The document discusses using KVM as the hypervisor with CloudStack. It provides background on KVM, how it works with CloudStack, and guidelines for installing and configuring it on the host including:
- KVM is included in the Linux kernel and provides hardware virtualization. It works with CloudStack since version 2.0.
- When using KVM with CloudStack, Linux bridges or Open vSwitch can be used for network bridging between VMs. Configuration examples are provided for both.
- Storage configuration using a dedicated VLAN is also demonstrated.
- The document provides tips for ensuring the KVM and libvirt services are configured correctly on the host for CloudStack management.
What will we cover: Hypervisor choices; KVM background; Installation and configuration – high level covering what you already find in the installation guides; Dive a bit deeper into networking – since this is where we see people sometimes getting stuck; Cover storage options and the need for clustered file systems; Management and troubleshooting.
CCCNA17 Distributed CI and Testing for Cloudstack in a Hybrid CommunityShapeBlue
Everybody runs on specialised hardware and software environments. A lot of us are also running our own version of the Apache CloudStack software itself. This results in 1000s of different permutated environments in which it runs and should keep running. Is it realistic to want full test coverage, let alone a CI pipeline across all of these? This talk will outline a vision for a distributed, community based test platform that allows any users of the system to contribute automated test results, based on their environments and their configurations during the development life cycle. Two recent initiatives will be highlighted: the Trillian framework and @blueorangutan which contribute to delivering this overall vision. It'll also be shown what there is left to do and the input required from the community to make this vision reality.
Review issues with current CloudStack fencing mechanisms and high availability feature. Discuss new features developed for CloudStack, namely OOBM (out-of-band management) that allows for power management of the hosts and Host-HA that provides reliable mechanisms for investigation, recovery and fencing of a host. In the presentation, the speakers (also authors of the features) will demonstrate the features, discuss their design and implementation, and how they allow for reliable recovery/fencing of the host and host power management.
What will we cover: Hypervisor choices; KVM background; Installation and configuration – high level covering what you already find in the installation guides; Dive a bit deeper into networking – since this is where we see people sometimes getting stuck; Cover storage options and the need for clustered file systems; Management and troubleshooting.
CCCNA17 Distributed CI and Testing for Cloudstack in a Hybrid CommunityShapeBlue
Everybody runs on specialised hardware and software environments. A lot of us are also running our own version of the Apache CloudStack software itself. This results in 1000s of different permutated environments in which it runs and should keep running. Is it realistic to want full test coverage, let alone a CI pipeline across all of these? This talk will outline a vision for a distributed, community based test platform that allows any users of the system to contribute automated test results, based on their environments and their configurations during the development life cycle. Two recent initiatives will be highlighted: the Trillian framework and @blueorangutan which contribute to delivering this overall vision. It'll also be shown what there is left to do and the input required from the community to make this vision reality.
Review issues with current CloudStack fencing mechanisms and high availability feature. Discuss new features developed for CloudStack, namely OOBM (out-of-band management) that allows for power management of the hosts and Host-HA that provides reliable mechanisms for investigation, recovery and fencing of a host. In the presentation, the speakers (also authors of the features) will demonstrate the features, discuss their design and implementation, and how they allow for reliable recovery/fencing of the host and host power management.
What's new in how we use roles in CloudStack. How do we create custom roles for specific APIs and what implications we can meet while doing so. What should we expect when doing migration and upgrade.
Ilya introduces a new project - CloudStack UI - which is a trial of rethinking and redevelopment of the classic Apache CloudStack UI. With new stack of web development technologies (Angular 4, TypeScript, Material Design Lite). Ilya discusses how and why the project was started, current results and future plans, explains what an average IaaS/PaaS user expects from the perspective of public cloud ISP HelpDesk, and demonstrates the interface of the new UI and its core differences from the native UI.
Cloudstack dynamic roles give a true RBAC layer to cloudstack, giving a fully flexible & granular approach to security. Bobby talked through the new functionality and how to migrated existing Cloudstack environments
Paul takes a look at the relevance of NFV in CloudStack orchestrated environments and how CloudStack can be leveraged to both accelerate NFV delivery within operator organisations and also to deliver NFV functionality to end-users. Paul will discuss the core concepts of NFV, emerging standards and how these are relevant to CloudStack. He will also look in detail at a new initiative in CloudStack, allowing it to support complex virtualised network topologies for end-users.
