Skip to main content

Neutron (OSS Project)

Neutron (OSS Project) is the OpenStack Software Defined Networking (SDN) service that provides programmable networking connectivity and IP address management for other OpenStack services.

  • Logical networking service for OpenStack clouds (software-defined networking)
  • Management of virtual networks, subnets, and ports (network virtualization)
  • IP address management and allocation for cloud workloads (IP address management)
  • Plugin and driver model for diverse networking backends and technologies (network integration)
  • API-based control plane for creating and configuring network connectivity for compute instances and services (infrastructure automation)

More About Neutron (OSS Project)

Neutron (OSS Project) is the networking service within the OpenStack cloud computing platform, responsible for providing an Application Programming Interface (API) and implementation for SDN (software-defined networking) in OpenStack-based private and public clouds. It addresses the problem of multi-tenant network connectivity, isolation, and IP management for virtual machines, containers, and other resources managed by OpenStack services.

Neutron exposes a RESTful API (infrastructure automation) that allows operators, administrators, and higher-level OpenStack services to define and manage logical networks, subnets, and ports. Through this API, users can create tenant-isolated virtual networks, assign IP address ranges through subnets, and attach virtual network interface ports to compute instances. Neutron also includes capabilities for managing routers, floating Intrusion Prevention System (IPS), and security groups, enabling Layer 3 routing and basic firewall-style controls (network security) within an OpenStack deployment.

The project is structured with a core service and an extensible plugin and driver architecture (platform extensibility). The core service provides the API and common abstractions, while plugins integrate with a range of networking technologies and backends such as virtual switches, hardware switches, overlays, and other networking platforms, as documented in the official Neutron configuration guides. This architecture allows cloud operators to select and configure backends that match their data center networking environment, including support for different encapsulation formats, VLAN-based isolation, and other network segmentation techniques (network virtualization).

In enterprise and institutional environments, Neutron is deployed as part of an OpenStack control plane to deliver tenant networking for Infrastructure-as-a-Service (IaaS) platforms (cloud infrastructure). It runs alongside services such as compute and block storage, providing the connectivity layer that links instances, storage endpoints, and external networks. Operators use Neutron to configure provider networks that Marketing Automation Platform (MAP) to physical data center networks, as well as tenant networks that deliver isolation between projects and workloads. Integration with identity, compute scheduling, and orchestration services allows Neutron-managed networks to be created and consumed through higher-level workflows.

Neutron supports a range of extensions and advanced services as defined in its official documentation, including features such as load balancing, firewalls, and virtual private networks where implemented by compatible drivers (network services). These capabilities are exposed through additional API resources or service plugins, providing a consistent control plane while delegating data plane behavior to the configured backend components. This extensible model enables operators to align Neutron’s behavior with organizational policies, network hardware, and security requirements.

From a directory and taxonomy perspective, Neutron is categorized as an open-source cloud networking service that delivers SDN, virtual network management, IP address management, and related network services for OpenStack-based infrastructure (cloud networking). It functions as the primary network control and abstraction layer within OpenStack deployments, offering programmable network constructs and integration points for a broad set of data center and carrier networking technologies.