skydive, real-time network analyzer
TRANSCRIPT
![Page 1: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/1.jpg)
TRUSTED CLOUD SOLUTIONS
OpenStack Summit Austin
![Page 2: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/2.jpg)
Nicolas PLANELPrincipal Software Engineer
27/04/2016
SkydiveA real-time network analyzer
Sylvain AFCHAINPrincipal Software Engineer
![Page 3: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/3.jpg)
![Page 4: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/4.jpg)
WHY ?
![Page 5: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/5.jpg)
SDN IS COMPLEX
Troubleshooting/monitoring is even more complex
![Page 6: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/6.jpg)
![Page 7: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/7.jpg)
![Page 8: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/8.jpg)
ImplementationsManagement
Control plane
● OpenFlow● XMPP● BGP● AMQP● Etc...
Data plane
● VLAN● VXLAN● GRE● MPLS● OVS, Linuxbridge, other
![Page 9: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/9.jpg)
TroubleshootingWhere...
packets are dropped ?packets are fragmented ?choke point occurs ?
What…
packet layers path ?kind of traffic for this virtual network ?number of flows on this link ?number of TCP Sessions ?bandwidth for this tenant ?
![Page 10: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/10.jpg)
Current toolbox● iproute2 ● ovs-vsctl, ovs-ofctl, ovs-dpctl...● ethtool● brctl● tcpdump● SDN CLI/API● ...
![Page 11: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/11.jpg)
What we need● Flow centric● Easy to deploy● SDN Agnostic solution● Non-intrusive / Lightweight● Open, API● Connectors to SDN
![Page 12: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/12.jpg)
What we need● Topology probes
a. interfaces, bond, mtu, vlanb. bridgesc. Network namespacesd. etc..
● Flow probesa. on-demand traffic captureb. on-demand counter capturec. filteringd. underlay/overlay informations
● Topology/flow aggregationa. mapping topology/flowb. analysis
![Page 13: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/13.jpg)
Agent : Topology/FlowTopology:
● Graph engine● Populated from: netlink, netns, ovsdb,
ethtool probes, Docker, Neutron, ...
Flow:
● Flow table centric● Local mapping flow/topology● Packet data from sFlow, Pcap probes ...
![Page 14: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/14.jpg)
Skydive Analyzer
● Aggregation of all the agents● Analysis pipeline● Store in Database
Storage
![Page 15: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/15.jpg)
Skydive Use-cases● Detection of common configuration errors
● Detection of live network issues○ bad performances, helping to find the root cause○ DDOS and any unattended traffic
● Possibility to capture traffic at any point○ Historic of all the metrics captured○ Post mortem analysis
● Detection of bad application performance, bad RTT, bad security groups
![Page 16: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/16.jpg)
Let’s Jump !
![Page 17: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/17.jpg)
Skydive Roadmap● Topology capture
○ More connectors
● Live distributed capture○ Filtering
● Analysis○ More protocols○ Alerting
● Security○ RBAC○ SSL○ Anonymize IP
![Page 18: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/18.jpg)
Open source
Apache License
Written in Go
Contributions are welcome
![Page 19: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/19.jpg)
Questions ?
https://github.com/redhat-cip/skydiveIRC: #skydive-project @[email protected]@redhat.com
![Page 20: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/20.jpg)
Thank you
Pictures from
FFP http://www.ffp.asso.fr/ASPU http://www.aspu.org/Laurent CormierMartin Handford
https://github.com/redhat-cip/skydiveIRC: #skydive-project @[email protected]@redhat.com
![Page 21: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/21.jpg)
BREAKOUT SESSIONS - Monday April 25th
Panel: Pros and cons of various OpenStack consumption models
Contributing to the Success of OpenStack
Deploying OpenStack for Telecommunications (Panel)
Expanding DBaaS Workloads with OpenStack Trove and Manila
Elephant in the Room: What’s the TCO for an OpenStack Cloud?
Performance Measuring Tools for the Cloud
Going Beyond OpenStack – The Integrated Cloud Solution Stack
Jonathan Gershater (Red Hat), Cody Hill (Platform9 Systems, Inc), VS Joshi (EMC), Ashish Nadkarni (IDC)
Mark McLoughlin & Alexis Monville
Darrell Jordan-Smith (Red Hat), panelists from Verizon, ATT, Telus
Sean Cohen, Amrith Kumar (Tesora), Andrew Kutner (NetApp)
Massimo Ferrari & Erich Morisse
D Shakshober (Red Hat), Nicholas Wakou (Dell), Arek Chylinski, Wang Xiaofei (AWCloud), Yuting Wu
Jacob Liberman
11:15am – 11:55am
11:15am – 11:55am
11:15am – 11:55am
12:05pm – 12:45pm
12:05pm – 12:45pm
12:05pm – 12:45pm
12:05pm – 12:45pm
![Page 22: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/22.jpg)
BREAKOUT SESSIONS - Monday April 25th
What science knows about happiness that could transform OpenStack
How to quickly and efficiently migrate legacy workloads to the cloud
OpenStack Infrastructure for Beginners
Workshop: Hands on to configure your cloud to be able to charge your users using official OpenStack components!
OpenStack Stable: What it actually means to maintain stable branches
Making Ceph the powerhouse you know it can be!
