Embed Size (px)
Citation preview
OpenStack® Summit Austin 2016OpenStack® Summit Austin 2016
Succeeding with cloud in the enterpriseOmri GazittVP Products & ServicesHPE Helion@omrig
2
OpenStack success in the enterpriseState of the union, 2016
3
Upstream
Distro
Solution
Operated
Sweet spot
$ $ $ $ $
Deployment / lifecycle lessons
4
V1
Triple-OV2+
Ansible
Standard configurations
Text-based, transparent
Easy to tweak
Easy to update
Predictable upgrades
Secure out of the box
Management lessons
5
V1
Ceilometer, HorizonV2+
Monasca, Ops Console
Operations as a first-class persona
Separate OLTP / Management DB’s
Scalable event store
Alarm engine
Prescribed resolutions
Remediation and lifecycle actions
Time series visualization
Security lessons
6
V1
“Read the whitepaper”V2+
Barbican, Bandit
TLS for endpoints
TLS for internal services
Barbican for key management
Data-at-rest encryption
Bandit: static analysis in CICD
Audit logging: PCI compliance
Standard configs secure by default
Platforms are about workloads
7
OpenStack
CattleWorkload
Requirements
Features/complexity
(IaaS+: Heat, LBaaS, …)
2013
Platforms are about workloads
8
OpenStack
Cloud Native Platforms
CattleWorkload
Requirements
Features/complexity
(Nova, plus…Cinder/Neutron)
(IaaS+: Heat, LBaaS, …)
2014
Platforms are about workloads
9
OpenStack
Cloud Native Platforms
Cattle PetsWorkload
Requirements
Features/complexity
(Nova, plus…Cinder/Neutron)
(IaaS+: Heat, LBaaS, …)
(Live Migration)
2015
Platforms are about workloads
10
OpenStack
Cloud Native Platforms
CattleCarrier-Grade
PetsWorkload
Requirements
Features/complexity
(Nova, plus…Cinder/Neutron)
(IaaS+: Heat, LBaaS, …)
(DPDK, SR-IOV)(Live Migration)
2016
Cloud-native workloads“DIY” by stitching together services versus “delegate to a platform”
11
“AWS approach” PaaS approach
Unit of compute EC2/ECS (nova/docker) Docker/runC
App deployment/versioning CloudFormation (heat) Built in
Load balancing ELB (neutron-lbaas) Built in
Zero-downtime deployment CodeDeploy/Elastic Beanstalk (diy) Built in
Services (DB/queuing) RDS (trove)/SQS (zaqar/cue) Service brokering
App health monitoring CloudWatch (monasca) Built in
Auto-scaling AutoScaling (heat?) Built in
Log aggregation CloudTrail (ELK/diy?) Built in
What about containers?“Everything is a container” versus “delegate to a platform”
12
CaaS approach PaaS approach
Unit of compute Docker/runC Docker/runC
App deployment/versioning Pods, replication controllers/compose Built in
Load balancing k8s services (plumbed to LB) Built in
Zero-downtime deployment k8s rolling-update Built in
Services (DB/queuing) Data service in a pod? Service brokering
App health monitoring Datadog? Sysdig? Built in
Auto-scaling “Horizontal pod auto-scaler” Built in
Log aggregation Fluentd, elasticsearch, kibana Built in
Use the platforms, Luke!
13
OpenStack Platform
Cloud Native Platform
Traditional/High-end
Workloads
Apps Apps Apps Apps Apps AppsApps
Announcing…
14
HELION OPENSTACK 3.0
Other talks you should check out…
15
HPE Track Speakers Title
Tuesday 11:15 AM–11:55 AM Joy Dorairaj Security & Compliance in OpenStack
Tuesday 12:05 PM–12:45 PM Tom Howley Lifecycle management of Openstack using Ansible
Tuesday 2:00 PM–2:50 PM Joy Dorairaj Achieving OpenStack Carrier—Grade Performance
and Reliability
Tuesday 2:50 PM–3:30 PM Nayana Dhawalbhakta Multi-Data Center OpenStack Carrier Grade for CSP's
Tuesday 3:40 PM–4:20 PM HPE & Telstra ExecutiveFull ISO 7-Layer Stack Fullfillment, Activation and
Orchestration of VNF's in Carrier Networks
Tuesday 4:40 PM–5:20 PMSwami Vasudevan, Fabrizio Fresco,
Matt Young, Joy Dorairaj, Paul MurrayOpenStack in Production Panel
Tuesday 5:30 PM–6:10 PMHenrik Blixt, Dave Hawley, Matt Young,
Nathanial DillonIgnite Session: What's Hot and What's New
Thank you
