what you need to know about c_101c_1530-1610.pdfkeystone horizon heat ceilometer glance • vio is...
TRANSCRIPT
What you need to know about
VMware資深技術顧問Terence Tsao曹建國[email protected]
VMware 與 OpenStack 是敵是友?
Agenda
➢ 3 Important OpenStack Decisions
➢ Suggestions to Help with your Decisions
➢ VMware Approach to OpenStack and the Results
➢ Quick Demo
VMware Integrated OpenStack (VIO)
3 Important OpenStack Decisions(Business, Technology, Partner)
5
…scalability?”
… total cost of
ownership”
…availability and
reliability?”
“What is the best
technology choice
for...”
… effective operations
and upgrade?”
... infrastructure
and app SLAs?”
… troubleshooting
and support?”
…advanced features?
…security?”
What is the Best Technology to Pair with Cloud ?
Infrastructure
Nova
Cinder
Swift
Neutron
EBS
EC2
S3
VPC
AWS
You Own
Your Rules
You Rent
AWS Rules
Need to Build & Operate Just Need Your Credit Card
Your
Decision
Why Build an OpenStack Cloud?
1
OpenStack Can Deliver AWS Agility with Private Cloud Benefits
Compute Network Storage
What Infrastructure to Use?
Your
Decision
What Approach for building an
OpenStack Cloud?
Nova Neutron Cinder
Keystone Heat Horizon
Your
Decision
3
2
OpenStack is a vendor neutral framework that delivers developer friendly APIs & services
OpenStack Needs Infrastructure Underneath
Building OpenStack Requires 2 Additional Important Decisions
Suggestions to Help withYour Decisions
HypervisorNetwork
virtualization
Storage
Solution
Infra Services: API + Driver
Infra ConsumptionTools
Virtualization Technologies
Cloud Operations + Management
Hardware Technologies
Cloud Management
Application Mgmt, Financial
Reporting, Governance…
Cloud Operations
Monitoring, Diagnostics …
OpenStack Needs• Infrastructure
• Ops & ManagementOpenStack Private Cloud
Web Portal
Nova
(Compute)
Neutron
(Network)
Cinder/Swift
(Storage)
OpenStack APIs/ SDKs CLI Tools
OpenStack Framework
OpenStack Delivers• Vender-Neutral APIs
• Infrastructure Choice
How do you approach OpenStack ?
✔ ?
Increase Developer
Productivity
To Avoid Vendor
Lock-in
To Reduce Cost of
Datacenter/Cloud
Suggestion
• Would your developers use OpenStack or continue using public clouds?
• What specifically has changed with OpenStack that will save money?
• Which OpenStack deployment is free from vendor lock-in?
?
Why Build An OpenStack Private Cloud?
Compute Network Storage What combination to use?
5Nova
Drivers
40Cinder
Drivers
15Neutron
Drivers
3,000Infra Combinations
Suggestion
• Your OpenStack cloud is only as good as infrastructure underneath
• Do you have expertise & tools to operate the infrastructure combination?
• Has any vendor(s) tested the exact infrastructure combination?
https://wiki.openstack.org/wiki/Neutron
https://wiki.openstack.org/wiki/HypervisorSupportMatrix
https://wiki.openstack.org/wiki/CinderSupportMatrix
3000+ Infrastructure Combinations on OpenStack: Which are proven to work in production?
12
DIY / PSO Stitched
(customized / unique)
Limited Infra Combination
Standard Architecture
Less Complex to Operate/Support
Integrated Product Approach
(standard / uniform)
Same OpenStack APIs
Trade-offs for Cloud Operators
Compute Network Storage
Infrastructure
OpenStack Services
Compute Network Storage
Infrastructure
OpenStack Services
Flexible Infra Combinations
Customized Architecture
Complex to Operate & Support
Suggestion
• Success is heavily dependent on what approach you choose.
• Avoid building unique OpenStack clouds (Snowflakes)
• OpenStack API compliance is crucial
What Approach to take for Building OpenStack?
VMware Approach to OpenStack and the Results
VMware Integrated OpenStack(VIO)
Build Cloud
Time to Value
Com
ple
xity
Monitor
Troubleshoot
Scale Up/Down
Upgrades & Patches
EA
SIE
R
FASTER
Our GoalLeverage Customers’ Existing VMware Expertise
Our GoalLeverage VMware SDDC Products
Current OpenStack Challenges
15
Source: Stackalytics for OpenStack projects
(http://stackalytics.com/report/companies/vmware)
Top 15 contributor to the OpenStack releases
90 +Developers
6,996Commits
1,566,983 Lines-of-Code
28,145Patches
Reviewed
VMware’s Contribution on OpenStack
16
OpenStack Released History
The OpenStack APIs you want, the infrastructure you trust.
