Virtual Routing in the Cloud

By Arvind Durai, Stephen Lynn, Amit Srivastava
Published Apr 25, 2016 by Cisco Press. Part of the Networking Technology series.

eBook (Watermarked)

Your Price: $57.99
About Watermarked eBooks

This PDF will be accessible from your Account page after purchase and requires PDF reading software, such as Acrobat® Reader®.

The eBook requires no passwords or activation to read. We customize your eBook by discreetly watermarking it with your name, making it uniquely yours.

Watermarked eBook FAQ

Not for Sale

Description

Sample Content

Updates

Copyright 2016
Dimensions: 7-3/8" x 9-1/8"
Pages: 352
Edition: 1st

eBook (Watermarked)
ISBN-10: 0-13-413569-5
ISBN-13: 978-0-13-413569-4

The Cisco expert guide to planning, deploying, and operating virtual routing with the CSR 1000V Cloud Services Router

Virtual routing and the Cisco Cloud Services Router (CSR 1000V) are key enablers of today’s revolutionary shift to elastic cloud applications and low-cost virtualized networking. Now, there’s an authoritative, complete guide to building real solutions with the Cisco CSR 1000V platform.

Three leading experts cover every essential building block, present key use cases and configuration examples, illuminate design and deployment scenarios, and show how the CSR 1000V platform and APIs can enable state-of-the-art software-defined networks (SDN). Drawing on extensive early adopter experience, they illuminate crucial OS and hypervisor details, help you overcome migration challenges, and offer practical guidance for monitoring and operations.

This guide is an essential resource for all technical professionals planning or deploying data center and enterprise cloud services, and for all cloud network operators utilizing the Cisco CSR 1000V or future Cisco virtual routing platforms.

· Review the fundamentals of cloud virtualization, multitenant data-center design, and software-defined networking

· Understand the Cisco CSR 1000V’s role, features, and infrastructure requirements

· Compare server hypervisor technologies for managing VM hardware with CSR 1000V deployments

· Understand CSR 1000V software architecture, control and data-plane design, licensing requirements, and packet flow

· Walk through common virtual router scenarios and configurations, including multiple cloud and data center examples

· Integrate CSR 1000V into the OpenStack SDN framework, and use its APIs to solve specific problems

· Master a best-practice workflow for deploying the CSR 1000V

· Use the Cisco management tools to automate, orchestrate, and troubleshoot virtualized routing

Category: Networking/Cloud Computing

Covers: Cloud Services Router

This book is part of the Networking Technology Series from Cisco Press, which offers networking professionals valuable information for constructing efficient networks, understanding new technologies, and building successful careers

