文件名称:分布式虚拟网络交换机-Citrix服务器虚拟化Xen
文件大小:11.52MB
文件格式:PPT
更新时间:2024-05-12 13:34:40
Xen Citrix
分布式虚拟网络交换机 虚拟交换机 开源: www.openvswitch.org 提供了丰富的2层功能属性 跨主机的内部网络 丰富的流量监控监控选择 DVS 控制器 虚拟器件 基于Web的界面 管理多个资源池 与被管理的资源池并存 VM VM VM VM VM DVS Goals Provide greater visibility into the XS networking layer Provide distributed fine grained networking configuration and control policies Goals Integrate OVS within XS as an eventual replacement for the Linux bridge stack Basically a compatibility exercise OVS must replicate all existing XS networking functionality (VLANs, bonds, dedicated storage NICs, ingress QoS, etc) Does not leverage any of the advanced OVS functionality, but is a critical building block Provide a Distributed Virtual Switching (DVS) solution that extends the XS platform Begins to leverage programmable nature of the OVS and it’s support for OpenFlow Requires OVS integration and DVSC Extends XS in two ways: Greater visibility into the networking layer of the XS platform via standard tools and processes, including RSPAN and NetFlow Fine grained networking configuration and control policies that apply across VM migrations Working on future solutions in this area ourselves, and with partners Revolves around OVS / OpenFlow combination Enables other solutions like VM isolation, multi-tenancy, and connecting cloud and on-premise networks In Cowley timeframe support for ISV solutions to be evaluated on a case-by-case basis Enabling the partner ecosystem By integrating an OpenFlow-programmable switch into our platform, and providing DVSC APIs With virtualization, one challenge is network visibility. The “last hop” to the VM is now a switch living in the virtualization software on the host, not the top-of-rack switch as network administrators are more accustomed to. With Distributed Virtual Switching, we can enable better visibility into the network and accomplish things such as: Real time network traffic statistics (Rx bytes, packets etc.) that you can easily get on switches in the physical world Enhanced security. Setting of ACLs on virtual interfaces (VIFs) permits you to provide a configurable, XenServer-provided firewall for the VM. Example: block HTTP, enable only HTTP, and various other configurations are now possible. Enhanced monitoring. Through port monitoring, you could for example determine “if the XenDesktop user is running Pandora and causing performance issues” Simpler network isolation and configuration of VLANs which are especially important in service provider environments—leading to much simpler “multi-tenancy” in the future. VM ACLs move with the VM, even after a live migration, instead of being tied to a specific host. The Controller console UI is a web based interface, separate from XenCenter so that network administrators (not virtualization administrators) can have visibility into the distributed virtual switching environment. Without the controller, you can still do normal networking configurations (as in the past) via XenCenter, such as creating networks and configuration of TCP/IP settings.