Is there an unsecured wireless network near you?
Euro telco standards wonks publish third iteration of open source orchestrator
Wednesday, 15 November 2017 17:02

The European Telecommunications Standards Institute (ETSI) has published the third release of OSM, its open source management and orchestration (MANO) stack for network function virtualisation.

Key features in this release include a new admin user security model, shared projects, and expanded service assurance and monitoring capabilities.

The role-based access model recognises that once it's out of the laboratory, an orchestrator like ETSI's MANO needs a team rather than an individual to run it.

The tool can automate tasks such as spinning up virtual network functions (VNFs); designing, deploying and shutting down network services; adding new data centres and more. To deal with this, admins can now define different roles mapped to these functions, with different privileges.

Shared projects in this release include another security-related access control concept.

Projects group VNF descriptors, network service descriptors, network service instances, and virtualised infrastructure managers (VIMs, which define individual data centres in a network).

In shared projects, role-based access controls let an admin apply consistent access to these groupings.

As the white paper describing the new tool [PDF] explains: “Each user is associated with one or more projects and each user has one or more roles on each project. The role is system-wide and is defined based on permissions on API endpoints.

Project definitions enable “more flexibility in grouping access to resources than if OSM allowed a VIM tenant view to permeate up the MANO stack.”

Service monitoring

OSM's service monitoring capabilities received a lot of work between Release TWO and Release THREE. As the announcement stated, the enhancements “allow the orchestrator to act on events and metrics gathered from VNFs and infrastructures, in a technology-agnostic manner. Other features such as anti-affinity rules as well as explicit port ordering and device role tagging facilitate VNF deployments, availability and resiliency.”

The release added an experimental monitoring module that collects metrics and alarms from VMware, Amazon CloudWatch, and OpenStack.

Release THREE metric collection

Memory usage%YesNoYes
Disk read latencymsYesNoNo
Disk write latencymsYesNoNo
Total disk reads#NoYesYes
Total disk writes#NoYesYes
Disk read bytesBytes, B/secNoYesYes
Disk write bytesBytes, B/secNoYesYes
Packets dropped#YesYesYes
Packets received#YesYesYes
Packets sent#YesYesYes
CPU usage%YesYesYes

Release THREE alarm collection

Memory usageYesNoYes
Disk read latencyYesNoNo
Disk write latencyYesNoNo
Total disk readsNoYesYes
Total disk writesNoYesYes
Disk read bytesNoYesYes
Disk write bytesNoYesYes
Packets droppedYesNoYes
Received packetsYesYesYes
Sent packetsYesYesYes
CPU usageYesYesYes

Container restart capabilities were extended in Release THREE to improve resiliency, and now include maintaining components' state externally to those components. That way, state can be preserved across restarts. ®

Source: http://bit.ly/2hE8waY