Successfully reported this slideshow.
Your SlideShare is downloading. ×

Congress Updates - Liberty Edition

Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Loading in …3
×

Check these out next

1 of 11 Ad

More Related Content

Slideshows for you (20)

Viewers also liked (20)

Advertisement

Similar to Congress Updates - Liberty Edition (20)

Advertisement

Recently uploaded (20)

Congress Updates - Liberty Edition

  1. 1. OpenStack Congress Governance as a Service Kilo/Liberty Update Tim Hinrichs Timothy.L.Hinrichs@gmail.com June 22, 2015
  2. 2. Overview An Open Policy Framework for the Datacenter Congress Policy Network Compute Storage Others Neutron Nova Cinder Swift …
  3. 3. Design Goals 1. Any Service 2. Any Policy
  4. 4. Example Policy: Every network attached to a VM must be a public network or a private network owned by someone in the same group as the VM owner. Cloud Services: – Nova: a manager for VMs – Neutron: a manager for virtual networks – Keystone: manager for group-membership
  5. 5. Capabilities • Monitoring. Identify policy violations • Enforcement. Take action to eliminate policy violations – Proactive: prevent violations – Reactive: correct violations – Delegation: divvy problem among other policy engines • Audit. Chronicle history pertinent to policy
  6. 6. Kilo status • Level 3 in the big tent • Ground work: RESTful API, Command-line interface, GUI (Horizon), Keystone integration, devstack integration, tempest tests • Policy engine: Datalog with negation but without recursion • Integrated Services: Ceilometer, Cinder, CloudFoundry, Glance, Ironic, Keystone, Murano, Neutron, Nova, Plexxi, Swift, vCenter • Capabilities: Monitoring, proactive/reactive enforcement
  7. 7. Liberty: Reactive Enforcement Congress 1. Change requested Nova 2. Identify violation 3. Execute actions Kilo Policy statements like if <conditions> then <action> Liberty ● Provide admin controls to disable/limit action execution ● Add API that lists the available actions ● Enlarge number of services capable of executing actions
  8. 8. Kilo/Liberty: High Availability Architecture Congress Congress Congress Load Balancer Shared database
  9. 9. Message bus Congress Liberty: Scale Out Architecture Neutron Nova Cinder Swift Nova DriverNeutron Driver Cinder Driver Swift Driver Policy Engine
  10. 10. Liberty: Delegation with Keystone? Congress Policy Neutron Nova Cinder Swift …
  11. 11. Contact Information Wiki https://wiki.openstack.org/wiki/Congress IRC #congress IRC Meetings Tuesdays @ 10a Pacific = 1700 UTC on #openstack-meeting-3

×