SlideShare a Scribd company logo

Highly Available Docker Networking With BGP

ā€¢
OpenDNS, profile picture
OpenDNS

The document discusses enhancing Docker networking availability through BGP and Anycast, mentioning challenges with deploying hardware and managing cloud connections like AWS Direct Connect. It highlights the use of GRE tunnels for dynamic routing and redundancy in container environments, as well as the advantages of using Anycast for geo-routing. The presentation concludes with resources for further information on GRE, BGP, and Anycast protocols.

Technology
1 of 27
Downloaded 20 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
Highly available Docker networking with BGP
OpenDNS ā€¢ Internet security company ā€¢ 70+ billion queries ā€¢ 25 data centers around the world
Good problems to have, but...
Highly Available Docker Networking With BGP
Put it all in a container! ā€¢ Deployments are easier ā€¢ Keeps things tidier, but...
Hardware ā€¢ Lots of hardware ā€¢ Just not fast enough
The cloud ā€¢ What about AWS? ā€¢ Direct connect
Direct connect
Not all that easy ā€¢ IP addresses for all ā€¢ Our own IP space ā€¢ Many containers per host ā€¢ $$$
Highly Available Docker Networking With BGP
What if...
ā€¢ Sending traffic to/from AWS Challenges
ā€¢ Establish GRE tunnel ā€¢ Encapsulate ā€¢ Remove GRE headers Generic Routing Encapsulation
Challenge ā€¢ Containers come and go ā€¢ Need to provide redundancy
Dynamic routing with BGP ā€¢ Routers decide ā€¢ Adapts to changes ā€¢ BGP
Border Gateway Protocol ā€¢ Exterior routing protocol for exchanging routing information between networks ā€œThe protocol that makes the Internet workā€
DEMO
Overlay network ā€¢ Benefits ā€¢ Use our own IPs inside AWS ā€¢ Redundancy ā€¢ Routing adapts to changes in our hosts
AWS VPC OpenDNS Data CentreOpenDNS Router AWS Direct Connect GRE iBGP DOCKER HOSTDOCKER HOST DOCKER HOST DOCKER HOST Highly available?
AWS VPC OpenDNS Data CentreOpenDNS Router AWS Direct Connect GRE iBGP DOCKER HOSTDOCKER HOST DOCKER HOST DOCKER HOST
Challenge ā€¢ High availability
Anycast
Anycast Transit provider 146.112.63.0/24 146.112.63.0/24 146.112.63.0/24 146.112.63.0/24
Anycast Transit provider 146.112.63.0/24 146.112.63.0/24
DEMO
Anycast ā€¢ Benefits ā€¢ High availability ā€¢ Geo routing
Thank you alrex@opendns.com @ianchici More info about protocols GRE - http://juni.pr/1HW01M6 BGP & Anycast - http://bit.ly/1K5Q3GX

More Related Content

PPTX
The Power of Azure DevOps
Jeff Bramwell
Ā 
PDF
Docker with BGP - OpenDNS
bacongobbler
Ā 
PDF
Docker at OpenDNS
OpenDNS
Ā 
PDF
IP Routing, AWS, and Docker
OpenDNS
Ā 
PPTX
Slow is the New Down - Global Ecommerce
Mark Lewis
Ā 
PDF
High Performance Magnolia with Anycast Routing
bkraft
Ā 
PDF
How LinkedIn used TCP Anycast to make the site faster
Shawn Zandi
Ā 
PDF
Routing for an Anycast CDN
Tom Paseka
Ā 
The Power of Azure DevOps
Jeff Bramwell
Ā 
Docker with BGP - OpenDNS
bacongobbler
Ā 
Docker at OpenDNS
OpenDNS
Ā 
IP Routing, AWS, and Docker
OpenDNS
Ā 
Slow is the New Down - Global Ecommerce
Mark Lewis
Ā 
High Performance Magnolia with Anycast Routing
bkraft
Ā 
How LinkedIn used TCP Anycast to make the site faster
Shawn Zandi
Ā 
Routing for an Anycast CDN
Tom Paseka
Ā 

Viewers also liked (14)

