Finding an Efficient VNF Architecture for Next-Generation Telecom Infrastructure
Download the HPE White Paper, “”. Global IP traffic expected to triple over the next five years, driven by large-scale mobility, the rise of the Internet of Things (IoT), emerging applications like 4K video and virtual/augmented reality, and smart everything, from connected cars to connected waste-management systems for cities. Telecom providers are facing a broken... Read more →
Huawei Wins SD-WAN Business with Japan’s SoftBank
The company also announced a 10 Gb/s-capable WiFi access point.
Libraries Stand for the Internet’s Future and Join the Call to End Shutdowns
Human development cannot happen without inclusive access to information.
This, along with reading and applying knowledge helps us to make better decisions and to create and innovate.
The Internet has brought this much closer. It is easier to create, communicate, and collaborate than ever before. E-commerce has given us new markets, e-journals are allowing us to learn, and e-health is keeping us fit.
Libraries have seized the opportunity not only to promote online access to information, but to help their users get the best out of the Internet. The welcoming environment and targeted support that they offer is almost as important as the resources to which they provide access. Libraries are also key to improving levels of digital literacy.
Internet access is a prerequisite for achieving this mission. With information providers from the United Nations to local newspapers cutting back on physical printing, the possibility to get online is more essential than ever. Where connections are unreliable, or do not exist, people may even be in a worse position than before. Because of this, all 196 of the UN’s Member States endorsed giving everyone the possibility of Internet access in the 2030 Agenda.
It is therefore unacceptable that governments Continue reading
Datanauts 100: Ask Me Anything
The Datanauts answer listener questions on tech topics and favorite episodes in an AMA-style format to celebrate the 100th show. The post Datanauts 100: Ask Me Anything appeared first on Packet Pushers.
Libraries Stand for the Internet’s Future and Join the Call to End Shutdowns
Human development cannot happen without inclusive access to information.
This, along with reading and applying knowledge helps us to make better decisions and to create and innovate.
The Internet has brought this much closer. It is easier to create, communicate, and collaborate than ever before. E-commerce has given us new markets, e-journals are allowing us to learn, and e-health is keeping us fit.
Stephen Wyber
Worth Reading: When the cloud deletes our data
The post Worth Reading: When the cloud deletes our data appeared first on rule 11 reader.
Episode 11 – Shaking The Status Quo
The network engineering community can get a bit stuck on ideas from time to time, and we take a stab at challenging some of these deeply held beliefs in Episode 11 of Network Collective. Join Ethan Banks, Mike Bushong, and the Network Collective crew as we talk about certifications, multi-vendor environments, orchestration, disaggregation, SDN, cloud, and the network industry hype cycle. Yeah, all of that in one 50 minute package. You’re not going to want to miss this one.
—–
Outro Music:
Danger Storm Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 3.0 License
http://creativecommons.org/licenses/by/3.0/
Ethan Banks
Guest
Mike Bushong
Guest
Outro Music:
Danger Storm Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 3.0 License
http://creativecommons.org/licenses/by/3.0/
The post Episode 11 – Shaking The Status Quo appeared first on Network Collective.
Episode 11 – Shaking The Status Quo
The network engineering community can get a bit stuck on ideas from time to time, and we take a stab at challenging some of these deeply held beliefs in Episode 11 of Network Collective. Join Ethan Banks, Mike Bushong, and the Network Collective crew as we talk about certifications, multi-vendor environments, orchestration, disaggregation, SDN, cloud, and the network industry hype cycle. Yeah, all of that in one 50 minute package. You’re not going to want to miss this one.
—–
Outro Music:
Danger Storm Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 3.0 License
http://creativecommons.org/licenses/by/3.0/
Ethan Banks
Guest
Mike Bushong
Guest
Outro Music:
Danger Storm Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 3.0 License
http://creativecommons.org/licenses/by/3.0/
The post Episode 11 – Shaking The Status Quo appeared first on Network Collective.
What is happiness ? Let me show you !
My little , sweet baby girl has just born. This is happiness and I feel totally different now. I am a father of two now ? She says hello to all networking community and father’s friends ?
The post What is happiness ? Let me show you ! appeared first on Cisco Network Design and Architecture | CCDE Bootcamp | orhanergun.net.
