• Like

EucaMeetup NYC - April 10, 2012

  • 725 views
Uploaded on

Slides from the recent Eucalyptus Meetup in NYC

Slides from the recent Eucalyptus Meetup in NYC

More in: Technology , Business
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
    Be the first to like this
No Downloads

Views

Total Views
725
On Slideshare
0
From Embeds
0
Number of Embeds
0

Actions

Shares
Downloads
13
Comments
0
Likes
0

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide

Transcript

  • 1. eetup#e ucam
  • 2. Welcome NYC EucaMeetup David P Butler SVP, Marketing© 2011 Eucalyptus Systems, Inc.
  • 3. Eucalyptus is the world’s most widely deployed on-premise Infrastructure as a Service Cloud© 2011 Eucalyptus Systems, Inc.
  • 4. © 2011 Eucalyptus Systems, Inc.
  • 5. www.eucalyptus.com/participate © 2011 Eucalyptus Systems, Inc.
  • 6. Partner Ecosystem Cloud App Data Center System Cloud Cloud DataDevelopment Automation Integrators Management Center Platform and Infrastructure © 2011 Eucalyptus Systems, Inc.
  • 7. Infrastructure as a Service Flexibility Automation Speed Trust © 2011 Eucalyptus Systems, Inc.7
  • 8. IT as a Service Resource Platform Applications Resource Self-Service Self-Service Dynamic Chargeback Resource Resource Resource and Configuration Provisioning Management Reporting Infrastructure as a Service (IaaS) On-premise © 2011 Eucalyptus Systems, Inc.
  • 9. Thank you. david@eucalyptus.com twitter.com/david_p_butler© 2011 Eucalyptus Systems, Inc.
  • 10. Highly Available Cloud Services in an Application Self- Service World Govind Rangasamy Director, Product Management© 2011 Eucalyptus Systems, Inc.
  • 11. Customer Need for CloudAgility is key… Flexibility Automation Speed Trust Resource Self-Service Self-Service Dynamic Chargeback Resource Resource Resource and Configuration Provisioning Management Reporting Infrastructure as a Service (IaaS) © 2011 Eucalyptus Systems, Inc.
  • 12. An enterprise open source, on-premise cloud Infrastructure-as-a-Service (IaaS) software platform Web services API to enable Self-serviceable infrastructure Cloud compute, network, storage and identity resources are accessible as services Virtual resource management orchestrates disposable virtual cloud resources placement, handles security & traffic isolation, identity and storage Physical resource management tools interface with hypervisor, storage, and network infrastructure © 2011 Eucalyptus Systems, Inc.
  • 13. Eucalyptus IaaS Deployment (non HA)• Cloud Controller •  Cloud level - Virtual Resource System •  AWS EC2 Compatible• Walrus Storage Node Controller •  Persistent data store VM •  Bucket-based, like S3 VM VM Resource Admin Cluster Controller• Cluster Controller VM •  Node level - Virtual Resource System SAN •  Manage Virtual Network Cloud Controller Storage Controller• Storage Controller •  Block accessed network storage •  Like EBS Walrus Storage ESX Cluster Controller ESXi• Node Controller •  VM management NAS VMware Broker •  Instance management Storage Controller• VMware Broker •  ESX, ESXi management •  vCenter server compatible © 2011 Eucalyptus Systems, Inc.
  • 14. Cloud IaaS Technology Benefits•  Cloud separates servers/applications from infrastructure•  Cloud standardizes applications and servers into portable containers•  Cloud allows carrying security with portable containers•  Cloud provides greater availability with resource isolation•  Cloud allows scale-out using built-in elasticity•  Cloud allows easier scale-in•  Cloud allows rapid resource provisioning•  Cloud allows easy DR © 2011 Eucalyptus Systems, Inc.
  • 15. Standardize Stacks => Portable Containers SCM Web Server Walrus Proprietary code App Server Proprietary Log4J code Self-Service Hibernate Log4J Convert Spring Existing stack to Spring portable Container EMI Hibernate Web Server VM JEE App Server JEE VM Various Agents Various Agents VM Linux Linux © 2011 Eucalyptus Systems, Inc.
  • 16. Cloud and Self-Service16 © 2012 Eucalyptus Systems, Inc.
  • 17. Developer/QA Self-Service•  Intuitive self-service compute, network, storage UI•  Key management and encryptions•  Shell/RDP access•  Elastic Block Storage encryption•  Remote logging•  Virtual Machine Monitoring•  Budgeting and chargebacks © 2011 Eucalyptus Systems, Inc.
