The Nicira Network Virtualization Platform (NVP) is designed to manage thousands of Open vSwitch devices on the network’s edge, enabling the creation of tens of thousands of virtual networks completely decoupled from the underlying physical network. NVP transforms any existing physical network into an IP backplane that simply forwards packets. No need to rip-and-replace. NVP is software that works on your existing network, with your existing server virtualization platform, and delivers massive savings and reduced complexity.NVP creates an intelligent network edge connected to your existing network, managed by a distributed control system with a single programmatic interface that transforms your physical network into an IP backplane. NVP enables the programmatic creation of thousands of agile virtual networks to connect workloads in your cloud.
(Enterprise Class Network Services)- Isolation: NVP isolates each tenant’s virtual network from all other tenants, protecting against snooping and spoofing, yet operating over a hosting provider’s current shared physical infrastructure.- Virtual and Physical Integration: NVP allows virtual networks to integrate separate physical and virtual network workloads, unifying the customer’s view of its hosted and cloud resources. - Dedicated IP and Layer 2 Address Space: NVP provides each virtual network an isolated address space at both Layer 2 and Layer 3, allowing hosting providers to accommodate existing customer address schemes based on RFC 1918 private addressing, easing customer migration to their cloud. With NVP, hosting providers can offer each customer its own dedicated yet elastically scalable switch. - Standard Monitoring and Management Interfaces: Each virtual network can be operated as an independent virtual switch that exposes standard network monitoring and management interfaces (such as SNMP, Syslog and port counters). Tenants or providers can use existing tools to manage and monitor their virtual network space.- Performance Guarantees: Minimum rate guarantees and maximum throughput rate limiting with the option to burst ensure Service Level Agreements (SLAs) can be met.- Dynamic Network Security for Clouds: Standard network security features are available across all virtual networks, including port security to prevent address spoofing, port isolation to prevent communication between adjacent Layer 2 devices and IPSec payload encryption to protect customer traffic traversing public WAN links.- Integration of Layer 4-7 Services: Virtual networks can easily be programmed to integrate with existing physical Layer 4-7 services like firewalls, load balancers, intrusion prevention appliances and SSL accelerators. In addition, NVP’s model of virtual networking decouples physical L4-7 service placement from the workloads that require service and allows for operationally efficient resource pooling.(The Operational Model of Virtualization)- Automated Programmatic Control: All virtual network configurations are accessible through a web services API on the Nicira NVP Controller. This includes creating and managing virtual networks, managing virtual network policy, associating VMs with virtual networks, managing integration of virtual networks to the physical network, and monitoring virtual network counters (packets, bytes, flows, etc.). Service providers can choose how much (if any) of this to make available to the tenant. - Enables VM Mobility: NVP makes it easy to move a VM from one physical server to another by moving the VM’s virtual network interface from one vSwitch to another, along with the services and policies associated with that interface. The move is transparent to the VM itself, as well as to other VMs in the same virtual network.- High Availability: Robustness is a key tenet of the NVP architecture. NVP is built to be highly fault tolerant, and to handle component failures (including failures of the NVP Controller) without service interruption.- Location Agnostic: Virtualization within NVP extends from VM interface to VM interface. It does not rely on segmenting the underlying physical network’s address space at either L2 or L3. NVP provides each tenant with a true virtual network model, allowing them to select any addressing model they choose (public or private).- No Added VM Configuration: NVP operates at the infrastructure level, in the hypervisor vswitch, and is therefore completely transparent to guest VMs. From their perspective, VMs are connected to what appears to be a conventional physical network. This eases movement of existing applications into the cloud.- Cloud Scalability: NVP is designed to be scalable from a single physical server up to the largest clouds on the Internet, with tens of thousands of servers- Performance: NVP performance at the data plane level is consistent with existing software switch implementations and imposes little or no additional performance overhead.