SlideShare ist ein Scribd-Unternehmen logo

Deploying vn fs with kubernetes pods and vms

L
LibbySchulze1

This document discusses deploying virtual network functions (VNFs) using Kubernetes pods and VMs. It covers using single root I/O virtualization (SR-IOV) and Open vSwitch with Data Plane Development Kit (OVS-DPDK) for high performance networking. SR-IOV allows VNFs direct access to network interface cards to bypass the hypervisor. OVS-DPDK processes packets in userspace using DPDK for accelerated performance compared to native Linux networking or SR-IOV for some workloads. The document provides configuration details for enabling SR-IOV and OVS-DPDK on the host and specifying network interfaces in KubeVirt virtual machine instances.

Internet
1 von 24
Downloaden Sie, um offline zu lesen
Deploying VNFs with Kubernetes pods and VMs
Agenda VNF basics - What are VNFs? - Benefits of VNFs - Enhancing app performance SR-IOV apps - What is SR-IOV? - Host config for SR-IOV - VM deployment using KubeVirt OVS-DPDK apps - What is OVS? - What is DPDK? - Host config for OVS-DPDK - VM deployment using KubeVirt Demo
Virtual Network Functions
Network Function Virtualization NFV is a network architecture concept to abstract network functions from hardware. Architecture: ● Virtualized network functions (VNFs) ● Network functions virtualization infrastructure (NFVi) ● Management, automation and network orchestration (MANO)
What are VNFs? ● Virtualized network services that replace legacy network appliances on proprietary hardware ● VNFs are built on top of NFV infrastructure serving as a foundational technology for 5G or edge networks ● Often deployed as virtual machines (VMs) by various telecommunications providers ● Common VNF applications - routers, firewalls, WAN optimization, NAT, load balancers
Benefits of VNFs ● Improved network scalability ● Efficient use of network infrastructure ● Reduced power consumption ● Better security features ● Saves on physical space needed for hardware ● Reduced operational and capital expenditures
Enhancing VNF performance Heavy data traffic when running multiple VNF VMs on a host. Efficient memory access, task and resource allocations, network I/O. Faster packet processing than native Linux kernel network stack ● SR-IOV ● DPDK
SR-IOV
What is SR-IOV? Single Root I/O Virtualization allows the isolation of PCI Express resources for manageability and performance reasons. It allows VNFs to access NIC directly, bypassing hypervisor. Requires support in BIOS and at OS level. ● Physical functions (PFs) - full-featured PCIe functions ● Virtual functions (VFs) - “lightweight” PCIe functions
KubeVirt support ● SR-IOV device plugin ● SR-IOV CNI plugin ● Multus meta-plugin Ref: https://github.com/kubevirt/kubevirt/blob/main/docs/sriov.md https://kubevirt.io/user-guide/virtual_machines/interfaces_and_networks
SR-IOV host config ● Plug in SR-IOV capable NIC ● Enable SR-IOV in BIOS ● Configure kernel to enable IOMMU: ○ intel_iommu=on ○ pci=realloc ○ pci=assign-busses ● VFIO userspace driver to pass through PCI devices into qemu: ○ modprobe vfio-pci
KubeVirt VMI spec spec: domain: interfaces: - masquerade: {} name: default - name: sriov-net sriov: {} KubeVirt relies on VFIO userspace driver to pass PCI devices into VMI guest. networks: - name: default pod: {} - name: sriov-net multus: networkName: sriov-network-eno
OVS-DPDK
What is OVS? Open vSwitch: a production quality, multi-layer virtual switch Main components: ● Forwarding path: implemented in kernel space for high performance ● Vswitchd: main userspace program
What is DPDK? ● DPDK stands for Data Plane Development Kit ● Packet processing bypasses Linux kernel network stack ● Fast switching in user space using Poll mode drivers ● Open vSwitch can be combined with DPDK for accelerated performance ● For East-West traffic in same server, DPDK wins against SR-IOV
KubeVirt support ● Userspace CNI plugin ● Multus meta-plugin ● OVS built with DPDK support Pending Github PR - https://github.com/kubevirt/kubevirt/pull/3208 Ref: https://github.com/intel/userspace-cni-network-plugin https://telcocloudbridge.com/blog/dpdk-vs-sr-iov-for-nfv-why-a-wrong-deci sion-can-impact-performance/
OVS-DPDK host config ● Install DPDK and OVS packages on host(s) ● Configure hugepages using sysctl: vm.nr_hugepages ● Setup DPDK devices using VFIO-PCI: ○ driverctl set-override <pci-address> vfio-pci ● Bridge/Ports creation in OVS: ○ ovs-vsctl add-br br-dpdk0 -- set bridge br-dpdk0 datapath_type=netdev ○ ovs-vsctl add-port br-dpdk0 eno1 -- set Interface eno1 type=dpdk options:dpdk-devargs=0000:19:00.1
KubeVirt VMI spec spec: domain: interfaces: - masquerade: {} name: default - name: vhost-user-net-1 vhostuser: {} KubeVirt relies on VFIO userspace driver to pass PCI devices into VMI guest. networks: - name: default pod: {} - name: vhost-user-net-1 multus: networkName: net1
Demo…
Thank You!!

