Download presentation
Presentation is loading. Please wait.
10
Red Corp Blue Subnet1 Blue Subnet3Blue Subnet2 Blue Subnet5 Blue Subnet4 Red Subnet2 Red Subnet1 Blue Sales Net Red HR Net Multitenant Datacenter eg: Hoster Datacenter/Private Cloud Customer VM Network Virtual Subnet Blue Corp Blue R&D Net
12
Different subnets 10.0.0.5 10.0.0.7 192.168.2.22 192.168.5.55 192.168.2.22 192.168.5.55 10.0.0.5 10.0.0.7 GRE Key Blue Subnet MAC 10.0.0.5 10.0.0.7 10.0.0.7 GRE Key Red Subnet MACMAC 192.168.2.22 192.168.5.55 10.0.0.5 10.0.0.7 10.0.0.7 10.0.0.7 10.0.0.7 10.0.0.7 10.0.0.7 10.0.0.7 10.0.0.7 Provider Address (PA) Customer Address (CA)
13
Blue VM 1 : MAC 1, CA 1, PA 1 VM 2 : MAC 2, CA 2, PA 3 VM 3 : MAC 3, CA 3, PA 5 … Red VM 1 : MAC X, CA 1, PA 2 VM 2 : MAC Y, CA 2, PA 4 VM 3 : MAC Z, CA 3, PA 6 … System Center 2012 R2 Virtual Machine Manager Hyper-V n°1 with VMM agent @IP : PA1 Hyper-V n°2 with VMM agent @IP : PA3 Hyper-V n°3 with VMM agent @IP : PA3 VM Networks configuration network virtualization Configuration
16
Provider Customer
17
Provider Customer
19
IP range for hypervisors in Paris Datacenter 172.16.0.0/16 IP range for hypervisors in Seattle Datacenter 172.17.0.0/16 1 Logical Network to define those networks : InfraNetworkCloudProvider
20
Provider Customer
22
Provider Customer
24
Logical switch prerequisite 1: Native/Uplink Port Profile
25
Logical Switch Prerequisite 2: Virtual network adapter port profiles VMQ SR-IOV IPsec task Offloading DHCP Guard…
27
Provider Customer
29
Provider Customer
31
Provider Customer
33
Provider Customer
39
PA : 192.168.4.11 NIC PA : 192.168.4.22 CA : 10.0.0.5 CA : 10.0.1.7 Blue1 Blue2 Virtual Subnet ID : 5001 Virtual Subnet ID : 5222
40
where is default gateway ? ARP for 10.0.0.1 (default gateway) Hyper-V Switch broadcasts ARP to: 1.All local VMs on VSID 5001 2.Network Virtualization filter OOB: VSID:5001 Network Virtualization filter responds to ARP with MAC DGW ARP for 10.0.0.1 ARP is NOT broadcast to the network 192.168.4.11 NIC Hyper-V Switch VSID ACL Enforcement Blue 1 Red 1 Network Virtualization 10.0.0.5 MAC PA1 VSID 5001 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing MAC DGW Different VSID :: Different Hosts 192.168.4.22 NIC MAC PA2 Blue 2 Red 2 10.0.0.710.0.1.7 VSID 5222 VSID 6001 Hyper-V Switch VSID ACL Enforcement Network Virtualization IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing
41
MAC PA1 OOB: VSID:5001 Use MAC DGW for 10.0.0.1 Default Gateway at MAC DGW Blue 1 learns MAC of Default Gateway MAC DGW Different VSID :: Different Hosts 192.168.4.11 NIC Hyper-V Switch VSID ACL Enforcement Blue 1 Red 1 Network Virtualization 10.0.0.5 MAC PA1 VSID 5001 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing MAC DGW 192.168.4.22 NIC MAC PA2 Blue 2 Red 2 10.0.0.710.0.1.7 VSID 5222 VSID 6001 Hyper-V Switch VSID ACL Enforcement Network Virtualization IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing
42
sent from Blue 1 MAC B1 MAC DGW 10.0.0.5 10.0.1.7 OOB: VSID:5001 in Hyper-V switch MAC B1 MAC DGW 10.0.0.5 10.0.1.7 in Network Virtualization filter OOB: VSID:5001 MAC B1 MAC DGW 10.0.0.5 10.0.1.7 NVGRE on the wire MAC PA1 MAC PA2 192.168.4.11 192.168.4.22 5222 MAC B1 MAC B2 10.0.0.5 10.0.1.7 MAC DGW 5222 Different VSID :: Different Hosts 192.168.4.11 NIC Hyper-V Switch VSID ACL Enforcement Blue 1 Red 1 Network Virtualization 10.0.0.5 MAC PA1 VSID 5001 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing MAC DGW 192.168.4.22 NIC MAC PA2 Blue 2 Red 2 10.0.0.710.0.1.7 VSID 5222 VSID 6001 Hyper-V Switch VSID ACL Enforcement Network Virtualization IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing
43
received by Blue 2 MAC B1 MAC B2 10.0.0.5 10.0.1.7 OOB: VSID:5222 in Hyper-V switch MAC B1 MAC B2 10.0.0.5 10.0.1.7 NVGRE on the wire in Network Virtualization filter OOB: VSID:5222 MAC B1 MAC B2 10.0.0.5 10.0.1.7 MAC PA1 MAC PA2 192.168.4.11 192.168.4.22 5222 MAC B1 MAC B2 10.0.0.5 10.0.1.7 MAC DGW Different VSID :: Different Hosts 192.168.4.11 NIC Hyper-V Switch VSID ACL Enforcement Blue 1 Red 1 Network Virtualization 10.0.0.5 MAC PA1 VSID 5001 VSID 6001 IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing MAC DGW 192.168.4.22 NIC MAC PA2 Blue 2 Red 2 10.0.0.710.0.1.7 VSID 5222 VSID 6001 Hyper-V Switch VSID ACL Enforcement Network Virtualization IP Virtualization Policy Enforcement Routing IP Virtualization Policy Enforcement Routing
47
Hyper-V Network Virtualization Gateway DCSQLDNS subnet 10.2x.x/16 subnet 10.3.x.x/16 subnet 10.4.x.x/16 R1R2B1 B2 B3 R3 R4 Y1Y2 172.16.x.x/16 Provider Addresses Consolidated Datacenter Hyper-V Network Virtualization (“NVGRE world”) Host1Host2Host3 Customer Addresses CorpNet 10.1.x.x/16 CorpNet 10.1.x.x/16
48
Hyper-V Network Virtualization Gateway DC SQL DNS subnet 10.2x.x/16 subnet 10.3.x.x/16 subnet 10.4.x.x/16 R1R2B1 B2 B3 R3 R4 Y1Y2 172.16.x.x/16 Provider Addresses Consolidated Datacenter Hyper-V Network Virtualization (“NVGRE world”) Host1Host2Host3 Customer Addresses S2S VPN Internet S2S VPN CorpNet 10.1.x.x/16 CorpNet 10.1.x.x/16
50
Hyper-V n°4 With VMM agent NIC 1 : PA/LogicalSwitch NIC 2 : Datacenter NIC 3 : Management VM : WSG1 vNIC 1 : PA/LogicalSwitch vNIC 2 : Datacenter vNIC 3 : Management
51
Provider Customer
54
Provider Customer
58
http://aka.ms/Arnaud Twitter : @arnaudlheureux Stanislas Quastana http://aka.ms/Stanislas Twitter : @squastana Arnaud Lheureux Thank you for your attention!
59
www.microsoft.com/learning http://developer.microsoft.com http://microsoft.com/technet http://channel9.msdn.com/Events/TechEd
Similar presentations
