[Main Conference] [clear filter]
Tuesday, October 27

11:15am JST

OpenStack Neutron: A Stadium in the Big Tent
As OpenStack itself has continued to evolve it's governance model, Neutron has done the same. In a world where we're all operating under "The Big Tent", Neutron has carved out it's own effort dubbed "The Neutron Stadium." During Liberty we've added a lot of new things into the project, from APIs to plugin and driver backends to new services.

This talk will cover a background on Neutron, how it's evolved as the OpenStack world has changed, what the Stadium has brought inside, and where things are headed. You will leave with a clear understanding of how Neutron is a platform, what has changed and what the future holds in this area.

avatar for Mark McClain

Mark McClain

CTO at Akanda
Mark McClain is the Chief Technical Officer of Akanda Inc, a member of the OpenStack Technical Committee and a core reviewer for several OpenStack teams.  Mark was the Program Technical Lead for the OpenStack Networking during the Havana and Icehouse cycles. In addition to his... Read More →
avatar for Kyle Mestery

Kyle Mestery

Senior Principal Engineer, Intel
I am a technology executive and distinguished engineer with experience building teams to deliver cloud security solutions using a combination of open source and custom software. I write code, architecture documents, and help mentor members of the team to perform their best. In Open... Read More →

Tuesday October 27, 2015 11:15am - 11:55am JST

12:05pm JST

OVN: Feature Complete and Ready to Test
OVN is a new network virtualization project that brings virtual networking to the Open vSwitch user community.  OVN includes logical switches and routers, security groups, and L2/L3/L4 ACLs, implemented on top of a tunnel-based overlay network.  For physical-logical network integration, OVN implements software gateways, as well as supports hardware gateways from a variety of vendors.

The OVN architecture simplifies the current OVS integration within Neutron by providing a virtual networking abstraction.  OVN provides Neutron with improved dataplane performance through shortcut, distributed logical L3 processing and in-kernel based security groups, without running special OpenStack agents on hypervisors.

In this presentation, we will provide an update on OVN's progress and provide a demo.  The demo will show an OpenStack-driven OVN deployment connecting containers and hypervisors.  We will demonstrate newly added features such as security groups and logical L3.  We will also discuss how users can start using OVN in their own deployments.

avatar for Russell Bryant

Russell Bryant

Distinguished Engineer, Red Hat
Russell is a Distinguished Engineer in Service Delivery, leading SD's adoption of OVN across our managed services. Russell also has a long history with OVN, having helped create the project back in 2015 and leading the planning for product teams to take over ownership of OVN by 2... Read More →
avatar for Kyle Mestery

Kyle Mestery

Senior Principal Engineer, Intel
I am a technology executive and distinguished engineer with experience building teams to deliver cloud security solutions using a combination of open source and custom software. I write code, architecture documents, and help mentor members of the team to perform their best. In Open... Read More →
avatar for Justin Pettit

Justin Pettit

OVS/OVN Core Developer
Justin Pettit is a lead developer on the Open vSwitch project. He was a founding employee at Nicira and is currently working at VMware. He was a co-creator of OpenFlow, working on both the specification and reference implementation. In addition to working on Open vSwitch, he is involved... Read More →
avatar for Ben Pfaff

Ben Pfaff

OVS Committer
Ben Pfaff is a lead developer of the Open vSwitch project.  He was a co-creator of OpenFlow and a leading contributor to the development effort of the original OpenFlow reference implementation. He was a founding employee at Nicira and is currently at VMware. He received his PhD... Read More →

Tuesday October 27, 2015 12:05pm - 12:45pm JST

2:50pm JST

Network Node is Not Needed Anymore - Completed Distributed Virtual Router
DVR (Distributed Virtual Router) was first implemented at Juno. Virtual routers needed to work on Network Node, but, with DVR, they can work on Compute Nodes.  Since Network Node runs virtual routers and some other networking functions for all VMs, it was a single point of failure and can be a performance bottleneck.  If you need a highly available OpenStack system, you needed a cluster of Network Node. And if you need to scale out the networking, you needed to add more Network Nodes. 

