Cisco Public© 2010 Cisco and/or its affiliates. All rights reserved. 1
OpenStack – Enterprise Trends
Shannon McFarland – CCIE #5245Principal Engineer – Cloud and Virtualization Group
@eyepv6
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 2
Agenda• Trends
• What are Enterprises doing with OpenStack?
• Baseline vs. Premium OpenStack deployments
• Common design scenarios
Cisco Public 3© 2013-2014 Cisco and/or its affiliates. All rights reserved.
Trends
Cisco Public 4© 2013-2014 Cisco and/or its affiliates. All rights reserved.
Enterprise Trends – Cloud
Virtualization(Server,
Storage, App, etc)
Public/Hybrid Cloud
Public Cloud Retraction Private Cloud
Cost drivenHorrible mistake
Missed expectations:- Cost- HA - Performance- Ops
Cloud done their way:- Self-service - Understand cost better- Elastic - Understand Cloud HA- Multi-tenancy - IT meet DevOps
Cisco Public 5© 2013-2014 Cisco and/or its affiliates. All rights reserved.
Enterprise Trends – Cont.
Old-School Server
Virtualization
Cloud with Hypervisor
s
Cloud with Containers ?
• Learned lots of stuff:• Hypervisors• Multi-DC• Virtual networking• etc..
• OpenStack• KVM• Zen• ESXi• Hyper-V
• Eucalyptus• Cloudstack
• OpenStack• Docker
• It’s about the App, stupid• Docker + stuff• CoreOS• Kubernetes• Mezos• etc..
Cisco Public 6© 2013-2014 Cisco and/or its affiliates. All rights reserved.
The Biggest Enterprise Mistake – Doing the same thing over and over expecting a different result
Cool and exciting technologies are borderline useless if IT process & change control don’t adapt
Elastic, self-service, FastIT, are all the enemy of legacy IT models
Changing technology hoping for different results when IT policies don’t change to meet new requirements
Cisco Public 7© 2013-2014 Cisco and/or its affiliates. All rights reserved.
What are Enterprises Doing with
OpenStack?
Cisco Public 8© 2013-2014 Cisco and/or its affiliates. All rights reserved.
Common Enterprise Use Cases OpenStack, at least today, is targeted at hosting modern day distributed applications written for
the cloud – This isn’t your grandpa’s server virtualization platform built for individual VM HA/Mobility
Sandbox environments A place to research, learn and test CI/CD processes
PoC web applications along with ‘practicing’ the new DevOps methodology
A place to learn the whole cloud deployment framework, document, train, move to production
Development environments Using the lessons learned in the sandbox phase:
‒ Build Dev, QA and production environments
‒ Apply CI/CD processes
‒ Slow-role Web application deployment either on ‘standard’ OpenStack or in conjunction with a PaaS deployment
Data Processing environments – Big Data clusters, etc..
Training systems – Cheap and fast to build and tear down for each class
Revenue generating applications – Vertical applications
Cisco Public 9© 2013-2014 Cisco and/or its affiliates. All rights reserved.
Shock-and-Awe: GUIs are for suckers The Dashboard isn’t, generally, where developers launch their
instances/workloads
Cisco Public 10© 2013-2014 Cisco and/or its affiliates. All rights reserved.
Cloud Apps Deployment – Automate it
Boot the Instance
Config Manageme
nt
App is Deployed
Rinse & Repeat
- Cloud-init for Puppet/Chef/etc..- Image already has agent/script
http://docs.openstack.org/user-guide/content/user-data.html
# Nodes for web server instances
node 'sales-web-01' {
include lamp
}
root@build-server:~# tree /etc/puppet/modules/lamp/
/etc/puppet/modules/lamp/
├── files
│ ├── apache2.conf
│ ├── index.php
│ └── php5.conf
└── manifests
└── init.pp
nova boot --user-data ./cloud-config-puppet.txt --image precise-x86_64 --flavor m1.tiny --key_name ctrl-key --nic net-id=42823c88-bb86-4e9a-9f7b-ef1c0631ee5e sales-web-01
Cisco Public 11© 2013-2014 Cisco and/or its affiliates. All rights reserved.
Cloud Apps Deployment - Heat Growing interest in Heat-type deployments:
https://wiki.openstack.org/wiki/Heat http://docwiki.cisco.com/wiki/OpenShift_Origin_Heat_Deployment_Guide http://blog.scottlowe.org/2014/05/01/an-introduction-to-openstack-heat/
Cisco Public 12© 2013-2014 Cisco and/or its affiliates. All rights reserved.
Baseline vs. Premium
Deployments
Cisco Public 13© 2013-2014 Cisco and/or its affiliates. All rights reserved.
Common Baseline Components - Example
OpenStack Platform
Network
Neutron
ML2
OVS Linux Bridge
Infrastructure
Haproxy/Keepalived
Compute
Nova
KVM Zen
Storage
Swift
Ceph Object GW
Cinder
Ceph BlockRBD
Glance
Orchestration etc..
Cisco Public 14© 2013-2014 Cisco and/or its affiliates. All rights reserved.
Common Premium Components - Example
OpenStack Platform
Network
Neutron
ML2
OVSCiscoNexus
Linux Bridge
Infrastructure
Compute
Nova
KVM Zen
Storage
Swift Cinder
Ceph BlockRBD
Glance
Orchestration etc..
