Embed Size (px)
Citation preview
TRUSTED CLOUD SOLUTIONS
OpenStack Summit Austin
Nicolas PLANELPrincipal Software Engineer
27/04/2016
SkydiveA real-time network analyzer
Sylvain AFCHAINPrincipal Software Engineer
WHY ?
SDN IS COMPLEX
Troubleshooting/monitoring is even more complex
ImplementationsManagement
Control plane
● OpenFlow● XMPP● BGP● AMQP● Etc...
Data plane
● VLAN● VXLAN● GRE● MPLS● OVS, Linuxbridge, other
TroubleshootingWhere...
packets are dropped ?packets are fragmented ?choke point occurs ?
What…
packet layers path ?kind of traffic for this virtual network ?number of flows on this link ?number of TCP Sessions ?bandwidth for this tenant ?
Current toolbox● iproute2 ● ovs-vsctl, ovs-ofctl, ovs-dpctl...● ethtool● brctl● tcpdump● SDN CLI/API● ...
What we need● Flow centric● Easy to deploy● SDN Agnostic solution● Non-intrusive / Lightweight● Open, API● Connectors to SDN
What we need● Topology probes
a. interfaces, bond, mtu, vlanb. bridgesc. Network namespacesd. etc..
● Flow probesa. on-demand traffic captureb. on-demand counter capturec. filteringd. underlay/overlay informations
● Topology/flow aggregationa. mapping topology/flowb. analysis
Agent : Topology/FlowTopology:
● Graph engine● Populated from: netlink, netns, ovsdb,
ethtool probes, Docker, Neutron, ...
Flow:
● Flow table centric● Local mapping flow/topology● Packet data from sFlow, Pcap probes ...
Skydive Analyzer
● Aggregation of all the agents● Analysis pipeline● Store in Database
Storage
Skydive Use-cases● Detection of common configuration errors
● Detection of live network issues○ bad performances, helping to find the root cause○ DDOS and any unattended traffic
● Possibility to capture traffic at any point○ Historic of all the metrics captured○ Post mortem analysis
● Detection of bad application performance, bad RTT, bad security groups
Let’s Jump !
Skydive Roadmap● Topology capture
○ More connectors
● Live distributed capture○ Filtering
● Analysis○ More protocols○ Alerting
● Security○ RBAC○ SSL○ Anonymize IP
Open source
Apache License
Written in Go
Contributions are welcome
Questions ?
https://github.com/redhat-cip/skydiveIRC: #skydive-project @[email protected]@redhat.com
Thank you
Pictures from
FFP http://www.ffp.asso.fr/ASPU http://www.aspu.org/Laurent CormierMartin Handford
https://github.com/redhat-cip/skydiveIRC: #skydive-project @[email protected]@redhat.com
BREAKOUT SESSIONS - Monday April 25th
Panel: Pros and cons of various OpenStack consumption models
Contributing to the Success of OpenStack
Deploying OpenStack for Telecommunications (Panel)
Expanding DBaaS Workloads with OpenStack Trove and Manila
Elephant in the Room: What’s the TCO for an OpenStack Cloud?
Performance Measuring Tools for the Cloud
Going Beyond OpenStack – The Integrated Cloud Solution Stack
Jonathan Gershater (Red Hat), Cody Hill (Platform9 Systems, Inc), VS Joshi (EMC), Ashish Nadkarni (IDC)
Mark McLoughlin & Alexis Monville
Darrell Jordan-Smith (Red Hat), panelists from Verizon, ATT, Telus
Sean Cohen, Amrith Kumar (Tesora), Andrew Kutner (NetApp)
Massimo Ferrari & Erich Morisse
D Shakshober (Red Hat), Nicholas Wakou (Dell), Arek Chylinski, Wang Xiaofei (AWCloud), Yuting Wu
Jacob Liberman
11:15am – 11:55am
11:15am – 11:55am
11:15am – 11:55am
12:05pm – 12:45pm
12:05pm – 12:45pm
12:05pm – 12:45pm
12:05pm – 12:45pm
BREAKOUT SESSIONS - Monday April 25th
What science knows about happiness that could transform OpenStack
How to quickly and efficiently migrate legacy workloads to the cloud
OpenStack Infrastructure for Beginners
Workshop: Hands on to configure your cloud to be able to charge your users using official OpenStack components!
OpenStack Stable: What it actually means to maintain stable branches
Making Ceph the powerhouse you know it can be!
