Blue CorpRed Corp Blue Subnet1 Blue Subnet3Blue Subnet2 Blue Subnet5 Blue Subnet4 Red Subnet2 Red Subnet1 Blue R&D Net Blue Sales Net Red HR Net Multitenant Datacenter eg: Hoster Datacenter/Private Cloud Customer VM Network Virtual Subnet Blue Corp Blue R&D Net
Different subnets GRE Key Blue Subnet MAC GRE Key Red Subnet MACMAC Provider Address (PA) Customer Address (CA)
Blue VM 1 : MAC 1, CA 1, PA 1 VM 2 : MAC 2, CA 2, PA 3 VM 3 : MAC 3, CA 3, PA 5 … Red VM 1 : MAC X, CA 1, PA 2 VM 2 : MAC Y, CA 2, PA 4 VM 3 : MAC Z, CA 3, PA 6 … System Center 2012 R2 Virtual Machine Manager Hyper-V n°1 with VMM : PA1 Hyper-V n°2 with VMM : PA3 Hyper-V n°3 with VMM : PA3 VM Networks configuration network virtualization Configuration
Provider Customer
Provider Customer
IP range for hypervisors in Paris Datacenter /16 IP range for hypervisors in Seattle Datacenter /16 1 Logical Network to define those networks : InfraNetworkCloudProvider
Provider Customer
Provider Customer
Logical switch prerequisite 1: Uplink Port Profile
Logical Switch Prerequisite 2: Virtual network adapter port profiles VMQ SR-IOV IPsec task Offloading DHCP Guard…
Provider Customer
Provider Customer
Provider Customer
Provider Customer
PA : NIC PA : CA : CA : Blue1 Blue2 Virtual Subnet ID : 5001 Virtual Subnet ID : 5222
where is default gateway ? ARP for (default gateway) Hyper-V Switch broadcasts ARP to: 1.All local VMs on VSID Network Virtualization filter OOB: VSID:5001 Network Virtualization filter responds to ARP with MAC DGW ARP for ARP is NOT broadcast to the network NIC Hyper-V Switch VSID ACL Enforcement Blue 1 Red 1 Network Virtualization MAC PA1 VSID 5001 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing NIC Network Virtualization MAC PA2 Hyper-V Switch VSID ACL Enforcement Blue 2 Red VSID 5222 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing MAC DGW Different VSID :: Different Hosts
MAC PA1 OOB: VSID:5001 Use MAC DGW for Default Gateway at MAC DGW Blue 1 learns MAC of Default Gateway NIC Hyper-V Switch VSID ACL Enforcement Blue 1 Red 1 Network Virtualization MAC PA1 VSID 5001 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing NIC Network Virtualization MAC PA2 Hyper-V Switch VSID ACL Enforcement Blue 2 Red VSID 5222 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing MAC DGW Different VSID :: Different Hosts
sent from Blue 1 MAC B1 MAC DGW OOB: VSID:5001 in Hyper-V switch MAC B1 MAC DGW in Network Virtualization filter OOB: VSID:5001 MAC B1 MAC DGW NVGRE on the wire MAC PA1 MAC PA MAC B1 MAC B NIC Hyper-V Switch VSID ACL Enforcement Blue 1 Red 1 Network Virtualization MAC PA1 VSID 5001 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing NIC Network Virtualization MAC PA2 Hyper-V Switch VSID ACL Enforcement Blue 2 Red VSID 5222 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing MAC DGW 5222 Different VSID :: Different Hosts
received by Blue 2 MAC B1 MAC B OOB: VSID:5222 in Hyper-V switch MAC B1 MAC B NVGRE on the wire in Network Virtualization filter OOB: VSID:5222 MAC B1 MAC B MAC PA1 MAC PA MAC B1 MAC B NIC Hyper-V Switch VSID ACL Enforcement Blue 1 Red 1 Network Virtualization MAC PA1 VSID 5001 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing NIC Network Virtualization MAC PA2 Hyper-V Switch VSID ACL Enforcement Blue 2 Red VSID 5222 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing MAC DGW Different VSID :: Different Hosts
Hyper-V Network Virtualization Gateway DCSQLDNS subnet 10.2x.x/16 subnet 10.3.x.x/16 subnet 10.4.x.x/16 R1R2B1 B2 B3 R3 R4 Y1Y x.x/16 Provider Addresses Consolidated Datacenter Hyper-V Network Virtualization (“NVGRE world”) Host1Host2Host3 Customer Addresses CorpNet 10.1.x.x/16 CorpNet 10.1.x.x/16
Hyper-V Network Virtualization Gateway DC SQL DNS subnet 10.2x.x/16 subnet 10.3.x.x/16 subnet 10.4.x.x/16 R1R2B1 B2 B3 R3 R4 Y1Y x.x/16 Provider Addresses Consolidated Datacenter Hyper-V Network Virtualization (“NVGRE world”) Host1Host2Host3 Customer Addresses S2S VPN Internet S2S VPN CorpNet 10.1.x.x/16 CorpNet 10.1.x.x/16
Hyper-V n°4 With VMM agent NIC 1 : PA/LogicalSwitch NIC 2 : Datacenter NIC 3 : Management VM : WSG1 vNIC 1 : PA/LogicalSwitch vNIC 2 : Datacenter vNIC 3 : Management
Provider Customer
Provider Customer
Twitter Stanislas Quastana Twitter Arnaud Lheureux Thank you for your attention!
Come Visit Us in the Microsoft Solutions Experience! Look for Datacenter and Infrastructure Management TechExpo Level 1 Hall CD For More Information Windows Server 2012 R2 Microsoft Azure System Center 2012 R2 Azure Pack cloud/products/windows-azure-pack