1. Virtual Networking for IaaS CloudsMidoNet + OpenStack2013.3.12 Midokura CondentialMidokura Confidential

2. MidoNet is Business Ready! MidoNet OpenStack Quantum Pluginv Folsomv Grizzly 3. Value PropositionMidoNet + OpenStackSelf IaaS Cloud 4. 5. MidoNet IaaS IaaS IaaS 6. MidoNet QA EC2 PoC ( Proof of Concept) 7. IaaS VLAN (CAPEX, OPEX) L2-3L4-7 8. MidoNetIntelligence at the EdgevvvL2-4 L7 9. e.g Force10 Z9000SpineL3 SwitchL3 Switch L3 Switch L3 Switch x4IBGP andECMP4x40GLeafL3 SwitchL3 SwitchL3 Switchx32 48x10G 1536 x 10G e.g Arista 7050T 10. HostEdgeEdge Overlay VM HostEdgeHostEdge VM VM HostEdgeHostEdge VMHostEdge VMVM VMVM 11. HostEdgeEdge Overlay VM HostEdgeHostEdge VM VM HostEdgeHostEdge VMHostEdge VMVM VMVM 12. ScalableControl PlaneEdgeCntrlCacheEdgeMidoNetVM Edge Edge VM Conguration DataConguration DataEdge RealtimeVM Edge Edge EdgeVMCntrl EdgeVM VM VMVM 13. ScalableControl PlaneEdgeCntrlCacheEdgeMidoNetVM Edge Edge VM Conguration DataConguration DataEdge RealtimeVM Edge Edge EdgeVMCntrl EdgeVM VM VMVM 14. L2-4 Switching, Routing NAT, Firewall, Load Balancer, etc. REST API 15. OpenStack 16. MidoNetA I DMAAIDMA 1. Meet Up2. 3. (EC2)4. PoC5. Commercial Deployment Project 17. 1. Meet UpAI D M A MidoNet 18. 2. A IDMA MidoNet 19. A ID M AEC2MidoNetMidoNet 20. 4. PoC (Proof of Concept)A I DMA 21. 5. Commercial Deployment Project AIDMA 22. -> 23. MidoNet (=) Logical TopologyvPortVirtualTenant A Switch A1 VirtualvPort RouterMidoNet vPort ProviderVirtualVirtual Switch A2 vPortRouter Tenant BvPort Virtual VirtualRouter Switch B1vPort VM MN MN VM BGPBGP Multi To ISP1Homing Internet Private IPVM BGP MN NetworkMN VMTo ISP2 Tunnel BGPTo ISP3VMMN MN VMMN MNMN Gateway Nodes Network State Database Compute NodesPhysical Topology 24. Compute Node/VM MidoNetNorth-South Compute NodeGateway VMNodeMNVM VM MN MN VM VMMNMN VM BGPBGP Multi To ISP1HomingPrivate IP Internet Network VM BGP MN (L2/3)MNVMTo ISP2Tunnel BGPTo ISP3 VM MN MN VMMN MNMN Gateway NodesNetwork State DatabaseCompute NodesL2/3Physical Topology 25. Edge Overlay Hop-by-Hop MN MNMN CoreRouterGateway NodesFirewall TunnelRouter Switch Load1 Hop Balancer Switch MN MNMNVMVM VMVM VMVM VMVM VMVM VMVMVMVM VMVM VMVMCompute Nodes Hop-by-Hop(North-South Trac) 26. Edge Overlay Hop-by-Hop MN MNMN CoreRouterGateway NodesFirewall TunnelRouter Switch Load Balancer Switch1 Hop MN MNMNVMVM VMVM VMVM VMVM VMVM VMVMVMVM VMVM VMVM Hop-by-Hop(East-West Trac)Compute Nodes 27. (Ingress) IngressGateway Node BGP Speaker Packet MidoNet Node Multi HomingTunneling Gateway Node MN EncapsulateCompute Node MidoNet EncapsulationVM 1 (Match & Action)ARPPingVMMNMNMN MidoNetNetwork State Database MidoNet Flooding 28. 1. Network Isolation (VLAN)2. OpenFlowHop-By-Hop Switching3. 29. IaaS Cloud Typical Network Topology uplink Solid integration with leading open Minimize ARP broadcasts CMS by exploiting CMS configRESTful API for CMSProvider Virtual Redundant, optimizedRouter (L3)and fault-tolerant paths Isolated tenant network to the Internet (e.g. via (virtual data center) BGP)Fault-tolerant L3 isolation (similar to VPC anddevices and linksVRF)Tenant/Project ATenant/Project B NAT, LB, Tenant ATenant B L3 (and and Filtering Virtual Router Virtual Router L2) VPNs FirewallsNetwork B1Network A1 Network A2 TenantB ofceVirtual L2Virtual L2Virtual L2Switch A1 Switch A2 Switch B1Tenant BVPN RouterVM1VM3 VM5 VM2 VM4VM6Ofce NetworkIsolated L2 networks DHCP, DNS and other services 30. IaaS Cloud Multi-tenancy ACLs L2 isolation Stateful (L4) FirewallVPC Security Groups L3 routing isolation VPNVRF (virtual routing and IPSec forwarding) BGP Scalable control plane REST API ARP, DHCP, ICMP Integration with CMS NAT (Floating IP) OpenStack CloudStack, etc.