Block-level Storage Management for OpenStack, by Danile lee
Distributed Block-level Storage Management for OpenStack, by Danile leeDistributed Block-level Storage Management for OpenStack, by Danile lee
Distributed Block-level Storage Management for OpenStack, by Danile leeHui Cheng
 
OpenStack Foundation Updates
OpenStack Foundation UpdatesOpenStack Foundation Updates
OpenStack Foundation UpdatesHui Cheng
 
COSUG updates
COSUG updatesCOSUG updates
COSUG updatesHui Cheng
 
Cinder intro@open stack china-tour-shenzhen
Cinder intro@open stack china-tour-shenzhenCinder intro@open stack china-tour-shenzhen
Cinder intro@open stack china-tour-shenzhenHui Cheng
 
MAKING MONEY from openstack
MAKING MONEY from openstackMAKING MONEY from openstack
MAKING MONEY from openstackHui Cheng
 
Integrating OpenStack To Existing Infrastructure
Integrating OpenStack To Existing InfrastructureIntegrating OpenStack To Existing Infrastructure
Integrating OpenStack To Existing InfrastructureHui Cheng
 
The Application of OpenStack in 360buy, by Bin He
The Application of OpenStack in 360buy, by Bin HeThe Application of OpenStack in 360buy, by Bin He
The Application of OpenStack in 360buy, by Bin HeHui Cheng
 
Lessons from Building OpenStack Public Cloud
Lessons from Building OpenStack Public CloudLessons from Building OpenStack Public Cloud
Lessons from Building OpenStack Public CloudHui Cheng
 
Cloud Based VDI with OpenStack, by Shifen Yang
Cloud Based VDI with OpenStack, by Shifen YangCloud Based VDI with OpenStack, by Shifen Yang
Cloud Based VDI with OpenStack, by Shifen YangHui Cheng
 
Dell OpenStack Powered Cloud Solution and Case Sharing
Dell OpenStack Powered Cloud Solution and Case SharingDell OpenStack Powered Cloud Solution and Case Sharing
Dell OpenStack Powered Cloud Solution and Case SharingHui Cheng
 
Administracion de proyectos
Administracion de proyectosAdministracion de proyectos
Administracion de proyectosGabriela Ramirez
 
Network Service in OpenStack Cloud, by Yaohui Jin
Network Service in OpenStack Cloud, by Yaohui JinNetwork Service in OpenStack Cloud, by Yaohui Jin
Network Service in OpenStack Cloud, by Yaohui JinHui Cheng
 
OpenStack Chances and Chanlleges_OSAC_by_ChengHui
OpenStack Chances and Chanlleges_OSAC_by_ChengHuiOpenStack Chances and Chanlleges_OSAC_by_ChengHui
OpenStack Chances and Chanlleges_OSAC_by_ChengHuiHui Cheng
 
Openstack网络规划
Openstack网络规划Openstack网络规划
Openstack网络规划OpenCity Community
 
Challenges and opportunities computing Kuo-Yi Chen
Challenges and opportunities computing Kuo-Yi ChenChallenges and opportunities computing Kuo-Yi Chen
Challenges and opportunities computing Kuo-Yi Chenkuoyichen
 
云计算可信评估方法研究
云计算可信评估方法研究云计算可信评估方法研究
云计算可信评估方法研究iamafan
 
千万级并发在线推送系统架构解析 | 个信互动 叶新江
千万级并发在线推送系统架构解析 | 个信互动 叶新江千万级并发在线推送系统架构解析 | 个信互动 叶新江
千万级并发在线推送系统架构解析 | 个信互动 叶新江imShining @DevCamp
 

Contenu connexe

En vedette

Asia pacopenstack joe-draft 2012-08-08
Asia pacopenstack joe-draft 2012-08-08Asia pacopenstack joe-draft 2012-08-08
Asia pacopenstack joe-draft 2012-08-08Hui Cheng
 
Nutrition fat
Nutrition fatNutrition fat
Nutrition fateffron
 
Start your own beauty
Start your own beautyStart your own beauty
Start your own beautydinda_dinda
 