The omniscient cloud: Bare metal inspection status update
Alexis Monville
Vijay Chebolu
Paul Belanger (Red Hat), Elizabeth K. Joseph (HPE), Christopher Aedo (IBM)
Julien Danjou, Christophe Sauthier, Stéphane Albert, Gauvain Pocentek & Maximiliano Venesio
Ihar Hrachyshka (Red Hat), Matt Riedemann (IBM), Matthew Treinish (HPE)
Neil Levine
Dmitry Tantsur
12:05pm – 12:45pm
2:00pm – 2:40pm
2:00pm – 2:40pm
2:00pm – 3:30pm
2:50pm – 3:30pm
2:50pm – 3:30pm
3:40pm – 4:20pm
![Page 23: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/23.jpg)
BREAKOUT SESSIONS - Monday April 25th
Co-engineering an enterprise grade OpenStack by Rackspace and Red Hat
OpenShift and OpenStack: Delivering Applications Together
Deep dive into Neutron upgrade story
Swisscom in Production with OpenStack and CloudFoundry
Take advantage of key OpenStack services for NFV and the Telecommunications industry
Red Hat & Cisco – Providing OpenStack choice
Nick Gerasimatos (Red Hat), Jeff Ekstrom (Red Hat), John Fulton (Red Hat), Kent Wolfe (Rackspace)
Scott McCarty
Artur Korzeniewski (Intel), Ihar Hrachyshka (Red Hat), Rossella Sblendido (SuSE)
Chris Wright (Red Hat), Chip Childers, Marcel Haerry, Pere Monclus & Ros Roseboro
Sanjay Aiyagari (Red Hat)Drew Schulke (Dell)
Karthik Prabhaker (Red Hat)Vishwanath Jakka (Cisco)
3:40pm – 4:20pm
4:40pm – 5:20pm
4:40pm – 5:20pm
4:40pm – 5:20pm
4:40pm – 5:20pm
5:30pm – 6:10pm
![Page 24: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/24.jpg)
BREAKOUT SESSIONS - Tuesday April 26th
Integrate Active Directory with OpenStack Keystone
How to troubleshoot OpenStack without losing sleep
Introduction to Container Security
Manila: Experience it Through Demos!
Advances in Keystone’s Role Based Access Control
RDO Community Meetup
Using open source security architecture to defend against targeted attacks
CephFS as a service with OpenStack Manila
Martin Lopes
Sadique Puthen & Dustin Black
Thomas Cameron
Dustin Schoenbrun, Akshai Parthasarathy (Netapp)
Adam Young (Red Hat) and Henry Nash (IBM)
Rich Bowen & RDO Community
Dan Lambright (Red Hat), Alexander Adamov (Mirantis)
John Spray
12:05pm – 12:45pm
12:05pm – 12:45pm
2:50pm – 3:30pm
2:50pm – 3:30pm
3:40pm – 4:20pm
4:40pm – 5:50pm
5:30pm – 6:10pm
5:30pm – 6:10pm
![Page 25: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/25.jpg)
BREAKOUT SESSIONS - Wednesday April 27th
Zaqar Messaging for Microservices and IoT
Service Function Chaining – Technology Analysis and Perspective
Debugging OpenStack failure scenarios with Ansible and Oslogmerger
Is that a Cloud in your Pocket?
Tired of iptables based security groups? Here’s how to gain tremendous speed with Open vSwitch instead!
Achieving Five-Nines of VNF Reliability in Telco-Grade OpenStack Cloud
Skydive, Real-Time Network Topology and Protocol Analyzer
Designing for NFV: Lessons Learned from Deploying at Verizon
Protecting the Galaxy – Multi-Region Disaster Recovery with OpenStack and Ceph
Fei Long Wang (Catalyst), Ryan Brown (Red Hat), Victoria Martinez de la Cruz (Red Hat)
Tim Rozet(Red Hat), Bin Hu (AT&T)
Miguel Angel Ajo (Red Hat), Gorka Eguileor (Red Hat)
Steven Ellis
Jakub Libosvar (Red Hat), Rodolfo Alonso (Intel)
Rimma Iontel (Red Hat), Eoin Walsh (Intel)
Nicolas Planel (Red Hat), Sylvain Afchain (Red Hat)
Radhesh Balakrishnan (Red Hat), Kyle Forrester (Big Switch), Chris Emmons (Dell)
Sean Cohen, Federico Lucifredi, Sebastien Han
9:00am – 9:40am
9:50am – 10:30am
11:50am – 12:30pm
11:50am – 12:30pm
1:50pm – 2:30pm
1:50pm – 2:30pm
2:40pm – 3:20pm
3:30pm – 4:10pm
4:30pm – 5:10pm
![Page 26: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/26.jpg)
BREAKOUT SESSIONS - Thursday April 28th
Lab: Deploy Microservices Architecture on OpenStack using Kubernetes, Docker, Flannel and etcd
Orchestrated Containerization with OpenStack
The Notorious M.T.U.
CephFS in Jewel: Stable at last
Using a Service VM as an IPv6 vRouter
Neutron Quality of Service, new features and future roadmap.
Al Kari
Lars Herrmann
Kevin Benton (Mirantis), Sean Collins (Mirantis), Matthew Kassawara (IBM), Ihar Hrachyshka (Red Hat)
Greg Farnum
Bin Hu (AT&T), Sridhar Gaddam (Red Hat), Prakash (Huawei)
Miguel Ángel Ajo (Red Hat), Victor Howard (Comcast), Sławek Kapłoński (OVH Group)
9:00am – 10:30am
9:00am – 9:40am
9:00am – 9:40am
11:00am – 11:40am
11:00am – 11:40am
1:30pm – 2:10pm
![Page 27: Skydive, real-time network analyzer](https://reader034.vdocuments.net/reader034/viewer/2022051502/58ee04ae1a28abde108b45c5/html5/thumbnails/27.jpg)
THANK YOU
plus.google.com/+RedHat
youtube.com/user/RedHatVideos
facebook.com/redhatinc
twitter.com/RedHatNewslinkedin.com/company/red-hat