Quick Question: · AuthN/AuthZ (RBAC)·
- This is probably more around AuthZ?
* “Reference Implementation”/”Basic” plugin
- What is the basic plugin? Exactly what features it will offer compared
to current plugins? I am just thinking that we should allocate our limited
resources for the high priority items, therefore all your above well-defined
items are great ideas. But, this one I am not clear around its definition.
Also, Over the last week/end I got the new dashboard with keystone, nova,
quantum up and running and I noticed a few kinks in the UI as far as our
workflow is concerned. Sometime to "polish" our UI workflows would be good.
Currently the "quantum" network tab shows up under "OpenStack Compute" but
makes call to "Quantum" which is a little confusing. I think we need 2 UIs,
one for managing Nova network and one for managing Quantum. The Nova network
management UI can obviously proxy calls to Quantum using QuantumManager.
Based on what Arvind, Mark Voelker & team think, I can register a blueprint
for this discussion.
Thanks,
Somik
On Mon, Sep 19, 2011 at 10:08 AM, Salvatore Orlando <
salvatore.orla...@eu.citrix.com> wrote:
> Thanks Dan,****
>
> ** **
>
> Do you reckon we should start putting placeholders at least for “Phase 1”?
> ****
>
> I don’t want to be a source of stress, but available slots at the summit
> are filling up quickly (see image).****
>
> ****
>
> ** **
>
> If there’s no objection I could start registering sessions for:****
>
> **· **Quantum API v1.1****
>
> **· **AuthN/AuthZ (RBAC)****
>
> **· **“Reference Implementation”/”Basic” plugin****
>
> ** **
>
> Cheers,****
>
> Salvatore****
>
> ** **
>
> *From:* Dan Wendlandt [mailto:d...@nicira.com]
> *Sent:* 19 September 2011 17:45
>
> *To:* Salvatore Orlando
> *Cc:* Ram Durairaj (radurair); netstack@lists.launchpad.net; Thierry
> Carrez
> *Subject:* Re: [Netstack] Proposing sessions for Openstack design summitq*
> ***
>
> ** **
>
> ** **
>
> On Mon, Sep 19, 2011 at 9:39 AM, Salvatore Orlando <
> salvatore.orla...@eu.citrix.com> wrote:****
>
> I agree with your approach.****
>
> I see Ram has already proposed a couple of sessions.****
>
> It might be worth start registering sessions at least for phase 1
> activities, just to make sure to get a slot in the session.****
>
> I also think “Phase 1” sessions should be marked as “design” rather than
> “brainstorming”.****
>
> ** **
>
> I think the design vs. brainstorming distinction makes sense. I'll work
> with Thierry to make sure we have a sane ordering once everything has been
> proposed.****
>
> ** **
>
> Dan ****
>
> ** **
>
> ****
>
> ****
>
> What’s your opinion?****
>
> ****
>
> Salvatore****
>
> ****
>
> *From:* Dan Wendlandt [mailto:d...@nicira.com]
> *Sent:* 19 September 2011 17:14
> *To:* Salvatore Orlando
> *Cc:* Ram Durairaj (radurair); netstack@lists.launchpad.net; Thierry
> Carrez
> *Subject:* Re: [Netstack] Proposing sessions for Openstack design summitq*
> ***
>
> ****
>
> Hi folks,****
>
> ****
>
> Great to see the Essex discussion starting up. ****
>
> ****
>
> I know there are several parties looking to integrate advanced network
> services (e.g., L3 forwarding, firewalling, load balancing, WAN bridging,
> WAN optimization, etc.) with Quantum. Such services are a key part of why
> we wanted to develop Quantum in the first place, and I definitely don't want
> to down play that. ****
>
> ****
>
> I do, however, think we have to be a bit careful about trying to boil the
> ocean at the design summit. We probably aren't going to get everyone to
> agree on an API for all L3-L7 network services in a three day span and
> trying to do so might risk taking the focus off of vary practical things
> that we need to do to make sure Quantum a scalable and production quality
> system for those looking to take it into production during the Essex time
> period (I know we have a set of customers in this class, and I'm guessing
> others on this list do as well). ****
>
> ****
>
> I would propose a 3-phase summit approach for NetStack:****
>
> - Phase 1: well-scoped / practical blueprints (e.g., API v1.1, improving
> API auth, vmware/bridge plugins). ****
>
> - Phase 2: discuss general design of how we insert higher-level network
> services. This will talk about how such services can interact with Quantum,
> but does not attempt to design the service itself. Given the number of
> different groups I expect to be working in this space in the coming months,
> I definitely think we want to give the community a structure for how such
> services should or should not be integrated. As I mentioned last week, I
> will be putting together a blueprint on this and would welcome participation
> by others. ****
>
> - Phase 3: discuss details (e.g., supported functionality, API) of specific
> advanced network services. Probably the most likely candidates based on
> discussions at the diablo summit are security policies/ACLs, L3
> functionality, and WAN-bridging/DC-interconnect. The expectation would be
> that at the summit we at least come up with a basic framework for how these
> services might integrate with Quantum (with respect to the phase 2
> discussion) and start to build a core group of people interested in working
> on them during the Essex timeframe. ****
>
> ****
>
> What do others think about this approach? ****
>
> ****
>
> Dan****
>
> ****
>
> ****
>
> ****
>
> On Mon, Sep 19, 2011 at 8:35 AM, Salvatore Orlando <
> salvatore.orla...@eu.citrix.com> wrote:****
>
> Hi Ram, ****
>
> ****
>
> Thanks for sharing your proposed sessions for the design summit.****
>
> I think that for this summit we will not be creating blueprints and them
> propose them for “sprint” as we did for Diablo, but we should rather propose
> sessions on the summit.openstack.org/sessions.****
>
> However, since we are going to have our own track, it will be good to hear
> some organizational details from Thierry how many sessions we can fit in it.