Paul Angus - CloudStack Backup and Recovery FrameworkShapeBlue
This presentation will demonstrate the long awaited Backup & Recovery Framework feature. The presentation will feature a real-world demonstration as well explain the design philosophy and how the feature has been built to be agnostic of the backend Backup and Recovery software in use.
Dag Sonstebo. Dag will give an overview of the pros and cons of working with KVM in a CloudStack environment, as well as diving deeper into installation, configuration, networking and storage options.
Giles Sirett: Introduction and CloudStack news ShapeBlue
Giles will talk about all that's new and happening within the Apache CloudStack community, and about new and future releases, exciting features, upcoming events and more!
Dag Sonstebo takes a closer look at how the CloudStack usage service is configured, how it processes data and how it can be queried and reported on. This talk is from the Apache CloudStack user group in Leipzig in November 2017.
Boris Stoyanov - some new features in Apache cloudStackShapeBlue
A look at some new CloudStack features around VM deployment and configuration. These new features include: more sophisticated options for specifying pod and cluster while deploying a VM; running and retrieving diagnostics on the VR; sending additional configuration to VMs; and adding options to cleanup additional data disks when destroying a VM.
There is currently significant effort going on in the Apache CloudStack community to develop a new, modern, UI (user interface) for CloudStack: Project Primate. In this talk Paul discusses why this new UI is required, the history of this project and how it will be included in future CloudStack releases.
Vladimir Melnik from Tucha Cloud Services in the Ukraine, another company running IaaS services on Apache Cloudstack. Vladimir is the original author and maintainer of Monkeyman, a perl5 framework for Apache CloudStack automation
Paul Angus – Backup & Recovery in CloudStackShapeBlue
CloudStack users have long had to resort to using snapshots as a form of VM backup with varying success. In this talk Paul will explain features of the forthcoming backup and recovery feature.
What's new in how we use roles in CloudStack. How do we create custom roles for specific APIs and what implications we can meet while doing so. What should we expect when doing migration and upgrade.
Ilya introduces a new project - CloudStack UI - which is a trial of rethinking and redevelopment of the classic Apache CloudStack UI. With new stack of web development technologies (Angular 4, TypeScript, Material Design Lite). Ilya discusses how and why the project was started, current results and future plans, explains what an average IaaS/PaaS user expects from the perspective of public cloud ISP HelpDesk, and demonstrates the interface of the new UI and its core differences from the native UI.
Cloudstack dynamic roles give a true RBAC layer to cloudstack, giving a fully flexible & granular approach to security. Bobby talked through the new functionality and how to migrated existing Cloudstack environments
Paul takes a look at the relevance of NFV in CloudStack orchestrated environments and how CloudStack can be leveraged to both accelerate NFV delivery within operator organisations and also to deliver NFV functionality to end-users. Paul will discuss the core concepts of NFV, emerging standards and how these are relevant to CloudStack. He will also look in detail at a new initiative in CloudStack, allowing it to support complex virtualised network topologies for end-users.
Paul Angus - CloudStack Backup and Recovery FrameworkShapeBlue
This presentation will demonstrate the long awaited Backup & Recovery Framework feature. The presentation will feature a real-world demonstration as well explain the design philosophy and how the feature has been built to be agnostic of the backend Backup and Recovery software in use.
Dag Sonstebo. Dag will give an overview of the pros and cons of working with KVM in a CloudStack environment, as well as diving deeper into installation, configuration, networking and storage options.
Giles Sirett: Introduction and CloudStack news ShapeBlue
Giles will talk about all that's new and happening within the Apache CloudStack community, and about new and future releases, exciting features, upcoming events and more!
Dag Sonstebo takes a closer look at how the CloudStack usage service is configured, how it processes data and how it can be queried and reported on. This talk is from the Apache CloudStack user group in Leipzig in November 2017.
