Built for Scale and Performance
Performance Scales with the Cloud
PLUMgrid ONS for OpenStack is based on a fully distributed architecture that is built for scale. Since forwarding decisions are distributed and made at each individual server, every new server added to the cloud increases the cloud’s forwarding capacity. This unique distributed architecture allows any OpenStack cloud built using the PLUMgrid ONS for OpenStack to scale to tens of thousands of workloads across multiple racks and different locations. Learn More
Terabits of Performance
PLUMgrid ONS for OpenStack can deliver terabits of scale out performance by leveraging hardware offload capabilities within industry standard x86 servers and Network Interface Cards (NICs). For example, by leveraging the offload capabilities present in the Mellanox ConnectX-3 Pro NIC, PLUMgrid ONS for OpenStack can achieve up to 40 Gbps mark. Learn more
Flexible and Resilient
The PLUMgrid Director cluster provides a flexible and distributed control plane. Additionally, IO Visor creates a separate and distributed data plane. This creates a fully distributed and high availability cloud network infrastructure. If a situation arises that causes the control plane to become unavailable, data forwarding continues without interruption because all forwarding decisions are distributed. This unparalleled level of network resilience allows customers to build sophisticated and large scale clouds with utmost confidence.
Network Functions and Services
PLUMgrid ONS for OpenStack provides built-in network functions such as switch, router, NAT, IPAM, DHCP, security policies and end-to-end encryption. Additionally, third party Layer 4 – 7 services can be easily inserted. Since the product is built on the PLUMgrid Platform, there is never a need to instantiate a virtual machine to provide network services, enabling industry leading scalability.
Back to Top >
Secure Multi-Tenancy and Provable Isolation
PLUMgrid Virtual Domains™ are logical data centers. Virtual Domains provide a comprehensive set of networking features and advanced description of policies for your own cloud. A single PLUMgrid Zone can support thousands of Virtual Domains. Virtual Domains provide built-in functionalities that meet all networking needs for the most demanding cloud use cases. Virtual Domains are created, migrated and chained to provide anything from ubiquitous Layer 2 storage connectivity to more complex application specific networks. Inside Virtual Domains you can create multiple subnets, routing, NAT functions and policy-based networking. Learn more
Per Tenant Encryption
PLUMgrid provides end-to-end data plane encryption for all network traffic within Virtual Domains. This unique capability provides cryptographic isolation across tenants, removes threats of cross contamination and security exposure. This industry first innovation eliminates the barriers to cloud adoption for even the most stringent use cases while enabling businesses to meet their compliance requirements.
Identity Based Policy Enforcement
PLUMgrid keeps track of the linkage between the physical and virtual network infrastructure plus the linkage between the tenant identity and the network addresses provisioned to each tenant. As a result, PLUMgrid ONS for OpenStack can apply this rich set of metadata to enforce identity based security policies on every tenant.
Centralized Authentication Capabilities
PLUMgrid ONS for OpenStack supports authentication through LDAP, OpenStack Identity (Keystone) and local authentication. This range of authentication options allows the product suite to be securely integrated in any existing or new modern datacenter.
To learn more about PLUMgrid ONS security features, download the White Paper.
Back to Top >
Comprehensive Cloud Network Lifecycle Capabilities
Rich Distributed Virtualized Network Functions
PLUMgrid allows customers to easily add virtual network functions that are not available in OpenStack Networking (Neutron), allowing them to immediately deploy OpenStack in production. Included are network functions (such as routers, switches and security policies) and services (such as NAT and IPAM and DHCP). These rich network capabilities can be quickly and securely instantiated within a Virtual Domain on a per tenant basis without any change to the physical network. The network functions are also distributed across all servers in the cloud, simplifying VM to VM or server to server communications and dramatically improving performance.
In-Service Software Upgrade (ISSU)
By providing ISSU capabilities, PLUMgrid is able to offer “always on” virtual network infrastructure by eliminating scheduled outages. ISSU reduces operational costs, eliminates cloud network downtime, allows faster implementation of new features and mitigates security risks with timely fixes transparent to cloud users. For example, if a new PLUMgrid network function becomes available, customers can leverage ISSU to immediately deploy it to their OpenStack cloud without incurring any downtime.
PLUMgrid Toolbox helps network administrators remotely monitor and control their virtual network infrastructure based on PLUMgrid ONS. By using PLUMgrid Toolbox, you have the capability of monitoring and controlling PLUMgrid Zones, Virtual Domains and network activities of Virtual Machines to provide increased security, reliability, and control of the virtual network. For example, if your user cannot access a virtual machine in its virtual domain, PLUMgrid Toolbox offers end-to-end capabilities to trace the virtual network, virtual domains and monitor virtual machine’s network activity to isolate the problem.You can then take the next steps to resolve the problem accordingly. Toolbox also provides capabilities to setup notifications and alerts in advance so that you know about your virtual network problems instantly. To Learn More, checkout the Overview Video and PLUMgrid Toolbox White Paper.