Empfohlen

XPDDS17: Bring up PCI Passthrough on ARM - Julien Grall, ARM
XPDDS17: Bring up PCI Passthrough on ARM - Julien Grall, ARMXPDDS17: Bring up PCI Passthrough on ARM - Julien Grall, ARM
XPDDS17: Bring up PCI Passthrough on ARM - Julien Grall, ARM
The Linux Foundation
 
XPDDS17: PL011 UART Emulation in Xen on ARM - Bhupinder Thakur, Qualcomm Data...
XPDDS17: PL011 UART Emulation in Xen on ARM - Bhupinder Thakur, Qualcomm Data...XPDDS17: PL011 UART Emulation in Xen on ARM - Bhupinder Thakur, Qualcomm Data...
XPDDS17: PL011 UART Emulation in Xen on ARM - Bhupinder Thakur, Qualcomm Data...
The Linux Foundation
 
virtio
virtiovirtio
virtio
zhaobrian
 
DIY InfiniBand networking
DIY InfiniBand networkingDIY InfiniBand networking
DIY InfiniBand networking
Syoyo Fujita
 
MicroServer + InfiniBand + ZFS
MicroServer + InfiniBand + ZFSMicroServer + InfiniBand + ZFS
MicroServer + InfiniBand + ZFS
Syoyo Fujita
 
Denver VMUG nov 2011
Denver VMUG nov 2011Denver VMUG nov 2011
Denver VMUG nov 2011
Dan Brinkmann
 
Introduction to Open Mano
Introduction to Open ManoIntroduction to Open Mano
Introduction to Open Mano
videos
 
I/O virtualization with InfiniBand and 40 Gigabit Ethernet
I/O virtualization with InfiniBand and 40 Gigabit EthernetI/O virtualization with InfiniBand and 40 Gigabit Ethernet
I/O virtualization with InfiniBand and 40 Gigabit Ethernet
Mellanox Technologies
 

Empfohlen

XPDDS17: Bring up PCI Passthrough on ARM - Julien Grall, ARM
XPDDS17: Bring up PCI Passthrough on ARM - Julien Grall, ARMXPDDS17: Bring up PCI Passthrough on ARM - Julien Grall, ARM
XPDDS17: Bring up PCI Passthrough on ARM - Julien Grall, ARM
The Linux Foundation
 
XPDDS17: PL011 UART Emulation in Xen on ARM - Bhupinder Thakur, Qualcomm Data...
XPDDS17: PL011 UART Emulation in Xen on ARM - Bhupinder Thakur, Qualcomm Data...XPDDS17: PL011 UART Emulation in Xen on ARM - Bhupinder Thakur, Qualcomm Data...
XPDDS17: PL011 UART Emulation in Xen on ARM - Bhupinder Thakur, Qualcomm Data...
The Linux Foundation
 
virtio
virtiovirtio
virtio
zhaobrian
 
DIY InfiniBand networking
DIY InfiniBand networkingDIY InfiniBand networking
DIY InfiniBand networking
Syoyo Fujita
 
MicroServer + InfiniBand + ZFS
MicroServer + InfiniBand + ZFSMicroServer + InfiniBand + ZFS
MicroServer + InfiniBand + ZFS
Syoyo Fujita
 
Denver VMUG nov 2011
Denver VMUG nov 2011Denver VMUG nov 2011
Denver VMUG nov 2011
Dan Brinkmann
 
Introduction to Open Mano
Introduction to Open ManoIntroduction to Open Mano
Introduction to Open Mano
videos
 
I/O virtualization with InfiniBand and 40 Gigabit Ethernet
I/O virtualization with InfiniBand and 40 Gigabit EthernetI/O virtualization with InfiniBand and 40 Gigabit Ethernet
I/O virtualization with InfiniBand and 40 Gigabit Ethernet
Mellanox Technologies
 
Contrail integrated with Kubernetes and Openstack
Contrail integrated with Kubernetes and OpenstackContrail integrated with Kubernetes and Openstack
Contrail integrated with Kubernetes and Openstack
Daisuke Nakajima
 
xPaaS: The JBoss Way
xPaaS: The JBoss WayxPaaS: The JBoss Way
xPaaS: The JBoss Way
Christina Lin
 
Interop2018 contrail ContrailEnterpriseMulticloud
Interop2018 contrail ContrailEnterpriseMulticloudInterop2018 contrail ContrailEnterpriseMulticloud
Interop2018 contrail ContrailEnterpriseMulticloud
Daisuke Nakajima
 
Citrix Remote Access Solution Soup
Citrix Remote Access Solution SoupCitrix Remote Access Solution Soup
Citrix Remote Access Solution Soup
Dan Brinkmann
 
Container network security
Container network securityContainer network security
Container network security
Daisuke Nakajima
 
Openstack v4 0
Openstack v4 0Openstack v4 0
Openstack v4 0
sprdd
 
HKG18- 115 - Partitioning ARM Systems with the Jailhouse Hypervisor
HKG18- 115 - Partitioning ARM Systems with the Jailhouse HypervisorHKG18- 115 - Partitioning ARM Systems with the Jailhouse Hypervisor
HKG18- 115 - Partitioning ARM Systems with the Jailhouse Hypervisor
Linaro
 