Boris Stoyanov - some new features in Apache cloudStackShapeBlue
A look at some new CloudStack features around VM deployment and configuration. These new features include: more sophisticated options for specifying pod and cluster while deploying a VM; running and retrieving diagnostics on the VR; sending additional configuration to VMs; and adding options to cleanup additional data disks when destroying a VM.
There is currently significant effort going on in the Apache CloudStack community to develop a new, modern, UI (user interface) for CloudStack: Project Primate. In this talk Paul discusses why this new UI is required, the history of this project and how it will be included in future CloudStack releases.
Vladimir Melnik from Tucha Cloud Services in the Ukraine, another company running IaaS services on Apache Cloudstack. Vladimir is the original author and maintainer of Monkeyman, a perl5 framework for Apache CloudStack automation
Paul Angus – Backup & Recovery in CloudStackShapeBlue
CloudStack users have long had to resort to using snapshots as a form of VM backup with varying success. In this talk Paul will explain features of the forthcoming backup and recovery feature.
Building clouds with apache cloudstack apache roadshow 2018ShapeBlue
Talk given at Apache Roadshow, FOSS Backstage, Berlin, June 2018
Apache CloudStack is open source software designed to deploy and manage large networks of virtual machines, as a highly available, highly scalable Infrastructure as a Service (IaaS) cloud computing platform. This talk will give an introduction to the technology, its history and its architecture. It will look common use-cases (and some real production deployments) that are seen across both public and private cloud infrastructures and where CloudStack can be completed by other open source technologies.
The talk will also compare and contrast Apache Cloudstack with other IaaS platforms and why he thinks that the technology, combined with the Apache governance model will see CloudStack become the de-facto open source cloud platform. He will run a live demo of the software and talk about ways that people can get involved in the Apache CloudStack project.
Paul Angus - CloudStack Container ServiceShapeBlue
A walkthrough of the recently released update to ShapeBlue’s CloudStack Container Service (CCS). This update brings CCS bang up-to-date by running the latest version of Kubernetes (v1.11.3) on the latest version of Container Linux. CCS also now makes use of CloudStack’s new CA framework to automatically secure the Kubernetes environments it creates.
Cloud Native Night June 2019, Munich: Talk by Josef Fuchshuber (@fuchshuber, Principal Software Architect at QAware)
Join our Meetup: www.meetup.com/cloud-native-muc
Abstract: Kubernetes ist komplex geworden. Eigentlich so komplex, dass man sich als App Developer mit diesem Komplexitätsgrad auf Platform-Level nur selten befassen will. Was aber ist die richtige Abstraktionsebene für App Developer? In diesem Talk werden zwei mögliche Lösungen vorgestellt:
- Crossplane: Ein Multicloud Control Plane um Workload und Ressourcen unabhängig von Cloud Providern ausrollen zu können
- Knative: Plattform um Serverless Workloads zu Bauen, Deployen und zu Managen
Beide Tools definieren eine abstrahierte Sicht auf K8s, haben aber jeweils einen eigenen Lösungsansatz und unterschiedliche Einsatzszenarien. Diese werden in der Präsentation vorgestellt und mit Demos detaillierter erläutert.
NSO: Network Service Orchestrator enabled by Tail-f Hands-on LabCisco Canada
The Network Service Orchestrator (NSO) is a multi-vendor network orchestrator developed by Tail-f, a recent Cisco acquisition in the area of network management and orchestration. This 4hs session will give an introduction to the NCS system and show hands-on the tool and its different interfaces: network-wide CLI, REST API, etc. Participants will also create one basic network services models using the YANG language.
DEVNET-1148 Leveraging Cisco OpenStack Private Cloud for DevelopersCisco DevNet
In this session, participants will gain an insight into how to deploy a continuous integration environment for application delivery using Cisco OpenStack Private Cloud APIs. The session will cover several open source technologies including Gitlab, Jenkins, Docker, OpenStack Heat, Ansible, and Terraform with the purpose of delivering a simple ReactJS application.
