Difference between revisions of "NetworkingGuide/TOC"

Latest revision as of 23:20, 2 December 2015

This guide targets OpenStack administrators seeking to deploy and manage neutron.

Instructions for Contributors

1. Pick an existing topic or create a new topic. For new topics, we're primarily interested in deployment scenarios.
2. Develop content (text and/or diagrams) in a format that supports at least basic markup (e.g., titles, paragraphs, lists, etc.).
3. Provide a link to the content (e.g., gist on github.com, wiki page, blog post, etc.) under the associated topic.
4. Send e-mail to reviewers at networking@openstacknow.com. Make sure to include the email address under which you joined the Foundation if you want to be added as a co-author.
5. A writer turns the content into an actual patch, with tracking bug, and docs reviewers (and the original author, we would hope) make sure it gets reviewed and merged.

To build the RST version of the guide -- that is, the guide based on this TOC -- download the openstack-manuals repo using the instructions at https://wiki.openstack.org/wiki/Documentation/HowTo#Edit_OpenStack_RST_and.2For_DocBook_documentation then type:

  tox -e network

You will find the HTML output in the build directory.

Proposed topics for the Networking Guide

Blueprint: https://blueprints.launchpad.net/openstack-manuals/+spec/create-networking-guide

Preface

Document change history

• Edgar Magana (3/5/15) Tagging as (***) chapters and sub-chapters that already exist in the networking guide

Introduction to networking

1. Basic networking (Completed)
2. Network components (Needs some work, very basic information)
   1. Switches
   2. Routers
   3. Firewalls
   4. Load balancers
3. Tunnel (segmentation) technologies (Needs some work, very basic information)
   1. GRE
   2. VXLAN
4. Network namespaces (Completed)
5. Network address translation (Completed)

Introduction to OpenStack Networking (neutron)

1. Overview/concepts
   1. Virtual network component comparisons (how neutron models above components) (terms in http://docs.openstack.org/admin-guide-cloud/content/api_abstractions.html)
      1. Networks (switches?)
         1. Flat
         2. VLAN
         3. GRE
         4. VXLAN
      2. Subnets (supports multiple per network?)
      3. Ports (switch ports?)
      4. Routers (routers)
      5. Security groups (firewalls)
      6. Extensions
2. Service/component hierarchy
   1. Server
      1. Overview/concepts (provides API, manages database, etc.)
   2. Plug-ins
      1. Overview/concepts (manages agents)
   3. Agents
      1. Overview/concepts (provide layer 2/3 connectivity to instances, handle physical-virtual network transition, handle metadata, etc.)
      2. Layer 2 (Ethernet/Switching)
         1. Linux Bridge
            1. Overview/concepts
         2. OVS
            1. Overview/concepts
      3. Layer 3 (IP/Routing)
         1. L3
            1. Overview/concepts
         2. DHCP
            1. Overview/concepts
      4. Miscellaneous
         1. Metadata
            1. Overview/concepts
   4. Services
      1. Routing Services
      2. VPNaaS
      3. LBaaS
      4. FWaaS

Configuration

(Check source for current content.)

1. Server
   1. Architecture
   2. Configuration file organization, relationships, etc.
      1. Reference common configuration items
2. ML2 plug-in
   1. Overview
      1. Architecture
      2. Configuration file organization, relationships, etc.
         1. Network type drivers
            1. Flat
            2. VLAN
            3. GRE
            4. VXLAN
         2. Tenant network types (similar info in http://docs.openstack.org/admin-guide-cloud/content/tenant-provider-networks.html)
            1. Local
            2. VLAN
               1. ID ranges
            3. GRE
               1. Tunnel ID ranges
            4. VXLAN
               1. ID ranges
               2. Multicast discovery (L2 population)
         3. Mechanisms
            1. Linux Bridge
               1. Option stanza/section
            2. OVS
               1. Option stanza/section
            3. L2 Population
            4. Specialized
               1. Open Source (explains that mechanisms such as OpenDaylight, OpenContrail exist; does not cover how to do this)
               2. Proprietary (vendor) (Just specifying that these exist; does not cover how to do this)
         4. Security
            1. Options
      3. Agents
         1. L3
            1. Configuration file
         2. DHCP
            1. Configuration file
         3. Metadata
            1. Configuration file

