Technical update KVM and Red Hat     Enterprise Virtualization (RHEV)Syed M Shaaf                    Klaus OxdalSolution A...
IBM invests into KVM DevelopmentOver 60 IBM programmers working on KVM as part of the community    Core KVM    Development...
Where IBM uses KVM                 IBM Contributions to KVM                     Over 60 IBM engineers and programmers work...
INDUSTRY LEADING VIRTUALIZATIONPERFORMANCE ON SPECVIRT_SC2010As of May 30, 2012, RHEV claims top 7 results and the only 8 ...
Virtualizing the x86 architecture    ●   x86 architecture is difficult to virtualize    ●   CPU implements 4 privilege lev...
Virtualizing the x86 architecture    ●   Hypervisor must run in ring 0    ●   Virtual machines run in ring 3        Proble...
Challenges facing customers    ●   Performance        ●   Hardware emulation is slow compared to physical            hardw...
KVM (Kernel-base Virtual Machine): Overview    ●   Integrated Hypervisor for Linux    ●   Converts Linux into a Type-1 Hyp...
5 YEARS AND MORE..9            KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
Benefits of Linux KVM Model• Leverages Linux – no need to re-invent the  wheel   – Built on trusted, stable enterprise gra...
RHEV HYPERVISOR/KVM OVERVIEW     SMALL FORM FACTOR, SCALABLE,          HIGH PERFORMANCE                                   ...
KVM Features ●   KVM supports advanced memory management      ●   Leverages robust and scalable Linux virtual memory manag...
Memory Page Sharing ●   Implemented in loadable kernel module      ●   Kernel SamePage Merging (KSM) ●   Kernel scans memo...
Memory Page Sharing ●   Kernel Same-Page Merging (KSM)     ●   Memory Page Sharing     ●   Securely shares identical memor...
Thin Provisioning     ●   Allocate storage only when         needed     ●   Oversubscribe storage     ●   Transparent to v...
Paravirtualized Drivers & VirtIO ●   KVM provides an interface for paravirtualized drivers      ●   Paravirtualized driver...
RED HAT ENTERPRISE VIRTUALIZATIONSECURITY RHEV inherits the security features of Linux and RHEL SELinux security policy in...
Security - SELinux to the rescue          SELinux is all about labeling          ●   Processes get labels – virtual machin...
KVM guests are processes, so we can confinethem like processes19             KVM / Red Hat Enterprise Virtualization | Sye...
Compromised virtual machine guest     confined, despite its vulnerability20             KVM / Red Hat Enterprise Virtualiz...
And of course, the guest operating system     can also run SELinux21             KVM / Red Hat Enterprise Virtualization |...
Red Hat Enterprise       Virtualization22       KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
RHEV Overview23              KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
RED HAT ENTERPRISE VIRTUALIZATIONRHEV MANAGER FEATURES                                                       ●    High Ava...
RHEV HYPERVISOR/KVM OVERVIEW     SMALL FORM FACTOR, SCALABLE,          HIGH PERFORMANCE                                   ...
RHEV 3.0 ARCHITECTURE                                                                                                    ...
SPICE: EXCEPTIONAL USER EXPERIENCE      User experience comparable to     a local desktop PC                Bi-direction...
RHEV 3.0 REPORTING  Historical usage, trending,  quality of service  Integrated reporting engine  based on Jasper report...
RHEV 3.0 - Integration     ●   Hook scripts are called at specific VM lifecycle events         ● VDSM (management agent) S...
RED HAT ENTERPRISE VIRTUALIZATIONRHEV             Integration & APIPython SDK   - Python SDK for developers30             ...
Thank you!Syed M Shaaf         Klaus OxdalSolution Architect   Strategic Alliance to IBM NordicsRed Hat              Red H...
Upcoming SlideShare
Loading in...5
×

Technical update KVM and Red Hat Enterprise Virtualization (RHEV) by syedmshaaf

4,658

Published on

Technical update KVM and Red Hat Enterprise Virtualization (RHEV)

Published in: Technology
0 Comments
5 Likes
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
4,658
On Slideshare
0
From Embeds
0
Number of Embeds
3
Actions
Shares
0
Downloads
246
Comments
0
Likes
5
Embeds 0
No embeds