> ****
>
> ****
>
> All the elements in your list make perfect sense for me. However, I’m
> afraid I do not understand very well what do you mean by “Hybrid Cloud
> Service Framework”. Can you elaborate a bit more on this?****
>
> ****
>
> I think your list is not very far from mine, and we can probably merge them
> as follows:****
>
> ****
>
> 1. L3 networking services (beyond IPAM) ****
>
> 2. Higher layer network services (L4/L7)****
>
> 1. Firewall and Security Groups****
>
> 2. Network Acceleration Services Insertion Framework
> LB, Symmetric services – Acceleration services and so on****
>
> 3. NAT****
>
> 4. VPN Access****
>
> 3. Quantum “Basic” Plugin****
>
> 1. Linux Bridge****
>
> 2. Solution supporting all hypervisor platforms including
> ESX/Hyper-V****
>
> 4. Hybrid Cloud Service Framework****
>
> 5. Quantum API v1.1****
>
> 1. Synchronous vs Asynchronous behaviour and concept of “Operational
> Status”****
>
> 2. Improvements such as Filtering, Rate Limiting, Resource Links,
> pagination****
>
> 6. Cloud Bridging APIs in Quantum****
>
> ****
>
> ****
>
> ****
>
> *From:* Ram Durairaj (radurair) [mailto:radur...@cisco.com]
> *Sent:* 19 September 2011 16:21
> *To:* Salvatore Orlando; netstack@lists.launchpad.net
> *Cc:* Thierry Carrez
> *Subject:* RE: [Netstack] Proposing sessions for Openstack design summitq*
> ***
>
> ****
>
> Hello Salvatore and all:****
>
> ****
>
> We suppose to have a Netstack track…Its good to follow-up with Thierry to
> group all the Net stack related blueprint and sessions in one track for all
> the interested community participants to contribute and discuss.****
>
> ****
>
> In addition to the list, here are few more items from our side:****
>
> ****
>
> 1. L3 Service – As a service as Quantum****
>
> 2. Hybrid Cloud Service Framework****
>
> 3. Network Acceleration Services Insertion Framework (LB, Symmetric
> services – Acceleration services and so on)****
>
> 4. Quantum Asynchronous API mode****
>
> 5. Quantum Security Groups support****
>
> 6. Quantum “Basic Plugin (Linux bridge?)****
>
> ****
>
> Few more services we are discussing internally and we will add them here.
> ****
>
> ****
>
> Thanks****
>
>
> Ram****
>
> ****
>
> ****
>
> *From:* netstack-bounces+radurair=cisco....@lists.launchpad.net [mailto:
> netstack-bounces+radurair=cisco....@lists.launchpad.net] *On Behalf Of
> *Salvatore
> Orlando
> *Sent:* Monday, September 19, 2011 7:49 AM
> *To:* netstack@lists.launchpad.net
> *Subject:* [Netstack] Proposing sessions for Openstack design summitq****
>
> ****
>
> Hello fellow NetStackers, ****
>
> ****
>
> The list of proposed session at http://summit.openstack.org/sessions is
> filling up, and I think it is time we start proposing our own sessions as
> well.****
>
> ****
>
> Actually, there are already two accepted sessions for NetStack:****
>
> ****
>
> 1. Donabe/API models: http://summit.openstack.org/sessions/view/29**
> **
>
> 2. Continuous integration planning:
> http://summit.openstack.org/sessions/view/35****
>
> ****
>
> On top of these two, I would also consider having the following sessions
> (in order of importance):****
>
> 1. Higher layer network services (L4/L7), e.g.: Firewall, NAT, VPN**
> **
>
> 2. Improved authorization framework for Quantum, with a full RBAC
> model.****
>
> 3. Quantum API v1.1****
>
> a. Synchronous vs Asynchronous behaviour and concept of “Operational
> Status”****
>
> b. Improvements such as Filtering, Rate Limiting, Resource Links,
> pagination****
>
> 4. Cloud Bridging APIs in Quantum****
>
> ****
>
> What’s your opinion?****
>
> ****
>
> Cheers,****
>
> Salvatore****
>
>
> --
> Mailing list: https://launchpad.net/~netstack
> Post to : netstack@lists.launchpad.net
> Unsubscribe : https://launchpad.net/~netstack
> More help : https://help.launchpad.net/ListHelp****
>
>
>
> ****
>
> ****
>
> --
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~
> Dan Wendlandt
> Nicira Networks, Inc.
> www.nicira.com | www.openvswitch.org
> Sr. Product Manager
> cell: 650-906-2650
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~****
>
>
>
> ****
>
> ** **
>
> --
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~
> Dan Wendlandt
> Nicira Networks, Inc.
> www.nicira.com | www.openvswitch.org
> Sr. Product Manager
> cell: 650-906-2650
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~****
>
> --
> Mailing list: https://launchpad.net/~netstack
> Post to : netstack@lists.launchpad.net
> Unsubscribe : https://launchpad.net/~netstack
> More help : https://help.launchpad.net/ListHelp
>
>
--
Somik Behera | Nicira Networks, Inc. | so...@nicira.com <sbeh...@nicira.com> |
office: 650-390-6790 | cell: 512-577-6645
<<image001.png>>
-- Mailing list: https://launchpad.net/~netstack Post to : netstack@lists.launchpad.net Unsubscribe : https://launchpad.net/~netstack More help : https://help.launchpad.net/ListHelp