Best-of-breed
compute, network,
storage
Elegant, rapid,
and simplified
operations
Single support
contact
Production-Ready OpenStack Cloud
VMware Integrated OpenStack
Visit: vmware.com/go/openstack
?
Web PortalCLI Tools
Compute Network Storage
OpenStack API SDKs
? ?
NSXvSpherevSphere Datastores:3rd-party / Virtual SAN
IaaS API Services + Drivers
Developer Tools
Virtualization Technologies
OpenStack Framework
Application DevOps team Application Mgmt
and Automation
Hardware Technologies
Cloud Infrastructure
team
Infrastructure Ops + Mgmt
vRealizeOperations
Log Insight
vRealizeBusiness
VMware Integrated OpenStack
Infra Plugins
Consumption
What Does It Take to Run an OpenStack Cloud?
VMware Integrated OpenStack
VMware SDDC
Standard OpenStack
Nova Neutron Cinder
Keystone HeatHorizon Ceilometer
Glance
• VIO is an “Integrated Product” Approach to OpenStack
• Standard OpenStack Distribution (delivered as OVA)
• Deploys & Manages Proven Production Architecture on VMware SDDC
• Fully Supported by VMware
VIO Management
Server(Deploy, configure, patch,
upgrade …OpenStack)
vSphere NSXvSphere Datastores:
3rd-party / Virtual SAN
What is VMware Integrated OpenStack (VIO)
VMware Integrated OpenStack (VIO) Architect
22
Reliability, Performance, Security, Scale, OpEx/CapEx reduction...
• Industry standard for security, stability and reliability
• Lower CAPEX from server savings with higher VM density.
• Lower OPEX from advanced management and operation features (vMotion, DRS, HA …etc)
vSphere Compute(Nova)
• Advanced Security and Multi-Tenancy (Micro-Segmentation, Overlay)
• Advanced NW services with massive scale & throughput (Switching, Routing, Security, Load Balancing, QoS, HA)
• Integration with 3rd Party network services providers
NSX Network (Neutron)
• Works with any vSphere validated storage (Largest HCL in the industry)
• Advanced Storage Policies with Virtual SAN
• Leverage Commodity Hypervisor-Converged Storage Nodes with Virtual SAN
vSphere Storage/Virtual SAN (Cinder/Glance)
Leverage VMware’s Best-of-Breed Components
Apps Run on vSphere + NSX
23
OpenStack
Nova
Cinder
Glance
Neutron
vCenter
NSX
VM
VM
VM
Containers
Containers
VM
Router
ESXi
VMFS/NFS
vSwitch
ESXi
VMFS/NFS
vSwitch
ESXi
VMFS/NFS
vSwitch
ESXi Clusters
ESXi
VMFS/NFS
vSwitch
ESXi
VMFS/NFS
vSwitch
ESXi
VMFS/NFS
vSwitch
ESXi Clusters
ESXi
VMFS/NFS
vSwitch
ESXi
VMFS/NFS
vSwitch
ESXi
VMFS/NFS
vSwitch
ESXi Clusters
Keystone
Heat
Dev/Ops request Infra via OpenStack CLI/API
1
2
3
OpenStack calls vCenter &
NSX for infra provisioning
User gets infra running on VMware
OpenStack Calls vCenter & NSX to provision infra. Ultimately Infra & Apps are running reliably on VMware.
Simplified OpenStack
Operations
• Common OpenStack admin
tasks automated from vCenter
• vRealize Operations
integrations for monitoring &
troubleshooting OpenStack
• Log Insight integration for
diagnostics across dozens of
OpenStack service logs
No OpenStack PhD
Required!
• OpenStack delivered as an
Virtual Appliance
• Simple Install from vSphere
Web Client
• Configure OpenStack using
familiar clusters, datastores
• OpenStack automatically
deployed with HA & Scale-out
architecture
Enterprise Grade
OpenStack Cloud
• Robust, proven foundation –
vSphere, NSX & Virtual SAN
• Differentiated OpenStack
cloud with rich infra features
• OpenStack code hardened
and tested by VMware
Single Vendor Support
Unified VMware Support for
• OpenStack code
• Underlying Infrastructure
Products
• Installation & Operations
Products
• Upgrades/patches
VIO Empowers VMware Administrators to Successfully Deliver & Operate OpenStack in Production.