CERN OpenStack Cloud Control Plane - From VMs to K8sBelmiro Moreira
CERN is the home of the Large Hadron Collider (LHC), a 27km circular proton accelerator that generates petabytes of physics data every year. To process all this data, CERN runs an OpenStack Cloud (>300K cores) that helps scientists all around the world to unveil the mysteries of the Universe. The Infrastructure is also used to run all the IT services of the Organization.
Delivering these services, with high performance and reliable service levels has been one of the major challenges for the CERN Cloud engineering team. We have been constantly iterating the architecture and deployment model of the Cloud control plane.
In this presentation we will describe the different control plane architecture models that we relied over the years. Finally, we will describe all the work done to move the OpenStack Cloud control plane from VMs into a kubernetes cluster. We will report about our experience running this architecture at scale, its advantages and challenges.
Sigfox discovery workshop using an Arduino MKRFOX board.
* Getting started with the MKRFOX
* Getting started with the Sigfox Cloud
* First messages over the Sigfox network
* Downlink feature
* Callback settings
* Events configuration
* IFTTT demo
* API configuration
Session held in Cape Town on November 8th, 2017
This document is a presentation from OpenStack Summit Sydney. It describes how to easily install OpenStack on Kubernetes. It explains Kubernetes and OpenStack-Helm.
Similar to ApacheCon Miami / CCCNA17 Using KVM in CloudStack (20)
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
Elevating Tactical DDD Patterns Through Object CalisthenicsDorra BARTAGUIZ
After immersing yourself in the blue book and its red counterpart, attending DDD-focused conferences, and applying tactical patterns, you're left with a crucial question: How do I ensure my design is effective? Tactical patterns within Domain-Driven Design (DDD) serve as guiding principles for creating clear and manageable domain models. However, achieving success with these patterns requires additional guidance. Interestingly, we've observed that a set of constraints initially designed for training purposes remarkably aligns with effective pattern implementation, offering a more ‘mechanical’ approach. Let's explore together how Object Calisthenics can elevate the design of your tactical DDD patterns, offering concrete help for those venturing into DDD for the first time!
PHP Frameworks: I want to break free (IPC Berlin 2024)Ralf Eggert
In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development.
This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdfPeter Spielvogel
Building better applications for business users with SAP Fiori.
• What is SAP Fiori and why it matters to you
• How a better user experience drives measurable business benefits
• How to get started with SAP Fiori today
• How SAP Fiori elements accelerates application development
• How SAP Build Code includes SAP Fiori tools and other generative artificial intelligence capabilities
• How SAP Fiori paves the way for using AI in SAP apps
Welocme to ViralQR, your best QR code generator.ViralQR
Welcome to ViralQR, your best QR code generator available on the market!
At ViralQR, we design static and dynamic QR codes. Our mission is to make business operations easier and customer engagement more powerful through the use of QR technology. Be it a small-scale business or a huge enterprise, our easy-to-use platform provides multiple choices that can be tailored according to your company's branding and marketing strategies.
Our Vision
We are here to make the process of creating QR codes easy and smooth, thus enhancing customer interaction and making business more fluid. We very strongly believe in the ability of QR codes to change the world for businesses in their interaction with customers and are set on making that technology accessible and usable far and wide.
Our Achievements
Ever since its inception, we have successfully served many clients by offering QR codes in their marketing, service delivery, and collection of feedback across various industries. Our platform has been recognized for its ease of use and amazing features, which helped a business to make QR codes.
Our Services
At ViralQR, here is a comprehensive suite of services that caters to your very needs:
Static QR Codes: Create free static QR codes. These QR codes are able to store significant information such as URLs, vCards, plain text, emails and SMS, Wi-Fi credentials, and Bitcoin addresses.
Dynamic QR codes: These also have all the advanced features but are subscription-based. They can directly link to PDF files, images, micro-landing pages, social accounts, review forms, business pages, and applications. In addition, they can be branded with CTAs, frames, patterns, colors, and logos to enhance your branding.
Pricing and Packages
Additionally, there is a 14-day free offer to ViralQR, which is an exceptional opportunity for new users to take a feel of this platform. One can easily subscribe from there and experience the full dynamic of using QR codes. The subscription plans are not only meant for business; they are priced very flexibly so that literally every business could afford to benefit from our service.
Why choose us?
