SlideShare a Scribd company logo

PLNOG15: Is there something less complicated than connecting two LAN networks? VLAN and VXLAN integration - Emil Gągała

PROIDEA
PROIDEA

The document discusses connecting virtual and physical infrastructure through virtual networking technologies like VXLAN. It describes how VXLAN uses encapsulation to transport layer 2 frames over a layer 3 network and provides logical network isolation through a VXLAN Network Identifier. It also summarizes options for bridging between virtual and physical networks through x86-based or hardware VTEPs and how they can be used to integrate non-virtualized workloads. OVSDB integration is also described as a way for hardware VTEPs to connect to logical networks without requiring multicast in the underlay.

1 of 40
Download to read offline
© 2014 VMware Inc. All rights reserved. Integrating Physical Infrastructure and Virtual Workloads How to connect VLAN & VXLAN ? Emil Gągała Network & Security Architect PLNOG 28.09.2015, Kraków
Site 3 Site 1 Site2 Site 1 Site2 A1 B1 A3 A2 B2 Ethernet over … • ATM  LAN Emulation • MPLS  VPLS, EVPN • IP  VXLAN, EVPN, OVSDB
Ethernet characteristics • Multipoint to Multipoint connectivity • No control plane – only data plane MAC learning • BUM traffic - some form of multicast support required • Segmentation - VLAN • No built-in loop prevention mechanism • No native multi-homing capabilities • Scalability – scope of broadcast domain and number of MACs • Lack of Virtual Machines awareness
Physical DC Fabric Trends • From 2- or 3-tier to IP spine/leaf fabrics • Density & bandwidth jump • ECMP for layer 3 (and layer 2) • Reduce network oversubscription • Wire & configure once • Uniform configurations 4 WAN/Internet L3 L2 L3 L2 POD A POD B WAN/Internet L3 L2 L2 Ethernet L3 IP
VM5 Virtual Overlay Networking VM1 Overlay Network VM2 Logical Switch 5001 VM3 Physical Underlay IP Network VM4 Logical Switch 5002 Controller Management Cluster Control Plane Programming Data Plane Tunneling Subnet Red 172.16.10.0/24 Subnet Green 172.16.20.0/24 192.168.150.51 192.168.150.52 192.168.250.51 5 Transport Subnet A 192.168.150.0/24 Transport Subnet B 192.168.250.0/24
Traditional VLAN network VM1 VM2 Server 1 VM3 VM4 VM5 Server 2 VM6 VM7 VM8 Server 3 VM9 Physical switch Virtual networks: 1 2 3 VLANs
OVERLAY Networking VM1 VM2 Server 1 VM3 VM4 VM5 Server 2 VM6 VM7 VM8 Server 3 VM9 No VM network state Virtual networks: S3 VM9 Payload Transport network:
Virtual Extensible LAN (VXLAN) Overlay • VXLAN is an industry standard IP overlay technology - RFC 7348 : Used to tunnel Layer 2 traffic over an IP infrastructure 8 L2 frame • Why an IP encapsulation? – leverage VXLAN in order to decouple its data plane from the physical network: basic IP connectivity is enough to run SDDC • Why an additional VXLAN header? – VXLAN Network Identifier (VNI) VTEP: Virtual Tunnel End Point src IP: VTEP1, dst IP:VTEP2 UDP/VXLAN L2 frame VTEP2VTEP1 L2 frame
What is VXLAN ? (Overview) Ethernet in IP overlay network – Entire L2 frame encapsulated in UDP – 50+ bytes of overhead 24 bit VXLAN Network Identifier – 16 M logical networks VXLAN can cross Layer 3 network boundaries Technology approved by IETF as standard – RFC 7348 „Virtual eXtensible Local Area Network (VXLAN): A Framework for Overlaying Virtualized Layer 2 Networks over Layer 3 Networks” – With Arista, Brocade, Cisco, Cumulus, Dell, HP, Juniper, Vmware Overlay between hosts and Gateways – VMs do NOT see VXLAN ID VTEP (VXLAN Tunnel End Point) – Interface which serves as the endpoint for encapsulation/de-encapsulation of VXLAN traffic VTEP acts like a learning bridge – Missing information relies on ARP generated from the host or Flood – Floods ports when encountering an unknown MAC – Flooding may happen when communicating with physical workloads – Flooding limited to a VXLAN segment Once destination MAC is known, communication is direct
VXLAN OVERLAY Networking VM1 VM2 Server 1 VM3 VM4 VM5 Server 2 VM6 VM7 VM8 Server 3 VM9 No VM network state IP Fabric Virtual networks: S3 VM9 Payload Transport network:
Software Defined Data Center VM1 VM2 Server 1 VM3 VM4 VM5 Server 2 VM6 VM7 VM8 Server 3 VM9 Virtual networks: S3 VM9 Payload Transport network: Controller
Software Defined Data Center VM1 VM2 Server 1 VM3 VM4 VM5 Server 2 VM6 VM7 VM8 Server 3 VM9 Virtual networks: Transport network: Controller BMS Server 4
Web-Tier App-Tier DB-Tier VMs Connect to Virtual Networks Virtual Networks Connect to non-virtualized Workloads Physical-Virtual Bridging and Routing  Requirement: Communication between VMs connected to Logical Networks (VXLAN) and workloads (virtualized or not) deployed on traditional VLANs  Different options depending on the connectivity needs: L2 (Bridging) SW L2 Bridges HW VTEP L2 Gateway L3 (Routing)  L2/L3 services useful for supporting migration scenarios
Overlay to VLAN Bridging
Overlay to VLAN Gateway Functionality • The Overlay to VLAN gateway allows communication between virtual and physical world Physical Network VLAN backed network VM NSX: Virtual Network, VXLAN tunnels VLANVXLAN L2 payload VXLAN  VLAN gateway Physical Workload
• L2 as well as L3 • Virtual to virtual, physical to virtual • Temporary, bandwidth and redundancy not critical Use Cases: Migration 16 VM VM Physical Workload Virtualized Workload (VLAN backed) Physical to Virtual Virtual to Virtual VXLAN VLAN
• Typically necessary for integrating a non-virtualized appliance • A gateway takes care of the on ramp/off ramp Use Cases: Integration of non-Virtualized Workloads 17 VM Physical Services / Workload VXLAN VLAN
Physical Workload Integration Physical Workloads VXLAN VLAN x86-based bridge Highest density but requires specific hardware Leverages any x86 server Physical Workloads VXLAN VLAN HW VTEP Use-case: Integrate non-virtualized workloads seamlessly with virtual networks
x86-based Overlay to VLAN solution
P-V Bridging Scale-out Multiple Bridge instances (VXLAN/VLAN) Pair  Single bridging instance (VXLAN/VLAN pair) per Logical Switch Bandwidth limited by single bridging instance Bridged VLAN extends to reach physical devices in multiple racks VXLAN VLAN VLAN extended (!) SW VTEP Physical Servers (VLAN 10) VXLAN 5001  Scale-out model with multiple bridging instances active for separate VXLAN/VLAN pairs  May allow to reduce the spanning of VLANs to a single rack if physical servers in a VLAN are contained in that rack L3-only (VXLAN) network VXLAN 5000 Physical Servers (VLAN 10) Physical Servers (VLAN 20) Bridging Instance 1 (VXLAN 5000 to VLAN 10) Bridging Instance 2 (VXLAN 5001 to VLAN 20) 20
Benefits of x86-based On/off-ramp Scale-up • x86 performance curve • x86 optimized processing (DPDK) • Encapsulation offloads • Encryption offloads Scale-out • Expand on scale-out • Active-active services Flexibility & Operations • Rich set of stateful services • Multi-tier logical routing • Advanced monitoring • Choice of form-factor • Scale as you grow 21VMware Confidential VLAN 10 VLAN 20 VLAN 30
HW VTEPs
HW VTEPs Motivation  Integrate non-virtualized workloads seamlessly with virtual networks Servers with legacy or hard-to-virtualize applications Physical servers relying on specific hardware not supported by HVs Physical network & security appliances such as routers, load balancers, firewalls, IPS, WAN acceleration, etc.  The following are potential use cases for HW L2 VTEPs: Low latency traffic Very large volumes of physical servers (>10G of bandwidth required for P-to-V communication) Support of physical hosts connected in different racks  remove the need to extend VLAN connectivity across the racks 23
VM VXLAN Distributed Bridging Options with Hardware VTEPs One bridge instance • Bandwidth limited by single instance • VLAN connectivity extended to reach the physical devices. Hardware VTEPs deployed where physical workloads or services exist: • Bandwidth and physical ports scale-out • VLANs for Physical workloads only local to a rack 24 VXLAN VLAN VM Single Instance x86 L2 Gateway Multiple Instances 3rd party HW Gateway Non-virtualized devices (part of the same L2 segment)
L2 Extension with Hardware VTEPs Two options: 1. Hardware VTEP with IP multicast in the underlay 2. OVSDB Integration 25 VM VM L2 Network Non-virtualized devices LS A LS B VLAN A VLAN B VXLAN VLAN Hardware VTEP ToR Switch
VXLAN in Multicast Mode
VXLAN in Multicast Mode IGMP to Join VXLANs Assigned Multicast Groups Web VM Web VM DB VM DB VM IGMP Report to Multicast Group 239.1.1.1 VTEP VTEP VTEP L3 Core with multicast IGMP Report to Multicast Group 239.1.1.1 IGMP Report to Multicast Group 239.2.2.2 IGMP Report to Multicast Group 239.2.2.2 Mapping is required between a VXLAN ID and a Multicast Group VXLAN 5000 VXLAN 6000
VTEP 1 1.1.1.1 VTEP 2 2.2.2.2 VTEP 3 3.3.3.3 VXLAN Data Flow Example VM1 Communicating with VM2 in a VXLAN VM 1 VM 2 VM 3 MAC1 MAC2 Multicast Multicast Multicast ARP Request ARP Request ARP Request VM Source MAC Remote VTEP IP VM1:MAC1 1.1.1.1 MAC Table: VTEP 2 and VTEP 3 (Data Plane Learning)L3 Core with multicast VXLAN 5000
VTEP 1 1.1.1.1 VTEP 2 2.2.2.2 VTEP 3 3.3.3.3 VXLAN Data Flow Example (2) VM1 Communicating with VM2 in a VXLAN VM 1 VM 2 VM 3 MAC1 MAC2 VM Source MAC Remote VTEP IP VM1:MAC1 1.1.1.1 MAC Table: VTEP 2L3 Core with multicast ARP Response Unicast VXLAN 5000
VTEP 1 1.1.1.1 VTEP 2 2.2.2.2 VTEP 3 3.3.3.3 VXLAN Data Flow Example (3) VM1 Communicating with VM2 in a VXLAN VM 1 VM 2 VM 3 MAC1 MAC2 VM Source MAC Remote Host VXLAN IP VM1:MAC1 1.1.1.1 MAC Table: VTEP 2L3 Core with multicast ARP Response VM Source MAC Remote Host VXLAN IP VM2:MAC2 2.2.2.2 MAC Table: VTEP 1 (Data Plane Learning) VXLAN 5000
VTEP 1 1.1.1.1 VTEP 2 2.2.2.2 VTEP 3 3.3.3.3 VXLAN Data Flow Example (4) VM1 Communicating with VM2 in a VXLAN VM 1 VM 2 VM 3 MAC1 MAC2 VM Source MAC Remote Host VXLAN IP VM1:MAC1 1.1.1.1 MAC Table: VTEP 2L3 Core with multicast VM Source MAC Remote Host VXLAN IP VM2:MAC2 2.2.2.2 MAC Table: VTEP 1 Unicast VXLAN 5000
OVSBD Integration
• Hardware VTEP enabled physical appliance • Attach any physical services appliance • Extensible (schema-based) • Integration not dependent on Multicast Overview • High density of physical ports to connect physical workloads • Broad ecosystem of partners • Compatible with HA M-LAG solution Benefits OVSDB Integration: Hardware VTEPs 33 Provide connectivity to physical workloads and services VM1 VM2 LS – VNI 5001 VLAN 100
What is OVSDB ?
What is OVSDB ? Open vSwitch Data Base (OVSDB) is a management protocol  Helps attaching interfaces, gathering statistics, configuring features  NOT related with and does NOT require Openflow  RFC 7047 for „The Open vSwitch Database Management Protocol” 3rd Party GW OVSDB Server Operational State Forwarding State IP Fabric Service Nodes VM VMVM VM VM VM Controller Cluster CMP
• The controller exposes a northbound API - physical ports can be attached to logical switches. • Virtual ports of VMs are attached to build logical networks that span the physical and virtual worlds • The information exchanged by the control plane allows setting up the data plane, i.e. VXLAN tunnels between VTEPs • Switch terminates VXLAN tunnels OVSDB Integration: Hardware VTEPs VNI VTEP VM MAC/IP port
OVS hardware_vtep database schema Table Purpose Global Top-level configuration. Manager OVSDB management connection. Physical_Switch A physical switch. Physical_Port A port within a physical switch. Logical_Binding_Stats Statistics for a VLAN on a physical port bound to a logical network. Logical_Switch A layer−2 domain. Ucast_Macs_Local Unicast MACs (local) Ucast_Macs_Remote Unicast MACs (remote) Mcast_Macs_Local Multicast MACs (local) Mcast_Macs_Remote Multicast MACs (remote) Logical_Router A logical L3 router. Physical_Locator_Set Physical_Locator_Set configuration. Physical_Locator Physical_Locator configuration. CONFIDENTIAL 37
Summary
Integrating Physical Infrastructure and Virtual Workloads Conclusion x86-based  Scale-up & scale-out model  Pay as you grow  Rich set of stateful services  Growing set of routing features  Software development cycle  Versatile topology options HW VTEP  Highest density & performance  Broad partner choice • Limited stateful services (cost)  Broad set of routing features • Longer innovation cycle VMware Confidential 39
Thank You
Ad

