Learning OpenStack Networking (Neutron) - Second Edition

Wield the power of OpenStack Neutron networking to bring network infrastructure and capabilities to your cloud

Learning OpenStack Networking (Neutron) - Second Edition

This ebook is included in a Mapt subscription
James Denton

1 customer reviews
Wield the power of OpenStack Neutron networking to bring network infrastructure and capabilities to your cloud
$10.00
$49.99
RRP $39.99
RRP $49.99
eBook
Print + eBook
Preview in Mapt

Book Details

ISBN 139781785287725
Paperback462 pages

Book Description

OpenStack Neutron is an OpenStack component that provides networking as a service for other OpenStack services to architect networks and create virtual machines through its API. This API lets you define network connectivity in order to leverage network capabilities to cloud deployments.

Through this practical book, you will build a strong foundational knowledge of Neutron, and will architect and build an OpenStack cloud using advanced networking features.

We start with an introduction to OpenStack Neutron and its various components, including virtual switching, routing, FWaaS, VPNaaS, and LBaaS. You’ll also get hands-on by installing OpenStack and Neutron and its components, and use agents and plugins to orchestrate network connectivity and build a virtual switching infrastructure.

Moving on, you’ll get to grips with the HA routing capabilities utilizing VRRP and distributed virtual routers in Neutron. You’ll also discover load balancing fundamentals, including the difference between nodes, pools, pool members, and virtual IPs. You’ll discover the purpose of security groups and learn how to apply the security concept to your cloud/tenant/instance.

Finally, you'll configure virtual private networks that will allow you to avoid the use of SNAT and floating IPs when connecting to remote networks.

Table of Contents

Chapter 1: Preparing the Network for OpenStack
What is OpenStack Networking?
Preparing the physical infrastructure
Physical server connections
Separating services across nodes
Summary
Chapter 2: Installing OpenStack
System requirements
Initial network configuration
Initial steps
Installing OpenStack
Summary
Chapter 3: Installing Neutron
Basic networking elements in Neutron
Extending functionality with plugins
Network namespaces
Installing and configuring Neutron services
Configuring Neutron services
Summary
Chapter 4: Building a Virtual Switching Infrastructure
Virtual network devices
Network types supported by Neutron
Choosing a plugin and driver
Visualizing traffic flow when using LinuxBridge
Visualizing the traffic flow when using Open vSwitch
Configuring the ML2 networking plugin
Configuring the LinuxBridge driver and agent
Configuring the Open vSwitch driver and agent
Summary
Chapter 5: Creating Networks with Neutron
Network management
Neutron ports
Attaching instances to networks
Exploring how instances get their addresses
Exploring how instances retrieve their metadata
Summary
Chapter 6: Managing Security Groups
Security groups in OpenStack
An introduction to iptables
Working with security groups
Implementing security group rules
Working with security groups in the dashboard
Disabling port security
Summary
Chapter 7: Creating Standalone Routers with Neutron
Routing traffic in a cloud
Installing and configuring the Neutron L3 agent
Router management in the CLI
Network address translation
Floating IP management
Demonstrating traffic flow from an instance to the Internet
Router management in the dashboard
Summary
Chapter 8: Router Redundancy Using VRRP
Using keepalived and VRRP to provide redundancy
Networking of highly available routers
Installing and configuring additional L3 agents
Configuring Neutron
Working with highly available routers
Decomposing a highly available router
Summary
Chapter 9: Distributed Virtual Routers
Distributing routers across the cloud
Installing and configuring Neutron components
Routing east-west traffic between instances
Centralized SNAT
Floating IPs through distributed virtual routers
Summary
Chapter 10: Load Balancing Traffic to Instances
Fundamentals of load balancing
Integrating load balancers into the network
Installing LBaaS
Load balancer management in the CLI
Building a load balancer
Load balancer management in the dashboard
Summary
Chapter 11: Firewall as a Service
Enabling FWaaS
Firewall Management in the CLI
Demonstrating traffic flow through a firewall
Summary
Chapter 12: Virtual Private Network as a Service
An overview of IPSec
Installing VPNaaS
VPN management in the CLI
VPN management in the dashboard
A tale of two routers
Summary

What You Will Learn

  • Architect and install the latest release of OpenStack on Ubuntu Linux 14.04 LTS
  • Review the components of OpenStack networking, including plugins, agents, and services, and learn how they work together to coordinate network operations
  • Build a virtual switching infrastructure using reference architectures based on ML2 + Open vSwitch or ML2 + LinuxBridge
  • Create networks, subnets, and routers that connect virtual machine instances to the network
  • Deploy highly available routers using DVR or VRRP-based methods
  • Scale your application with haproxy and Load Balancing as-a-Service
  • Implement port and router-level security using Security Groups and Firewall as-a-Service
  • Provide connectivity to tenant networks with Virtual Private Networking as-a-Service (VPNaaS)
  • Find out how to manage OpenStack networking resources using CLI and GUI-driven methods

Authors

Table of Contents

Chapter 1: Preparing the Network for OpenStack
What is OpenStack Networking?
Preparing the physical infrastructure
Physical server connections
Separating services across nodes
Summary
Chapter 2: Installing OpenStack
System requirements
Initial network configuration
Initial steps
Installing OpenStack
Summary
Chapter 3: Installing Neutron
Basic networking elements in Neutron
Extending functionality with plugins
Network namespaces
Installing and configuring Neutron services
Configuring Neutron services
Summary
Chapter 4: Building a Virtual Switching Infrastructure
Virtual network devices
Network types supported by Neutron
Choosing a plugin and driver
Visualizing traffic flow when using LinuxBridge
Visualizing the traffic flow when using Open vSwitch
Configuring the ML2 networking plugin
Configuring the LinuxBridge driver and agent
Configuring the Open vSwitch driver and agent
Summary
Chapter 5: Creating Networks with Neutron
Network management
Neutron ports
Attaching instances to networks
Exploring how instances get their addresses
Exploring how instances retrieve their metadata
Summary
Chapter 6: Managing Security Groups
Security groups in OpenStack
An introduction to iptables
Working with security groups
Implementing security group rules
Working with security groups in the dashboard
Disabling port security
Summary
Chapter 7: Creating Standalone Routers with Neutron
Routing traffic in a cloud
Installing and configuring the Neutron L3 agent
Router management in the CLI
Network address translation
Floating IP management
Demonstrating traffic flow from an instance to the Internet
Router management in the dashboard
Summary
Chapter 8: Router Redundancy Using VRRP
Using keepalived and VRRP to provide redundancy
Networking of highly available routers
Installing and configuring additional L3 agents
Configuring Neutron
Working with highly available routers
Decomposing a highly available router
Summary
Chapter 9: Distributed Virtual Routers
Distributing routers across the cloud
Installing and configuring Neutron components
Routing east-west traffic between instances
Centralized SNAT
Floating IPs through distributed virtual routers
Summary
Chapter 10: Load Balancing Traffic to Instances
Fundamentals of load balancing
Integrating load balancers into the network
Installing LBaaS
Load balancer management in the CLI
Building a load balancer
Load balancer management in the dashboard
Summary
Chapter 11: Firewall as a Service
Enabling FWaaS
Firewall Management in the CLI
Demonstrating traffic flow through a firewall
Summary
Chapter 12: Virtual Private Network as a Service
An overview of IPSec
Installing VPNaaS
VPN management in the CLI
VPN management in the dashboard
A tale of two routers
Summary

Book Details

ISBN 139781785287725
Paperback462 pages
Read More
From 1 reviews

Read More Reviews