Your SlideShare is downloading. ×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×

Introducing the official SlideShare app

Stunning, full-screen experience for iPhone and Android

Text the download link to your phone

Standard text messaging rates apply

Webinar - Introducing Couchbase 2.5: Better Reliability and Security for Enterprises

1,033
views

Published on

Curious to know what’s new in Couchbase Server 2.5? Couchbase Server is a NoSQL document database for interactive apps. The latest 2.5 Couchbase Server release is here and includes several exciting …

Curious to know what’s new in Couchbase Server 2.5? Couchbase Server is a NoSQL document database for interactive apps. The latest 2.5 Couchbase Server release is here and includes several exciting features in areas like reliability, security and connection management. With this release, enterprises can use rack zone awareness and secure cross datacenter for better reliability and security. In this webinar, you’ll also get to see a hands-on tour of the new features in Couchbase Server with a live demo.

What is rack-zone awareness in Couchbase Server and how it can be used for increased reliability and availability.
How you can use secure cross datacenter replication for enhanced security on-the-wire when data is replicated from one datacenter to another, and
How better connection management in Couchbase Server 2.5 can help you support many more clients, thus enabling higher scale.

Published in: Technology

0 Comments
2 Likes
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
1,033
On Slideshare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
36
Comments
0
Likes
2
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide
  • Thanks everyone for coming today. My name is Don Pinto and I’m a product manager at Couchbase. I think today’s presentation is going to be very fun and interactive (w/ some exciting demos). We’ll talk about Couchbase 2.5 and what the new features are and about other things we have done to make this release solid. Although this is a minor release, I’m very excited about this because as you will see, we have focused a lot on the enterprise .. so as to build the momentum we started in v2.2.
  • (internal notes)Apache CouchDB is a separate open-source projectCouchbase is another open source project which takes inspiration from the Apache CouchDB and memcached projects.
  • Couchbase Server is a distributed NoSQL document database for interactive web and mobile apps. It provides both key value and JSON document access. Several large enterprises use Couchbase Server in production in different ways – some using it as a high availability cache, while many others using it as a database storing data using keyvalue or documents (depending on the app), further…even some exploring Couchbase lite option on a mobile device.
  • When you’re building that app, there are primarily 4 considerations in choosing a NoSQL database. Let me go over these 4 considerations and explain why they are important..
  • Given these 4 characteristics, from the product roadmap perspective, there are 5 key aspects that we are focusing on…Reliability … mission critical apps .. More and more includes both HA + DR (Both).Security …given that we are a young product … with 2.2 (Read-only user)… as customers and user deploy in enterprises, more security features are needed
  • By default, replica partitions are distributed evenly across all of the nodes in the cluster:  each node (of a cluster containing N nodes) is the data master for 1/N of the data partitions and the replicas for these partitions are divided evenly among the other N-1 nodes. This standard arrangement means that when a rack fails, the nodes in a rack may contain both the data master node and the replica node for some partitions, resulting in possible data unavailability.To avoid potential data unavailability, you can configure nodes into groups where all of the servers in a group are in a single rack.  The nodes in a group serve as data master nodes but are ineligible to serve as replicas for the other nodes in the same group. Replicas will then be distributed among nodes in other groups (racks).
  • Move data close to usersRead and write data in any datacenterMultiple locations for disaster recoveryIndependently managed clusters serving same data
  • Bulletize the text. Make sure build work properly.
  • Transcript

