Professional Documents
Culture Documents
Contrail Use Cases
Contrail Use Cases
Contrail Use Cases
Cloud Benefits
Network Technology
Overlay n etworking (MPLS/VXLAN)
Control p lane (BGP)
Network load b alancing (ECMP)
Technology
interchange
benefits cloud
and networks
Network Benefits
Service a gility
Self-service
On-demand
Elastic scaling
Software-defined n etworking
Network scale
Security
Resilience
Cloud Technology
Common x86 p latform
Shared service infrastructure
Service a utomation
Route
Reflector
XMPP (BGP)
BGP
VM
Customer Site
Protocols,
Architecture
CE
Router
PE
Router
Server
Tenant
VRF
Customer VRF
Encapsulation Tunnel
Encapsulation Tunnel
Provider Network
Datacenter
OpenStack
Network
Management
S ystem
(NMS)
Config
Node
DMI
Route
Reflector
IBGP
Route
Reflector
Control
Node
IBGP
Analytics
Node
IBGP
Control
Node
SDN
S ystem
XMPP
CE
PE
PE
MPLS
over
M PLS
CE
VM vRouter
Underlay
Switch
Contrail
Underlay
Switch
BGP
vRouter VM
MPLS
over
GRE
or
VXLAN
Gateway
HTTP
REST
Logically Centralized
Web
UI
Nodes
(Physically Distributed)
Horizontally
Scalable
Analytics
Nodes
Configuration
Nodes
Highly
Available
(Active-Active)
IF-M AP
BGP
Control
Nodes
BGP
Federated
BGP, Netconf
XMPP
Database
Nodes
vRouters
Gateways
https://github.com/Juniper/contrail-controller/wiki/Roles-Daemons-P orts
FEDERATED DOMAINS
NMS
Route
Reflector
BGP
BGP
Route
Reflector
Control
Node
BGP
Control
Node
XMPP
BGP
PE
PE
vRouter
Underlay Switches
Public
Network
IP / MPLS VPN
6
vRouter
MPLSoGRE, MPLSoUDP,
VXLAN
CLOUD DC
x
Open Source
(Users, Devs)
Customers
Bugs,
Design Blueprints
Features & Bug fixes
Launchpad
Load Balancing
Gateway Services
(L2, L3 GW)
Rich Analytics,
Overlay-Underlay
Correlation
Service Chaining
High Availability
API Services
PHYSICAL
(Distrib. Policy Enforcement)
LOGICAL
(Centralized P olicy Defn)
VIRTUAL
NETWORK
GREEN
G1
G2
G3
Non-HTTP
traffic
Contrail Policy
with a Firewall
Service
VIRTUAL
NETWORK
BLUE
B1
B2
B3
VIRTUAL
NETWORK
YELLOW
Y1
Y2
Y3
Intra-network
traffic
B3
Y1
G3
B1
Host + Hypervisor
IP fabric
(switch underlay)
G2
B2
Y2
Y3
Host + Hypervisor
SVC 1 VM
Virtual Network
Red
L3
L4
L5
R1
R2
G1
G2
L1
L2
L7
L8
X86 Servers
Routing Instances
SVC 1 VM
SVC 2 VM
G1
R2
R1
PHYSICAL
Virtual Network
Green
L6
Interf = VIF 1
Label = L1
L3
VIF 2
L2
L4
G2
Interface = VIF 3
Label = L7
L6
L5
Server IP =
S2
Srvr IP =
S1
10
SVC 2 VM
VIF 4
L8
Srvr IP =
S4
Srvr IP =
S3
Dst
Next Hop
Dst
Next Hop
Dst
Next Hop
Dst
Next Hop
Dst
Next Hop
Dst
Next Hop
G1
S2 L3
R1
S1 L1
G1
S3 L5
R1
S2 L4
G1
S4 L7
R1
S3 L6
G2
S2 L3
S1 L2
G2
S3 L5
R2
S2 L4
G2
S4 L8
R2
S3 L6
R1
VIF 1
G1
VIF 3
R2
VIF 2
G2
VIF 4
R2
IP Fabric
FEATURE: ANALYTICS
11
Visual representation o f
topology (discovered
using L LDP)
Delails of V Ms,
vRouters, a nd u nderlay
components
CUSTOMER USE-CASES
13
14
2. Enterprise Migration
BMaaS and Legacy Interconnect Customers:
Large APAC based Telco
Large US-based Telco
Juniper IT
Description / HLR
Dynamically connect BMSs (or VMs)
hanging from TORs into Virtual Networks
(VXLAN)
Provide L3 Gateway to the Virtual Networks
Drive entire provisioning through API
Provide underlay-overlay correlation
Orchestration Systems
Not Relevant
1. Initial Provisioning Once t he CPE device c omes up it c alls home, gets info on which DC/POP to connect t o, establishes a s ecure c onnection t o t he PoP.