ViralQR will provide services for marketing, advertising, catering, retail, and the like. The QR codes can be posted on fliers, packaging, merchandise, and banners, as well as to substitute for cash and cards in a restaurant or coffee shop. With QR codes integrated into your business, improve customer engagement and streamline operations.
Comprehensive Analytics
Subscribers of ViralQR receive detailed analytics and tracking tools in light of having a view of the core values of QR code performance. Our analytics dashboard shows aggregate views and unique views, as well as detailed information about each impression, including time, device, browser, and estimated location by city and country.
So, thank you for choosing ViralQR; we have an offer of nothing but the best in terms of QR code services to meet business diversity!
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
UiPath Test Automation using UiPath Test Suite series, part 4DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap.
The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies.
Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques
What will you get from this session?
1. Insights into SAP testing best practices
2. Heatmap utilization for testing
3. Optimization of testing processes
4. Demo
Topics covered:
Execution from the test manager
Orchestrator execution result
Defect reporting
SAP heatmap example with demo
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
2. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
A b o u t M e
• Cloud Architect @ ShapeBlue
• Background:
• Cloud and virtualization architect with 19
years experience from the service provider,
financial and manufacturing industries.
• Specialize in:
• Cloud infrastructure architecture and
engineering.
• Virtualization - VMware vSphere, Citrix
XenServer, KVM.
• Automation
• Involved with CloudStack since version 2.1.
3. C l i c k t o e d i t
The Cloud Specialists ShapeBlue.com @ShapeBlue
“ShapeBlue are expert builders of public & private
clouds. They are the leading global CloudStack
services company.”
A b o u t S h a p e B l u e
4. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
S h a p e B l u e c u s t o m e r s
5. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
S h a p e B l u e c u s t o m e r s
6. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
S h a p e B l u e c u s t o m e r s
7. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
CloudStack and hypervisor choice
8. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
C l o u d S t a c k h y p e r v i s o r c h o i c e
Hypervisor Pros Cons
VMware • Feature rich
• Mature
• Native HA / DRS
• Bare metal
• Cost – capex.
• IP consumption
• Virtual Centre
XenServer • Mature
• HA
• Disk chains
• Poolmaster
• No workload balancing
KVM • Fast
• Maturing.
• Cost
• Non-proprietary
• Lacking some networking,
storage and snapshotting
features.
• No workload balancing
9. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
KVM background
10. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
K V M b a c k g r o u n d
• KVM = Kernel-based Virtual Machine.
• In CloudStack KVM is used as a type 2 hypervisor – provides
virtualization support on top of a running Linux OS instance.
• Included in the Linux kernel since version 2.6.20 (2007).
• KVM is Free Software released under the GPL.
• Supported in CloudStack since early cloud.com days (version 2.0).
11. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
K V M b a c k g r o u n d
• Hardware:
• 32 / 64 bit with CPU virtualization support
(Intel-VTX / AMD-V).
• Kernel modules
• kvm
• kvm_intel
• kvm_amd
• Para-virtualization through the Virtio API.
• KVM and Qemu:
• KVM abstracts access to the CPU and memory.
• QEMU emulates the hardware resources (disks, graphics, USB, etc).
12. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
K V M a n d C l o u d S t a c k
• Pros:
• Flexible - not proprietary.
• Fast.
• Lightweight.
• No SPOF – no poolmasters or VirtualCentre like components.
• Cons:
• No workload balancing (yet…).
• No network throttling.
• No VM snapshot support.
• No native clustered file system.
• Root volume migration requires VM to be shut down.
13. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
Installation and configuration
14. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
B a s e i n s t a l l a t i o n
• Host OS:
• CentOS / RHEL 6.x / 7.x
• Ubuntu 12.04 / 14.04 / 16.04
• 4GB memory / 64-bit X86.
