SlideShare uma empresa Scribd logo

CloudStack Build A Cloud Day (SCaLE 2013)

Transferir como PPTX, PDF
Clayton Weise
Clayton Weise

Slides from th

Tecnologia
1 de 30
C LO U D STAC K Clayton Weise cweise@iswest.net IRC: iswcin #cloudstack on freenode
LICENSING  This presentation and it’s contents unless otherwise noted are released under a Creative Commons Attributions, Share-Alike 3.0 unported license.
H I STO RY  Original company formed - 2008 (VMOps)  Project open sourced as CloudStack – May 2010  Acquired by Citrix – July 2011  Dropped open core – August 2011  Release of Acton (3.0) – Real soon now
W H AT I S C LO U D STAC K ? Open Source Infrastructure as a Service platform that supports multiple hypervisors, complex network, firewall, load balancer and VPN configurations, high availability, in a multi-tenant environment.
W H AT D O ES I T R EA L LY D O ?  Provide separation for the varied tenants  Allocate compute resources in a deterministic manner  Expose to the end user the ability to provision various computing services in a controlled manner (VLAN allocation, firewall rules, load balancer deployment, VM creation, etc)  Manage High Availability  Massively Scalable  Permit the placement of resource limits to be applied  Measuring usage over time
M U LT I P L E H Y P E RV I S O R S U P P O RT  KVM  XenServer  Xen Cloud Platform  VMware (via vCenter)  Oracle VM  Bare Metal
M U LT I - T E N A N T S E PA R AT I O N  Largely built around abstraction from an end-user POV  No interaction with hypervisor directly  No knowledge of underlying storage  Networking separation  Every account has at least one dedicated/isolated VLAN (Tagged Networking)  Layer 3 isolation aka Security Groups for untagged networking  Option to use dedicated hardware
N E T WO R K I N G  CloudStack has a number of network models  They are generally broken down by:  Method of isolation (VLAN, Security Groups)  Physical hardware or virtual  CloudStack largely manages network infrastructure
N E T WO R K I N G  Services managed by CloudStack  DHCP  VLAN allocation  Firewall  NAT/Port forwarding  Routing  VPN  Load Balancing
N E T WO R K I N G  CloudStack can also manage physical network hardware (or the virtualized alternatives)  F5-Big IP  NetScaler  Juniper SRX  Additionally you can ‘mix and match’ some network elements as service offerings.
S EC U R I T Y G RO U P S  Traditional isolation has been via VLAN  VLANs isolate well, but have some problems scaling  Standard has a hard limit of 4096 VLANs  Hardware that can actually keep up with 4096 VLANs is VERY expensive.  Regardless people tend to not like having arbitrary limits on what they can do.  Amazon and others use layer 3 isolation (Security Groups)
S EC U R I T Y G RO U P S  Assumption of a quasi-trusted Layer 2 network  Typically will only have hypervisors directly connected to that network.  Filtering/isolation occurs at the bridge device (from a Linux perspective – think ebtables)  Deny by default
S EC U R I T Y G RO U P S
S EC U R I T Y G RO U P S
H I G H AVA I L A B I L I T Y  RFMTTR – but apparently HA looks better in marketing slicks and is used that way across the virtualization industry.  CloudStack is not a magical solution for HA – but might be a useful tool in the process to increase availability.  CloudStack will watch for HA-enabled VMs to ensure that they are up, and that the hypervisor it’s on is up – and will restart on another hypervisor if it goes down.  Redundant router
A L LO C AT I O N A LG O R I T H M S  How do you place VMs?, allocate storage, etc.  CloudStack ships with a number of options:  First Fit  Fill first  Disperse  Create your own  Tags  OS Preference
U SAG E  Not billing per se – but does give you something to bill against.  Usage stats show VM count, CPU usage, disk allocation and usage, network usage; all over time.  Lots of integration and howto’s - from Excel spreadsheets to Ubersmith, Amysta, and Cloud Portal.
H I G H L E V E L A RC H I T EC T U R A L OV E RV I E W © Copyright David Baird and licensed for reuse under this CC-BY
S ECO N DA RY STO R AG E  Used for storing templates and snapshots  Historically NFS – just added the option of object storage  Technically Swift, but Caringo, GlusterFS and others should work.  Managed by Secondary Storage VM – manages moving templates and snapshots from/to primary storage, aging snapshots out, etc.
P R I M A RY STO R AG E  In the UI we support NFS, iSCSI, and CLVM.  We can also make use of local storage  No HA, no live migration, etc.  Shared mountpoint  Anything that all the hypervisors can mount and write to.
R ES O U RC E D I V I S I O N  We have some somewhat arbitrary divisions of resources within CloudStack  Zones • Pods – Clusters
ZO N E  In general practice this is used to designate a specific geographic location.  Shares secondary storage resource across the entire zone  Single network model for the entire zone
POD  In general practice – this is used to refer a rack of machines or a row of racks.  Shares guest network
C LU ST E R  This is typically a max of 8-15 machines per cluster and homogenity is enforced:  Same hypervisor (and same version of the hypervisor)  Same CPUs  Same networking (i.e. /dev/eth0 is connected to the same network across all machines)  Primary storage is cluster specific
P L E T H O R A O F N E T WO R KS  Management Network: Where the hypervisors and management server communicate  Private Network: Default network for system VMs. (virtual router, secondary storage VM, Console proxy VM)  Public Network: The public (often internet-facing network)  Guest Network: The network that VMs are provisioned on.  Link-local network: The RFC 3927 network used for communication between hypervisor and system VMs.
M A N AG E M E N T S E RV E R  UI/API pieces are stateless (state is stored in a MySQL database.  All UI functionality is an API call
API  RESTful API interface  Unauthenticated API interace on 8096 (for localhost)  Authenticated API interface natively on port 8080  Responses in XML or JSON  http://demo4.cloudstack.org/client/api?apikey=ZRFLiXIkm AHqgRmZzdiXMfaROyK35P_dXxS517WSa9Tmy1Hg&comm and=deployVirtualMachine&serviceofferingid=1&template id=291&zoneid=1&signature=eXW%2fxfqx%2fhu%2frMreF ksVsp3cT4M%3d
UI  Go play with the UI
Q U EST I O N S  ASK!
CO N TAC T  http://cloudstack.org  Docs: https://cwiki.apache.org/CLOUDSTACK  IRC: #cloudstack on Freenode  Twitter/identi.ca: @cloudstack  Mailing Lists  https://lists.sourceforge.net/mailman/listinfo/cloudstack-users  https://lists.sourceforge.net/mailman/listinfo/cloudstack-devel  Forums

