Group-based Policy Abstractions for Neutron

Registered by Kyle Mestery on 2013-10-04

This blueprint consolidates proposals for extending OpenStack Networking with policy and connectivity abstractions that enable significantly more simplified and application-oriented interfaces than with the current Neutron API model. The goal of these API extensions is that they become the main interface to Neutron for those deploying applications by providing a simpler interface in which to consume Neutron resources. They allow for easier consumption of the networking resources by separate organizations and management systems.

The proposals described below, namely Connectivity Group Extension and Policy Extension Framework for Neutron differ in some details of the model semantics they propose, but in fact can express equivalent application topologies and connectivity policies to a large extent. More importantly, they share the common goal of an application-centric, policy-oriented view of OpenStack Networking.

Blueprint information

Status:
Started
Approver:
Robert Kukura
Priority:
Undefined
Drafter:
Kyle Mestery
Direction:
Needs approval
Assignee:
Sumit Naiksatam
Definition:
New
Series goal:
None
Implementation:
Needs Code Review
Milestone target:
None
Started by
Kyle Mestery on 2014-03-20

Related branches

Sprints

Whiteboard

16-July (mestery): This may have some patches land in Juno-2, but it won't completely land there, so moving to Juno-3.

Moving this to Juno-2 for now, as it won't be complete in Juno-1. But patches are likely to land in Juno-1 along the way to completing this.

This will be implemented in Juno, gerrit review for bp: https://review.openstack.org/#/c/89469

Significant progress has been made on this BP in the community. We have been hosting weekly meetings on IRC here: https://wiki.openstack.org/wiki/Meetings/Neutron_Group_Policy
We have a PoC we've started on as well. Links to initial code are on the weekly meeting page.

Gerrit topic: https://review.openstack.org/#q,topic:bp/group-based-policy-abstraction,n,z

Addressed by: https://review.openstack.org/93853
    Group Policy Model - Part 1

Addressed by: https://review.openstack.org/93935
    Group Policy Mapping Model and Driver - Part 1

Addressed by: https://review.openstack.org/95900
    Group Policy API-1: EP, EPG, L2 Context, L3 Context

Addressed by: https://review.openstack.org/96050
    Group Policy DB-1: EP, EPG, L2 Context, L3 Context

Addressed by: https://review.openstack.org/96393
    Group Policy Plugin-1: EP, EPG, L2 Context, L3 Context

Addressed by: https://review.openstack.org/100716
    Group Policy Mapping API-1: EP, EPG, L2 Policy, L3 Policy

Addressed by: https://review.openstack.org/101795
    Group Policy Mapping DB-1: EP, EPG, L2 Policy, L3 Policy

Addressed by: https://review.openstack.org/101816
    Group Policy API-2: Classifiers, Actions, and Rules

Addressed by: https://review.openstack.org/101957
    Group Policy Mapping Plugin-1: EP, EPG, L2 Policy, L3 Policy

Addressed by: https://review.openstack.org/103456
    Group Policy DB-2: Classifiers, Actions, and Rules

Addressed by: https://review.openstack.org/103465
    Group Policy Plugin-2: Classifiers, Actions, and Rules

Addressed by: https://review.openstack.org/103486
    Group Policy API-3: Contracts

Addressed by: https://review.openstack.org/103755
    Group Policy DB-3: Contracts

Addressed by: https://review.openstack.org/103798
    Group Policy Plugin-3: Contracts

Addressed by: https://review.openstack.org/104727
    Group Policy: Implicit Policy Driver

Addressed by: https://review.openstack.org/105272
    Group Policy: Resource Mapping Driver

Gerrit topic: https://review.openstack.org/#q,topic:bp/gbp-oc-nvsd-driver,n,z

Addressed by: https://review.openstack.org/113775
    Group Policy: Resource Mapping Driver (2)

(?)

Work Items

Dependency tree

* Blueprints in grey have been implemented.

This blueprint contains Public information 
Everyone can see this information.

Subscribers