• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
Moving to the Cloud
 

Moving to the Cloud

on

  • 3,750 views

"The Cloud" is a buzzword these days, but in this talk Nate Aune and Sally Kleinfeldt describe what you need to know about public and private clouds, why it's important, and why you might want to ...

"The Cloud" is a buzzword these days, but in this talk Nate Aune and Sally Kleinfeldt describe what you need to know about public and private clouds, why it's important, and why you might want to consider it for your company/organization. We'll discuss the pros/cons of public cloud providers such as Amazon Web Services and Rackspace Cloud, and how you can build your own private cloud using OpenStack or Eucalpytus, or even a hybrid that leverages both public and private clouds. Lastly, we'll look at how Plone can be deployed onto the cloud, and best practices for setting up your Plone site in a flexible and scalable way to take full advantage of all that these cloud providers have to offer. In particular, we'll examine the Connexions/Rhaptos project as a case study, and how they benefited from an Amazon-backed infrastructure.

Video of the presentation is available here: https://streaming.psu.edu/media/?movieId=13392

Statistics

Views

Total Views
3,750
Views on SlideShare
3,747
Embed Views
3

Actions

Likes
1
Downloads
55
Comments
0

1 Embed 3

http://www.onlydoo.com 3

Accessibility

Categories

Upload Details

Uploaded via as Adobe PDF

Usage Rights

CC Attribution-NonCommercial-ShareAlike LicenseCC Attribution-NonCommercial-ShareAlike LicenseCC Attribution-NonCommercial-ShareAlike License