With DVR, those issues can be addressed. At Juno, virtual routers were distributed to Compute Nodes, but DHCP and SNAT stayed put on Network Node due to some technical challenges. We still need Network Node for them, meaning we also need a cluster for HA and more Network Nodes for scaling out the system. Distributing them, we can complete DVR and we no longer need Network Node at all. We submitted a RFE for DHCP and SNAT distribution and worked on them, targeting for Liberty[1][2]. In this session, we will explain what were the technical challenges and how we solved them. Also explain how we can use the completed DVR and what the benefits are for us.

[1] https://bugs.launchpad.net/neutron/+bug/1468236
[2] https://bugs.launchpad.net/neutron/+bug/1467471


Takanori Miyagishi

Software Engineer, Fujitsu
Software Engineer, Fujitsu Limited

hanzhang shi

Software Engineer
Expertise in Networking domain and active contributor/follower of Openstack Neutron

Tuesday October 27, 2015 2:50pm - 3:30pm JST

3:40pm JST

Neutron and BGP Dynamic Routing
With the Liberty release of OpenStack, Neutron will have the ability to act as a BGP speaker on an operator's network.  This functionality enables Neutron to advertise host routes for floating IP's, and next-hops for tenant networks created with Neutron. This can alleviate many of the networking burdens placed on the operator when designing and operating an OpenStack cloud. It also enables new functionality in Neutron such as floating IP mobility and directly routable IPv4 and IPv6 tenant networks through a Neutron router.  In addition, deployment of Neutron BGP dynamic routing enables better support for existing features such as IPv6 and distributed virtual routing (DVR).

In this session we will explore how to use Neutron BGP dynamic routing to maximize the value of your Neutron deployment.  We will demonstrate how to deploy, configure, and use Neutron BGP dynamic routing and discuss the use cases it enables.  We will also explore how Neutron BGP dynamic routing works with features such as address scopes, routed network segments, distributed virtual routing (DVR), and what considerations operators should be aware of when deploying Neutron BGP dynamic routing.  We will also discuss future plans for expanding BGP dynamic routing capabilities in Neutron.


Vikram Choudhary

Senior Technical Lead
Working with Huawei Technolgies India Pvt Ltd. Have around 7.5 years of experience in routing domain (protocols like RIP, OSPF and BGP). Have around 0.5 years of experience in openstack. Mainly contributing for neutron in openstack
avatar for Ryan Tidwell

Ryan Tidwell

Software Engineer, HP
Ryan Tidwell is a contributor to the OpenStack Neutron project and has been deploying and tinkering with OpenStack in various roles since the Diablo release of OpenStack.  Ryan has been working at HP since 2008.  He is well-versed in developing manageability tools for systems administrators... Read More →

Tuesday October 27, 2015 3:40pm - 4:20pm JST

4:40pm JST

Deploying and Operating an IPv6-Only Openstack Cloud
As IPv6 adoption continues to grow, there is an increasing need to deploy services in IPv6-only environments.  Openstack supports a myriad of configuration parameters for each service that can all be used together to create a deployment that requires only IPv6 addresses.

This talk will share experiences and lessons learned in deploying and operating an Internet-facing IPv6-only cloud, along with a demo showing its operation.  We will also give an outline on what needs to change, work that still needs to be done, possible future enhancements, as well as describe some new parameters in devstack that can be used to quickly get an IPv6-only test cloud up and running.

avatar for Sean Collins

Sean Collins

Senior Software Engineer
Sean Collins is a contributor to OpenStack Neutron, previously led the Neutron IPv6 working group, and also co-organizes the OpenStack Philadelphia user group. Sean began using cloud technologies in order design scientific computation clusters, and later began developing new OpenStack... Read More →
avatar for Brian Haley

Brian Haley

Software Engineer, HP
Brian Haley is a core contributor to Openstack Neutron, primarily focused in the L3 area, but has particular interests in both IPv6 and cloud security.  He has been working on Openstack since 2011, first on Nova Networking and later on Neutron.  His background is in kernel networking... Read More →

