Solaris network virtualization and resource control is a set of features originally developed by

Sun Microsystems Sun Microsystems, Inc. (Sun for short) was an American technology company that sold computers, computer components, software, and information technology services and created the Java programming language, the Solaris operating system, ZFS, the ...

as the

OpenSolaris OpenSolaris () is a discontinued open-source computer operating system based on Solaris and created by Sun Microsystems. It was also, perhaps confusingly, the name of a project initiated by Sun to build a developer and user community around th ...

Crossbow umbrella project, providing an internal

network virtualization In computing, network virtualization is the process of combining hardware and software network resources and network functionality into a single, software-based administrative entity, a virtual network. Network virtualization involves platform vi ...

and

quality of service Quality of service (QoS) is the description or measurement of the overall performance of a service, such as a telephony or computer network, or a cloud computing service, particularly the performance seen by the users of the network. To quantitat ...

framework within the

Solaris Operating System Solaris is a proprietary Unix operating system originally developed by Sun Microsystems. After the Sun acquisition by Oracle in 2010, it was renamed Oracle Solaris. Solaris superseded the company's earlier SunOS in 1993, and became known for it ...

. Major features of the Crossbow project include: * Virtual NIC ( VNIC) pseudo-network interface technology * Exclusive IP zones * Bandwidth management and flow control on a per interface and per VNIC basis

Description

The Crossbow project software, combined with next generation network interfaces like xge and bge, enable

and resource control for a single system. By combining VNICs with features such a
exclusive IP zones
or the

Sun xVM Sun xVM was a product line from Sun Microsystems that addressed virtualization technology on x86 platforms. One component was discontinued before the Oracle acquisition of Sun; the remaining two continue under Oracle branding. History Sun orig ...

hypervisor, system administrators can run applications on separate

virtual machines In computing, a virtual machine (VM) is the virtualization/ emulation of a computer system. Virtual machines are based on computer architectures and provide functionality of a physical computer. Their implementations may involve specialized hard ...

to improve performance and provide security. Resource management and flow control features provide

bandwidth management Bandwidth management is the process of measuring and controlling the communications (traffic, packets) on a network link, to avoid filling the link to capacity or overfilling the link,https://www.internetsociety.org/wp-content/uploads/2017/08/BWro ...

and

for packet flows on separate virtual machines. You can allocate bandwidth amounts and manage data flows not only for the physical network interface but also for any containers configured on the interface. The Crossbow resource control features enable increased system efficiency and the ability to limit the amount of bandwidth consumed by a process or virtual machine.

Features of the Crossbow project

This section briefly describes the main features of the Crossbow network virtualization and resource control project. For further details on each feature, see the ''Oracle Solaris 11 Network Virtualization and Network Resource Management'' white paper.

VNIC

A ''VNIC'' is a pseudo network interface that is configured on top of a system's physical

network adapter A network interface controller (NIC, also known as a network interface card, network adapter, LAN adapter or physical network interface, and by similar terms) is a computer hardware component that connects a computer to a computer network. Ear ...

, also called a network interface controller (NIC). A physical interface can have more than one VNIC. Each VNIC operates like and appears to the system as a physical NIC. The individual VNIC is assigned a media access control address (

MAC address A media access control address (MAC address) is a unique identifier assigned to a network interface controller (NIC) for use as a network address in communications within a network segment. This use is common in most IEEE 802 networking techno ...

), which can be configured to a value other than the default MAC address assigned to the physical NIC. You can use the resource control features of Crossbow to allocate separate bandwidths to the individual VNICs. Moreover, you can configure a virtual machine, such as an exclusive IP zone or xVM domain on top of a VNIC.

Virtual switch

When the first VNIC is created on a system, a ''virtual switch'' is also created above the physical interface. Though not directly accessible to the user, the virtual switch provides connectivity between all VNICs configured on the same physical interface, enabling the ''virtual network in a box'' scenario. The virtual switch forwards packets between the system's VNICs. Thus, packets from an internal VNIC source never have to pass to the external network to reach an internal network destination.