Nutrition fat
Nutrition fatNutrition fat
Nutrition fateffron
 
Distributed Block-level Storage Management for OpenStack, by Danile lee
Distributed Block-level Storage Management for OpenStack, by Danile leeDistributed Block-level Storage Management for OpenStack, by Danile lee
Distributed Block-level Storage Management for OpenStack, by Danile leeHui Cheng
 
OpenStack Foundation Updates
OpenStack Foundation UpdatesOpenStack Foundation Updates
OpenStack Foundation UpdatesHui Cheng
 
COSUG updates
COSUG updatesCOSUG updates
COSUG updatesHui Cheng
 
Cinder intro@open stack china-tour-shenzhen
Cinder intro@open stack china-tour-shenzhenCinder intro@open stack china-tour-shenzhen
Cinder intro@open stack china-tour-shenzhenHui Cheng
 
MAKING MONEY from openstack
MAKING MONEY from openstackMAKING MONEY from openstack
MAKING MONEY from openstackHui Cheng
 
Integrating OpenStack To Existing Infrastructure
Integrating OpenStack To Existing InfrastructureIntegrating OpenStack To Existing Infrastructure
Integrating OpenStack To Existing InfrastructureHui Cheng
 
The Application of OpenStack in 360buy, by Bin He
The Application of OpenStack in 360buy, by Bin HeThe Application of OpenStack in 360buy, by Bin He
The Application of OpenStack in 360buy, by Bin HeHui Cheng
 
Lessons from Building OpenStack Public Cloud
Lessons from Building OpenStack Public CloudLessons from Building OpenStack Public Cloud
Lessons from Building OpenStack Public CloudHui Cheng
 
Cloud Based VDI with OpenStack, by Shifen Yang
Cloud Based VDI with OpenStack, by Shifen YangCloud Based VDI with OpenStack, by Shifen Yang
Cloud Based VDI with OpenStack, by Shifen YangHui Cheng
 
Dell OpenStack Powered Cloud Solution and Case Sharing
Dell OpenStack Powered Cloud Solution and Case SharingDell OpenStack Powered Cloud Solution and Case Sharing
Dell OpenStack Powered Cloud Solution and Case SharingHui Cheng
 
Administracion de proyectos
Administracion de proyectosAdministracion de proyectos
Administracion de proyectosGabriela Ramirez
 
Network Service in OpenStack Cloud, by Yaohui Jin
Network Service in OpenStack Cloud, by Yaohui JinNetwork Service in OpenStack Cloud, by Yaohui Jin
Network Service in OpenStack Cloud, by Yaohui JinHui Cheng
 
OpenStack Chances and Chanlleges_OSAC_by_ChengHui
OpenStack Chances and Chanlleges_OSAC_by_ChengHuiOpenStack Chances and Chanlleges_OSAC_by_ChengHui
OpenStack Chances and Chanlleges_OSAC_by_ChengHuiHui Cheng
 

En vedette (18)

Asia pacopenstack joe-draft 2012-08-08
Asia pacopenstack joe-draft 2012-08-08Asia pacopenstack joe-draft 2012-08-08
Asia pacopenstack joe-draft 2012-08-08
 
Nutrition fat
Nutrition fatNutrition fat
Nutrition fat
 
Cableado estructurado
Cableado estructuradoCableado estructurado
Cableado estructurado
 
Start your own beauty
Start your own beautyStart your own beauty
Start your own beauty
 
Nutrition fat
Nutrition fatNutrition fat
Nutrition fat
 
Distributed Block-level Storage Management for OpenStack, by Danile lee
Distributed Block-level Storage Management for OpenStack, by Danile leeDistributed Block-level Storage Management for OpenStack, by Danile lee
Distributed Block-level Storage Management for OpenStack, by Danile lee
 
OpenStack Foundation Updates
OpenStack Foundation UpdatesOpenStack Foundation Updates
OpenStack Foundation Updates
 
COSUG updates
COSUG updatesCOSUG updates
COSUG updates
 
Cinder intro@open stack china-tour-shenzhen
Cinder intro@open stack china-tour-shenzhenCinder intro@open stack china-tour-shenzhen
Cinder intro@open stack china-tour-shenzhen
 
MAKING MONEY from openstack
MAKING MONEY from openstackMAKING MONEY from openstack
MAKING MONEY from openstack
 