Contrail Controller running in t he DC/POP, manages/provisions t he CPE device, assigns I P, etc., t hrough OpenStack heat t emplates
2. CPE Device is j ust as another compute node vRouter in the CPE device, and t he DC compute nodes
a. Service Chaining: Enable services t o be c hained on the CPE as well as t he ones in the DC. (Note that f or t he CPE device which cannot run v Router in the
data plane, vRouter agent could be running in the user s pace and programming the data plane for f orwarding.)
b. Analytics: Granular flow statistics information is c ommunicated back t o t he Controller (analytics node) from t he v Router (both f rom CPE & t he DC compute
nodes)
3. Centralized Portal Policy (heat t emplates) definition + Monitoring, diagnostics, analytics (aggregates s tatistics info across all POPs/DCs)
4. Internet Connectivity to t he c ustomer environment is provided from the DC or directly f rom t he CPE device (through s plit t unneling)
2a On P remise Services
CUSTOMER SITE
15
Analytics
L3VPN or Expensive Link
Hypervisor
CPE Device
(compute node)
Internet A ccess /
Connectivity
INTERNET / CUSTOMERs
OWN ACCESS NW
CONTRAIL ARCHITECTURE
CPE IS NOTHING BUT A COMPUTE NODE
ORCHESTRATOR
Network orchestration
CONTRAIL
CONTROLLER
CUSTOMER SITE
DC / POP SITE
vRouter
Linux Host + Hypervisor
Physical IP Fabric
(no changes)
vRouter
Linux Host Hypervisor
16
17
Solution Description
Scale-out a nd on-demand security a nd c onnectivity s ervices to
business c ustomers with light-weight device a t c ustomer
premise
MARKET PLACE
VNFs
ESI
Controller
Internet
ESE
ESE
ESI POP
ESE
ESE
Software
Defined WAN
(L3VPN)
ESE
Customer
Branch
ESE
ESE
Customer
DC
18
ESE
ESE
ESI POP
(NTT DC)
ESI POP
Customer
HQ
Customer
Premise
Solution Description
Contrail /
OpenStack
VCPE
VCPE
3
VPN IP/MPLS
Basic
CE
PE
Basic
CE
19
Solution Description
3
Contrail / Openstack
SGSN / MME
VNF
Internet
2
S / P -GW
MX
20
4 Integration with MX
LOGICAL
VMs in DC 1
G
1
VMs in DC 2
G
2
G
3
Network Policy to
control traffic
between virtual
networks
B1
G
4
Intra-network Traffic
B2
VMs in DC 2
B3
B4
Intra-Network Traffic
1. Direct Controller Federation of Control traffic
BGP
VRF
(RT2)
21
VRF
(RT1)
VRF
(RT2)
PHYSICAL
VMs in DC 1
G
1
R1
B1
G
2
R2
B2
VRF
(RT1)
WAN
GW
WAN
GW
IP / MPLS VPN
EVPN
G
3
G
4
R3
B3
R4
B4
22
2. Enterprise Migration
BMaaS and Legacy Interconnect Customers:
Large APAC based Telco
Large US-based Telco
Juniper IT
Description / HLR
Dynamically connect BMSs (or VMs)
hanging from TORs into Virtual Networks
(VXLAN)
Provide L3 Gateway to the Virtual Networks
Drive entire provisioning through API
Provide underlay-overlay correlation
Orchestration Systems
Not Relevant
Contrail Controller
Existing Contrail
controller extended to
support NetConf
OVSDB
E(L3)VPN + Netconf
VXLAN Tunnels
VXLAN Tunnels
23
VLAN Green
VLAN Red
LOGICAL
VM1
VXLAN
Tunnels
VM2
Green
Virtual
Network
Virtual
Network
VM3
VLAN
Green
VM1
VM2
VM4
WAN /
Internet
L3 GW
VM3
VM5
Bare Metal
Server
Virtual Machines on
any Hypervisor
24
L3 GW
VM4
VLAN
Blue
VM5
Blue
Network Orchestration
Compute Orchestration
Admin UI Interaction
Operator
Operator
OPTION 1 :
OPTION 2 :
OpenStack
with ESXi
(Currently
Supported)
vSphere with
Contrail
(currently
supported)
XMPP
Nova Compute
KVM Host
ESXi Host
ESXi Host
Nova
Compute
Operator
OPTION 3 :
vCenter
vCenter a s a
Compute
XMPP
XMPP
vCenter
Operator
OPTION 4 :
vCenter with
L2/L3
Gateway
XMPP
OVSDB
ESXi Host
KVM Host
KVM Host
ESXi Host
VXLAN
L2 / L3 GW
VLAN
25
26
Solution Description
3
TENANT A
1
2
TENANT B
Contrail /
Openstack
27
User
Image Catalog
Dashboard
Templates
END-USER APPS
File Cloud
Ticketing
CRM
APIs
KVM
Bare Metal
LXC
ESXi
COMPUTE
Contrail
NETWORK
Ceph
NFS
Glance,
Swift, Cinder
STORAGE
IDENTITY
(Keystone)
METERING
(Ceilometer)
RACKS OF SERVERS
Source: CloudWatt
28
EVENTS
BI
Monitoring
ALARMS
Rating
DevOps
Billing
Capacity
Planning
Solution Description
Dynamically scaled
application edge
SRX
29
Contrail /
Openstack
2 Juniper MX / SRX
MX GW
LOGICAL
Green V irtual
Network
C1
PHYSICAL
C1
VM1
C2
C2
C3
C3
Docker E ngine
Linux Host running vRouter
30
C4
Blue V irtual
Network
C4
IP fabric
(switch underlay)
VM1
VM2
Solution Description
Contrail / Openstack
ENTERPRISE
IP VPN
31
Public Cloud
2
P + V DATA CENTER
(BMaaS + IaaS)
Certification Basics
Tier
Functional
Validation
Silver
Gold
Platinum
32
Performance
Benchmarks
Customizing and
API Integration
NFV through Contrail (this is the Internet / Firewall NFV a ka. v CPE) http://www.youtube.com/watch?v=_64no8P2vUw
33
FINAL THOUGHTS
34
35