Recomendados

CloudStack NYC Meetup: Networking
CloudStack NYC Meetup: NetworkingCloudStack NYC Meetup: Networking
CloudStack NYC Meetup: NetworkingJeff Moody
 
Storage
StorageStorage
StorageFahad Noaman
 
Storage area network
Storage area networkStorage area network
Storage area networkNeha Agarwal
 
Netapp Deduplication concepts
Netapp Deduplication conceptsNetapp Deduplication concepts
Netapp Deduplication conceptsSaroj Sahu
 
Beowulf cluster Detailed Explanation
Beowulf cluster Detailed ExplanationBeowulf cluster Detailed Explanation
Beowulf cluster Detailed ExplanationSaurabh Upadhyay
 
Jaunty 9.04 Server Features
Jaunty 9.04 Server FeaturesJaunty 9.04 Server Features
Jaunty 9.04 Server Featuresdantrevino
 
Introduction to open stack
Introduction to open stackIntroduction to open stack
Introduction to open stackKanagaraj M
 
Introduction to OpenStack.
Introduction to OpenStack.Introduction to OpenStack.
Introduction to OpenStack.Eggy Cheng
 

Recomendados

CloudStack NYC Meetup: Networking
CloudStack NYC Meetup: NetworkingCloudStack NYC Meetup: Networking
CloudStack NYC Meetup: NetworkingJeff Moody
 
Storage
StorageStorage
StorageFahad Noaman
 
Storage area network
Storage area networkStorage area network
Storage area networkNeha Agarwal
 
Netapp Deduplication concepts
Netapp Deduplication conceptsNetapp Deduplication concepts
Netapp Deduplication conceptsSaroj Sahu
 
Beowulf cluster Detailed Explanation
Beowulf cluster Detailed ExplanationBeowulf cluster Detailed Explanation
Beowulf cluster Detailed ExplanationSaurabh Upadhyay
 
Jaunty 9.04 Server Features
Jaunty 9.04 Server FeaturesJaunty 9.04 Server Features
Jaunty 9.04 Server Featuresdantrevino
 
Introduction to open stack
Introduction to open stackIntroduction to open stack
Introduction to open stackKanagaraj M
 
Introduction to OpenStack.
Introduction to OpenStack.Introduction to OpenStack.
Introduction to OpenStack.Eggy Cheng
 
Demystifying Networking: Data Center Networking Trends 2017
Demystifying Networking: Data Center Networking Trends 2017Demystifying Networking: Data Center Networking Trends 2017
Demystifying Networking: Data Center Networking Trends 2017Cumulus Networks
 
