Learn OpenStack From TryStack.cn

2013-11http://www.slideshare.net/ben_duyujie/learn-open-stack-from-trystackcn

Why TryStack.cn?

OpenStack is Configurable• Tiny to very large scale

• Pluggable backends

• Multiple components

What's new in the latest version?

Motivation

So we did ...

• Non-profit OpenStack community projects.

• Announced in OpenStack Summit San Diego 2012.

• With the help of the community.

Slides are on slideshare for download: www.slideshare.net/openstack/trystack-introfinalpdf

● Biggest OpenStack testbed in China – Opened OpenStack API

– Provide best practices for administrator, operators and developers.

● Reference Architecture for Users– Hardware devices from different vendors

– OpenStack deployment architecutre

– Using the newest OpenStack code

● Contribute code to the community– Bug fixes

– New features

● Promote OpenStack implementation and productization in China With partners, vendors

TryStack.cn

How to do that?

January 8th,2012 Chinese OpenStack Developers Conference

Oct 2012 Grizzly Summit ,Trystack.cn launched

Auguest 10th-11th,2012OpenStack APAC Summit

September 6th,2011OpenStack Shanghai Summit

Sep 20th,2012OpenStack Foundation launched

2012 2013April 15th,2013 Havana Summit Trystack.cn update to Grizzly

February 16th,2012TryStack.org launched

February 8th, 2013 Trystack 1st meetup in Nanjing

June 14th, 2013 Trystack 3rd, meetup in Beijing (IBM)

Feb 20th, 2013Trystack 2nd meetup in Shanghai

June 21th,2013 Trystack.cn 4th meetup in Shenzhen(Huawei)

History

Hardware●Servers

● Intel E5-2620 – Intel E5-2680

● 48GB – 96GB Ram

● 1GB – 10GB NIC

● Dell/ IBM / Quanta / Inventec

●Switches● Cisco / Aristanetworks

●Storages● Nexenta

● DIY Solaris ZFS

Servers

Racks

Network Topology

TRYSTACK.CN RA

Services• Monitoring

– Nagios + IaaSMon

• NTP

• DNS

• SMTP

• OpenLDAP

• Web

– Nginx

– Django

– Php

Nagios + IaasMon

Use cases

A single region: the“CloudFoundry Region“ for VMWare team

• 4 servers with 32G+ memory, 12+ cores each

• 1TB storage

• Network– CF VLAN: 100 ip (all VMs need to access internet directly)

– Service VLAN (optional): 8 ip

– Public VLAN: 1 public ip

• Images– 64-bit Ubuntu 10.04 LTS

• Openstack– Folsom

– OS_USERNAME, OS_TENANT_NAME, OS_PASSWORD, OS_AUTH_URL

– Openstack console access

CloudFoundry doesn't work on folsom • https://groups.google.com/a/cloudfoundry.org/forum/?fromgroups=#!topic/bosh-users/0mzvv5HLQ5o

• https://bugs.launchpad.net/nova/+bug/1076119

• Phase I

– Git sync

– DevStack

• Phase II

– Git Sync

– Scripts (bash)

• Phase III

– Puppet + cobbler

– Fuel (Mirantis)

Deploy

TRYSTACK Camp for DELL

TRYSTACK Camp for HP

Meetups

Meetups

TRYSTACK MEETUPS1. Oct 2012, Grizzly Summit #San Diego www.slideshare.net/openstack/trystack-

introfinalpdf

2. Dec 2012, ECUG #ChengDu http://www.ecug.org/

3. May 2013, open souce convention #Beijing http://bj-opensource.com/

4. February 2013 Trystack 1st meetup #Nanjing www.openstack.org/blog/2013/02/trystack-cn-2013-first-meetup/

5. February 2013, Trystack 2nd meetup #Shanghai http://www.openstack.org/blog/2013/02/trystack-2nd-meetup-2013/

6. June 2013, Trystack 3rd meetup #Beijing in IBM http://www.openstack.org/blog/2013/06/trystack-cn-meetup-with-ibm-in-beijing/

7. June 2013, Trystack 4th meetup #Shenzhen in Huawei

8. June 2013, 8th Open Source China Open World Forum(OCOW) #Beijing http://ocow.csdn.net/

9. OpenStack's 3rd Birthday Celebration http://trystack.eventbrite.com/

v

now

● Advisors

– Alan clark(Chairman of the board at OpenStack Foundtion)

– Boris Renski (Mirantis Co-Founder)

– Cole Crawford (Open Compute Foundation COO)

– Huailin Chen (Founder of http://www.valleytalk.org/ )

– Joe Arnold (SwiftStack CEO)

– Qingye Jiang (IEEE)

– Xu Chen (Intel Open Source Director) ● Community Members

– http://wiki.trystack.cn

1 year laterLessons Learned from trystack.cn

The first class:

● Document your work● Contribute to the community● Build in expectation for Hardware Failures● Networking Still need innovation ● Enterprise need more reliable cloud

Trusted Enterprise Cloud

The Trusted Enterprise Cloud reference architecture is composed of a well designed controller that includes various standard key OpenStack modules with highly strong HA capabilities, visualized configuration and management portal, as well as active directory support. It also addresses strongly demanded enterprise security concern issues with software defined VPN and firewall service under a unified and consistent OpenStack environment. For large enterprise deployments, this architecture supports an enhanced SDN/OpenFlow network traffic-offload functionality so as to boost performance and meantime well maintain overall enterprise network reliability and resilicence.

Please contact me for more information on all the vendors who can support this open architecture!

Firewall Solution for Openstack

Virtual Servers

Trunk

Private subnet interface 999， 1000vsys-A

Virtual Firewalls

Access Switch

Public address1（ Tenant A）

vsys-B

Tenant A：VLAN999 Openstack

Controller

Dashboard

Tenant

Orchestration

Tenant B：VLAN1000

Every tenant can have one or more VLAN, with each tenant isolated by different virtual firewall. Tenant can directly subscribe to virtual firewall on the Openstack Dashboard, and make policy management for their own virtual firewall.

Public address2（ Tenant B）

What are we missing ?

What's the next?

Plan● Donate to the Foundation?● Update to Hanava

– Test for core?– Heat,Ceilometer

● Trusted Enterprise Cloud RA– HA – SDN – Security

● Community Activities– Meetups (Monthly)– Hackathon(Each quarter)– Conference (Once or twice a year )

● Training ….

Suggestions?

CONNECT WITH ME

About - http://about.me/Yujie.DuEmail – du.yujie@trystack.cnTwitter - @ben_duyujieBlog - http://www.duyuje.orgG+ - https://plus.google.com/+YujieDuLinkedIn - http://www.linkedin.com/in/duyujieSlideShare -http://www.slideshare.net/ben_dyujie

BACKUP