vmware-nsx/neutron/plugins/ml2
Aaron Rosen d239c85197 Implement Allowed Address Pairs
The following patch adds the concept of allowed address pairs.
This allows one to add additional ip/mac address pairs on a port to
allow traffic that matches those specified values. This is useful in order
to leverage dataplane failover mechanisms like vrrp. This patch adds support
for the NVP plugin, the OVS plugin, and Ml2.

DocImpact

implements blueprint: allowed-address-pairs

Change-Id: Ie73b3886c5be8e1fc4ade86a0cfb854267f345ac
2013-09-05 03:53:59 -07:00
..
common Initial Modular L2 Mechanism Driver implementation. 2013-07-10 18:16:03 -07:00
drivers ML2 Mechanism Driver for Cisco Nexus 2013-09-04 14:10:33 -04:00
__init__.py Rename Quantum to Neutron 2013-07-06 15:02:43 -04:00
config.py Merge "Register agent schedulers options in one place" 2013-07-18 10:05:43 +00:00
db.py Implement ML2 port binding 2013-09-03 18:05:20 -04:00
driver_api.py Implement ML2 port binding 2013-09-03 18:05:20 -04:00
driver_context.py Implement ML2 port binding 2013-09-03 18:05:20 -04:00
managers.py Implement ML2 port binding 2013-09-03 18:05:20 -04:00
models.py Implement ML2 port binding 2013-09-03 18:05:20 -04:00
plugin.py Implement Allowed Address Pairs 2013-09-05 03:53:59 -07:00
README Update the ML2 README file with the latest tunnel changes 2013-07-18 13:11:08 +00:00
rpc.py Implement ML2 port binding 2013-09-03 18:05:20 -04:00

The Modular Layer 2 (ml2) plugin is a framework allowing OpenStack
Networking to simultaneously utilize the variety of layer 2 networking
technologies found in complex real-world data centers. It currently
works with the existing openvswitch, linuxbridge, and hyperv L2
agents, and is intended to replace and deprecate the monolithic
plugins associated with those L2 agents. The ml2 framework is also
intended to greatly simplify adding support for new L2 networking
technologies, requiring much less initial and ongoing effort than
would be required to add a new monolithic core plugin.

Drivers within ml2 implement separately extensible sets of network
types and of mechanisms for accessing networks of those types. Unlike
with the metaplugin, multiple mechanisms can be used simultaneously to
access different ports of the same virtual network. Mechanisms can
utilize L2 agents via RPC and/or use mechanism drivers to interact
with external devices or controllers. Virtual networks can be composed
of multiple segments of the same or different types. Type and
mechanism drivers are loaded as python entrypoints using the stevedore
library.

Each available network type is managed by an ml2 TypeDriver.
TypeDrivers maintain any needed type-specific network state, and
perform provider network validation and tenant network allocation. The
initial ml2 version includes drivers for the local, flat, vlan, gre,
and vxlan network types.

RPC callback and notification interfaces support interaction with L2,
DHCP, and L3 agents. This version has been tested with the existing
openvswitch and linuxbridge plugins' L2 agents, and should also work
with the hyperv L2 agent. A modular agent may be developed as a
follow-on effort.

Support for mechanism drivers is currently a work-in-progress in
pre-release Havana versions, and the interface is subject to change
before the release of Havana. MechanismDrivers are currently called
both inside and following DB transactions for network and port
create/update/delete operations. In a future version, they will also
called to establish a port binding, determining the VIF type and
network segment to be used.

The database schema and driver APIs support multi-segment networks,
but the client API for multi-segment networks is not yet implemented.

ML2 supports devstack at the moment with either the Open vSwitch or
LinuxBridge L2 agents for local, flat, vlan, or gre network types.
Note that ml2 does not yet work with nova's GenericVIFDriver, so it is
necessary to configure nova to use a specific driver compatible with
the L2 agent deployed on each compute node. Additionally, support for
configuring additional ML2 items is a work in progress in devstack.
This includes configuring VXLAN support for ML2 with the OVS agent.

Note that the ml2 plugin is new and should be conidered experimental
at this point. It is undergoing rapid development, so driver APIs and
other details are likely to change during the havana development
cycle.

Follow-on tasks required for full ml2 support in havana, including
parity with the existing monolithic openvswitch, linuxbridge, and
hyperv plugins:

- Additional unit tests

- Implement MechanismDriver port binding so that a useful
  binding:vif_type value is returned for nova's GenericVIFDriver based
  on the binding:host_id value and information from the agents_db

Additional follow-on tasks expected for the havana release:

- Extend providernet extension API to support multi-segment networks

The following MechanismDrivers are actively under development for the
Havana release:

- Arista Driver:
  https://blueprints.launchpad.net/quantum/+spec/sukhdev-8

- Cisco Nexus Driver:
  https://blueprints.launchpad.net/quantum/+spec/ml2-md-cisco-nexus

- OpenDaylight Driver:
  https://blueprints.launchpad.net/quantum/+spec/ml2-opendaylight-mechanism-driver

- Tail-f NCS Driver:
  https://blueprints.launchpad.net/quantum/+spec/tailf-ncs