Mastering kvm virtualization- A complete guide of KVM virtualization
Mastering kvm virtualization- A complete guide of KVM virtualizationMastering kvm virtualization- A complete guide of KVM virtualization
Mastering kvm virtualization- A complete guide of KVM virtualization
Humble Chirammal
 
GNAT Pro for ARM processors
GNAT Pro for ARM processorsGNAT Pro for ARM processors
GNAT Pro for ARM processors
AdaCore
 
Cisco usNIC: how it works, how it is used in Open MPI
Cisco usNIC: how it works, how it is used in Open MPICisco usNIC: how it works, how it is used in Open MPI
Cisco usNIC: how it works, how it is used in Open MPI
Jeff Squyres
 
Kvm virtualization platform
Kvm virtualization platformKvm virtualization platform
Kvm virtualization platform
Ahmad Hafeezi
 
Play With Android
Play With AndroidPlay With Android
Play With Android
Champ Yen
 
Managing ceph through_oVirt_using_Cinder
Managing ceph through_oVirt_using_CinderManaging ceph through_oVirt_using_Cinder
Managing ceph through_oVirt_using_Cinder
Maor Lipchuk
 
Open contrailmeetup
Open contrailmeetupOpen contrailmeetup
Open contrailmeetup
Daisuke Nakajima
 
RedHat Virtualization Manager
RedHat Virtualization ManagerRedHat Virtualization Manager
RedHat Virtualization Manager
Raz Tamir
 
Graphics virtualization
Graphics virtualizationGraphics virtualization
Graphics virtualization
The Linux Foundation
 
Deploying Baremetal Instances with OpenStack
Deploying Baremetal Instances with OpenStackDeploying Baremetal Instances with OpenStack
Deploying Baremetal Instances with OpenStack
Etsuji Nakai
 
2014년 오픈소스 기반 플랫폼 기술 세미나 - Let's Start NFV & SDN
2014년 오픈소스 기반 플랫폼 기술 세미나 - Let's Start NFV & SDN2014년 오픈소스 기반 플랫폼 기술 세미나 - Let's Start NFV & SDN
2014년 오픈소스 기반 플랫폼 기술 세미나 - Let's Start NFV & SDN
Hongsik Choi
 
Gluster ovirt integration_gluster_meetup_pune_2015
Gluster ovirt integration_gluster_meetup_pune_2015Gluster ovirt integration_gluster_meetup_pune_2015
Gluster ovirt integration_gluster_meetup_pune_2015
Ramesh Nachimuthu
 
Mellanox VXLAN Acceleration
Mellanox VXLAN AccelerationMellanox VXLAN Acceleration
Mellanox VXLAN Acceleration
Mellanox Technologies
 
Implementing SR-IOv failover for Windows guests during live migration
Implementing SR-IOv failover for Windows guests during live migrationImplementing SR-IOv failover for Windows guests during live migration
Implementing SR-IOv failover for Windows guests during live migration
Yan Vugenfirer
 
Network Function Virtualization (NFV) BoF
Network Function Virtualization (NFV) BoFNetwork Function Virtualization (NFV) BoF
Network Function Virtualization (NFV) BoF
APNIC
 

Weitere ähnliche Inhalte

Was ist angesagt?

HKG18- 115 - Partitioning ARM Systems with the Jailhouse Hypervisor
HKG18- 115 - Partitioning ARM Systems with the Jailhouse HypervisorHKG18- 115 - Partitioning ARM Systems with the Jailhouse Hypervisor
HKG18- 115 - Partitioning ARM Systems with the Jailhouse Hypervisor
Linaro
 
Mastering kvm virtualization- A complete guide of KVM virtualization
Mastering kvm virtualization- A complete guide of KVM virtualizationMastering kvm virtualization- A complete guide of KVM virtualization
Mastering kvm virtualization- A complete guide of KVM virtualization
Humble Chirammal
 
Play With Android
Play With AndroidPlay With Android
Play With Android
Champ Yen
 
Managing ceph through_oVirt_using_Cinder
Managing ceph through_oVirt_using_CinderManaging ceph through_oVirt_using_Cinder
Managing ceph through_oVirt_using_Cinder
Maor Lipchuk
 
Deploying Baremetal Instances with OpenStack
Deploying Baremetal Instances with OpenStackDeploying Baremetal Instances with OpenStack
Deploying Baremetal Instances with OpenStack
Etsuji Nakai
 

Was ist angesagt? (20)

Contrail integrated with Kubernetes and Openstack
Contrail integrated with Kubernetes and OpenstackContrail integrated with Kubernetes and Openstack
Contrail integrated with Kubernetes and Openstack
 
xPaaS: The JBoss Way
xPaaS: The JBoss WayxPaaS: The JBoss Way
xPaaS: The JBoss Way
 
Interop2018 contrail ContrailEnterpriseMulticloud
Interop2018 contrail ContrailEnterpriseMulticloudInterop2018 contrail ContrailEnterpriseMulticloud
Interop2018 contrail ContrailEnterpriseMulticloud
 
