在介紹Openstack網路架構前,先來介紹幾個基本名詞。
Ethernet
乙太網路(英語:Ethernet)是一種電腦區域網路技術。IEEE組織的IEEE 802.3標準制定了乙太網路的技術標準,它規定了包括實體層的連線、電子訊號和介質存取層協定的內容。
在OSI 7層model裡,屬於第2層 Data link。
所以當在討論ethernet常常會聽到,local network, layer 2, L2, link layer and data link layer
the hosts connected to the network communicate by exchanging frames. Every host on an Ethernet network is uniquely identified by an address called the media access control (MAC) address
雙方主機是藉由frames(訊框)來相互溝通,是藉由MAC來辨識封包該送往哪個host。
VLANs
虛擬區域(Virtual Local Area Network、VLAN)是一種建構於區域網路交換技術(LAN Switch)的網路管理的技術,網管人員可以藉此透過控制交換機有效分派出入區域網的封包到正確的出入埠,達到對 "不同實體區域網中的裝置進行邏輯分群(Grouping)管理" ,並降低區域網內大量資料流通時,因無用封包過多導致擁塞的問題,以及提昇區域網的資訊安全保障。
VLAN is a networking technology that enables a single switch to act as if it was multiple independent switches. Specifically, two hosts that are connected to the same switch but on different VLANs do not see each other’s traffic. OpenStack is able to take advantage of VLANs to isolate the traffic of different projects, even if the projects happen to have instances running on the same compute host. Each VLAN has an associated numerical ID, between 1 and 4095.
VLAN這個技術可以讓2台host就算接到同一台switch上,還是無法與對方溝通。看起來就像是在完全不一樣的區域網路內。
一般VLAN能指派的ID是1~4095。因為數量有限,所以之後會有VXLAN的出現。
Subnets and ARP
Subnet就是單純的子網域。
While NICs use MAC addresses to address network hosts, TCP/IP applications use IP addresses. The Address Resolution Protocol (ARP) bridges the gap between Ethernet and IP by translating IP addresses into MAC addresses
網卡適用獨一無二的MAC來分辨network host,但是 TCP/IP的協定是依靠 IP address來分辨。
這中間就是靠 ARP 來建立起橋梁。
ARP協定能把IP address轉換成 MAC address