Difference between revisions of "Obsolete:Networking"
| Line 23: | Line 23: | ||
** Need Hypervisor agnostic communication for Guest Communication. | ** Need Hypervisor agnostic communication for Guest Communication. | ||
* [http://openvswitch.org/ Open vSwitch] | * [http://openvswitch.org/ Open vSwitch] | ||
| − | ** | + | ** Instance protection rules could be pushed into the vSwitch. |
== Nova Implementation == | == Nova Implementation == | ||
Current implementation | Current implementation | ||
| − | * | + | * Private networking and VPNs |
| − | * | + | ** Instances attached to separated VLAN tagged bridges |
| − | + | * IP Address allocation handled by API | |
| − | * | + | * DHCP Server assigns addresses |
Future implementation | Future implementation | ||
| − | * | + | * Pluggable Network Implementation |
| − | ** | + | ** Support for flat networking model |
| − | ** | + | ** Support for IP injection |
| − | * | + | * Network is its own worker process and uses queue |
| − | * | + | * Support for dedicated network hardware |
== IPv6 == | == IPv6 == | ||
IPv6 should have first-class support, we can derive IPv4 address binding with the IPv6 to IPv6 mapping space and configuration options. | IPv6 should have first-class support, we can derive IPv4 address binding with the IPv6 to IPv6 mapping space and configuration options. | ||
Revision as of 21:40, 12 July 2010
Networking Overview
Live notes may be taken for this topic at: http://etherpad.openstack.org/Networking
Rackspace Implementation
Current implementation
- Flat Network Design
- Networking configurations injected into instances, or pulled via a Guest Agent
- Instances protected by various IPTables, Ebtables, Arptables rules
- Protects instances from IP/MAC Address Spoofing
- Protects instances from ARP Poisoning Attacks
- Host machines connect three Datacenter Networks: Public, ServiceNet, ManagementNet
- ManagementNet is used for communication from controllers to host.
- Instances connected to single bridge for each network, Public, ServiceNet
- Bandwidth throttling.
Future implementation
- Addition of HostNet Bridge for internal communication from Instances to all host network for storage.
- Is this an additional network interface or does this piggy back existing.
- Need Hypervisor agnostic communication for Guest Communication.
- Open vSwitch
- Instance protection rules could be pushed into the vSwitch.
Nova Implementation
Current implementation
- Private networking and VPNs
- Instances attached to separated VLAN tagged bridges
- IP Address allocation handled by API
- DHCP Server assigns addresses
Future implementation
- Pluggable Network Implementation
- Support for flat networking model
- Support for IP injection
- Network is its own worker process and uses queue
- Support for dedicated network hardware
IPv6
IPv6 should have first-class support, we can derive IPv4 address binding with the IPv6 to IPv6 mapping space and configuration options.