Citrix Remote Access Solution Soup
Citrix Remote Access Solution SoupCitrix Remote Access Solution Soup
Citrix Remote Access Solution Soup
 
Container network security
Container network securityContainer network security
Container network security
 
Openstack v4 0
Openstack v4 0Openstack v4 0
Openstack v4 0
 
HKG18- 115 - Partitioning ARM Systems with the Jailhouse Hypervisor
HKG18- 115 - Partitioning ARM Systems with the Jailhouse HypervisorHKG18- 115 - Partitioning ARM Systems with the Jailhouse Hypervisor
HKG18- 115 - Partitioning ARM Systems with the Jailhouse Hypervisor
 
Mastering kvm virtualization- A complete guide of KVM virtualization
Mastering kvm virtualization- A complete guide of KVM virtualizationMastering kvm virtualization- A complete guide of KVM virtualization
Mastering kvm virtualization- A complete guide of KVM virtualization
 
GNAT Pro for ARM processors
GNAT Pro for ARM processorsGNAT Pro for ARM processors
GNAT Pro for ARM processors
 
Cisco usNIC: how it works, how it is used in Open MPI
Cisco usNIC: how it works, how it is used in Open MPICisco usNIC: how it works, how it is used in Open MPI
Cisco usNIC: how it works, how it is used in Open MPI
 
Kvm virtualization platform
Kvm virtualization platformKvm virtualization platform
Kvm virtualization platform
 
Play With Android
Play With AndroidPlay With Android
Play With Android
 
Managing ceph through_oVirt_using_Cinder
Managing ceph through_oVirt_using_CinderManaging ceph through_oVirt_using_Cinder
Managing ceph through_oVirt_using_Cinder
 
Open contrailmeetup
Open contrailmeetupOpen contrailmeetup
Open contrailmeetup
 
RedHat Virtualization Manager
RedHat Virtualization ManagerRedHat Virtualization Manager
RedHat Virtualization Manager
 
Graphics virtualization
Graphics virtualizationGraphics virtualization
Graphics virtualization
 
Deploying Baremetal Instances with OpenStack
Deploying Baremetal Instances with OpenStackDeploying Baremetal Instances with OpenStack
Deploying Baremetal Instances with OpenStack
 
2014년 오픈소스 기반 플랫폼 기술 세미나 - Let's Start NFV & SDN
2014년 오픈소스 기반 플랫폼 기술 세미나 - Let's Start NFV & SDN2014년 오픈소스 기반 플랫폼 기술 세미나 - Let's Start NFV & SDN
2014년 오픈소스 기반 플랫폼 기술 세미나 - Let's Start NFV & SDN
 
Gluster ovirt integration_gluster_meetup_pune_2015
Gluster ovirt integration_gluster_meetup_pune_2015Gluster ovirt integration_gluster_meetup_pune_2015
Gluster ovirt integration_gluster_meetup_pune_2015
 
Mellanox VXLAN Acceleration
Mellanox VXLAN AccelerationMellanox VXLAN Acceleration
Mellanox VXLAN Acceleration
 

Ähnlich wie Deploying vn fs with kubernetes pods and vms

OSDC 2019 | KubeVirt: Converge IT infrastructure into one single Kubernetes p...
OSDC 2019 | KubeVirt: Converge IT infrastructure into one single Kubernetes p...OSDC 2019 | KubeVirt: Converge IT infrastructure into one single Kubernetes p...
OSDC 2019 | KubeVirt: Converge IT infrastructure into one single Kubernetes p...
NETWAYS
 
How to Modernize Virtualized Workloads
How to Modernize Virtualized Workloads How to Modernize Virtualized Workloads
How to Modernize Virtualized Workloads
Konveyor Community
 
OpenStack and OpenContrail for FreeBSD platform by Michał Dubiel
OpenStack and OpenContrail for FreeBSD platform by Michał DubielOpenStack and OpenContrail for FreeBSD platform by Michał Dubiel
OpenStack and OpenContrail for FreeBSD platform by Michał Dubiel
eurobsdcon
 

Ähnlich wie Deploying vn fs with kubernetes pods and vms (20)

Implementing SR-IOv failover for Windows guests during live migration
Implementing SR-IOv failover for Windows guests during live migrationImplementing SR-IOv failover for Windows guests during live migration
Implementing SR-IOv failover for Windows guests during live migration
 
Network Function Virtualization (NFV) BoF
Network Function Virtualization (NFV) BoFNetwork Function Virtualization (NFV) BoF
Network Function Virtualization (NFV) BoF
 
DEVNET-1155 Branch Virtualization
DEVNET-1155 Branch VirtualizationDEVNET-1155 Branch Virtualization
DEVNET-1155 Branch Virtualization
 
OpenStack Paris Meetup on Nfv 2014/10/07
OpenStack Paris Meetup on Nfv 2014/10/07OpenStack Paris Meetup on Nfv 2014/10/07
OpenStack Paris Meetup on Nfv 2014/10/07
 
DPDK Summit 2015 - RIFT.io - Tim Mortsolf
DPDK Summit 2015 - RIFT.io - Tim MortsolfDPDK Summit 2015 - RIFT.io - Tim Mortsolf
DPDK Summit 2015 - RIFT.io - Tim Mortsolf
 
OSDC 2019 | KubeVirt: Converge IT infrastructure into one single Kubernetes p...
OSDC 2019 | KubeVirt: Converge IT infrastructure into one single Kubernetes p...OSDC 2019 | KubeVirt: Converge IT infrastructure into one single Kubernetes p...
OSDC 2019 | KubeVirt: Converge IT infrastructure into one single Kubernetes p...
 
