Alessandro Martellone works as an IT engineer at Create-Net, where he is involved in the XIFI project. XIFI is creating a federated cloud infrastructure using OpenStack across multiple sites in Europe. It aims to provide resources to developers and showcase FI-WARE technologies. The infrastructure will connect sites in Trento, Berlin, and Santander using a multi-domain VPN from GEANT. Fuel and a customized ITBox module are being used to automate and customize the deployment of the distributed OpenStack cloud.

1. OpenStackDay: XIFI ProjectOpenStackDay: XIFI Project
alessandro.martellone@create-net.org

2. Introduction
Alessandro M. Martellone | IT engineer
I am an IT engineer at Create-Net[1]. In August
2013 I joined Smart Infrastructures Area where I
work on Future Internet infrastructures and cloud
platforms (I’m an enthusiastic user of OpenStack).
Previously, I’ve worked in several ICT companies,
dealt of web developing, software product designdealt of web developing, software product design
and of critical financial software. I’m currently
involving on an OpenStack cloud infrastructure to
support the European project XIFI [2]. If you want
more information about me, you may see my
Linkedin profile [3] and my Github page [4].Useful links:
[1] Create-Net http://www.create-net.org/people/amartellone
[2] XiFi project: https://fi-xifi.eu/home.html
[3] Linkedin profile: http://www.linkedin.com/in/alessandromartellone
[4] Github page: https://github.com/amartellone

3. Create-Net
• CREATE-NET is an international research centre recognized as one
of Europe's leading institutions in ICT and telecommunications
technologies.
– 90+ people
– 20+ nationality
– 6 international patent
– 32 research projects founded (18 european project)
– 3 spin-off
• Its mission is:• Its mission is:
– achieve research excellence in ICT, with focus on telecommunications;
– promote technology transfer towards the industry through Engineering of technologies &
solutions;
– promote Innovation to improve European high-tech competitiveness;
– focus on key application areas and services with impact on quality of life for the global society.
• In April 2014 CREATE-NET becomes Mirantis’ training partner
• It will soon offer OpenStack training courses and maintain the proven quality
and rigor of the Mirantis curriculum. (http://www.create-net.org/news/create-net-becomes-
mirantis%E2%80%99-training-partner)

4. Smart Instrastructures Area
• The main research topic of Smart
Infrastructures application area includes
– Highly available and automated cloud
environments;environments;
– Software-defined networks for cloud and data
centers;
– Green and Zero CO2 emissions data centers

5. XIFI project
• What is XIFI?
– XIFI (https://fi-xifi.eu/) is a
project of the European
Public-Private-Partnership on
Future InternetFuture Internet
(http://www.fi-ppp.eu/)
programme.
– +30 Partners
– Sustainable federation of FI-
WARE core platform enabled
infrastructures.

6. FI-WARE is an innovative, open cloud-based
infrastructure based on OpenStack for cost-
effective creation and delivery of Future Internet
applications and services.
http://www.fi-ware.org/
The official instance of FI-WARE platform
open to use cases projects ( conceptual
XIFI and FI-WARE ecosystem
A collections of tools that ease the
deployment, setup, and operation of FI-
WARE instances.
http://www.fi-xifi.eu/fi-ops
The official instance of FI-WARE platform
open to use cases projects ( conceptual
prototypes) and third party developers.
Backed by a Community Cloud of 5 nodes that
will become 17.
https://account.lab.fi-ware.org/home

7. XIFI: core concepts
• XIFI as showcase for promotion of FI-PPP
technologies for developers.
• XIFI as a community cloud and a federation of
resources offered to the FI-PPP developer
community.community.
• XIFI as a flexible platform: the need to integrate
and federate different existing infrastructures.
• XIFI as an opportunity for FI infrastructures to
attract new communities of developers through
FI-PPP services

8. XIFI Federation
• Availability of 5
nodes (End of
March 2014) with
500+ cores,
1TB+ Ram,
100TB+ HD
• Additional 12
nodes (April /
September 2014)September 2014)
with 1000+
cores, 2TB+
Ram, 200TB+
HD
• Showcases for
developers,
infrastructures,
smart businesses

9. What should we federate?
• Network Federation
– Datacenters
– VMs on different environments
• Services Federation• Services Federation
– Instance VMs, create and manage networks, use
image and block storage services on every
environment according to user's access control
policy.