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

    Moving to the Cloud Moving to the Cloud Presentation Transcript

    • Moving to the Cloud Nate Aune(Presented by Sally Kleinfeldt) Jazkarta.com Plone Symposium East 2011 Penn State University
    • Agenda• Benefits of cloud computing• What services does Amazon provide?• 5 minute launch of Plone on EC2• Case study: Rhaptos hosting on EC2• Questions?
    • What makes the Cloud so attractive?
    • Abstract resources Focus on your needs, not on hardware specs.As your needs change, so should your resources.
    • On-demand provisioning Ask for what you need, exactly when you need it. Get rid of it when you don’t need it.
    • Scalability in minutes Scale out or in depending on usage needs.
    • Pay per consumption No contracts or long-term commitments. Pay only for what you use.
    • Efficiency of ExpertsUtilize the skills, knowledge and resources of experts.
    • Most applications need:• Compute• Storage• Messaging• Payment• Distribution• Scale• Analytics
    • Amazon delivers this
    • Characteristics of Truly Scalable Service• Increasing resources results in a proportional increase in performance• capable of handling heterogeneity, loosely coupled• operationally efficient• resilient• becomes more cost effective when it grows
    • Flexible infrastructure• Elastic Computing Cloud (EC2) • Amazon Machine Images (AMI) • Elastic IPs • Elastic Block Storage (EBS) • EBS bootable AMI • Auto-scaling • Elastic Load Balancing (ELB)
    • Other services• Simple Storage Solution (S3)• CloudFront (CDN)• CloudWatch (monitoring)
    • Compared to Rackspace• Rackspace is still catching up to AWS (just announced load balancing a few weeks ago)• Rackspace is a bit easier to get started with • sends you the root password • machines already have a static IP • the disk storage is persisted• Prices are comparable to AWS • Cheapest Rackspace VM is $14/mo
    • Private clouds• Provision virtual machines on your own hardware• Pros: you control your own machines.• Cons: you have to manage your own machines• Examples: Eucalyptus, OpenStack http://open.eucalyptus.com http://openstack.org/
    • http://uec-images.ubuntu.com/ Text
    • mr.awsomeBuildout recipe to manage EC2 instances
    • Add an AWS part to buildout[buildout]parts = aws[aws]recipe = zc.recipe.eggeggs = mr.awsomeentry-points = aws=mr.awsome:aws assh=mr.awsome:aws_ssharguments = configpath="${buildout:directory}/etc"
    • Make a etc/aws.conf file[securitygroup:demo-server]description = Bristol Demo Serverconnections = tcp 22 22 0.0.0.0/0 tcp 80 80 0.0.0.0/0 tcp 8080 8080 0.0.0.0/0[instance:demo-server]keypair = bristol-keypairsecuritygroups = demo-serverregion = us-east-1placement = us-east-1ainstance_type = t1.microimage = ami-480df921startup_script = startup-demo-serverfabfile = fabfile.py
    • Make a bash script: etc/startup-demo-server#!/bin/bashset -e -xexport DEBIAN_FRONTEND=noninteractivewget http://www.enfoldsystems.com/pubkey.gpgapt-key add ./pubkey.gpgecho "deb http://dist.clients.enfoldsystems.com/ubuntu luciduniverse" >> /etc/apt/sources.listapt-get update && apt-get upgrade -yapt-get install plone-default -y/etc/init.d/plone-default
    • Set your access keysFile: setkeys.sh#!/bin/bashexport AWS_ACCESS_KEY_ID="<your_access_key_id>"export AWS_SECRET_ACCESS_KEY="<your_secret_access_key>"Set these environment variables.$ source setkeys.sh$ env
    • Start the demo server$ ./bin/aws start demo-serverINFO: Instance demo-server unavailableINFO: Creating instance demo-serverINFO: Instance created, waiting until its available....INFO: Instance demo-server availableINFO: Instance running.INFO: Instances DNS name ec2-50-16-25-92.compute-1.amazonaws.comINFO: Instances public DNS name ec2-50-16-25-92.compute-1.amazonaws.com
    • Benefits of EC2• Seamless disaster recovery with repeatable deployments using buildout and mr.awsome• Easy launching of testing, staging and QA servers that are isolated from your production environment (stop when not used to avoid paying for them)• Pay-for-what-you-use metered pricing to launch servers on-demand during peak periods• Auto-scaling to launch new Zeo client machines and shut them down when no longer needed
    • Connexions & Rhaptos A case study in deploying OSS to the cloud
    • Log In Contact Us Report a Bug Search Home Content Lenses About Us Help MyCNXYou are here: Home MY ACCOUNTConnexions is: FIND CONTENTa place to view and share educational material made of Username 16547 reusable modules woven into 1007 collections.small knowledge chunks called modules that can be Passwordorganized as courses, books, reports, etc. Anyone may view Search Content Go Log inor contribute: or browse by ... Arts Get an account authors create and collaborate Subject Business Forgot your password? s instructors rapidly build and share custom collections Language Humanities Mathematics and Statistics learners find and explore content Popularity Science and TechnologyMore about us ... New features Title, author, etc. Social Sciences FEATURED CONTENT CREATE CONTENT Advanced Algebra II Creating content in Connexions is as easy as 1, 2, 3: The world of second-year SPOTLIGHT algebra comes alive in Kenny Felders Advanced Algebra II. User feedback Felder, a high school math "I enjoy using teacher in North Carolina, the designed his course using a Connexions nontraditional approach to a very site and the traditional subject. Centered around a Homework and 1 Get an account and log in to 2 Make a module from scratch or 3 Publish your works, sharing philosophy behind it Activities