Design Summit - NFV BoF - Dave Neary
Design Summit - NFV BoF - Dave NearyDesign Summit - NFV BoF - Dave Neary
Design Summit - NFV BoF - Dave Neary
 
OVHcloud Hosted Private Cloud Platform Network use cases with VMware NSX
OVHcloud Hosted Private Cloud Platform Network use cases with VMware NSXOVHcloud Hosted Private Cloud Platform Network use cases with VMware NSX
OVHcloud Hosted Private Cloud Platform Network use cases with VMware NSX
 
NFV в сетях операторов связи
NFV в сетях операторов связиNFV в сетях операторов связи
NFV в сетях операторов связи
 
6WIND Virtual Accelerator Product Presentation
6WIND Virtual Accelerator Product Presentation6WIND Virtual Accelerator Product Presentation
6WIND Virtual Accelerator Product Presentation
 
Hyper-V Networking
Hyper-V NetworkingHyper-V Networking
Hyper-V Networking
 
oVirt Introduction
oVirt IntroductionoVirt Introduction
oVirt Introduction
 
Known basic of NFV Features
Known basic of NFV FeaturesKnown basic of NFV Features
Known basic of NFV Features
 
How to Modernize Virtualized Workloads
How to Modernize Virtualized Workloads How to Modernize Virtualized Workloads
How to Modernize Virtualized Workloads
 
OpenStack Israel Meetup - Project Kuryr: Bringing Container Networking to Neu...
OpenStack Israel Meetup - Project Kuryr: Bringing Container Networking to Neu...OpenStack Israel Meetup - Project Kuryr: Bringing Container Networking to Neu...
OpenStack Israel Meetup - Project Kuryr: Bringing Container Networking to Neu...
 
Summit 16: ARM Mini-Summit - NXP QorIQ NFV Solutions - NXP Semiconductors
Summit 16: ARM Mini-Summit - NXP QorIQ NFV Solutions - NXP SemiconductorsSummit 16: ARM Mini-Summit - NXP QorIQ NFV Solutions - NXP Semiconductors
Summit 16: ARM Mini-Summit - NXP QorIQ NFV Solutions - NXP Semiconductors
 
6WINDGate™ - Enabling Cloud RAN Virtualization
6WINDGate™ - Enabling Cloud RAN Virtualization6WINDGate™ - Enabling Cloud RAN Virtualization
6WINDGate™ - Enabling Cloud RAN Virtualization
 
OpenStack and OpenContrail for FreeBSD platform by Michał Dubiel
OpenStack and OpenContrail for FreeBSD platform by Michał DubielOpenStack and OpenContrail for FreeBSD platform by Michał Dubiel
OpenStack and OpenContrail for FreeBSD platform by Michał Dubiel
 
Nx o sv and virl
Nx o sv and virlNx o sv and virl
Nx o sv and virl
 
Contrail Enabler for agile cloud services
Contrail Enabler for agile cloud servicesContrail Enabler for agile cloud services
Contrail Enabler for agile cloud services
 

Mehr von LibbySchulze1

Mehr von LibbySchulze1 (12)

How to think like a threat actor for Kubernetes.pptx
How to think like a threat actor for Kubernetes.pptxHow to think like a threat actor for Kubernetes.pptx
How to think like a threat actor for Kubernetes.pptx
 
CNCF Webinar June 20 _ McMahon v2.pptx
CNCF Webinar June 20 _ McMahon v2.pptxCNCF Webinar June 20 _ McMahon v2.pptx
CNCF Webinar June 20 _ McMahon v2.pptx
 
Kubernetes 1.27 Webinar.pdf
Kubernetes 1.27 Webinar.pdfKubernetes 1.27 Webinar.pdf
Kubernetes 1.27 Webinar.pdf
 
CNCF Live Webinar 2023, 12 Apr - Exploring Kubernetes Windows HostProcess Ins...
CNCF Live Webinar 2023, 12 Apr - Exploring Kubernetes Windows HostProcess Ins...CNCF Live Webinar 2023, 12 Apr - Exploring Kubernetes Windows HostProcess Ins...
CNCF Live Webinar 2023, 12 Apr - Exploring Kubernetes Windows HostProcess Ins...
 