Recommended

VXLAN Distributed Service Node
VXLAN Distributed Service NodeVXLAN Distributed Service Node
VXLAN Distributed Service Node
David Lapsley
 
Introduction to vxlan
Introduction to vxlanIntroduction to vxlan
Introduction to vxlan
Mohammed Umair
 
VXLAN Practice Guide
VXLAN Practice GuideVXLAN Practice Guide
VXLAN Practice Guide
Prasenjit Sarkar
 
Xpress path vxlan_bgp_evpn_appricot2019-v2_
Xpress path vxlan_bgp_evpn_appricot2019-v2_Xpress path vxlan_bgp_evpn_appricot2019-v2_
Xpress path vxlan_bgp_evpn_appricot2019-v2_
Jide Akintola JNCIE-M&T/SP #496 CCIE-SP#28552
 
Vxlan deep dive session rev0.5 final
Vxlan deep dive session rev0.5 finalVxlan deep dive session rev0.5 final
Vxlan deep dive session rev0.5 final
KwonSun Bae
 
VXLAN
VXLANVXLAN
VXLAN
SAliyev1
 
Linux Native VXLAN Integration - CloudStack Collaboration Conference 2013, Sa...
Linux Native VXLAN Integration - CloudStack Collaboration Conference 2013, Sa...Linux Native VXLAN Integration - CloudStack Collaboration Conference 2013, Sa...
Linux Native VXLAN Integration - CloudStack Collaboration Conference 2013, Sa...
Toshiaki Hatano
 
VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...
VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...
VMworld 2013: Troubleshooting VXLAN and Network Services in a Virtualized Env...
VMworld
 
Vxlan control plane and routing
Vxlan control plane and routingVxlan control plane and routing
Vxlan control plane and routing
Wilfredzeng
 
VXLAN Integration with CloudStack Advanced Zone
VXLAN Integration with CloudStack Advanced ZoneVXLAN Integration with CloudStack Advanced Zone
VXLAN Integration with CloudStack Advanced Zone
Yoshikazu Nojima
 
Vxlan frame format and forwarding
Vxlan frame format and forwardingVxlan frame format and forwarding
Vxlan frame format and forwarding
Mohammed Umair
 
20 - IDNOG03 - Franki Lim (ARISTA) - Overlay Networking with VXLAN
20 - IDNOG03 - Franki Lim (ARISTA) - Overlay Networking with VXLAN20 - IDNOG03 - Franki Lim (ARISTA) - Overlay Networking with VXLAN
20 - IDNOG03 - Franki Lim (ARISTA) - Overlay Networking with VXLAN
Indonesia Network Operators Group
 
VXLAN with Cumulus
VXLAN with CumulusVXLAN with Cumulus
VXLAN with Cumulus
Francesco Gandolfo
 
Virtual Extensible LAN (VXLAN)
Virtual Extensible LAN (VXLAN)Virtual Extensible LAN (VXLAN)
Virtual Extensible LAN (VXLAN)
KHNOG
 
Demystifying EVPN in the data center: Part 1 in 2 episode series
Demystifying EVPN in the data center: Part 1 in 2 episode seriesDemystifying EVPN in the data center: Part 1 in 2 episode series
Demystifying EVPN in the data center: Part 1 in 2 episode series
Cumulus Networks
 
Scaleway Approach to VXLAN EVPN Fabric
Scaleway Approach to VXLAN EVPN FabricScaleway Approach to VXLAN EVPN Fabric
Scaleway Approach to VXLAN EVPN Fabric
Scaleway
 
NFV в сетях операторов связи
NFV в сетях операторов связиNFV в сетях операторов связи
NFV в сетях операторов связи
TERMILAB. Интернет - лаборатория
 
Vlan
VlanVlan
Vlan
Mayank Saxena
 
DevOops - Lessons Learned from an OpenStack Network Architect
DevOops - Lessons Learned from an OpenStack Network ArchitectDevOops - Lessons Learned from an OpenStack Network Architect
DevOops - Lessons Learned from an OpenStack Network Architect
James Denton
 
10 sdn-vir-6up
10 sdn-vir-6up10 sdn-vir-6up
10 sdn-vir-6up
Sachin Siddappa
 
Technical introduction to MidoNet
Technical introduction to MidoNetTechnical introduction to MidoNet
Technical introduction to MidoNet
MidoNet
 
Network and Service Virtualization tutorial at ONUG Spring 2015
Network and Service Virtualization tutorial at ONUG Spring 2015Network and Service Virtualization tutorial at ONUG Spring 2015
Network and Service Virtualization tutorial at ONUG Spring 2015
SDN Hub
 
Reference design for v mware nsx
Reference design for v mware nsxReference design for v mware nsx
Reference design for v mware nsx
solarisyougood
 
Flexible NFV WAN interconnections with Neutron BGP VPN
Flexible NFV WAN interconnections with Neutron BGP VPN Flexible NFV WAN interconnections with Neutron BGP VPN
Flexible NFV WAN interconnections with Neutron BGP VPN
Thomas Morin
 