  • 18. App Dev/Test Workflow SystemOrchestration through Cloud Self-service API•  Orchestrate cloud resources•  Integrates with developer tool chain –  Build tools –  SCM systems –  Application servers –  Testing and code analysis tools•  Process and utilization reporting•  Dev. Configuration sharing © 2011 Eucalyptus Systems, Inc.
  • 19. Cloud and Application Platform Self-Service19 © 2012 Eucalyptus Systems, Inc.
  • 20. Scalable Web Apps Website/ SocialGami ng External Firewall•  Scalability Hardware or software to open standard ports (80, 443)•  Unpredictable LB Web Load Balancer Hardware or software to workloads distribute network traffic across several web servers Web Server Farm to handle•  High Availability Web Web Web http requests Server Server Server Backend firewall to limit•  Performance access to App Servers (software or hardware)•  Manageability LB App Servers and Cache App App App•  Low Cost Server Server Server servers that implement business logic Data Tier with protection MySQL Replication MySQL © 2011 Eucalyptus Systems, Inc.
  • 21. Example: Scalable Web ServicesCloud Puma.com HLB Web Server Web Server Puppet Web Server Web Server Merlin M Bare Metal Provisioner Nagios SLB SLB MySQL App Server App Server App Server App Server M Zone 1 Zone 2 Walrus with Images NFS Store (NetApp) © 2011 Eucalyptus Systems, Inc.
  • 22. Reactive IT to Proactive IT using standardizedportable containers with IaaS Reactive IT Workflow Proactive IT Workflow with Cloud Application Users Wait Application Identify the root Slows down cause Slows down Determine Track down the Fix infrastructure impact to other critical Apps troubled server issues Decide to include (Auto) provision another or exclude the Determine the exact instance to fix the Infrastructure Talk to Admins root cause resource from the application cloud Fix the application © 2011 Eucalyptus Systems, Inc.
  • 23. Business impact of downtimeThe risks to business performance Revenue: $ Billions Direct loss, compensatory Exponential payment, lost future revenues, increase billing losses and investment Financial losses performance Productivity: Damaged Number employee x impacted reputation x hours out x burdened hours $ Impact =? Productivity/ employees Damaged reputation: Direct financial/ Customers, competitors gain customer advantage, suppliers, financial markets, business $ Millions partners Financial performance: Constant increase Revenue recognition, cash flow, credit rating, stock Minutes Time Days price, regulatory fines Source: IDC Business Value Database © 2011 Eucalyptus Systems, Inc. 23
  • 24. Cost of downtimeIndustry sector Lost productivity Lost revenueRetail $95,852 $888,498Manufacturing $397,822 $21,900,898Healthcare $1,128,970 $12,767,013Financial $127,027 $11,648,105Public Sector $74,625 N/ACommunication, Media $347,964 $49,489,612& Entertainment (CME)Average Annual $362,043 $16,115,687CostsSource: IDC Business Value Database © 2011 Eucalyptus Systems, Inc.
  • 25. Eucalyptus IaaS High Availability Maintain Respond to Autonomic IaaS Service Integrity Change Quickly•  Resilient and reliable cloud •  Preserves virtual instances •  Flexible placement of service availability location instances•  Self-aware services failure •  Preserves VM isolation •  Detect and failover of detection configurations, Elastic IPs, services to available•  Coordinated recovery of Security Groups resources failed cloud services •  Protects storage buckets •  Separation of service and •  Preserves VM to storage data for faster recovery mapping •  Adaptive network and security services Reduce Administrative Faster time to Reduce downtime Costs Market © 2011 Eucalyptus Systems, Inc.
  • 26. Self-Aware IaaS Service Failure Detectionand Reporting •  Eucalyptus monitors its Walrus CLC Walrus CLC services constantly for –  Public and private network connectivity failures –  Disk failures CC VM VM VM VM –  Physical server failures CC NC NC •  Logs appropriate error SC messages for tracking and SC auditing Zone –  Service state (ENABLED, DISABLED, NOTREADY, STOPPED, BROKEN) SAN/NAS –  Tools for reporting service state © 2011 Eucalyptus Systems, Inc.
