Proof of concepts

DVN

The extensive use of virtualization technologies in cloud environments has created the need for a new network access layer residing on hosts connecting the various Virtual Machines. In fact, virtualized deployment environments impose requirements on networking for which traditional models are not well suited. For example, hundreds of users issuing cloud requests for which full access (i.e., including root privileges) to VMs are requested, typically require the definition of network separation at layer through the use of virtual LANs. However, in large computing centers, due for example to the number of installed network switches, to their characteristics, or to their heterogeneity, the dynamic (or even static) definition of many VLANs is often impractical or simply not possible.

WNoDeS DVN [1] is a solution to the problem of dynamic virtual networking based on the use of the Generic Routing Encapsulation Protocol. GRE is used to encapsulate VM traffic so that the configuration of the physical network switches doesn't have to change. This solution can be used to tackle problems such as dynamic network isolation and mobility of VMs across hosts:

• by reducing the network broadcast domain.
• by granting different network access polices to every virtual machine.

VLANs provide network isolation, particularly requested for cloud computing, where users get root access to virtual machine.

Figure 1 shows the interaction between DVN system components. The DVN Manager provides methods to create, modify, monitor and destroy virtual networks, keeping information about network status and allocation in a local database; the current implementation uses SQLite as database backend. The Policy Enforcement Service (PES) is the component supporting different service classes for different tenants using the same physical network infrastructure. Its role is to man- age the traffic control policies to be applied to each virtual network.

Figure 1: Dvn components

VIP

WNoDeS Virtual Interactive Pool [2] is an on-demand provisioning of virtual user interfaces for local users out of a common resource pool. Based on a CLI, it can be easily used by computing centre users seeking for additional, unused resources. Provides customized computing resources for interactive usage like, for example, software development or physics analysis. The provisioned virtual resource matches user requirements for RAM, CPU, bandwidth and shared file systems to be mounted. A caching mechanism is available, to reduce system provisioning time.

Figure 2: VIP presentation

References

[1] Salomoni D., Caberletti M., "A Dynamic Virtual Networks Solution for Cloud Computing", Proceedings of the 2nd International Workshop on Network-aware Data Management, November 11, 2012, Salt Lake City, Utah, USA

[2] Grandi C., Italiano A., Salomoni D., Calabrese Melcarne A.K, "Virtual pools for interactive analysis and software development through an integrated Cloud environment", CHEP 2010, Taipei