How to containerize NFV? Hypernetes (h8s) may be a nice answer. As an multi-tenant and secure Kubernetes distribution powered by OpenStack core components, h8s creates hypervisor-based containers (HyperContainer) directly on physical servers instead of wrapping containers inside VMs. Comparing to OS containers, kernel features of this HyperContainer is completely isolated from "noisy neighbors" but still have all benefits of cloud native deployment (e.g. Docker image, container api, sub-seconds startup time). VNFs in this case will be deployed in highly secured sandboxes, while still with agility and scalibility. This is the key challenge of containerizing NFV. This talk will compare service agility, performance, isolation, portability and scalability of VNFs deployed by VM, container, and hypervisor-container stack. And demonstrate how h8s containerize NFV with both container level efficiency and VM level security.
1. Attendees is expected to learn that the differences between VNFs deployed by VM, container, and hypervisor-container stack in aspects including service agility, performance, isolation, portability and scalability.
2. Attendees is expected to learn that a better way to integrate Kubernetes with OpenStack is probably not simply install it on OpenStack and use full-blown VMs to run containers. Hypernetes is trying to solve this problem from another side and compose OpenStack components directly as part of Kubernetes. In this case, OpenStack user does not need to upgrade the existing system to support k8s cluster. And at the same time, provide multi-tenant and secure container service without wrapping anything inside VMs.
3. Attendees is expected to learn implementation of h8s and how it use the power of OpenStack core components to bring k8s ochestration with Neutron networking, Cinder volume and Keystone multi-tenancy to containers running on this platform.