Introduction xv

Chapter 1 Introduction to Cloud 1

Evolution of the Data Center 1

Data Center Architecture Building Blocks 2

Introduction to Virtualization in the Data Center 4

Evolution of Virtualization 5

Conceptual Architecture of Virtualization 5

Types of Virtualization Technologies 6

Server Virtualization 6

Types of Server Virtualization 8

Storage Virtualization 9

Types of Storage Virtualization 11

Network Virtualization 12

Network Virtualization Evolution 13

Types of Network Virtualization 14

Service Virtualization 15

Introduction to the Multitenant Data Center 16

Introduction to Cloud Services 18

Infrastructure as a Service (IaaS) 18

Platform as a Service (PaaS) 19

Software as a Service (SaaS) 20

Cloud Deployment Models 20

Cloud Design Considerations 21

Domain 1: Infrastructure and Environmental 22

Domain 2: Abstraction and Virtualization 23

Domain 3: Automation and Orchestration 23

Domain 4: Customer Interface 24

Domains 5 and 6: Service Catalog and Financials 24

Domains 7 and 8: Platform and Application 24

Domain 9: Security and Compliance 24

Domain 10: Organization, Governance, and Process 25

Enterprise Connectivity to the Cloud 26

Internet for Transport 26

Direct Connectivity to a Cloud Provider 28

Enterprise Cloud Adoption Challenges 29

Software-Defined Networking 30

Open Networking Foundation 31

OpenDaylight Project 32

Network Function Virtualization 33

OpenStack 34

Summary 35

Chapter 2 Software Evolution of the CSR 1000 37

IOS Software Architecture 37

IOS XE Architecture 39

The IOS XE Kernel 40

The IOS Daemon 40

The Forwarding Manager 41

The Interface Manager 41

The Platform Manager 41

Cisco ASR 1000 System Architecture Overview 41

Route Processor 42

Embedded Service Processor 42

SPA Interface Processor 43

Cloud Service Router 1000V Overview 44

Deployment Requirements 45

Elastic Performance and Scaling 47

Rapid Deployment and Routing Flexibility in the Cloud 49

CSR 1000V Deployment Examples 50

Secure Cloud VPN Gateway 50

Network Extension from Premises to Cloud 51

Segmentation Within a Cloud 52

CSR 1000V Key Features 52

Summary 57

Chapter 3 Hypervisor Considerations for the CSR 59

Understanding Operating Systems 59

Operating System Design 60

Physical Resource Management 60

Software Access to Physical Resources 62

Kernels 63

Microkernels 63

Hybrid Kernels 64

The Cisco IOS Kernel 64

The Boot Process 66

Linux Memory Management 69

Linux Swap Space and Memory Overcommit 69

Linux Caching 71

Understanding Hypervisors 71

How Does a Hypervisor Compare to an Operating System? 72

Type 1 Hypervisor Design 74

Monolithic Architecture 74

Microkernel Architecture 74

Core Partitioning 75

ESXi Hypervisor 75

Architectural Components of ESXi 75

The VMkernel 75

Components of the VMkernel 76

Processes Running on the VMkernel 77

Device Drivers 78

File Systems 79

Management 80

KVM 82

Architectural Components of KVM/QEMU 84

Guest Emulator (QEMU) 85

Management Daemon (Libvirt) 88

User Tools (virsh, virt-manager) 89

Hyper-V 91

Xen 92

Summary 94

Chapter 4 CSR 1000V Software Architecture 95

System Design 95

Virtualizing the ASR 1001 into the CSR 1000V 98

CSR 1000V Initialization Process 99

CSR 1000V Data Plane Architecture 100

CSR 1000V Software Crypto Engine 103

Life of a Packet on a CSR 1000V: The Data Plane 103

Netmap I/O 104

Packet Flow 106

Device Initialization Flow 106

TX Flow 107

RX Flow 108

Unicast Traffic Packet Flow 109

Installing the CSR 1000V on a VMware Hypervisor 110

Bringing Up the VM with the CSR 1000V on ESXi 110

Installing the CSR 1000V on a KVM Hypervisor 126

Bring Up the CSR 1000V as a Guest 126

Performance Tuning of the CSR 1000V 137

Summary 139

Chapter 5 CSR 1000V Deployment Scenarios 141

VPN Services 141

Layer 2 VPNs 141

Layer 3 VPNs 142

Site-to-Site VPNs 143

Remote Access VPNs 147

Use Cases for the CSR 1000V as a VPN Service Gateway 148

Enterprise Data Center Network Extension 148

The CSR 1000V as a VPN Gateway 148

CSR for Secure Inter-Cloud Connectivity 152

Remote VPN Access into the Cloud 153

BGP Route Reflector Use Case for the CSR 155

The CSR 1000V in a Hierarchical Route Reflector Use Case 157

Planning for Future Branch Design with the CSR 1000V 162

Evolution of Branch Virtualization 164

LISP and CSR 168

LISP Terminology 169

The LISP Data Plane 171

The LISP Control Plane 171

Typical LISP Use Cases 175

IP Mobility 175

IPv6 Migration 175

Network-to-Network Connectivity 175

Network-to-Network Interconnection Topology and Configuration 176

Summary 183

Chapter 6 CSR Cloud Deployment Scenarios 185

CSR in a Multitenant Data Center 185

Cloudburst 190

Direct Access Model 191

Redirection Access Model 192

The Cisco Inter-Cloud Fabric 194

Private Cloud Deployment with CSR in OpenStack 195

Introduction to OpenStack 196

Primary Use Case for OpenStack 196

OpenStack Components 197

CSR Within OpenStack 206

CSR 1000V as a Neutron Router 206

CSR 1000V as a Tenant Router 209

CSR 1000V in a Public Cloud 211

