Presentation is loading. Please wait.

Presentation is loading. Please wait.

Past, Present, and Future

Published byAlison Porter Modified over 6 years ago

Similar presentations

Presentation on theme: "Past, Present, and Future"— Presentation transcript:

1 Past, Present, and Future
OVN Performance Past, Present, and Future Mark Michelson Senior Software Developer Red Hat

2 Before we start All test cases run using OVS sandbox on a laptop
Individual numbers are unimportant The CHANGE is very important DO NOT take any numbers in this presentation as gospel!

3 Past Improvements

4 ovn-nbctl daemonization
Test Case (based on OpenShift estimates): 1 Logical router 159 Logical switches connected to the logical router 92 Logical switch ports on each logical switch Every 2 logical switch ports belongs to a new address set Every port gets 2 ACLs created for it 14628 logical switch ports 7314 address sets 29256 ACLs 73460 calls to ovn-nbctl (5 per logical switch port) Number of hypervisors is unimportant

5 ovn-nbctl daemonization (cont.)
$ time ./scale.sh real 759m27.270s user 500m40.805s sys 36m5.682s That’s 12 hours 39 minutes 27 seconds

6 ovn-nbctl daemonization (cont.)

7 ovn-nbctl daemonization (cont.)
ovn-nbctl downloads entire northbound database on every invocation As database grows, ovn-nbctl gets slower Solution: use an ovsdb client daemon process, and have ovn-nbctl connect to that $ export OVN_NB_DAEMON=$(ovn-nbctl --pidfile --detach)

8 ovn-nbctl daemonization (cont.)
$ time ./scale-daemon-new.sh real 5m9.950s user 1m18.702s sys 1m41.979s That’s 0.007% of the previous test (!!)

9

10 Port Groups Test Case (based on exaggerated OpenStack ACL scenario):
1 Address set with 1020 IP adddresses 1 logical switch with 1000 logical switch ports Creation of logical switch port has --wait=hv Each logical switch port is bound to the br-int OVS bridge 1 ACL per logical switch port. The ACL references the address set. Test is run in the ovs-sandbox, so there is 1 hypervisor

11 Port Groups (cont.) $ time ./load_net.sh 1000 real 125m16.022s
user 2m47.103s sys 0m11.376s That’s 2 hours, 5 minutes, and 16 seconds

12

13 Port Groups (cont.) $ ovs-ofctl dump-flows br-int | wc -l 1033699
$ ovs-ofctl dump-flows br-int | grep table=44 | wc -l ACL flows account for 99.2% of the total Number of ACL flows is O(P X n(AS) ) where P is number of ports n(AS) is number of elements in address set

14 Port Groups (cont.) Problem:
Expression parser cannot generate conjunctive match for common ACL scenario Solution: Allow for easy consolidation of ACLs using Port Groups

15 Port Groups (cont.) $ time ./load_net_pg.sh 1000 real 6m23.696s
user 3m15.920s sys 0m10.849s That’s 4.8% of the time the original version took

16

17

18 Port Groups (cont.) $ ovs-ofctl dump-flows br-int | wc -l 9098
$ ovs-ofctl dump-flows br-int | table=44 | wc -l 2027 Total flows are 0.009% of the previous test ACL-related flows account for 22.3% of total Number of ACL flows is O(P + n(AS)) now

19 Future Improvements

20 Incremental Processing
Problem: ovn-northd always processes the entire northbound database in each loop iteration ovn-controller always processes the entire southbound database in each loop iteration This can be wasteful when databases do not change much Recall how this affected ACL flow processing previously

21 Incremental Processing (cont.)
Solution: Incremental Processing Only process changes to data, rather than the entire dataset

22 Incremental Processing (cont.)
Secondary Problem: Incremental processing is HARD An imperative language like C is not natural for expressing dependencies between entities. Solution: Differential Datalog! Incremental database transformation language Haskell-implemented language for expressing data transformation/dependencies Outputs Rust

23 Further future improvements
Note: All of these come straight from my head onto the slide. None are being worked on or have even been discussed Incremental flow calculation in ovn-controller Pass deltas directly from ovn-northd to ovn-controller Maybe just “compress” the Logical_Flow southbound table Generate conjunctive matches from disparate logical flows Perform logical flow expression parsing at a more central level

24 THANK YOU plus.google.com/+RedHat facebook.com/redhatinc
linkedin.com/company/red-hat twitter.com/RedHatNews youtube.com/user/RedHatVideos

Download ppt "Past, Present, and Future"

Similar presentations

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—4-1 Implementing Inter-VLAN Routing Deploying Multilayer Switching with Cisco Express Forwarding.

© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—4-1 Implementing Inter-VLAN Routing Deploying Multilayer Switching with Cisco Express Forwarding.
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Introducing ACLs.

© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Introducing ACLs.
A tour of the integration between Macola ES / Progression and Preactor V11 Preactor.

A tour of the integration between Macola ES / Progression and Preactor V11 Preactor.
Architectural Styles SE 464 / ECE 452 / CS 446 Chang Hwan Peter Kim Based on slides prepared by Michał Antkiewicz June 24, 2006.

Architectural Styles SE 464 / ECE 452 / CS 446 Chang Hwan Peter Kim Based on slides prepared by Michał Antkiewicz June 24, 2006.
Department of Computer Science 1 CSS 496 Business Process Re-engineering for BS(CS)

Department of Computer Science 1 CSS 496 Business Process Re-engineering for BS(CS)
FIREWALL TECHNOLOGIES Tahani al jehani. Firewall benefits  A firewall functions as a choke point – all traffic in and out must pass through this single.

FIREWALL TECHNOLOGIES Tahani al jehani. Firewall benefits  A firewall functions as a choke point – all traffic in and out must pass through this single.
Using Iterators in Reports

Using Iterators in Reports
1 Working with MS SQL Server. 2 Objectives You will be able to Use Visual Studio for GUI based interactive access to a Microsoft SQL Server database.

1 Working with MS SQL Server. 2 Objectives You will be able to Use Visual Studio for GUI based interactive access to a Microsoft SQL Server database.
Module 13: Network Load Balancing Fundamentals. Server Availability and Scalability Overview Windows Network Load Balancing Configuring Windows Network.

Module 13: Network Load Balancing Fundamentals. Server Availability and Scalability Overview Windows Network Load Balancing Configuring Windows Network.
Programmable Networks: Active Networks + SDN. How to Introduce new services Overlays: user can introduce what-ever – Ignores physical network  perf overhead.

Programmable Networks: Active Networks + SDN. How to Introduce new services Overlays: user can introduce what-ever – Ignores physical network  perf overhead.
1 Working with MS SQL Server Textbook Chapter 14.

1 Working with MS SQL Server Textbook Chapter 14.
Jennifer Rexford Princeton University MW 11:00am-12:20pm Measurement COS 597E: Software Defined Networking.

Jennifer Rexford Princeton University MW 11:00am-12:20pm Measurement COS 597E: Software Defined Networking.
Client/Server Model: A Business View The different Client/server implementations differ according to: 1.Where the processing for the presentation of information.

Client/Server Model: A Business View The different Client/server implementations differ according to: 1.Where the processing for the presentation of information.
Extending OVN Forwarding Pipeline Topology-based Service Injection

Extending OVN Forwarding Pipeline Topology-based Service Injection
Network Virtualization in Multi-tenant Datacenters Author: VMware, UC Berkeley and ICSI Publisher: 11th USENIX Symposium on Networked Systems Design and.

Network Virtualization in Multi-tenant Datacenters Author: VMware, UC Berkeley and ICSI Publisher: 11th USENIX Symposium on Networked Systems Design and.
Apache PIG rev 2 2014-05-27. Tools for Data Analysis with Hadoop Hadoop HDFS MapReduce Pig Statistical Software Hive.

Apache PIG rev Tools for Data Analysis with Hadoop Hadoop HDFS MapReduce Pig Statistical Software Hive.
ALGORITHMS AND FLOWCHARTS. Why Algorithm is needed? 2 Computer Program ? Set of instructions to perform some specific task Is Program itself a Software.

ALGORITHMS AND FLOWCHARTS. Why Algorithm is needed? 2 Computer Program ? Set of instructions to perform some specific task Is Program itself a Software.
Course Aims This course will help you understand the latest technologies & how they work. You will lean how to develop computer programs to solve problems.

Course Aims This course will help you understand the latest technologies & how they work. You will lean how to develop computer programs to solve problems.
Coping with Link Failures in Centralized Control Plane Architecture Maulik Desai, Thyagarajan Nandagopal.

Coping with Link Failures in Centralized Control Plane Architecture Maulik Desai, Thyagarajan Nandagopal.

Similar presentations

Ads by Google