Presentation is loading. Please wait.

Presentation is loading. Please wait.

Red Corp Blue Subnet1 Blue Subnet3Blue Subnet2 Blue Subnet5 Blue Subnet4 Red Subnet2 Red Subnet1 Blue Sales Net Red HR Net Multitenant.

Similar presentations


Presentation on theme: "Red Corp Blue Subnet1 Blue Subnet3Blue Subnet2 Blue Subnet5 Blue Subnet4 Red Subnet2 Red Subnet1 Blue Sales Net Red HR Net Multitenant."— Presentation transcript:

1

2

3

4

5

6

7

8

9

10 Red Corp Blue Subnet1 Blue Subnet3Blue Subnet2 Blue Subnet5 Blue Subnet4 Red Subnet2 Red Subnet1 Blue Sales Net Red HR Net Multitenant Datacenter eg: Hoster Datacenter/Private Cloud Customer VM Network Virtual Subnet Blue Corp Blue R&D Net

11

12 Different subnets   GRE Key Blue Subnet MAC  GRE Key Red Subnet MACMAC   Provider Address (PA) Customer Address (CA)

13 Blue VM 1 : MAC 1, CA 1, PA 1 VM 2 : MAC 2, CA 2, PA 3 VM 3 : MAC 3, CA 3, PA 5 … Red VM 1 : MAC X, CA 1, PA 2 VM 2 : MAC Y, CA 2, PA 4 VM 3 : MAC Z, CA 3, PA 6 … System Center 2012 R2 Virtual Machine Manager Hyper-V n°1 with VMM : PA1 Hyper-V n°2 with VMM : PA3 Hyper-V n°3 with VMM : PA3 VM Networks configuration network virtualization Configuration

14

15

16 Provider Customer

17 Provider Customer

18

19 IP range for hypervisors in Paris Datacenter /16 IP range for hypervisors in Seattle Datacenter /16 1 Logical Network to define those networks : InfraNetworkCloudProvider

20 Provider Customer

21

22 Provider Customer

23

24 Logical switch prerequisite 1: Native/Uplink Port Profile

25 Logical Switch Prerequisite 2: Virtual network adapter port profiles VMQ SR-IOV IPsec task Offloading DHCP Guard…

26

27 Provider Customer

28

29 Provider Customer

30

31 Provider Customer

32

33 Provider Customer

34

35

36

37

38

39 PA : NIC PA : CA : CA : Blue1 Blue2 Virtual Subnet ID : 5001 Virtual Subnet ID : 5222

40 where is default gateway ? ARP for (default gateway) Hyper-V Switch broadcasts ARP to: 1.All local VMs on VSID Network Virtualization filter OOB: VSID:5001 Network Virtualization filter responds to ARP with MAC DGW ARP for ARP is NOT broadcast to the network NIC Hyper-V Switch VSID ACL Enforcement Blue 1 Red 1 Network Virtualization MAC PA1 VSID 5001 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing MAC DGW Different VSID :: Different Hosts NIC MAC PA2 Blue 2 Red VSID 5222 VSID 6001 Hyper-V Switch VSID ACL Enforcement Network Virtualization IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing

41 MAC PA1 OOB: VSID:5001 Use MAC DGW for Default Gateway at MAC DGW Blue 1 learns MAC of Default Gateway MAC DGW Different VSID :: Different Hosts NIC Hyper-V Switch VSID ACL Enforcement Blue 1 Red 1 Network Virtualization MAC PA1 VSID 5001 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing MAC DGW NIC MAC PA2 Blue 2 Red VSID 5222 VSID 6001 Hyper-V Switch VSID ACL Enforcement Network Virtualization IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing

42 sent from Blue 1 MAC B1  MAC DGW  OOB: VSID:5001 in Hyper-V switch MAC B1  MAC DGW  in Network Virtualization filter OOB: VSID:5001 MAC B1  MAC DGW  NVGRE on the wire MAC PA1  MAC PA  MAC B1  MAC B  MAC DGW 5222 Different VSID :: Different Hosts NIC Hyper-V Switch VSID ACL Enforcement Blue 1 Red 1 Network Virtualization MAC PA1 VSID 5001 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing MAC DGW NIC MAC PA2 Blue 2 Red VSID 5222 VSID 6001 Hyper-V Switch VSID ACL Enforcement Network Virtualization IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing

43 received by Blue 2 MAC B1  MAC B  OOB: VSID:5222 in Hyper-V switch MAC B1  MAC B  NVGRE on the wire in Network Virtualization filter OOB: VSID:5222 MAC B1  MAC B  MAC PA1  MAC PA  MAC B1  MAC B  MAC DGW Different VSID :: Different Hosts NIC Hyper-V Switch VSID ACL Enforcement Blue 1 Red 1 Network Virtualization MAC PA1 VSID 5001 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing MAC DGW NIC MAC PA2 Blue 2 Red VSID 5222 VSID 6001 Hyper-V Switch VSID ACL Enforcement Network Virtualization IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing

44

45

46

47 Hyper-V Network Virtualization Gateway DCSQLDNS subnet 10.2x.x/16 subnet 10.3.x.x/16 subnet 10.4.x.x/16 R1R2B1 B2 B3 R3 R4 Y1Y x.x/16  Provider Addresses Consolidated Datacenter Hyper-V Network Virtualization (“NVGRE world”) Host1Host2Host3 Customer Addresses CorpNet 10.1.x.x/16 CorpNet 10.1.x.x/16

48 Hyper-V Network Virtualization Gateway DC SQL DNS subnet 10.2x.x/16 subnet 10.3.x.x/16 subnet 10.4.x.x/16 R1R2B1 B2 B3 R3 R4 Y1Y x.x/16  Provider Addresses Consolidated Datacenter Hyper-V Network Virtualization (“NVGRE world”) Host1Host2Host3 Customer Addresses S2S VPN Internet S2S VPN CorpNet 10.1.x.x/16 CorpNet 10.1.x.x/16

49

50 Hyper-V n°4 With VMM agent NIC 1 : PA/LogicalSwitch NIC 2 : Datacenter NIC 3 : Management VM : WSG1 vNIC 1 : PA/LogicalSwitch vNIC 2 : Datacenter vNIC 3 : Management

51 Provider Customer

52

53

54 Provider Customer

55

56

57

58 Twitter Stanislas Quastana Twitter Arnaud Lheureux Thank you for your attention!

59

60

61

62

63


Download ppt "Red Corp Blue Subnet1 Blue Subnet3Blue Subnet2 Blue Subnet5 Blue Subnet4 Red Subnet2 Red Subnet1 Blue Sales Net Red HR Net Multitenant."

Similar presentations


Ads by Google