Your SlideShare is downloading. ×
0
From product to SAAS             Tech considerations                  Session 1Friday 23 November 12
Organizer Since 2009        Europe Organizer 2010     First Europe Training 2010            Speaker         Monitoring Cha...
IntroductionFriday 23 November 12
Your ProductFriday 23 November 12
Your WorkFriday 23 November 12
You ship it              Your Company        CustomersFriday 23 November 12
They buy it         Customer #1     Customer #2   Customer #NFriday 23 November 12
They install it ...                          hardware, servers, disks, ...                         Customer EnvironmentFri...
They configure it ...                                                database, ldap,                                       ...
They test it ...                                 BOOM                                             database, ldap,         ...
They open the network                          internet, firewall, network                                             data...
They invite users                             fantastic   great                         Customer EnvironmentFriday 23 Nove...
They monitor                        (resource) usage                             fantastic fantastic great                ...
They handle                        Issues/Tickets                            fantastic fantastic great                    ...
They troubleshoot                              fantastic fantastic great                               fantastic          ...
They fix problems                             fantastic fantastic great                              fantastic             ...
They complain to YOU                            fantastic fantastic great                             fantastic           ...
They perform                        product upgrades                             fantastic fantastic great                ...
They Monitor                        Performance                            fantastic fantastic great                      ...
They complain to YOU                            fantastic fantastic great                             fantastic           ...
They monitor security                            fantastic fantastic great                             fantastic          ...
They increase capacity                            fantastic fantastic great                             fantastic         ...
They perform                    environment upgrades                            fantastic fantastic great                 ...
They handle                        dependency upgrades                               fantastic fantastic great            ...
They test it                            fantastic fantastic great                             fantastic                   ...
They complain to YOU                            fantastic fantastic great                             fantastic           ...
They fix problems                             fantastic fantastic great                              fantastic             ...
Your Product                            as a service                                   +                        Product   ...
Their worriesFriday 23 November 12
Their worries                           become                        YOUR worriesFriday 23 November 12
Your worries                + N x Their WorriesFriday 23 November 12
By taking their worries                    you provide VALUEFriday 23 November 12
Now it’s your turn to                        delegate your worries                          to other servicesFriday 23 Nov...
3 x Sessions                    1. Install and Run it (Cloud & Architecture)                    2. Change it (Continuous D...
Session 1:                        Install and Run itFriday 23 November 12
Your “Service”                                                SAAS        Application Server + Middleware         PAAS    ...
Collocation &                        Dedicated Hosting                           Your own little machine                  ...
Hardware as a service                           Non-virtualized Machines                             Real ‘raw hardware’  ...
Virtualization Types                        Para-Virtualized            Containers                                        ...
Infrastructure                         as a service                          http://aws.amazon.com/ec2                    ...
Configuration Mgmt                              Infrastructure as Code                          Just Enough Operating Syste...
Configuration Mgmt                    • Scripts vs Infrastructure As Code                    • Re-usable installation proce...
Multi Tenancy                    • Can you host multiple users on the same                        installation?           ...
Extra “infra” services                 “Connectivity”                                     Load               VPN         F...
Platforms                             Deploy + API                        Java Rails PHP NodeJS                         Sp...
Cloud = how much                         “They” vs “You”?                                                SAAS        Appli...
7/7 24h support                    • API does not replace human interaction                    • support contract in place...
Build vs Buy/Rent                    • Dedicated Instances                    • Market Place for Spot instances           ...
Billing, Reporting                    • per hour                    • per day                    • per month              ...
Private vs Public Cloud                  • Use same technology & API internally                  • Enterprise technology w...
Beware!                                    Technology Lock-in ?                                   Addiction to easyness   ...
AvailabilityFriday 23 November 12
Single Point of Failure?                    • Product                    • People                    • Process            ...
Service Level                             Agreement                    • Have customers agree a Service Level             ...
Helpdesk/Tickets                    • Where do you capture all the problems?                    • Will you detect the prob...
Collect Context                    • Browser type, plugins, referrer                    • IP Address used                 ...
Administrative                              Access                    • Remote Console                    • SSH Connection...
External Dependencies                    • ANY Dependency                     • cloud provider                     • inter...
DNS & Mail Services                    • customer . mydomain.com                    • delay in updating and changesFriday ...
Reproducible                    • Version Control, Archive                     • upstream packages                     • i...
Loose Coupling                    • Architectural design to limit impact                     • of an error                ...
Scalability &                        PerformanceFriday 23 November 12
horizontal vs                           vertical scaling                    • Clustering                    • Loadbalancin...
Resource Mgmt                    • Limit Shared Disk I/O                    • Network I/O                    • CPU I/O    ...
Latency                    • Network Latency (US, EU, ...)                    • Where are your users                    • ...
Loadbalancing                           & Indirection                    • DNS Roundrobin                    • Elastic IPS...
Peak Loads/Scaling                    • Scale UP                    • Scale Down                    • Autoscaling         ...
Edge Services                    • Content Delivery Network                    • Caching Proxy                    • Conten...
(Spare)Test capacityFriday 23 November 12
SecurityFriday 23 November 12
Users                    • Identity Mgmt                    • Oauth (Facebook, Twitter, Linkedin)                    • Sto...
Access Control                    • Firewalling Incoming & Outgoing                    • Firewalling Network & Host       ...
Layers of Security                    • Content Security (Antivirus, Escaping)                    • Application Security (...
Session Management                    • Cookies                    • Sticky Sessions                    • Secure Cookies  ...
Email Security                    • Anti Spam                    • Blackhole                    • Antivirus               ...
Data Integrity                    • DISK != BACKUP                    • Corrupted Cloned data = Corrupted Data            ...
The cloud doesn’t take                       your backups                    • Persistent Storage                    • Rep...
SSL & Remote Keys                    • Password protected                    • Where do you store your passwords?         ...
Next Sessions                    1. Install and Run it (Cloud & Architecture)                    2. Change it (Continuous ...
How about your setup?Friday 23 November 12
Upcoming SlideShare
Loading in...5
×