Exclusive IP zones

A
exclusive IP zone
is a separate instance of a full TCP/IP stack, which functions as
non-global zone
Each exclusive IP zone is built upon a physical network interface and has its own IP-related state. IP instances support DHCPv4 and IPv6 address autoconfiguration. An exclusive IP zone can have its own routing table and routing protocols separate from the global zone on a system. Moreover, a system administrator can run the ''ifconfig'' command within an exclusive IP instance to set up a logical interface within the exclusive IP zone.

Modifications to the TCP/IP MAC layer

In Solaris, the MAC layer is part of the larger

data link layer The data link layer, or layer 2, is the second layer of the seven-layer OSI model of computer networking. This layer is the protocol layer that transfers data between nodes on a network segment across the physical layer. The data link layer p ...

of the TCP/IP protocol stack. The Crossbow project modifies this layer with several new features, including the MAC client interface. This virtual entity is a kernel data structure that is not externally visible to the system administrator. However, the MAC client interface along with the VNIC driver provides the VNIC functionality in OpenSolaris. Additionally, Crossbow modifications to the MAC layer enable a system administrator to assign a different MAC address to each VNIC on a system.

Resource management and flow control

The Crossbow project features provide bandwidth management and flow control on a per VNIC basis. A system administrator can configure different bandwidth allocations to the various VNICs on a host through the new Crossbow-related command
dladm.1m
an
flowadm.1m
Traffic through each VNIC can be classified and separated into individual flows, based on port number, destination IP address, and other parameters. These features can be used to improve system efficiency and enable differentiated services for separate VNICs.

Observability features

Standard Solaris observability tools can be used to monitor the status of exclusive IP instances, VNICs, and virtual machines running on VNICs. For example, familiar tools such as

ping Ping may refer to: Arts and entertainment Fictional characters * Ping, a domesticated Chinese duck in the illustrated book '' The Story about Ping'', first published in 1933 * Ping, a minor character in ''Seinfeld'', an NBC sitcom * Ping, a c ...

and snoop can report status on the operations of a VNIC. Additionally, th
Netstat.1m
command has been extended for Crossbow to report statistics on packet flows defined with the flowadm command.

Feature and code availability

The exclusive IP zones feature was first introduced in the

Solaris Solaris may refer to: Arts and entertainment Literature, television and film * ''Solaris'' (novel), a 1961 science fiction novel by Stanisław Lem ** ''Solaris'' (1968 film), directed by Boris Nirenburg ** ''Solaris'' (1972 film), directed by ...

10 8/07 release. The first version of the Crossbow feature set was incorporated in

2009.06. The full Crossbow feature set became part of Solaris with the 2011 release of Solaris 11. Oracle discontinued the OpenSolaris download sites after its acquisition of Sun Microsystems, but source code for Crossbow can be downloaded from the sites of the derivatives of

illumos Illumos (stylized as illumos) is a partly free and open-source Unix operating system. It is based on OpenSolaris, which was based on System V Release 4 (SVR4) and the Berkeley Software Distribution (BSD). Illumos comprises a kernel, device ...

(see ).

References

* Belgaied, Kais and Lu, Roamer
“Crossbow Hardware Resources Management and Virtualization”
* Droux, Nicolas
"Crossbow Network Virtualization Architecture"
* Rami, Rosen
Virtualization in OpenSolaris

System Administration Guide: Solaris Containers-Resource Management and Solaris Zones
* Rami, Rosen
Open Solaris lecture (slides in pdf)
* Moellenkamp, Joer

* Moellenkamp, Joer

External links

* The project page for OpenSolaris Crossbow, which includes technical specifications, documentation and latest news about the project.
dladm man pages
Links for the most current dladm man pages, which is one of the main tools used to manage virtual network resources. {{Solaris Internet Protocol based network software Sun Microsystems software