OPNFV Service Function Chaining
OPNFV Service Function ChainingOPNFV Service Function Chaining
OPNFV Service Function Chaining
OPNFV
 
2014 OpenStack Summit - Neutron OVS to LinuxBridge Migration
2014 OpenStack Summit - Neutron OVS to LinuxBridge Migration2014 OpenStack Summit - Neutron OVS to LinuxBridge Migration
2014 OpenStack Summit - Neutron OVS to LinuxBridge Migration
James Denton
 
Ucs security part2
Ucs security part2Ucs security part2
Ucs security part2
Krunal Shah
 
Linux Tag 2014 OpenStack Networking
Linux Tag 2014 OpenStack NetworkingLinux Tag 2014 OpenStack Networking
Linux Tag 2014 OpenStack Networking
yfauser
 
PLNOG16: VXLAN Gateway, efektywny sposób połączenia świata wirtualnego z fizy...
PLNOG16: VXLAN Gateway, efektywny sposób połączenia świata wirtualnego z fizy...PLNOG16: VXLAN Gateway, efektywny sposób połączenia świata wirtualnego z fizy...
PLNOG16: VXLAN Gateway, efektywny sposób połączenia świata wirtualnego z fizy...
PROIDEA
 
PLNOG16: Ochrona AntiDDoS, lokalnie oraz w chmurze, Paweł Wachełka
PLNOG16: Ochrona AntiDDoS, lokalnie oraz w chmurze, Paweł WachełkaPLNOG16: Ochrona AntiDDoS, lokalnie oraz w chmurze, Paweł Wachełka
PLNOG16: Ochrona AntiDDoS, lokalnie oraz w chmurze, Paweł Wachełka
PROIDEA
 
Ad

More Related Content

What's hot (20)

Vxlan control plane and routing
Vxlan control plane and routingVxlan control plane and routing
Vxlan control plane and routing
Wilfredzeng
 
VXLAN Integration with CloudStack Advanced Zone
VXLAN Integration with CloudStack Advanced ZoneVXLAN Integration with CloudStack Advanced Zone
VXLAN Integration with CloudStack Advanced Zone
Yoshikazu Nojima
 
Vxlan frame format and forwarding
Vxlan frame format and forwardingVxlan frame format and forwarding
Vxlan frame format and forwarding
Mohammed Umair
 
20 - IDNOG03 - Franki Lim (ARISTA) - Overlay Networking with VXLAN
20 - IDNOG03 - Franki Lim (ARISTA) - Overlay Networking with VXLAN20 - IDNOG03 - Franki Lim (ARISTA) - Overlay Networking with VXLAN
20 - IDNOG03 - Franki Lim (ARISTA) - Overlay Networking with VXLAN
Indonesia Network Operators Group
 
VXLAN with Cumulus
VXLAN with CumulusVXLAN with Cumulus
VXLAN with Cumulus
Francesco Gandolfo
 
Virtual Extensible LAN (VXLAN)
Virtual Extensible LAN (VXLAN)Virtual Extensible LAN (VXLAN)
Virtual Extensible LAN (VXLAN)
KHNOG
 
Demystifying EVPN in the data center: Part 1 in 2 episode series
Demystifying EVPN in the data center: Part 1 in 2 episode seriesDemystifying EVPN in the data center: Part 1 in 2 episode series
Demystifying EVPN in the data center: Part 1 in 2 episode series
Cumulus Networks
 
Scaleway Approach to VXLAN EVPN Fabric
Scaleway Approach to VXLAN EVPN FabricScaleway Approach to VXLAN EVPN Fabric
Scaleway Approach to VXLAN EVPN Fabric
Scaleway
 
NFV в сетях операторов связи
NFV в сетях операторов связиNFV в сетях операторов связи
NFV в сетях операторов связи
TERMILAB. Интернет - лаборатория
 
Vlan
VlanVlan
Vlan
Mayank Saxena
 
DevOops - Lessons Learned from an OpenStack Network Architect
DevOops - Lessons Learned from an OpenStack Network ArchitectDevOops - Lessons Learned from an OpenStack Network Architect
DevOops - Lessons Learned from an OpenStack Network Architect
James Denton
 
10 sdn-vir-6up
10 sdn-vir-6up10 sdn-vir-6up
10 sdn-vir-6up
Sachin Siddappa
 
Technical introduction to MidoNet
Technical introduction to MidoNetTechnical introduction to MidoNet
Technical introduction to MidoNet
MidoNet
 
Network and Service Virtualization tutorial at ONUG Spring 2015
Network and Service Virtualization tutorial at ONUG Spring 2015Network and Service Virtualization tutorial at ONUG Spring 2015
Network and Service Virtualization tutorial at ONUG Spring 2015
SDN Hub
 
Reference design for v mware nsx
Reference design for v mware nsxReference design for v mware nsx
Reference design for v mware nsx
solarisyougood
 
Flexible NFV WAN interconnections with Neutron BGP VPN
Flexible NFV WAN interconnections with Neutron BGP VPN Flexible NFV WAN interconnections with Neutron BGP VPN
Flexible NFV WAN interconnections with Neutron BGP VPN
Thomas Morin
 
OPNFV Service Function Chaining
OPNFV Service Function ChainingOPNFV Service Function Chaining
OPNFV Service Function Chaining
OPNFV
 
2014 OpenStack Summit - Neutron OVS to LinuxBridge Migration
2014 OpenStack Summit - Neutron OVS to LinuxBridge Migration2014 OpenStack Summit - Neutron OVS to LinuxBridge Migration
2014 OpenStack Summit - Neutron OVS to LinuxBridge Migration
James Denton
 
Ucs security part2
Ucs security part2Ucs security part2
Ucs security part2
Krunal Shah
 
Linux Tag 2014 OpenStack Networking
Linux Tag 2014 OpenStack NetworkingLinux Tag 2014 OpenStack Networking
Linux Tag 2014 OpenStack Networking
yfauser
 
Vxlan control plane and routing
Vxlan control plane and routingVxlan control plane and routing
Vxlan control plane and routing
Wilfredzeng
 
VXLAN Integration with CloudStack Advanced Zone
VXLAN Integration with CloudStack Advanced ZoneVXLAN Integration with CloudStack Advanced Zone
VXLAN Integration with CloudStack Advanced Zone
Yoshikazu Nojima
 
Vxlan frame format and forwarding
Vxlan frame format and forwardingVxlan frame format and forwarding
Vxlan frame format and forwarding
Mohammed Umair
 
20 - IDNOG03 - Franki Lim (ARISTA) - Overlay Networking with VXLAN
20 - IDNOG03 - Franki Lim (ARISTA) - Overlay Networking with VXLAN20 - IDNOG03 - Franki Lim (ARISTA) - Overlay Networking with VXLAN
20 - IDNOG03 - Franki Lim (ARISTA) - Overlay Networking with VXLAN
Indonesia Network Operators Group
 
VXLAN with Cumulus
VXLAN with CumulusVXLAN with Cumulus
VXLAN with Cumulus
Francesco Gandolfo
 
Virtual Extensible LAN (VXLAN)
Virtual Extensible LAN (VXLAN)Virtual Extensible LAN (VXLAN)
Virtual Extensible LAN (VXLAN)
KHNOG
 
Demystifying EVPN in the data center: Part 1 in 2 episode series
Demystifying EVPN in the data center: Part 1 in 2 episode seriesDemystifying EVPN in the data center: Part 1 in 2 episode series
Demystifying EVPN in the data center: Part 1 in 2 episode series
Cumulus Networks
 
Scaleway Approach to VXLAN EVPN Fabric
Scaleway Approach to VXLAN EVPN FabricScaleway Approach to VXLAN EVPN Fabric
Scaleway Approach to VXLAN EVPN Fabric
Scaleway
 
NFV в сетях операторов связи
NFV в сетях операторов связиNFV в сетях операторов связи
NFV в сетях операторов связи
TERMILAB. Интернет - лаборатория
 
Vlan
VlanVlan
Vlan
Mayank Saxena
 
DevOops - Lessons Learned from an OpenStack Network Architect
DevOops - Lessons Learned from an OpenStack Network ArchitectDevOops - Lessons Learned from an OpenStack Network Architect
DevOops - Lessons Learned from an OpenStack Network Architect
James Denton
 
10 sdn-vir-6up
10 sdn-vir-6up10 sdn-vir-6up
10 sdn-vir-6up
Sachin Siddappa
 
Technical introduction to MidoNet
Technical introduction to MidoNetTechnical introduction to MidoNet
Technical introduction to MidoNet
MidoNet
 
Network and Service Virtualization tutorial at ONUG Spring 2015
Network and Service Virtualization tutorial at ONUG Spring 2015Network and Service Virtualization tutorial at ONUG Spring 2015
Network and Service Virtualization tutorial at ONUG Spring 2015
SDN Hub
 
Reference design for v mware nsx
Reference design for v mware nsxReference design for v mware nsx
Reference design for v mware nsx
solarisyougood
 
Flexible NFV WAN interconnections with Neutron BGP VPN
Flexible NFV WAN interconnections with Neutron BGP VPN Flexible NFV WAN interconnections with Neutron BGP VPN
Flexible NFV WAN interconnections with Neutron BGP VPN
Thomas Morin
 
OPNFV Service Function Chaining
OPNFV Service Function ChainingOPNFV Service Function Chaining
OPNFV Service Function Chaining
OPNFV
 