What’s Good in VIO 3.1
26
VIO 2.0 VIO 2.5
Q3 2015 Q2 2016 Q3 2016
➢ Kilo Based
➢ Seamless / Automated Upgrade & Rollback
➢ Backup & Recovery
➢ Customizations
➢ Kilo Based
➢ Compact Architecture
➢ VM Template Import
➢ Scale, Perf & Stability Improvements
➢ Simplified Monitoring & Troubleshooting
➢ NFV Features
➢ Mitaka Based
➢ Compact VIO
➢ Import existing vSphere workloads
➢ vRA Integration
➢ NFV Readiness
VIO3.1
Q1 2017
➢ Mitaka Based
➢ Latest Version of NSX-T
and vSphere Support
➢ Compact -> Full HA
➢ SSO integration with
VMware Identity Manager
➢ Import existing vSphere
NSX backed VM
➢ Direct I/O and GPU pass
through
➢ Osprofiler integration with
Log Insight
➢ NSX Admin Policies
➢ Volume adapter type
modification
VIO 3.0VIO 1.0
➢ Icehouse Based
➢ VMware Platform Differentiation
➢ Production Ready
➢ Simplified Deploy
➢ Day 2 Operation Workflows
➢ Automated Patching
➢ Fully Supported
Q1 2015
VIO Releases
• Enhanced Stability
Mitaka-Based
• Seamless update from compact mode to HA mode
CompactControl Plane
• Existing vSphere NSX backed VMs can be imported and managed via VIO OpenStack APIs
Import Existing
Workloads
• Horizon Integration with vIDM
SingleSign-On
• Leverage Log Insight as datastore for API profiling
OSprofiler
• OpenStack VM security policy enforcement based on Centralized IT policies created by NSX Admins.
NSXAdminPolicy
vSphere 6.5, vSphere 6.3, NSX-T 1.1
• Full Passthrough support by using VMware DirectPath I/O
• OpenStack Instance using GPU Passthrough
Direct I/O
and
GPU Pass-
through
• Adapter type for newly created volume
VolumeAdapter
What’s New Feature in VMware Integrated OpenStack 3.1
• Reduced footprint on management cluster
• Full HA: No service downtime
• Database replication: No data loss
• 6000+ VMs
• 200+ Hypervisors
28
Controller 1
VIO Control Plane
Database 1 Database 2 Database 2
Controller 2
LB 1 LB 2
Management
Server
VIO 3.x: Slimmer Full HA Architecture
• Ideal for multiple small deployments
• Attractive in relaxed SLA scenarios
• Database backed up in real time: No data loss
29
Database
( Real time
Backup )
LB
Controller
Database
VIO Control Plane
Binary Log
ReplicationMgmt
Server
VIO 3.x: Compact Mode
30
Controller 1
VIO Application HA
Control Plane
Database 1 Database 2 Database 3
Controller 2
LB 1 LB 2
VIO Compact Control Plane
VIO 3.1: Control Plane Migration
LB
Controller
Database
VIO Control Plane
Mgmt
ServerÇ √
• Quickly import vSphere VMs into VIO
• NSX and Distributed vSwitch
• Start managing vSphere VMs through standard OpenStack APIs
31
VMware Integrated OpenStack
vCenter
Nova
Instance
Nova
Instance
Nova
Instance
Nova
Instance
VIO 3.1: Import vSphere Workloads
CONFIDENTIAL
32
Version
vSphere 6.5EP1
VSAN 6.5
NSX-V 6.3.0
NSX-T 1.1.0
vROPs (w/ OpenStack
Management pack 2.0)
6.4
vRLI 4.0
vRA/VRO 7.2
VIO 3.1 Enterprise Readiness – Latest vSphere and NSX-T support
• Supports both Local and SSO User access using Horizon
• Local users only for CLI access
33
VIO 3.1 : Single Sign-On Support
35
VIO 3.1 : Passthrough - Direct I/O and GPU
37
元件 虛擬機器 vCPU vRAM (GB) 磁碟空間 (GB)
Integrated OpenStack
Manager
1 2
(2 vCPU / Per VM)
4
(4GB / Per VM)
25
負載平衡服務 2 4
(2 vCPU / Per VM)
8
(4GB / Per VM)
40
(20GB / Per VM)
資料庫服務 3 12
(4 vCPU / Per VM)
48
(16GB / Per VM)
240
(80GB / Per VM)
控制器 2 16
(8 vCPU / Per VM)
32
(16GB / Per VM)
160
(80GB / Per VM)
運算服務 (Nova CPU) 1 2
(2 vCPU / Per VM)
4
(4GB / Per VM)
20
(20GB / Per VM)
Ceilometer 1 2
(2 vCPU / Per VM)
4
(4GB / Per VM)
20
(20GB / Per VM)
Ceilometer 資料庫(MongoDB 或 NoSQL
3 6
(2 vCPU / Per VM)
12
(4GB / Per VM)
60
(20GB / Per VM)
合計 13 44 112 565
核心 VMware Integrated OpenStack 3.1 元件
38
元件 虛擬機器 vCPU vRAM (GB) 磁碟空間 (GB)
NSX Controller 3 12
(4 vCPU / Per VM)
12
(4GB / Per VM)
60
(20GB / Per VM)
