Chapter 9. Software-Defined Networking and Networking for Containers Flashcards

1
Q

What problem does the virtualization of the network solve?

A
  • high demands that traditional networks cannot cope with (mobile devices, cloud computing,…)
  • similiar flexibility needed for the connection of devices, applications, VMs, containers
  • can be achieved by virtualization of network
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What does Software-Defined Networking (SDN) allow?

A
  • decoupling of the network control layer from the traffic forwarding layer
  • allows SDN to program the control layer and to create custom rules in order to meet new networking requirements
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What planes are categorized in networking?

A
  • Data Plane
  • Control Plane
  • Management Plane
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is the Data Plane in networking responsible for?

A
  • responsible for handling data packets and applying actions to them based on rules which we program into lookup-tables
  • also called Forwarding plane
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is the Control Plane in networking responsible for?

A
  • tasked with calculating and programming the actions for the Data Plane
  • here are forwarding decisions made and where services such as Quality of Service (QoS) and VLANs are implemented
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is the Management Plane in networking responsible for?

A
  • is the place where we can configure, monitor and manage network devices
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What kind of activities has every network device to perform?

A
  • Ingress and egress packets
  • Collect, process and manage network information
  • monitor and manage the network
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Where is the network device activity of “Ingress and egress packets” performed?
What is part of these plane activities?

A
  • at the lowest layer
  • which decides what to do with packets based on forwarding tables
  • these activities are mapped as Data plane activities
  • all routers, switches, modems, etc are part of this plane
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Where is the network device activity of “Collect, process and manage the network information” performed?
What is part of these plane activities?

A
  • the network device makes forwarding decisions by collecting, processing and managing the network information, which the Data plane follows
  • these activities are mapped by the Control plane
  • some protocols which run on Control plane are routing and adjacent device discovery
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Where is the network device activity of “Monitor and manage the network” performed?
What is part of these plane activities?

A
  • using tools available in the Management plane we can interact with the network device to configure it and monitor it with tools like Simple Network Management Protocol (SNMP)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

How does networking work in Software-defined networking (SDN)?

A
  • decoupling of Control Plane and Data Plane
  • Control Plane has centralized view of the overall network, allows it to create forwarding tables of interest
  • these tables are then submitted to Data Plane to manage network traffic
  • Control Plane has well defined APIs that receive requests from applications to configure the network
  • after preparing the desired state, the Control plane communicates that to the Data plane, using a well defined Protocol like Open Flow
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is important in regards to communication with containers?

A
  • containers need to be able to communicate with other containers on the same or different hosts
  • network namespaces are used to isolate the network from one container to another on the host system
  • network namespaces can be shared between containers
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

As an example how does the container communication on hosts work?

A
  • on single host, using virtual Ethernet feature with Linux brdiging, a virtual network interface can be given to each container while assinging an IP address
  • with tools like Macvlan and IPVlan each container can be configured to have a unique worldwide routable IP address
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

How can multi-host networking be achieved with containers?

A
  • usually by using some sort of Overlay network driver
  • that usually encapsulates the Layer 2 traffic to a higher layer
  • examples: Docker Overlay Driver, Flannel, and Weave
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Which standards have been proposed for container networking?

A
  • Container Network Model (CNM)
  • Container Networking Interface (CNI)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What is the Container Network Model?

A
  • main driver: Docker Inc.
  • uses libnetwork project
  • standardized build process through three main components
17
Q

What are the three main components for the Container Network Model?

A
  • a network sandbox
  • one or multiple endpoints
  • one or more networks
18
Q

What is the Container Network Interface? (CNI)

A
  • Cloud Native Computing Foundation project (CNCF)
  • consists of specifications and libraries for writing plugins to configure network interfaces in Linux containers
19
Q

What is the Container Network Interface limited to?
Who uses this model?

A
  • providing network connectivity of containers and removing allocated resources when the containers are deleted
  • used by projects like Kubernetes, OpenShift, Cloud Foundry
20
Q

What is Service discovery, especially in the container context?

A
  • mechanism that enables processes and services to find each other
  • context container: provides mapping between a server name and its ip-address, which can change in its lifetime
21
Q

What are the steps for service discovery?

A
  • Registration
  • Lookup
22
Q

How does the Registration step for service discovery work?

A
  • when container starts, the scheduler registers the container name to the container IP mapping in a key-value store like etcd or Consul
  • if a container stops or restarts the scheduler updated the mapping accordingly
23
Q

How does the LookUp step for service discovery work?

A
  • Services and applications use LookUp to retrieve the IP address of a container so that they can connect to it
  • generally supported by Domain Name Server (DNS), which is local to the environment
  • DNS resolves the requests by looking at the entries in the key-value store, which is used in Registration
24
Q
A