book, along with your workspace. convert it from a them with the world. encourages accompanying Conceptual Word doc. one to learn Explanations and Teachers Guide collections, new fields and Advanced Algebra II tackles topics by focusing on to network with others. Your Jump right in Guides and tutorials comprehension rather than straight lecture delivery. site is my new homeschool on Get an account New author guide the internet. It is helping me Advanced Algebra II was selected by Californias Free to grow as a writer of Digital Textbook Initiative to be included in a list of How to create a module in Connexions Tutorial and academic materials as I read free textbooks available to California schools starting minutes Reference what others have written so as in Fall 2009. How to create a collection to shape my own. I am also amazed at the range of with existing modules institutions where your writers Collaborative Statistics come from. Thanks for the use of these great facilities." Collaborative Statistics was written by two faculty members
    • Search Login Preferences Help/Guide About Trac Wiki Timeline Roadmap Browse Source View Tickets New Ticket Search Start Page Index History Last ChangeWelcome to Connexions and Rhaptos Software Development Connexions ( cnx.org) is legos for education. It is a world-wide repository and publishing system to build textbooks, courses, lessons, and journals. Individual authors, major content publishers, and educational organizations all contribute. Lenses provide a way for high-quality material to be endorsed, recommended, categorized, and aligned to standards. Rhaptos is the open source software that runs the Connexions site and Enterprise Rhaptos is the software for running private content installations. Read more about Connexions and Rhaptos mission and architecture here. Enterprise Rhaptos Connexions and Rhaptos Development Table of Contents Welcome to Connexions and Rhaptos Software Development Enterprise Rhaptos APIs for Accessing Connexions Data Accessing content, feeds, and statistics APIs for Accessing Data Quality Assurance and Testing Downloading, transforming and branding content Software Architecture and Application Programming Interfaces Connexions Rhaptos Development Developer Resources (Getting involved) Roadmap, Designs, Desires Starting Points for Connexions and Rhaptos Software Development Quality Assurance and Testing Test, Release, and Configuration Docs Using the Connexions Rhaptos Trac Bug System Release and Configuration Details for Connexions and RhaptosEnterprise Rhaptos More about TRAC Enterprise Rhaptos enables the creation, sharing, modification, and vetting of educational materials accessible to anyone, anywhere, anytime via the World Wide Web. Rhaptos unique features of permanent versions of all materials, a simple, semantic document language, and a powerful lensing system for post-publication quality control, customized tagging, and community-based search and discovery are the engine behind a truly reusable repository of knowledge and learning. Enterprise Rhaptos allows companies and individual organizations to host their own private authoring platform and publishing repository. Installation Instructions for Enterprise RhaptosAPIs for Accessing Connexions Data
    • Virtualization of Rhaptos Two primary reasons to move to the cloud: 1) Hurricane territory (disaster recovery) 2) Increase adoption by other universities Cost was also a consideration but not a primary reason for carrying out the project.
    • Deploy to Amazon EC2 with Python scripts• Define server profiles with OS dependencies and turn into an AMI (Amazon Machine Image)• Install & configure application on EBS volume• Take snapshot of volume• Launch new AMIs and attach EBS volume created from saved snapshot.
    • Distributed Architecture Internet s2 frontend1 Webserver Cache Sys s3 frontend2 Load Balancer backends1 proxy s4 frontend3 s5
    • aws.conf - define security groups[macro:base-securitygroup]connections = tcp 22 22 0.0.0.0/0 tcp 80 80 0.0.0.0/0[securitygroup:backend]<= macro:base-securitygroupdescription = Bristol backend machine running Zeo server[securitygroup:frontend1]<= macro:base-securitygroupdescription = Bristol frontend machine running Zeo client 1connections = tcp 8080 8080 0.0.0.0/0[securitygroup:frontend2]<= macro:base-securitygroupdescription = Bristol frontend machine running Zeo client 2connections = tcp 8080 8080 0.0.0.0/0[securitygroup:proxy]<= macro:base-securitygroupdescription = Bristol proxy machine running Apache, Varnish, HAProxy
    • [macro:base-instance]image = ami-480df921keypair = bristol-keypairregion = us-east-1placement = us-east-1cinstance_type = t1.microfabfile = fabfile.py[instance:backend]<= macro:base-instancesecuritygroups = backendstartup_script = backend-startup.ship = xxx.xxx.xxx.xxx[instance:frontend1]<= macro:base-instancesecuritygroups = frontend1startup_script = frontend-startup.ship = xxx.xxx.xxx.xxx[instance:frontend2]<= macro:base-instancesecuritygroups = frontend2startup_script = frontend-startup.ship = xxx.xxx.xxx.xxx[instance:proxy]<= macro:base-instancesecuritygroups = proxystartup_script = proxy-startup.ship = xxx.xxx.xxx.xxx
    • [buildout]parts = backend-script frontend-script proxy-script[backend-script]recipe = collective.recipe.templateinput = deployment/templates/zope-startup-script.shoutput = deployment/backend-startup.shsvn_url = http://svn.jazkarta.com/.../bristol-buildout/trunkbuildout_config = backend.cfg[frontend-script]recipe = collective.recipe.templateinput = deployment/templates/zope-startup-script.shoutput = deployment/frontend-startup.shsvn_url = http://svn.jazkarta.com/.../bristol-buildout/trunkbuildout_config = frontend.cfg[proxy-script]recipe = collective.recipe.templateinput = deployment/templates/proxy-startup-script.shoutput = deployment/proxy-startup.shsvn_url = http://svn.jazkarta.com/.../bristol-buildout/trunkbuildout_config = proxy.cfg