The Tunnel Heatmap is a powerful troubleshooting tool designed to detect network failure real time in your physical network infrastructure that would impact your virtual network infrastructure. Built on the unique distributed nature of PLUMgrid ONS, the Tunnel Heatmap exposes critical information relative to the Overlay (VXLAN-based) Network. It provides real-time visibility into the tunneling infrastructure which is dynamically established between all Edges and Gateways based on the definition of each tenant Virtual Domain and the location of its VMs.
To find out more, download Tunnel Heatmap feature brief here.
Complete Cloud Network Lifecycle Management
PLUMgrid ONS for OpenStack provides a comprehensive list of cloud networking lifecycle, rich visualization and diagnostic tools. This includes a programmable analytics framework, monitoring capabilities for Virtual Domains and physical fabric (such as switches) and correlation of events across the entire deployment. These powerful visibility and monitoring tools are all accessible via the intuitive PLUMgrid graphical user interface.
Modern applications such as Cloud Foundry and Hadoop are increasingly being deployed in modern data centers. A library of application blueprints customized for specific applications stacks are included in PLUMgrid ONS for OpenStack. These blueprints accelerate deployment of these applications on OpenStack by taking the guesswork out of the network interconnect and services required to deploy these applications in a secure and scalable manner.
Back to Top >
Open, Extensible and Compatible
Overlay-Based Software Only Solution
PLUMgrid ONS for OpenStack installs on standard-based x86 servers to deliver dynamic and scalable cloud networks. By using a VXLAN overlay-based approach, PLUMgrid runs independently of the Layer 2 or Layer 3 network fabric and creates an advanced feature rich overlay across multi-vendor physical network environments. Since the product requires no VLANs and no specific routing protocol on the physical network to function, it scales, reduces complexity, eliminates vendor lock-in and works across all your networking assets. If your data center and your public cloud don’t use the same protocol, PLUMgrid can still build overlay connections that bridge both sides. This protocol and hardware independent approach is unique in the industry.
Network Service Insertion
An effective virtual network infrastructure must ensure seamless interoperability with the already-deployed virtual and physical network services such as load balancers and firewalls. By partnering with industry leading networking companies such as A10 Networks, Arista Networks, Check Point, F5 Networks, Palo Alto Networks and Silver Peak, PLUMgrid can offer plug-and-play service insertion capabilities with the simplicity of a user interface based management tool. This enables the delivery of cloud networks that replicate the exact behavior of well understood production physical networks.
Open API, Interfaces, Data Models and SDK
PLUMgrid provides a language-based software development kit (SDK) to enable third-party developers and customers to build distributed functions on top of PLUMgrid ONS for OpenStack. The SDK includes compilers, domain specific languages, libraries and object models. This open and extensible data plane programming language allows the product suite to stay relevant and be ready for the unknown.
Broad Range of OpenStack options
In addition to being compatible with the OpenStack Havana and Icehouse releases from OpenStack, PLUMgrid has partnered with best in class OpenStack vendors to deliver the best OpenStack solution for customers. PLUMgrid ONS for OpenStack is compatible with distributions from Red Hat, Piston Cloud, Mirantis and Canonical. This broad range of OpenStack distribution support provides choice and flexibility for customers.
Back to Top >
Highly Automated and Agile
Based on a highly automated on-demand workflow, the PLUMgrid ONS for OpenStack enables applications and users to deploy private Virtual Domains in seconds without changing the physical network fabric. The product enables you to design any network environment as needed by your applications and deploy them in seconds. This approach removes weeks of manual provisioning and the need for dedicated network hardware while ensuring an always available, secure and easy-to-provision network environment for your applications. Learn more
PLUMgrid Virtual Domains allow self-service provisioning—tenants manage their networking needs inside their Virtual Domains without any interaction with the data center operator. Topologies inside a tenant’s Virtual Domain can be reconfigured at run-time without any service disruption. In addition, ISSU and Virtual Domains enables new network function to be instantly available.
Zero-Touch Installation and Deployment
By leveraging Puppet, the PLUMgrid ONS for OpenStack installation and deployment is highly automated. This takes the guesswork out of the virtual network infrastructure, accelerating the OpenStack deployment and allows you to focus on other aspects of the modern datacenter build out.