NSX Manager 1 4
(4 vCPU / Per VM)
12
(12GB / Per VM)
60
(60GB / Per VM)
NSX Edge N (created on
demand)
1 vCPU / Per Edge
DHCP VM
2 vCPU / Per Edge
Router VM
0.5GB vRAM / Per Edge
DHCP VM
1GB vRAM / Per Edge
Router VM
0.5GB / Per Edge
DHCP VM
1GB / Per Edge
Router VM
合計 4
+ NSX Edge needs
16
+ NSX Edge needs
24
+ NSX Edge needs
120
+ NSX Edge needs
VIO 3.1 with NSX
VIO 3.1 with VDS元件 虛擬機器 vCPU vRAM (GB) 磁碟空間 (GB)
DHCP Server 2 8
(4 vCPU / Per VM)
32
(16GB / Per VM)
40
(20GB / Per VM)
Management Cluster
Compute
Cluster(s)Compute
Cluster(s)
Compute
Cluster(s)
VIO Infrastructure Design
39
API Access Network
AD / SSO
NSX
Manager
vCenter
Edge Cluster
Management Network
Transport Network
External Network
VIO Results
40
Nike Amadeus HedgeServ
Deployment Size
Workload Profile
VIO Benefits
• 10 Weeks to Production
• 4 Existing Employees Running
Entire OpenStack Cloud
• Leverage vSphere HA & vMotion
to protect workloads
• Use VIO built-in automated
patching to address issues
• < 8 weeks to Production
• Leverage vSphere Clustering to
replace server & storage: Zero
Downtime to OpenStack Cloud
• Leveraging NSX for complete
multi-tenant L2-L7 networking
• High Volume of concurrent
workloads
• Upgraded OpenStack from
Icehouse (VIO 1.0) to Kilo (2.0) all
by themselves!
• Leveraging vSphere to reliably
run Windows VM
5000+ VMs
E-Commerce WebSite
2,000+ VMs
Online Travel Reservation
1,100+ VMs
CI/CD Pipeline
VIO Delivers the Fastest, Most Reliable & Operationally Complete Production OpenStack Cloud
Completely Supported by VMware
1000+ VMs
Up to1000
VMs
VIO Reference Customers
41
Autodesk
Current OpenStack Challenges
vRealize Automationor
VMware Integrated OpenStackor
Both?
43vSphere NSX VSAN
Operational Management vRealize Operations
Log Analysis vRealize Log Insight
Business Management (Showback/Chargeback) vRealize Business
CloudManagement
Platform
API/CLI
Multi-vendor, multi-cloud
Infrastructure
Multi-vendor Compute, Network
Storage
Service DeliveryAutomation
(Infrastructure, Applications)vRealize Automation
Release Management vRealize Code Stream
VMwareCompute Network
Storage
CloudInfrastructure
VMware Integrated OpenStack
Custom Built
DevOps
Automation
OpenStack APIs Proprietary Vendor APIs
VMware Cloud Management Consumption Options
CI/CD
Day 2 Operations
vRealize Suite: the Control Plane of the SDDC
44
Delivering the Enterprise-Ready Cloud Management Platform
Any Device Business Mobility: Applications | Devices | Content
Any Application Traditional | Cloud Native
One Cloud Software-Defined Datacenter (SDDC)
Cloud Management Platform
1 vRealize Suite components2 Included with vSphere Ent+
Compute Networking
& SecurityStorage Hybrid Cloud
Virtual / Cloud Infrastructure
vRealize Automation1
VMware IntegratedOpenStack (VIO)2
vRealize Operations1
vRealize Log Insight1
vRealize Network
Insight (Arkin)
vRealize Business1
DevOps
Extensibility
vRealize Code Stream
Management Packs
Functional Building Blocks of a Private Cloud
Virtual
Infrastructure
vRA (aka vCAC)
IaaS Consumption
APIs/SDKs/CLI
Nova Neutron Cinder
vSphere NSX VMFS
Basic IaaS &
Virtual Infra Consumption
Compliance & Governance
Service Catalog
Chargeback
Configuration and Change
Management
App Lifecycle Management
Policies
Orc
hestr
ati
on
Exte
rnal
Clo
ud
Co
nn
ec
tor
AWSvCloud Air
vRA is a “Complete” Cloud Management
PlatformOpenStack delivers APIs to consume infra
Additional CMP features for governed cloud
3rd Party toolsor Incubated OpenStack
projects
Quick Demo – VIO Installation
CONFIDENTIAL46
100% Wizard Based Installation
CONFIDENTIAL 48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
Quick Demo – VIO Upgrade
73
74
75
76
77
78
79
80
81
82
83
84
85
Want to learn more? Get hands on with both solutions today!