CNCF Webinar - Krius.pdf
CNCF Webinar - Krius.pdfCNCF Webinar - Krius.pdf
CNCF Webinar - Krius.pdf
 
TiDB operator in Action.pdf
TiDB operator in Action.pdfTiDB operator in Action.pdf
TiDB operator in Action.pdf
 
Get started with gitops and flux
Get started with gitops and fluxGet started with gitops and flux
Get started with gitops and flux
 
Deploy a full cncf based observability stack in under 5 minutes with tobs
Deploy a full cncf based observability stack in under 5 minutes with tobsDeploy a full cncf based observability stack in under 5 minutes with tobs
Deploy a full cncf based observability stack in under 5 minutes with tobs
 
Deploying vn fs with kubernetes pods and vms
Deploying vn fs with kubernetes pods and vms Deploying vn fs with kubernetes pods and vms
Deploying vn fs with kubernetes pods and vms
 
Akri cncf-jobs-webinar-final
Akri cncf-jobs-webinar-finalAkri cncf-jobs-webinar-final
Akri cncf-jobs-webinar-final
 
Kubescape single pane of glass
Kubescape single pane of glassKubescape single pane of glass
Kubescape single pane of glass
 
Dynamic observability the quest for real time data in cloud-native applications
Dynamic observability the quest for real time data in cloud-native applicationsDynamic observability the quest for real time data in cloud-native applications
Dynamic observability the quest for real time data in cloud-native applications
 

Kürzlich hochgeladen

在线制作约克大学毕业证(yu毕业证)在读证明认证可查
在线制作约克大学毕业证(yu毕业证)在读证明认证可查在线制作约克大学毕业证(yu毕业证)在读证明认证可查
在线制作约克大学毕业证(yu毕业证)在读证明认证可查
ydyuyu
 
Russian Escort Abu Dhabi 0503464457 Abu DHabi Escorts
Russian Escort Abu Dhabi 0503464457 Abu DHabi EscortsRussian Escort Abu Dhabi 0503464457 Abu DHabi Escorts
Russian Escort Abu Dhabi 0503464457 Abu DHabi Escorts
Monica Sydney
 
一比一原版奥兹学院毕业证如何办理
一比一原版奥兹学院毕业证如何办理一比一原版奥兹学院毕业证如何办理
一比一原版奥兹学院毕业证如何办理
F
 
Call girls Service in Ajman 0505086370 Ajman call girls
Call girls Service in Ajman 0505086370 Ajman call girlsCall girls Service in Ajman 0505086370 Ajman call girls
Call girls Service in Ajman 0505086370 Ajman call girls
Monica Sydney
 
call girls in Anand Vihar (delhi) call me [🔝9953056974🔝] escort service 24X7
call girls in Anand Vihar (delhi) call me [🔝9953056974🔝] escort service 24X7call girls in Anand Vihar (delhi) call me [🔝9953056974🔝] escort service 24X7
call girls in Anand Vihar (delhi) call me [🔝9953056974🔝] escort service 24X7
9953056974 Low Rate Call Girls In Saket, Delhi NCR
 
2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs
2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs
2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs
EleniIlkou
 
pdfcoffee.com_business-ethics-q3m7-pdf-free.pdf
pdfcoffee.com_business-ethics-q3m7-pdf-free.pdfpdfcoffee.com_business-ethics-q3m7-pdf-free.pdf
pdfcoffee.com_business-ethics-q3m7-pdf-free.pdf
JOHNBEBONYAP1
 
Russian Call girls in Abu Dhabi 0508644382 Abu Dhabi Call girls
Russian Call girls in Abu Dhabi 0508644382 Abu Dhabi Call girlsRussian Call girls in Abu Dhabi 0508644382 Abu Dhabi Call girls
Russian Call girls in Abu Dhabi 0508644382 Abu Dhabi Call girls
Monica Sydney
 
一比一原版(Curtin毕业证书)科廷大学毕业证原件一模一样
一比一原版(Curtin毕业证书)科廷大学毕业证原件一模一样一比一原版(Curtin毕业证书)科廷大学毕业证原件一模一样
一比一原版(Curtin毕业证书)科廷大学毕业证原件一模一样
ayvbos
 
Abu Dhabi Escorts Service 0508644382 Escorts in Abu Dhabi
Abu Dhabi Escorts Service 0508644382 Escorts in Abu DhabiAbu Dhabi Escorts Service 0508644382 Escorts in Abu Dhabi
Abu Dhabi Escorts Service 0508644382 Escorts in Abu Dhabi
Monica Sydney
 
Mira Road Housewife Call Girls 07506202331, Nalasopara Call Girls
Mira Road Housewife Call Girls 07506202331, Nalasopara Call GirlsMira Road Housewife Call Girls 07506202331, Nalasopara Call Girls
Mira Road Housewife Call Girls 07506202331, Nalasopara Call Girls
Priya Reddy
 
Local Call Girls in Seoni 9332606886 HOT & SEXY Models beautiful and charmin...
Local Call Girls in Seoni 9332606886 HOT & SEXY Models beautiful and charmin...Local Call Girls in Seoni 9332606886 HOT & SEXY Models beautiful and charmin...
Local Call Girls in Seoni 9332606886 HOT & SEXY Models beautiful and charmin...
kumargunjan9515
 

Kürzlich hochgeladen (20)

Ballia Escorts Service Girl ^ 9332606886, WhatsApp Anytime Ballia
Ballia Escorts Service Girl ^ 9332606886, WhatsApp Anytime BalliaBallia Escorts Service Girl ^ 9332606886, WhatsApp Anytime Ballia
Ballia Escorts Service Girl ^ 9332606886, WhatsApp Anytime Ballia
 