Tuesday October 27, 2015 4:40pm - 5:20pm JST

5:30pm JST

Extensible Neutron Service Function Chaining - Here It Comes
Service chaining allows dynamic steering of traffic from source, through a sequence of service function devices (physical or virtual), to destination. In current Data Center, the deployment of service chain for a tenant's flow is through static, complex, and rigid configurations and it usually takes days or weeks to deploy it. To reduce the OPEX and increase agility, automatic setup of service chaining is reuqired. 

Service Function Chaining (SFC) has long been a strongly requested feature in Neutron, and with the advent of Network Function Virtualization (NFV) as a major use case for OpenStack, that demand has only grown stronger. The wait for such feature is finally over in Liberty.

To address the needs, Service Chain feature is currently being developed as part of the Neutron Project. The community had gotten together and are developing a standard-based, vendor-neutral SFC functionality in Neutron using OVS as a reference driver implementation. In this talk we will give an introduction on the service function chaining project and its roadmap.

Attendees of this session will get to know:

  1. Architecture Design, APIs, and Data Models of the Solution

  2. Extensibility, Scalability, and Performance Consideration

  3. Current Project Status: Where are we now?

  4. Project Roadmap

avatar for Swaminathan Vasudevan

Swaminathan Vasudevan

System Software Engineer, Hewlett-Packard Company (HP)
Swaminathan Vasudevan is a Systems Software Engineer at HP where he currently works on OpenStack Neutron and OpenDaylight. He is an active technical Contributor of OpenStack since 2013. Swaminathan Vasudevan has been developing code for more than 18 years with expertise in linux... Read More →

Stephen Wong

Stephen Wong has nearly ten years of experiences contributing to various open source communities. He is currently the PTL (Project Team Lead) of OPNFV Clover, a project which utilizes cloud native related projects for NFV (network function virtualization) use cases. Previously he... Read More →
avatar for Cathy Zhang

Cathy Zhang

Principal Architect, Huawei
Cathy has over 15 years of software design and development experience. She is currently a chief architect at Huawei’s USA Cloud Computing Lab. Her expertise includes Serverless Cloud Platform, Network Service and Virtualization, SDN, OpenStack, etc.. She is a key member of the Serverless... Read More →

Tuesday October 27, 2015 5:30pm - 6:10pm JST
Wednesday, October 28

11:15am JST

QoS - A Neutron n00bie
In the Liberty cycle we worked on a new addition to Neutron, Quality of Service (QoS). In the network jargon QoS is about limiting, prioritizingor guaranteeing speed of traffic, in this case, on neutron ports.  The work in the Liberty cycle was focused mostly around the implementation of bandwidth limiting and laying out the QoS models to support future work.

In this session we'll cover the API changes and the new concepts that were introduced as part of this effort, like QoS rule, rule types and QoS policy.  We'll also share insights on how to get your Neutron driver to implement the API and make QoS available to your users.

avatar for Irena Berezovsky

Irena Berezovsky

Architect, Huawei
Irena Berezovsky is a Senior Architect at Huawei.Irena is a veteran community member in OpenStack, having been involved with it since its early days back in 2011. Irena is an active contributor to OpenStack OSS projects like Kuryr, Neutron and Dragonflow.Before her current position... Read More →
avatar for Livnat Peer

Livnat Peer

Sr. Engineering Manager, Red Hat, Red Hat
Livnat Peer is a Sr. Engineering manager at Red Hat, the World's Open Source Leader. Livnat has been part of the on­going innovation in the cloud and virtualization domain, in the last years she was focused around the Networking aspects of this field which is revolutionized by SDN... Read More →
avatar for David Slama

David Slama

Sr. Director of Cloud and Network Solutions, Mellanox Technologies
David Slama is a Software Director of Cloud and Network Solutions in Mellanox. David leads the cloud, networking, virtualization, and software management activities in the R&D.

