Cloud Scale Performance & Diagnosability Comprehensive SDN vRSS NIC Teaming Remote Live Monitoring Extended ACLs Test-NetConnection Enhanced HNV Diagnostics Hyper-V Network Virtualization Standards based Switch Management Cloud Gateways Hyper-V Switch Hybrid Forwarding IPAM for Virtualized Datacenters Core Infrastructure Enhancements DNS Enhancements for Service.

Download Report

Transcript Cloud Scale Performance & Diagnosability Comprehensive SDN vRSS NIC Teaming Remote Live Monitoring Extended ACLs Test-NetConnection Enhanced HNV Diagnostics Hyper-V Network Virtualization Standards based Switch Management Cloud Gateways Hyper-V Switch Hybrid Forwarding IPAM for Virtualized Datacenters Core Infrastructure Enhancements DNS Enhancements for Service. 

Cloud Scale Performance &
Diagnosability
Comprehensive SDN
vRSS
NIC Teaming
Remote Live
Monitoring
Extended ACLs
Test-NetConnection
Enhanced HNV
Diagnostics
Hyper-V Network
Virtualization
Standards based
Switch Management
Cloud Gateways
Hyper-V Switch
Hybrid Forwarding
IPAM for Virtualized
Datacenters
Core Infrastructure
Enhancements
DNS Enhancements
for Service Providers
Deliver networking
as part of pooled,
automated
infrastructure
Ensure multitenant
isolation, scale and
performance
Expand datacenter
capacity seamlessly
as per business
needs
Reduce operational
complexity
Enables software to dynamically manage the network
Abstracting the
physical network
with virtual
networks
Spanning policies
across physical
and virtual
networks
Controlling
datacenter
traffic flow
Multiple virtual networks on a physical
network
Contoso virtual
machine
Fabrikam virtual
machine
Contoso network
Fabrikam network
Each virtual network has illusion it is running
as a physical network
How network virtualization works
Overlays physical network
Encapsulation using NVGRE
protocol
Physical server
Physical network
Workload Owners
• Seamless migration
to the cloud
• Move n-tier
topology to the
cloud
• Preserve policies,
VM settings, IP
addresses
Enterprises
• Private Cloud
datacenter
consolidation and
efficiencies
• Extension of
datacenter into
hybrid cloud
• Incremental
integration of
acquired company
network
infrastructure
Hosters
• Bring Your own IP
• Bring Your network
topology
• Scalable multitenancy
Private/Public Cloud
Datacenter Admins
• Flexible VM
placement without
reconfiguration
• Decoupling of
server and network
admin roles
increases agility
Contoso network
Windows Server 2012 R2
HNV is part of the Hyper-V Switch
Dynamically learn Customer Addresses
Support Hyper-V Clustering
Enhanced performance + diagnostics
Fabrikam network
Physical network
Multi-Tenant Datacenter
VM Network
Contoso Corp.
Fabrikam Corp.
Contoso R&D Net
Fabrikam HR Net
Contoso Subnet1
Virtual
Subnet
Contoso Subnet2
Contoso Subnet3
Fabrikam Subnet2
Fabrikam Subnet1
Default Gateway
Fabrikam Corp.
Contoso Corp.
