2
CON8358 - Building a Private Cloud with OpenStack Oracle OpenStack for Oracle Linux Ronen Kofman Director of Product Development Oracle OpenStack September, 2014
Safe Harbor Statement The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle s products remains at the sole discretion of Oracle. 4
Program Agenda 1 2 3 4 5 About OpenStack OpenStack in the Datacenter - Requirements Design Considerations for OpenStack Oracle OpenStack for Oracle Linux Summary 5
About OpenStack 6
What is OpenStack? OpenStack is an open source, Python based, cloud operating system. It is designed to control large scale, multi tenant cloud deployments OpenStack is built through a set of distributed services which control compute, storage, network, identity management, orchestration, and much more 7
OpenStack Momentum Launched in 2010 OpenStack has grown to become one of the largest open source project ever created. Some numbers from http://www.stackalytics.com/ as of September 2014: Over 200 companies contributed code to OpenStack Almost 2700 individuals contributed code to the project Individuals Contributing Companies Contributing 1600 1400 1200 1000 800 600 400 200 0 140 120 100 80 60 40 20 0 8
Use Cases for OpenStack Today Main use cases: DevOps Transfer content from dev to ops quickly Software development Test environment, bring up and tear down complex configurations Elasticity/scalability Burst and gain large scale, shrink and reclaim resources quickly and efficiently Web Hosting Managing large number of small stateless instances Big Data, Batch processing, HPC NFV Telecommunications workload Early Adopters: Small groups Strong IT skills set can figure stuff out Fairly simple regulatory environment Early Majority Late Majority Laggards The Chasm 9
Is OpenStack Ready for The Enterprise? OR (In Other Words) Can OpenStack Manage a Standard Datacenter? 10
There is one sure way to find out! 11
Deploying OpenStack in the Datacenter 12
13
Main Requirements For a Datacenter Pets? cattle? Lots of pets Lots of cattle too There are many types of workloads in the datacenter, OpenStack must be able serve all of them High Availability - Needs to be highly available Operational Efficiency Allows for repeatable and auditable processes, simple to use Secure - Needs to meet corporate security and compliance requirements Lower Cost High cost solutions already available Scalable Can scale to hundred or thousands of servers Reliable Has to just work VS 14
Deployment Choice For The OpenStack Services Nova Compute Neutron Server Compute service Neutron plugin agent Horizon Network service Nova Network service Neutron Agents Keystone OpenStack Dashboard Glance Compute service Cinder Message Queue Database Network service Identity service Image service Block Storage service
Deploying OpenStack Services and Providing HA API node - Endpoint for all calls internal and external Downtime would mean no way to manage the environment, VMs will still be running The API Services are mostly stateless, can be protected by redundancy and load balancer or using Active/Passive methods Database Separate Node Stores all the data for all services can get busy Single point of failure, may not be recoverable if lost Needs to remain highly available Need to comply with corporate standard for databases 16
Deploying OpenStack Services and Providing HA Message Queue All management traffic passes through it Need to have sufficient network bandwidth and remain highly available Network node L3 agent proxies all traffic to the public network Performance and bandwidth concerns, high availability concern Multiple Pods/Zones for operational efficiency/availability 17
Security Considerations Isolating more sensitive nodes Database, Keystone Management traffic has to be encrypted Authentication connect to corporate LDAP server Roles - Global and local administrators per tenant Firewall and isolation Layer 2 separation inside a zone Firewall between zones 18
Design Considerations - Networking IPv6 is a requirement Network Address Translation (NAT) Required for SDN Very useful for test/dev Creates challenges for DNS services Cannot be used for production environments Separating control from data path to different networks Isolating L2 using VLANs but avoiding manual configuration on switches Routing checking options, Linux based routing may not be sufficient 19