Comparison between VMware and Open Stack Cloud
Comparison between VMware and Open Stack CloudComparison between VMware and Open Stack Cloud
Comparison between VMware and Open Stack CloudSaeed Siddik
 
CloudSmartz Layer 2 Direct Connect [Factsheet] | Smarter Transformation
CloudSmartz Layer 2 Direct Connect [Factsheet] | Smarter TransformationCloudSmartz Layer 2 Direct Connect [Factsheet] | Smarter Transformation
CloudSmartz Layer 2 Direct Connect [Factsheet] | Smarter TransformationCloudSmartz
 
Storage Area Network interview Questions
Storage Area Network interview QuestionsStorage Area Network interview Questions
Storage Area Network interview QuestionsSandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Unified Underlay and Overlay SDNs for OpenStack Clouds
Unified Underlay and Overlay SDNs for OpenStack CloudsUnified Underlay and Overlay SDNs for OpenStack Clouds
Unified Underlay and Overlay SDNs for OpenStack CloudsPLUMgrid
 
Drive into calico architecture
Drive into calico architectureDrive into calico architecture
Drive into calico architectureAnirban Sen Chowdhary
 
Linux network namespaces
Linux network namespacesLinux network namespaces
Linux network namespacesMike Wilson
 
Introduction to san ( storage area networks )
Introduction to san ( storage area networks )Introduction to san ( storage area networks )
Introduction to san ( storage area networks )sagaroceanic11
 
在 AWS 上運行任務關鍵工作負載
在 AWS 上運行任務關鍵工作負載在 AWS 上運行任務關鍵工作負載
在 AWS 上運行任務關鍵工作負載Amazon Web Services
 
Storage area network
Storage area networkStorage area network
Storage area networkSyed Ubaid Ali Jafri
 
Hpc to OpenStack: Our journey
Hpc to OpenStack: Our journeyHpc to OpenStack: Our journey
Hpc to OpenStack: Our journeyArif Ali
 
At the Crossroads of HPC and Cloud Computing with Openstack
At the Crossroads of HPC and Cloud Computing with OpenstackAt the Crossroads of HPC and Cloud Computing with Openstack
At the Crossroads of HPC and Cloud Computing with OpenstackRyan Aydelott
 
Linux12 clustering onlinux
Linux12 clustering onlinuxLinux12 clustering onlinux
Linux12 clustering onlinuxJainul Musani
 
Meetup 23 - 02 - OVN - The future of networking in OpenStack
Meetup 23 - 02 - OVN - The future of networking in OpenStackMeetup 23 - 02 - OVN - The future of networking in OpenStack
Meetup 23 - 02 - OVN - The future of networking in OpenStackVietnam Open Infrastructure User Group
 
Overlay networks ppt
Overlay networks pptOverlay networks ppt
Overlay networks pptAkshay Hegde
 
Openstack deployment-with ubuntu
Openstack deployment-with ubuntuOpenstack deployment-with ubuntu
Openstack deployment-with ubuntuFrancisco Gonçalves
 
OpenStack Quantum Intro (OS Meetup 3-26-12)
OpenStack Quantum Intro (OS Meetup 3-26-12)OpenStack Quantum Intro (OS Meetup 3-26-12)
OpenStack Quantum Intro (OS Meetup 3-26-12)Dan Wendlandt
 
Open Hardware for All - Webinar March 25, 2015
Open Hardware for All - Webinar March 25, 2015Open Hardware for All - Webinar March 25, 2015
Open Hardware for All - Webinar March 25, 2015Cumulus Networks
 
Opening the Path to Technical Excellence
Opening the Path to Technical ExcellenceOpening the Path to Technical Excellence
Opening the Path to Technical ExcellenceNETWAYS
 
Open stack networking_101_update_2014-os-meetups
Open stack networking_101_update_2014-os-meetupsOpen stack networking_101_update_2014-os-meetups
Open stack networking_101_update_2014-os-meetupsyfauser
 
How to build a sustainable online store in nigeria
How to build a sustainable online store in nigeriaHow to build a sustainable online store in nigeria
How to build a sustainable online store in nigeriaFortPlus Solutions
 
Comm430week 3
Comm430week 3Comm430week 3
Comm430week 3kmirvis86
 

Mais conteúdo relacionado

Mais procurados

Demystifying Networking: Data Center Networking Trends 2017
Demystifying Networking: Data Center Networking Trends 2017Demystifying Networking: Data Center Networking Trends 2017
Demystifying Networking: Data Center Networking Trends 2017Cumulus Networks
 
