Presentation is loading. Please wait.

Presentation is loading. Please wait.

Didier Van Hoye Technical FGIA MVP – Virtual Machine Microsoft Extended Experts Team

Published byRosaline Turner Modified over 9 years ago

Similar presentations

Presentation on theme: "Didier Van Hoye Technical FGIA MVP – Virtual Machine Microsoft Extended Experts Team"— Presentation transcript:

1

2 Didier Van Hoye Technical Architect @ FGIA MVP – Virtual Machine Microsoft Extended Experts Team Member @workinghardinit http://workinghardinit.wordpress.com didier.van.hoye@hotmail.com

3 In the host networking stack In the NICs In the switches & routers

4 Receive Side Scaling (RSS) Receive Segment Coalescing (RSC) Dynamic Virtual Machine Queuing (DVMQ) Single Root I/O Virtualization (SR-IOV) NIC TEAMING RDMA/Multichannel support for virtual machines on SMB3.0 DHCP Guard/Router Guard/Port Mirroring

5 RSS exists for many years. Windows Server 2012 takes RSS to the next generation of servers Spreads interrupts across all available CPUs Even for those very large scale hosts RSS now works across k-groups Even RSS is “Numa Aware” to optimize performance Now load balances UDP traffic across CPUs

6 Coalesces packets in the NIC so the stack processes fewer headers Multiple packets belonging to connection that arrive within a single interrupt are coalesced to a larger packet (max of 64 K) by the NIC 10 – 30% improvement in I/O overhead

7 VMQ is to virtualization what RSS is to native workloads Dynamic VMQ reassigns available queues based on changing networking demands of the VMs

8 No VMQ Adaptive processing = optimal performance across changing workloads Root Partition Physical NIC CPU 0 CPU 0 CPU 1 CPU 1 CPU 2 CPU 2 CPU 3 CPU 3 Static VMQ Root Partition Physical NIC CPU 0 CPU 0 CPU 1 CPU 1 CPU 2 CPU 2 CPU 3 CPU 3 Dynamic VMQ Root Partition Physical NIC CPU 0 CPU 0 CPU 1 CPU 1 CPU 2 CPU 2 CPU 3 CPU 3 Root Partition Physical NIC CPU 0 CPU 0 CPU 1 CPU 1 CPU 2 CPU 2 CPU 3 CPU 3

9 Windows Server 2012 supports direct device assignment to virtual machines without compromising flexibility Network I/O path without SRIOV Network I/O path with SRIOV Host Root Partition Hyper-V Switch Physical NIC Virtual Machine Virtual NIC Routing VLAN Filtering Data Copy Routing VLAN Filtering Data Copy Host Root Partition Hyper-V Switch SR-IOV Physical NIC Virtual Machine Virtual Function Routing VLAN Filtering Data Copy Routing VLAN Filtering Data Copy

10 Reduces CPU utilization for processing network traffic Reduces latency of network path Increases throughput Supports Live Migration Requires: – Chipset: Interrupt and DMA remapping – BIOS Support – CPU: Hardware virtualization, EPT or NPT DIRECT DEVICE ASSIGNMENT TO VIRTUAL MACHINES WITHOUT COMPROMISING FLEXIBILITY Network I/O path with SR-IOV Network I/O path without SR-IOV Physical NIC Root Partition Hyper-V Switch Routing VLAN Filtering Data Copy Routing VLAN Filtering Data Copy Virtual Machine Virtual NIC SR-IOV Physical NIC Virtual Function VMBUS

11 Windows Server 8 – Developer Preview Virtual Machine Network Stack Software NIC Enable IOV (VM NIC Property) Virtual Function is “Assigned” “NIC” automatically created Traffic flows through VF Turn On IOV Switch back to Software path Reassign Virtual Function Assuming resources are available Migrate as normal Live MigrationPost Migration Remove VF from VM VM has connectivity even if Switch not in IOV mode IOV physical NIC not present Different NIC vendor Different NIC firmware SR-IOV Physical NIC Physical NIC Software Switch (IOV Mode) SR-IOV Physical NIC Software path is not used Virtual Function “NIC”“NIC” Software NIC Virtual Function Software Switch (IOV Mode) “NIC”“NIC”

12 Even when hardware fails … … our customers want continuous availability Windows Server 8 – Developer Preview Tenant 2: Multiple VM Workloads Data Center Tenant 1: Multiple VM Workloads TEAMING

13 Customers are dealing with way to many issues. NIC vendors would like to get rid of supporting this. Microsoft needs this to be competitive & complete the solution stack. No more 3 rd party drivers & utilities