OpenSaas - From Product to Service - Part 1 - Intro & You run it

2,225

Published on

Debriefings session #1 on technical considerations when you move from 'product' to a service.

Thank you Sirris - http://sirris.be

0 Comments
7 Likes
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
2,225
On Slideshare
0
From Embeds
0
Number of Embeds
4
Actions
Shares
0
Downloads
45
Comments
0
Likes
7
Embeds 0
No embeds

No notes for slide

Transcript of "OpenSaas - From Product to Service - Part 1 - Intro & You run it"

  1. 1. From product to SAAS Tech considerations Session 1Friday 23 November 12
  2. 2. Organizer Since 2009 Europe Organizer 2010 First Europe Training 2010 Speaker Monitoring Chapter Technical Reviewer Co-Author Veewee / Sahara / Mccloud Libvirt - Fog Freelance consultant Engineer http://github.com/jedi4ever Blog: http://jedi.be/blog - Twitter: @patrickdebois - #devopsFriday 23 November 12
  3. 3. IntroductionFriday 23 November 12
  4. 4. Your ProductFriday 23 November 12
  5. 5. Your WorkFriday 23 November 12
  6. 6. You ship it Your Company CustomersFriday 23 November 12
  7. 7. They buy it Customer #1 Customer #2 Customer #NFriday 23 November 12
  8. 8. They install it ... hardware, servers, disks, ... Customer EnvironmentFriday 23 November 12
  9. 9. They configure it ... database, ldap, dns, mail... hardware, servers, disks, ... Customer EnvironmentFriday 23 November 12
  10. 10. They test it ... BOOM database, ldap, dns, mail... hardware, servers, disks, ... Customer EnvironmentFriday 23 November 12
  11. 11. They open the network internet, firewall, network database, ldap, dns, mail... hardware, servers, disks, ... Customer EnvironmentFriday 23 November 12
  12. 12. They invite users fantastic great Customer EnvironmentFriday 23 November 12
  13. 13. They monitor (resource) usage fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  14. 14. They handle Issues/Tickets fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  15. 15. They troubleshoot fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  16. 16. They fix problems fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  17. 17. They complain to YOU fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  18. 18. They perform product upgrades fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  19. 19. They Monitor Performance fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  20. 20. They complain to YOU fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  21. 21. They monitor security fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  22. 22. They increase capacity fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Network Disk CPU Customer EnvironmentFriday 23 November 12
  23. 23. They perform environment upgrades fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic v1 v2 .. v1034 Customer EnvironmentFriday 23 November 12
  24. 24. They handle dependency upgrades fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic v1 v2 .. v1034 Customer EnvironmentFriday 23 November 12
  25. 25. They test it fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  26. 26. They complain to YOU fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  27. 27. They fix problems fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  28. 28. Your Product as a service + Product Environment Building ManagingFriday 23 November 12
  29. 29. Their worriesFriday 23 November 12
  30. 30. Their worries become YOUR worriesFriday 23 November 12
  31. 31. Your worries + N x Their WorriesFriday 23 November 12