Comparison between VMware and Open Stack Cloud
Comparison between VMware and Open Stack CloudComparison between VMware and Open Stack Cloud
Comparison between VMware and Open Stack CloudSaeed Siddik
 
CloudSmartz Layer 2 Direct Connect [Factsheet] | Smarter Transformation
CloudSmartz Layer 2 Direct Connect [Factsheet] | Smarter TransformationCloudSmartz Layer 2 Direct Connect [Factsheet] | Smarter Transformation
CloudSmartz Layer 2 Direct Connect [Factsheet] | Smarter TransformationCloudSmartz
 
Unified Underlay and Overlay SDNs for OpenStack Clouds
Unified Underlay and Overlay SDNs for OpenStack CloudsUnified Underlay and Overlay SDNs for OpenStack Clouds
Unified Underlay and Overlay SDNs for OpenStack CloudsPLUMgrid
 
Linux network namespaces
Linux network namespacesLinux network namespaces
Linux network namespacesMike Wilson
 
Introduction to san ( storage area networks )
Introduction to san ( storage area networks )Introduction to san ( storage area networks )
Introduction to san ( storage area networks )sagaroceanic11
 
在 AWS 上運行任務關鍵工作負載
在 AWS 上運行任務關鍵工作負載在 AWS 上運行任務關鍵工作負載
在 AWS 上運行任務關鍵工作負載Amazon Web Services
 
Hpc to OpenStack: Our journey
Hpc to OpenStack: Our journeyHpc to OpenStack: Our journey
Hpc to OpenStack: Our journeyArif Ali
 
At the Crossroads of HPC and Cloud Computing with Openstack
At the Crossroads of HPC and Cloud Computing with OpenstackAt the Crossroads of HPC and Cloud Computing with Openstack
At the Crossroads of HPC and Cloud Computing with OpenstackRyan Aydelott
 
Linux12 clustering onlinux
Linux12 clustering onlinuxLinux12 clustering onlinux
Linux12 clustering onlinuxJainul Musani
 
Overlay networks ppt
Overlay networks pptOverlay networks ppt
Overlay networks pptAkshay Hegde
 
OpenStack Quantum Intro (OS Meetup 3-26-12)
OpenStack Quantum Intro (OS Meetup 3-26-12)OpenStack Quantum Intro (OS Meetup 3-26-12)
OpenStack Quantum Intro (OS Meetup 3-26-12)Dan Wendlandt
 
Open Hardware for All - Webinar March 25, 2015
Open Hardware for All - Webinar March 25, 2015Open Hardware for All - Webinar March 25, 2015
Open Hardware for All - Webinar March 25, 2015Cumulus Networks
 
Opening the Path to Technical Excellence
Opening the Path to Technical ExcellenceOpening the Path to Technical Excellence
Opening the Path to Technical ExcellenceNETWAYS
 
Open stack networking_101_update_2014-os-meetups
Open stack networking_101_update_2014-os-meetupsOpen stack networking_101_update_2014-os-meetups
Open stack networking_101_update_2014-os-meetupsyfauser
 

Mais procurados (20)

Demystifying Networking: Data Center Networking Trends 2017
Demystifying Networking: Data Center Networking Trends 2017Demystifying Networking: Data Center Networking Trends 2017
Demystifying Networking: Data Center Networking Trends 2017
 
Comparison between VMware and Open Stack Cloud
Comparison between VMware and Open Stack CloudComparison between VMware and Open Stack Cloud
Comparison between VMware and Open Stack Cloud
 
CloudSmartz Layer 2 Direct Connect [Factsheet] | Smarter Transformation
CloudSmartz Layer 2 Direct Connect [Factsheet] | Smarter TransformationCloudSmartz Layer 2 Direct Connect [Factsheet] | Smarter Transformation
CloudSmartz Layer 2 Direct Connect [Factsheet] | Smarter Transformation
 
Storage Area Network interview Questions
Storage Area Network interview QuestionsStorage Area Network interview Questions
Storage Area Network interview Questions
 
Unified Underlay and Overlay SDNs for OpenStack Clouds
Unified Underlay and Overlay SDNs for OpenStack CloudsUnified Underlay and Overlay SDNs for OpenStack Clouds
Unified Underlay and Overlay SDNs for OpenStack Clouds
 
Drive into calico architecture
Drive into calico architectureDrive into calico architecture
Drive into calico architecture
 
Linux network namespaces
Linux network namespacesLinux network namespaces
Linux network namespaces
 
Introduction to san ( storage area networks )
Introduction to san ( storage area networks )Introduction to san ( storage area networks )
Introduction to san ( storage area networks )
 