No notes for slide

Technical update KVM and Red Hat Enterprise Virtualization (RHEV) by syedmshaaf

  1. 1. Technical update KVM and Red Hat Enterprise Virtualization (RHEV)Syed M Shaaf Klaus OxdalSolution Architect Strategic Alliance to IBM NordicsRed Hat Red Hat1 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  2. 2. IBM invests into KVM DevelopmentOver 60 IBM programmers working on KVM as part of the community Core KVM Development Contributions to KVM in Systems Linux 2.6 kernel Management Performance Company Changes Rate and Memory Data Center Red Hat 352 31.8% Networking Intel 155 14.0% Networking IBM 149 13.5% and I/O Security and Qumranet 143 12.9% Reliability AMD 97 8.8% Cloud Early Deployment2 © 2011 IBM Corporation
  3. 3. Where IBM uses KVM IBM Contributions to KVM Over 60 IBM engineers and programmers working on KVM, Qemu and oVirt as part of the open source community IBM System x and PureSystems IBM x86 servers for Linux and Windows support virtualization with KVM, as do IBM PureFlex and PureApplication Systems support KVM which deliver hypervisor choice and flexibility in next generation integrated systems IBM zEnterprise IBM System x Blades in the zEnterprise BladeCenter Extension (zBX) and Unified Resource Manager support KVM. + IBM Systems Director VMControl Automated virtualization management now also supported for KVM environments. IBM Software Group Portfolio KVM is a tier 1 virtualization technology for SWG with majority of SWG products supporting KVM today. Tivoli system management solutions manage KVM IBM SmartCloud Enterprise Agile cloud computing infrastructure as a service (IaaS) designed to provide rapid access to security-rich, enterprise-class virtual server environments, well suited for development and test activities and other dynamic workloads uses KVM.3 © 2011 IBM Corporation
  4. 4. INDUSTRY LEADING VIRTUALIZATIONPERFORMANCE ON SPECVIRT_SC2010As of May 30, 2012, RHEV claims top 7 results and the only 8 socket server scores. SPEC® and the benchmarkname SPECvirt® are registered trademarks of the Standard Performance Evaluation Corporation.4 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  5. 5. Virtualizing the x86 architecture ● x86 architecture is difficult to virtualize ● CPU implements 4 privilege levels or “rings” - 0 thru 3 ● Privileged kernels calls run in ring 0 ● Applications / userspace run in ring 3 Application Application Application Application Ring 3 Ring 1 & 2 Operating System Ring 0 Physical Hardware5 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  6. 6. Virtualizing the x86 architecture ● Hypervisor must run in ring 0 ● Virtual machines run in ring 3 Problem : The operating system kernel tries to privileged “ring 0” instructions. Will cause machine fault6 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  7. 7. Challenges facing customers ● Performance ● Hardware emulation is slow compared to physical hardware ● Also costly in terms of CPU ● Resulting in significant performance penalties for virtualization ● Time keeping ● Many issues with clock skew for guests ● Time drift especially under load7 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  8. 8. KVM (Kernel-base Virtual Machine): Overview ● Integrated Hypervisor for Linux ● Converts Linux into a Type-1 Hypervisor ● Runs Windows, Linux and other guests ● Allows for Hybrid-mode operation ● Run regular Linux applications along side VM guests ● Upstream since Linux 2.6.20 (2007) ● Control over future evolution is held by linux development community ● Supported in RHEL since v5.4 (Sept. 2009) ● Elegant, simple design reuses Linux and builds upon CPU virtualization assistance8 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  9. 9. 5 YEARS AND MORE..9 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  10. 10. Benefits of Linux KVM Model• Leverages Linux – no need to re-invent the wheel – Built on trusted, stable enterprise grade platform – Scheduler, memory management, hardware support etc. – Ease of management – use same tools for managing physical servers and hypervisors• Advanced features – Inherit scalability, NUMA support, power management, hot-plug etc. from Linux – others have to develop from scratch – SELinux security, advanced scheduler, RAS support etc.• Hybrid-mode operation – Run regular Linux applications side-by- side with Virtual Machines on the same server – much higher degree of hardware efficiency10 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  11. 11. RHEV HYPERVISOR/KVM OVERVIEW SMALL FORM FACTOR, SCALABLE, HIGH PERFORMANCE ● Host: 160 logical CPU (4,096 theoretical max), 2 TB RAM (64TB theoretical max) ● Guest: 64 vCPU, 512 GB RAM ● Supports latest silicon virtualization technology ● Based on the latest RHEL 6 kernel ● Microsoft SVVP certified11 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  12. 12. KVM Features ● KVM supports advanced memory management ● Leverages robust and scalable Linux virtual memory manager Support for large memory systems > 1TB ram ● Support for NUMA ● Transparent memory page sharing ● Memory overcommit12 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  13. 13. Memory Page Sharing ● Implemented in loadable kernel module ● Kernel SamePage Merging (KSM) ● Kernel scans memory of virtual machines ● Looks for identical pages ● “Merges” identical pages ● Only stores one copy (read only) of shared memory ● If a guest changes the page it gets its own private copy ● Significant hardware savings ● Better consolidation ratio Allows more virtual machines to run per host13 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  14. 