- The keynote at the OpenStack 2012 Fall Summit highlighted Rackspace's decreasing contribution to OpenStack commits over time and Rackspace's private cloud which runs OpenStack and sees high usage.
- The Quantum project in OpenStack provides network connectivity as a service and allows different virtualization technologies to be plugged in as backends. It has evolved to add L3 and L4-L7 network services.
- Quantum uses a plugin architecture so that different virtual network backends like Open vSwitch, Linux bridge can be used. Extensions allow for additional network properties and new services like routing, load balancing to be added.
2. Agenda
• Keynote
• Quantum
• Quantum Plugins
• OpenStack Quantum Use cases
• SDN and what we do for it
2
3. Keynote speech -- Troy Toman, Rackspace
– Rackspace contribution percentages have been steadily declining, from
54% of commits in Essex to 30% in Folsom
– Continuous delivery by running trunk in production
– Deploying every few weeks in less than an hour
– Private cloud (Alamo) which runs on OpenStack: 120 million API hits,
99.97% availability
3
4. OpenStack Folsom
• What is the big feeling in Folsom Summit
– OpenStack is in production
• Two of the most noteworthy new features in the OpenStack
Folsom release are Quantum and Cinder
• Quantum
– The interest around network virtualization and the Quantum project
was overwhelming and very gratifying
– Not just about L2 virtual network, also about network services ( load
balancing, firewall…) and SDN
4
5. Quantum Design Session
• Learn about what the design
session processes
• The main subject in this design
session
– IPv6, DHCP, VPN access
– Modeling the insertion of
services
– LBaaS, firewall
– Metering
– Quantum L3 and adv APIs
improvements
5
6. What is Quantum
• To provide "network connectivity as a service" between
interface devices (e.g., vNICs) managed by other Openstack
services ( L2 )
– Quote: Provides a “building block” for sophisticated cloud network
topologies. @Dan Wendlandt
• The functionality of Quantum
– Tenant-facing APIs
– Rich network topologies
– Allow to plugin different virtualization technologies
6
7. Quantum Evolution
• Essex (L2 Support)
– network segments
– ports
• Folsom (L2 + L3 Support, to replace Nova Network )
– IP subnets
– DHCP
– Routing
• Grizzly (more L3, L4-L7)
– Firewalling, Load balancers, and more
7
8. Quantum Architecture
Generic OpenStack APIs Operator Selected Backends
Compute API KVM
Network API OVS plugin
Tenant Tools
(GUI, CLI, Storage API Ceph
API code)
An eco-system of tools A generic tenant API to A “plugin” architecture with
that leverage the create and configure different back-end “engines”
Quantum API. “virtual networks”
8
9. Quantum Architecture
API Clients Quantum Service Backend X
Quantum
API
Tenant
Create-net
Scripts
.
Horizon . Plugin
GUI Create- X
Orchestration
port Physical
virtual switch
Code Network
API Nova Compute
Extension
s
9
10. Basic API Abstractions
• “virtual networks” and “virtual subnets” are fundamentally
multi-tenant, just like virtual servers (e.g., overlapping IPs can
be used on different networks).
VM1 VM2 virtual server
Nova 10.0.0.2 10.0.0.3
virtual interface (VIF)
virtual port
Quantum Net1 L2 virtual network
10.0.0.0/24 virtual subnet
10
11. Dynamic Network Creation + Association
• Tenant can use API to create many networks.
• Can even plug-in “instances” that provide more advanced
network functionality (e.g., routing + NAT)
TenantA-VM1 TenantA-VM2 TenantA-VM3
10.0.0.2 10.0.0.3 9.0.0.3 9.0.0.2
Tenant-A Net1 Tenant-A Net2
10.0.0.0/24 9.0.0.0/24
External Net
88.0.0.0/18 11
12. Quantum API Extensions
• Enables innovation in virtual networking.
• Add properties on top of existing network/port abstractions:
– QoS/SLA guarantees / limits
– Security Filter Policies
– port statistics / netflow
• New Services
– L3 forwarding, ACLs + NAT (“elastic” or “floating” IPs)
– VPN connectivity between cloud and customer site, or another cloud
datacenter.
12
13. Available Quantum Plugins
– Open vSwitch
• L2 isolation with VLAN or GRE Tunneling
– Cisco UCS/Nexus
• L2 isolation with VLAN and UCS products
– Linux Bridge
• Pure Linux solution with Linux bridge, L2 isolation with VLAN
– NTT-Data Ryu
• L2 isolation with OpenFlow
– Nicira NVP
Many of them
• Proprietary solution ( also with OpenFlow ) are related with
– NEC OpenFlow OpenFlow/SDN
• L2 isolation with OpenFlow
– Big Switch
• L2 isolation with OpenFlow
– MidoNet
• Proprietary solution with OVS for L2 to L4
– Juniper 13
14. Quantum Project Update
• Folsom release:
– v2 API, with L2 + IP address mgmt (IPAM)
– Tenant API with Keystone + Horizon Integration
– Updated CLI
– Extensions:
• L3 “routers” and floating IPs
• “provider networks” mapped to specific VLANs
• Tenant quotas
• Notifications
14
15. Use Case in Quantum/Nova Network
• Rackspace
– Quantum NVP Plugin
• Intel
– Nova Network Now – move to Quantum with Grizzly
• DreamHost
– Nicira NVP Plugin
– Switch OEM by Delta Networks
• Cisco Webex
– Quantum UCS Plugin
• eBay
– Nicira NVP Plugin
• Sina
– Nova Network Now – move to Quantum with Grizzly
15
16. What is SDN
• SDN separates the control plane from the data plane in
network switches and routers.
• Most well known in the SDN world is OpenFlow
– an open protocol designed to expose the internals of a router or switch
and provide functionality to modify it. ( OpenFlow != SDN )
16
17. What do we do in Quantum/SDN
• We use OpenStack + Quantum with
Plugin ( OVS ) in overlay model:
– Provide L2 isolation + Virtual Networks + L3
routing
• We focus on OpenFlow in hop by hop
model:
– Leverage Open Source Project Trema,
ZeroMQ…
– Provide flow management and traffic
engineering
– In Hop by Hop model
– Provide Northbound API
17
18. Our SDN Framework Concept
SDN Applications / Orchestration
Http / Restful
Northbound API
zmq
ZeroMQ
Monitoring ECMP / Traffic
Re-routing Engineering
Trema Apps
Flow Topology Routing
Manager Discovery Switch
We are implementing
Trema Framework
OpenFlow Protocol
18
19. My point of view and conclusion
• Networking can blend into the computing world with software
abstractions ( APIs )
• Quantum opens a door for networking vendors to plugin their
SDN solution
• Expect to see Grizzly version of OpenStack/Quantum
19
20. Reference Sources
• OpenStack Folsom Summit
– http://www.openstack.org/summit/san-diego-2012/
• Quantum Project Update
– http://www.slideshare.net/danwent/quantum-grizzly-summit
• SDN is bussniess, OpenFlow is technology
– http://www.networkcomputing.com/next-gen-network-tech-
center/sdn-is-business-openflow-is-technology/240142193?pgno=1
• Mirantis : OpenStack Super bootcamp material
– http://www.slideshare.net/openstack/openstack-super-bootcamppdf
• Quantum Plugin Comparison
– http://www.sebastien-han.fr/blog/2012/09/28/quantum-plugin-
comparison/
20