在 AWS 上運行任務關鍵工作負載
在 AWS 上運行任務關鍵工作負載在 AWS 上運行任務關鍵工作負載
在 AWS 上運行任務關鍵工作負載
 
Storage area network
Storage area networkStorage area network
Storage area network
 
Hpc to OpenStack: Our journey
Hpc to OpenStack: Our journeyHpc to OpenStack: Our journey
Hpc to OpenStack: Our journey
 
At the Crossroads of HPC and Cloud Computing with Openstack
At the Crossroads of HPC and Cloud Computing with OpenstackAt the Crossroads of HPC and Cloud Computing with Openstack
At the Crossroads of HPC and Cloud Computing with Openstack
 
Linux12 clustering onlinux
Linux12 clustering onlinuxLinux12 clustering onlinux
Linux12 clustering onlinux
 
Meetup 23 - 02 - OVN - The future of networking in OpenStack
Meetup 23 - 02 - OVN - The future of networking in OpenStackMeetup 23 - 02 - OVN - The future of networking in OpenStack
Meetup 23 - 02 - OVN - The future of networking in OpenStack
 
Overlay networks ppt
Overlay networks pptOverlay networks ppt
Overlay networks ppt
 
Openstack deployment-with ubuntu
Openstack deployment-with ubuntuOpenstack deployment-with ubuntu
Openstack deployment-with ubuntu
 
OpenStack Quantum Intro (OS Meetup 3-26-12)
OpenStack Quantum Intro (OS Meetup 3-26-12)OpenStack Quantum Intro (OS Meetup 3-26-12)
OpenStack Quantum Intro (OS Meetup 3-26-12)
 
Open Hardware for All - Webinar March 25, 2015
Open Hardware for All - Webinar March 25, 2015Open Hardware for All - Webinar March 25, 2015
Open Hardware for All - Webinar March 25, 2015
 
Opening the Path to Technical Excellence
Opening the Path to Technical ExcellenceOpening the Path to Technical Excellence
Opening the Path to Technical Excellence
 
Open stack networking_101_update_2014-os-meetups
Open stack networking_101_update_2014-os-meetupsOpen stack networking_101_update_2014-os-meetups
Open stack networking_101_update_2014-os-meetups
 

Destaque

How to build a sustainable online store in nigeria
How to build a sustainable online store in nigeriaHow to build a sustainable online store in nigeria
How to build a sustainable online store in nigeriaFortPlus Solutions
 
Comm430week 3
Comm430week 3Comm430week 3
Comm430week 3kmirvis86
 
Team1 conflict resolution and reconciliation
Team1 conflict resolution and reconciliationTeam1 conflict resolution and reconciliation
Team1 conflict resolution and reconciliationjckeefe
 
CloudStack In Production
CloudStack In ProductionCloudStack In Production
CloudStack In ProductionClayton Weise
 

Destaque (8)

How to build a sustainable online store in nigeria
How to build a sustainable online store in nigeriaHow to build a sustainable online store in nigeria
How to build a sustainable online store in nigeria
 
Comm430week 3
Comm430week 3Comm430week 3
Comm430week 3
 
Fkhd presentation aug 2013
Fkhd presentation aug 2013Fkhd presentation aug 2013
Fkhd presentation aug 2013
 
Concurso (1)
Concurso (1)Concurso (1)
Concurso (1)
 
Esructura techumbre
Esructura techumbreEsructura techumbre
Esructura techumbre
 
Team1 conflict resolution and reconciliation
Team1 conflict resolution and reconciliationTeam1 conflict resolution and reconciliation
Team1 conflict resolution and reconciliation
 
CloudStack In Production
CloudStack In ProductionCloudStack In Production
CloudStack In Production
 
Ajedrez
AjedrezAjedrez
Ajedrez
 

Semelhante a CloudStack Build A Cloud Day (SCaLE 2013)

CloudStack - LinuxFest NorthWest
CloudStack - LinuxFest NorthWestCloudStack - LinuxFest NorthWest
CloudStack - LinuxFest NorthWestke4qqq
 
Automating Your CloudStack Cloud with Puppet
Automating Your CloudStack Cloud with PuppetAutomating Your CloudStack Cloud with Puppet
Automating Your CloudStack Cloud with Puppetbuildacloud
 
Automating CloudStack with Puppet - David Nalley
Automating CloudStack with Puppet - David NalleyAutomating CloudStack with Puppet - David Nalley
Automating CloudStack with Puppet - David NalleyPuppet
 
An Intrudction to OpenStack 2017
An Intrudction to OpenStack 2017An Intrudction to OpenStack 2017
An Intrudction to OpenStack 2017Haim Ateya
 
