CON8358 - Building a Private Cloud with OpenStack Oracle’s OpenStack for Oracle Linux and Oracle VM Ronen Kofman Director of Product Development Oracle

CON8358 - Building a Private Cloud with OpenStackOracle’s OpenStack for Oracle Linux and Oracle VM

Ronen KofmanDirector of Product DevelopmentOracle OpenStackSeptember, 2014

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. |

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Oracle Confidential – Internal/Restricted/Highly Restricted 3

Safe Harbor StatementThe following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle.


Program Agenda

About OpenStack

Oracle OpenStack for Oracle Linux

OpenStack in the Datacenter - Requirements

Design Considerations for OpenStack

Summary

1

2

3

4

5


Introduction to OpenStack


What is OpenStack?• OpenStack is an open source, Python based, cloud operating system. It is

designed to control large scale, multi tenant cloud deployments• OpenStack is built through a set of distributed services which control

compute, storage, network, identity management, orchestration, and much more

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | 7

OpenStack Momentum• Launched in 2010 OpenStack has grown to become one of the largest open source

project ever launched. Some numbers from http://www.stackalytics.com/ as of September 2014:– Over 200 companies contributed code to date– Almost 2700 individuals contributed to OpenStack

Austin Bexar Cactus Diablo Essex Folsom Grizzly Havana Icehouse Juno0

20

40

60

80

100

120

140

Companies Contributing

Austin Bexar Cactus Diablo Essex Folsom Grizzly HavanaIcehouse Juno0

200

400

600

800

1000

1200

1400

1600

Individuals Contributing


Use Cases for OpenStack Today• Main use cases:– DevOps – important to move content from dev to ops quickly– Software development – test environment, ability to bring up and tear down sophisticated topologies

and configuration– Elasticity/scalability – users who need to burst and gain large scale quickly– Batch processing/HPC– Web companies –– NFV

• Early Adopters:– Small groups– Strong IT skills set can “figure stuff out”– Fairly simple regulatory environment


Is OpenStack Ready for Common Enterprise?


OpenStack in the Datacenter - Requirements


Main Requirements• There are many types of workloads in the datacenter, solution must serve all of them

• Pets or cattle? Lots of pets, lots of cattle too

• Portability – environment has to be portable

• Solution needs to be highly available and reduce/eliminate single points of failure

• Create an efficient system to allow repeatable and auditable processes

• Needs to meet corporate security and compliance requirements

• Ability to charge back the LOBs

• Support for IPv6


Network service

Neutron Server

Identity service

Keystone

Deploying OpenStack Services

Database

OpenStack Dashboard

Horizon

Image service

Glance

Network service

Neutron Agents

Compute service

Nova

Block Storage service

Cinder

Message Queue

Compute service

Nova Compute

Network service

Neutron plugin agent


Deploying OpenStack Services and Providing HA• API node - – Endpoint for all calls internal and external – Downtime would mean no way to manage the environment, VMs still running fine.–Mostly stateless can be protected by redundancy and load balancer– Keep keystone separate – more sensitive data

• Database – – Stores all the data for all services can get busy– Single point of failure – not recoverable if lost– Requires high availability– Need to comply with corporate standard for databases


Deploying OpenStack Services and Providing HA• Message Queue– All management traffic passes through it– Need to have network bandwidth and high availability

• Network node– L3 agent proxies all traffic outside to the public network– Performance and bandwidth concerns, high availability concern

• Multiple Pods/Zones for operational efficiency/availability


Security Considerations• Isolating more sensitive nodes – Database , Keystone• Management traffic has to be encrypted – reverse proxy on the server• Authentication – connect to corporate LDAP• Roles - hierarchical • Layer 2 separation inside an operational zone


Design Considerations - Networking• IPv6 is a requirement• NAT cannot be used for production environment but is very useful for

test/dev• Separating control from data path • Vlan – don’t want any kind of manual config on the switches. Mechanism

drivers in ML2 using Nexus 9k. • Routing – Looking to do on real router not linux


Storage considerations• Lot of pets! Really need persistent storage, not ephemeral– Size of images

– Availability

– Legacy apps configuration is not always possible after install

• Storage solution ZFSSA with ISCSI

• Single initiator group needs to be an initiator group for each server

• ZFS - When attach a volume to an instance the volume is connected to all servers and refresh does not occur on all servers at all times.

