Learning openstack networking build a solid foundation in virtual networking technologies for openstack-based clouds
Discover the basics of virtual networking in OpenStack to implement various cloud network architectures Key Features Learn the difference between Open vSwitch and Linux bridge switching technologies Connect virtual machine instances to virtual networks, subnets, and ports Implement virtual load bala...
| Otros Autores: | |
|---|---|
| Formato: | Libro electrónico |
| Idioma: | Inglés |
| Publicado: |
Birmingham ; Mumbai :
Packt
2018.
|
| Edición: | Third edition |
| Materias: | |
| Ver en Biblioteca Universitat Ramon Llull: | https://discovery.url.edu/permalink/34CSUC_URL/1im36ta/alma991009630703706719 |
Tabla de Contenidos:
- Intro
- Title Page
- Copyright and Credits
- Packt Upsell
- Contributors
- Table of Contents
- Preface
- Introduction to OpenStack Networking
- What is OpenStack Networking?
- Features of OpenStack Networking
- Switching
- Routing
- Load balancing
- Firewalling
- Virtual private networks
- Network functions virtualization
- OpenStack Networking resources
- Virtual network interfaces
- Virtual network switches
- Overlay networks
- Virtual Extensible Local Area Network (VXLAN)
- Generic Router Encapsulation (GRE)
- Generic Network Virtualization Encapsulation (GENEVE)
- Preparing the physical infrastructure
- Configuring the physical infrastructure
- Management network
- API network
- External network
- Guest network
- Physical server connections
- Single interface
- Multiple interfaces
- Bonding
- Separating services across nodes
- Using a single controller node
- Using a dedicated network node
- Summary
- Installing OpenStack
- System requirements
- Operating system requirements
- Initial network configuration
- Example networks
- Interface configuration
- Initial steps
- Permissions
- Configuring the OpenStack repository
- Upgrading the system
- Setting the hostnames
- Installing and configuring Network Time Protocol
- Rebooting the system
- Installing OpenStack
- Installing and configuring the MySQL database server
- Installing and configuring the messaging server
- Installing and configuring memcached
- Installing and configuring the identity service
- Configuring the database
- Installing Keystone
- Configuring tokens and drivers
- Bootstrap the Identity service
- Configuring the Apache HTTP server
- Setting environment variables
- Defining services and API endpoints in Keystone
- Defining users, projects, and roles in Keystone
- Installing and configuring the image service.
- Configuring the database
- Defining the Glance user, service, and endpoints
- Installing and configuring Glance components
- Configuring authentication settings
- Configuring additional settings
- Verifying the Glance image service installation
- Installing additional images
- Installing and configuring the Compute service
- Configuring the database
- Defining the Nova user, service, and endpoints
- Installing and configuring controller node components
- Configuring authentication settings
- Additional controller tasks
- Installing and configuring compute node components
- Additional compute tasks
- Adding the compute node(s) to the cell database
- Installing the OpenStack Dashboard
- Updating the host and API version configuration
- Configuring Keystone settings
- Modifying network configuration
- Uninstalling default Ubuntu theme (optional)
- Reloading Apache
- Testing connectivity to the dashboard
- Familiarizing yourself with the dashboard
- Summary
- Installing Neutron
- Basic networking elements in Neutron
- Extending functionality with plugins
- Modular Layer 2 plugin
- Drivers
- TypeDrivers
- Mechanism drivers
- ML2 architecture
- Network namespaces
- Installing and configuring Neutron services
- Creating the Neutron database
- Configuring the Neutron user, role, and endpoint in Keystone
- Installing Neutron packages
- Configuring Neutron to use Keystone
- Configuring Neutron to use a messaging service
- Configuring Nova to utilize Neutron networking
- Configuring Neutron to notify Nova
- Configuring Neutron services
- Starting neutron-server
- Configuring the Neutron DHCP agent
- Restarting the Neutron DHCP agent
- Configuring the Neutron metadata agent
- Restarting the Neutron metadata agent
- Interfacing with OpenStack Networking
- Using the OpenStack command-line interface.