Wednesday October 28, 2015 11:15am - 11:55am JST

12:05pm JST

Kuryr - Docker Networking in an OpenStack World
Kuryr is a new project under Neutron's big tent that makes Neutron networking available to Docker containers by means of a Docker plugin.

In this session we will introduce Kuryr and show how it provides networking for containers in plain Docker environments and in mixed Docker, OpenStack environments.

avatar for Antoni Segura Puimedon

Antoni Segura Puimedon

Software Engineer, Midokura
Antoni serves as the Container Team lead at Midokura and works on integrating MidoNet with VM and Container platforms. He has contibuted in the past to the networking stack of oVirt, Libvirt nova-docker and MidoNet. His recent focus has been on Container Software Defined Networking... Read More →
avatar for Gal Sagie

Gal Sagie

Software Architect
Experienced networking professional, in recent years focusing mainly on network virtualization, SDN and NFV. Active contributer to Openstack and a previous contributor to DPDK and OVS-DPDK, love the open source way and the community. Blogging for everything involving SDN, NFV Openstack... Read More →

Wednesday October 28, 2015 12:05pm - 12:45pm JST

2:00pm JST

Optimizing and Extending Overlay Networking for Containers
Networking for container is rapidly evolving and overlay network is emerging as a popular choice given its simplicity.  One example is Flannel, a generic overlay network using IP datagrams on top of UDP.  Once deployed on a specific underlying infrastructure such as Neutron, there may be opportunities to optimize for performance and to ease some of the limitation of the overlay network.  In this talk, we look at the particular case of a Kubernetes cluster with Flannel running on Neutron networking and VM or baremetal.  This cluster would be provisioned by Magnum.

We will show how Flannel works with Neutron and Kubernetes' internal routing by tracing a round trip message.  We will quantify the overhead of Flannel and identify potential performance optimization.  We will look at the limitation of Flannel from the container perspective and show how some can be mitigated by Neutron.  We will show a demo for these features in a POC based on Magnum and Neutron.  Finally, we will discuss how the POC can be generalized to apply to other overlay  networks.

avatar for Mohammad Banikazemi

Mohammad Banikazemi

Research Staff Member, IBM Research
Mohammad is a research staff member at the IBM T.J. Watson Research Center. His research interests include cloud computing and software-defined networking. He is a senior member of the ACM and the IEEE and an active contributior to Neutron. Mohammad lives with his family in NYC.
avatar for Ton Ngo

Ton Ngo

Senior Developer, IBM
Ton Ngo is a senior developer at the IBM Silicon Valley Lab, building cloud solution for customers for the past 8 years using IBM cloud orchestration products. Since the OpenStack Summit in Hong Kong, he has been working on Heat, focusing on improving support for template troubleshooting... Read More →
avatar for Baohua Yang

Baohua Yang

Principal Architect, Oracle America, Inc.
Baohua Yang is currently leading the research and development of Oracle's Blockchain as the principal architect. He has been linked into the system and algorithm areas for 10+ years, with interests on Distributed System and Data Science. He is an open source developer, and has served... Read More →

Wednesday October 28, 2015 2:00pm - 2:40pm JST

2:50pm JST

Clusters, Routers, Agents and Networks: High Availability in Neutron
Of everything that we can build and deploy in a highly-available fashion in OpenStack, deploying highly available networking has been one of the trickiest, most complex aspects to get right.

In Neutron, when choosing the reference implementation, we have several components to consider when deploying for high availability:

  • Neutron-server and its plugins are an API service as any other, with the same HA considerations, albeit with some aspects that deserve extra scrutiny when building for high availability

  • Neutron L2 agents on compute nodes must ensure network connectivity for Nova guests

  • and Neutron agents on network nodes must gracefully ensure routing and DHCP functionality even in the face of hardware failure

HA has also historically not been a very strong focus of upstream Neutron development, with vendors frequently filling the gaps with automation tools and smart service deployment.