Wireless ISPs Spectrum Problem
Wireless ISPs also known as WISP mostly use unlicensed frequency spectrum. Frequency spectrum is the most critical asset for the Mobile and Wireless networks and it is sold in auctions for 100s of millions of dollars. Frequency spectrum is managed by the governments and governments in general, sell frequency spectrum in auctions. And […]
The post Wireless ISPs Spectrum Problem appeared first on Cisco Network Design and Architecture | CCDE Bootcamp | orhanergun.net.
NSX-T: Routing where you need it (Part 1)
Network virtualization has come a long way. NSX has played a key role in redefining and modernizing networking in a Datacenter. Providing an optimal routing path for the traffic has been one of the topmost priorities of Network Architects. Thanks to NSX distributed routing, the routing between different subnets on a ESXi hypervisor can be done in kernel and traffic never has to leave the hypervisor. With NSX-T, we take a step further and extend this network functionality to a multi-hypervisor and multi-cloud environment. NSX-T is a platform that provides Network and Security virtualization for a plethora of compute nodes such as ESXi, KVM, Bare Metal, Public Clouds and Containers.
This blog series will introduce NSX-T Routing & focus primarily on Distributed Routing. I will explain Distributed Routing in detail with a packet walk between the VMs sitting in same/different hypervisors, connectivity to physical infrastructure and multi-tenant routing. Let’s start with a quick reference to NSX-T architecture.
NSX-T Architecture
NSX-T has a built-in separation for Management plane (NSX-T Manager), Control Plane (Controllers) and Data Plane (Hypervisors, Containers etc.). I highly recommend going through NSX-T Whitepaper for detailed information on architecture to understand the components and functionality of each of the planes.
Couple of interesting points that I want to highlight about the architecture:
- NSX-T Manager is decoupled from vCenter and is designed to run across all these heterogeneous platforms.
- NSX-T Controllers serve as central control point for all the logical switches within a network and maintains information about hosts, logical switches/routers.
- NSX-T Manager and NSX-T Controllers can be deployed in a VM form factor on either ESXi or KVM.
- In order to provide networking to different type of compute nodes, NSX-T relies on a virtual switch called “hostswitch”. The NSX management plane fully manages the lifecycle of this “hostswitch”. This hostswitch is a variant of the VMware virtual switch on ESXi-based endpoints and as Open Virtual Switch (OVS) on KVM-based endpoints.
- Data Plane stretches across a variety of compute nodes: ESXi, KVM, Containers, and NSX-T edge nodes (on/off ramp to physical infrastructure).
- Each of the compute nodes is a transport node & will be a TEP (Tunnel End Point) for the host. Depending upon the teaming policy, this host could have one or more TEPs.
- NSX-T uses GENEVE as underlying overlay protocol for these TEPs to carry Layer 2 information across Layer 3. GENEVE provides us the complete flexibility of inserting Metadata as TLV (Type, Length, Value) fields which could be used for new features. One of the examples of this Metadata is VNI (Virtual Network Identifier). We recommend a MTU of 1600 to account for encapsulation header. More details on GENEVE can be found on the following IETF Draft. https://datatracker.ietf.org/doc/draft-ietf-nvo3-geneve/
Before we dive deep into routing, let me define a few key terms.
Logical Switch is a broadcast domain which can span across multiple compute hypervisors. VMs in the same subnet would connect to the same logical switch.
Logical Router provides North-South, East-West routing between different subnets & has two components: Distributed component that runs as a kernel module in hypervisor and Centralized component to take care of centralized functions like NAT, DHCP, LB and provide connectivity to physical infrastructure.
Types of interfaces on a Logical Router
- Downlink- Interface connecting to a Logical switch.
- Uplink– Interface connecting to the physical infrastructure/physical router.
- RouterLink– Interface connecting two Logical routers.
Edge nodes are appliances with a pool of capacity to run the centralized services and would be an on/off ramp to the physical infrastructure. You can think of Edge node as an empty container which would host one or multiple Logical routers to provide centralized services and connectivity to physical routers. Edge node will be a transport node just like compute node and will also have a TEP IP to terminate overlay tunnels.
They are available in two form factor: Bare Metal or VM(leveraging Intel’s DPDK Technology).
Moving on, let’s also get familiarized with the topology that I will use throughout this blog series.