2014 OpenStack Summit - Neutron OVS to LinuxBridge Migration
2014 OpenStack Summit - Neutron OVS to LinuxBridge Migration2014 OpenStack Summit - Neutron OVS to LinuxBridge Migration
2014 OpenStack Summit - Neutron OVS to LinuxBridge Migration
James Denton
 
Ucs security part2
Ucs security part2Ucs security part2
Ucs security part2
Krunal Shah
 
Linux Tag 2014 OpenStack Networking
Linux Tag 2014 OpenStack NetworkingLinux Tag 2014 OpenStack Networking
Linux Tag 2014 OpenStack Networking
yfauser
 

Viewers also liked (20)

PLNOG16: VXLAN Gateway, efektywny sposób połączenia świata wirtualnego z fizy...
PLNOG16: VXLAN Gateway, efektywny sposób połączenia świata wirtualnego z fizy...PLNOG16: VXLAN Gateway, efektywny sposób połączenia świata wirtualnego z fizy...
PLNOG16: VXLAN Gateway, efektywny sposób połączenia świata wirtualnego z fizy...
PROIDEA
 
PLNOG16: Ochrona AntiDDoS, lokalnie oraz w chmurze, Paweł Wachełka
PLNOG16: Ochrona AntiDDoS, lokalnie oraz w chmurze, Paweł WachełkaPLNOG16: Ochrona AntiDDoS, lokalnie oraz w chmurze, Paweł Wachełka
PLNOG16: Ochrona AntiDDoS, lokalnie oraz w chmurze, Paweł Wachełka
PROIDEA
 
PLNOG15: Practical case studies of IPTV signal redundancy in Internet network...
PLNOG15: Practical case studies of IPTV signal redundancy in Internet network...PLNOG15: Practical case studies of IPTV signal redundancy in Internet network...
PLNOG15: Practical case studies of IPTV signal redundancy in Internet network...
PROIDEA
 
PLNOG16: DDOS SOLUTIONS – CUSTOMER POINT OF VIEW, Piotr Wojciechowski
PLNOG16: DDOS SOLUTIONS – CUSTOMER POINT OF VIEW, Piotr WojciechowskiPLNOG16: DDOS SOLUTIONS – CUSTOMER POINT OF VIEW, Piotr Wojciechowski
PLNOG16: DDOS SOLUTIONS – CUSTOMER POINT OF VIEW, Piotr Wojciechowski
PROIDEA
 
PLNOG16: Automatyzacja kreaowania usług operatorskich w separacji od rodzaju ...
PLNOG16: Automatyzacja kreaowania usług operatorskich w separacji od rodzaju ...PLNOG16: Automatyzacja kreaowania usług operatorskich w separacji od rodzaju ...
PLNOG16: Automatyzacja kreaowania usług operatorskich w separacji od rodzaju ...
PROIDEA
 
PLNOG15: BGP New Advanced Features - Piotr Wojciechowski
PLNOG15: BGP New Advanced Features - Piotr WojciechowskiPLNOG15: BGP New Advanced Features - Piotr Wojciechowski
PLNOG15: BGP New Advanced Features - Piotr Wojciechowski
PROIDEA
 
PLNOG16: Nowe założenia dla zbieranie logów, statystyk i alertów, Maciej Kałk...
PLNOG16: Nowe założenia dla zbieranie logów, statystyk i alertów, Maciej Kałk...PLNOG16: Nowe założenia dla zbieranie logów, statystyk i alertów, Maciej Kałk...
PLNOG16: Nowe założenia dla zbieranie logów, statystyk i alertów, Maciej Kałk...
PROIDEA
 
PLNOG15: BGP Route Reflector from practical point of view
PLNOG15: BGP Route Reflector from practical point of viewPLNOG15: BGP Route Reflector from practical point of view
PLNOG15: BGP Route Reflector from practical point of view
PROIDEA
 
PLNOG16: Public IX is the tip of the Internet Iceberg. The 9:1 PNI rule, Mart...
PLNOG16: Public IX is the tip of the Internet Iceberg. The 9:1 PNI rule, Mart...PLNOG16: Public IX is the tip of the Internet Iceberg. The 9:1 PNI rule, Mart...
PLNOG16: Public IX is the tip of the Internet Iceberg. The 9:1 PNI rule, Mart...
PROIDEA
 
PLNOG16: Administratorzy umarli ? Paweł Stefański
PLNOG16: Administratorzy umarli ? Paweł StefańskiPLNOG16: Administratorzy umarli ? Paweł Stefański
PLNOG16: Administratorzy umarli ? Paweł Stefański
PROIDEA
 
PLNOG16: IP/MPLS for Fixed and Mobile Convergence, Kevin Wang
PLNOG16: IP/MPLS for Fixed and Mobile Convergence, Kevin WangPLNOG16: IP/MPLS for Fixed and Mobile Convergence, Kevin Wang
PLNOG16: IP/MPLS for Fixed and Mobile Convergence, Kevin Wang
PROIDEA
 
PLNOG16: Transport ruchu klientów - MPLS L2 i L3, Tomasz Jedynak
PLNOG16: Transport ruchu klientów - MPLS L2 i L3, Tomasz JedynakPLNOG16: Transport ruchu klientów - MPLS L2 i L3, Tomasz Jedynak
PLNOG16: Transport ruchu klientów - MPLS L2 i L3, Tomasz Jedynak
PROIDEA
 
PLNOG14: Nowości w protokole BGP, optymalizacja routingu na brzegu sieci - Łu...
PLNOG14: Nowości w protokole BGP, optymalizacja routingu na brzegu sieci - Łu...PLNOG14: Nowości w protokole BGP, optymalizacja routingu na brzegu sieci - Łu...
PLNOG14: Nowości w protokole BGP, optymalizacja routingu na brzegu sieci - Łu...
PROIDEA
 
PLNOG16: EXTREME(alnie) przeciw DDoS’om, Krzysztof Surgut, Michał Gąszczyk
PLNOG16: EXTREME(alnie) przeciw DDoS’om, Krzysztof Surgut, Michał GąszczykPLNOG16: EXTREME(alnie) przeciw DDoS’om, Krzysztof Surgut, Michał Gąszczyk
PLNOG16: EXTREME(alnie) przeciw DDoS’om, Krzysztof Surgut, Michał Gąszczyk
PROIDEA
 
PLNOG16: Czy każdy administrator sieci zostanie programistą, Sławomir Januk...
PLNOG16: Czy każdy administrator sieci zostanie programistą, Sławomir Januk...PLNOG16: Czy każdy administrator sieci zostanie programistą, Sławomir Januk...
PLNOG16: Czy każdy administrator sieci zostanie programistą, Sławomir Januk...
PROIDEA
 
PLNOG16: Wielopunktowy VPN, Piotr Głaska
PLNOG16: Wielopunktowy VPN, Piotr GłaskaPLNOG16: Wielopunktowy VPN, Piotr Głaska
PLNOG16: Wielopunktowy VPN, Piotr Głaska
PROIDEA
 
PLNOG16: Milion użytkowników IPv6 na polskim rynku mobilnym, Tomasz Kossut
PLNOG16: Milion użytkowników IPv6 na polskim rynku mobilnym, Tomasz KossutPLNOG16: Milion użytkowników IPv6 na polskim rynku mobilnym, Tomasz Kossut
PLNOG16: Milion użytkowników IPv6 na polskim rynku mobilnym, Tomasz Kossut
PROIDEA
 
PLNOG15 :DDOS Attacks & Collateral Damage. Can we avoid it? Asraf Ali
PLNOG15 :DDOS Attacks & Collateral Damage. Can we avoid it? Asraf AliPLNOG15 :DDOS Attacks & Collateral Damage. Can we avoid it? Asraf Ali
PLNOG15 :DDOS Attacks & Collateral Damage. Can we avoid it? Asraf Ali
Marta Pacyga
 
PLNOG16: Usługi w sieciach operatorskich, Marcin Aronowski
PLNOG16: Usługi w sieciach operatorskich, Marcin AronowskiPLNOG16: Usługi w sieciach operatorskich, Marcin Aronowski
PLNOG16: Usługi w sieciach operatorskich, Marcin Aronowski
PROIDEA
 
PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...
PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...
PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...
PROIDEA
 
PLNOG16: VXLAN Gateway, efektywny sposób połączenia świata wirtualnego z fizy...
PLNOG16: VXLAN Gateway, efektywny sposób połączenia świata wirtualnego z fizy...PLNOG16: VXLAN Gateway, efektywny sposób połączenia świata wirtualnego z fizy...
PLNOG16: VXLAN Gateway, efektywny sposób połączenia świata wirtualnego z fizy...
PROIDEA
 
PLNOG16: Ochrona AntiDDoS, lokalnie oraz w chmurze, Paweł Wachełka
PLNOG16: Ochrona AntiDDoS, lokalnie oraz w chmurze, Paweł WachełkaPLNOG16: Ochrona AntiDDoS, lokalnie oraz w chmurze, Paweł Wachełka
PLNOG16: Ochrona AntiDDoS, lokalnie oraz w chmurze, Paweł Wachełka
PROIDEA
 
PLNOG15: Practical case studies of IPTV signal redundancy in Internet network...
PLNOG15: Practical case studies of IPTV signal redundancy in Internet network...PLNOG15: Practical case studies of IPTV signal redundancy in Internet network...
PLNOG15: Practical case studies of IPTV signal redundancy in Internet network...
PROIDEA
 