在线制作约克大学毕业证(yu毕业证)在读证明认证可查
在线制作约克大学毕业证(yu毕业证)在读证明认证可查在线制作约克大学毕业证(yu毕业证)在读证明认证可查
在线制作约克大学毕业证(yu毕业证)在读证明认证可查
 
Vip Firozabad Phone 8250092165 Escorts Service At 6k To 30k Along With Ac Room
Vip Firozabad Phone 8250092165 Escorts Service At 6k To 30k Along With Ac RoomVip Firozabad Phone 8250092165 Escorts Service At 6k To 30k Along With Ac Room
Vip Firozabad Phone 8250092165 Escorts Service At 6k To 30k Along With Ac Room
 
Nagercoil Escorts Service Girl ^ 9332606886, WhatsApp Anytime Nagercoil
Nagercoil Escorts Service Girl ^ 9332606886, WhatsApp Anytime NagercoilNagercoil Escorts Service Girl ^ 9332606886, WhatsApp Anytime Nagercoil
Nagercoil Escorts Service Girl ^ 9332606886, WhatsApp Anytime Nagercoil
 
Russian Escort Abu Dhabi 0503464457 Abu DHabi Escorts
Russian Escort Abu Dhabi 0503464457 Abu DHabi EscortsRussian Escort Abu Dhabi 0503464457 Abu DHabi Escorts
Russian Escort Abu Dhabi 0503464457 Abu DHabi Escorts
 
"Boost Your Digital Presence: Partner with a Leading SEO Agency"
"Boost Your Digital Presence: Partner with a Leading SEO Agency""Boost Your Digital Presence: Partner with a Leading SEO Agency"
"Boost Your Digital Presence: Partner with a Leading SEO Agency"
 
一比一原版奥兹学院毕业证如何办理
一比一原版奥兹学院毕业证如何办理一比一原版奥兹学院毕业证如何办理
一比一原版奥兹学院毕业证如何办理
 
Call girls Service in Ajman 0505086370 Ajman call girls
Call girls Service in Ajman 0505086370 Ajman call girlsCall girls Service in Ajman 0505086370 Ajman call girls
Call girls Service in Ajman 0505086370 Ajman call girls
 
call girls in Anand Vihar (delhi) call me [🔝9953056974🔝] escort service 24X7
call girls in Anand Vihar (delhi) call me [🔝9953056974🔝] escort service 24X7call girls in Anand Vihar (delhi) call me [🔝9953056974🔝] escort service 24X7
call girls in Anand Vihar (delhi) call me [🔝9953056974🔝] escort service 24X7
 
2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs
2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs
2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs
 
pdfcoffee.com_business-ethics-q3m7-pdf-free.pdf
pdfcoffee.com_business-ethics-q3m7-pdf-free.pdfpdfcoffee.com_business-ethics-q3m7-pdf-free.pdf
pdfcoffee.com_business-ethics-q3m7-pdf-free.pdf
 
Real Men Wear Diapers T Shirts sweatshirt
Real Men Wear Diapers T Shirts sweatshirtReal Men Wear Diapers T Shirts sweatshirt
Real Men Wear Diapers T Shirts sweatshirt
 
Story Board.pptxrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrr
Story Board.pptxrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrStory Board.pptxrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrr
Story Board.pptxrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrr
 
Russian Call girls in Abu Dhabi 0508644382 Abu Dhabi Call girls
Russian Call girls in Abu Dhabi 0508644382 Abu Dhabi Call girlsRussian Call girls in Abu Dhabi 0508644382 Abu Dhabi Call girls
Russian Call girls in Abu Dhabi 0508644382 Abu Dhabi Call girls
 
一比一原版(Curtin毕业证书)科廷大学毕业证原件一模一样
一比一原版(Curtin毕业证书)科廷大学毕业证原件一模一样一比一原版(Curtin毕业证书)科廷大学毕业证原件一模一样
一比一原版(Curtin毕业证书)科廷大学毕业证原件一模一样
 
20240509 QFM015 Engineering Leadership Reading List April 2024.pdf
20240509 QFM015 Engineering Leadership Reading List April 2024.pdf20240509 QFM015 Engineering Leadership Reading List April 2024.pdf
20240509 QFM015 Engineering Leadership Reading List April 2024.pdf
 
Abu Dhabi Escorts Service 0508644382 Escorts in Abu Dhabi
Abu Dhabi Escorts Service 0508644382 Escorts in Abu DhabiAbu Dhabi Escorts Service 0508644382 Escorts in Abu Dhabi
Abu Dhabi Escorts Service 0508644382 Escorts in Abu Dhabi
 
Mira Road Housewife Call Girls 07506202331, Nalasopara Call Girls
Mira Road Housewife Call Girls 07506202331, Nalasopara Call GirlsMira Road Housewife Call Girls 07506202331, Nalasopara Call Girls
Mira Road Housewife Call Girls 07506202331, Nalasopara Call Girls
 
APNIC Policy Roundup, presented by Sunny Chendi at the 5th ICANN APAC-TWNIC E...
APNIC Policy Roundup, presented by Sunny Chendi at the 5th ICANN APAC-TWNIC E...APNIC Policy Roundup, presented by Sunny Chendi at the 5th ICANN APAC-TWNIC E...
APNIC Policy Roundup, presented by Sunny Chendi at the 5th ICANN APAC-TWNIC E...
 
