Traffic Isolation on Multi-Tenant Data Center Networks

نویسندگان

  • Heitor Moraes
  • Marcos A. M. Vieira
  • Dorgival Guedes
چکیده

To satisfy demanding clients and o↵er features comparable to the competition, infrastructure-as-a-service providers (IaaS) need fast, flexible and easily configurable local networks. OpenStack is one of the most well known open IaaS platforms. Although OpenStack meets most needs of a IaaS platform, its virtualized network implementation still lacks flexibility to support isolation on a multi-tenant network environment. In this work, we developed an application to provide tra c isolation on a multi-tenant data center network that works together with OpenStack, o↵ering a virtualized network environment that follows the SDN paradigm. VLANs, GRE, and MPLS require extra packet fields to encapsulate packets and provide tra c isolation. Moreover, those approaches have a limited network segment space. For instance, VLANs are subject to scalability limitations resulting from space limitations since only 4000 VLANs are allowed. Our approach does not require additional packet fields neither has small segment space. By applying the Software Defined Networks paradigm, the isolation process through packet header re-writing is utilized without requiring any changes to the virtualized network environment or any special hardware. We evaluate our application in real scenarios measuring latency, bandwidth, isolation. The results validate our application for Multi-Tenant data centers.

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Gatekeeper: Supporting Bandwidth Guarantees for Multi-tenant Datacenter Networks

Cloud environments should provide network performance isolation for co-located untrusted tenants in a virtualized datacenter. We present key properties that a performance isolation solution should satisfy, and present our progress on Gatekeeper, a system designed to meet these requirements. Experiments on our Xen-based implementation of Gatekeeper in a datacenter cluster demonstrate effective a...

متن کامل

Problem Statement: Overlays for Network Virtualization

This document describes issues associated with providing multi-tenancy in large data center networks and how these issues may be addressed using an overlay-based network virtualization approach. A key multi-tenancy requirement is traffic isolation so that one tenant's traffic is not visible to any other tenant. Another requirement is address space isolation so that different tenants can use the...

متن کامل

Logically Isolated, Actually Unpredictable? Measuring Hypervisor Performance in Multi-Tenant SDNs

Ideally, by enabling multi-tenancy, network virtualization allows to improve resource utilization, while providing performance isolation: although the underlying resources are shared, the virtual network appears as a dedicated network to the tenant. However, providing such an illusion is challenging in practice, and over the last years, many expedient approaches have been proposed to provide pe...

متن کامل

EyeQ: Practical Network Performance Isolation for the Multi-tenant Cloud

The shared multi-tenant nature of the cloud has raised serious concerns about its security and performance for high valued services. Of many shared resources like CPU, memory, etc., the network is pivotal for distributed applications. Benign, or perhaps malicious traffic interference between tenants can cause significant performance degradation that hurts performance of applications, and hence,...

متن کامل

A TRILL-based multi-tenant data center network

IaaS Providers need next-generation virtualized data center networks, providing large-scale multi-tenancy services and meeting new requirements in terms of efficiency and availability. The main limitation of current network architectures mainly comes from inadequate design standards, such as those for Ethernet Bridging (802.1D) and Virtual LAN (802.1Q), which were not designed to handle large n...

متن کامل

ذخیره در منابع من


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

عنوان ژورنال:

دوره   شماره 

صفحات  -

تاریخ انتشار 2015