• Visit the Hands on Labs : hol.vmware.com
The following labs are available for you:
HOL-SDC-1620 – OpenStack with VMware vSphere and NSX
HOL-SDC-1624 – VMware NSX and the vRealize Suite
HOL-SDC-1621 – vRealize Automation 101: App and Infrastructure Delivery and Devops
HOL-SDC-1632 – vRealize Automation Advanced: Integrations and Extensibility
VMware Integrated OpenStack產品介紹https://www.vmware.com/tw/products/openstack.html
取得免費的 OpenStack 訓練課程https://mylearn.vmware.com/mgrReg/login.cfm?
VMware Integrated OpenStack 3.1 安裝指南https://docs.vmware.com/en/VMware-Integrated-
OpenStack/index.html#com.vmware.openstack.install.doc/GUID-80CBC1EF-9F12-451B-9FB5-
F5DFA072DE28.html
VMware Integrated OpenStack 安裝及設定影片教學https://www.youtube.com/watch?v=oNKQZka7XoU&index=1&list=PL9MeVsU0uG67OMa5SN6Rf-
JYwuKBar5Rt
https://www.youtube.com/watch?v=EqXfss49MMA
VIO線上免費資源 - 1
VMware- Rakuten and VMware- How We Got to Enterprise Grade, Production Ready OpenStack
https://www.youtube.com/watch?v=11ew7zEPOso&feature=youtu.be
VMware Integrated OpenStack 3.1說明文件
https://www.vmware.com/tw/support/support-resources/pubs/integrated-openstack-pubs.html
VMware Integrated OpenStack 3.1產品下載
https://my.vmware.com/en/web/vmware/info/slug/datacenter_cloud_infrastructure/vmware_integrated_openstack/3_1
To Learn More Visit: http://www.vmware.com/products/openstack
Try the VIO Hands On Lab! www.vmware.com/go/openstacklab
VIO線上免費資源 - 2
YouTube Video Series
VMware Integrated OpenStack Product Walkthrough
VMware Integrated OpenStack v3.0 - vApp Deployment
VMware Integrated OpenStack v3.0 - OpenStack Deployment
VMware Integrated OpenStack v3.0 - Compact Mode Deployment
VMware Integrated OpenStack v3.0 - Adding Instances
VMware Integrated OpenStack v3.0 - Adding Networks
VMware Integrated OpenStack v3.0 - Adding Volumes
VMware Integrated OpenStack v3.0 - Adding Images
VMware Integrated OpenStack v3.0 - Heat Orchestration
VMware Integrated OpenStack v3.0 - Managing Security Groups
VMware Integrated OpenStack v3.0 - Import Exisitng VM Templates
VIO on YouTube -1
VMware Integrated OpenStack v3.0 - Adding Projects and Users
VMware Integrated OpenStack v3.0 - Monitoring and Troubleshooting
VMware Integrated OpenStack v3.0 - Log Analysis
VMware Integrated OpenStack v3.0 - Cost Analysis and Capacity Planning
VMware Integrated OpenStack v3.0 - Maintenance and Administration
VMware Integrated OpenStack v3.0 - Import Existing VMs
VIO on YouTube -2
Key Take Away
91
VMware Integrated OpenStack (VIO)
VIO is the Fastest, most Reliable and
Operationally complete approach to
OpenStack
Thank you!