    • 1. What’s new in 2.5 Don Pinto Product Manager
    • 2. What is Couchbase?
    • 3. Couchbase – The Complete NoSQL Solution Easy Scalability Grow cluster without application changes, without downtime when needed Always On 24x7x365 The sun never sets on the Internet, your application needs the database to always serve data Consistent High Performance Always awesome experience for your application users JSON JSON JSO JSON N JSON Flexible Data Model Keep developers productive and allow fast and easy addition of new features
    • 4. Product Roadmap Focus Areas Reliability Ease of development Security Couchbase Server Performance Ease of administration
    • 5. Major Couchbase 2.5 Features AVAILABILITY AND RELIABILITY Rack awareness SECURITY Secure cross datacenter replication EASE OF ADMINISTRATION Better connection management (in client)
    • 6. Rack awareness in Couchbase Server
    • 7. What is rack awareness ? • Grouping of servers into server groups so that each group is on a physically separate rack • Ensures that replica data partitions are not on the same rack as the primary partitions • Servers 1,2,3 on Rack 1 • Servers 4,5,6 on Rack 2 • Servers 7,8,9 on Rack 3 • Cluster has 2 replicas (3 copies of data) • This is a balanced configuration
    • 8. Why you need rack awareness? Manual failover promotes replica copies to active Primary copy fails • High Availability - If a rack fails, data is still available and the app can get to the data • Rack awareness is an HA solution, not a DR solution!
    • 9. Configuring rack awareness • Configured through the management UI or by using the REST API • Simple 2 step process STEP 1: Configure at least 2 server groups
    • 10. Configuring rack awareness STEP 2 : Configure all of the servers to use the server groups
    • 11. Replication and rack awareness • Prior to 2.5, replica partitions were randomly distributed across the cluster • With rack awareness, replica partitions of a server group are distributed evenly to other server groups Group 1 Server 1 Server 2 Server 3 Server 4 Rack #1 Group 1 Replica vBuckets Server 1 Replica vBuckets for Group 2 Rack #2 Server 5 Replica vBuckets for Group 1 Group 2 Replica vBuckets Server 2 Replica vBuckets for Group 2 Server 6 Replica vBuckets for Group 1 Server 3 Replica vBuckets for Group 2 Server 7 Replica vBuckets for Group 1 Server 4 Replica vBuckets for Group 2 Server 8 Replica vBuckets for Group 1 Group 2 Server 5 Server 6 Server 7 Server 8
    • 12. Adding a server to a rack aware cluster • If a server group has more servers than the other, there is an imbalance - The rebalance operation performs a best effort to evenly distribute replica data partitions across the cluster. Group 1 Server 1 Server 2 Server 3 Server 4 Server 9 Rack #1 Rack #2 Server 1 Replica vBuckets for Group 2 Replica vBuckets for Server 9 in Group 1 Server 5 Replica vBuckets for Group 1 Server 2 Replica vBuckets for Group 2 Replica vBuckets for Server 9 in Group 1 Server 3 Replica vBuckets for Group 2 Replica vBuckets for Server 9 in Group 1 Server 4 Replica vBuckets for Group 2 Replica vBuckets for Server 9 in Group 1 Server 9 Replica vBuckets for Group 2 Server 6 Replica vBuckets for Group 1 Server 7 Replica vBuckets for Group 1 Server 8 Replica vBuckets for Group 1 Group 2 Server 5 Server 6 Server 7 Server 8
    • 13. Multiple instances on a physical machine • Handy for development purposes - Tested and supported on Linux
    • 14. Demo: Rack Awareness
    • 15. Things to remember about rack awareness • Rack awareness is recommended for larger deployments that span multiple physical racks • To use rack awareness all the servers in the cluster must be upgraded to Couchbase 2.5 enterprise edition • By default all servers are added to the same server group - This means rack awareness if off by default unless configured • You still need XDCR to protect your data from datacenter failures for disaster recovery • For best reliability, it is a good practice to have the same number of servers in each server group
    • 16. Secure Cross Datacenter Replication
    • 17. Cross Datacenter Replication Review SERVER 2 SERVER 1 ACTIVE SERVER 3 ACTIVE Doc Doc Doc Doc Doc 2 RAM COUCHBASE SERVER CLUSTER NYC DATA CENTER ACTIVE Doc Doc Doc 9 Doc RAM Doc DISK Doc Doc Doc RAM Doc Doc DISK Doc Doc Doc DISK SERVER 2 SERVER 1 ACTIVE SERVER 3 ACTIVE ACTIVE Doc COUCHBASE SERVER CLUSTER SF DATA CENTER Doc Doc Doc 2 RAM Doc Doc Doc Doc 9 Doc DISK RAM Doc Doc Doc Doc DISK RAM Doc Doc Doc Doc DISK Doc