PLNOG16: DDOS SOLUTIONS – CUSTOMER POINT OF VIEW, Piotr Wojciechowski
PLNOG16: DDOS SOLUTIONS – CUSTOMER POINT OF VIEW, Piotr WojciechowskiPLNOG16: DDOS SOLUTIONS – CUSTOMER POINT OF VIEW, Piotr Wojciechowski
PLNOG16: DDOS SOLUTIONS – CUSTOMER POINT OF VIEW, Piotr Wojciechowski
PROIDEA
 
PLNOG16: Automatyzacja kreaowania usług operatorskich w separacji od rodzaju ...
PLNOG16: Automatyzacja kreaowania usług operatorskich w separacji od rodzaju ...PLNOG16: Automatyzacja kreaowania usług operatorskich w separacji od rodzaju ...
PLNOG16: Automatyzacja kreaowania usług operatorskich w separacji od rodzaju ...
PROIDEA
 
PLNOG15: BGP New Advanced Features - Piotr Wojciechowski
PLNOG15: BGP New Advanced Features - Piotr WojciechowskiPLNOG15: BGP New Advanced Features - Piotr Wojciechowski
PLNOG15: BGP New Advanced Features - Piotr Wojciechowski
PROIDEA
 
PLNOG16: Nowe założenia dla zbieranie logów, statystyk i alertów, Maciej Kałk...
PLNOG16: Nowe założenia dla zbieranie logów, statystyk i alertów, Maciej Kałk...PLNOG16: Nowe założenia dla zbieranie logów, statystyk i alertów, Maciej Kałk...
PLNOG16: Nowe założenia dla zbieranie logów, statystyk i alertów, Maciej Kałk...
PROIDEA
 
PLNOG15: BGP Route Reflector from practical point of view
PLNOG15: BGP Route Reflector from practical point of viewPLNOG15: BGP Route Reflector from practical point of view
PLNOG15: BGP Route Reflector from practical point of view
PROIDEA
 
PLNOG16: Public IX is the tip of the Internet Iceberg. The 9:1 PNI rule, Mart...
PLNOG16: Public IX is the tip of the Internet Iceberg. The 9:1 PNI rule, Mart...PLNOG16: Public IX is the tip of the Internet Iceberg. The 9:1 PNI rule, Mart...
PLNOG16: Public IX is the tip of the Internet Iceberg. The 9:1 PNI rule, Mart...
PROIDEA
 
PLNOG16: Administratorzy umarli ? Paweł Stefański
PLNOG16: Administratorzy umarli ? Paweł StefańskiPLNOG16: Administratorzy umarli ? Paweł Stefański
PLNOG16: Administratorzy umarli ? Paweł Stefański
PROIDEA
 
PLNOG16: IP/MPLS for Fixed and Mobile Convergence, Kevin Wang
PLNOG16: IP/MPLS for Fixed and Mobile Convergence, Kevin WangPLNOG16: IP/MPLS for Fixed and Mobile Convergence, Kevin Wang
PLNOG16: IP/MPLS for Fixed and Mobile Convergence, Kevin Wang
PROIDEA
 
PLNOG16: Transport ruchu klientów - MPLS L2 i L3, Tomasz Jedynak
PLNOG16: Transport ruchu klientów - MPLS L2 i L3, Tomasz JedynakPLNOG16: Transport ruchu klientów - MPLS L2 i L3, Tomasz Jedynak
PLNOG16: Transport ruchu klientów - MPLS L2 i L3, Tomasz Jedynak
PROIDEA
 
PLNOG14: Nowości w protokole BGP, optymalizacja routingu na brzegu sieci - Łu...
PLNOG14: Nowości w protokole BGP, optymalizacja routingu na brzegu sieci - Łu...PLNOG14: Nowości w protokole BGP, optymalizacja routingu na brzegu sieci - Łu...
PLNOG14: Nowości w protokole BGP, optymalizacja routingu na brzegu sieci - Łu...
PROIDEA
 
PLNOG16: EXTREME(alnie) przeciw DDoS’om, Krzysztof Surgut, Michał Gąszczyk
PLNOG16: EXTREME(alnie) przeciw DDoS’om, Krzysztof Surgut, Michał GąszczykPLNOG16: EXTREME(alnie) przeciw DDoS’om, Krzysztof Surgut, Michał Gąszczyk
PLNOG16: EXTREME(alnie) przeciw DDoS’om, Krzysztof Surgut, Michał Gąszczyk
PROIDEA
 
PLNOG16: Czy każdy administrator sieci zostanie programistą, Sławomir Januk...
PLNOG16: Czy każdy administrator sieci zostanie programistą, Sławomir Januk...PLNOG16: Czy każdy administrator sieci zostanie programistą, Sławomir Januk...
PLNOG16: Czy każdy administrator sieci zostanie programistą, Sławomir Januk...
PROIDEA
 
PLNOG16: Wielopunktowy VPN, Piotr Głaska
PLNOG16: Wielopunktowy VPN, Piotr GłaskaPLNOG16: Wielopunktowy VPN, Piotr Głaska
PLNOG16: Wielopunktowy VPN, Piotr Głaska
PROIDEA
 
PLNOG16: Milion użytkowników IPv6 na polskim rynku mobilnym, Tomasz Kossut
PLNOG16: Milion użytkowników IPv6 na polskim rynku mobilnym, Tomasz KossutPLNOG16: Milion użytkowników IPv6 na polskim rynku mobilnym, Tomasz Kossut
PLNOG16: Milion użytkowników IPv6 na polskim rynku mobilnym, Tomasz Kossut
PROIDEA
 
PLNOG15 :DDOS Attacks & Collateral Damage. Can we avoid it? Asraf Ali
PLNOG15 :DDOS Attacks & Collateral Damage. Can we avoid it? Asraf AliPLNOG15 :DDOS Attacks & Collateral Damage. Can we avoid it? Asraf Ali
PLNOG15 :DDOS Attacks & Collateral Damage. Can we avoid it? Asraf Ali
Marta Pacyga
 
PLNOG16: Usługi w sieciach operatorskich, Marcin Aronowski
PLNOG16: Usługi w sieciach operatorskich, Marcin AronowskiPLNOG16: Usługi w sieciach operatorskich, Marcin Aronowski
PLNOG16: Usługi w sieciach operatorskich, Marcin Aronowski
PROIDEA
 
PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...
PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...
PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...
PROIDEA
 
Ad

Similar to PLNOG15: Is there something less complicated than connecting two LAN networks? VLAN and VXLAN integration - Emil Gągała (20)

NSX-MH
NSX-MHNSX-MH
NSX-MH
sethuraman ramanathan
 
Automate programmable fabric in seconds with an open standards based solution
Automate programmable fabric in seconds with an open standards based solutionAutomate programmable fabric in seconds with an open standards based solution
Automate programmable fabric in seconds with an open standards based solution
Tony Antony
 
VXLAN in the contemporary data center
VXLAN in the contemporary data centerVXLAN in the contemporary data center
VXLAN in the contemporary data center
Anthony Chow
 
VXLAN BGP EVPN: Technology Building Blocks
VXLAN BGP EVPN: Technology Building BlocksVXLAN BGP EVPN: Technology Building Blocks
VXLAN BGP EVPN: Technology Building Blocks
APNIC
 
VMworld 2013: Advanced VMware NSX Architecture
VMworld 2013: Advanced VMware NSX Architecture VMworld 2013: Advanced VMware NSX Architecture
VMworld 2013: Advanced VMware NSX Architecture
VMworld
 
CloudKC: Evolution of Network Virtualization
CloudKC: Evolution of Network VirtualizationCloudKC: Evolution of Network Virtualization
CloudKC: Evolution of Network Virtualization
Cynthia Thomas
 
EVPN Introduction
EVPN IntroductionEVPN Introduction
EVPN Introduction
Bangladesh Network Operators Group
 
Network virtualization
Network virtualizationNetwork virtualization
Network virtualization
Damian Parniewicz
 
Atf 3 q15-4 - scaling the the software driven cloud network
Atf 3 q15-4 - scaling the the software driven cloud networkAtf 3 q15-4 - scaling the the software driven cloud network
Atf 3 q15-4 - scaling the the software driven cloud network
Mason Mei
 
From virtual to high end HW routing for the adult
From virtual to high end HW routing for the adultFrom virtual to high end HW routing for the adult
From virtual to high end HW routing for the adult
MarketingArrowECS_CZ
 
VMworld 2013: vSphere Networking and vCloud Networking Suite Best Practices a...
VMworld 2013: vSphere Networking and vCloud Networking Suite Best Practices a...VMworld 2013: vSphere Networking and vCloud Networking Suite Best Practices a...
VMworld 2013: vSphere Networking and vCloud Networking Suite Best Practices a...
VMworld
 
Midokura OpenStack Meetup Taipei
Midokura OpenStack Meetup TaipeiMidokura OpenStack Meetup Taipei
Midokura OpenStack Meetup Taipei
Dan Mihai Dumitriu
 
[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...
[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...
[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...
OpenStack Korea Community
 
Opencontrail network virtualization
Opencontrail network virtualizationOpencontrail network virtualization
Opencontrail network virtualization
Nicolai van der Smagt
 
PLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDNPLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDN
PROIDEA
 
