Application-aware NFV infrastructure, or the Heisenberg Uncertainty Principle and NFV

Eric Ji - August 3, 2016 - , , , , , , , ,

As a fan of quantum mechanics,  one of my favorites is the famous Heisenberg Uncertainty Principle, which states that for certain value pairs of quantum objects, both values cannot be exactly defined at the same time. The most well-known pair is the position of a particle (p) and the momentum of a particle (x). Knowing precisely where a particle is makes it impossible to know the particle’s momentum (and vice versa).

NFV

The take-away is that nature insists on trade-offs; that nailing down one part of a problem domain can put another part in the wind. You encounter one example when you introduce virtualization technologies into the Communications Service Provider (CSP) Cloud. In doing so, you often have to make trade-offs. One important trade-off is between utilization (y) and performance (x) on the one hand, and Elasticity, Agility and Manageability, on the other.

At the heart of NFV is the ability to take network functionality that was previously offered as a hardware-based appliance and convert it to software running on commoditized servers. Implicit to this is the need for virtualization technologies, which abstract the software operating environment from underlying hardware resources. However, these virtualization technologies, which are critical to the implementation of the cloud environment, also bring with them challenges that must be addressed and risks that must be managed — challenges and risks are made greater given the  stringent requirements for high performance and simple, efficient management imposed in Telco environments.

app

Figure 1 Traditional Architecture vs. Virtualized Architecture

Considering the performance implications of virtualizing a Telco environment is critical to any successful deployment of cloud technology (and NFV) in the CSP domain.

As shown in Figure 1, virtualization, by its very nature, brings two major sources of performance bottlenecks: 1) hardware resource contention from storage I/O, memory, CPU cores and network bandwidth; 2) virtualization overhead with additional layers of abstraction and processing to application data flows. Both will have an impact on overall application performance. In the Telco cloud, which handles both latency-sensitive and  latency-insensitive applications, any performance impact may have severe negative impacts on quality of experience.

Fortunately, recent technology advances – such as Intel’s Data Path Development Kit (DPDK) and PCI-SIG Single Root I/O Virtualization (SR-IOV) – help enable reliable NFV deployments and ensure achievement of acceptable Telco grade SLAs. Combined with improvements in the ability of COTS hardware platforms (including the most recent x86 processor generations) to take advantage of these data plane acceleration technologies, CSPs can now deploy data path edge functions such as SBC, IMS, CPE/PE router, and EPC elements on standard high volume servers.

Mirantis OpenStack 9.0, our latest OpenStack distribution based on the Mitaka release, provides the delicate balance between achieving the highest practical utilization and ensuring an acceptable level of performance.

In this 9.0 release, CSPs can now experience improved performance while running NFV workloads and other demanding network applications, with support for huge pages, SR-IOV, NUMA/ CPU pinning and DPDK. All of these attributes can be configured through OpenStack Fuel and all have been fully-tested, documented, and readied for production deployment in Mirantis OpenStack 9.0:

  • The integration of NFV features such as huge pages, SR-IOV, NUMA/CPU pinning and DPDK into the OpenStack cloud operating environment enables fine-grained matching of NFV workload requirements to platform capabilities, prior to launching a virtual machine
  • Such feature support enables CSPs to offer premium, revenue-generating services based on specific hardware features
  • CSPs can now use Fuel to easily configure and provision the aforementioned NFV features in an automated and repeatable manner
  • CSPs can efficiently manage post-deployment operations, using either the lifecycle management features of Fuel or tools such as Puppet Enterprise, while overseeing infrastructure with Stacklight for logging, monitoring and alerting (LMA).

For all their intrinsic complexity and architectural significance, NFV features are becoming easier to deploy on new OpenStack clusters, and more straightforward and convenient to enable and configure on VMs. This NFV demo video outlines the process: NFV features are enabled with switches during creation of a Fuel 9.0 Master Node, or can be turned on by editing a config file and restarting relevant services on a 9.0 Fuel Master that already exists. Details of vCPU allocation (for pinning) and RAM allocation (for Huge Pages) are managed through Fuel’s WebUI, prior to cluster (or scale-out compute node) deployment. Thereafter, on the deployed cluster, straightforward techniques, like creating a custom ‘NFV’ flavor for VMs that will house VNFs, offer efficient, low-maintenance pathways for efficient ops.

You can  also refer to our NFV Solution web page to learn more about the Mirantis CSP cloud solution, Open NFV reference platform, and the NFV partner ecosystem.

 

banner-img
test
tst
tst
Deploy Mirantis Secure Registry on any Kubernetes (Minikube, EKS, GKE, K0S, etc.)

Note: this blog post was originally published by Avinash Desireddy on Medium. You can view the original post here. Docker Containers, Kubernetes, CNCF, and many other relevant projects completely changed how we package, ship, and run applications. As you all know, Kubernetes has become a defacto standard for running applications. At the same time, container registries and chart repositories play a …

Deploy Mirantis Secure Registry on any Kubernetes (Minikube, EKS, GKE, K0S, etc.)
Software Supply Chain Security on Any Kubernetes with Mirantis Secure Registry 3.0

Security and cloud infrastructure availability concerns have been in the news of late with the recent Log4j vulnerabilities and outages at some of the world’s largest public cloud providers. The security and integrity of your container-based images has never been more important. Many have taken to Kubernetes to assist in the deployment and management of their container-based workloads, and are leveraging …

Software Supply Chain Security on Any Kubernetes with Mirantis Secure Registry 3.0
A Year in Review: A Look Back at the Most Powerful Mirantis Resources from 2021

2021 has been quite the year - and while there have been plenty of not-so-good times, we at Mirantis would like to take a moment to focus on the good. We are thankful for the opportunity to provide our readers with informative, accurate, and, above all, educational content via our company blog. We try not only to include helpful information …

A Year in Review: A Look Back at the Most Powerful Mirantis Resources from 2021
Technical training
Learn Kubernetes & OpenStack from Deployment Experts
Prep for certification!
View schedule
LIVE WEBINAR
Getting started with Kubernetes part 2: Creating K8s objects with YAML

Thursday, December 30, 2021 at 10:00 AM PST
SAVE SEAT
LIVE WEBINAR
Istio in the Enterprise: Security & Scale Out Challenges for Microservices in k8s

Presented with Tetrate
SAVE SEAT