Contrail Platform Developers
Contrail Platform Developers

How to position Contrail in Third party network

‎03-01-2019 11:12 AM

Hi

 

Is it possible to integrate and position the contrail in a network which have 3rd party network devices, or what is the minimum requirements to have contrail running?

 

I have some enqueries as below points;

- For the vrouter, I understand it as an agent which need to be installed in the hosts, either VM or physical servers, which in-turn connected to the controller so we can apply the required policies direct to the server itself rather than the related servers GWs, is that correct?

- Under which platforms/OS we can install vrouter

- micro-segmentation is the outcome of using the contrail and vrouter, so we can apply policies directly to every host. correct?

 

Thanks

1 REPLY 1
Contrail Platform Developers

Re: How to position Contrail in Third party network

‎09-24-2019 02:31 PM

Hello There!

 

The minimum requirement for a proof-of-concept (POC) system is 3 servers, either physical or virtual machines. All non-compute roles can be configured in each controller node. For scalability and availability reasons, it is highly recommended to use physical servers.

Each server must have a minimum of:

  • 64 GB memory

  • 300 GB hard drive

  • 4 CPU cores

  • At least one Ethernet port

For a list of supported platforms, see Supported Platforms Contrail 5.0.

 

Reference: "https://www.juniper.net/documentation/en_US/contrail5.0/topics/task/installation/hardware-reqs-vnc.h..."

 

 

I have some enqueries as below points;

- For the vrouter, I understand it as an agent that need to be installed in the hosts, either VM or physical servers, which in-turn connected to the controller so we can apply the required policies direct to the server itself rather than the related servers GWs, is that correct?

 

The vRouter agent is a user space process running inside Linux. It acts as the local, lightweight control plane and is
responsible for the following functions:
• It exchanges control state such as routes with the control nodes using XMPP.
• It receives low-level configuration state such as routing instances and forwarding policy from the control nodes
using XMPP.
• It reports analytics state such as logs, statistics, and events to the analytics nodes.
• It installs forwarding state into the forwarding plane.
• It discovers the existence and attributes of VMs in cooperation with the Nova agent.
• It applies forwarding policy for the first packet of each new flow and installs a flow entry in the flow table of the
forwarding plane.
• It proxies DHCP, ARP, DNS, and MDNS. Additional proxies can be included in the future.
Each vRouter agent is connected to at least two control nodes for redundancy in an active-active redundancy model.

 

- Under which platforms/OS we can install vrouter:

 

Contrail Release 2.21, is supported on the OpenStack Juno and Icehouse releases. Juno is supported on Ubuntu 14.04.2 and Centos 7.1.

Contrail networking is supported on Red Hat RHOSP 5.0, which is supported only on OpenStack Icehouse

In Contrail Release 2.21, support for VMware vCenter 5.5. vCenter is limited to Ubuntu 14.04.2 (Linux kernel version: 3.13.0-40-generic).

Other supported platforms include:

  • CentOS 6.5 (Linux kernel version: 2.6.32-358.el6.x86_64)
  • CentOS 7.1 (Linux kernel version: 3.10.0-229.el7)
  • Redhat 7/RHOSP 5.0 (Linux kernel version: 3.10.0-123.el7.x86_64)
  • Ubuntu 12.04.04 (Ubuntu kernel version: 3.13.0-34-generic)
  • Ubuntu 14.04. (Linux kernel version: 3.13.0-40-generic)

https://www.juniper.net/documentation/en_US/contrail2.21/topics/concept/supported-platforms-200-vnc....

 

- micro-segmentation is the outcome of using the contrail and vrouter, so we can apply policies directly to every host. correct?

Correct, micro-segmentation will add firewall capabilities to east-west traffic.