When Network Meets Apps!
Putting networking and application
together
Nati Shalom
GigaSpaces
@natishalom
Samuel Bercovici
R...
Agenda
• Overview of Networking and Apps
• What’s Changed?
• Putting Networking and Apps by
Example
• Future Work
Let’s Start
With Some
Basic
Definitions..
Application
Application & Tiers
Web
Tier
Middle
Tier
DB
Tier
Zoom into a Tier
Server (Physical/VM)
Operating System (RHEL 6.5 64bits)
Database System (MySQL)
Schema (Word-press)
IP
Ad...
Logical Connectivity
Web
Tier
Middle
Tier
DB
Tier
Internet
Where is the
network?
Backend ZoneDMZ
Web
Tier
Middle
Tier
DB
Tier
Multicast/Broadcast, Isolation
Personal DataBusiness centerDMZ
Web
Tier
Middle
Tier
DB
Tier
Multicast/Broadcast, Isolation
Web
Tier
Middle
Tier
DB
Tier
Layer 3 Services
• Subnet
• GW
• IPAM – DHCP
• DNS
• Subnet
• GW
• IPAM – DHCP
• DNS
• Subnet...
Web
Tier
Middle
Tier
DB
Tier
Availability
SLB
Web
Tier
Middle
Tier
DB
Tier
Availability & Scalability
SLB
SLB
SLB
Web
Tier
Middle
Tier
DB
Tier
Security, Availability & Scalability
SLB
SLB
SLB
FW
Web
Tier
Middle
Tier
DB
Tier
Management
SLB
SLB
SLB
FW
VPN Monitoring, CI
Expertise & Responsibilities
• Network / Security Manager
– Network (L2, L3)
– Network Services (Router, NAT, DHCP, DNS, L...
Load Balancer - Management
• Network based
– L2 and L3
– L4 Load balancing
• Application based
– Cookie based, L7 Content
...
What’s Changed?
Everything is Software Defined
We Can Automate Everything..
Orchestration
Networking
Compute
Neutron/Nova APIs
• Layer 2 networks
• Layer 3 subnets
– IP address management – DHCP based
– Router / gateway / NAT
• Por...
Putting Network and Apps Together
by Example
HEAT
•OpenStack
Orchestration
TOSCA
•Topology
•Orchestration
•Specification o...
Apache Server DB Server
Apache
Wordpress
MySQL
WordPress Simple Example
• App Network
• App Subnet
• App Port
• Security G...
Network Topology View
Heat Topology View
Heat Template
Apache Server DB Server
NodeJS
NodeCeller
MongoDB
TOSCA (Like) Example
• App Network
• App Subnet
• App Port
• Security Gr...
Network View
Topology View
TOSCA (Like) Blueprint
Adding AutoScaling
& Avaliability..
Scalability & Availability
Router
L3
Tenant1 Network
Tenant1 Project
VIP1
Management Network
Web
VM
3
VIP1VIP1
Alteon VA P...
AutoScaling - Heat Template
• web_server_group - OS::Heat::AutoScalingGroup
• web_server_scaleup_policy - OS::Heat::Scalin...
So far so good, but...
Considering Real Life Scenarios
Continuous Availability
Across AZ’s and Regions
– Adding Affinity Rules for Compute,
Stora...
Real Life
Example
(HP Print)
• 30 HP Helion Public Cloud accounts
• 500+compute instances
• 1400 Peak deployments per day
...
Networking and Apps in Real Life...
Future
work..
Putting
TOSCA and
HEAT Closer..
• TOSCA HEAT
Translator Project
(IBM, GigaSpaces, Huawei,
Vnomic ..)
• TOSCA
enablement in...
Group Based
Policies
• Addressing
Network
Requirements
from the
application
perspective
• Delegation of
Responsibilities
References
• Examples (Step by Step Guide)
– Heat Example
– TOSCA (like) Example
• TOSCA Translator Project
– Git Project
...
Upcoming SlideShare
Loading in …5
×

When Networks Meet Apps, Samuel Bercovici & Nati Shalom

737 views

Published on

When Network Meets Apps: Recent advancements in OpenStack capabilities have made the cloud better tuned to enterprise needs by introducing much more flexible network designs and networking services, with the tradeoff of making the cloud more complex. In this session we will describe how we can leverage the power of the new networking advancement without exposing the complexity to the end user. We will present alternative approaches and their tradeoffs for automating the deployment of a typical n-tier enterprise application that include multi-tenant environment, separate network for admin and applications, cross region network, attach a floating IP, setup security groups etc. all through a combination of Heat, TOSCA, Chef, Puppet, and more.