14. Memory Page Sharing ● Kernel Same-Page Merging (KSM) ● Memory Page Sharing ● Securely shares identical memory pages between virtual machines14 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  15. 15. Thin Provisioning ● Allocate storage only when needed ● Oversubscribe storage ● Transparent to virtual machine ● Improve Storage Utilization ● Reduced Storage Costs ● Works with NFS, iSCSI and Fiber Channel15 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  16. 16. Paravirtualized Drivers & VirtIO ● KVM provides an interface for paravirtualized drivers ● Paravirtualized drivers for block and network devices ● High performance disk and networking ● VirtIO ● Common framework for paravirtualized drivers ● Goal : To allow one set of drivers to be used for all hypervisors ● Upstream Linux kernels include virtio drivers for disk, network & clock ● PV drivers available for Windows Server 2000 -> 2008, XP and Vista ● Including WHQL certification16 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  17. 17. RED HAT ENTERPRISE VIRTUALIZATIONSECURITY RHEV inherits the security features of Linux and RHEL SELinux security policy infrastructure Provides protection and isolation for virtual machines and host Compromised virtual machine cannot access other VMs or host sVirt Project Sub-project of NSAs SELinux community. Provides “hardened” hypervisors Multilevel security. Isolate guests Contain any hypervisor breaches17 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  18. 18. Security - SELinux to the rescue SELinux is all about labeling ● Processes get labels – virtual machines with KVM are processes ● Files and devices get labels – virtual images are stored on files and devices ● Rules control how process labels interact with file labels and other process labels ● The kernel enforces these rules18 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  19. 19. KVM guests are processes, so we can confinethem like processes19 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  20. 20. Compromised virtual machine guest confined, despite its vulnerability20 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  21. 21. And of course, the guest operating system can also run SELinux21 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  22. 22. Red Hat Enterprise Virtualization22 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  23. 23. RHEV Overview23 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  24. 24. RED HAT ENTERPRISE VIRTUALIZATIONRHEV MANAGER FEATURES ● High Availability ● Live Migration ● Load Balancing (DRS) ● Power Saver (DPM) ● Templates, thin provisioning, snapshots ● Centralized storage and networking management ● V2V ● Power User Portal ● Reporting Engine24 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  25. 25. RHEV HYPERVISOR/KVM OVERVIEW SMALL FORM FACTOR, SCALABLE, HIGH PERFORMANCE ● Host: 160 logical CPU (4,096 theoretical max), 2 TB RAM (64TB theoretical max) ● Guest: 64 vCPU, 512 GB RAM ● Supports latest silicon virtualization technology ● Based on the latest RHEL 6 kernel ● Microsoft SVVP certified25 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  26. 26. RHEV 3.0 ARCHITECTURE  RHEV-Manager is now a Java application running on JBoss EAP on RHEL  Backend database is now PostgreSQL 8.4  New user portal, REST API, Linux CLI  Support for multiple external authentication sources  Red Hat IPA  Microsoft Active Directory26 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  27. 27. SPICE: EXCEPTIONAL USER EXPERIENCE  User experience comparable to a local desktop PC  Bi-directional audio & video  VoIP & video conferencing  HD quality video  Hi resolution 2560x1600 (each)  Up to 4 monitors  USB redirection for nearly any device  Smart Card/CAC authentication  Copy & paste27 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  28. 28. RHEV 3.0 REPORTING Historical usage, trending, quality of service Integrated reporting engine based on Jasper reports Over 25 prebuilt reports and dashboards included Ability to create and customize reports and templates28 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  29. 29. RHEV 3.0 - Integration ● Hook scripts are called at specific VM lifecycle events ● VDSM (management agent) Start ● Before VM start ● After VM start ● Before VM migration in/out ● After VM migration in/out ● Before and After VM Pause ● Before and After VM Continue ● Before and After VM Hibernate ● Before and After VM resume from hibernate ● On VM stop ● On VDSM Stop ➔Hooks can modify a virtual machines XML definition before VM start ➔Hooks can run system commands – e.g.. Apply firewall rule to VM29 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  30. 30. RED HAT ENTERPRISE VIRTUALIZATIONRHEV Integration & APIPython SDK - Python SDK for developers30 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  31. 31. Thank you!Syed M Shaaf Klaus OxdalSolution Architect Strategic Alliance to IBM NordicsRed Hat Red Hat 31 KVM / Red Hat Enterprise Virtualization | Syed M Shaaf
  1. ¿Le ha llamado la atención una diapositiva en particular?

    Recortar diapositivas es una manera útil de recopilar información importante para consultarla más tarde.

×