OpenSaas - From Product to Service - Part 1 - Intro & You run it

2,804 views

Published on

Debriefings session #1 on technical considerations when you move from 'product' to a service.

Thank you Sirris - http://sirris.be

0 Comments
7 Likes
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
2,804
On SlideShare
0
From Embeds
0
Number of Embeds
384
Actions
Shares
0
Downloads
47
Comments
0
Likes
7
Embeds 0
No embeds

No notes for slide

OpenSaas - From Product to Service - Part 1 - Intro & You run it

  1. 1. From product to SAAS Tech considerations Session 1Friday 23 November 12
  2. 2. Organizer Since 2009 Europe Organizer 2010 First Europe Training 2010 Speaker Monitoring Chapter Technical Reviewer Co-Author Veewee / Sahara / Mccloud Libvirt - Fog Freelance consultant Engineer http://github.com/jedi4ever Blog: http://jedi.be/blog - Twitter: @patrickdebois - #devopsFriday 23 November 12
  3. 3. IntroductionFriday 23 November 12
  4. 4. Your ProductFriday 23 November 12
  5. 5. Your WorkFriday 23 November 12
  6. 6. You ship it Your Company CustomersFriday 23 November 12
  7. 7. They buy it Customer #1 Customer #2 Customer #NFriday 23 November 12
  8. 8. They install it ... hardware, servers, disks, ... Customer EnvironmentFriday 23 November 12
  9. 9. They configure it ... database, ldap, dns, mail... hardware, servers, disks, ... Customer EnvironmentFriday 23 November 12
  10. 10. They test it ... BOOM database, ldap, dns, mail... hardware, servers, disks, ... Customer EnvironmentFriday 23 November 12
  11. 11. They open the network internet, firewall, network database, ldap, dns, mail... hardware, servers, disks, ... Customer EnvironmentFriday 23 November 12
  12. 12. They invite users fantastic great Customer EnvironmentFriday 23 November 12
  13. 13. They monitor (resource) usage fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  14. 14. They handle Issues/Tickets fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  15. 15. They troubleshoot fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  16. 16. They fix problems fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  17. 17. They complain to YOU fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  18. 18. They perform product upgrades fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  19. 19. They Monitor Performance fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  20. 20. They complain to YOU fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  21. 21. They monitor security fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  22. 22. They increase capacity fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Network Disk CPU Customer EnvironmentFriday 23 November 12
  23. 23. They perform environment upgrades fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic v1 v2 .. v1034 Customer EnvironmentFriday 23 November 12
  24. 24. They handle dependency upgrades fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic v1 v2 .. v1034 Customer EnvironmentFriday 23 November 12
  25. 25. They test it fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  26. 26. They complain to YOU fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  27. 27. They fix problems fantastic fantastic great fantastic fantastic fantastic fantastic fantastic fantastic fantastic fantastic Customer EnvironmentFriday 23 November 12
  28. 28. Your Product as a service + Product Environment Building ManagingFriday 23 November 12
  29. 29. Their worriesFriday 23 November 12
  30. 30. Their worries become YOUR worriesFriday 23 November 12
  31. 31. Your worries + N x Their WorriesFriday 23 November 12
  32. 32. By taking their worries you provide VALUEFriday 23 November 12
  33. 33. Now it’s your turn to delegate your worries to other servicesFriday 23 November 12
  34. 34. 3 x Sessions 1. Install and Run it (Cloud & Architecture) 2. Change it (Continuous Delivery) 3. Manage it (Monitoring, Metrics)Friday 23 November 12
  35. 35. Session 1: Install and Run itFriday 23 November 12
  36. 36. Your “Service” SAAS Application Server + Middleware PAAS Operating System, Loadbalancing, Storage IAAS Hardware HAASFriday 23 November 12
  37. 37. Collocation & Dedicated Hosting Your own little machine with human interventionFriday 23 November 12
  38. 38. Hardware as a service Non-virtualized Machines Real ‘raw hardware’ + API http://www.baremetalcloud.com/ http://www.stormondemand.com/ http://www.hetzner.de/Friday 23 November 12
  39. 39. Virtualization Types Para-Virtualized Containers (share kernel) Xen LXC KVM OpenVZ Vsphere Solaris Zones HardwareFriday 23 November 12
  40. 40. Infrastructure as a service http://aws.amazon.com/ec2 http://rackspace.com/ http://windowsazure.com Just Enough Operating System + API Virtualized Machine HardwareFriday 23 November 12
  41. 41. Configuration Mgmt Infrastructure as Code Just Enough Operating System + API Virtualized Machine HardwareFriday 23 November 12
  42. 42. Configuration Mgmt • Scripts vs Infrastructure As Code • Re-usable installation procedures • Documented • Orchestration • (more on this in Session2)Friday 23 November 12
  43. 43. Multi Tenancy • Can you host multiple users on the same installation? • Can you do it safely? • Security/Performance, Separate Upgrades • Application complexityFriday 23 November 12
