EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

OPENSTACK 101

November 2013

Jason Kalai Regional Network Consultant, SEA

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Session Objectives

•  Introduction to Openstack

• Openstack Architecture

• Openstack Use case & challenges

• Closing Thoughts

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

What Is OpenStack?

OpenStack is both Software and a Community

5

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

What Problem Does OpenStack Solve?

OpenStack provides a framework for building elastic cloud infrastructure at massive scale.

✦Facilitates management of

✦COMPUTE, ✦NETWORK, and

✦STORAGE resources

✦Provides natural infrastructure for elastic applications

6

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

OpenStack Components Provide..

✦Compute ✦Virtual machine management

hypervisor support ✦Comprehensive ✦Networks

✦IP address management

✦Security ✦Storage

✦Volumes

services (block storage)

✦Object storage for VM images and files

7

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

OpenStack as Community

Technical Committee - defines and stewards technical direction Board of Directors - provides strategic and financial oversight of

Foundation Resources User Committee - created to represent enterprise, academic and

service provider users

8

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

OpenStack History and Cadence Havana (Oct 2013) Grizzly (Apr 2013) Folsom (Oct 2012) Essex (Apr 2012)

Diablo (Sep 2011) Cactus (Apr 2011)

Bexar (Feb 2011) Austin (Oct 2010)

Ceilometer & Heat integrated (Oct 2013) Maturation of Quantum and Cinder, focus on upgrade support (Apr 2013) Quantum (Networking) full inclusion, Volume Service added (Oct 2012) Dashboard and Identity service released, Quantum incubated (Apr 2012)

First “Production Ready” release (Sep 2011) Scaling enhancements, support for many hypervisors (Apr 2011)

OpenStack Compute ready, initial release of Image Service (Feb 2011) Initial release, Object Storage Production Ready, Compute in testing

6-month cadence

9

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

OpenStack Trends, Growth & Milestones Havana (Oct 2013)

Grizzly (Apr 2013) Folsom (Oct 2012)

Essex (Apr 2012)

Diablo (Sep 2011) Cactus (Apr 2011) Bexar (Feb 2011) Austin (Oct 2010)

First OpenStack release with Red Hat code

(Sep 2012) 47 committers across the top ten companies

230 committers

71 committers

Largest OpenStack Summit to date, enterprise customer keynotes

OpenStack Foundation formed

Red Hat assigns its first developer to the OpenStack community (Aug 2011) Data extracted from Google Trends (keyword: OpenStack) and Bitergia reports.

“Committers” shown above indicate the number of individual committers across the top ten contributing companies. 10

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Session Objectives

•  Introduction to Openstack

• Openstack Architecture

• Openstack Use case & challenges

• Closing Thoughts

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

OpenStack Design and Architecture

DASHBOARD (Horizon)

COMPUTE

(Nova)

IDENTITY SERVICE

(Keystone)

Modular architecture Based on a (growing) set of core services Designed for Scalability and Elasticity

BLOCKSTORAGE

(Cinder)

OBJECTSTORE

(Swift)

NETWORKING

(Quantum)

IMAGESERVICE

(Glance)

16

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Provides simple self service UI for end-users Basic cloud administrator functions

(No infrastructure management) Define users, tenants and quotas

OpenStack Dashboard (Horizon)

DASHBOARD (Horizon)

COMPUTE

(Nova)

IDENTITY SERVICE

(Keystone)

BLOCKSTORAGE

(Cinder)

OBJECTSTORE

(Swift)

NETWORKING

(Quantum)

IMAGESERVICE

(Glance)

17

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Supports multiple hypervisors (KVM, Xen, LXC, Hyper-V, ESX) Native OpenStack API and Amazon EC2 API support Distributed controller services handle scheduling, API calls, etc.

OpenStack Compute (Nova)

DASHBOARD (Horizon)

COMPUTE

(Nova)

IDENTITY SERVICE

(Keystone)

BLOCKSTORAGE

(Cinder)

OBJECTSTORE

(Swift)

NETWORKING

(Quantum)

IMAGESERVICE

(Glance)

18

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Provides block storage for virtual machines (persistent disks) Similar to Amazon EBS service Plugin architecture for vendor extensions

OpenStack Block Storage (Cinder)

DASHBOARD (Horizon)

COMPUTE

(Nova)

IDENTITY SERVICE

(Keystone)

BLOCKSTORAGE

(Cinder)

OBJECTSTORE

(Swift)

NETWORKING

(Quantum)

IMAGESERVICE

(Glance)

19

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Network Service Provides framework for Software Defined Networking (SDN) Allows integration of hardware and software based network

solutions

OpenStack Networking (Quantum)

DASHBOARD (Horizon)

COMPUTE

(Nova)

IDENTITY SERVICE

(Keystone)

BLOCKSTORAGE

(Cinder)

OBJECTSTORE

(Swift)

NETWORKING

(Quantum)

IMAGESERVICE

(Glance)

