Architecture of GigaVUE Cloud Suite for OpenStack

GigaVUE Cloud Suite for OpenStack captures traffic in OpenStack cloud using UCT-Vs directly or through the hypervisor as described in this section.

Refer to the following architectures for details:

■   UCT-V
■   Open vSwitch (OVS) Mirroring

UCT-V

A UCT-V is a tiny footprint user-space agent (UCT-V) that is deployed in a project instance. This agent mirrors the traffic from a source interface to a destination mirror interface. The mirrored traffic is then sent to the GigaVUE® V Series node. The following figure shows a high-level architecture of GigaVUE Cloud Suite for OpenStack using UCT-Vs as the source for acquiring the traffic.

A UCT-V is deployed by installing the agent in the virtual instances. When a UCT-V is installed, a UCT-V Controller must be configured in your environment. A UCT-V Controller orchestrates the flow of mirrored traffic from UCT-Vs to the GigaVUE V Series nodes. A single UCT-V Controller can manage up to 100 UCT-Vs deployed in the cloud.

By using UCT-Vs for mirroring traffic, the monitoring infrastructure is fully contained within the virtual machine being monitored. This agent is agnostic of the underlying virtual switch. Also, the cost of monitoring a virtual machine is borne by the same virtual machine.

Open vSwitch (OVS) Mirroring

When deploying Open vSwitch (OVS) Mirroring, a UCT-V is installed on the hypervisor where the VMs you wish to monitor are located. When a UCT-V is installed, a UCT-V Controller must be configured in your environment. A UCT-V Controller orchestrates the flow of mirrored traffic from UCT-Vs to the GigaVUE V Series nodes.

A single UCT-V Controller can manage up to 100 UCT-Vs deployed in the cloud. By using OVS Mirroring or OVS Mirroring + DPDK, or OVS Mirroring + Hardware offload, the mirroring infrastructure is fully contained within the hypervisors.

Note:  GigaVUE Cloud Suite for OpenStack supports both the access ports and the VLAN trunk ports for OVS traffic mirroring. To override the default values of OVS mirror tunnel ID range, refer to Configure the OpenStack Settings.

The UCT-Vs are deployed on the target hypervisors and the configuration file is to be modified based on the requirements and service. GigaVUE-FM connects to UCT-V Controller and each UCT-V Controller can talk to UCT-Vs. GigaVUE-FM identifies the interfaces to be monitored from the monitoring session details. GigaVUE-FM mirrors and forwards the traffic to the GigaVUE V Series nodes based on the deployed Monitoring Session.

  • UCT-V configures traffic mirroring in the OVS (with or without DPDK) and the management of the mirrored traffic is completely based on OVS architecture and the server.
  • OVS Mirroring also supports Open vSwitch with DPDK and Open vSwitch with Hardware offload.
  • The configuration steps for OVS Mirroring, OVS Mirroring with DPDK and Open vSwitch with Hardware offload are the same.

Refer Deploying Gigamon CloudSuite on OpenStack to scale-inand Open vSwitch with Hardware offload and scale-out monitoring tools for more detailed information.