    • #!/bin/bashset -e -xexport DEBIAN_FRONTEND=noninteractiveapt-get update && apt-get upgrade -yecho "----- Install system packages for Plone"apt-get -y install python2.6-dev subversion build-essentialecho "----- Create an unprivileged user zope with password disabled"adduser zope --disabled-password --gecos ""echo "----- Check out the buildout"cd /home/zopeecho pn | svn co http://svn.jazkarta.com/.../.../trunk buildoutecho "----- Make the zope user the owner of this directory"chown -R zope:zope buildoutecho "----- Run the buildout as user zope"cd buildoutsudo -u zope python2.6 bootstrap.py -c backend.cfgsudo -u zope ./bin/buildout -v -c backend.cfgecho "----- Start Zeo processes"sudo -u zope ./bin/supervisordsudo -u zope ./bin/supervisorctl statusecho "----- Make sure that Supervisor starts on reboot"ln -s /home/zope/buildout/etc/supervisor /etc/init.d/supervisorchmod +x /etc/init.d/supervisorupdate-rc.d supervisor defaults
    • Must define the FQDN of the Zeo clients and Zeo servers [buildout] backend-dns-name = ec2-174-129-192-63.compute-1.amazonaws.com frontend1-dns-name = ec2-174-129-116-33.compute-1.amazonaws.com frontend2-dns-name = ec2-184-73-240-104.compute-1.amazonaws.comWhen these names are resolved *on* the server, the DNSserver returns the private IP, which means you avoid paying bandwidth charges for outgoing/incoming traffic.
    • Start up the servers with one command$ ./bin/aws start backend$ ./bin/aws start frontend1$ ./bin/aws start frontend2$ ./bin/aws start proxy
    • Fault tolerantEliminating single points of failure.
    • Distributed Architecture Internet s2 Webserver Cache Sys s3 Load Balancers1 s4 s5
    • Heartbeatmonitors Zeoserver and moves tobackup in case offailureDRDBDistributed storagesystem similar inprinciple in RAID,but which worksover the network.
    • Improvements to the deployment process Before After• time to launch a new site was days• brittle non-repeatable installation process• delay in procuring hardware and installing OS dependencies
    • Improvements to the deployment process Before After• time to launch a new site • time to launch a new site was days was minutes• brittle non-repeatable • streamlined and installation process automated installation process• delay in procuring hardware and installing • virtual machines are OS dependencies launched instantly and OS dependencies are already installed on the disk image.
    • FabricScripts to deploy to remote hosts. http://www.fabfile.org
    • Fabricset(fab_user=plone, fab_hosts=[localhost], local=/home/plone/prod/, remote=/opt/zope/prod/, site=budapest.buildout)def deploy(): local(cd $(local)$(site)) local(tar cvfz $(site).tgz buildout --exclude=.svn --exclude=*.pyc) run(cd $(remote)$(site); ./bin/supervisorctl shutdown) run(rm -rf $(remote)$(site)) put($(site).tar.gz, $(remote)$(site).tar.gz) run(cd $(root)$(site) && tar zxf $(site).tar.gz) start()def start(): run(cd $(remote)$(site)) run(./bin/supervisord)
    • Deploy $ fab deployWhat does this one command do?• Provides a local packaging of the source into a tarball• Removes the old remotely deployed code• Puts the source on the remote host• Restarts the site
    • Benefits of Fabric• Chain local-command, remote-command, and remote-copy commands• Substitute variables, and the splitting of distinct operations (like in the case of the restart command) so you run them separately, with a fab restart, for example.
    • Example Fabric file• See Alex Clark’s Fabric file:• http://github.com/aclark4life/Debian-Deploy- Plone/blob/master/fabfile.py
    • Boto• Python library to script AWS services• Programmatically: • Launch new EC2 instances • Attach EBS volumes • Create S3 buckets http://code.google.com/p/boto/
    • collective.hostoutBuildout-based recipe for deploying to remote hosthttp://plone.org/products/collective.hostout
    • [buildout]extends = buildout.cfgparts += hostout prodauto-checkout += collective.hostout[sources]collective.hostout = svn https://svn.plone.org/svn/collective/collective.hostout/trunk[hostout]recipe = collective.hostoutuser = root#password = blahidentity-file = /Users/nateaune/id_rsa-gsg-keypairpre-commands =# ${buildout:directory}/bin/supervisorctl shutdown || echo Unable to shutdown# post-commands =# ${buildout:directory}/bin/supervisord#effective-user = zope[prod]recipe = collective.hostoutextends = hostouthost = ec2-75-101-211-135.compute-1.amazonaws.combuildout = buildout.cfgpath = /opt/zope/prod
    • Run the deploy commands$ ./bin/buildout -NInstalling prod.Generated script /bin/hostout.$ bin/hostout deployInvalid hostout hostouts are: prod$ bin/hostout deploy prod...
    • Chef & Puppet• Configuration management tools to prepare machines to behave according to their role.• Unlike Fabric which “pushes” config to the server, with Chef/Puppet, the server “pulls” it’s configuration from a master node.• Usually overkill for a simple deployment, but with a multi-server deployment can be useful, especially to keep machines up-to-date. http://opscode.com/chef/ http://www.puppetlabs.com/
    • Questions?• http://rhaptos.org• http://pypi.python.org/pypi/mr.awsome• http://fabfile.org• http://code.google.com/p/boto/• http://pypi.python.org/pypi/collective.hostout