Integrating OpenStack To Existing Infrastructure
Integrating OpenStack To Existing InfrastructureIntegrating OpenStack To Existing Infrastructure
Integrating OpenStack To Existing Infrastructure
 
The Application of OpenStack in 360buy, by Bin He
The Application of OpenStack in 360buy, by Bin HeThe Application of OpenStack in 360buy, by Bin He
The Application of OpenStack in 360buy, by Bin He
 
Lessons from Building OpenStack Public Cloud
Lessons from Building OpenStack Public CloudLessons from Building OpenStack Public Cloud
Lessons from Building OpenStack Public Cloud
 
Cloud Based VDI with OpenStack, by Shifen Yang
Cloud Based VDI with OpenStack, by Shifen YangCloud Based VDI with OpenStack, by Shifen Yang
Cloud Based VDI with OpenStack, by Shifen Yang
 
Dell OpenStack Powered Cloud Solution and Case Sharing
Dell OpenStack Powered Cloud Solution and Case SharingDell OpenStack Powered Cloud Solution and Case Sharing
Dell OpenStack Powered Cloud Solution and Case Sharing
 
Administracion de proyectos
Administracion de proyectosAdministracion de proyectos
Administracion de proyectos
 
Network Service in OpenStack Cloud, by Yaohui Jin
Network Service in OpenStack Cloud, by Yaohui JinNetwork Service in OpenStack Cloud, by Yaohui Jin
Network Service in OpenStack Cloud, by Yaohui Jin
 
OpenStack Chances and Chanlleges_OSAC_by_ChengHui
OpenStack Chances and Chanlleges_OSAC_by_ChengHuiOpenStack Chances and Chanlleges_OSAC_by_ChengHui
OpenStack Chances and Chanlleges_OSAC_by_ChengHui
 

Similaire à OpenStack Network Planning

Challenges and opportunities computing Kuo-Yi Chen
Challenges and opportunities computing Kuo-Yi ChenChallenges and opportunities computing Kuo-Yi Chen
Challenges and opportunities computing Kuo-Yi Chenkuoyichen
 
云计算可信评估方法研究
云计算可信评估方法研究云计算可信评估方法研究
云计算可信评估方法研究iamafan
 
千万级并发在线推送系统架构解析 | 个信互动 叶新江
千万级并发在线推送系统架构解析 | 个信互动 叶新江千万级并发在线推送系统架构解析 | 个信互动 叶新江
千万级并发在线推送系统架构解析 | 个信互动 叶新江imShining @DevCamp
 
腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验
腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验
腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验colderboy17
 
腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验
腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验
腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验guiyingshenxia
 
云网锦绣 SDN实战研讨会
云网锦绣 SDN实战研讨会云网锦绣 SDN实战研讨会
云网锦绣 SDN实战研讨会Hardway Hou
 
全端物聯網探索之旅 - 重點整理版
全端物聯網探索之旅 - 重點整理版全端物聯網探索之旅 - 重點整理版
全端物聯網探索之旅 - 重點整理版Simen Li
 
Open stack中国社区开放测试平台(ostp)
Open stack中国社区开放测试平台(ostp)Open stack中国社区开放测试平台(ostp)
Open stack中国社区开放测试平台(ostp)OpenCity Community
 
众行业公司系统架构案例介绍
众行业公司系统架构案例介绍众行业公司系统架构案例介绍
众行业公司系统架构案例介绍mysqlops
 
20150528联动技术大讲堂15(刘胜)业务系统上线标准指引
20150528联动技术大讲堂15(刘胜)业务系统上线标准指引20150528联动技术大讲堂15(刘胜)业务系统上线标准指引
20150528联动技术大讲堂15(刘胜)业务系统上线标准指引liu sheng
 
20141128(刘胜)UTC2014分布式和云服务的思考与实践——支付清算行业分布式架构的探索
20141128(刘胜)UTC2014分布式和云服务的思考与实践——支付清算行业分布式架构的探索20141128(刘胜)UTC2014分布式和云服务的思考与实践——支付清算行业分布式架构的探索
20141128(刘胜)UTC2014分布式和云服务的思考与实践——支付清算行业分布式架构的探索liu sheng
 