Amazon Web Services Deployment for the CSR 211

Amazon Web Service Solutions 211

Routing in AWS Clouds 212

CSR 1000V Deployment in AWS 216

Instantiate a CSR in AWS 217

Summary 222

Chapter 7 CSR in the SDN Framework 223

Deploying OpenStack 225

CSR as an OpenStack Tenant Deployment 235

Instantiate CSR Plugin to OpenStack 242

Summary 245

Chapter 8 CSR 1000V Automation, Orchestration, and Troubleshooting 247

Automation 248

BDEO 248

NSO (Tail-f) 249

NSO Example for NFV Orchestration with OpenStack (Service Chain) 252

Orchestration 267

Virtual Managed Services (VMS) 267

Cisco Prime Network Services Controller (PNSC) 269

CSR 1000V Troubleshooting 271

Architecture Overview 271

I/O Configuration 272

vSwitch 272

PCI Passthrough 274

SR-IOV (Single Root I/O Virtualization) 274

Host Configurations 275

Debugging Packet Loss 276

High-Level Packet Flow 276

ESXi Packet Debugging 289

Summary 292

Appendix A Sample Answer File for Packstack 293

9781587144943 TOC 4/8/2016

Submit Errata

Cisco Press Promotional Mailings & Special Offers

I would like to receive exclusive offers and hear about products from Cisco Press and its family of brands. I can unsubscribe at any time.

Privacy Notice

Overview

Pearson Education, Inc., 221 River Street, Hoboken, New Jersey 07030, (Pearson) presents this site to provide information about Cisco Press products and services that can be purchased through this site.

This privacy notice provides an overview of our commitment to privacy and describes how we collect, protect, use and share personal information collected through this site. Please note that other Pearson websites and online products and services have their own separate privacy policies.

Collection and Use of Information

To conduct business and deliver products and services, Pearson collects and uses personal information in several ways in connection with this site, including:

Questions and Inquiries

For inquiries and questions, we collect the inquiry or question, together with name, contact details (email address, phone number and mailing address) and any other additional information voluntarily submitted to us through a Contact Us form or an email. We use this information to address the inquiry and respond to the question.

Online Store

For orders and purchases placed through our online store on this site, we collect order details, name, institution name and address (if applicable), email address, phone number, shipping and billing addresses, credit/debit card information, shipping options and any instructions. We use this information to complete transactions, fulfill orders, communicate with individuals placing orders or visiting the online store, and for related purposes.

Surveys

Pearson may offer opportunities to provide feedback or participate in surveys, including surveys evaluating Pearson products, services or sites. Participation is voluntary. Pearson collects information requested in the survey questions and uses the information to evaluate, support, maintain and improve products, services or sites; develop new products and services; conduct educational research; and for other purposes specified in the survey.

Contests and Drawings

Occasionally, we may sponsor a contest or drawing. Participation is optional. Pearson collects name, contact information and other information specified on the entry form for the contest or drawing to conduct the contest or drawing. Pearson may collect additional personal information from the winners of a contest or drawing in order to award the prize and for tax reporting purposes, as required by law.

Newsletters

If you have elected to receive email newsletters or promotional mailings and special offers but want to unsubscribe, simply email information@ciscopress.com.

Service Announcements

On rare occasions it is necessary to send out a strictly service related announcement. For instance, if our service is temporarily suspended for maintenance we might send users an email. Generally, users may not opt-out of these communications, though they can deactivate their account information. However, these communications are not promotional in nature.

Customer Service

We communicate with users on a regular basis to provide requested services and in regard to issues relating to their account we reply via email or phone in accordance with the users' wishes when a user submits their information through our Contact Us form.

Other Collection and Use of Information

Application and System Logs

Pearson automatically collects log data to help ensure the delivery, availability and security of this site. Log data may include technical information about how a user or visitor connected to this site, such as browser type, type of computer/device, operating system, internet service provider and IP address. We use this information for support purposes and to monitor the health of the site, identify problems, improve service, detect unauthorized access and fraudulent activity, prevent and respond to security incidents and appropriately scale computing resources.