14 Hyper-V Extensible Switch Network switch IM MUX Protocol edge Virtual miniport 1 Port 1 Port 2 Port 3 LBFO Configuration DLL LBFO Admin GUI Kernel mode User mode WMI IOCTL NIC 1 NIC 2 NIC 3 Multiple modes: switch dependent and switch independent Hashing modes: port and 4-tuple Active -Active and Active - Standby LBFO Provider Frame distribution/aggregation Failure detection Control protocol implementation Frame distribution/aggregation Failure detection Control protocol implementation

15 Parent NIC TeamingGuest NIC Teaming Hyper-V virtual switch VM (Guest Running Any OS) SR-IOV NIC LBFO Teamed NIC SR-IOV Not exposed Hyper-V virtual switch VM (Guest Running Windows Server 2012) LBFO Teamed NIC Hyper-V virtual switch SR-IOV NIC

16 Addresses congestion in network stack by offloading the stack to the network adapter Great for storage traffic: high throughput with low CPU utilization SMB-Direct uses new RDMA capability if the NICs support this Windows Server 2012 now supports RDMA low latency, high speed application-to-application data transfer

17

18

19

20

21

22

23 DCTCP/DCB Consistent Device Naming Network virtualization Generic Routing Encapsulation (GRE) IPSEC Task Offload for Virtual Machines (IPsecTOv2) Wireless Network Support

24 1Gbps flow controlled by TCP Requires 400 to 600KB of memory TCP saw tooth visible 1 Gbps flow controlled by DCTCP Requires 30KB of memory Smooth

25 W2K12 deals with network congestion by reacting to the degree & not merely the presence of congestion. DCTCP aims to achieve low latency, high burst tolerance, and high throughput, with small buffer switches. Requires Explicit Congestion Notification (ECN, RFC 3168) capable switches Algorithm enabled when it makes sense (low round trip times, i.e. in the data center)

26 Running out of buffer in a switch gets you in to stop/go hell by getting a boatload of green, orange & red lights along your way Big buffers mitigate this but are very expensive

27 You want to be in a green wave Windows Server 2012 & ECN provides network traffic control

28 Prevents congestion in NIC & network by reserving bandwidth for particular traffic types Windows 2012 provides support & control for DCB, tags packets by traffic type Provides lossless transport for mission critical workloads

29

30 1.Enhanced Transmission Selection (IEEE 802.1Qaz) 2.Priority Flow Control (IEEE 802.1Qbb) 3.(Optional) Datacenter Bridging Exchange protocol 4.(Not required) Congestion Notification (IEEE 802.1Qau)

31

32

33

34 Multi-tenant scenarios: hide the tenant’s multi- premise networking from the datacenter’s networking. GRE (RFCs 2784 & 2890) provides the mechanism to tunnel tenant networks over the datacenter network GRE breaks today’s task offloads if the NIC vendors don’t support GRE offload

35 10.1.1.11 10.1.1.12 192.168.2.22 192.168.5.55 192.168.2.22  192.168.5.55

36 IPsec is a CPU intensive workload => Offload to NIC In demand due to compliance (SOX, HIPPA, etc.) IPsec is required & needed for secured operations Only available to host/parent workloads in W2K8R2 – Now extended to VMs – Managed by the Hyper-V switch

37 Manage the Network Bandwidth with a Maximum and a Minimum value SLAs for hosted Virtual Machines Control per VMs and not per HOST

38 Physical NIC Root Partition Extensible Switch Extension Protocol Extension Miniport Capture Extensions WFP Extensions Filtering Extensions Forwarding Extensions Host NIC VM NIC VM1 VM NIC VM2 Capture extensions can inspect traffic and generate new traffic for report purposes Capture extensions do not modify existing Extensible Switch traffic Example: sflow by inMon Windows Filter Platform (WFP) Extensions can inspect, drop, modify, and insert packets using WFP APIs Windows Antivirus and Firewall software uses WFP for traffic filtering Example: Virtual Firewall by 5NINE Software Filtering extensions can also be implemented using NDIS filtering APIs Example: VM DoS Prevention by Broadcom Forwarding extensions direct traffic, defining the destination(s) of each packet Forwarding extensions can capture and filter traffic Examples: Cisco Nexus 1000V and UCS NEC OpenFlow Capture Extensions WFP Extensions Filtering Extensions Forwarding Extensions Filtering Engine BFE Service Firewall Callout

39

40

Download ppt "Didier Van Hoye Technical FGIA MVP – Virtual Machine Microsoft Extended Experts Team"

Similar presentations

Hyper-V Networking Best practice

Hyper-V Networking Best practice
And many others…. Deliver networking as part of pooled, automated infrastructure Ensure multitenant isolation, scale and performance Expand.