SolarWinds Network Solution Guide
SolarWinds Network Solution GuideSolarWinds Network Solution Guide
SolarWinds Network Solution GuideAndrew Wong
 
Anytao 让windows phone应用在云端翱翔
Anytao 让windows phone应用在云端翱翔Anytao 让windows phone应用在云端翱翔
Anytao 让windows phone应用在云端翱翔Tao Wang
 
中大型规模的网站架构运维 Saac
中大型规模的网站架构运维 Saac中大型规模的网站架构运维 Saac
中大型规模的网站架构运维 SaacChao Zhu
 
透明计算与云计算
透明计算与云计算透明计算与云计算
透明计算与云计算longhao
 

Similaire à OpenStack Network Planning (20)

Openstack网络规划
Openstack网络规划Openstack网络规划
Openstack网络规划
 
Challenges and opportunities computing Kuo-Yi Chen
Challenges and opportunities computing Kuo-Yi ChenChallenges and opportunities computing Kuo-Yi Chen
Challenges and opportunities computing Kuo-Yi Chen
 
云计算可信评估方法研究
云计算可信评估方法研究云计算可信评估方法研究
云计算可信评估方法研究
 
千万级并发在线推送系统架构解析 | 个信互动 叶新江
千万级并发在线推送系统架构解析 | 个信互动 叶新江千万级并发在线推送系统架构解析 | 个信互动 叶新江
千万级并发在线推送系统架构解析 | 个信互动 叶新江
 
腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验
腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验
腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验
 
腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验
腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验
腾讯 马志强 虚拟化环境下 网络 朋务器 平台的协作经验
 
雲端技術的新趨勢
雲端技術的新趨勢雲端技術的新趨勢
雲端技術的新趨勢
 
Java@taobao
Java@taobaoJava@taobao
Java@taobao
 
云网锦绣 SDN实战研讨会
云网锦绣 SDN实战研讨会云网锦绣 SDN实战研讨会
云网锦绣 SDN实战研讨会
 
全端物聯網探索之旅 - 重點整理版
全端物聯網探索之旅 - 重點整理版全端物聯網探索之旅 - 重點整理版
全端物聯網探索之旅 - 重點整理版
 
Open stack中国社区开放测试平台(ostp)
Open stack中国社区开放测试平台(ostp)Open stack中国社区开放测试平台(ostp)
Open stack中国社区开放测试平台(ostp)
 
众行业公司系统架构案例介绍
众行业公司系统架构案例介绍众行业公司系统架构案例介绍
众行业公司系统架构案例介绍
 
20150528联动技术大讲堂15(刘胜)业务系统上线标准指引
20150528联动技术大讲堂15(刘胜)业务系统上线标准指引20150528联动技术大讲堂15(刘胜)业务系统上线标准指引
20150528联动技术大讲堂15(刘胜)业务系统上线标准指引
 
20141128(刘胜)UTC2014分布式和云服务的思考与实践——支付清算行业分布式架构的探索
20141128(刘胜)UTC2014分布式和云服务的思考与实践——支付清算行业分布式架构的探索20141128(刘胜)UTC2014分布式和云服务的思考与实践——支付清算行业分布式架构的探索
20141128(刘胜)UTC2014分布式和云服务的思考与实践——支付清算行业分布式架构的探索
 
Sec.3 遠端安全連線解決方案-array adonis
Sec.3 遠端安全連線解決方案-array adonisSec.3 遠端安全連線解決方案-array adonis
Sec.3 遠端安全連線解決方案-array adonis
 
SolarWinds Network Solution Guide
SolarWinds Network Solution GuideSolarWinds Network Solution Guide
SolarWinds Network Solution Guide
 
Anytao 让windows phone应用在云端翱翔
Anytao 让windows phone应用在云端翱翔Anytao 让windows phone应用在云端翱翔
Anytao 让windows phone应用在云端翱翔
 
中大型规模的网站架构运维 Saac
中大型规模的网站架构运维 Saac中大型规模的网站架构运维 Saac
中大型规模的网站架构运维 Saac
 
MCCC Lab
MCCC LabMCCC Lab
MCCC Lab
 
透明计算与云计算
透明计算与云计算透明计算与云计算
透明计算与云计算
 

Plus de Hui Cheng

OpenStack in China
OpenStack in ChinaOpenStack in China
OpenStack in ChinaHui Cheng
 