  32. 32. By taking their worries you provide VALUEFriday 23 November 12
  33. 33. Now it’s your turn to delegate your worries to other servicesFriday 23 November 12
  34. 34. 3 x Sessions 1. Install and Run it (Cloud & Architecture) 2. Change it (Continuous Delivery) 3. Manage it (Monitoring, Metrics)Friday 23 November 12
  35. 35. Session 1: Install and Run itFriday 23 November 12
  36. 36. Your “Service” SAAS Application Server + Middleware PAAS Operating System, Loadbalancing, Storage IAAS Hardware HAASFriday 23 November 12
  37. 37. Collocation & Dedicated Hosting Your own little machine with human interventionFriday 23 November 12
  38. 38. Hardware as a service Non-virtualized Machines Real ‘raw hardware’ + API http://www.baremetalcloud.com/ http://www.stormondemand.com/ http://www.hetzner.de/Friday 23 November 12
  39. 39. Virtualization Types Para-Virtualized Containers (share kernel) Xen LXC KVM OpenVZ Vsphere Solaris Zones HardwareFriday 23 November 12
  40. 40. Infrastructure as a service http://aws.amazon.com/ec2 http://rackspace.com/ http://windowsazure.com Just Enough Operating System + API Virtualized Machine HardwareFriday 23 November 12
  41. 41. Configuration Mgmt Infrastructure as Code Just Enough Operating System + API Virtualized Machine HardwareFriday 23 November 12
  42. 42. Configuration Mgmt • Scripts vs Infrastructure As Code • Re-usable installation procedures • Documented • Orchestration • (more on this in Session2)Friday 23 November 12
  43. 43. Multi Tenancy • Can you host multiple users on the same installation? • Can you do it safely? • Security/Performance, Separate Upgrades • Application complexityFriday 23 November 12
  44. 44. Extra “infra” services “Connectivity” Load VPN Firewall Mail DNS balancer “Compute” “Storage” Nosql Message + API DB Queue JEOS VM Storage Disk HardwareFriday 23 November 12
  45. 45. Platforms Deploy + API Java Rails PHP NodeJS Specialized Platforms you can’t see below standard API http://www.heroku.com/Friday 23 November 12
  46. 46. Cloud = how much “They” vs “You”? SAAS Application Server + Middleware PAAS Operating System, Loadbalancing, Storage IAAS Hardware HAASFriday 23 November 12
  47. 47. 7/7 24h support • API does not replace human interaction • support contract in place? • contact information?Friday 23 November 12
  48. 48. Build vs Buy/Rent • Dedicated Instances • Market Place for Spot instances • Overcapacity vs buy upfrontFriday 23 November 12
  49. 49. Billing, Reporting • per hour • per day • per month • dedicated , spot-instances, ...Friday 23 November 12
  50. 50. Private vs Public Cloud • Use same technology & API internally • Enterprise technology with self-servicing • main difference is infinite scalingFriday 23 November 12
  51. 51. Beware! Technology Lock-in ? Addiction to easyness Live with the constraints of your provider ? What if they fail? What’s under the hood? Use abstraction libraries like boto, fog, jcloudsFriday 23 November 12
  52. 52. AvailabilityFriday 23 November 12
  53. 53. Single Point of Failure? • Product • People • Process • Understand and assess the probability, impact and prioritizeFriday 23 November 12
  54. 54. Service Level Agreement • Have customers agree a Service Level • doesn’t have to be 99.999% • downtime is permitted • what if data gets lost? liability?Friday 23 November 12
  55. 55. Helpdesk/Tickets • Where do you capture all the problems? • Will you detect the problem before your customers? • (more on this in Session 3)Friday 23 November 12