Published in: Technology
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
737
On SlideShare
0
From Embeds
0
Number of Embeds
3
Actions
Shares
0
Downloads
17
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide
  • Goals:
    Why Workflows are critical part of automation of applications on the cloud
    Clarify the need for something like OpsWorks
    Why do we think this OpsWorks is needed in addition to other projects
  • Original example: https://github.com/openstack/heat-templates/blob/master/hot/F18/WordPress_Native.yaml
    Wordpress with Netowrking: http://s3.amazonaws.com/yoramw/wordpress.yaml


  • https://github.com/openstack/heat-templates/blob/master/hot/autoscaling.yaml
  • When Networks Meet Apps, Samuel Bercovici & Nati Shalom

    1. 1. When Network Meets Apps! Putting networking and application together Nati Shalom GigaSpaces @natishalom Samuel Bercovici Radware @samuelbercovici
    2. 2. Agenda • Overview of Networking and Apps • What’s Changed? • Putting Networking and Apps by Example • Future Work
    3. 3. Let’s Start With Some Basic Definitions..
    4. 4. Application Application & Tiers Web Tier Middle Tier DB Tier
    5. 5. Zoom into a Tier Server (Physical/VM) Operating System (RHEL 6.5 64bits) Database System (MySQL) Schema (Word-press) IP Address IP Address TCP Port
    6. 6. Logical Connectivity Web Tier Middle Tier DB Tier Internet
    7. 7. Where is the network?
    8. 8. Backend ZoneDMZ Web Tier Middle Tier DB Tier Multicast/Broadcast, Isolation
    9. 9. Personal DataBusiness centerDMZ Web Tier Middle Tier DB Tier Multicast/Broadcast, Isolation
    10. 10. Web Tier Middle Tier DB Tier Layer 3 Services • Subnet • GW • IPAM – DHCP • DNS • Subnet • GW • IPAM – DHCP • DNS • Subnet • GW • IPAM – DHCP • DNS
    11. 11. Web Tier Middle Tier DB Tier Availability SLB
    12. 12. Web Tier Middle Tier DB Tier Availability & Scalability SLB SLB SLB
    13. 13. Web Tier Middle Tier DB Tier Security, Availability & Scalability SLB SLB SLB FW
    14. 14. Web Tier Middle Tier DB Tier Management SLB SLB SLB FW VPN Monitoring, CI
    15. 15. Expertise & Responsibilities • Network / Security Manager – Network (L2, L3) – Network Services (Router, NAT, DHCP, DNS, LB) – Network Security (FW, VPN) • IT / Application Manager – Server – Operating System – Software Stack – Application Artifacts – Server’s Security
    16. 16. Load Balancer - Management • Network based – L2 and L3 – L4 Load balancing • Application based – Cookie based, L7 Content Switching, L7 Content Modifications, etc. Network Manager Network Manager ? Application Manager ?
    17. 17. What’s Changed? Everything is Software Defined
    18. 18. We Can Automate Everything.. Orchestration Networking Compute
    19. 19. Neutron/Nova APIs • Layer 2 networks • Layer 3 subnets – IP address management – DHCP based – Router / gateway / NAT • Port • Security groups • Floating IP • Layer 4-7 Services – Load balancing – VPN – Firewall
    20. 20. Putting Network and Apps Together by Example HEAT •OpenStack Orchestration TOSCA •Topology •Orchestration •Specification of •Cloud •Application
    21. 21. Apache Server DB Server Apache Wordpress MySQL WordPress Simple Example • App Network • App Subnet • App Port • Security Group • Apache Floating IP • Router Gateway • Data Network • Data Subnet • Data Port • Security Group Router
    22. 22. Network Topology View
    23. 23. Heat Topology View
    24. 24. Heat Template
    25. 25. Apache Server DB Server NodeJS NodeCeller MongoDB TOSCA (Like) Example • App Network • App Subnet • App Port • Security Group • Apache Floating IP • Router Gateway • Data Network • Data Subnet • Data Port • Security Group Router Monitoring, Logging CI
    26. 26. Network View
    27. 27. Topology View
    28. 28. TOSCA (Like) Blueprint
    29. 29. Adding AutoScaling & Avaliability..
    30. 30. Scalability & Availability Router L3 Tenant1 Network Tenant1 Project VIP1 Management Network Web VM 3 VIP1VIP1 Alteon VA Project VM 4 VM 5
    31. 31. AutoScaling - Heat Template • web_server_group - OS::Heat::AutoScalingGroup • web_server_scaleup_policy - OS::Heat::ScalingPolicy • web_server_scaledown_policy - OS::Heat::ScalingPolicy • cpu_alarm_high - OS::Ceilometer::Alarm • cpu_alarm_low - OS::Ceilometer::Alarm • monitor - OS::Neutron::HealthMonitor • pool - OS::Neutron::Pool • lb - OS::Neutron::LoadBalancer
    32. 32. So far so good, but...
    33. 33. Considering Real Life Scenarios Continuous Availability Across AZ’s and Regions – Adding Affinity Rules for Compute, Storage – Auto-Scaling, etc. Continuous Deployment – Updating policies and workflow – Creating new deployments every day
    34. 34. Real Life Example (HP Print) • 30 HP Helion Public Cloud accounts • 500+compute instances • 1400 Peak deployments per day • 100+compute instances per management cluster • 100xdevelopers doing deployments in a consistent fashion • <2HMove from HP Helion Public Cloud tenant to a fully provisioned and deployed service
    35. 35. Networking and Apps in Real Life...
    36. 36. Future work..
    37. 37. Putting TOSCA and HEAT Closer.. • TOSCA HEAT Translator Project (IBM, GigaSpaces, Huawei, Vnomic ..) • TOSCA enablement in Heat Juno • Integrating Cloudify and Heat
    38. 38. Group Based Policies • Addressing Network Requirements from the application perspective • Delegation of Responsibilities
    39. 39. References • Examples (Step by Step Guide) – Heat Example – TOSCA (like) Example • TOSCA Translator Project – Git Project • OpenStack Heat Project • Cloudify – getcloudify.org • Radware Load Balancing as a Service • Group Based Policies – GPB • AutoScaling Policies – Heat Template

    ×