    • 18. Security Basics
    • 19. Public Key Encryption Message Cipher text “The quick brown fox jumps over the lazy dog” Clear-text output message “Py75c%bn&*)9|fDe^bD Faq#xzjFr@g5=&nmdFg$ 5knvMd’rkvegMs” “The quick brown fox jumps over the lazy dog” Encryption public Recipient’s public key Decryption private Recipient’s private key
    • 20. Digital Certificate Public Key public Other certificate info
    • 21. What is secure cross data center replication? • XDCR traffic is encrypted on the wire when it goes across the network
    • 22. Why is secure cross datacenter replication important ? • More and more sensitive data is getting stored in NoSQL databases • Keep sensitive information across the internet encrypted so that only the intended recipient can understand it • No built-in VPN support between different regional zones
    • 23. Configuring secure cross datacenter replication • STEP 1: Getting the destination SSL certificate
    • 24. Configuring secure cross datacenter replication • STEP 2: Setting up XDCR with the remote cluster certificate
    • 25. Demo: Secure Cross Datacenter Replication
    • 26. How does the network traffic look? Without Secure XDCR
    • 27. How does the network traffic look? With Secure XDCR
    • 28. Things to remember when using secure cross datacenter replication • Make sure that the ports used by XDCR are available - 11214, 11215, 18091, 18092 • Periodically rotate the XDCR certificates - There might be a slight backlog of items in the XDCR queue • Encryption might cause a slight increase in CPU load on the source and destination clusters • With secure XDCR, all traffic between source and destination cluster is encrypted - For a given XDCR connection, all buckets replicated between the source and destination are encrypted
    • 29. Better Connection Management
    • 30. Cluster map management CLUSTER MAP UPDATED VIA PERSISTENT CONNECTION ON PORT 8091 COUCHBASE Client APP SERVER 2 Library COUCHBASE Client Library APP SERVER 1 COUCHBASE Client Library COUCHBASE Client Library COUCHBASE Client Library CLUSTER MAP UPDATED OVER MEMCACHED PORT 11210 COUCHBASE Client Library CLUSTER MAP CLUSTER MAP READ/WRITE/UPDATE READ/WRITE/UPDATE SERVER 1 SERVER 2 SERVER 3 SERVER 4 SERVER 5 ACTIVE ACTIVE ACTIVE ACTIVE ACTIVE Doc 5 Doc Doc 4 Doc Doc 1 Doc Doc 2 Doc Doc 7 Doc Doc 2 Doc Doc 9 Doc Doc 8 Doc Doc 6 Doc REPLICA REPLICA REPLICA Doc 4 Doc Doc 6 Doc Doc 7 Doc Doc 1 Doc Doc 3 Doc Doc 9 Doc Doc 8 Doc Doc 2 Doc Doc 5 Doc COUCHBASE SERVER CLUSTER User Configured Replica Count = 1 • Two new servers added • Docs automatically rebalanced across cluster • Cluster map updated REPLICA REPLICA • App database calls now distributed over larger number of servers
    • 31. Better connection management (in client) • Just-in-time publication of cluster topology map - For every client, stateful connection is replaced with a just-in-time configuration update over the memcached port (11210) • Faster client bootstrap time and topology changes • Higher scaling to support large number of clients • More reliable behavior during rebalance and failover
    • 32. Other Resources • Couchbase Server 2.5 Docs : http://docs.couchbase.com/ • Rack awareness in Couchbase Server : http://docs.couchbase.com/couchbase-manual-2.5/cb-admin/#rackawareness • Secure Cross Datacenter Replication : http://docs.couchbase.com/couchbase-manual-2.5/cb-admin/#xdcrdata-encryption • Multiple instances of physical machine : http://docs.couchbase.com/couchbase-manual-2.5/cb-install/#installingmultiple-instances-on-a-machine • Couchbase Server 2.5 Release Notes : http://docs.couchbase.com/couchbase-manual-2.5/cb-release-notes/ • Couchbase Blog : http://blog.couchbase.com • Couchbase Server Community Portal : http://www.couchbase.com/communities/
    • 33. Thank You! Get Couchbase Server 2.5 http://www.couchbase.com/download Don Pinto @NoSQLDon don@couchbase.com
    • 34. Q&A
    • 35. Encrypting messages Private Key Session Key + Un-encrypted JSON Document Session Key Decrypt + Recipient's Public key from certificate + Session Key Encrypted Message Un-encrypted JSON Document