Network Virtualization for Cloud Services Infrastructure
Network Virtualization for Cloud Services InfrastructureNetwork Virtualization for Cloud Services Infrastructure
Network Virtualization for Cloud Services Infrastructure
Shahryar Ali
 
Kubernetes networking in AWS
Kubernetes networking in AWSKubernetes networking in AWS
Kubernetes networking in AWS
Zvika Gazit
 
Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...
Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...
Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...
Dan Mihai Dumitriu
 
Openstack Neutron Insights
Openstack Neutron InsightsOpenstack Neutron Insights
Openstack Neutron Insights
Atul Pandey
 
vPC techonology for full ha from dc core to baremetel server.
vPC techonology for full ha from dc core to baremetel server.vPC techonology for full ha from dc core to baremetel server.
vPC techonology for full ha from dc core to baremetel server.
Ajeet Singh
 
NSX-MH
NSX-MHNSX-MH
NSX-MH
sethuraman ramanathan
 
Automate programmable fabric in seconds with an open standards based solution
Automate programmable fabric in seconds with an open standards based solutionAutomate programmable fabric in seconds with an open standards based solution
Automate programmable fabric in seconds with an open standards based solution
Tony Antony
 
VXLAN in the contemporary data center
VXLAN in the contemporary data centerVXLAN in the contemporary data center
VXLAN in the contemporary data center
Anthony Chow
 
VXLAN BGP EVPN: Technology Building Blocks
VXLAN BGP EVPN: Technology Building BlocksVXLAN BGP EVPN: Technology Building Blocks
VXLAN BGP EVPN: Technology Building Blocks
APNIC
 
VMworld 2013: Advanced VMware NSX Architecture
VMworld 2013: Advanced VMware NSX Architecture VMworld 2013: Advanced VMware NSX Architecture
VMworld 2013: Advanced VMware NSX Architecture
VMworld
 
CloudKC: Evolution of Network Virtualization
CloudKC: Evolution of Network VirtualizationCloudKC: Evolution of Network Virtualization
CloudKC: Evolution of Network Virtualization
Cynthia Thomas
 
EVPN Introduction
EVPN IntroductionEVPN Introduction
EVPN Introduction
Bangladesh Network Operators Group
 
Network virtualization
Network virtualizationNetwork virtualization
Network virtualization
Damian Parniewicz
 
Atf 3 q15-4 - scaling the the software driven cloud network
Atf 3 q15-4 - scaling the the software driven cloud networkAtf 3 q15-4 - scaling the the software driven cloud network
Atf 3 q15-4 - scaling the the software driven cloud network
Mason Mei
 
From virtual to high end HW routing for the adult
From virtual to high end HW routing for the adultFrom virtual to high end HW routing for the adult
From virtual to high end HW routing for the adult
MarketingArrowECS_CZ
 
VMworld 2013: vSphere Networking and vCloud Networking Suite Best Practices a...
VMworld 2013: vSphere Networking and vCloud Networking Suite Best Practices a...VMworld 2013: vSphere Networking and vCloud Networking Suite Best Practices a...
VMworld 2013: vSphere Networking and vCloud Networking Suite Best Practices a...
VMworld
 
Midokura OpenStack Meetup Taipei
Midokura OpenStack Meetup TaipeiMidokura OpenStack Meetup Taipei
Midokura OpenStack Meetup Taipei
Dan Mihai Dumitriu
 
[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...
[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...
[OpenStack Day in Korea 2015] Track 3-6 - Archiectural Overview of the Open S...
OpenStack Korea Community
 
Opencontrail network virtualization
Opencontrail network virtualizationOpencontrail network virtualization
Opencontrail network virtualization
Nicolai van der Smagt
 
PLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDNPLNOG 13: Nicolai van der Smagt: SDN
PLNOG 13: Nicolai van der Smagt: SDN
PROIDEA
 
Network Virtualization for Cloud Services Infrastructure
Network Virtualization for Cloud Services InfrastructureNetwork Virtualization for Cloud Services Infrastructure
Network Virtualization for Cloud Services Infrastructure
Shahryar Ali
 
Kubernetes networking in AWS
Kubernetes networking in AWSKubernetes networking in AWS
Kubernetes networking in AWS
Zvika Gazit
 
Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...
Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...
Midokura OpenStack Day Korea Talk: MidoNet Open Source Network Virtualization...
Dan Mihai Dumitriu
 
Openstack Neutron Insights
Openstack Neutron InsightsOpenstack Neutron Insights
Openstack Neutron Insights
Atul Pandey
 
vPC techonology for full ha from dc core to baremetel server.
vPC techonology for full ha from dc core to baremetel server.vPC techonology for full ha from dc core to baremetel server.
vPC techonology for full ha from dc core to baremetel server.
Ajeet Singh
 
Ad

Recently uploaded (19)

DNS Resolvers and Nameservers (in New Zealand)
DNS Resolvers and Nameservers (in New Zealand)DNS Resolvers and Nameservers (in New Zealand)
DNS Resolvers and Nameservers (in New Zealand)
APNIC
 
APNIC -Policy Development Process, presented at Local APIGA Taiwan 2025
APNIC -Policy Development Process, presented at Local APIGA Taiwan 2025APNIC -Policy Development Process, presented at Local APIGA Taiwan 2025
APNIC -Policy Development Process, presented at Local APIGA Taiwan 2025
APNIC
 
highend-srxseries-services-gateways-customer-presentation.pptx
highend-srxseries-services-gateways-customer-presentation.pptxhighend-srxseries-services-gateways-customer-presentation.pptx
highend-srxseries-services-gateways-customer-presentation.pptx
elhadjcheikhdiop
 
(Hosting PHising Sites) for Cryptography and network security
(Hosting PHising Sites) for Cryptography and network security(Hosting PHising Sites) for Cryptography and network security
(Hosting PHising Sites) for Cryptography and network security
aluacharya169
 
project_based_laaaaaaaaaaearning,kelompok 10.pptx
project_based_laaaaaaaaaaearning,kelompok 10.pptxproject_based_laaaaaaaaaaearning,kelompok 10.pptx
project_based_laaaaaaaaaaearning,kelompok 10.pptx
redzuriel13
 
OSI TCP IP Protocol Layers description f
OSI TCP IP Protocol Layers description fOSI TCP IP Protocol Layers description f
OSI TCP IP Protocol Layers description f
cbr49917
 
Perguntas dos animais - Slides ilustrados de múltipla escolha
Perguntas dos animais - Slides ilustrados de múltipla escolhaPerguntas dos animais - Slides ilustrados de múltipla escolha
Perguntas dos animais - Slides ilustrados de múltipla escolha
socaslev
 
5-Proses-proses Akuisisi Citra Digital.pptx
5-Proses-proses Akuisisi Citra Digital.pptx5-Proses-proses Akuisisi Citra Digital.pptx
5-Proses-proses Akuisisi Citra Digital.pptx
andani26
 
APNIC Update, presented at NZNOG 2025 by Terry Sweetser
APNIC Update, presented at NZNOG 2025 by Terry SweetserAPNIC Update, presented at NZNOG 2025 by Terry Sweetser
APNIC Update, presented at NZNOG 2025 by Terry Sweetser
APNIC
 
Determining Glass is mechanical textile
Determining Glass is mechanical textileDetermining Glass is mechanical textile
Determining Glass is mechanical textile
Azizul Hakim
 
Understanding the Tor Network and Exploring the Deep Web
Understanding the Tor Network and Exploring the Deep WebUnderstanding the Tor Network and Exploring the Deep Web
Understanding the Tor Network and Exploring the Deep Web
nabilajabin35
 
Mobile database for your company telemarketing or sms marketing campaigns. Fr...
Mobile database for your company telemarketing or sms marketing campaigns. Fr...Mobile database for your company telemarketing or sms marketing campaigns. Fr...
Mobile database for your company telemarketing or sms marketing campaigns. Fr...
DataProvider1
 
Reliable Vancouver Web Hosting with Local Servers & 24/7 Support
Reliable Vancouver Web Hosting with Local Servers & 24/7 SupportReliable Vancouver Web Hosting with Local Servers & 24/7 Support
Reliable Vancouver Web Hosting with Local Servers & 24/7 Support
steve198109
 
Best web hosting Vancouver 2025 for you business
Best web hosting Vancouver 2025 for you businessBest web hosting Vancouver 2025 for you business
Best web hosting Vancouver 2025 for you business
steve198109
 
Smart Mobile App Pitch Deck丨AI Travel App Presentation Template
Smart Mobile App Pitch Deck丨AI Travel App Presentation TemplateSmart Mobile App Pitch Deck丨AI Travel App Presentation Template
Smart Mobile App Pitch Deck丨AI Travel App Presentation Template
yojeari421237
 
IT Services Workflow From Request to Resolution
IT Services Workflow From Request to ResolutionIT Services Workflow From Request to Resolution
IT Services Workflow From Request to Resolution
mzmziiskd
 
White and Red Clean Car Business Pitch Presentation.pptx
White and Red Clean Car Business Pitch Presentation.pptxWhite and Red Clean Car Business Pitch Presentation.pptx
White and Red Clean Car Business Pitch Presentation.pptx
canumatown
 
Top Vancouver Green Business Ideas for 2025 Powered by 4GoodHosting
Top Vancouver Green Business Ideas for 2025 Powered by 4GoodHostingTop Vancouver Green Business Ideas for 2025 Powered by 4GoodHosting
Top Vancouver Green Business Ideas for 2025 Powered by 4GoodHosting
steve198109
 