PDF
[En] IPVS for Docker Containers
Andrey Sibirev
Ā 
PDF
Security Ninjas: An Open Source Application Security Training Program
OpenDNS
Ā 
PDF
Contiv on vagrant_20160224
Takao Setaka
Ā 
PPTX
Docker Networking with New Ipvlan and Macvlan Drivers
Brent Salisbury
Ā 
PDF
High Availability (HA) Explained
Maciej Lasyk
Ā 
PDF
BPF: Next Generation of Programmable Datapath
Thomas Graf
Ā 
PPTX
Understanding and deploying Network Virtualization
SDN Hub
Ā 
PDF
SDN & NFV Introduction - Open Source Data Center Networking
Thomas Graf
Ā 
PPTX
Aws multi-region High Availability
Adam Book
Ā 
PDF
Netflix CDN and Open Source
Gleb Smirnoff
Ā 
PDF
Operating Global Anycast CDNs at Twitter from ThousandEyes Connect
ThousandEyes
Ā 
PPTX
Surviving A DDoS Attack: Securing CDN Traffic at CloudFlare
Cloudflare
Ā 
PDF
Dockerå…„é–€-åŸŗē¤Žē·Ø ć„ć¾ć‹ć‚‰å§‹ć‚ć‚‹Dockerē®”ē†ć€2nd Edition怑
Masahito Zembutsu
Ā 
PPTX
Docker introduction
dotCloud
Ā 
[En] IPVS for Docker Containers
Andrey Sibirev
Ā 
Security Ninjas: An Open Source Application Security Training Program
OpenDNS
Ā 
Contiv on vagrant_20160224
Takao Setaka
Ā 
Docker Networking with New Ipvlan and Macvlan Drivers
Brent Salisbury
Ā 
High Availability (HA) Explained
Maciej Lasyk
Ā 
BPF: Next Generation of Programmable Datapath
Thomas Graf
Ā 
Understanding and deploying Network Virtualization
SDN Hub
Ā 
SDN & NFV Introduction - Open Source Data Center Networking
Thomas Graf
Ā 
Aws multi-region High Availability
Adam Book
Ā 
Netflix CDN and Open Source
Gleb Smirnoff
Ā 
Operating Global Anycast CDNs at Twitter from ThousandEyes Connect
ThousandEyes
Ā 
Surviving A DDoS Attack: Securing CDN Traffic at CloudFlare
Cloudflare
Ā 
Dockerå…„é–€-åŸŗē¤Žē·Ø ć„ć¾ć‹ć‚‰å§‹ć‚ć‚‹Dockerē®”ē†ć€2nd Edition怑
Masahito Zembutsu
Ā 
Docker introduction
dotCloud
Ā 
Ad

Similar to Highly Available Docker Networking With BGP (20)

PPTX
The impact of cloud NSBCon NY by Yves Goeleven
Particular Software
Ā 
PDF
Accelerated SDN in Azure
Open Networking Summit
Ā 
PDF
Managing Cloud networking costs for data-intensive applications by provisioni...
Igor Sfiligoi
Ā 
PDF
ApacheCon Core: Service Discovery in OSGi: Beyond the JVM using Docker and Co...
Frank Lyaruu
Ā 
PPTX
DNN & The CloudOS: Windows Azure on your terms
Jess Coburn
Ā 
PDF
Kubernetes Networking 101 kubecon EU 2022
ssuser1490e8
Ā 
PPTX
A Deepdive into Azure Networking
Karim Vaes
Ā 
PDF
Container Networking Deep Dive
Open Networking Summit
Ā 
PDF
How to Serve Blockchain Data with AWS Lambda
Very
Ā 
PDF
AWS BaseCamp: AWS Architecture Fundamentals
Nicole Maus
Ā 
PPTX
OpenStack and Windows
Alessandro Pilotti
Ā 
PDF
A Tale of 2 Systems
David Newman
Ā 
PDF
An introduction to AWS Direct Connect
Julien SIMON
Ā 
PPTX
Stretching CloudStack over multiple datacenters
ShapeBlue
Ā 
PPTX
IaaS azure_vs_amazon
Udaiappa Ramachandran
Ā 
PPTX
DockerCon SF 2015: Networking Breakout
Docker, Inc.
Ā 
PDF
Cloud Networking is not Virtual Networking - London VMUG 20130425
Greg Ferro
Ā 
PPTX
Serverless: The future of application delivery
Doug Vanderweide
Ā 
PDF
IDERA Slides: Managing the Transition to Hybrid Cloud
DATAVERSITY
Ā 
PPTX
Securely Publishing Azure Services
BizTalk360
Ā 
The impact of cloud NSBCon NY by Yves Goeleven
Particular Software
Ā 
Accelerated SDN in Azure
Open Networking Summit
Ā 
Managing Cloud networking costs for data-intensive applications by provisioni...
Igor Sfiligoi
Ā 
ApacheCon Core: Service Discovery in OSGi: Beyond the JVM using Docker and Co...
Frank Lyaruu
Ā 
DNN & The CloudOS: Windows Azure on your terms
Jess Coburn
Ā 
Kubernetes Networking 101 kubecon EU 2022
ssuser1490e8
Ā 
A Deepdive into Azure Networking
Karim Vaes
Ā 
Container Networking Deep Dive
Open Networking Summit
Ā 
How to Serve Blockchain Data with AWS Lambda
Very
Ā 
AWS BaseCamp: AWS Architecture Fundamentals
Nicole Maus
Ā 
OpenStack and Windows
Alessandro Pilotti
Ā 
A Tale of 2 Systems
David Newman
Ā 
An introduction to AWS Direct Connect
Julien SIMON
Ā 
Stretching CloudStack over multiple datacenters
ShapeBlue
Ā 
IaaS azure_vs_amazon
Udaiappa Ramachandran
Ā 
DockerCon SF 2015: Networking Breakout
Docker, Inc.
Ā 
Cloud Networking is not Virtual Networking - London VMUG 20130425
Greg Ferro
Ā 
Serverless: The future of application delivery
Doug Vanderweide
Ā 
IDERA Slides: Managing the Transition to Hybrid Cloud
DATAVERSITY
Ā 
Securely Publishing Azure Services
BizTalk360
Ā 
Ad

