SDN and Cloud Orchestration Integrations

A10 Networks A10 Harmony Cloud Services is a portfolio of products and features that enable integration with cloud orchestration platforms and SDN network fabrics, which is critically important to the automation and orchestration of L4-7 services in a cloud data center. The aCloud Service Architecture delivers improvements in provisioning speed, business agility and total cost of ownership. This allows new initiatives to be realized, whether for software defined data centers (SDDC), SDN or for network function virtualization (NFV) goals.

Automation through integration with cloud orchestration platforms

A10's plug-in service modules enable automated L4-7 services provisioning by integrating with leading cloud orchestration platforms such as Microsoft System Center Virtual Machine Manager (SCVMM), OpenStack and VMware vCloud Director. Plug-in service modules allow dynamic enforcement of centralized tenant policy as new workloads and application services are created. Customers can benefit from automated policy inheritance that will automatically implement load balancing, security and other L4-7 application networking services. All A10 Thunder Series and AX Series appliances can be provisioned and managed (instantiated, configured, and monitored) via plug-in modules.

Save time and money. Plug-ins automate the deployment of advanced A10 solutions, reducing operational costs, manual configuration tasks and speeding time to implementation.

Centralized management and monitoring. Integration with centralized orchestration systems ensure accurate and unified configuration of application services and health monitoring parameters on A10 appliances.

Establish repeatable processes to rollout new deployments. The A10 provider plug-ins ease deployment of best-practice environments to cloud platforms. You can model repeatable templates to enable faster rollout and establish consistency.

SDN integration with A10 platforms

Integration with leading SDN controller platforms ensures that network security policies are applied on A10's physical and virtual appliances. Customer can enforce application networking and security policies on work flows entering into the virtual networks. Plug-in service modules for leading SDN vendors, including Cisco ACI, IBM SDN VE and VMware NSX, eliminate the manual configuration of L4-7, security, and networking services. Automating provisioning and management drives down operational overhead and reduces costs.

A10 plug-in service modules enable faster roll out of key services, such as advanced application delivery controllers (ADCs), server load balancing (SLB), carrier grade NAT (CGNAT) for IPv4 scaling, IPv6 migration, DNS application firewall, web application firewall (WAF), SSL Insight, Distributed Denial of Service (DDoS) protection, application access management (AAM), and more. Integrations can enable zero-touch instantiation and on-demand scaling in virtualized environments.

Overlay Networking Support

A10 ACOS platform expand services deeper into network fabric by supporting VXLAN and NVGRE overlay tunneling protocols, commonly used in VMware and Microsoft Hyper-V virtualized environments. Support for VXLAN and NVGRE provide automated enforcement of network segmentation policies by applying the appropriate tags on the traffic entering into the networks.

These overlay protocols allow operators to create scalable services architecture with end-to-end isolated network domains for tenants. Multiple isolated virtual overlay networks can be provisioned with tunnel encapsulation protocols without changing the existing network. Applications running in a virtual Layer 2 domain in one datacenter can be extended over Layer 3 networks to another datacenter regardless of IP addressing or geographical location. NVGRE and VXLAN gateway functionality on A10 devices enables virtual Layer 2 domain connectivity.

VXLAN and NVGRE gateway functionalities on A10 devices deliver benefits, including:

  • Support for large number of virtual networks over a single physical network
  • Location independent addressing for tenants
  • Support for overlapping IP addresses and VLANs across tenants
  • Lower operational complexities