Local Call Girls in Seoni 9332606886 HOT & SEXY Models beautiful and charmin...
Local Call Girls in Seoni 9332606886 HOT & SEXY Models beautiful and charmin...Local Call Girls in Seoni 9332606886 HOT & SEXY Models beautiful and charmin...
Local Call Girls in Seoni 9332606886 HOT & SEXY Models beautiful and charmin...
 

Deploying vn fs with kubernetes pods and vms

  • 2. Agenda VNF basics - What are VNFs? - Benefits of VNFs - Enhancing app performance SR-IOV apps - What is SR-IOV? - Host config for SR-IOV - VM deployment using KubeVirt OVS-DPDK apps - What is OVS? - What is DPDK? - Host config for OVS-DPDK - VM deployment using KubeVirt Demo
  • 4. Network Function Virtualization NFV is a network architecture concept to abstract network functions from hardware. Architecture: ● Virtualized network functions (VNFs) ● Network functions virtualization infrastructure (NFVi) ● Management, automation and network orchestration (MANO)
  • 5. What are VNFs? ● Virtualized network services that replace legacy network appliances on proprietary hardware ● VNFs are built on top of NFV infrastructure serving as a foundational technology for 5G or edge networks ● Often deployed as virtual machines (VMs) by various telecommunications providers ● Common VNF applications - routers, firewalls, WAN optimization, NAT, load balancers
  • 6. Benefits of VNFs ● Improved network scalability ● Efficient use of network infrastructure ● Reduced power consumption ● Better security features ● Saves on physical space needed for hardware ● Reduced operational and capital expenditures
  • 7. Enhancing VNF performance Heavy data traffic when running multiple VNF VMs on a host. Efficient memory access, task and resource allocations, network I/O. Faster packet processing than native Linux kernel network stack ● SR-IOV ● DPDK
  • 9. What is SR-IOV? Single Root I/O Virtualization allows the isolation of PCI Express resources for manageability and performance reasons. It allows VNFs to access NIC directly, bypassing hypervisor. Requires support in BIOS and at OS level. ● Physical functions (PFs) - full-featured PCIe functions ● Virtual functions (VFs) - “lightweight” PCIe functions
  • 10.
  • 11. KubeVirt support ● SR-IOV device plugin ● SR-IOV CNI plugin ● Multus meta-plugin Ref: https://github.com/kubevirt/kubevirt/blob/main/docs/sriov.md https://kubevirt.io/user-guide/virtual_machines/interfaces_and_networks
  • 12. SR-IOV host config ● Plug in SR-IOV capable NIC ● Enable SR-IOV in BIOS ● Configure kernel to enable IOMMU: ○ intel_iommu=on ○ pci=realloc ○ pci=assign-busses ● VFIO userspace driver to pass through PCI devices into qemu: ○ modprobe vfio-pci
  • 13. KubeVirt VMI spec spec: domain: interfaces: - masquerade: {} name: default - name: sriov-net sriov: {} KubeVirt relies on VFIO userspace driver to pass PCI devices into VMI guest. networks: - name: default pod: {} - name: sriov-net multus: networkName: sriov-network-eno
  • 14.
  • 16. What is OVS? Open vSwitch: a production quality, multi-layer virtual switch Main components: ● Forwarding path: implemented in kernel space for high performance ● Vswitchd: main userspace program
  • 17. What is DPDK? ● DPDK stands for Data Plane Development Kit ● Packet processing bypasses Linux kernel network stack ● Fast switching in user space using Poll mode drivers ● Open vSwitch can be combined with DPDK for accelerated performance ● For East-West traffic in same server, DPDK wins against SR-IOV
  • 18.
  • 19. KubeVirt support ● Userspace CNI plugin ● Multus meta-plugin ● OVS built with DPDK support Pending Github PR - https://github.com/kubevirt/kubevirt/pull/3208 Ref: https://github.com/intel/userspace-cni-network-plugin https://telcocloudbridge.com/blog/dpdk-vs-sr-iov-for-nfv-why-a-wrong-deci sion-can-impact-performance/
  • 20. OVS-DPDK host config ● Install DPDK and OVS packages on host(s) ● Configure hugepages using sysctl: vm.nr_hugepages ● Setup DPDK devices using VFIO-PCI: ○ driverctl set-override <pci-address> vfio-pci ● Bridge/Ports creation in OVS: ○ ovs-vsctl add-br br-dpdk0 -- set bridge br-dpdk0 datapath_type=netdev ○ ovs-vsctl add-port br-dpdk0 eno1 -- set Interface eno1 type=dpdk options:dpdk-devargs=0000:19:00.1
  • 21. KubeVirt VMI spec spec: domain: interfaces: - masquerade: {} name: default - name: vhost-user-net-1 vhostuser: {} KubeVirt relies on VFIO userspace driver to pass PCI devices into VMI guest. networks: - name: default pod: {} - name: vhost-user-net-1 multus: networkName: net1
  • 22.