The omniscient cloud: Bare metal inspection status update
Alexis Monville
Vijay Chebolu
Paul Belanger (Red Hat), Elizabeth K. Joseph (HPE), Christopher Aedo (IBM)
Julien Danjou, Christophe Sauthier, Stéphane Albert, Gauvain Pocentek & Maximiliano Venesio
Ihar Hrachyshka (Red Hat), Matt Riedemann (IBM), Matthew Treinish (HPE)
Neil Levine
Dmitry Tantsur
12:05pm – 12:45pm
2:00pm – 2:40pm
2:00pm – 2:40pm
2:00pm – 3:30pm
2:50pm – 3:30pm
2:50pm – 3:30pm
3:40pm – 4:20pm
BREAKOUT SESSIONS - Monday April 25th
Co-engineering an enterprise grade OpenStack by Rackspace and Red Hat
OpenShift and OpenStack: Delivering Applications Together
Deep dive into Neutron upgrade story
Swisscom in Production with OpenStack and CloudFoundry
Take advantage of key OpenStack services for NFV and the Telecommunications industry
Red Hat & Cisco – Providing OpenStack choice
Nick Gerasimatos (Red Hat), Jeff Ekstrom (Red Hat), John Fulton (Red Hat), Kent Wolfe (Rackspace)
Scott McCarty
Artur Korzeniewski (Intel), Ihar Hrachyshka (Red Hat), Rossella Sblendido (SuSE)
Chris Wright (Red Hat), Chip Childers, Marcel Haerry, Pere Monclus & Ros Roseboro
Sanjay Aiyagari (Red Hat)Drew Schulke (Dell)
Karthik Prabhaker (Red Hat)Vishwanath Jakka (Cisco)
3:40pm – 4:20pm
4:40pm – 5:20pm
4:40pm – 5:20pm
4:40pm – 5:20pm
4:40pm – 5:20pm
5:30pm – 6:10pm
BREAKOUT SESSIONS - Tuesday April 26th
Integrate Active Directory with OpenStack Keystone
How to troubleshoot OpenStack without losing sleep
Introduction to Container Security
Manila: Experience it Through Demos!
Advances in Keystone’s Role Based Access Control
RDO Community Meetup
Using open source security architecture to defend against targeted attacks
CephFS as a service with OpenStack Manila
Martin Lopes
Sadique Puthen & Dustin Black
Thomas Cameron
Dustin Schoenbrun, Akshai Parthasarathy (Netapp)
Adam Young (Red Hat) and Henry Nash (IBM)
Rich Bowen & RDO Community
Dan Lambright (Red Hat), Alexander Adamov (Mirantis)
John Spray
12:05pm – 12:45pm
12:05pm – 12:45pm
2:50pm – 3:30pm
2:50pm – 3:30pm
3:40pm – 4:20pm
4:40pm – 5:50pm
5:30pm – 6:10pm
5:30pm – 6:10pm
BREAKOUT SESSIONS - Wednesday April 27th
Zaqar Messaging for Microservices and IoT
Service Function Chaining – Technology Analysis and Perspective
Debugging OpenStack failure scenarios with Ansible and Oslogmerger
Is that a Cloud in your Pocket?
Tired of iptables based security groups? Here’s how to gain tremendous speed with Open vSwitch instead!
Achieving Five-Nines of VNF Reliability in Telco-Grade OpenStack Cloud
Skydive, Real-Time Network Topology and Protocol Analyzer
Designing for NFV: Lessons Learned from Deploying at Verizon
Protecting the Galaxy – Multi-Region Disaster Recovery with OpenStack and Ceph
Fei Long Wang (Catalyst), Ryan Brown (Red Hat), Victoria Martinez de la Cruz (Red Hat)
Tim Rozet(Red Hat), Bin Hu (AT&T)
Miguel Angel Ajo (Red Hat), Gorka Eguileor (Red Hat)
Steven Ellis
Jakub Libosvar (Red Hat), Rodolfo Alonso (Intel)
Rimma Iontel (Red Hat), Eoin Walsh (Intel)
Nicolas Planel (Red Hat), Sylvain Afchain (Red Hat)
Radhesh Balakrishnan (Red Hat), Kyle Forrester (Big Switch), Chris Emmons (Dell)
Sean Cohen, Federico Lucifredi, Sebastien Han
9:00am – 9:40am
9:50am – 10:30am
11:50am – 12:30pm
11:50am – 12:30pm
1:50pm – 2:30pm
1:50pm – 2:30pm
2:40pm – 3:20pm
3:30pm – 4:10pm
4:30pm – 5:10pm
BREAKOUT SESSIONS - Thursday April 28th
Lab: Deploy Microservices Architecture on OpenStack using Kubernetes, Docker, Flannel and etcd
Orchestrated Containerization with OpenStack
The Notorious M.T.U.
CephFS in Jewel: Stable at last
Using a Service VM as an IPv6 vRouter
Neutron Quality of Service, new features and future roadmap.
Al Kari
Lars Herrmann
Kevin Benton (Mirantis), Sean Collins (Mirantis), Matthew Kassawara (IBM), Ihar Hrachyshka (Red Hat)
Greg Farnum
Bin Hu (AT&T), Sridhar Gaddam (Red Hat), Prakash (Huawei)
Miguel Ángel Ajo (Red Hat), Victor Howard (Comcast), Sławek Kapłoński (OVH Group)
9:00am – 10:30am
9:00am – 9:40am
9:00am – 9:40am
11:00am – 11:40am
11:00am – 11:40am
1:30pm – 2:10pm
THANK YOU
plus.google.com/+RedHat
youtube.com/user/RedHatVideos
facebook.com/redhatinc
twitter.com/RedHatNewslinkedin.com/company/red-hat
