PLAN: A Policy-Aware VM Management Scheme for Cloud Data Centres

Policies play an important role in network configuration and therefore in offering secure and high performance services especially over multi-tenant Cloud Data Center (DC) environments. At the same time, elastic resource provisioning through virtualization often disregards policy requirements, assuming that the policy implementation is handled by the underlying network infrastructure. This can result in policy violations, performance degradation and security vulnerabilities. In this paper, we define PLAN, a PoLicy-Aware and Network-aware VM management scheme to jointly consider DC communication cost reduction through Virtual Machine (VM) migration while meeting network policy requirements. We show that the problem is NP-hard and derive an efficient approximate algorithm to reduce communication cost while adhering to policy constraints. Through extensive evaluation, we show that PLAN can reduce topology-wide communication cost by 38% over diverse aggregate traffic and configuration policies.

[1]  Dan Li,et al.  PACE: Policy-Aware Application Cloud Embedding , 2013, 2013 Proceedings IEEE INFOCOM.

[2]  Deeparnab Chakrabarty,et al.  Knapsack Problems , 2008 .

[3]  Aditya Akella,et al.  OpenNF , 2014, SIGCOMM.

[4]  Amin Vahdat,et al.  A scalable, commodity data center network architecture , 2008, SIGCOMM '08.

[5]  Limin Xiao,et al.  Mvmotion: a metadata based virtual machine migration in cloud , 2013, Cluster Computing.

[6]  L. V. Wassenhove,et al.  A survey of algorithms for the generalized assignment problem , 1992 .

[7]  Gu Yingjie,et al.  A Framework and Problem Statement for Flow-associated Middlebox State Migration , 2012 .

[8]  Aditya Akella,et al.  OpenNF: enabling innovation in network function control , 2015, SIGCOMM 2015.

[9]  Weijia Jia,et al.  Policy-Aware Virtual Machine Management in Data Center Networks , 2015, 2015 IEEE 35th International Conference on Distributed Computing Systems.

[10]  Vyas Sekar,et al.  Making middleboxes someone else's problem: network processing as a cloud service , 2012, SIGCOMM '12.

[11]  Minlan Yu,et al.  Extending SDN to Handle Dynamic Middlebox Actions via FlowTags , 2014, ONS.

[12]  Meng Wang,et al.  Consolidating virtual machines with dynamic bandwidth demand in data centers , 2011, 2011 Proceedings IEEE INFOCOM.

[13]  Albert G. Greenberg,et al.  The cost of a cloud: research problems in data center networks , 2008, CCRV.

[14]  Wei Wang,et al.  Multi-objective Virtual Machine Selection for Migrating in Virtualized Data Centers , 2012, ICPCA/SWS.

[15]  H. R. Lourenço,et al.  Adaptive Approach Heuristics for The Generalized Assignment Problem , 1998 .

[16]  Minghua Chen,et al.  Joint VM placement and routing for data center traffic engineering , 2012, 2012 Proceedings IEEE INFOCOM.

[17]  Ion Stoica,et al.  A policy-aware switching layer for data centers , 2008, SIGCOMM '08.

[18]  Minlan Yu,et al.  Enforcing Network-Wide Policies in the Presence of Dynamic Middlebox Actions using FlowTags , 2014, NSDI.

[19]  H. R. Lourenço,et al.  Adaptive search heuristics for the generalized assignment problem , 2002 .

[20]  Reuven Cohen,et al.  An efficient approximation for the Generalized Assignment Problem , 2006, Inf. Process. Lett..

[21]  Andrew Warfield,et al.  Live migration of virtual machines , 2005, NSDI.

[22]  Vyas Sekar,et al.  Design and Implementation of a Consolidated Middlebox Architecture , 2012, NSDI.

[23]  Minlan Yu,et al.  SIMPLE-fying middlebox policy enforcement using SDN , 2013, SIGCOMM.

[24]  Fung Po Tso,et al.  Scalable Traffic-Aware Virtual Machine Management for Cloud Data Centers , 2014, 2014 IEEE 34th International Conference on Distributed Computing Systems.

[25]  Vijay Mann,et al.  Remedy: Network-Aware Steady State VM Management for Data Centers , 2012, Networking.

[26]  Aditya Akella,et al.  Toward software-defined middlebox networking , 2012, HotNets-XI.