10. Internode connection
• Connect not only datacenters but distinct
OpenStack infrastructures (VMs)
• Solution: Multi-domain VPN (MD-VPN).
– Service provided by GÉANT (the GÉANT pan-European
backbone and the connecting NREN - Nationalbackbone and the connecting NREN - National
Research and Education Network centers )
• L3 or L2 VPNs spanned over several domains only
by configuring the edge routers.
• There is transparent traversal of the backbone
and other domains.

11. GÉANT MD-VPN
• The MD-VPN service is
reliant upon MPLS and
BGP technology.
• To data packets are
assigned labels. Packet-assigned labels. Packet-
forwarding decisions are
made on the label,
without the need to
examine the packet itself.

12. Use case: XIFI Project
• Two external networks.
– Tenant
– Federation
• Using OS Networking L3
agents is possible to use
multiple floating IP poolsmultiple floating IP pools
– Added a new bridge to
a physical eth interface.
– Duplicated quantum-
l3-agent
• Private IP, private
federation IP, public
IP(via OpenStack floating
IP process)

13. Use case: XIFI Project
Keystone
Proxy
Services
catalog
• Cloud portal (an extension of Horizon*): DNS
load balancing with geographic algorithm;
•Keystone-proxy (a Keystone wrapper)
replicated on every zone;
•currently, we have only an instance of the IDM
to cause of user privacy issues.
* Multi-region, blueprint architecture template,
Oauth 2.0
Trento - Italy
Berlin - Germany
Santander - Spain
Cloud
Portal
Keystone
Proxy
OpenStack services
Cloud
Portal
OpenStack services
Keystone
Proxy
IDM
OpenStack services
Services
catalog
Services
catalog
Users,
Organizations,
Roles,Regions

14. Trento’s datacenter
• Deployment in HA
• 3 controller nodes
• 5 compute nodes (+1 deployment
planned for June/July)planned for June/July)
• 1 service node (monitoring)
• 1 ITBox node
• 4 storage nodes (deployment planned
for June/July)
• 160 cores, 320 GB RAM, + 40 VMs

15. Problem: deploy a distributed
infrastructure
• The deployment of a large distributed infrastructure is
a complex task that requires automation to scale.
• Why Fuel?
– It supports natively OpenStack (required to create a new
FI-WARE Cloud instance) ;
– The graphical interface is very intuitive;– The graphical interface is very intuitive;
– It is a mature an stable solution;
– Open source (Apache License Version 2.0);
– Customizable.
• Why ITBox?
– In order to joint into federation, a node should install
additional and customized software components.

16. What is ITBox?
Cloud infrastructure,
GEs
APIs, Cloud Portal,
user’s extensions
Physical resources
Operating system &
Core components
GEs

17. What is ITBox?
• Based on Fuel 3.2.1 (in the next July -> Fuel
4.1)
• 4 extra modules integrated (monitoring,
compute schedulers, security)compute schedulers, security)
• HA with an even number of controllers (+
Galera Arbitrator)
• Nagios, NodeJs ( > 0.10)
• https://github.com/SmartInfrastructures?quer
y=itbox

18. ITBox : demo

19. References
• XIFI: https://fi-xifi.eu/
• European Public-Private-Partnership on Future Internet: http://www.fi-ppp.eu
• FI-WARE: http://www.fi-ware.org/
• FI-LAB: https://account.lab.fi-ware.org/home
• FI-OPS: http://www.fi-xifi.eu/fi-ops
• GÉANT MD-VPN:• GÉANT MD-VPN:
http://www.geant.net/Resources/Deliverables/Documents/D7.1_DS%203%203%2
01-MDVPN-service-architecture.pdf

20. Thank you!
Thanks and Q&A
20
Contacts:
alessandro.martellone@create-net.org
Create-Net : http://www.create-net.org/