• Components (CloudStack 4.9):
• NTP + DNS
• Libvirt 1.2.0 or higher
• Qemu / KVM: 2.0 or higher
• Installing the CloudStack agent installs KVM and libvirt:
• yum install cloudstack-agent
• apt-get install cloudstack-agent
15. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
C o n f i g u r a t i o n
• /etc/libvirt/libvirtd.conf:
listen_tls = 0
listen_tcp = 1
tcp_port = "16509”
auth_tcp = "none”
mdns_adv = 0
• /etc/sysconfig/libvirtd:
LIBVIRTD_ARGS="--listen”
libvirtd_opts="-d -l”
• Security policies:
• CentOS: Selinux: permissive
• Ubuntu: Apparmor
• Firewall ports:
• TCP/22 (SSH)
• TCP/1798 (KVM)
• TCP/16509 (Libvirt)
• TCP/5900-6100 (VNC)
• TCP/49152-49216 (Libvirt migration)
16. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
Networking and storage
17. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
K V M n e t w o r k i n g
• KVM utilizes network
bridges – similar to
Vmware vSwitches and
XenServer networks.
• Bridging back ends:
• Linux bridge
• Open Vswitch (OVS)
18. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
B r i d g e b a c k e n d s – L i n u x b r i d g e
• Linux bridge
• In Linux kernel since version 2.2.
• Fast, simple, reliable and mature.
• Provides L2 requirements for CloudStack.
• Lacks automation options and scalable tunneling.
19. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
B r i d g e b a c k e n d s – O p e n V s w i t c h
• Open vSwitch
• Written for multi-host virtualization environments with dynamic
end points, higher level of abstraction and potential for
hardware offloading.
• Network state kept in a network state database (OVSDB).
• Allows for better automation.
• SDN options (tunneling).
• External controllers: OpenDaylight, Nicira, VMware NSX.
• Default bridge backend in XenServer 6.0 and later versions (does
not work with basic zones).
• Some issues with VLAN configuration and stability (depending on
host OS and version).
20. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
N e t w o r k i n g e x a m p l e
• Cloudbr0:
• Bond0: Eth0 + Eth1
• Carries management, guest and storage traffic.
• Cloudbr1:
• Bond1: Eth2 + Eth3
• Carries public traffic.
• Cloud0:
• Internal bridge, carries system VM management
traffic.
• Managed by CloudStack – does not need
configuration.
21. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
L i n u x b r i d g e c o n f i g u r a t i o n ( C e n t O S )
ifcfg-eth0:
DEVICE=eth0
TYPE=Ethernet
USERCTL=no
MASTER=bond0
SLAVE=yes
BOOTPROTO=none
NM_CONTROLLED=no
ONBOOT=yes
ifcfg-bond0:
DEVICE=bond0
ONBOOT=yes
BONDING_OPTS='mode=1
miimon=100'
BRIDGE=cloudbr0
NM_CONTROLLED=no
Ifcfg-cloudbr0:
DEVICE=cloudbr0
ONBOOT=yes
TYPE=Bridge
IPADDR=192.168.100.20
NETMASK=255.255.255.0
GATEWAY=192.168.100.1
NM_CONTROLLED=no
DELAY=0
22. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
L i n u x b r i d g e c o n f i g u r a t i o n ( C e n t O S )
ifcfg-cloudbr1:
DEVICE=cloudbr1
ONBOOT=yes
TYPE=Bridge
NM_CONTROLLED=no
DELAY=0
23. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
L i n u x b r i d g e c o n f i g u r a t i o n ( C e n t O S )
Storage VLAN
ifcfg-bond.100:
DEVICE=bond0.100
VLAN=yes
BOOTPROTO=static
ONBOOT=yes
TYPE=Unknown
BRIDGE=cloudbr100
Storage VLAN
ifcfg-cloudbr100:
DEVICE=cloudbr100
ONBOOT=yes
TYPE=Bridge
VLAN=yes
IPADDR=10.0.100.20
NETMASK=255.255.255.0
NM_CONTROLLED=no
DELAY=0
24. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
L i n u x b r i d g e c o n f i g u r a t i o n ( C e n t O S )
• Check bridges:
# brctl show
bridge name bridge id STP enabled interfaces