In this presentation we cover:

  • Upstream improvements on Neutron HA capabilities over the Juno, Kilo, and Liberty releases

  • The approach taken for Neutron high availability in RHEL OSP and SUSE OpenStack Cloud

  • Implementation details for Neutron HA in RHEL OSP and SUSE OpenStack Cloud

... All presented in the spirit of friendly competition, and upstream collaboration.

avatar for Florian Haas

Florian Haas

City Network
Florian runs the Education team at City Network, and helps people learn to use, understand, and deploy complex technology. He has worked exclusively with open source software since about 2002, and has been heavily involved in OpenStack and Ceph since early 2012, and in Open edX since... Read More →
avatar for Assaf Muller

Assaf Muller

Manager of OpenStack Neutron Engineering, Red Hat
twitter.com/assafmuller Manager of OpenStack Neutron Engineering at Red Hat. Neutron core team member and responsible for the project’s testing. Assaf works out of sunny Boston, USA.
avatar for Adam Spiers

Adam Spiers

Senior Engineer, Cloud & High Availability, SUSE
Adam Spiers is a Senior Software Engineer at SUSE, focusing on OpenStack, Pacemaker, Chef and Crowbar.  He was architectural lead for the project to make SUSE OpenStack Cloud capable of deploying highly available infrastructure, and helped SUSE win the Ruler Of The Stack competitions... Read More →

Wednesday October 28, 2015 2:50pm - 3:30pm JST

3:40pm JST

DNSaaS For Your Cloud - OpenStack Designate
If you are an operator or user of DNS come learn about Designate, the DNSaaS provider for OpenStack. We will cover:

  • Designate Architecture Overview

  • Designate Use Cases

  • Exciting features that landed in the Liberty release: ALIAS Records, Pool Scheduler, Horizon

  • Integration with Nova and Neutron

  • How Designate works any DNS server

  • Customization points - API Extensions, Storage Plugins, Backend Plugin

We'll conclude with an exciting live demo showing how to add support for your favorite DNS server to Designate!

avatar for Graham Hayes

Graham Hayes

Senior Software Engineer, HP Cloud Services
Graham is the newly elected PTL for Designate in Mitaka, and lead the design work on the latest major feature for Designate - Server Pools. Graham works as part of the DNSaaS team in HP Helion. As part of this team he is responsible for operating a publicly accessible deployment... Read More →

Eric Larson

Software Developer, Rackspace
Eric Larson is the author of CacheControl, the recommended HTTP caching library for the popular requests library. He is also a software developer working at Rackspace on the CloudDNS team. Outside of writing code, Eric is a proud father and musician.
avatar for Tim  Simmons

Tim Simmons

Software Developer, Rackspace
Tim is a Software Developer at Rackspace on the Cloud DNS team, and a member of Designate core. He has been working on Designate for over two years, and is working on operating Designate at scale for Rackspace.

Wednesday October 28, 2015 3:40pm - 4:20pm JST

3:40pm JST

How To Write a Neutron Plugin, If You Really Need To (Neutron Stadium Edition)
This talk is an update of the talk with the same name presented at the Openstack Design Summit in Hong Kong. Abstract and video for this talk are available respectively at http://openstacksummitnovember2013.sched.org/event/c6478ecf54d639de3b8b9958bfe9d450 and https://www.youtube.com/watch?v=RG6u_UuQOcs

Two years on, things have moved quite a bit.

Advanced services have advanced - and now they live in their own repos, plugin have been decomposed, and Neutron now is a stadium within Openstack's big tent.

This talk will go beyond choosing between a plugin and a ML2 driver, and will discuss the various options available to become part of the Neutron "stadium".

Monoliths versus modular plugins
Despite what one might think, this is not about ML2. Here we will discuss whether developers should develop Neutron integration a single monolitich plugin or as a set of plugins each one providing a different services.

Reasons for developing a ML2 driver
Apparently this is the only real option nowaday, but why? Are there cases where choosing to develop a ML2 mechanism driver is not really a no-brainer.