More from OpenDNS (20)

PDF
New DNS Traffic Analysis Techniques to Identify Global Internet Threats
OpenDNS
Ā 
PDF
Blackhat USA 2015: BGP Stream Presentation
OpenDNS
Ā 
PDF
What Happens Before the Kill Chain
OpenDNS
Ā 
PDF
Using Algorithms to Brute Force Algorithms...A Journey Through Time and Names...
OpenDNS
Ā 
PDF
One Phish, Two Phish, Red Phish, Your Account Details Just Got Stolen
OpenDNS
Ā 
PPTX
Infrastructure Tracking with Passive Monitoring and Active Probing: ShmooCon ...
OpenDNS
Ā 
PDF
OpenDNS CTO Dan Hubbard VizSec 2014 Keynote Slides
OpenDNS
Ā 
PPTX
Standardizing and Strengthening Security to Lower Costs
OpenDNS
Ā 
PDF
Defcon
OpenDNS
Ā 
PDF
Marauder or Scanning Your DNSDB for Fun and Profit - SOURCE Boston
OpenDNS
Ā 
PDF
Network Security: A Four Point Analysis of Appliances vs. the Cloud
OpenDNS
Ā 
PDF
CanSecWest 2014 Presentation: "Intelligent Use of Intelligence: Design to Dis...
OpenDNS
Ā 
PDF
Rethinking Cyber-Security: 7 Key Strategies for the Challenges that Lie Ahead
OpenDNS
Ā 
PPTX
Speak Security: Under the Hood of the OpenDNS Security Research Labs with Dhi...
OpenDNS
Ā 
PDF
Baythreat Cryptolocker Presentation
OpenDNS
Ā 
PDF
Cryptolocker Webcast
OpenDNS
Ā 
PDF
MSP Webcast - Leveraging Cloud Security to Become a Virtual CIO
OpenDNS
Ā 
PDF
Umbrella for MSPs: Enterprise Grade Malware Protection & Containment
OpenDNS
Ā 
PDF
Fast Detection of New Malicious Domains using DNS
OpenDNS
Ā 
PDF
Umbrella for MSPs: Cloud Security via N-able
OpenDNS
Ā 
New DNS Traffic Analysis Techniques to Identify Global Internet Threats
OpenDNS
Ā 
Blackhat USA 2015: BGP Stream Presentation
OpenDNS
Ā 
What Happens Before the Kill Chain
OpenDNS
Ā 
Using Algorithms to Brute Force Algorithms...A Journey Through Time and Names...
OpenDNS
Ā 
One Phish, Two Phish, Red Phish, Your Account Details Just Got Stolen
OpenDNS
Ā 
Infrastructure Tracking with Passive Monitoring and Active Probing: ShmooCon ...
OpenDNS
Ā 
OpenDNS CTO Dan Hubbard VizSec 2014 Keynote Slides
OpenDNS
Ā 
Standardizing and Strengthening Security to Lower Costs
OpenDNS
Ā 
Defcon
OpenDNS
Ā 
Marauder or Scanning Your DNSDB for Fun and Profit - SOURCE Boston
OpenDNS
Ā 
Network Security: A Four Point Analysis of Appliances vs. the Cloud
OpenDNS
Ā 
CanSecWest 2014 Presentation: "Intelligent Use of Intelligence: Design to Dis...
OpenDNS
Ā 
Rethinking Cyber-Security: 7 Key Strategies for the Challenges that Lie Ahead
OpenDNS
Ā 
Speak Security: Under the Hood of the OpenDNS Security Research Labs with Dhi...
OpenDNS
Ā 
Baythreat Cryptolocker Presentation
OpenDNS
Ā 
Cryptolocker Webcast
OpenDNS
Ā 
MSP Webcast - Leveraging Cloud Security to Become a Virtual CIO
OpenDNS
Ā 
Umbrella for MSPs: Enterprise Grade Malware Protection & Containment
OpenDNS
Ā 
Fast Detection of New Malicious Domains using DNS
OpenDNS
Ā 
Umbrella for MSPs: Cloud Security via N-able
OpenDNS
Ā 