brbond0-113 8000.000c29b43c4d no bond0.113
cloudbr0 8000.000c29b55932 no bond0
cloudbr1 8000.000c29b45956 no bond1
cloudbr100 8000.000c29b43c4d no bond0.100
• Check bonds:
# cat /proc/net/bonding/bond0
Ethernet Channel Bonding Driver: v3.7.1 (April 27, 2011)
Bonding Mode: fault-tolerance (active-backup)
Primary Slave: None
Currently Active Slave: eth0
MII Status: up
MII Polling Interval (ms): 100
Up Delay (ms): 0
Down Delay (ms): 0
Slave Interface: eth0
MII Status: up
25. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
O V S c o n f i g u r a t i o n ( C e n t O S )
• Requires OVS installation:
# apt-get install openvswitch-switch
# yum install openvswitch-<version>.rpm
# yum install openvswitch-kmod-<version>.rpm
• Add bridges and bonds with OVS command line tools:
# ovs-vsctl add-br cloudbr0
# ovs-vsctl add-br cloudbr1
# ovs-vsctl add-bond cloudbr0 bond0 eth0 eth1
# ovs-vsctl add-bond cloudbr1 bond1 eth2 eth3
26. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
O V S c o n f i g u r a t i o n ( C e n t O S )
ifcfg-eth0:
DEVICE=eth0
ONBOOT=yes
NM_CONTROLLED=no
BOOTPROTO=none
HOTPLUG=no
ifcfg-bond0:
DEVICE=bond0
ONBOOT=yes
DEVICETYPE=ovs
TYPE=OVSBond
OVS_BRIDGE=cloudbr0
BOOTPROTO=none
BOND_IFACES="eth0 eth1"
OVS_OPTIONS="bond_mode=
active-backup lacp=off
other_config:bond-
detect-mode=miimon
other_config:bond-
miimon-interval=100"
HOTPLUG=no
Ifcfg-cloudbr0:
DEVICE=cloudbr0
ONBOOT=yes
DEVICETYPE=ovs
TYPE=OVSBridge
BOOTPROTO=static
IPADDR=192.168.100.20
NETMASK=255.255.255.0
HOTPLUG=no
27. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
O V S c o n f i g u r a t i o n ( C e n t O S )
ifcfg-cloud0:
DEVICE=cloud0
ONBOOT=yes
DEVICETYPE=ovs
TYPE=OVSBridge
BOOTPROTO=static
HOTPLUG=no
IPADDR=169.254.0.1
NETMASK=255.255.0.0
VLAN configuration:
# ovs-vsctl add-br cloudbr100 cloudbr0 100
ifcfg-cloudbr100
DEVICE=cloudbr100
ONBOOT=yes
DEVICETYPE=ovs
TYPE=OVSBridge
BOOTPROTO=static
IPADDR=10.0.100.20
NETMASK=255.255.255.0
HOTPLUG=no
28. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
O V S c o n f i g u r a t i o n ( C e n t O S )
• Some issues with network drivers cause VLANs to not propagate:
# ovs-vsctl set interface eth0 other-config:enable-vlan-
splinters=true
• List bridges:
# ovs-vsctl show
27daed4e-52f3-4177-9827-550f0e7df452
Bridge "cloudbr1"
Port "vnet2"
Interface "vnet2"
Port "bond1"
Interface "eth3"
Interface "eth2"
Port "cloudbr1"
Interface "cloudbr1"
type: internal
Bridge "cloud0"
…
• List bonds:
ovs-appctl bond/show bond0
---- bond0 ----
bond_mode: active-backup
bond may use recirculation: no,
Recirc-ID : -1
bond-hash-basis: 0
updelay: 0 ms
downdelay: 0 ms
lacp_status: off
active slave mac:
00:0c:xx:xx:xx:xx(eth0)
slave eth0: enabled
active slave
may_enable: true
slave eth1: enabled
may_enable: true
29. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
O V S c o n f i g u r a t i o n ( C e n t O S )
• Agent properties file - /etc/cloudstack/agent/agent.properties:
guest.network.device=cloudbr0
workers=5
private.network.device=cloudbr0
network.bridge.type=openvswitch
port=8250
resource=com.cloud.hypervisor.kvm.resource.LibvirtComputingResource
pod=3
zone=2
hypervisor.type=kvm
guid=c3c6a2fc-13d3-3af1-ae2e-e48a21d9b883
public.network.device=cloudbr1
cluster=5
local.storage.uuid=2f2220ef-2624-4e69-b442-0a4ae5c5add6
domr.scripts.dir=scripts/network/domr/kvm
LibvirtComputingResource.id=28
host=192.168.100.20
30. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
S t o r a g e
• Disks, templates and snapshots use QCOW2 format.