Extending neutron functionality through new services
The Neutron stadium offers different choices. We will look briefly looks at the services currently available in the "stadium", and provide useful insights into developing a new service, like the callback mechanism and ongoing efforts such as neutron-lib.

Where possible, examples targeting the "Human Defined Networking" Neutron plugin (https://github.com/salv-orlando/hdn) will be provided.

This talk has quite a good amount of technical content; the presenter is however committed to keep it lightweight, and, within the limits of the presenter's ability, entertaining.

avatar for Salvatore Orlando

Salvatore Orlando

Distinguished Procrastinator, VMware
Salvatore used to be a member of the Neutron core & drivers teams, until he decided he made enough damage and left. He now spends his days picking colors for painting bike sheds and shaving yaks. He has been working in the Openstack networking project since its inception. He actually... Read More →

Wednesday October 28, 2015 3:40pm - 4:20pm JST

5:30pm JST

Hierarchical Port Binding in Practice: Experiences With At-Scale Production
This talk will discuss our experiences deploying Hierarchical Port Binding in production and at scale.  We'll compare an existing OVS+VXLAN implementation with a newer HPB+VXLAN based implementation.  We'll talk about the benefits of the newer implementation, as well as the problems we ran into along the way.


Nolan Leake

Co-Founder and CTO at Cumulus Networks, Nuviso
Nolan is the co-founder and CTO of Cumulus Networks. Prior to Cumulus, he founded a distributed storage start-up called Tile Networks. His work there led him to realize how unsuitable existing networking equipment is for the data-center of the future (which Cumulus Networks aims to... Read More →
avatar for Mark McClain

Mark McClain

CTO at Akanda
Mark McClain is the Chief Technical Officer of Akanda Inc, a member of the OpenStack Technical Committee and a core reviewer for several OpenStack teams.  Mark was the Program Technical Lead for the OpenStack Networking during the Havana and Icehouse cycles. In addition to his... Read More →

Wednesday October 28, 2015 5:30pm - 6:10pm JST
Thursday, October 29

9:00am JST

Get Your Instance by Name: Integration of Nova, Neutron, and Designate
You just want to get to your instance by name.  But, Nova has your hostname, Designate has your DNS service, and Neutron has the IP allocation.  Could these ever be brought together to make it work like you want it?

In fact, they have come together.  In this talk, we'll talk about where we were at the end of Kilo and show you how we've come together to make this work across projects to give you the experience that you wanted.

avatar for Carl Baldwin

Carl Baldwin

Senior Engineer II, DigitalOcean
Carl started his career developing electronic design automation software with HP’s microprocessor design projects: PA-RISC and Itanium. Years later, he spent a short time on a few of HP's network attached storage products. The whole time, he felt drawn to computer networking. He... Read More →
avatar for Kiall Mac Innes

Kiall Mac Innes

Senior Software Engineer, HP
avatar for Miguel Lavalle

Miguel Lavalle

Neutron Developer, IBM
Miguel Lavalle is a regular contributor to Openstack's Neutron project. He has made contributions to the L3 agent, Tempest testing of Neutron and more recently, during the Liberty cycle, leading the integration of Neutron, Nova and Designate. At IBM, he is a member of the Linux Technology... Read More →

Thursday October 29, 2015 9:00am - 9:40am JST

9:50am JST

I Can't Ping My VM! Learn How to Debug Neutron and Solve Common Problems
"I can't ping my VM" , "Floating IP is not working" ....many people contact me with this kind of problems. That's why I decided to collect the most common hiccups of a Neutron deployment in this session,  provide some knowledge to understand the reason for the failure and a structured way to solve it.

avatar for Rossella Sblendido

Rossella Sblendido

Software Engineer, SUSE
Rossella is a Software Engineer at SUSE. She's a core reviewer for Neutron and has been involved in SDN since 2010 . She's also a mentor for the OpenStack Outreach Program for Women.

Thursday October 29, 2015 9:50am - 10:30am JST

2:40pm JST

Load Balancing as a Service, Liberty and Beyond
Load balancing as a service has been one of the critical features asked for by cloud tenants.

