Upload File

symantec sdn deployment

22
Symantec SDN Deployment Jasmeet Sidhu, Rudrajit Tapadar Cloud Platform Engineering

Upload: rudrajit-tapadar

Post on 28-Jul-2015

235 views

Category:

Engineering


1 download

Report

Tags:

TRANSCRIPT

Page 1: Symantec SDN Deployment

Symantec SDN Deployment

Jasmeet Sidhu, Rudrajit TapadarCloud Platform Engineering

Page 2: Symantec SDN Deployment

Class of Service

Copyright © 2015 Symantec Corporation 2

Page 3: Symantec SDN Deployment

Class of Service

• Dev– For developers to get familiar with OpenStack cloud– Each developer has a project

• Production– For teams to onboard their members– Each team has a project– Manage user roles– Manage production workloads

Copyright © 2015 Symantec Corporation3

Page 4: Symantec SDN Deployment

Self-Service User Onboarding

Copyright © 2015 Symantec Corporation 4

Page 5: Symantec SDN Deployment

Self-Service User Onboarding

• Zero tickets for user onboarding– Provide sign up capabilities on Horizon

• Provide easy networking on Dev CoS– Hide all complexities– Automatically create network– Allocate routable subnets by using Contrail VNC APIs– Create security group with proper rules– Create unique domain names for instances by using Designate for routable

IPs

Copyright © 2015 Symantec Corporation5

Page 6: Symantec SDN Deployment

Load Balancer as a Service

Copyright © 2015 Symantec Corporation 6

Page 7: Symantec SDN Deployment

Load Balancer as a Service

•Out of the box

– Icehouse, v1 APIs

– Launch HA Proxy service instances on a single AZ

– SSL Support: Wildcard cert

• Symantec fixes

–Multiple AZ, SSL Passthrough, Stats and Metrics

• Performance:

–~6.5 Gbps throughput with 10K parallel connections, VIP with 2 members

–20K HTTPS requests/sec for 10K parallel connections with 1 million requests, 1K response size

• Tuning - haproxy.cfg: maxconn 50K, nbproc 4, ulimit-n 200K, Cipher

• Pain points

–No control over ha proxy cfg

–No control over resource allocations (cpu, etc)Copyright © 2015 Symantec Corporation

7

Page 8: Symantec SDN Deployment

Baremetal on Overlay

Copyright © 2015 Symantec Corporation 8

Page 9: Symantec SDN Deployment

Baremetal on Overlay

•Applications that run on baremetal but needs to be on the overlay– Example: swift proxy and data nodes– Launch them inside network namespaces– Plug them to the vRouter– East-West Traffic

• Manual Setup via scripts– Nova is not aware but Contrail is.– Multiple nics sitting on multiple networks– Static IPs

Copyright © 2015 Symantec Corporation9

Page 10: Symantec SDN Deployment

Availability::Control Plane

Copyright © 2015 Symantec Corporation 10

Page 11: Symantec SDN Deployment

Control Plane Availability

• Goal - 99.95% Availability

• 5 SDN controller VMs distributed over 3 racks

• 5 Cassandra database baremetal nodes distributed over 3 racks– RF of 3 for analytics– RF of 5 for config– Compaction throughput 256 Mbps

• Deployment Automation: Puppet

• Issues seen: DB Timeouts, Version mismatch, admin token

Copyright © 2015 Symantec Corporation11

Page 12: Symantec SDN Deployment

Failed Customer Interactions

Copyright © 2015 Symantec Corporation 12

Page 13: Symantec SDN Deployment

Failed Customer Interactions

• Measure the control plane availability

• Use Symantec’s Logging-Monitoring-Metering as a Service to parse Neutron logs

• Compare response codes: 5XX counted as failures

• Dashboards!

Copyright © 2015 Symantec Corporation13

Page 14: Symantec SDN Deployment

Availability::Data Plane

Copyright © 2015 Symantec Corporation 14

Page 15: Symantec SDN Deployment

Data Plane Availability

• Work in progress..