Storage considerations Lot of pets! need persistent storage, not ephemeral Large images Legacy apps configuration is not always possible after install Bootable images Using ZFS Storage Appliance with ISCSI, Cinder plugin available Storage network is not controlled by Neutron Some challenges with LUN management and control Virtual Machine Storage NFS is the preferred option for application storage NFS security by exporting shares to specific IPs Floating IPs need remains associated to a given tenant ZFSSA NFS VM iscsi 20
Orchestration Consideration Operational efficiency faster, less human errors, no need for SRs Machine readable specification Repeatable process Reviewed and approved modules Better compliance - Accelerating the review process Design on ppt vs coding the policy Automated auditing process to validate correctness 21
Oracle OpenStack for Oracle Linux 22
Oracle OpenStack for Oracle Linux Generally Available Oracle OpenStack for Oracle Linux is now available on public-yum.oracle.com and the Unbreakable Linux Network (ULN) OpenStack from Oracle is free to download and use with the latest updates and patches Support for OpenStack is included as part of the Oracle Linux or Oracle VM Premier Support subscription Supported OpenStack Services: Nova Neutron Cinder Swift Glance Horizon Keystone Compute service Network service Block Storage service Object Storage service Image service OpenStack Dashboard Identity service 23
OpenStack With Oracle Linux and Oracle VM - Goals Help make OpenStack a first class solution for enterprise customers Work with the community to support enterprise applications in an OpenStack cloud Provide choice for managing hypervisors in Oracle Linux and Oracle VM Assure that Oracle Linux and Oracle VM can work with any OpenStack solution customers choose Work with third party vendors to offer joint solutions Included OpenStack as part of Oracle Linux Premier support subscription at no additional cost 24
Summary Today: OpenStack is still in the early adopters stage Main use cases are for homogenous stateless environment Highly skilled operators are required To become a datacenter solution OpenStack needs to be: Easier to use More reliable Able to accommodate more use cases OpenStack is in an excellent position to become the solution of choice for datacenters, we plan to help get it there. 25
26
Oracle Linux and Virtualization Showcase with OpenStack Moscone South, Booth #611 Exhibition Open from Mon 9/29 to Wed 10/1
Oracle VM Sessions @ OpenWorld 2014 Oracle VM & Oracle OpenStack for Oracle Linux Session Highlights 10:15 11:00 Monday, Sept 29 Intercontinental Hotel, Grand Ballroom B 1:30 2:15 Intercontinental Hotel, Grand Ballroom B 1:15 2:15 Nikko Hotel, Floor 3, Room Nikko1 28
Oracle VM Sessions @ Oracle OpenWorld 2014 Virtualization Sessions Highlights Time Wednesday, Oct. 01 Time Thursday, Oct. 02 10:15 11:00 Intercontinental Hotel, Union Square Floor 3 9:30 10:15 Intercontinental Hotel, Union Square Floor 3 11:30 12:15 Intercontinental Hotel, Union Square Floor 3 10:45 11:30 Intercontinental Hotel, Union Square Floor 3 4:45 5:30 Intercontinental Hotel, Grand Ballroom A 29
Oracle VM Hands-on Labs Monday, Sept 29 Wednesday, Oct. 01 10:15 11:15. Nikko Hotel, Floor 2, Room Mendocino I-II Nikko Hotel, Floor 3, Room Nikko 1 1:15 2:15 Nikko Hotel, Floor 3, Room Nikko 1 Nikko Hotel, Floor 2, Room Mendocino I-II 30
Oracle VM and Oracle OpenStack for Oracle Linux Demos In the Linux and Virtualization with OpenStack Showcase 3760 Oracle VM - integrated infrastructure choice for the cloud Oracle Linux and Virtualization with OpenStack Showcase 3767 OpenStack - Enterprise-grade Cloud with Oracle Linux and Oracle VM Oracle Linux and Virtualization with OpenStack Showcase 31
Stay Connected Join our communities, visit our websites for more information Oracle.com/virtualization @ORCL_Virtualize Facebook.com/OracleVirtualization Oracle VM Group Blogs.oracle.com/virtualization Youtube.com/virtualization Focus on Virtualization and OpenStack Download: edelivery.oracle.com/oraclevm Training: education.oracle.com/virtualization 32
33