Computers Networks Computers Networks Computers Networks
Computers Networks Computers Networks Computers NetworksComputers Networks Computers Networks Computers Networks
Computers Networks Computers Networks Computers Networks
Tito208863
 
DNS Resolvers and Nameservers (in New Zealand)
DNS Resolvers and Nameservers (in New Zealand)DNS Resolvers and Nameservers (in New Zealand)
DNS Resolvers and Nameservers (in New Zealand)
APNIC
 
APNIC -Policy Development Process, presented at Local APIGA Taiwan 2025
APNIC -Policy Development Process, presented at Local APIGA Taiwan 2025APNIC -Policy Development Process, presented at Local APIGA Taiwan 2025
APNIC -Policy Development Process, presented at Local APIGA Taiwan 2025
APNIC
 
highend-srxseries-services-gateways-customer-presentation.pptx
highend-srxseries-services-gateways-customer-presentation.pptxhighend-srxseries-services-gateways-customer-presentation.pptx
highend-srxseries-services-gateways-customer-presentation.pptx
elhadjcheikhdiop
 
(Hosting PHising Sites) for Cryptography and network security
(Hosting PHising Sites) for Cryptography and network security(Hosting PHising Sites) for Cryptography and network security
(Hosting PHising Sites) for Cryptography and network security
aluacharya169
 
project_based_laaaaaaaaaaearning,kelompok 10.pptx
project_based_laaaaaaaaaaearning,kelompok 10.pptxproject_based_laaaaaaaaaaearning,kelompok 10.pptx
project_based_laaaaaaaaaaearning,kelompok 10.pptx
redzuriel13
 
OSI TCP IP Protocol Layers description f
OSI TCP IP Protocol Layers description fOSI TCP IP Protocol Layers description f
OSI TCP IP Protocol Layers description f
cbr49917
 
Perguntas dos animais - Slides ilustrados de múltipla escolha
Perguntas dos animais - Slides ilustrados de múltipla escolhaPerguntas dos animais - Slides ilustrados de múltipla escolha
Perguntas dos animais - Slides ilustrados de múltipla escolha
socaslev
 
5-Proses-proses Akuisisi Citra Digital.pptx
5-Proses-proses Akuisisi Citra Digital.pptx5-Proses-proses Akuisisi Citra Digital.pptx
5-Proses-proses Akuisisi Citra Digital.pptx
andani26
 
APNIC Update, presented at NZNOG 2025 by Terry Sweetser
APNIC Update, presented at NZNOG 2025 by Terry SweetserAPNIC Update, presented at NZNOG 2025 by Terry Sweetser
APNIC Update, presented at NZNOG 2025 by Terry Sweetser
APNIC
 
Determining Glass is mechanical textile
Determining Glass is mechanical textileDetermining Glass is mechanical textile
Determining Glass is mechanical textile
Azizul Hakim
 
Understanding the Tor Network and Exploring the Deep Web
Understanding the Tor Network and Exploring the Deep WebUnderstanding the Tor Network and Exploring the Deep Web
Understanding the Tor Network and Exploring the Deep Web
nabilajabin35
 
Mobile database for your company telemarketing or sms marketing campaigns. Fr...
Mobile database for your company telemarketing or sms marketing campaigns. Fr...Mobile database for your company telemarketing or sms marketing campaigns. Fr...
Mobile database for your company telemarketing or sms marketing campaigns. Fr...
DataProvider1
 
Reliable Vancouver Web Hosting with Local Servers & 24/7 Support
Reliable Vancouver Web Hosting with Local Servers & 24/7 SupportReliable Vancouver Web Hosting with Local Servers & 24/7 Support
Reliable Vancouver Web Hosting with Local Servers & 24/7 Support
steve198109
 
Best web hosting Vancouver 2025 for you business
Best web hosting Vancouver 2025 for you businessBest web hosting Vancouver 2025 for you business
Best web hosting Vancouver 2025 for you business
steve198109
 
Smart Mobile App Pitch Deck丨AI Travel App Presentation Template
Smart Mobile App Pitch Deck丨AI Travel App Presentation TemplateSmart Mobile App Pitch Deck丨AI Travel App Presentation Template
Smart Mobile App Pitch Deck丨AI Travel App Presentation Template
yojeari421237
 
IT Services Workflow From Request to Resolution
IT Services Workflow From Request to ResolutionIT Services Workflow From Request to Resolution
IT Services Workflow From Request to Resolution
mzmziiskd
 
White and Red Clean Car Business Pitch Presentation.pptx
White and Red Clean Car Business Pitch Presentation.pptxWhite and Red Clean Car Business Pitch Presentation.pptx
White and Red Clean Car Business Pitch Presentation.pptx
canumatown
 
Top Vancouver Green Business Ideas for 2025 Powered by 4GoodHosting
Top Vancouver Green Business Ideas for 2025 Powered by 4GoodHostingTop Vancouver Green Business Ideas for 2025 Powered by 4GoodHosting
Top Vancouver Green Business Ideas for 2025 Powered by 4GoodHosting
steve198109
 
Computers Networks Computers Networks Computers Networks
Computers Networks Computers Networks Computers NetworksComputers Networks Computers Networks Computers Networks
Computers Networks Computers Networks Computers Networks
Tito208863
 

PLNOG15: Is there something less complicated than connecting two LAN networks? VLAN and VXLAN integration - Emil Gągała