Deployment Scenarios

1. Scenario 1a - Legacy with OVS Converted/Merged
   1. Controller node, network node, and 1+ compute nodes (with DVR at least two compute node are required).
   2. Provider networks
      1. Flat
      2. VLAN
   3. Tenant networks
      1. VLAN
      2. GRE
      3. VXLAN
2. Scenario 1b - Legacy with Linux Bridge Converted/Merged
   1. Controller node, network node, and 1+ compute nodes (with DVR at least two compute node are required).
   2. Provider networks
      1. Flat
      2. VLAN
   3. Tenant networks
      1. VLAN
      2. GRE
      3. VXLAN
3. Scenario 2 - High availability (DVR and Open vSwitch) In Progress: Being converted to RST by Matt K
   1. Controller node, network node, and 2+ compute nodes
   2. Provider networks
      1. Flat
      2. VLAN
   3. Tenant networks
      1. GRE
      2. VXLAN
4. Scenario 3a - High availability (L3 HA and OVS) Converted/Merged
   1. Controller node, two network nodes, and 1+ compute nodes
   2. Provider networks
      1. Flat
      2. VLAN
   3. Tenant networks
      1. VLAN
      2. GRE
      3. VXLAN
5. Scenario 3b - High availability (L3 HA and Linux Bridge) Work in Progress
   1. Controller node, two network nodes, and 1+ compute nodes
   2. Provider networks
      1. Flat
      2. VLAN
   3. Tenant networks
      1. VLAN
      2. GRE
      3. VXLAN
6. Scenario 4a - Provider networks with OVS Converted/Merged
   1. Controller node and 1+ compute nodes
   2. Provider networks
      1. Flat
      2. VLAN
7. Scenario 4b - Provider networks with Linux Bridge Needs Review
   1. Controller node and 1+ compute nodes
   2. Provider networks
      1. Flat
      2. VLAN

Migrations

1. Nova-network to Neutron
2. Legacy to DVR (https://docs.google.com/document/d/1qmKoP4GVdjeEEVvqf3tYptVuvUzVIeQmJiTPWPoi_E0/edit -- see migration section at the end)
3. Legacy to L3 HA (Needs work)

Miscellaneous

(Simple note, needs to be added.)

1. Disabling libvirt networking
2. Adding high availability for DHCP (Needs work)
   1. DHCP agents (http://docs.openstack.org/admin-guide-cloud/content/app_demo_multi_dhcp_agents.html)

Advanced configuration

1. Operational
   1. Logging (http://docs.openstack.org/admin-guide-cloud/content/section_adv_logging.html)
2. LBaaS (http://docs.openstack.org/admin-guide-cloud/content/section_lbaas-overview.html and http://docs.openstack.org/admin-guide-cloud/content/lbaas_workflow.html and http://docs.openstack.org/admin-guide-cloud/content/install_neutron-lbaas-agent.html)
3. FWaaS (http://docs.openstack.org/admin-guide-cloud/content/install_neutron-fwaas-agent.html and http://docs.openstack.org/admin-guide-cloud/content/fwaas.html)
4. VPNaaS
5. Service Chaining (regXboi)
6. Group policy (regXboi)
   1. How it differs from legacy neutron data model
7. Debugging
   1. Neutron-debug command
8. IPv6
   1. SLAAC vs. Stateful vs. Stateless
   2. Prefix Delegation

Potential Resources and Reusable Content

• Grizzly Networking Administration Guide
• Networking section of Install Guide for Red Hat, SUSE, Debian, Ubuntu
• Networking section of Cloud Admin Guide
• Networking section of Operators Guide
• Networking section of Security Guide
• Networking section of Config Reference
• Network API Reference
• Advanced Networking Config section of Cloud Admin Guide
• Advanced Features section of Cloud Admin Guide
• Advanced Operational Features section of Cloud Admin Guide

Cloud Administrator Guide

• Networking API (includes table with mapping from some net concepts and mapping to Neutron)
• Configuring SSL support (mostly config ref)
• LBaaS overview (mostly config ref)
• FWaaS overview (task-oriented, nice diagram)
• Plug-in architecture (links, some ref on which plug-ins work with which hypervisors)
• Plug-in configurations (subsections task-oriented on different plug-ins)
• Configure data-forwarding nodes (subsections task-oriented on different plug-ins)
• Configure DHCP agent (subsections task-oriented on different plug-ins)
• Configure L3 agent (task-oriented)
• Configure metering agent (task-oriented)
• Configure LBaaS (task-oriented, OVS or Linux Bridge)
• Networking architecture overview (overview of some neutron services)
• Network connectivity for physical hosts (diagram of basic three-node arch)
• Tenant and provider networks (info on types of networks, diagram)
• VMware NSX integration
• Configure Identity service for networking (subsections with tasks and some config ref)
• Networking scenarios - OVS (two scenarios, diagrams, tasks, OVS tunneling)
• Networking scenarios - Linux Bridge (two scenarios, diagrams)
• Networking scenarios - ML2 (concept info, two scenarios, diagrams, sec group API)
• Advanced config options (mostly config ref)
• Scalable and HA DHCP agents (tasks, diagram)
• API abstractions (concept info on neutron, good sets of tasks)
• Basic Networking operations
• Administrative operations
• Advanced Networking operations
• Use Compute with networking (lots of good tasks for common stuff)
• Advanced features through API extensions - Provider networks
• Advanced features through API extensions - L3 routing and NAT
• Advanced features through API extensions - Security groups
• Advanced features through API extensions - Basic LBaaS operations
• Advanced features through API extensions - FWaaS
• Advanced features through API extensions - Plug-in specific extensions
• Advanced features through API extensions - L3 metering
• Advanced operational features - Logging
• Advanced operational features - Notifications
• Authentication and authorization (lots of concept info, policy reference)

High Availability Guide

• (mostly links)

Operations Guide

• (concept info on different architecture and topologies)

Security Guide