  • 27. Preserving Virtual InstanceLocation, Security Groups, VNETs•  Virtual instances’ Walrus Walrus location in a zone CLC CLC•  Security groups within and across zones Security Group 1 Security Group 2 Security Group 3 –  L2TP Tunnels between VM 1 VM 2 VM 3 VM 4 VM 5 VM 6 VM 7 VM 8 two CC NC NC•  VM isolation NC NC configurations CC CC CC CC Zone 1 Zone 2 © 2011 Eucalyptus Systems, Inc.
  • 28. Storage Controller HA with SAN adapter •  Preserves Walrus CLC Walrus CLC –  Storage Controller to SAN array connectivity/ authentication –  Storage Mapping between NCs and SAN volumes CC VM VM VM VM CC –  Snapshots history NC NC –  User and resource association SC SC Storage •  Keeps track of service state Data path for auditing and maintenance Zone SP1 SP2 Storage Control path iSCSI Storage Array © 2011 Eucalyptus Systems, Inc.
  • 29. Walrus HA Protects Storage Buckets•  All user buckets are Walrus Walrus CLC protected –  Storage mirroring using Block level replication network RAID-1•  HA failover happens –  After a node outage –  After an outage of storage subsystem –  After loss of connectivity between user and Walrus•  User key mappings are preserved © 2011 Eucalyptus Systems, Inc.
  • 30. Implement Your WebApp on a Highly Available IaaSPlatform Node Controllers VM VM VM VM SAN Storage Arrays Cluster Controller HA VM VM Cloud Controller HA Storage Controller HA NAS Self-Service GUI Cluster Controller HA ESXi VM VM SAN Storage Arrays VM VM Walrus Storage HA VM VMProgrammatic Cloud Access Storage Controller HA NAS © 2011 Eucalyptus Systems, Inc.
  • 31. Scale quickly using Rapid Instancing•  Scale up zones Full Copy Instancing using Rapid Instancing using VM VM VM VM Copy-on-Write enabled EMIs NC•  Use Node Controller Rapid Instancing with CoW EMIs EMI storage efficiently using CoW VM VM VM VM Walrus snapshots NC © 2011 Eucalyptus Systems, Inc.
  • 32. Control Access to Resources•  Allow or deny API and Resource* access WEB App DB WEB App DB•  Allow or deny specific API/ User actions WEB App DB WEB App DB•  Specify resource access time WEB App DB Built-in policy limits enforcement engine WEB App DB Test Zone 1 * Extension to AWS IAM © 2011 Eucalyptus Systems, Inc.
  • 33. Scalable Web Use Cases Testing and QAServices Scalable Web Service.com Test Control System HLB WEB App DB WEB App DB Web Server Web Server Web Server Web Server WEB App DB WEB App DB SLB SLB WEB App DB WEB App DB App App App App WEB App DB WEB App DB Server Server Server Server Zone 1 Zone 2 Test Zone 1 Test Zone 2 Big Data Big Data Client St-as-a-Service Job Name Job Backup/Restore Name Server Node Server Node Data Data Data Data Node Node Node Node Data Data Data Data Node Node Node Node Data Data Node Node Data Node Data Node Walrus (S3) Hadoop Zone 1 Hadoop Zone 2 © 2011 Eucalyptus Systems, Inc.
  • 34. High Availability Best Practices34 © 2012 Eucalyptus Systems, Inc.
  • 35. Internet/User Network Gateway/Router CLC1 CLC2 Switch1 Walrus1 Walrus2 SC1 SC2 CC1 CC2 NC Source: NC NC © 2011 Eucalyptus Systems, Inc.35
  • 36. Internet/User Network Gateway/Router CLC1/Walrus1 CLC2/Walrus2 CC1/SC1 CC2/SC2 Switch1 Switch2 NC NC NC© 2011 Eucalyptus Systems, Inc.
  • 37. Support Stack37 © 2012 Eucalyptus Systems, Inc.
  • 38. Euca IaaS support stack SaaS / PaaS Providers Third Party Management IaaS Web Services Cloud Resources Virtual Resource ManagementPhysical Resource Management © 2011 Eucalyptus Systems, Inc.
  • 39. Thank youEmail: govind@eucalyptus.comResourceshttp://www.eucalyptus.com/eucalyptus-cloud/iaas/featureshttp://www.eucalyptus.com/eucalyptus-cloud/iaas/roadmaphttp://www.eucalyptus.com/eucalyptus-cloud/iaas/compatibility © 2011 Eucalyptus Systems, Inc.
  • 40. EucaDay NYCJoin us for the inaugural Eucalyptus conference, taking place in New YorkCity on Wednesday, April 25th. EucaDay NYC will be a day of educationand celebration of the cloud, bringing together customers, partners, andthe Eucalyptus Community.Wednesday, April 25, 8:00 AM – 6:30 PM • The Bailey, NYCAGENDA8:00 AM – 9:30 AM • Keynote and Eucalyptus 3Marten Mikos, CEO and Tim Cramer, VP of Engineering9:30 AM – 2:30 PM • Eucalyptus in ActionUse Cases and Customer Stories (Including Lunch)2:30 PM – 4:30 PM • Eucalyptus Community and Closing RemarksGreg DeKoeningsberg, VP of Community and Marten Mickos4:30 PM – 6:30 PM • EucaSocial Networking Receptionwww.eucalyptus.com/news/events © 2011 Eucalyptus Systems, Inc.
