Re: [ovs-discuss] VXLAN support for OVN

2020-03-17 Thread Leonid Grossman 
Hi Daniel,
WRT performance gains from offloading encap/decap, these are really specific to 
the workloads (and much less to Vxlan vs Geneve).
My advice would be to test it in your specific environment to decide whether 
it’s worth the extra effort. Note that the effort would be outside of ovs/ovn 
(getting the right hardware, drivers etc in place).
For our workloads it was pretty much a must, either due to the need to run 
close to 100+Gbps line rates or due to most of the host resources needed for 
the apps and very little left for the networking stack to use.
But I can think about other cases when doing encap/decap in software is ok.

WRT VXLAN vs. Geneve – as the original Ihar’s e-mail below rightfully points 
out, this really depends upon the number of logical ports needed for 
deployments.
In our cloud environment, it was hard to guarantee the tenant deployments would 
not grow over time beyond the number of logical ports that VXLAN can support 
(even after leaving source port behind, which we did). So for us VXLAN was a 
step stone, till Geneve offload got in place. We also did not have other 
limitations/perceptions described in the original e-mail that may favor VXLAN.
I do agree though for some/many users this may be a good feature to support, if 
their logical network is guaranteed to stay relatively small.
Best, Leonid

From: Daniel Alvarez Sanchez 
Sent: Tuesday, March 17, 2020 6:19 AM
To: Leonid Grossman 
Cc: Ben Pfaff ; Ihar Hrachyshka ; 
ovs-discuss@openvswitch.org
Subject: Re: [ovs-discuss] VXLAN support for OVN

External email: Use caution opening links or attachments

Hi Leonid, all

On Fri, Mar 13, 2020 at 11:54 PM Leonid Grossman 
mailto:lgross...@nvidia.com>> wrote:
Ben/all,
We actually moved to Geneve a while ago... The original hurdle with Geneve was 
the lack of hw support, but it got solved (at least for our environments).

This is great. I'm not sure if you can share some perf numbers when it comes to 
using VXLAN offloading back then and now with the HW support that you're using 
in the NICs. It'd help a lot to decide if the effort is really worthy.

Thanks a lot!
Daniel

Thanks, Leonid

> -Original Message-
> From: Ben Pfaff mailto:b...@ovn.org>>
> Sent: Friday, March 13, 2020 3:36 PM
> To: Ihar Hrachyshka mailto:ihrac...@redhat.com>>; Leonid 
> Grossman
> mailto:lgross...@nvidia.com>>
> Cc: ovs-discuss@openvswitch.org
> Subject: Re: [ovs-discuss] VXLAN support for OVN
>
> External email: Use caution opening links or attachments
>
>
> Hi!  I'm adding Leonid Grossman to this thread because I believe that his
> team at nVidia has an internal fork of OVN that supports VXLAN.
> I've discussed the tradeoffs that you mentioned below about splitting up bits
> with him, too.
>
> On Mon, Mar 09, 2020 at 09:22:24PM -0400, Ihar Hrachyshka wrote:
> > Good day,
> >
> > at Red Hat, once in a while we hear from customers, both internal and
> > external, that they would like to see VXLAN support in OVN for them to
> > consider switching to the technology. This email is a notice that I
> > plan to work on this feature in the next weeks and months and hope to
> > post patches for you to consider. Below is an attempt to explain why
> > we may want it, how we could achieve it, potential limitations. This
> > is also an attempt to collect early feedback for the whole idea.
> >
> > Reasons for the customer requests are multiple; some of more merit,
> > some are more about perception. One technical reason is that there are
> > times when a SDN / cloud deployment team doesn't have direct influence
> > on protocols allowed in the underlying network; and when it's hard,
> > due to politics or other reasons, to make policy changes to allow
> > Geneve traffic while VXLAN is already available to use. Coming from
> > OpenStack background, usually you have interested customers already
> > using ML2-OVS implementation of Neutron that already relies on VXLAN.
> >
> > Another reason is that some potential users may believe that VXLAN
> > would bring specific benefits in their environment compared to Geneve
> > tunnelling (these gains are largely expected in performance, not
> > functionality because of objective limitations of VXLAN protocol
> > definition).  While Geneve vs. VXLAN performance is indeed quite an
> > old debate with no clear answers, and while there were experiments set
> > in the past that apparently demonstrated that potential performance
> > gains from VXLAN may not be as prominent or present as one may
> > believe*, nevertheless the belief that VXLAN would be beneficial at
> > least in some environments on some hardware never dies out; and so
> > regardless of proven merit of such belief, OVN adoption suffers
> > because of its lack of VXLAN support.
> >
> > *
> > https://blog.russellbryant.net/2017/05/30/ovn-geneve-vs-vxlan-does-it-
> > matter/
> >
> > So our plan is to satisfy such requests by introducing support for the
> > new tunnelling type

Re: [ovs-discuss] VXLAN support for OVN

2020-03-17 Thread Daniel Alvarez Sanchez 
Hi Leonid, all

On Fri, Mar 13, 2020 at 11:54 PM Leonid Grossman 
wrote:

> Ben/all,
> We actually moved to Geneve a while ago... The original hurdle with Geneve
> was the lack of hw support, but it got solved (at least for our
> environments).
>

This is great. I'm not sure if you can share some perf numbers when it
comes to using VXLAN offloading back then and now with the HW support that
you're using in the NICs. It'd help a lot to decide if the effort is really
worthy.

