OpenSaas - From Product to Service - Part 1 - Intro & You run it

  • 2,082 views
Uploaded on

Debriefings session #1 on technical considerations when you move from 'product' to a service. …

Debriefings session #1 on technical considerations when you move from 'product' to a service.

Thank you Sirris - http://sirris.be

  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
No Downloads

Views

Total Views
2,082
On Slideshare
0
From Embeds
0
Number of Embeds
3

Actions

Shares
Downloads
44
Comments
0
Likes
7

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide

Transcript

  • 1. From product to SAAS Tech considerations Session 1Friday 23 November 12
  • 2. Organizer Since 2009 Europe Organizer 2010 First Europe Training 2010 Speaker Monitoring Chapter Technical Reviewer Co-Author Veewee / Sahara / Mccloud Libvirt - Fog Freelance consultant Engineer http://github.com/jedi4ever Blog: http://jedi.be/blog - Twitter: @patrickdebois - #devopsFriday 23 November 12
  • 3. IntroductionFriday 23 November 12
  • 4. Your ProductFriday 23 November 12
  • 5. Your WorkFriday 23 November 12
  • 6. You ship it Your Company CustomersFriday 23 November 12
  • 7. They buy it Customer #1 Customer #2 Customer #NFriday 23 November 12
  • 8. They install it ... hardware, servers, disks, ... Customer EnvironmentFriday 23 November 12
  • 9. They configure it ... database, ldap, dns, mail... hardware, servers, disks, ... Customer EnvironmentFriday 23 November 12
  • 10. They test it ... BOOM database, ldap, dns, mail... hardware, servers, disks, ... Customer EnvironmentFriday 23 November 12
  • 11. They open the network internet, firewall, network database, ldap, dns, mail... hardware, servers, disks, ... Customer EnvironmentFriday 23 November 12
  • 12. They invite users fantastic great Customer EnvironmentFriday 23 November 12
  • 13. They monitor (resource) usage fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  • 14. They handle Issues/Tickets fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  • 15. They troubleshoot fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  • 16. They fix problems fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  • 17. They complain to YOU fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  • 18. They perform product upgrades fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  • 19. They Monitor Performance fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  • 20. They complain to YOU fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  • 21. They monitor security fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  • 22. They increase capacity fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Network Disk CPU Customer EnvironmentFriday 23 November 12
  • 23. They perform environment upgrades fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic v1 v2 .. v1034 Customer EnvironmentFriday 23 November 12
  • 24. They handle dependency upgrades fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic v1 v2 .. v1034 Customer EnvironmentFriday 23 November 12
  • 25. They test it fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  • 26. They complain to YOU fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  • 27. They fix problems fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  • 28. Your Product as a service + Product Environment Building ManagingFriday 23 November 12
  • 29. Their worriesFriday 23 November 12
  • 30. Their worries become YOUR worriesFriday 23 November 12
  • 31. Your worries + N x Their WorriesFriday 23 November 12
  • 32. By taking their worries you provide VALUEFriday 23 November 12
  • 33. Now it’s your turn to delegate your worries to other servicesFriday 23 November 12
  • 34. 3 x Sessions 1. Install and Run it (Cloud & Architecture) 2. Change it (Continuous Delivery) 3. Manage it (Monitoring, Metrics)Friday 23 November 12
  • 35. Session 1: Install and Run itFriday 23 November 12
  • 36. Your “Service” SAAS Application Server + Middleware PAAS Operating System, Loadbalancing, Storage IAAS Hardware HAASFriday 23 November 12
  • 37. Collocation & Dedicated Hosting Your own little machine with human interventionFriday 23 November 12
  • 38. Hardware as a service Non-virtualized Machines Real ‘raw hardware’ + API http://www.baremetalcloud.com/ http://www.stormondemand.com/ http://www.hetzner.de/Friday 23 November 12
  • 39. Virtualization Types Para-Virtualized Containers (share kernel) Xen LXC KVM OpenVZ Vsphere Solaris Zones HardwareFriday 23 November 12
  • 40. Infrastructure as a service http://aws.amazon.com/ec2 http://rackspace.com/ http://windowsazure.com Just Enough Operating System + API Virtualized Machine HardwareFriday 23 November 12
  • 41. Configuration Mgmt Infrastructure as Code Just Enough Operating System + API Virtualized Machine HardwareFriday 23 November 12
  • 42. Configuration Mgmt • Scripts vs Infrastructure As Code • Re-usable installation procedures • Documented • Orchestration • (more on this in Session2)Friday 23 November 12
  • 43. Multi Tenancy • Can you host multiple users on the same installation? • Can you do it safely? • Security/Performance, Separate Upgrades • Application complexityFriday 23 November 12