–FIP Availability

–vDNS

–Link Local

–Private Network

Copyright © 2015 Symantec Corporation15

Page 16: Symantec SDN Deployment

Seamless Upgrades

Copyright © 2015 Symantec Corporation 16

Page 17: Symantec SDN Deployment

Upgrade 1.20 to 2.0.1

• Goal - Zero Downtime

• Controller upgrades– No in-place upgrades– Build a parallel control plane with new release– Add them to the VIP pool and gradually decommission old controllers

• Database upgrades– Add new DB nodes one by one to the existing cluster– Repair the DB– Decommission old DB node one by one

• Compute upgrades– Automate unloading and loading of kernel module in all computes

Copyright © 2015 Symantec Corporation17

Page 18: Symantec SDN Deployment

Health Monitoring

Copyright © 2015 Symantec Corporation 18

Page 19: Symantec SDN Deployment

Health Monitoring

• Volta –Logging •Logstash•Elasticsearch

–Metrics•InfluxDB•Statsd•Collectd)

–RESTful APIs make it easy:•Response Codes, Bytes Transfered, Time, Verb, etc.

• OpsView / Zabbix

Copyright © 2015 Symantec Corporation19

Page 20: Symantec SDN Deployment

Troubleshooting

Copyright © 2015 Symantec Corporation 20

Page 21: Symantec SDN Deployment

Troubleshooting

• Most incidents are trivial– Known issues– Trivial fixes/workarounds

• Some incidents are complex– RCA is very involved– Might have to wait for next code release for a fix– Quick and dirty solution – use auto healing scripts for workarounds

•Periodically check system health (Synthetic Transactions)•Remediate known bugs•Fix problems as they are detected, Save pagers, run 24x7!(MX Encapsulation, Dead processes, etc.)

Copyright © 2015 Symantec Corporation21

Page 22: Symantec SDN Deployment

Thank you!

Copyright © 2014 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.

This document is provided for informational purposes only and is not intended as advertising. All warranties relating to the information in this document, either express or implied, are disclaimed to the maximum extent allowed by law. The information in this document is subject to change without notice.


Symantec Disaster Recovery Advisor Deployment Requirementsorigin-download.veritas.com/resources/content/live/DOCUMENTATI… · If you want to contact Symantec regarding an existing

What's New in Deployment Solution 7 - Veritasvox.veritas.com/legacyfs/online/veritasdata/EM B18.pdf · 2016. 7. 4. · SYMANTEC VISION 2012 What is Deployment Solution 7.5? DS 7.5

UP B03 - Don't eXPire: Simplify Your Windows Migration B03.pdf · SYMANTEC VISION 2013 Symantec = Windows Migration Experts Presentation Identifier Goes Here 4 Altiris™ Deployment

2015 Training Schedule SYMANTEC - CTC Global Sdn · PDF file2015 Training Schedule ORACLE CTC GLOBAL SDN BHD - Training Center ... Oracle BI 11g R1: Create Analyses and Dashboards

IPv6 Operations and Deployment Scenarios over SDN (2014, September). IPv6 operations and deployment scenarios over SDN. In Network Operations and Management

Symantec Antivirus Deployment Considerations for …support.citrix.com/.../Symantec_Antivirus_Deployment.pdfSymantec%consoleand%select%the“Change’Settings

A Survey of Deployment Solutions and Optimization Strategies for Hybrid SDN … · 2018. 10. 1. · A Survey of Deployment Solutions and Optimization Strategies for Hybrid SDN Networks

vCloud NFV - Accelerating deployment of the Telco Cloud (SDN NFV Day ITB 2016)

One-Click-Deployment of a Cloud Application Using Ansible · One-Click-Deployment of a Cloud Application Using Ansible Rami Al-Ghanmi Symantec Corporation @ alghanmi , irc: raminoid

Panopticon: Incremental SDN Deployment in Enterprise Networks › ct › stefan › zki14-keynote-D-short.pdf · 2018-11-07 · SDN in a Nutshell Grundsätzliches Konzept: Auslagerung

Global R&E SDN Deployment Powered by ONOS 201… · NCTU / Taiwan deploys ONOS Q1 2016 – New connections Miami - Korea Miami - Taiwan Korea - Taiwan Global SDN Deployment Powered