  • 41. Questions?Alliances: Brady Murray, brady@eucalyptus.comCommunity: Greg DeKoenigsberg, gregdek@eucalyptus.comProduct Management: Govind Rangasamy, govind@eucalyptus.comMarketing: David Butler, david@eucalyptus.comSales (US East): Tim Zeller, tim.zeller@eucalyptus.comField Marketing: Nelli Lahteenmaki, nelli@eucalyptus.com © 2011 Eucalyptus Systems, Inc.
  • 42. Backup© 2011 Eucalyptus Systems, Inc.
  • 43. Cloud IaaS vs. VirtualizationA well designed virtualization environment is the basis for private clouds Capability Virtualization Cloud IaaS Virtual Machine Very similar to physical servers due VMs are not tied to a single physical server and behavior to PàV conversions are disposable Application Applications stick to VMs with tightly Applications and their infrastructures are behavior coupled configurations decoupled for auto scalability and elasticity Resource Elasticity Resource pooling at the hypervisor, Resource pools of compute, network and storage or cluster level at the cloud availability zone level Resource access VMs CPU, Memory, Network and Resources are completely isolated isolation Storage resources access is not isolated Resource access Virtualization allows unauthenticated Cloud has very granular per user level resource authentication access to resources access authentication SLA and Quality of Defining and maintaining SLA is hard Relatively easy because of resource access Service especially with quality of service isolation and authentication guarantees Chargeback and Chargeback and billing are hard Due to per user level access and resource billing problems in just a virtualized access isolation, chargeback and billing are much environments simpler © 2011 Eucalyptus Systems, Inc.
  • 44. Eucalyptus IaaS: ComputeFeatures:l  Standardized on-demand compute devicesl  Elastic pool of compute entities with fast provisioningl  Automatic virtual Instance Configurations l  CPU, Memory, Network and storageBenefits:l  Compute self-serviceabilityl  Scale-out and scale-in for better utilization © 2011 Eucalyptus Systems, Inc.
  • 45. Eucalyptus IaaS: Networking Features: l  On-demand Elastic IPs l  VM isolation with security groups l  Virtual networking l  Pubilc/private IP translation (NATing), DHCP l  Multiple Networking Modes for Assigning Addresses to VMs Benefits: l  Single point of management for all cloud networking l  Self-serviceability l  Scale-out and scale-in network resources for better utilization © 2011 Eucalyptus Systems, Inc.
  • 46. Eucalyptus IaaS: Storage Features: l  On-demand, Highly Scalable and Secure Bucket Based Object Store l  Highly Reliable, Elastic Block Storage with configurable SAN adapters l  Ability to boot from block storage l  Flexible configuration with existing storage infrastructure on DAS, NAS, and SAN Benefits: l  Storage self-serviceability l  Scale-out and scale-in for better storage utilization © 2011 Eucalyptus Systems, Inc.
  • 47. Eucalyptus IaaS: Identity Management Features:•  Users, groups and accounts management•  Security credentials management•  Flexible policy based resource access management•  Authenticate instances using existing AD/ LDAP systems•  Flexible policy based resource utilization managementBenefits:•  Centralized efficient management of self- service infrastructure access•  Centralized efficient utilization control of infrastructure resources © 2011 Eucalyptus Systems, Inc.
  • 48. Run Critical Web Services UsingSecure IaaS Platform WS-Security, WS-SecurityPolicy, SSH, SSL, Crypto Certificates Access using Access using Keys (REST) Node Controllers Keys and and Certificates Certificates SAN Storage Arrays Application (SOAP) V V WS-S M V M V Self-service Cluster Controller M VM M VM https Cloud Controller API WS-S WS-S WS-S NAS User Self- WS-S Walrus Service https GUI/CLI Storage Controller VM Access using Keys and Certificates API or GUI Entry Point © 2011 Eucalyptus Systems, Inc.