Silicon Valley CloudStack User Group - Introduction to Apache CloudStack
Silicon Valley CloudStack User Group - Introduction to Apache CloudStackSilicon Valley CloudStack User Group - Introduction to Apache CloudStack
Silicon Valley CloudStack User Group - Introduction to Apache CloudStackShapeBlue
 
Linux Tag 2014 OpenStack Networking
Linux Tag 2014 OpenStack NetworkingLinux Tag 2014 OpenStack Networking
Linux Tag 2014 OpenStack Networkingyfauser
 
Build a Cloud Day - CloudStack
Build a Cloud Day - CloudStackBuild a Cloud Day - CloudStack
Build a Cloud Day - CloudStackke4qqq
 
Build a Cloud Day - CloudStack
Build a Cloud Day - CloudStackBuild a Cloud Day - CloudStack
Build a Cloud Day - CloudStackke4qqq
 
Getting Started with Apache CloudStack
Getting Started with Apache CloudStackGetting Started with Apache CloudStack
Getting Started with Apache CloudStackJoe Brockmeier
 
Openstack_administration
Openstack_administrationOpenstack_administration
Openstack_administrationAshish Sharma
 
Deploying Apache CloudStack from API to UI
Deploying Apache CloudStack from API to UIDeploying Apache CloudStack from API to UI
Deploying Apache CloudStack from API to UIJoe Brockmeier
 
OSDC 2014: Yves Fauser - OpenStack Networking (Neutron) - Overview of network...
OSDC 2014: Yves Fauser - OpenStack Networking (Neutron) - Overview of network...OSDC 2014: Yves Fauser - OpenStack Networking (Neutron) - Overview of network...
OSDC 2014: Yves Fauser - OpenStack Networking (Neutron) - Overview of network...NETWAYS
 
Osdc2014 openstack networking yves_fauser
Osdc2014 openstack networking yves_fauserOsdc2014 openstack networking yves_fauser
Osdc2014 openstack networking yves_fauseryfauser
 
Neutron behind the scenes
Neutron behind the scenesNeutron behind the scenes
Neutron behind the scenesinbroker
 
Zaccone Carmelo - IPv6 and security from a user’s point of view
Zaccone Carmelo - IPv6 and security from a user’s point of view Zaccone Carmelo - IPv6 and security from a user’s point of view
Zaccone Carmelo - IPv6 and security from a user’s point of view IPv6 Conference
 

Semelhante a CloudStack Build A Cloud Day (SCaLE 2013) (20)

vBACD - Deploying Infrastructure-as-a-Service with CloudStack - 2/28
vBACD - Deploying Infrastructure-as-a-Service with CloudStack - 2/28vBACD - Deploying Infrastructure-as-a-Service with CloudStack - 2/28
vBACD - Deploying Infrastructure-as-a-Service with CloudStack - 2/28
 
CloudStack - LinuxFest NorthWest
CloudStack - LinuxFest NorthWestCloudStack - LinuxFest NorthWest
CloudStack - LinuxFest NorthWest
 
Txlf2012
Txlf2012Txlf2012
Txlf2012
 
Automating Your CloudStack Cloud with Puppet
Automating Your CloudStack Cloud with PuppetAutomating Your CloudStack Cloud with Puppet
Automating Your CloudStack Cloud with Puppet
 
Automating CloudStack with Puppet - David Nalley
Automating CloudStack with Puppet - David NalleyAutomating CloudStack with Puppet - David Nalley
Automating CloudStack with Puppet - David Nalley
 
An Intrudction to OpenStack 2017
An Intrudction to OpenStack 2017An Intrudction to OpenStack 2017
An Intrudction to OpenStack 2017
 
OpenStack on SmartOS
OpenStack on SmartOSOpenStack on SmartOS
OpenStack on SmartOS
 
Silicon Valley CloudStack User Group - Introduction to Apache CloudStack
Silicon Valley CloudStack User Group - Introduction to Apache CloudStackSilicon Valley CloudStack User Group - Introduction to Apache CloudStack
Silicon Valley CloudStack User Group - Introduction to Apache CloudStack
 
Linux Tag 2014 OpenStack Networking
Linux Tag 2014 OpenStack NetworkingLinux Tag 2014 OpenStack Networking
Linux Tag 2014 OpenStack Networking
 
Build a Cloud Day - CloudStack
Build a Cloud Day - CloudStackBuild a Cloud Day - CloudStack
Build a Cloud Day - CloudStack
 
Build a Cloud Day - CloudStack
Build a Cloud Day - CloudStackBuild a Cloud Day - CloudStack
Build a Cloud Day - CloudStack
 