• Storage network is on the side not through Neutron.

• For application storage all is NFS – connecting the storage to the Neutron public network need to look at Manila

• NFS security by exporting shares to specific IPs – in case of NAT NFS will be exporting to floating IP need to assure floating IP remains assiciated to a given tenant – policy through policy.json


Orchestration requirements• Better compliance - Accelerating the review process• Design on ppt vs coding the policy• Auditing that what was built was what was decided on• No need for SRs - efficiency


Oracle Linux OpenStack Distribution


Summary


Oracle VM Sessions @ OpenWorld 2014Oracle VM & Oracle OpenStack for Oracle Linux Session Highlights

Monday, Sept 29

10:15 – 11:00 CON8358 – Building a Private Cloud with Oracle OpenStack for Oracle Linux and Oracle VM

Intercontinental Hotel, Grand Ballroom B

1:30 – 2:15 GEN8471– Oracle Virtualization Strategy and Roadmap

Intercontinental Hotel, Grand Ballroom B

1:15 – 2:15HOL9078 – OpenStack: Getting Started with Oracle Linux and Oracle VM

Nikko Hotel, Floor 3, Room Nikko1

21

https://oracleus.activeevents.com/2014/connect/sessionDetail.ww?SESSION_ID=8358






Oracle VM Sessions @ Oracle OpenWorld 2014Virtualization Sessions Highlights

Time Wednesday, Oct. 01 Time Thursday, Oct. 02

10:15 – 11:00

CON8472 – What's New with Oracle VM Server for x86 and SPARC: A Technical Deep Dive

Intercontinental Hotel, Union Square – Floor 3

9:30 – 10:15

CON8355 – Using Oracle VM VirtualBox as your development platformIntercontinental Hotel, Union Square – Floor 3

11:30 – 12:15

CON8356 – Oracle's Next Generation Software Defined Networking (SDN) Platform for Public and Private Clouds Intercontinental Hotel, Union Square – Floor 3

10:45 – 11:30

CON8473 – Oracle Distribution of OpenStack –Making OpenStack an Enterprise Grade Solution

Intercontinental Hotel, Union Square – Floor 3

4:45 – 5:30

CON8474 – Software-Defined Networking in a Hybrid, Open Data Center

Intercontinental Hotel, Grand Ballroom A

22
















Oracle VM Hands-on Labs

Monday, Sept 29 Wednesday, Oct. 01

10:15 – 11:15

HOL9079 – Build a Complete HA Oracle VM Infrastructure from Server to App.

Nikko Hotel, Floor 2, Room Mendocino I-II

HOL9121 – Create Your Own Oracle VM Template to Simplify Your Own Application DeploymentNikko Hotel, Floor 3, Room Nikko 1

1:15 – 2:15

HOL9078 – OpenStack: Getting Started with Oracle Linux and Oracle VM

Nikko Hotel, Floor 3, Room Nikko 1

HOL9122: Build a Private DBaaS Cloud with Oracle VM and Oracle Enterprise Manager 12cNikko Hotel, Floor 2, Room Mendocino I-II

23















Oracle VM and Oracle OpenStack for Oracle Linux DemosIn the Linux and Virtualization with OpenStack Showcase

3760 – Oracle VM - integrated infrastructure choice for the cloud Oracle Linux and Virtualization with OpenStack Showcase

3767 – OpenStack - Enterprise-grade Cloud with Oracle Linux and Oracle VM Oracle Linux and Virtualization with OpenStack Showcase

24

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | 25

Stay Connected

• Oracle.com/virtualization• @ORCL_Virtualize• Facebook.com/OracleVirtualization• Oracle VM Group• Blogs.oracle.com/virtualization

Join our communities, visit our websites for more information

Youtube.com/virtualizationFocus on Virtualization and OpenStack

Download: edelivery.oracle.com/oraclevmTraining: education.oracle.com/virtualization

http://www.youtube.com/oracleenterprisemgr


Documents

CON8358 - Building a Private Cloud with OpenStack Oracle’s OpenStack for Oracle Linux and Oracle VM Ronen Kofman Director of Product Development Oracle