  44. 44. Extra “infra” services “Connectivity” Load VPN Firewall Mail DNS balancer “Compute” “Storage” Nosql Message + API DB Queue JEOS VM Storage Disk HardwareFriday 23 November 12
  45. 45. Platforms Deploy + API Java Rails PHP NodeJS Specialized Platforms you can’t see below standard API http://www.heroku.com/Friday 23 November 12
  46. 46. Cloud = how much “They” vs “You”? SAAS Application Server + Middleware PAAS Operating System, Loadbalancing, Storage IAAS Hardware HAASFriday 23 November 12
  47. 47. 7/7 24h support • API does not replace human interaction • support contract in place? • contact information?Friday 23 November 12
  48. 48. Build vs Buy/Rent • Dedicated Instances • Market Place for Spot instances • Overcapacity vs buy upfrontFriday 23 November 12
  49. 49. Billing, Reporting • per hour • per day • per month • dedicated , spot-instances, ...Friday 23 November 12
  50. 50. Private vs Public Cloud • Use same technology & API internally • Enterprise technology with self-servicing • main difference is infinite scalingFriday 23 November 12
  51. 51. Beware! Technology Lock-in ? Addiction to easyness Live with the constraints of your provider ? What if they fail? What’s under the hood? Use abstraction libraries like boto, fog, jcloudsFriday 23 November 12
  52. 52. AvailabilityFriday 23 November 12
  53. 53. Single Point of Failure? • Product • People • Process • Understand and assess the probability, impact and prioritizeFriday 23 November 12
  54. 54. Service Level Agreement • Have customers agree a Service Level • doesn’t have to be 99.999% • downtime is permitted • what if data gets lost? liability?Friday 23 November 12
  55. 55. Helpdesk/Tickets • Where do you capture all the problems? • Will you detect the problem before your customers? • (more on this in Session 3)Friday 23 November 12
  56. 56. Collect Context • Browser type, plugins, referrer • IP Address used • What user account • Timestamp • grab ‘current’ state of the problemFriday 23 November 12
  57. 57. Administrative Access • Remote Console • SSH Connection • ‘backdoor’ accessFriday 23 November 12
  58. 58. External Dependencies • ANY Dependency • cloud provider • internet connection • dns, email • backup • mobile phone • other dataservicesFriday 23 November 12
  59. 59. DNS & Mail Services • customer . mydomain.com • delay in updating and changesFriday 23 November 12
  60. 60. Reproducible • Version Control, Archive • upstream packages • installed software • licenses • “Vendor the world”Friday 23 November 12
  61. 61. Loose Coupling • Architectural design to limit impact • of an error • of a change • avoid ‘big ball of mud’ / global restart • Uncouple UI, API -> Application (KISS)Friday 23 November 12
  62. 62. Scalability & PerformanceFriday 23 November 12
  63. 63. horizontal vs vertical scaling • Clustering • Loadbalancing/Horizontal scaling • Vertical Scaling (Bigger box) • ShardingFriday 23 November 12
  64. 64. Resource Mgmt • Limit Shared Disk I/O • Network I/O • CPU I/O • Number of connections (DB,Web) • <insert your expensive operation>Friday 23 November 12
  65. 65. Latency • Network Latency (US, EU, ...) • Where are your users • DNS Latency • HTTP Latency • HTML LatencyFriday 23 November 12
  66. 66. Loadbalancing & Indirection • DNS Roundrobin • Elastic IPS • Reverse proxy balancing • Cross geo Services DNS • DNS TTL, Caching DNSFriday 23 November 12
  67. 67. Peak Loads/Scaling • Scale UP • Scale Down • Autoscaling • <Insert your bottleneck>Friday 23 November 12
  68. 68. Edge Services • Content Delivery Network • Caching Proxy • Content closer to Users • Offload your network • Caching HTTP Headers (Cross Server)Friday 23 November 12
  69. 69. (Spare)Test capacityFriday 23 November 12
  70. 70. SecurityFriday 23 November 12
  71. 71. Users • Identity Mgmt • Oauth (Facebook, Twitter, Linkedin) • Storing Password (Hash, Salted) • Access Mgmt • Role Management • Email for registration/accountFriday 23 November 12
  72. 72. Access Control • Firewalling Incoming & Outgoing • Firewalling Network & Host • Layer 3(IP) , 4 (UDP), 7 (HTTP,SMTP...) • Denial of ServiceFriday 23 November 12
  73. 73. Layers of Security • Content Security (Antivirus, Escaping) • Application Security (SQL injection etc..) • Database Security • OS (Minimal , Hardening, Least priviledge) • Network Security (VLAN)Friday 23 November 12
  74. 74. Session Management • Cookies • Sticky Sessions • Secure Cookies • SSL, Encryption • (across multiple hosts)Friday 23 November 12
  75. 75. Email Security • Anti Spam • Blackhole • Antivirus • Reputation ManagementFriday 23 November 12
  76. 76. Data Integrity • DISK != BACKUP • Corrupted Cloned data = Corrupted Data • Consistent DB, Filesystem BackupFriday 23 November 12
  77. 77. The cloud doesn’t take your backups • Persistent Storage • Replication • Delta Backup • How long does it take to restore? • Can you restore consistently? • Do you have downtime for restoring? • Individual account restoreFriday 23 November 12
  78. 78. SSL & Remote Keys • Password protected • Where do you store your passwords? • Sharing of credentials in team • How fast can you change in case of breach?Friday 23 November 12
  79. 79. Next Sessions 1. Install and Run it (Cloud & Architecture) 2. Change it (Continuous Delivery) 3. Manage it (Monitoring, Metrics)Friday 23 November 12
  80. 80. How about your setup?Friday 23 November 12

×