- Using the Neutron command-line interface
- Using the OpenStack Python SDK
- Using the cURL utility
- Summary
- Virtual Network Infrastructure Using Linux Bridges
- Using the Linux bridge driver
- Visualizing traffic flow through Linux bridges
- VLAN
- Flat
- VXLAN
- Potential issues when using overlay networks
- Local
- Configuring the ML2 networking plugin
- Configuring the bridge interface
- Configuring the overlay interface
- ML2 plugin configuration options
- Type drivers
- Mechanism drivers
- Using the L2 population driver
- Tenant network types
- Flat networks
- Network VLAN ranges
- VNI ranges
- Security groups
- Configuring the Linux bridge driver and agent
- Installing the Linux bridge agent
- Updating the Linux bridge agent configuration file
- Physical interface mappings
- Enabling VXLAN
- L2 population
- Local IP
- Firewall driver
- Configuring the DHCP agent to use the Linux bridge driver
- Restarting services
- Verifying Linux bridge agents
- Summary
- Building a Virtual Switching Infrastructure Using Open vSwitch
- Using the Open vSwitch driver
- Basic OpenvSwitch commands
- Base commands
- ovs-vsctl
- ovs-ofctl
- ovs-dpctl
- ovs-appctl
- Visualizing traffic flow when using Open vSwitch
- Identifying ports on the virtual switch
- Identifying the local VLANs associated with ports
- Programming flow rules
- Flow rules for VLAN networks
- Return traffic
- Flow rules for flat networks
- Flow rules for overlay networks
- Flow rules for local networks
- Configuring the ML2 networking plugin
- Configuring the bridge interface
- Configuring the overlay interface
- ML2 plugin configuration options
- Mechanism drivers
- Flat networks
- Network VLAN ranges
- Tunnel ID ranges
- VNI Ranges
- Security groups
- Configuring the Open vSwitch driver and agent.
- Installing the Open vSwitch agent
- Updating the Open vSwitch agent configuration file
- Tunnel types
- L2 population
- VXLAN UDP port
- Integration bridge
- Tunnel bridge
- Local IP
- Bridge mappings
- Configuring the bridges
- Firewall driver
- Configuring the DHCP agent to use the Open vSwitch driver
- Restarting services
- Verifying Open vSwitch agents
- Summary
- Building Networks with Neutron
- Network management in OpenStack
- Provider and tenant networks
- Managing networks in the CLI
- Creating a flat network in the CLI
- Creating a VLAN network in the CLI
- Creating a local network in the CLI
- Listing networks in the CLI
- Showing network properties in the CLI
- Updating network attributes in the CLI
- Deleting networks in the CLI
- Creating networks in the dashboard
- Via the Project panel
- Via the Admin panel
- Subnet management in OpenStack
- Working with IPv4 addresses
- Working with IPv6 addresses
- Creating subnets in the CLI
- Creating a subnet in the CLI
- Listing subnets in the CLI
- Showing subnet properties in the CLI
- Updating a subnet in the CLI
- Creating subnets in the dashboard
- Via the Project tab
- Via the Admin tab
- Managing subnet pools
- Creating a subnet pool
- Creating a subnet from a pool
- Deleting a subnet pool
- Assigning a default subnet pool
- Managing network ports in OpenStack
- Creating a port
- Summary
- Attaching Instances to Networks
- Attaching instances to networks
- Attaching instances to networks at creation
- Specifying a network
- Specifying a port
- Attaching multiple interfaces
- Attaching network interfaces to running instances
- Detaching network interfaces
- Exploring how instances get their addresses
- Watching the DHCP lease cycle
- Troubleshooting DHCP
- Exploring how instances retrieve their metadata
- The DHCP namespace.
- Adding a manual route to 169.254.169.254
- Using DHCP to inject the route
- Summary
- Managing Security Groups
- Security groups in OpenStack
- An introduction to iptables
- Using ipset
- Working with security groups
- Managing security groups in the CLI
- Creating security groups in the CLI
- Deleting security groups in the CLI
- Listing security groups in the CLI
- Showing the details of a security group in the CLI
- Updating security groups in the CLI
- Creating security group rules in the CLI
- Deleting security group rules in the CLI
- Listing security group rules in the CLI
- Showing the details of a security group rule in the CLI
- Applying security groups to instances and ports
- Removing security groups from instances and ports in the CLI
- Implementing security group rules
- Stepping through the chains
- Working with security groups in the dashboard
- Creating a security group
- Managing security group rules
- Applying security groups to instances
- Disabling port security
- Configuring Neutron
- Disabling port security for all ports on a network
- Modifying port security on an individual port
- Allowed address pairs
- Summary
- Role-Based Access Control
- Working with access control policies
- Managing access control policies in the CLI
- Creating access control policies in the CLI
- Deleting access control policies in the CLI
- Listing access control policies in the CLI
- Showing the details of an access control policy in the CLI
- Updating access control policies in the CLI
- Applying RBAC policies to projects
- Creating projects and users
- Creating a network to share
- Creating a policy
- Viewing the policy in action
- Creating policies for external networks
- Summary
- Creating Standalone Routers with Neutron
- Routing traffic in the cloud.
- Installing and configuring the Neutron L3 agent.