Cisco Public 15© 2013-2014 Cisco and/or its affiliates. All rights reserved.
Deployment Summary
Cisco Public 16© 2013-2014 Cisco and/or its affiliates. All rights reserved.
What Really Changes in my Data Center/Internet Edge? OpenStack components
live South of the Top-of-Rack switch
Your existing DC, Internet Edge and BN architecture stays the same
It’s about the compute, storage and orchestration/management tiers
Your apps go largely unchanged
Serv
ices
AccessLayer
AggLayer
CoreLayer
UC
S C
-Seri
es
UC
S B
-Serie
sEnterprise/
Internet
Cisco Public 17© 2013-2014 Cisco and/or its affiliates. All rights reserved.
All-in-One (AIO) – Getting Started
AIOController/Compute/Storage
AIO Controller:- MySQL, MariaDB, etc- RabbitMQ, Qpid, etc..- API Endpoints:
- Keystone- Glance- Nova- Neutron- Cinder- Heat- Swift
AIOController
Compute/Storage
Compute/Storage
Compute
Compute
Storage
Storage
StorageComput
e
AIOController
Cisco Public 18© 2013-2014 Cisco and/or its affiliates. All rights reserved.
All-in-One (AIO) Compressed HA
Data Center Infrastructure
OOB
Compute
Network Node(s)
AIO Controller
Compute
Network Node(s)
AIO Controller
Compute
Network Node(s)
AIO Controller
Spine/Agg Layer
TOR(s) TOR(s) TOR(s)
Spine/Agg Layer
Block Storage
Block Storage
Block Storage
AIO Controllers:- Galera/MySQL- RabbitMQ- API Endpoints:
- Keystone- Glance- Nova- Neutron- Cinder- Heat- Swift
OOB OOBSLB
Infrastructure Services
Build/PXE
Automation
DNS
DHCP
NTP
Logging
Object Storage
Object Storage
Object Storage
Cisco Public 19© 2013-2014 Cisco and/or its affiliates. All rights reserved.
Service Cloud + Tenant Cloud
Data Center Infrastructure
OOB
Spine/Agg Layer
TOR(s) TOR(s) TOR(s)
Spine/Agg Layer
OOB OOB
Object Storage
Object Storage
Swift Proxies
TOR(s)
Object Storage
OOBOOB
RabbitMQ
API Endpoints
Galera
TOR(s) TOR(s)
Compute
OOB
Block Storage
Object Storage
RabbitMQ
API Endpoints
Galera
Compute
Block Storage
Object Storage
RabbitMQ
API Endpoints
Galera
Compute
Block Storage
Object Storage
Compute
Network Node(s)
Compute
Compute
Compute
Compute
Network Node(s)
Compute
Compute
Compute
Block Storage
Block Storage
Compute Compute
Cisco Public 20© 2013-2014 Cisco and/or its affiliates. All rights reserved.
What’s a Service Cloud? It’s the ‘underlay’ Cloud
Used as a hosting platform for tenant cloud services – usually in a large cloud (1000s of instances with 100-1000s of tenants)
It is an OpenStack deployment that will host (virtually) the OpenStack control functions used by each tenant
Service Cloud
AIO Controll
er
AIO Controll
er
AIO Controll
erTenant 1
AIO Controll
er
AIO Controll
er
AIO Controll
erTenant 2
Compute
Compute
Compute
Cisco Public 21© 2013-2014 Cisco and/or its affiliates. All rights reserved.
Network Topologies – Overlays (GRE, VXLAN, etc) and VLANs
Cisco Public 22© 2013-2014 Cisco and/or its affiliates. All rights reserved.Cisco Public© 2013-2014 Cisco and/or its affiliates. All rights reserved.
High-Availability Multi-node“Provider Network Extensions” Design
Load-Balancers
Controllers
Compute
SwiftStorage
MGMT/CIMC/APINetwork
Public Network
StorageNetwork
CIMC CIMC
CIMC CIMC CIMC
CIMC CIMC CIMC
CIMC CIMC CIMC CIMC CIMC
eth0 eth0
eth0 eth0 eth0
eth0 eth0 eth0
eth0 eth0 eth0 eth0 eth0
eth1 eth1 eth1
eth1 eth1 eth1 eth1 eth1
DC/Internet
Service VIPs
Cisco Public 23© 2013-2014 Cisco and/or its affiliates. All rights reserved.Cisco Public© 2013-2014 Cisco and/or its affiliates. All rights reserved.
Conclusion Trends include the movement to or back to private clouds with the design option to link
workloads between various clouds (Public<>Private)
Don’t go down the path of OpenStack if your goal is a ‘free’ alternative to another server virtualization system – Use OpenStack for what OpenStack was built for
Several interesting Open Source projects are making their way into or in replacement of traditional designs
There are ‘baseline’ tools and projects within OpenStack but you may find that some are not what you need – ‘Premium’ designs provide additional quality, scale, management and support options over the ‘baseline’ offering
The larger the cloud gets the more you run into critical scale issues with OpenStack and primarily with SW-based networking (OVS, Encap, iptables, NAT, L3 agent, etc..)
OpenStack is for real, but immature in some aspects, especially networking and upgrades – Gaps are closing quickly
Real value-add is not in installation and the basic OpenStack components but rather on overall system design, DevOps, optimization and scale-out above what a baseline OpenStack system provides
Thank you.
Top Related