Island: Local Storage Volume for Cinder
Island: Local Storage Volume for CinderIsland: Local Storage Volume for Cinder
Island: Local Storage Volume for CinderHui Cheng
 
DevOps in a Public OpenStack Cloud - Hui Cheng
DevOps in a Public OpenStack Cloud - Hui ChengDevOps in a Public OpenStack Cloud - Hui Cheng
DevOps in a Public OpenStack Cloud - Hui ChengHui Cheng
 
Open stack with_openflowsdn-torii
Open stack with_openflowsdn-toriiOpen stack with_openflowsdn-torii
Open stack with_openflowsdn-toriiHui Cheng
 
Open Source Software & Open Source Hardware
Open Source Software & Open Source HardwareOpen Source Software & Open Source Hardware
Open Source Software & Open Source HardwareHui Cheng
 
Swift Architecture and Practice, by Alex Yang
Swift Architecture and Practice, by Alex YangSwift Architecture and Practice, by Alex Yang
Swift Architecture and Practice, by Alex YangHui Cheng
 
Openstorage with OpenStack, by Bradley
Openstorage with OpenStack, by BradleyOpenstorage with OpenStack, by Bradley
Openstorage with OpenStack, by BradleyHui Cheng
 
KT ucloud storage, by Jaesuk Ahn
KT ucloud storage, by Jaesuk AhnKT ucloud storage, by Jaesuk Ahn
KT ucloud storage, by Jaesuk AhnHui Cheng
 
China OpenStack Community Status
China OpenStack Community StatusChina OpenStack Community Status
China OpenStack Community StatusHui Cheng
 
Open stack in sina
Open stack in sinaOpen stack in sina
Open stack in sinaHui Cheng
 

Plus de Hui Cheng (10)

OpenStack in China
OpenStack in ChinaOpenStack in China
OpenStack in China
 
Island: Local Storage Volume for Cinder
Island: Local Storage Volume for CinderIsland: Local Storage Volume for Cinder
Island: Local Storage Volume for Cinder
 
DevOps in a Public OpenStack Cloud - Hui Cheng
DevOps in a Public OpenStack Cloud - Hui ChengDevOps in a Public OpenStack Cloud - Hui Cheng
DevOps in a Public OpenStack Cloud - Hui Cheng
 
Open stack with_openflowsdn-torii
Open stack with_openflowsdn-toriiOpen stack with_openflowsdn-torii
Open stack with_openflowsdn-torii
 
Open Source Software & Open Source Hardware
Open Source Software & Open Source HardwareOpen Source Software & Open Source Hardware
Open Source Software & Open Source Hardware
 
Swift Architecture and Practice, by Alex Yang
Swift Architecture and Practice, by Alex YangSwift Architecture and Practice, by Alex Yang
Swift Architecture and Practice, by Alex Yang
 
Openstorage with OpenStack, by Bradley
Openstorage with OpenStack, by BradleyOpenstorage with OpenStack, by Bradley
Openstorage with OpenStack, by Bradley
 
KT ucloud storage, by Jaesuk Ahn
KT ucloud storage, by Jaesuk AhnKT ucloud storage, by Jaesuk Ahn
KT ucloud storage, by Jaesuk Ahn
 
China OpenStack Community Status
China OpenStack Community StatusChina OpenStack Community Status
China OpenStack Community Status
 
