Neutron - openstack networking

Neutron - openstack networking

Shailendra Kumar Shailendra Kumar

Shailendra Kumar

I help teams deploy their code in production in the most secure, reliable, and scalable manner.

发布日期: 2016年8月5日
+ 关注

Introduction

Neutron, a network service for OpenStack, is a pluggable, scalable and API-driven system for managing networks and IP addresses. It also provides a variety of network services ranging from L3 forwarding and NAT to load balancing, edge firewalls and IPSEC VPN.

Neutron manages software-defined networking and can be configured for advanced virtual network topologies, such as per-tenant private networks and others. Its object abstractions include networks, subnets and routers. Each has functionality that mimics its physical counterpart: networks contain subnets, and routers route traffic between different subnets and networks.

Neutron setup includes two types of networks:

External network represents network that is accessible outside the OpenStack installation. IP addresses on the Neutron external network are accessible by anyone outside the network and DHCP is disabled.

Internal networks are software-defined networks connect directly to VMs. Only VMs on any given internal network, or those on subnets connected through interfaces to a similar router, can access VMs directly connected to that network. Outside network to access VMs, and vice versa, requires routers between them. Each router has one gateway connected to a network and many interfaces connected to subnets. Like a physical router, subnets can access machines on other subnets that are connected to the same router, and machines can access the outside network through the router gateway.

IP addresses on an external network are allocated to ports on the internal network, which allows entities outside the network to access VM using external IP. Whenever something is connected to a subnet, that connection is called a port.

Neutron also supports security groups that enable administrators to define firewall rules in groups. A VM can belong to one or more security groups, and Neutron applies the rules in those security groups to block or unblock ports, port ranges or traffic types for that VM.

Additionally, Firewall-as-a-Service (FWaaS) and Load-Balancing-as-a-Service (LBaaS) plug-ins are available.

OpenCloud Neutron Tutorial

Openstack networking

要查看或添加评论,请登录

Shailendra Kumar的更多文章

  • Free and Open Source Kubernetes Monitoring Tools
    2022年2月20日

    Free and Open Source Kubernetes Monitoring Tools

    I came through this article about 30+ free and opensource monitoring tools for kubernetes. This is awesome collection…

  • Openstack Cinder
    2016年8月17日

    Openstack Cinder

    The OpenStack platform is an open-source collaboration to develop a private cloud ecosystem, delivering IT services at…

  • Nova
    2016年8月5日

    Nova

    Nova, OpenStack Compute service is used for hosting and managing cloud computing systems. It is a component based…

    1 条评论
  • Decoding openstack
    2016年8月4日

    Decoding openstack

    Introduction to OpenStack The OpenStack project is an open source cloud-computing platform for private, public and…

  • Deploying Openstack in lab - Poc Purpose
    2016年7月15日

    Deploying Openstack in lab - Poc Purpose

    This Post describes installing the Liberty release on centos 7.2.

    2 条评论
  • using rsync
    2015年1月10日

    using rsync

    rsync copies files either to or from a remote host, or locally on the current host (it does not support copying files…

  • Watch Command in unix
    2015年1月4日

    Watch Command in unix

    watch is an excellent command which can run scripts or commands at a regular intervals or repeatedly. This is very much…

  • Usage of top command
    2014年12月14日

    Usage of top command

    top command is very useful in at the time of debugging the issue , I found this good article for same and felt to share…

    1 条评论

社区洞察

其他会员也浏览了