Getting Started with Apache CloudStack
Getting Started with Apache CloudStackGetting Started with Apache CloudStack
Getting Started with Apache CloudStack
 
Openstack_administration
Openstack_administrationOpenstack_administration
Openstack_administration
 
Apache CloudStack from API to UI
Apache CloudStack from API to UIApache CloudStack from API to UI
Apache CloudStack from API to UI
 
CloudStack and SDN
CloudStack and SDNCloudStack and SDN
CloudStack and SDN
 
Deploying Apache CloudStack from API to UI
Deploying Apache CloudStack from API to UIDeploying Apache CloudStack from API to UI
Deploying Apache CloudStack from API to UI
 
OSDC 2014: Yves Fauser - OpenStack Networking (Neutron) - Overview of network...
OSDC 2014: Yves Fauser - OpenStack Networking (Neutron) - Overview of network...OSDC 2014: Yves Fauser - OpenStack Networking (Neutron) - Overview of network...
OSDC 2014: Yves Fauser - OpenStack Networking (Neutron) - Overview of network...
 
Osdc2014 openstack networking yves_fauser
Osdc2014 openstack networking yves_fauserOsdc2014 openstack networking yves_fauser
Osdc2014 openstack networking yves_fauser
 
Neutron behind the scenes
Neutron behind the scenesNeutron behind the scenes
Neutron behind the scenes
 
Zaccone Carmelo - IPv6 and security from a user’s point of view
Zaccone Carmelo - IPv6 and security from a user’s point of view Zaccone Carmelo - IPv6 and security from a user’s point of view
Zaccone Carmelo - IPv6 and security from a user’s point of view
 

Último

Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rick Flair
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLScyllaDB
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxLoriGlavin3
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionDilum Bandara
 
Time Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsTime Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsNathaniel Shimoni
 
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESSALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESmohitsingh558521
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteDianaGray10
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024Stephanie Beckett
 
Generative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information DevelopersGenerative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information DevelopersRaghuram Pandurangan
 
Artificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxArtificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxhariprasad279825
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.Curtis Poe
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenHervé Boutemy
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr BaganFwdays
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxLoriGlavin3
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 

Último (20)

Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQL
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An Introduction
 
Time Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsTime Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directions
 
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESSALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test Suite
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024
 
Generative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information DevelopersGenerative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information Developers
 
Artificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxArtificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptx
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache Maven
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024
 

CloudStack Build A Cloud Day (SCaLE 2013)