Altiris Deployment Solution 7.1 SP1a MR1 from Symantec User Guide

OVERCOMING CHALLENGES IN PRACTICAL SDN DEPLOYMENT · OVERCOMING CHALLENGES IN PRACTICAL SDN DEPLOYMENT Zhiyuan Teo, Ph.D. Cornell University 2016 Performance, reliability and security

Global SDN deployment powered by ONOSONOS 1 ONOS 2 SDN-IP 1 SDN-IP 2 BGP speaker 1 BGP speaker 2 BGP routes ONOS intents OpenFlow entries Carrier SDN / WAN SDN-IP deployment on Internet2

Integrating Symantec Backup Exec System Deployment Solutionmedia.community.dell.com/en/dtc/attach/integrating symantec besr... · Integrating Symantec Backup Exec ™ System Recovery

Software Defined Network SDN · • Reaping the Benefits of Partial SDN Deployment in Enterprise Networks, USENIX 2014 ... SDN in WAN • SDX: A Software Defined Internet Exchange,

Veritas Risk Advisor Deployment Requirementsorigin-download.veritas.com/resources/content/live/... · Technical Support Symantec Technical Support maintains support centers globally

Symantec Endpoint Encryption Deployment Best …vox.veritas.com/legacyfs/online/veritasdata/11.30am_1249_Symantec...1 Symantec Endpoint Encryption Deployment Best Practices and Roadmap

Gearing up for transport-SDN deployment A starter … up for transport-SDN deployment A starter kit for early adopters ECOC 2015 ... Functional independence between SDN, GMPLS, MP,

Panopticon: Reaping the Benefits of Partial SDN Deployment ... · Panopticon: Reaping the Benefits of Partial SDN Deployment in Enterprise Networks Dan Levin Marco Canini Stefan

Symantec Altiris Deployment Solution Elevation of Privileges

Amazon Web Services Symantec Data Loss Prevention … · 2020. 11. 5. · Symantec Data Loss Prevention Deployment Guide for Amazon Web Services AWS provides various flavors of EC2

Symantec Product Authentication and Authorization...Symantec products with Authentication and Authorization Service Technical information illustrating multiple product deployment environments

A controller deployment scheme in 5G-IoT network based on SDN · 2020. 12. 3. · A controller deployment scheme in 5G‑IoT network based on SDN Xin Cui1,2*, Xiaohui Gao3, Yan Ma

Toward Transitional SDN Deployment in Enterprise Networks

Symantec Deployment Solution 8.5 powered by Altiris ... · Operatingsystem Versionandpatchlevel Networktopology Router,gateway,andIPaddressinformation Problemdescription: Errormessagesandlogfiles

Next-Gen SDN - Open Networking Foundation€¦ · Seamless deployment with Docker 1. Built from today’s SDNs & Optimized for NG-SDN Enables Top Down Programming Functionality defined

INVITED PAPER Deployment of OpenFlow SDN Technologies to ...€¦ · Networking (SDN) is drawing attention as a method to control network virtualization for the cloud computing services

Altiris_ Deployment Solution 6.9 SP5 From Symantec User Guide

Oracle Beehive Deployment Guide · PDF fileOracle Beehive Deployment Guide, Release 2 (2 ... Deploying Oracle Beehive with Symantec Scan Engine ... Oracle® Beehive Installation Guide

Symantec Messaging Gateway 10.0. Technical Assessment · PDF fileSymantec Messaging Gateway 10.0 is certified for non-virtual deployment on which hardware devices? A. Symantec 2950

SDN and NFV - Current Analysis Analysis SDN2014...SDN and NFV Evolving Deployment Requirements and How to Benefit Timely Insights Practical Advice. ... Huawei SDN and/or NFV Supplier

Building a sdn solution for the deployment of web application stacks in docker

Moving an IP network to SDN: a global use case deployment ...€¦ · Moving an IP network to SDN: a global use case deployment experience at AmLight Humberto Galiza 2, Marcos Schwarz

Toward Transitional SDN Deployment in Enterprise Networks › ct › stefan › ons13slides.pdf · 2018-11-07 · Toward Transitional SDN Deployment in Enterprise Networks Marco Canini