  • 1. © 2014 VMware Inc. All rights reserved. Integrating Physical Infrastructure and Virtual Workloads How to connect VLAN & VXLAN ? Emil Gągała Network & Security Architect PLNOG 28.09.2015, Kraków
  • 2. Site 3 Site 1 Site2 Site 1 Site2 A1 B1 A3 A2 B2 Ethernet over … • ATM  LAN Emulation • MPLS  VPLS, EVPN • IP  VXLAN, EVPN, OVSDB
  • 3. Ethernet characteristics • Multipoint to Multipoint connectivity • No control plane – only data plane MAC learning • BUM traffic - some form of multicast support required • Segmentation - VLAN • No built-in loop prevention mechanism • No native multi-homing capabilities • Scalability – scope of broadcast domain and number of MACs • Lack of Virtual Machines awareness
  • 4. Physical DC Fabric Trends • From 2- or 3-tier to IP spine/leaf fabrics • Density & bandwidth jump • ECMP for layer 3 (and layer 2) • Reduce network oversubscription • Wire & configure once • Uniform configurations 4 WAN/Internet L3 L2 L3 L2 POD A POD B WAN/Internet L3 L2 L2 Ethernet L3 IP
  • 5. VM5 Virtual Overlay Networking VM1 Overlay Network VM2 Logical Switch 5001 VM3 Physical Underlay IP Network VM4 Logical Switch 5002 Controller Management Cluster Control Plane Programming Data Plane Tunneling Subnet Red 172.16.10.0/24 Subnet Green 172.16.20.0/24 192.168.150.51 192.168.150.52 192.168.250.51 5 Transport Subnet A 192.168.150.0/24 Transport Subnet B 192.168.250.0/24
  • 6. Traditional VLAN network VM1 VM2 Server 1 VM3 VM4 VM5 Server 2 VM6 VM7 VM8 Server 3 VM9 Physical switch Virtual networks: 1 2 3 VLANs
  • 7. OVERLAY Networking VM1 VM2 Server 1 VM3 VM4 VM5 Server 2 VM6 VM7 VM8 Server 3 VM9 No VM network state Virtual networks: S3 VM9 Payload Transport network:
  • 8. Virtual Extensible LAN (VXLAN) Overlay • VXLAN is an industry standard IP overlay technology - RFC 7348 : Used to tunnel Layer 2 traffic over an IP infrastructure 8 L2 frame • Why an IP encapsulation? – leverage VXLAN in order to decouple its data plane from the physical network: basic IP connectivity is enough to run SDDC • Why an additional VXLAN header? – VXLAN Network Identifier (VNI) VTEP: Virtual Tunnel End Point src IP: VTEP1, dst IP:VTEP2 UDP/VXLAN L2 frame VTEP2VTEP1 L2 frame
  • 9. What is VXLAN ? (Overview) Ethernet in IP overlay network – Entire L2 frame encapsulated in UDP – 50+ bytes of overhead 24 bit VXLAN Network Identifier – 16 M logical networks VXLAN can cross Layer 3 network boundaries Technology approved by IETF as standard – RFC 7348 „Virtual eXtensible Local Area Network (VXLAN): A Framework for Overlaying Virtualized Layer 2 Networks over Layer 3 Networks” – With Arista, Brocade, Cisco, Cumulus, Dell, HP, Juniper, Vmware Overlay between hosts and Gateways – VMs do NOT see VXLAN ID VTEP (VXLAN Tunnel End Point) – Interface which serves as the endpoint for encapsulation/de-encapsulation of VXLAN traffic VTEP acts like a learning bridge – Missing information relies on ARP generated from the host or Flood – Floods ports when encountering an unknown MAC – Flooding may happen when communicating with physical workloads – Flooding limited to a VXLAN segment Once destination MAC is known, communication is direct
  • 10. VXLAN OVERLAY Networking VM1 VM2 Server 1 VM3 VM4 VM5 Server 2 VM6 VM7 VM8 Server 3 VM9 No VM network state IP Fabric Virtual networks: S3 VM9 Payload Transport network:
  • 11. Software Defined Data Center VM1 VM2 Server 1 VM3 VM4 VM5 Server 2 VM6 VM7 VM8 Server 3 VM9 Virtual networks: S3 VM9 Payload Transport network: Controller
  • 12. Software Defined Data Center VM1 VM2 Server 1 VM3 VM4 VM5 Server 2 VM6 VM7 VM8 Server 3 VM9 Virtual networks: Transport network: Controller BMS Server 4
  • 13. Web-Tier App-Tier DB-Tier VMs Connect to Virtual Networks Virtual Networks Connect to non-virtualized Workloads Physical-Virtual Bridging and Routing  Requirement: Communication between VMs connected to Logical Networks (VXLAN) and workloads (virtualized or not) deployed on traditional VLANs  Different options depending on the connectivity needs: L2 (Bridging) SW L2 Bridges HW VTEP L2 Gateway L3 (Routing)  L2/L3 services useful for supporting migration scenarios
  • 14. Overlay to VLAN Bridging
  • 15. Overlay to VLAN Gateway Functionality • The Overlay to VLAN gateway allows communication between virtual and physical world Physical Network VLAN backed network VM NSX: Virtual Network, VXLAN tunnels VLANVXLAN L2 payload VXLAN  VLAN gateway Physical Workload
  • 16. • L2 as well as L3 • Virtual to virtual, physical to virtual • Temporary, bandwidth and redundancy not critical Use Cases: Migration 16 VM VM Physical Workload Virtualized Workload (VLAN backed) Physical to Virtual Virtual to Virtual VXLAN VLAN
  • 17. • Typically necessary for integrating a non-virtualized appliance • A gateway takes care of the on ramp/off ramp Use Cases: Integration of non-Virtualized Workloads 17 VM Physical Services / Workload VXLAN VLAN
  • 18. Physical Workload Integration Physical Workloads VXLAN VLAN x86-based bridge Highest density but requires specific hardware Leverages any x86 server Physical Workloads VXLAN VLAN HW VTEP Use-case: Integrate non-virtualized workloads seamlessly with virtual networks
  • 19. x86-based Overlay to VLAN solution
  • 20. P-V Bridging Scale-out Multiple Bridge instances (VXLAN/VLAN) Pair  Single bridging instance (VXLAN/VLAN pair) per Logical Switch Bandwidth limited by single bridging instance Bridged VLAN extends to reach physical devices in multiple racks VXLAN VLAN VLAN extended (!) SW VTEP Physical Servers (VLAN 10) VXLAN 5001  Scale-out model with multiple bridging instances active for separate VXLAN/VLAN pairs  May allow to reduce the spanning of VLANs to a single rack if physical servers in a VLAN are contained in that rack L3-only (VXLAN) network VXLAN 5000 Physical Servers (VLAN 10) Physical Servers (VLAN 20) Bridging Instance 1 (VXLAN 5000 to VLAN 10) Bridging Instance 2 (VXLAN 5001 to VLAN 20) 20
  • 21. Benefits of x86-based On/off-ramp Scale-up • x86 performance curve • x86 optimized processing (DPDK) • Encapsulation offloads • Encryption offloads Scale-out • Expand on scale-out • Active-active services Flexibility & Operations • Rich set of stateful services • Multi-tier logical routing • Advanced monitoring • Choice of form-factor • Scale as you grow 21VMware Confidential VLAN 10 VLAN 20 VLAN 30
  • 23. HW VTEPs Motivation  Integrate non-virtualized workloads seamlessly with virtual networks Servers with legacy or hard-to-virtualize applications Physical servers relying on specific hardware not supported by HVs Physical network & security appliances such as routers, load balancers, firewalls, IPS, WAN acceleration, etc.  The following are potential use cases for HW L2 VTEPs: Low latency traffic Very large volumes of physical servers (>10G of bandwidth required for P-to-V communication) Support of physical hosts connected in different racks  remove the need to extend VLAN connectivity across the racks 23
  • 24. VM VXLAN Distributed Bridging Options with Hardware VTEPs One bridge instance • Bandwidth limited by single instance • VLAN connectivity extended to reach the physical devices. Hardware VTEPs deployed where physical workloads or services exist: • Bandwidth and physical ports scale-out • VLANs for Physical workloads only local to a rack 24 VXLAN VLAN VM Single Instance x86 L2 Gateway Multiple Instances 3rd party HW Gateway Non-virtualized devices (part of the same L2 segment)
  • 25. L2 Extension with Hardware VTEPs Two options: 1. Hardware VTEP with IP multicast in the underlay 2. OVSDB Integration 25 VM VM L2 Network Non-virtualized devices LS A LS B VLAN A VLAN B VXLAN VLAN Hardware VTEP ToR Switch
  • 27. VXLAN in Multicast Mode IGMP to Join VXLANs Assigned Multicast Groups Web VM Web VM DB VM DB VM IGMP Report to Multicast Group 239.1.1.1 VTEP VTEP VTEP L3 Core with multicast IGMP Report to Multicast Group 239.1.1.1 IGMP Report to Multicast Group 239.2.2.2 IGMP Report to Multicast Group 239.2.2.2 Mapping is required between a VXLAN ID and a Multicast Group VXLAN 5000 VXLAN 6000
  • 28. VTEP 1 1.1.1.1 VTEP 2 2.2.2.2 VTEP 3 3.3.3.3 VXLAN Data Flow Example VM1 Communicating with VM2 in a VXLAN VM 1 VM 2 VM 3 MAC1 MAC2 Multicast Multicast Multicast ARP Request ARP Request ARP Request VM Source MAC Remote VTEP IP VM1:MAC1 1.1.1.1 MAC Table: VTEP 2 and VTEP 3 (Data Plane Learning)L3 Core with multicast VXLAN 5000
  • 29. VTEP 1 1.1.1.1 VTEP 2 2.2.2.2 VTEP 3 3.3.3.3 VXLAN Data Flow Example (2) VM1 Communicating with VM2 in a VXLAN VM 1 VM 2 VM 3 MAC1 MAC2 VM Source MAC Remote VTEP IP VM1:MAC1 1.1.1.1 MAC Table: VTEP 2L3 Core with multicast ARP Response Unicast VXLAN 5000
  • 30. VTEP 1 1.1.1.1 VTEP 2 2.2.2.2 VTEP 3 3.3.3.3 VXLAN Data Flow Example (3) VM1 Communicating with VM2 in a VXLAN VM 1 VM 2 VM 3 MAC1 MAC2 VM Source MAC Remote Host VXLAN IP VM1:MAC1 1.1.1.1 MAC Table: VTEP 2L3 Core with multicast ARP Response VM Source MAC Remote Host VXLAN IP VM2:MAC2 2.2.2.2 MAC Table: VTEP 1 (Data Plane Learning) VXLAN 5000
  • 31. VTEP 1 1.1.1.1 VTEP 2 2.2.2.2 VTEP 3 3.3.3.3 VXLAN Data Flow Example (4) VM1 Communicating with VM2 in a VXLAN VM 1 VM 2 VM 3 MAC1 MAC2 VM Source MAC Remote Host VXLAN IP VM1:MAC1 1.1.1.1 MAC Table: VTEP 2L3 Core with multicast VM Source MAC Remote Host VXLAN IP VM2:MAC2 2.2.2.2 MAC Table: VTEP 1 Unicast VXLAN 5000
  • 33. • Hardware VTEP enabled physical appliance • Attach any physical services appliance • Extensible (schema-based) • Integration not dependent on Multicast Overview • High density of physical ports to connect physical workloads • Broad ecosystem of partners • Compatible with HA M-LAG solution Benefits OVSDB Integration: Hardware VTEPs 33 Provide connectivity to physical workloads and services VM1 VM2 LS – VNI 5001 VLAN 100
  • 35. What is OVSDB ? Open vSwitch Data Base (OVSDB) is a management protocol  Helps attaching interfaces, gathering statistics, configuring features  NOT related with and does NOT require Openflow  RFC 7047 for „The Open vSwitch Database Management Protocol” 3rd Party GW OVSDB Server Operational State Forwarding State IP Fabric Service Nodes VM VMVM VM VM VM Controller Cluster CMP
  • 36. • The controller exposes a northbound API - physical ports can be attached to logical switches. • Virtual ports of VMs are attached to build logical networks that span the physical and virtual worlds • The information exchanged by the control plane allows setting up the data plane, i.e. VXLAN tunnels between VTEPs • Switch terminates VXLAN tunnels OVSDB Integration: Hardware VTEPs VNI VTEP VM MAC/IP port
  • 37. OVS hardware_vtep database schema Table Purpose Global Top-level configuration. Manager OVSDB management connection. Physical_Switch A physical switch. Physical_Port A port within a physical switch. Logical_Binding_Stats Statistics for a VLAN on a physical port bound to a logical network. Logical_Switch A layer−2 domain. Ucast_Macs_Local Unicast MACs (local) Ucast_Macs_Remote Unicast MACs (remote) Mcast_Macs_Local Multicast MACs (local) Mcast_Macs_Remote Multicast MACs (remote) Logical_Router A logical L3 router. Physical_Locator_Set Physical_Locator_Set configuration. Physical_Locator Physical_Locator configuration. CONFIDENTIAL 37
  • 39. Integrating Physical Infrastructure and Virtual Workloads Conclusion x86-based  Scale-up & scale-out model  Pay as you grow  Rich set of stateful services  Growing set of routing features  Software development cycle  Versatile topology options HW VTEP  Highest density & performance  Broad partner choice • Limited stateful services (cost)  Broad set of routing features • Longer innovation cycle VMware Confidential 39