20

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Stores and retrieves disk images (virtual machine templates) Supports Raw, QCOW, VMDK, VHD, ISO, OVF & AMI/AKI Backend storage : Filesystem, Swift, Amazon S3

OpenStack Image Service (Glance)

DASHBOARD (Horizon)

COMPUTE

(Nova)

IDENTITY SERVICE

(Keystone)

BLOCKSTORAGE

(Cinder)

OBJECTSTORE

(Swift)

NETWORKING

(Quantum)

IMAGESERVICE

(Glance)

21

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Modeled after Amazon's S3 service Provides simple service for storing and retrieving arbitrary data Native API and S3 compatible API

OpenStack Object Storage (Swift)

DASHBOARD (Horizon)

COMPUTE

(Nova)

IDENTITY SERVICE

(Keystone)

BLOCKSTORAGE

(Cinder)

OBJECTSTORE

(Swift)

NETWORKING

(Quantum)

IMAGESERVICE

(Glance)

22

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

OpenStack Identity Service (Keystone)

Common authorization framework Manages users, tenants and roles Pluggable backends (SQL, PAM, LDAP, etc)

DASHBOARD (Horizon)

COMPUTE

(Nova)

IDENTITY SERVICE

(Keystone)

BLOCKSTORAGE

(Cinder)

OBJECTSTORE

(Swift)

NETWORKING

(Quantum)

IMAGESERVICE

(Glance)

23

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Connecting the Components

DASHBOARD (Horizon)

COMPUTE

(Nova)

IDENTITY SERVICE

(Keystone)

OpenStack uses message queues for communication between components

Supported queueing backends: RabbitMQ, Qpid and ZeroMQ

BLOCKSTORAGE

(Cinder)

OBJECTSTORE

(Swift)

NETWORKING

(Quantum)

IMAGESERVICE

(Glance)

Message Queue

24

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Metering & Monitoring (Ceilometer)

Incubation Project: Ceilometer

- Collects meter data (CPU, network, etc) - Designed for integration and extensibility

- Data collected is made available via REST API

- Message signing provides non-repudiation Graduated from Incubation to Integrated

status for the Havana release

25

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Application Orchestration (Heat)

Incubation Project: Heat

- Provides template driven cloud application orchestration

- Modeled after AWS CloudFormation

- Targeted to provide advanced functionality such as high availability and autoscaling

- Introduced by !

Graduated from Incubation to Integrated status for the Havana release

26

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

OpenStack’s Increasing Maturity

We are seeing organizations struggle with elastic cloud adoption

✦Unfortunately, Frankenclouds are being white boarded daily!

✦“Pet friendly” strategies are underway

✦Green field deployments work well

Knowledge capture is early but evolving

✦OpenStack

✦OpenStack

Operations Guide

Security Guide

38

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Session Objectives

•  Introduction to Openstack

• Openstack Architecture

• Openstack Use case & challenges

• Closing Thoughts

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

OpenStack Challenges

50

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Openstack Deployment Challenges

51

• Personal Skills • Linux, Cloud Infrastructure & Openstack architecture

• Tweaking of devstack is needed at some cases where the general code is unable to cater user’s requirement.

• Security concern in Openstack deployment • Getting operation, network & system engineering team

to understand openstack & familiarize with it. • How about IPv6 services ? • How about Service Load balancer, VPN, Firewall ?

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

OpenStack Deployment Profiles

50

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Openstack Users

51

Openstack Powers Demanding Production Workloads Worldwide

Web/SaaS/eCommerce

Acedemic/Research/

Goverment

Information Technology

Healthcare

Cloud Hosting/MSP/Telco

Film/Media/Gaming

http://www.openstack.org/user-stories/

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

PayPal

Profile Highlights:

✦113 million registered accounts; PCs or mobile devices in 190 different markets with 25 different currencies

✦Targeting 90 percent coverage for several thousand nodes in nine to 12 months

✦DIY team leveraging OpenStack community support

51

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

COMCAST

Profile Highlights:

✦One of the USA leading cable TV

✦Number of users, systems, servers, storage, applications users: [REDACTED]

✦Agility, flexibility and scalability providing better support for mission systems

✦Big Data is truly big

53

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Session Objectives

•  Introduction to Openstack

• Openstack Architecture

• Openstack Use case

• Closing Thoughts

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

OpenStack ...

✦Is open source software and vibrant community

✦Provides a framework for an elastic cloud.

✦Requires fresh thinking for deployments

✦Is being deployed successfully at scale today

55

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Closing Thoughts

•  Openstack Quantum/Neutron Availability §  Extreme Networks §  Juniper Networks §  Cisco Systems §  Mellanox §  Brocade VCS product

•  Openstack that have more traction §  Service Provider §  Entrprise Data Center §  Big Data deployment §  Open standard architecture

EXTREME CONFIDENTIAL – INTERNAL USE ONLY!!! © 2013 Extreme Networks, Inc. All rights reserved.

Thank You