MidoNet roadmap
-
Upload
jean-francois-joly -
Category
Engineering
-
view
367 -
download
1
Transcript of MidoNet roadmap
![Page 1: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/1.jpg)
MidoNet Roadmap & Vision
Jean-François JolyProduct Manager @ Midokura
October 2015
![Page 2: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/2.jpg)
Disclaimer
• This presentation contains product features that are currently under development.
• Features are subject to change.• Technical feasibility and user demand will affect final delivery.
![Page 3: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/3.jpg)
Agenda
Solving problems⚫ Install⚫ Troubleshoot⚫ Security⚫ Multi-sites⚫ Faster delivery
Problem
Today’s solution
Tomorrow’s solution
![Page 4: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/4.jpg)
MidoNet Releases
2016.H1 2016.H22015.H2 2017.H1
MidoNet 5.1 MidoNet 5.3
MidoNet 5.0
MidoNet 5.5
MidoNet 5.2 MidoNet 5.4
![Page 5: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/5.jpg)
InstallingFirst problem
![Page 6: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/6.jpg)
Example install flow# apt-get install figlet
[…]
The following NEW packages will be installed:
figlet
[…]
Setting up figlet (2.2.5-2) ...
# figlet easy
___ __ _ ___ _ _
/ _ \/ _` / __| | | |
| __/ (_| \__ \ |_| |
\___|\__,_|___/\__, |
|___/
![Page 7: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/7.jpg)
Who needs to deployProduction DevOps
Systems and networks adminsSupport
DevOpsSystems and networks adminsQuality assurance
Test
DevOpsSoftware engineers
Development
![Page 8: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/8.jpg)
MidoNet todayProduction Quick start guide
Installers: Puppet, Mirantis Fuel, Juju, TripleO (RDO Manager) ...
quickstart.sh# curl https://www.midonet.org/quickstart-v5.0.sh | sudo bash
Test
devstackDevelopment
![Page 9: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/9.jpg)
MidoNet today - continued
Agents non disruptive upgradesFlows are not interrupted during an upgrade
![Page 10: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/10.jpg)
MidoNet tomorrow
More installers (Liberty , Suse Openstack installer)Less components : distributed flow and topology databaseSeamless upgrades : API is available, topology can change during an upgradeAuto discovery of services
![Page 11: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/11.jpg)
TroubleshootingSecond problem
![Page 12: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/12.jpg)
Lack of visibility
![Page 13: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/13.jpg)
Today : trace
![Page 14: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/14.jpg)
Trace
Use mm-trace to trace the trafficSee every hosts where a packet transitsSee the logical topologySee the security rules that are applied
![Page 15: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/15.jpg)
Today : inspect
![Page 16: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/16.jpg)
Mirroring
Mirror any destination or subnetMirror to multiple portsMirror to a VM or physical applianceUse tcpdump to view the trafficUse an appliance to perform deep packet inspection and prevent advanced persistent threats
![Page 17: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/17.jpg)
Physical switches
![Page 18: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/18.jpg)
![Page 19: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/19.jpg)
![Page 20: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/20.jpg)
Tomorrow
Integration with the fabric⚫ Underlay and overlay trace⚫ Underlay and overlay topology historyCurate the information to show what's most relevant to the operatorsPro-active fault detection
![Page 21: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/21.jpg)
SecurityThird problem
![Page 22: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/22.jpg)
Endless pressure
External: Advanced persistent threats requires protection of every machine and detection mechanismInternal : Compliance and auditors can dictate software choices
![Page 23: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/23.jpg)
Today : security groups
Manage the security per port
![Page 24: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/24.jpg)
Today : mirroring
Use port mirroring with VM appliances to insert additional security systems
Security appliance
![Page 25: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/25.jpg)
Today : perimeter firewall
Perimeter Firewall for traditional rules management and easier audits
![Page 26: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/26.jpg)
Today : distributed agents
Attacks are dropped at the edge with MidoNet being distributed
![Page 27: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/27.jpg)
Tomorrow
Insert network services directly in the network path at L2 or L3This can be done programmatically using APIRetrieve the Firewall logs via the API for monitoring, audits or complianceSupport Neutron Tap as a Service
![Page 28: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/28.jpg)
Multi sitesFourth problem
![Page 29: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/29.jpg)
Expansion and availability
Enterprises outgrow their initial datacenterDisasters, compliances drive the organization’s multi-sites agenda
![Page 30: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/30.jpg)
![Page 31: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/31.jpg)
Today
Run MidoNet distributed over multiple sitesOrchestrate the multiple sites via the API
![Page 32: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/32.jpg)
Tomorrow
Peer several router to establish a private network between data centers and tenantsOn demand VPN using VPNaaSSingle pane of glass to manage multiple sites : same authentication, security rules...
![Page 33: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/33.jpg)
ContainersFifth problem
![Page 34: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/34.jpg)
Faster delivery
Interest for containers is similar to what happened with VMs 10 years agoImprove application delivery time and frequencyContainers enable reproducible delivery at scale with continuous integration and deployment.Faster to deploy and easier to manipulate than VM
![Page 35: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/35.jpg)
Higher density
Containers footprint is smaller than virtual machinesMore applications running on the same hardware brings more density and even higher network port concentration
![Page 36: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/36.jpg)
Micro services
Application architecture is split in small, specialized, services requiring granular security
Virtual Machine
Image treatment
Communication
Authentication
Business workflow
Container
Image treatment
Container
Container
Container
Communication
Authentication
Business workflow
![Page 37: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/37.jpg)
Today
Run docker containers inside physical machine (nova docker)Run kubernetes and mesos on top of Openstack and MidoNet
![Page 38: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/38.jpg)
Tomorrow
Natively connect docker containers to MidoNet (project Kuryr)Integration of containers within Openstack through Openstack MagnumOrchestrate MidoNet with Mesos, Kubernetes, Swarm...
![Page 39: MidoNet roadmap](https://reader031.fdocuments.net/reader031/viewer/2022020301/586fdd181a28ab18428b671f/html5/thumbnails/39.jpg)
Join us on Slack to discuss these problems and implement great solution inside MidoNetCheck MidoNet Releases page in wiki:https://github.com/midonet/midonet/wiki/Release-Schedule
Read MidoNet documentation for more details:https://docs.midonet.org/
Follow MidoNet roadmap