Recently uploaded (20)

PPTX
AI in Daily Life: How Artificial Intelligence Helps Us Every Day
vanshrpatil7
Ā 
PDF
CIFDAQ's Market Wrap : Bears Back in Control?
CIFDAQ
Ā 
PDF
Tea4chat - another LLM Project by Kerem Atam
a0m0rajab1
Ā 
PDF
Cloud-Migration-Best-Practices-A-Practical-Guide-to-AWS-Azure-and-Google-Clou...
Artjoker Software Development Company
Ā 
PPTX
OA presentation.pptx OA presentation.pptx
pateldhruv002338
Ā 
PDF
Presentation about Hardware and Software in Computer
snehamodhawadiya
Ā 
PPTX
Applied-Statistics-Mastering-Data-Driven-Decisions.pptx
parmaryashparmaryash
Ā 
PDF
SparkLabs Primer on Artificial Intelligence 2025
SparkLabs Group
Ā 
PDF
Software Development Methodologies in 2025
KodekX
Ā 
PDF
Responsible AI and AI Ethics - By Sylvester Ebhonu
Sylvester Ebhonu
Ā 
PDF
Automating ArcGIS Content Discovery with FME: A Real World Use Case
Safe Software
Ā 
PDF
A Strategic Analysis of the MVNO Wave in Emerging Markets.pdf
IPLOOK Networks
Ā 
PDF
Unlocking the Future- AI Agents Meet Oracle Database 23ai - AIOUG Yatra 2025.pdf
Sandesh Rao
Ā 
PDF
The Future of Mobile Is Context-Awareā€”Are You Ready?
iProgrammer Solutions Private Limited
Ā 
PDF
Event Presentation Google Cloud Next Extended 2025
minhtrietgect
Ā 
PDF
Make GenAI investments go further with the Dell AI Factory
Principled Technologies
Ā 
PDF
REPORT: Heating appliances market in Poland 2024
SPIUG
Ā 
PDF
Trying to figure out MCP by actually building an app from scratch with open s...
Julien SIMON
Ā 
PDF
Orbitly Pitch Deckļ½œA Mission-Driven Platform for Side Project Collaboration (...
zz41354899
Ā 
PDF
Doc9.....................................
SofiaCollazos
Ā 
AI in Daily Life: How Artificial Intelligence Helps Us Every Day
vanshrpatil7
Ā 
CIFDAQ's Market Wrap : Bears Back in Control?
CIFDAQ
Ā 
Tea4chat - another LLM Project by Kerem Atam
a0m0rajab1
Ā 
Cloud-Migration-Best-Practices-A-Practical-Guide-to-AWS-Azure-and-Google-Clou...
Artjoker Software Development Company
Ā 
OA presentation.pptx OA presentation.pptx
pateldhruv002338
Ā 
Presentation about Hardware and Software in Computer
snehamodhawadiya
Ā 
Applied-Statistics-Mastering-Data-Driven-Decisions.pptx
parmaryashparmaryash
Ā 
SparkLabs Primer on Artificial Intelligence 2025
SparkLabs Group
Ā 
Software Development Methodologies in 2025
KodekX
Ā 
Responsible AI and AI Ethics - By Sylvester Ebhonu
Sylvester Ebhonu
Ā 
Automating ArcGIS Content Discovery with FME: A Real World Use Case
Safe Software
Ā 
A Strategic Analysis of the MVNO Wave in Emerging Markets.pdf
IPLOOK Networks
Ā 
Unlocking the Future- AI Agents Meet Oracle Database 23ai - AIOUG Yatra 2025.pdf
Sandesh Rao
Ā 
The Future of Mobile Is Context-Awareā€”Are You Ready?
iProgrammer Solutions Private Limited
Ā 
Event Presentation Google Cloud Next Extended 2025
minhtrietgect
Ā 
Make GenAI investments go further with the Dell AI Factory
Principled Technologies
Ā 
REPORT: Heating appliances market in Poland 2024
SPIUG
Ā 
Trying to figure out MCP by actually building an app from scratch with open s...
Julien SIMON
Ā 
Orbitly Pitch Deckļ½œA Mission-Driven Platform for Side Project Collaboration (...
zz41354899
Ā 
Doc9.....................................
SofiaCollazos
Ā 

Highly Available Docker Networking With BGP