For the Liberty release cloud providers such as Rackspace, HP, etc. have partnered with the community and load balancer vendors such as Radware and A10 to enhance the new LBaaS v2 service with Horizon support, L7 redirection, and a new service VM based reference implementation.


avatar for German Eichberger

German Eichberger

Principal Cloud Software Engineer, HP
German Eichberger is a Principal Software Engineer with HP and Co-PTL of OpenStack Octavia. He earned a Master in Computer Science from University of Karlsruhe. His interests are Cloud, SDN, and Microservices.
avatar for Michael Johnson

Michael Johnson

Software Design Engineer, Rackspace
Michael is a core reviewer in the OpenStack Neutron-LBaaS, Octavia PTL, and Kosmos (GSLB) projects. Over his fifteen year career at HP he has worked on data center automation, distributed network systems, embedded system design, and big data. Michael lives in Corvallis, Oregon... Read More →
avatar for Brandon Logan

Brandon Logan

Software Developer, Rackspace
Core reviewer for neutron-lbaas and octavia projects.  

Thursday October 29, 2015 2:40pm - 3:20pm JST

3:30pm JST

Performance Improvements to the Neutron Management and Control Plane APIs
Neutron has a good feedback cycle between getting new features added and getting them tested by other contributors so they are functionally correct within one or two releases. Unfortunately, after a feature is working ("it worked in devstack!"), developers tend to move on to the next new thing. This happens well before the previous features are deployed at a large scale.

This delay has led to limited attention being paid to the performance of Neutron's HTTP management API and the AMQP control plane it uses to communicate with its agents. Subsequently, several cases had emerged over the past few cycles where operations were taking orders of magnitude longer than they should have to complete. These were imperceptible to developers because they were usually amplified by large numbers of networks and ports (instances) not present in a typical development environment.

This presentation will cover the wide range of performance improvements made to the Neutron management and control plane over the last ~6 months. These include both user-facing improvements (e.g. the time it takes to list Neutron networks) and deployer-facing improvements (e.g. the ratio of Neutron servers to L3 agents required to respond all agent requests). Benchmark and improvement numbers will be provided using measurements taken by Rally. This will be focused on the open source ML2 reference implementation; however, most of these improvements benefited many 3rd party plugins/drivers that utilize the same APIs.

avatar for Kevin Benton

Kevin Benton

Senior Software Engineer, Mirantis
Kevin Benton is currently a Software Engineer at Mirantis. He has been contributing to Neutron since Havana while he was working at Big Switch Networks and has been a core reviewer since 2014. He also serves on the Neutron drivers team, helping the PTL define the direction of the... Read More →
avatar for Brian Haley

Brian Haley

Software Engineer, HP
Brian Haley is a core contributor to Openstack Neutron, primarily focused in the L3 area, but has particular interests in both IPv6 and cloud security.  He has been working on Openstack since 2011, first on Nova Networking and later on Neutron.  His background is in kernel networking... Read More →
avatar for Rossella Sblendido

Rossella Sblendido

Software Engineer, SUSE
Rossella is a Software Engineer at SUSE. She's a core reviewer for Neutron and has been involved in SDN since 2010 . She's also a mentor for the OpenStack Outreach Program for Women.

Thursday October 29, 2015 3:30pm - 4:10pm JST

4:30pm JST

How Yahoo! Uses Neutron for Ironic
Yahoo is huge! Yahoo has always had some legacy infrastructure in place, for better or worse, to solve the problems that OpenStack now solves. When we try to move to OpenStack, we can’t just get rid of existing infrastructure one fine day and tell people - “hey, I know that you have been using this or doing things this way for a long time.. From now on, you just can’t do that anymore. You need to update all your automation to work with this new thing”..

That will definitely piss off people.

Also, most of these legacy requirements come from our huge scale. So we need to make sure that when we move to OpenStack,  we continue supporting those use-cases. To do so, we need to patch Neutron heavily as it currently doesn’t support them. Most of them are useful for the community as well, since anyone at this scale is going to have similar requirement.