  56. 56. Collect Context • Browser type, plugins, referrer • IP Address used • What user account • Timestamp • grab ‘current’ state of the problemFriday 23 November 12
  57. 57. Administrative Access • Remote Console • SSH Connection • ‘backdoor’ accessFriday 23 November 12
  58. 58. External Dependencies • ANY Dependency • cloud provider • internet connection • dns, email • backup • mobile phone • other dataservicesFriday 23 November 12
  59. 59. DNS & Mail Services • customer . mydomain.com • delay in updating and changesFriday 23 November 12
  60. 60. Reproducible • Version Control, Archive • upstream packages • installed software • licenses • “Vendor the world”Friday 23 November 12
  61. 61. Loose Coupling • Architectural design to limit impact • of an error • of a change • avoid ‘big ball of mud’ / global restart • Uncouple UI, API -> Application (KISS)Friday 23 November 12
  62. 62. Scalability & PerformanceFriday 23 November 12
  63. 63. horizontal vs vertical scaling • Clustering • Loadbalancing/Horizontal scaling • Vertical Scaling (Bigger box) • ShardingFriday 23 November 12
  64. 64. Resource Mgmt • Limit Shared Disk I/O • Network I/O • CPU I/O • Number of connections (DB,Web) • <insert your expensive operation>Friday 23 November 12
  65. 65. Latency • Network Latency (US, EU, ...) • Where are your users • DNS Latency • HTTP Latency • HTML LatencyFriday 23 November 12
  66. 66. Loadbalancing & Indirection • DNS Roundrobin • Elastic IPS • Reverse proxy balancing • Cross geo Services DNS • DNS TTL, Caching DNSFriday 23 November 12
  67. 67. Peak Loads/Scaling • Scale UP • Scale Down • Autoscaling • <Insert your bottleneck>Friday 23 November 12
  68. 68. Edge Services • Content Delivery Network • Caching Proxy • Content closer to Users • Offload your network • Caching HTTP Headers (Cross Server)Friday 23 November 12
  69. 69. (Spare)Test capacityFriday 23 November 12
  70. 70. SecurityFriday 23 November 12
  71. 71. Users • Identity Mgmt • Oauth (Facebook, Twitter, Linkedin) • Storing Password (Hash, Salted) • Access Mgmt • Role Management • Email for registration/accountFriday 23 November 12
  72. 72. Access Control • Firewalling Incoming & Outgoing • Firewalling Network & Host • Layer 3(IP) , 4 (UDP), 7 (HTTP,SMTP...) • Denial of ServiceFriday 23 November 12
  73. 73. Layers of Security • Content Security (Antivirus, Escaping) • Application Security (SQL injection etc..) • Database Security • OS (Minimal , Hardening, Least priviledge) • Network Security (VLAN)Friday 23 November 12
  74. 74. Session Management • Cookies • Sticky Sessions • Secure Cookies • SSL, Encryption • (across multiple hosts)Friday 23 November 12
  75. 75. Email Security • Anti Spam • Blackhole • Antivirus • Reputation ManagementFriday 23 November 12
  76. 76. Data Integrity • DISK != BACKUP • Corrupted Cloned data = Corrupted Data • Consistent DB, Filesystem BackupFriday 23 November 12
  77. 77. The cloud doesn’t take your backups • Persistent Storage • Replication • Delta Backup • How long does it take to restore? • Can you restore consistently? • Do you have downtime for restoring? • Individual account restoreFriday 23 November 12
  78. 78. SSL & Remote Keys • Password protected • Where do you store your passwords? • Sharing of credentials in team • How fast can you change in case of breach?Friday 23 November 12
  79. 79. Next Sessions 1. Install and Run it (Cloud & Architecture) 2. Change it (Continuous Delivery) 3. Manage it (Monitoring, Metrics)Friday 23 November 12
  80. 80. How about your setup?Friday 23 November 12
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×