  • 44. Extra “infra” services “Connectivity” Load VPN Firewall Mail DNS balancer “Compute” “Storage” Nosql Message + API DB Queue JEOS VM Storage Disk HardwareFriday 23 November 12
  • 45. Platforms Deploy + API Java Rails PHP NodeJS Specialized Platforms you can’t see below standard API http://www.heroku.com/Friday 23 November 12
  • 46. Cloud = how much “They” vs “You”? SAAS Application Server + Middleware PAAS Operating System, Loadbalancing, Storage IAAS Hardware HAASFriday 23 November 12
  • 47. 7/7 24h support • API does not replace human interaction • support contract in place? • contact information?Friday 23 November 12
  • 48. Build vs Buy/Rent • Dedicated Instances • Market Place for Spot instances • Overcapacity vs buy upfrontFriday 23 November 12
  • 49. Billing, Reporting • per hour • per day • per month • dedicated , spot-instances, ...Friday 23 November 12
  • 50. Private vs Public Cloud • Use same technology & API internally • Enterprise technology with self-servicing • main difference is infinite scalingFriday 23 November 12
  • 51. Beware! Technology Lock-in ? Addiction to easyness Live with the constraints of your provider ? What if they fail? What’s under the hood? Use abstraction libraries like boto, fog, jcloudsFriday 23 November 12
  • 52. AvailabilityFriday 23 November 12
  • 53. Single Point of Failure? • Product • People • Process • Understand and assess the probability, impact and prioritizeFriday 23 November 12
  • 54. Service Level Agreement • Have customers agree a Service Level • doesn’t have to be 99.999% • downtime is permitted • what if data gets lost? liability?Friday 23 November 12
  • 55. Helpdesk/Tickets • Where do you capture all the problems? • Will you detect the problem before your customers? • (more on this in Session 3)Friday 23 November 12
  • 56. Collect Context • Browser type, plugins, referrer • IP Address used • What user account • Timestamp • grab ‘current’ state of the problemFriday 23 November 12
  • 57. Administrative Access • Remote Console • SSH Connection • ‘backdoor’ accessFriday 23 November 12
  • 58. External Dependencies • ANY Dependency • cloud provider • internet connection • dns, email • backup • mobile phone • other dataservicesFriday 23 November 12
  • 59. DNS & Mail Services • customer . mydomain.com • delay in updating and changesFriday 23 November 12
  • 60. Reproducible • Version Control, Archive • upstream packages • installed software • licenses • “Vendor the world”Friday 23 November 12
  • 61. Loose Coupling • Architectural design to limit impact • of an error • of a change • avoid ‘big ball of mud’ / global restart • Uncouple UI, API -> Application (KISS)Friday 23 November 12
  • 62. Scalability & PerformanceFriday 23 November 12
  • 63. horizontal vs vertical scaling • Clustering • Loadbalancing/Horizontal scaling • Vertical Scaling (Bigger box) • ShardingFriday 23 November 12
  • 64. Resource Mgmt • Limit Shared Disk I/O • Network I/O • CPU I/O • Number of connections (DB,Web) • <insert your expensive operation>Friday 23 November 12
  • 65. Latency • Network Latency (US, EU, ...) • Where are your users • DNS Latency • HTTP Latency • HTML LatencyFriday 23 November 12
  • 66. Loadbalancing & Indirection • DNS Roundrobin • Elastic IPS • Reverse proxy balancing • Cross geo Services DNS • DNS TTL, Caching DNSFriday 23 November 12
  • 67. Peak Loads/Scaling • Scale UP • Scale Down • Autoscaling • <Insert your bottleneck>Friday 23 November 12
  • 68. Edge Services • Content Delivery Network • Caching Proxy • Content closer to Users • Offload your network • Caching HTTP Headers (Cross Server)Friday 23 November 12
  • 69. (Spare)Test capacityFriday 23 November 12
  • 70. SecurityFriday 23 November 12
  • 71. Users • Identity Mgmt • Oauth (Facebook, Twitter, Linkedin) • Storing Password (Hash, Salted) • Access Mgmt • Role Management • Email for registration/accountFriday 23 November 12
  • 72. Access Control • Firewalling Incoming & Outgoing • Firewalling Network & Host • Layer 3(IP) , 4 (UDP), 7 (HTTP,SMTP...) • Denial of ServiceFriday 23 November 12
  • 73. Layers of Security • Content Security (Antivirus, Escaping) • Application Security (SQL injection etc..) • Database Security • OS (Minimal , Hardening, Least priviledge) • Network Security (VLAN)Friday 23 November 12
  • 74. Session Management • Cookies • Sticky Sessions • Secure Cookies • SSL, Encryption • (across multiple hosts)Friday 23 November 12
  • 75. Email Security • Anti Spam • Blackhole • Antivirus • Reputation ManagementFriday 23 November 12
  • 76. Data Integrity • DISK != BACKUP • Corrupted Cloned data = Corrupted Data • Consistent DB, Filesystem BackupFriday 23 November 12
  • 77. The cloud doesn’t take your backups • Persistent Storage • Replication • Delta Backup • How long does it take to restore? • Can you restore consistently? • Do you have downtime for restoring? • Individual account restoreFriday 23 November 12
  • 78. SSL & Remote Keys • Password protected • Where do you store your passwords? • Sharing of credentials in team • How fast can you change in case of breach?Friday 23 November 12
  • 79. Next Sessions 1. Install and Run it (Cloud & Architecture) 2. Change it (Continuous Delivery) 3. Manage it (Monitoring, Metrics)Friday 23 November 12
  • 80. How about your setup?Friday 23 November 12