Open stack in sina
Open stack in sinaOpen stack in sina
Open stack in sina
 

OpenStack Network Planning

  • 1. Openstack网络规划 { 构建有弹性的、可扩展的共有云网络平台 @公云彭勇 ppyy@pubyun.com
  • 2. 目录 挑战和选择 Vlan规划 IP地址规划 PubYun参与openstack
  • 4. 亚马逊aws的规模  2011年aws营收$1.2billion  2012第一季度$500million  2012年aws预计$2billion
  • 5. 亚马逊aws的规模 数据中心 机架数量 服务器数量 US East (Virginia) 5030 321920 US West (Oregon) 41 2624 US West (N. California) 630 40320 EU West (Ireland) 814 52096 AP Northeast (Japan) 314 20096 AP Southeast (Singapore) 246 15744 SA East (Sao Paulo) 26 1600 Total 7100 45440 分析来源:http://huanliu.wordpress.com/2012/03/13/amazon-data-center-size/
  • 6. 挑战  高密度,系统规模,故障是高概率事件  廉价PC,通用硬件  网络复杂,互联复杂  业务连续性  数据可靠性  灾难恢复  安全防护(DDOS,ARP,挂马)  用户应用水平低,认知度低  政策要求(备案)  Openstack有待成熟(功能、可靠性、文档、社区)
  • 7. 挑战—知识要求  DevOPs  Linux操作系统  Python语言, 开发工具  虚拟化技术(KVM, XEN…)  网络技术(交换、路由、SDN…)  运维技术(部署、监控、报警…)  开源技术+社区支持+自我支持
  • 8. 挑战和选择—运维技术  System Provisioning(crowbar, orchestra)  Application Deployment (chef, puppet,juju)  Monitoring&Alerting(Ganglia, nagios, zabbix)  configuration management(git)
  • 9. 选择-策略  跟踪和储备最新技术、最新版本  生产机保守,采用稳定版本,不做小白兔 网络结构、openstack版本
  • 10. 网络承载业务  物理机管理地址  物理机IPMI  虚拟机静态地址  虚拟机浮动地址  存储  设备互联  设备管理  管理、运维网络  hosting
  • 11. 公共业务  DNS服务器  DHCP服务器  NTP时间服务器  PXE网络安装  Chef服务器  Git服务器  打包、软件库服务器  操作系统镜像和补丁服务器  监控、报警服务器  数据备份服务器
  • 13. IPMI  电源管理(开机、关机、重启)  远程安装操作系统  远程控制台  硬件资源监控(温度、硬件告警)
  • 14. 网络规划原则  有弹性,可扩展 考虑未来的扩容。进行地址块预留和块内地址预留  可汇总,便于路由 按照区域划分网段,在区域的边缘,得到一个简单的前 缀  便于维护,便于识别 地址段应该有一定的规律和特征,看到IP就知道用途  安全 不同业务,采用策略,互相隔离  承载各种业务  唯一性,全网可达
  • 15. 网络方案选择  Openstack网络管理器:flatdhcp + multi-host 三层划分 核心层,汇聚层,接入层  VLAN规划+IP地址规划
  • 17. 网络高可靠性 - Multi-host  每个计算节点安装三个服务 nova-compute, nova-network,nova-api  Nova.conf 开启选项: multi_host=True enabled_apis=metadata
  • 18. VLAN划分 VLAN 用途 2-299 管理网段 1000-1499 物理机 1500-1999 IPMI 2000-2499 虚拟机浮动地址 2500-2999 虚拟机固定地址
  • 19. VLAN划分 VLAN 用途 10 VPN 11 IDC办公网 20 公共服务 100-199 设备互联 200-299 设备管理
  • 20. IP地址选择 物理机 172.16.0.0/12 1个B为分配单位,给数据中心。 虚拟机 10.0.0.0/8 给数据中心分配16个B。每个数据中心有多个单 元,每个单元32个C  浮动地址 公网地址(电信、cnnic分配)
  • 21. IP地址分配-物理机管理  每个数据中心占用一个B,比如172.16.0.0/16  172.16.0.0/18 64个C,每个openstack cell一个C  172.16.64.0/19 32个C,保留  172.16.96.0/20 16个C,hosting  172.16.112.0/20 16个C,管理  172.16.128.0/17 128个C,ipmi
  • 22. IP地址分配-一个cell 用途 IP地址 VLAN 物理机 172.16.0.0/24 1000 物理机IPMI 172.16.128.0/24 1500 云主机固定IP 10.0.0.0/19 2500 云主机浮动IP 2000
  • 23. IP地址分配-一个cell  云主机固定IP分配 考虑效率、安全,32个C,共8192个IP,划分成8 个或者16个网段,每个网段最多1024或者512个IP
  • 24. 安全策略  管理网段,物理机地址,物理机ipmi地址全通  云主机静态地址和上述地址隔离