We are working with community to upstream them. With this talk, we would like to share our experience, use-cases, hacks and also like to know if anyone else in the community has the same requirements.

We need following features to support our legacy use-cases

  • Static IP allocationCurrently, when inventory is installed in racks, our site operations team picks IP address for the inventory and updates our inventory management database. Currently, we consider this database as source-of-truth. When this inventory is added to Ironic and booted, Neutron first looks at its original IP address, creates networks/subnets on-the-fly, if not already present and then assigns the same IP to the instance. Currently we have to do this because we can’t yet treat Neutron as the source-of-truth for bare-metal inventory. We are slowly trying to move towards Dynamic IP allocation where Neutron will be the source of truth, but there are certain blockers that we need to solve first.

  • Single process Dnsmasq support for Neutron DHCP Agent: At Yahoo we don’t have tenant networks or overlapping IP spaces. So we don’t need dhcp-agent to spawn a Dnsmasq process for every network. We have patched the agent and the driver to spawn a single process responsible for all the networks. We don’t plan on using this patch forever, but only temporarily until we get support for ISC-DHCPD driver in.

  • Support for ISC-DHCPD driver for Neutron: Dnsmasq does not scale well, especially for a scale at which Yahoo operates. Also, ISC-DHCP is mostly what is used at this scale. Currently Neutron DHCP agent doesn’t support any other DHCP server that Dnsmasq. In fact, the agent itself is so aligned with Dnsmasq, that it doesn’t work as-is for ISC-DHCP. So we have modified the agent and added a driver for ISC-DHCPD. This work is being upstreamed. 

  • Support for multiple gateways for a subnet in Neutron: At Yahoo, the network architecture is such a way that multiple gateways are configured for the subnets. These multiple gateways are typically spread across backplanes so that the production traffic can be load-balanced between backplanes. Currently, the subnets in Neutron only support one gateway. We are working with community to add multiple gateway support to Neutron subnet.

  • Multi-IP support: For one of our use-cases, we need ability to allocate multiple IPs for an Ironic instance, but not necessarily create a port for it in Neutron. Currently we are evaluating different ways we can do this.

  • IPv6 support on Opt-In basis: We need Neutron to be able to allocate IPv6 addresses, but not always. We have some legacy stuff that will simply not work with IPv6. So we need provide ability for users to “Opt-In” for either only IPv6, only IPv4, or both. This is also something that community doesn’t support as of now. We would like to know if others also have similar use-cases, so that we can work with them to upstream this.


James Penick

Principal Architect, Yahoo!
From ticket monkey to architect, James's boots have been on the ground in nearly all aspects of large scale production engineering. James is passionate about automation, security, resiliency, and designing for scale.  No stranger to 2am emergencies, he's also passionate about BCP... Read More →

Thursday October 29, 2015 4:30pm - 5:10pm JST

5:20pm JST

CDN for Your Cloud - Openstack Poppy
If you are an operator or user of CDN, then come learn about Poppy - the CDNaaS API for OpenStack.

We will cover:

  • Poppy Architecture Overview

  • Poppy Use Cases

  • CDN Vendor Drivers that are part of Poppy

  • Exciting new features that have landed: Multiple Domains/Origins, TTLs, Host Headers, SSL, Referrer/Geo/IP Restrictions

  • How Poppy works with your preferred CDN vendor

  • Customization - Vendor Plugins, Storage Backends, DNS Plugins

avatar for Amit Gandhi

Amit Gandhi

Senior Software Manager, Rackspace
Amit initiated the Poppy project and leads its development. During his tenure as a Senior Software Manager at Rackspace, Amit leads the development of Rackspace CDN (Rackspace's deployment of Poppy).  He also leads the development of Rackspace's Cloud Backup product, and participated... Read More →

Thursday October 29, 2015 5:20pm - 6:00pm JST

Filter sessions
Apply filters to sessions.