Loading…
This event has ended. View the official site or create your own event → Check it out
This event has ended. Create your own
Visit the OpenStack Summit page for the latest news, registration and hotels.
View analytic
Monday, November 3 • 16:20 - 17:00
Group Based Policy Extension for Networking

Sign up or log in to save this to your schedule and see who's attending!

The Group Based Policy (GBP) extension introduces a declarative policy driven framework for networking in OpenStack. The GBP abstractions allow application administrators to express their networking requirements using group and policy abstractions, with the specifics of policy enforcement and implementation left to the underlying policy driver. This facilitates clear separation of concerns between the application and the infrastructure administrator.




Over the past two release cycles, the GBP model has been incubated in Neutron as an extension. A new sub group has worked on defining this extension and  the proposed specification has been approved for implementation in the Juno release cycle. In this talk, we first discuss the GBP extension API and then present the reference implementation for it. In particular, we show how a new Service plugin is designed and developed in order to support this extension through a framework of configurable policy drivers similar to that used in the ML2 plugin. We will showcase the latest working version of the code, and provide an end-to-end demonstration of the features. We will also present several vendor and open source policy drivers that are being developed to support this new extension.

 

The work in Juno implements a subset of a more richer model that is intended for development in Kilo. We will provide a roadmap for the upcoming features including the integration with the advanced services (L4-7) framework. We will also discuss how the new extension can be utilized by other OpenStack projects.




 

Speakers
avatar for Mohammad Banikazemi

Mohammad Banikazemi

Research Staff Member, IBM Research
Mohammad is a research staff member at the IBM T.J. Watson Research Center. His research interests include cloud computing and software-defined networking. He is a senior member of the ACM and the IEEE and an active contributior to Neutron. Mohammad lives with his family in NYC.
SN

Sumit Naiksatam

Principal Engineer, Cisco Systems
Sumit Naiksatam is a Principal Engineer at Cisco Systems. He has been involved with Neutron as a core developer since it's inception. He is actively involved in driving and implementing the Group Policy model. He is also driving the efforts around Group-based Policy, integration of L4-7 services, and Firewalls in Neutron.
HR

Hemanth Ravi

CTO
Hemanth Ravi works as CTO at One Convergence and is resonsible for the technology direction and architecture of their solution providing network virtualization and deployment of network services. His experience includes working as an architect of products in data networking such as Application Delivery Controllers, Web Application Firewalls. He was responsible for the delivery of products in multimedia networking and highly scalable data center... Read More →
SW

Stephen Wong

Developer
Contributing to OpenStack since Icehouse


Monday November 3, 2014 16:20 - 17:00
Amphitheatre Bleu

Attendees (169)