• Primary storage options:
• NFS – recommended if performance is sufficient, easy option, supports
CloudStack managed thin provisioning.
• Local storage (does not support storage migration).
• SharedMountpoint option used for iSCSI / FC.
• CEPH.
• SharedMountpoint:
• Used to access pre-defined block storage.
• Must be running a clustered file system.
• Preconfigured on each host.
• Consistent – same on each host – e.g. /mnt/primary
31. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
S t o r a g e – s h a r e d m o u n t p o i n t
• KVM lacks a native clustered file system like VMFS or
SR (CLVM).
• Clustered file system options:
• OCFS2 (Oracle)
• GFS2 (RedHat)
• CLVM (not officially supported in CloudStack)
• CEPH
32. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
Management and troubleshooting
33. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
H o w d o I m a n a g e K V M
• Countless tools (40+).
• Most common:
• Virsh command line tool:
• Virt-manager: linux native but
works well with SSH X session
forwarding.
• Configuration management:
• Anything that utilises libvirt.
• Ansible: virt modules
• Puppet modules and Chef
Cookbooks.
# ssh –X kvmhost1
root@kvmhost1:~# virsh list
Id Name State
-----------------------------------
2 r-540-VM running
3 s-548-VM running
4 v-509-VM running
root@kvmhost1:~# virt-manager &
34. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
Tr o u b l e s h o o t i n g
• Check KVM is running:
# lsmod | grep kvm
kvm_intel 151552 9
kvm 479232 1 kvm_intel
• Log file: /var/log/cloudstack/agent/agent.log
• Increase logging verbosity:
# sed -i 's/INFO/DEBUG/g' /etc/cloudstack/agent/log4j-cloud.xml
• KVM uses link local networking, hence connect to system VMs using:
# ssh -i /root/.ssh/id_rsa.cloud -p 3922 root@<linklocalIP>
35. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
W h a t ’ s n e x t
• HA (and IPMI control) is being developed for KVM.
https://cwiki.apache.org/confluence/display/CLOUDSTACK/KV
M+HA+with+IPMI+Fencing
• DRS functionality has been discussed but is not
yet in development.
36. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
Questions?
37. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
M o r e i n f o r m a t i o n
• Background:
• http://www.linux-kvm.org
• http://wiki.qemu.org/KVM
• https://libvirt.org/
• Installation:
• http://docs.cloudstack.apache.org/projects/cloudstack-
installation/en/4.9/hypervisor/kvm.html
• Management tools:
• http://www.linux-kvm.org/page/Management_Tools
38. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
M o r e i n f o r m a t i o n
• Networking:
• http://openvswitch.org
• http://openvswitch.org/support/dist-docs/WHY-OVS.md.txt
• Storage:
• CEPH: http://docs.ceph.com/docs/hammer/rbd/rbd-cloudstack/
• OCFS2: https://oss.oracle.com/projects/ocfs2/
• GFS2: https://access.redhat.com/documentation/en-
US/Red_Hat_Enterprise_Linux/6/html-
single/Global_File_System_2/index.html
39. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
M o r e i n f o r m a t i o n
• Slide deck:
https://www.slideshare.net/ShapeBlue/ccna17-kvm-
and-cloudstack
• Blog: http://shapeblue.com/blog
http://dsonstebo.wordpress.com
• Email: dag.sonstebo@shapeblue.com
• Twitter: @dagsonstebo
• Web: http://shapeblue.com
40. C l i c k t o e d i t
The Cloud Specialists
ShapeBlue.com @ShapeBlue
S h a m e l e s s s e l f p r o m o t i o n … …
• My next talk:
• What: Apache CloudStack Upgrade Best Practices
• When: Tomorrow – Thursday @ 2:40PM
• Where: Rafael (here….)