And many others…. Deliver networking as part of pooled, automated infrastructure Ensure multitenant isolation, scale and performance Expand.
Windows Server 2012 NIC Teaming and SMB Multichannel Solutions

Windows Server 2012 NIC Teaming and SMB Multichannel Solutions
2  Industry trends and challenges  Windows Server 2012: Beyond virtualization  Complete virtualization platform  Improved scalability and performance.

2  Industry trends and challenges  Windows Server 2012: Beyond virtualization  Complete virtualization platform  Improved scalability and performance.
Virtual Machine Queue Architecture Review Ali Dabagh Architect Windows Core Networking Don Stanwyck Sr. Program Manager NDIS Virtualization.

Virtual Machine Queue Architecture Review Ali Dabagh Architect Windows Core Networking Don Stanwyck Sr. Program Manager NDIS Virtualization.
Fluffy’s Safe Right? If you want to limit a user’s functionality, don’t make them an administrator.

Fluffy’s Safe Right? If you want to limit a user’s functionality, don’t make them an administrator.
PAGE 2 PAGE 3 INTRODUCING HYPER-V EXTENSIBLE SWITCH.

PAGE 2 PAGE 3 INTRODUCING HYPER-V EXTENSIBLE SWITCH.
Microsoft Virtual Academy. Microsoft Virtual Academy First HalfSecond Half (01) Introduction to Microsoft Virtualization(05) Hyper-V Management (02) Hyper-V.

Microsoft Virtual Academy. Microsoft Virtual Academy First HalfSecond Half (01) Introduction to Microsoft Virtualization(05) Hyper-V Management (02) Hyper-V.
Alan Shieh Cornell University Srikanth Kandula Albert Greenberg Changhoon Kim Microsoft Research Seawall: Performance Isolation for Cloud Datacenter Networks.

Alan Shieh Cornell University Srikanth Kandula Albert Greenberg Changhoon Kim Microsoft Research Seawall: Performance Isolation for Cloud Datacenter Networks.
Must have static IP address pool and VLANs for Provider Address (PA) network – network on which NVGRE encapsulated packets are sent All subnets.

Must have static IP address pool and VLANs for Provider Address (PA) network – network on which NVGRE encapsulated packets are sent All subnets.
Defense: Christopher Francis, Rumou duan Data Center TCP (DCTCP) 1.

Defense: Christopher Francis, Rumou duan Data Center TCP (DCTCP) 1.
BETA!BETA! Building a secure private cloud on Microsoft technologies Private cloud security concerns Security & compliance in a Microsoft private cloud.

BETA!BETA! Building a secure private cloud on Microsoft technologies Private cloud security concerns Security & compliance in a Microsoft private cloud.
Customers can easily manage and extend their Linux and FreeBSD workloads. Provide the best experience for running Linux and FreeBSD on Hyper-V and in.

Customers can easily manage and extend their Linux and FreeBSD workloads. Provide the best experience for running Linux and FreeBSD on Hyper-V and in.
Lesson 9: Creating and Configuring Virtual Networks

Lesson 9: Creating and Configuring Virtual Networks
Microsoft Virtual Academy Module 4 Creating and Configuring Virtual Machine Networks.

Microsoft Virtual Academy Module 4 Creating and Configuring Virtual Machine Networks.
Microsoft delivers a complete datacenter solution with Windows Server 2012 R2 out-of-the-box Cloud OS Development Management Identity Virtualization.

Microsoft delivers a complete datacenter solution with Windows Server 2012 R2 out-of-the-box Cloud OS Development Management Identity Virtualization.
Flat or shrinking IT budgets even as business expectations increase. Efficient datacenter operations across entire customer base. Enterprise- class.

Flat or shrinking IT budgets even as business expectations increase. Efficient datacenter operations across entire customer base. Enterprise- class.
Implementing Efficient RSS Capable Hardware and Drivers for Windows 7

Implementing Efficient RSS Capable Hardware and Drivers for Windows 7
What's New in Windows Server 2012 Hyper-V, Part 2 Jeff Woolsey Windows Server & Cloud Microsoft Corporation VIR309.

What's New in Windows Server 2012 Hyper-V, Part 2 Jeff Woolsey Windows Server & Cloud Microsoft Corporation VIR309.
Enable Multi Tenant Clouds Network Virtualization. Dynamic VM Placement. Secure Isolation. … High Scale & Low Cost Datacenters Leverage Hardware. High.

Enable Multi Tenant Clouds Network Virtualization. Dynamic VM Placement. Secure Isolation. … High Scale & Low Cost Datacenters Leverage Hardware. High.

Similar presentations

Ads by Google