Thanks a lot!
Daniel


> Thanks, Leonid
>
> > -Original Message-
> > From: Ben Pfaff 
> > Sent: Friday, March 13, 2020 3:36 PM
> > To: Ihar Hrachyshka ; Leonid Grossman
> > 
> > Cc: ovs-discuss@openvswitch.org
> > Subject: Re: [ovs-discuss] VXLAN support for OVN
> >
> > External email: Use caution opening links or attachments
> >
> >
> > Hi!  I'm adding Leonid Grossman to this thread because I believe that his
> > team at nVidia has an internal fork of OVN that supports VXLAN.
> > I've discussed the tradeoffs that you mentioned below about splitting up
> bits
> > with him, too.
> >
> > On Mon, Mar 09, 2020 at 09:22:24PM -0400, Ihar Hrachyshka wrote:
> > > Good day,
> > >
> > > at Red Hat, once in a while we hear from customers, both internal and
> > > external, that they would like to see VXLAN support in OVN for them to
> > > consider switching to the technology. This email is a notice that I
> > > plan to work on this feature in the next weeks and months and hope to
> > > post patches for you to consider. Below is an attempt to explain why
> > > we may want it, how we could achieve it, potential limitations. This
> > > is also an attempt to collect early feedback for the whole idea.
> > >
> > > Reasons for the customer requests are multiple; some of more merit,
> > > some are more about perception. One technical reason is that there are
> > > times when a SDN / cloud deployment team doesn't have direct influence
> > > on protocols allowed in the underlying network; and when it's hard,
> > > due to politics or other reasons, to make policy changes to allow
> > > Geneve traffic while VXLAN is already available to use. Coming from
> > > OpenStack background, usually you have interested customers already
> > > using ML2-OVS implementation of Neutron that already relies on VXLAN.
> > >
> > > Another reason is that some potential users may believe that VXLAN
> > > would bring specific benefits in their environment compared to Geneve
> > > tunnelling (these gains are largely expected in performance, not
> > > functionality because of objective limitations of VXLAN protocol
> > > definition).  While Geneve vs. VXLAN performance is indeed quite an
> > > old debate with no clear answers, and while there were experiments set
> > > in the past that apparently demonstrated that potential performance
> > > gains from VXLAN may not be as prominent or present as one may
> > > believe*, nevertheless the belief that VXLAN would be beneficial at
> > > least in some environments on some hardware never dies out; and so
> > > regardless of proven merit of such belief, OVN adoption suffers
> > > because of its lack of VXLAN support.
> > >
> > > *
> > > https://blog.russellbryant.net/2017/05/30/ovn-geneve-vs-vxlan-does-it-
> > > matter/
> > >
> > > So our plan is to satisfy such requests by introducing support for the
> > > new tunnelling type into OVN and by doing that allow interested
> > > parties to try it in their specific environments and see if it makes
> > > the expected difference.
> > >
> > > Obviously, there is a cost to introduce additional protocol to support
> > > matrix (especially considering limitations it would introduce, as
> > > discussed below). We will probably have to consider the complexity of
> > > the final implementation once it's available for review.
> > >
> > > =
> > >
> > > For implementation, the base problem to solve here is the fact that
> > > VXLAN doesn't carry as many bits available to use for encoding
> > > datapath as Geneve does. (Geneve occupies both the 24-bit VNI field as
> > > well as 32 more bits of metadata to carry logical source and
> > > destination ports.) VXLAN ID is just 24 bits long, and there are no
> > > additional fields available for OVN to pass port information.  (This
> > > would be different if one would consider protocol extensions like
> > > VXLAN-GPE, but relying on them makes both reasons to consider VXLAN
> > > listed above somewhat moot.)
> > >
> > > To satisfy OVN while also working with VXLAN, the limited 24 bit VNI
> > > space would have to be split between three components - network ID,
> > > logical source and destination ports. The split necessarily limits the
> > > maximum number of networks or ports per network, depending on where
> > > the split is cut.
> > >
> > > Splitting the same 24 bit space between all three components equally
> > > would result in limitations that would probably not satisfy most real
> > > life deployments (we are talking about max 256 networks

[ovs-discuss] OVS-TC design/documentation

2020-03-17 Thread gr d 
Hi Team,

I was exploring on ovs-tc implementation to understand how it helps in
offloading flow-match, actions in hardware.

I understood overall picture though by checking code and multiple papers,
but could not find any absolute design documents for low level
understanding, neither on ovs site nor on any other site.

Can you help me providing any reference/document for ovs-tc design
implementation. I know ovs-tc is not full feature complete and it is
evolving to support all the features, I can see commits in master branch on
github for the same.. but if there is any document, it will help me a lot.

Thanks
Gunwant
___
discuss mailing list
disc...@openvswitch.org
https://mail.openvswitch.org/mailman/listinfo/ovs-discuss