Web Analytics

Pearson may use third party web trend analytical services, including Google Analytics, to collect visitor information, such as IP addresses, browser types, referring pages, pages visited and time spent on a particular site. While these analytical services collect and report information on an anonymous basis, they may use cookies to gather web trend information. The information gathered may enable Pearson (but not the third party web trend services) to link information with application and system log data. Pearson uses this information for system administration and to identify problems, improve service, detect unauthorized access and fraudulent activity, prevent and respond to security incidents, appropriately scale computing resources and otherwise support and deliver this site and its services.

Cookies and Related Technologies

This site uses cookies and similar technologies to personalize content, measure traffic patterns, control security, track use and access of information on this site, and provide interest-based messages and advertising. Users can manage and block the use of cookies through their browser. Disabling or blocking certain cookies may limit the functionality of this site.

Do Not Track

This site currently does not respond to Do Not Track signals.

Security

Pearson uses appropriate physical, administrative and technical security measures to protect personal information from unauthorized access, use and disclosure.

Children

This site is not directed to children under the age of 13.

Marketing

Pearson may send or direct marketing communications to users, provided that

Pearson will not use personal information collected or processed as a K-12 school service provider for the purpose of directed or targeted advertising.
Such marketing is consistent with applicable law and Pearson's legal obligations.
Pearson will not knowingly direct or send marketing communications to an individual who has expressed a preference not to receive marketing.
Where required by applicable law, express or implied consent to marketing exists and has not been withdrawn.

Pearson may provide personal information to a third party service provider on a restricted basis to provide marketing solely on behalf of Pearson or an affiliate or customer for whom Pearson is a service provider. Marketing preferences may be changed at any time.

Correcting/Updating Personal Information

If a user's personally identifiable information changes (such as your postal address or email address), we provide a way to correct or update that user's personal data provided to us. This can be done on the Account page. If a user no longer desires our service and desires to delete his or her account, please contact us at customer-service@informit.com and we will process the deletion of a user's account.

Choice/Opt-out

Users can always make an informed choice as to whether they should proceed with certain services offered by Cisco Press. If you choose to remove yourself from our mailing list(s) simply visit the following page and uncheck any communication you no longer want to receive: www.ciscopress.com/u.aspx.

Sale of Personal Information

Pearson does not rent or sell personal information in exchange for any payment of money.

While Pearson does not sell personal information, as defined in Nevada law, Nevada residents may email a request for no sale of their personal information to NevadaDesignatedRequest@pearson.com.

Supplemental Privacy Statement for California Residents

California residents should read our Supplemental privacy statement for California residents in conjunction with this Privacy Notice. The Supplemental privacy statement for California residents explains Pearson's commitment to comply with California law and applies to personal information of California residents collected in connection with this site and the Services.

Sharing and Disclosure

Pearson may disclose personal information, as follows:

As required by law.
With the consent of the individual (or their parent, if the individual is a minor)
In response to a subpoena, court order or legal process, to the extent permitted or required by law
To protect the security and safety of individuals, data, assets and systems, consistent with applicable law
In connection the sale, joint venture or other transfer of some or all of its company or assets, subject to the provisions of this Privacy Notice
To investigate or address actual or suspected fraud or other illegal activities
To exercise its legal rights, including enforcement of the Terms of Use for this site or another contract
To affiliated Pearson companies and other companies and organizations who perform work for Pearson and are obligated to protect the privacy of personal information consistent with this Privacy Notice
To a school, organization, company or government agency, where Pearson collects or processes the personal information in a school setting or on behalf of such organization, company or government agency.

Links

This web site contains links to other sites. Please be aware that we are not responsible for the privacy practices of such other sites. We encourage our users to be aware when they leave our site and to read the privacy statements of each and every web site that collects Personal Information. This privacy statement applies solely to information collected by this web site.

Requests and Contact

Please contact us about this Privacy Notice or if you have any requests or questions relating to the privacy of your personal information.

Changes to this Privacy Notice

We may revise this Privacy Notice through an updated posting. We will identify the effective date of the revision in the posting. Often, updates are made to provide greater clarity or to comply with changes in regulatory requirements. If the updates involve material changes to the collection, protection, use or disclosure of Personal Information, Pearson will provide notice of the change through a conspicuous notice on this site or other appropriate way. Continued use of the site after the effective date of a posted revision evidences acceptance. Please contact us if you have questions or concerns about the Privacy Notice or any objection to any revisions.

Last Update: November 17, 2020

Email Address