I have two hypervisors in above topology, ESXi and KVM. Both of these hypervisors have been prepared for NSX & have been assigned a TEP (Tunnel End Point) IP, ESXi Host: 192.168.140.151, KVM host: 192.168.150.152. These hosts have L3 connectivity between them via transport network. I have created 3 Logical switches via NSX Manager & have connected a VM to each one of the switches. I have also created a Logical Router named Tenant 1 Router, which is connected to all the logical switches and is acting as a Gateway for each subnet.
Before we look at the routing table, packet walk etc., let’s look at how configuration looks like in NSX Manager. Here is switching configuration, showing 3 Logical switches.
Following is the routing configuration showing the Tenant 1 Logical Router.
Once configured via NSX Manager, the logical switches and routers are pushed to both the hosts, ESXi and KVM. Let’s validate that on both hosts. Following is the output from ESXi showing the Logical switches and router.
Following is the output from KVM host showing the Logical switches and router.
NSX Controller MAC learning and advertisement
Before we look at the packet walk, it is important to understand how remote MAC addresses are learnt by the compute hosts. This is done via NSX Controllers. As soon as a VM comes up and connects to Logical switch, local TEP registers its MAC with the NSX Controller. Following output from NSX Controller shows that the MAC addresses of VMs on Web VM1, App VM1 and DB VM1 have been reported by their respective TEPs. NSX Controller publishes this MAC/TEP association to the compute hosts depending upon type of host.
Now, we will look at the communication between VMs on the same hypervisor.
Distributed Routing for VMs hosted on the same Hypervisor
We have WEB VM1 and App VM1 hosted on the same ESXi hypervisor. Since we are discussing the communication between VMs on same host, I am just showing the relevant topology below.
Following is how traffic would go from Web VM1 to App VM1.
- Web VM1 (172.16.10.11) sends traffic to the gateway 172.16.10.1, as the destination (172.16.20.11) is in different subnet. This traffic traverses Web-LS and goes to Downlink interface of Local distributed router running as a kernel module on ESXi Host.
- Routing lookup happens on the ESXi distributed router and 172.16.20.0 subnet is a Connected route. Packet gets routed and is put on the App-LS.
- Destination MAC lookup for MAC address of App VM1 is needed to forward the frame. In this case, App VM1 is also hosted on the same ESXi, we do a MAC address lookup and find a local MAC entry as highlighted in diagram above.
- L3 rewrite is done and packet is sent to App VM1.
Please note that the packet didn’t have to leave the hypervisor to get routed. This routing happened in kernel. Now that we understand the communication between two VMs (in different subnet) on same hypervisor, let’s take a look at the packet walk from Web VM1 (172.16.10.11) on ESXi to DB-VM1 (172.16.30.11) hosted on KVM.
Distributed Routing for VMs hosted on the different Hypervisors (ESXi & KVM)
- Web VM1 (172.16.10.11) sends traffic to the gateway 172.16.10.1, as the destination (172.16.30.11) is in different subnet. This traffic traverses Web-LS and goes to Downlink interface of Local distributed router on ESXi Host.
- Routing lookup happens on the ESXi distributed router. Packet gets routed and is put on the DB-LS. Following output show the distributed router on ESXi host and it’s routing table.
- Destination MAC lookup for MAC address of DB VM1 is needed to forward the frame. MAC lookup is done and MAC address of DB VM1 is learnt via remote TEP 192.168.150.152. Again, this MAC/TEP association table was published by NSX Controller to the hosts.
- ESXi TEP encapsulates the packet and sends it to the remote TEP with a Src IP=192.168.140.151, Dst IP=192.168.150.152.
- Packet is received at remote KVM TEP 192.168.150.152, where VNI (21386) is matched. MAC lookup is done and packet is delivered to DB VM1 after removing the encapsulation header.
A quick traceflow validates the above packet walk.
This concludes the routing components part of this blog. In the next blog of this series, I will discuss multi-tenant routing and connectivity to physical infrastructure.
NSX-T: Routing where you need it (Part 1)
Network virtualization has come a long way. NSX has played a key role in redefining and modernizing networking in a Datacenter. Providing an optimal routing path for the traffic has been one of the topmost priorities of Network Architects. Thanks to NSX distributed routing, that the routing between different subnets on a ESXi hypervisor can... Read more →
Location-Based Tech: NFC, WiFi, and BLE
A look at the wireless technologies used for location-based services.
When the Network Knows All
With the internet of things, there can such a thing as too much data.