Routes between VMs on different Virtual Subnets
Built into the HNV Filter running on each host
HNV Gateway
Internet
Required to communicate outside a virtual network
Comes in different forms:
Multi-tenant VPN
Gateway
VPN for Site-to-Site connectivity
Load Balancing & NAT for Internet access
Host Datacenter
Network Virtualization Fabric
Host
Host
Forwarding gateway for in datacenter physical machine
access
Provider Address
192.168.2.22
192.168.5.55
192.168.2.22
192.168.5.55
VSID
Customer Address
GRE Key 5001
MACCA
GRE Key 6001
MACCA
10.0.0.5 
10.0.0.5 
10.0.0.7
10.0.0.7
192.168.2.22
10.0.0.5
10.0.0.5
192.168.5.55
10.0.0.5
10.0.0.7
NVGRE Packet
10.0.0.5
10.0.0.7
10.0.0.7
10.0.0.5 
10.0.0.7
10.0.0.7
10.0.0.5
10.0.0.7
Contoso sees
Fabrikam sees
SQL Server
10.1.1.2
Web
10.1.1.3
SQL Server
Web
10.1.1.2
10.1.1.3
10.1.1.2
192.168.1.10
10.1.1.2
192.168.1.10
10.1.1.3
192.168.2.12
10.1.1.3
192.168.2.12
192.168.n.n
PROVIDER ADDRESS SPACE (PA)
192.168.1.10
192.168.2.12
10.1.1.2
192.168.1.10
10.1.1.2
192.168.1.10
10.1.1.2
192.168.1.10
10.1.1.2
192.168.1.10
10.1.1.3
192.168.2.12
10.1.1.3
192.168.2.12
10.1.1.3
192.168.2.12
10.1.1.3
192.168.2.12
10.1.1.1
SQL Server
10.1.1.1
SQL Server
10.1.1.2
Web
CUSTOMER ADDRESS SPACE
10.1.1.2
Web
Native
Policies
Egress
ACL
MS Forwarding
Extensions can view CA and PA packets
Enables 3rd party network virtualization
Forwarding extensions can modify packet headers on
both ingress and egress
HNV
NIC Team
pNIC
Egress
Ingress
Egress
Extension
Extension
Extension
Extension
Native
Policies
Egress
ACL
Egress
Richer switch extensions
Extension
Ingress
HNV forwards HNV traffic
Forwarding Extension forwards non-HNV traffic
Extension
Egress
New hybrid forwarding in Hyper-V Switch
vSwitch
Ingress
HNV is automatically enabled for all adaptors
Ingress
vSwitch
MS
Forwarding
HNV
NIC Team
pNIC
(NEW in R2)
Virtual Machine
vSwitch
Ingress
Native
Policies
Egress
Extension
Extension
Extension
Egress
ACL
Egress
Ingress
VM NIC
NIC Team
HNV
pNIC
MS
Forwarding
(NEW in R2)
Virtual Machine
vSwitch
VM NIC
Egress
Ingress
Native
Policies
Extension
Extension
Extension
Egress
ACL
Egress
Ingress
NIC Team
HNV
pNIC
MS
Forwarding
Broadcast/Multicast support (NEW in R2)
Enables new scenarios
DHCP in the Virtual Network
Host and Guest Clustering
Efficient Implementation
Uses hardware for PA multicast if configured
Administrator don’t generally like to configure PA multicast
Falls back to intelligent PA unicast replication
Sends only one unicast packet per host no matter how many relevant VMs are on the host
Compliant address resolution semantics
CA space DAD, NUD and ARP fully supported for IPv4 and IPv6
Reliable ARP proxy
Notifies the central policy store of learned IP addresses
New CA’s, deletion of CA’s, CA movement
Rapid dissemination of HNV routing policy
Limited network overhead for disseminating HNV routing policy
Provider Address Space (PA)
Datacenter Network
192.168.4.11
192.168.4.22
Host 1
Host 2
Contoso
10.0.0.5 192.168.4.11
10.0.0.7 192.168.4.22
Contoso
10.0.0.5 192.168.4.11
10.0.0.7 192.168.4.22
Contoso1
Web Server
Contoso2
SQL Server
10.0.0.5
10.0.0.7
Customer Address Space (CA)
Provider Address Space (PA)
Datacenter Network
Fabrikam
192.168.4.11
192.168.4.22
Host 1
Host 2
Contoso
10.0.0.5 192.168.4.11
10.0.0.7 192.168.4.22
Contoso
10.0.0.5 192.168.4.11
10.0.0.7 192.168.4.22
Fabrikam
10.0.0.5 192.168.4.11
Contoso1
Web Server
Fabrikam1