  • 1. C LO U D STAC K Clayton Weise cweise@iswest.net IRC: iswcin #cloudstack on freenode
  • 2. LICENSING  This presentation and it’s contents unless otherwise noted are released under a Creative Commons Attributions, Share-Alike 3.0 unported license.
  • 3. H I STO RY  Original company formed - 2008 (VMOps)  Project open sourced as CloudStack – May 2010  Acquired by Citrix – July 2011  Dropped open core – August 2011  Release of Acton (3.0) – Real soon now
  • 4. W H AT I S C LO U D STAC K ? Open Source Infrastructure as a Service platform that supports multiple hypervisors, complex network, firewall, load balancer and VPN configurations, high availability, in a multi-tenant environment.
  • 5. W H AT D O ES I T R EA L LY D O ?  Provide separation for the varied tenants  Allocate compute resources in a deterministic manner  Expose to the end user the ability to provision various computing services in a controlled manner (VLAN allocation, firewall rules, load balancer deployment, VM creation, etc)  Manage High Availability  Massively Scalable  Permit the placement of resource limits to be applied  Measuring usage over time
  • 6. M U LT I P L E H Y P E RV I S O R S U P P O RT  KVM  XenServer  Xen Cloud Platform  VMware (via vCenter)  Oracle VM  Bare Metal
  • 7. M U LT I - T E N A N T S E PA R AT I O N  Largely built around abstraction from an end-user POV  No interaction with hypervisor directly  No knowledge of underlying storage  Networking separation  Every account has at least one dedicated/isolated VLAN (Tagged Networking)  Layer 3 isolation aka Security Groups for untagged networking  Option to use dedicated hardware
  • 8. N E T WO R K I N G  CloudStack has a number of network models  They are generally broken down by:  Method of isolation (VLAN, Security Groups)  Physical hardware or virtual  CloudStack largely manages network infrastructure
  • 9. N E T WO R K I N G  Services managed by CloudStack  DHCP  VLAN allocation  Firewall  NAT/Port forwarding  Routing  VPN  Load Balancing
  • 10. N E T WO R K I N G  CloudStack can also manage physical network hardware (or the virtualized alternatives)  F5-Big IP  NetScaler  Juniper SRX  Additionally you can ‘mix and match’ some network elements as service offerings.
  • 11. S EC U R I T Y G RO U P S  Traditional isolation has been via VLAN  VLANs isolate well, but have some problems scaling  Standard has a hard limit of 4096 VLANs  Hardware that can actually keep up with 4096 VLANs is VERY expensive.  Regardless people tend to not like having arbitrary limits on what they can do.  Amazon and others use layer 3 isolation (Security Groups)
  • 12. S EC U R I T Y G RO U P S  Assumption of a quasi-trusted Layer 2 network  Typically will only have hypervisors directly connected to that network.  Filtering/isolation occurs at the bridge device (from a Linux perspective – think ebtables)  Deny by default
  • 13. S EC U R I T Y G RO U P S
  • 14. S EC U R I T Y G RO U P S
  • 15. H I G H AVA I L A B I L I T Y  RFMTTR – but apparently HA looks better in marketing slicks and is used that way across the virtualization industry.  CloudStack is not a magical solution for HA – but might be a useful tool in the process to increase availability.  CloudStack will watch for HA-enabled VMs to ensure that they are up, and that the hypervisor it’s on is up – and will restart on another hypervisor if it goes down.  Redundant router
  • 16. A L LO C AT I O N A LG O R I T H M S  How do you place VMs?, allocate storage, etc.  CloudStack ships with a number of options:  First Fit  Fill first  Disperse  Create your own  Tags  OS Preference
  • 17. U SAG E  Not billing per se – but does give you something to bill against.  Usage stats show VM count, CPU usage, disk allocation and usage, network usage; all over time.  Lots of integration and howto’s - from Excel spreadsheets to Ubersmith, Amysta, and Cloud Portal.
  • 18. H I G H L E V E L A RC H I T EC T U R A L OV E RV I E W © Copyright David Baird and licensed for reuse under this CC-BY
  • 19. S ECO N DA RY STO R AG E  Used for storing templates and snapshots  Historically NFS – just added the option of object storage  Technically Swift, but Caringo, GlusterFS and others should work.  Managed by Secondary Storage VM – manages moving templates and snapshots from/to primary storage, aging snapshots out, etc.
  • 20. P R I M A RY STO R AG E  In the UI we support NFS, iSCSI, and CLVM.  We can also make use of local storage  No HA, no live migration, etc.  Shared mountpoint  Anything that all the hypervisors can mount and write to.
  • 21. R ES O U RC E D I V I S I O N  We have some somewhat arbitrary divisions of resources within CloudStack  Zones • Pods – Clusters
  • 22. ZO N E  In general practice this is used to designate a specific geographic location.  Shares secondary storage resource across the entire zone  Single network model for the entire zone
  • 23. POD  In general practice – this is used to refer a rack of machines or a row of racks.  Shares guest network
  • 24. C LU ST E R  This is typically a max of 8-15 machines per cluster and homogenity is enforced:  Same hypervisor (and same version of the hypervisor)  Same CPUs  Same networking (i.e. /dev/eth0 is connected to the same network across all machines)  Primary storage is cluster specific
  • 25. P L E T H O R A O F N E T WO R KS  Management Network: Where the hypervisors and management server communicate  Private Network: Default network for system VMs. (virtual router, secondary storage VM, Console proxy VM)  Public Network: The public (often internet-facing network)  Guest Network: The network that VMs are provisioned on.  Link-local network: The RFC 3927 network used for communication between hypervisor and system VMs.
  • 26. M A N AG E M E N T S E RV E R  UI/API pieces are stateless (state is stored in a MySQL database.  All UI functionality is an API call
  • 27. API  RESTful API interface  Unauthenticated API interace on 8096 (for localhost)  Authenticated API interface natively on port 8080  Responses in XML or JSON  http://demo4.cloudstack.org/client/api?apikey=ZRFLiXIkm AHqgRmZzdiXMfaROyK35P_dXxS517WSa9Tmy1Hg&comm and=deployVirtualMachine&serviceofferingid=1&template id=291&zoneid=1&signature=eXW%2fxfqx%2fhu%2frMreF ksVsp3cT4M%3d
  • 28. UI  Go play with the UI
  • 29. Q U EST I O N S  ASK!
  • 30. CO N TAC T  http://cloudstack.org  Docs: https://cwiki.apache.org/CLOUDSTACK  IRC: #cloudstack on Freenode  Twitter/identi.ca: @cloudstack  Mailing Lists  https://lists.sourceforge.net/mailman/listinfo/cloudstack-users  https://lists.sourceforge.net/mailman/listinfo/cloudstack-devel  Forums