DHCP Server
Contoso2
SQL Server
10.0.0.5
10.0.0.5
10.0.0.7
Customer Address Space (CA)
Provider Address Space (PA)
Datacenter Network
Fabrikam
Fabrikam
192.168.4.11
192.168.4.22
Host 1
Host 2
Contoso
10.0.0.5 192.168.4.11
10.0.0.7 192.168.4.22
Contoso
10.0.0.5 192.168.4.11
10.0.0.7 192.168.4.22
Fabrikam
10.0.0.5 192.168.4.11
Fabrikam
10.0.0.5 192.168.4.11
Fabrikam
Fabrikam
Contoso
Web Server
Fabrikam
DHCP Server
Contoso
SQL Server
Fabrikam
Web Server
10.0.0.5
10.0.0.5
10.0.0.7
10.0.0.7
Customer Address Space (CA)
Provider Address Space (PA)
Datacenter Network
Fabrikam
192.168.4.11
192.168.4.22
Host 1
Host 2
Contoso
10.0.0.5 192.168.4.11
10.0.0.7 192.168.4.22
Contoso
10.0.0.5 192.168.4.11
10.0.0.7 192.168.4.22
Fabrikam
10.0.0.5 192.168.4.11
Fabrikam
10.0.0.5 192.168.4.11
10.0.0.8
10.0.0.7 192.168.4.22
Fabrikam
Contoso
Web Server
Fabrikam
DHCP Server
Contoso
SQL Server
Fabrikam
Web Server
10.0.0.5
10.0.0.5
10.0.0.7
10.0.0.7
Customer Address Space (CA)
Fabrikam
Fabrikam
Provider Address Space (PA)
Datacenter Network
Fabrikam
192.168.4.11
192.168.4.22
Host 1
Host 2
Contoso
10.0.0.5 192.168.4.11
10.0.0.7 192.168.4.22
Contoso
10.0.0.5 192.168.4.11
10.0.0.7 192.168.4.22
Fabrikam
10.0.0.5 192.168.4.11
10.0.0.7 192.168.4.22
192.168.4.22
10.0.0.8
Fabrikam
10.0.0.5 192.168.4.11
10.0.0.8
10.0.0.7 192.168.4.22
Contoso
Web Server
Fabrikam
DHCP Server
Contoso
SQL Server
Fabrikam
Web Server
10.0.0.5
10.0.0.5
10.0.0.7
10.0.0.7
Customer Address Space (CA)
Bring your own DHCP Server
and Guest Clustering
HNV + NIC Teaming (NEW in R2)
Inbound and outbound spread on virtualized traffic
Higher performance with teamed NICs
Utilizes LBFO’s new Dynamic Mode
Provider Addresses configured with a MAC address
*-NetVirtualizationProviderAddress cmdlets updated to take a MAC address
Optimal performance when you have 1 (or more)
PAs per NIC in the team
Ex. A NIC team of 2 NICs should have 2 or more PAs and the CAs spread between
them
HNV and NIC Teaming
NVGRE
Typically NIC offloads work on the CA packet
Most offloads break when using GRE & NVGRE
NVGRE
Emulex and Mellanox have announced products supporting NVGRE
Task Offload
Working with additional NIC Vendors to enable NVGRE Task Offload
CPU Overhead (CPU Cycles per Byte)
Throughput (Gb/s)
12
10
9
65%
8
10
80%
7
8
6
5
6
4
Higher
Is Better
Lower
Is Better
4
3
2
2
1
0
NVGRE with ConnectX-3 Pro Offloads
NVGRE Without Offloads
0
NVGRE with ConnectX-3 Pro Offloads
NVGRE Without Offloads
Enhanced Diagnostics with HNV (NEW in R2)
Message Analyzer
Decodes the NVGRE packet format
Filter either on the CA or PA Packet data
Ping –p
Allows pinging PAs
Allows an admin without access to the VM to validate the CA space configuration
HNV responds to ICMP request to the default
gateway
Allows pinging the IP address of the CA default gateway (distributed router)
Diagnostics with HNV
Key Takeaways
Hyper-V Network Virtualization provides virtual network
abstraction on top of the physical network
HNV uses a industry standard encapsulation (NVGRE) to
provide the virtual network
Dynamic IP learning in the virtual network
Hyper-V Clustering and Failover support in the virtual network
Performance and diagnostics enhancements
When combined with the built-in software gateways, HNV
is ready for deployment in your datacenters!!
http://channel9.msdn.com/Events/TechEd
www.microsoft.com/learning
http://microsoft.com/technet
http://microsoft.com/msdn