This document discusses building a scalable federated hybrid cloud using a multi-cloud manager (MCM) architecture. Key points include:
- MCM acts as a manager of multiple public and private clouds, providing global policy, configuration, monitoring, and billing capabilities across clouds.
- The MCM is built as a web application on a PaaS to leverage existing scalable architectures and avoid reinventing solutions. This allows it to easily scale to millions of endpoints across hybrid cloud environments.
- Authentication is handled externally via identity providers while the MCM programs clouds using admin accounts on trusted channels. Synchronization of configurations and templates enables active-active or active-standby cloud architectures for high availability and
Apache CloudStack is open source software designed to deploy and manage large networks of virtual machines, as a highly available, highly scalable Infrastructure as a Service (IaaS) cloud computing platform.
It is used by a number of service providers to offer public cloud services, and by many companies to provide an on-premises (private) cloud offering, or as part of a hybrid cloud solution.
In this webinar, participants will learn:
Completely new way to manage Apache CloudStack with service provider, reseller and customer views.
Reliably collecting performance metrics from guests running inside Cloud stack
How to render Cloud Stack Tenant UI with ActOnCloud User Interface
Generate Detailed Billing Usage Reports for different cloudstack accounts
How to manage multiple cloudstack instances
How to perform capacity planning for Zones inside Cloud stack
How to autoscale VMs in VPC without depending on Hardware based loadbalancers
How to group VMs and apply policies and rules to govern and optimize them
Managing hybrid cloud.
Also if you are tired of seeing the old UI? You can find here the next generation mobile responsive interface to manage your cloud stack.
Cloud Networking is not Virtual Networking - London VMUG 20130425Greg Ferro
Talking how and why virtual networking that we use today is not suitable for use in Cloud deployments. First I talk about the gap between "server" & "networks", then discuss the problems of virtual networking that we use today. Then into using software appliances instead of physical devices by highlighting the good & bad.
Then a brief overview of Software Defined Networking and how it will impact Cloud Networking in the next two years,
See Your OpenStack Network Like Never Before with Real-time Visibility and Mo...PLUMgrid
After deployment and build-out of an OpenStack cloud, operators require a complete end to end single pane view of the SDN-based network overlay, all the associated workloads and hypervisors and physical infrastructure. Enterprises and cloud providers alike have aggressively adopted SDN visualization and monitoring platforms in addition to OpenStack horizon to keep their infrastructure running with 100% uptime. Additionally, new tools that aim at helping with proactive remediation of issues are being deployed and leveraged to quickly bring back the system to healthy conditions. In this session, attendees will discover:
How comprehensive visualization could help operations staff
How to correlate physical and virtual networks
How to immediately identify problems as they arise
How we built Packet's bare metal cloud platformPacket
Overview on Packet's approach to bare metal server and network automation for our public cloud. Presented at the Downtech NY Tech meetup on May 19th, 2016
Apache CloudStack is open source software designed to deploy and manage large networks of virtual machines, as a highly available, highly scalable Infrastructure as a Service (IaaS) cloud computing platform.
It is used by a number of service providers to offer public cloud services, and by many companies to provide an on-premises (private) cloud offering, or as part of a hybrid cloud solution.
In this webinar, participants will learn:
Completely new way to manage Apache CloudStack with service provider, reseller and customer views.
Reliably collecting performance metrics from guests running inside Cloud stack
How to render Cloud Stack Tenant UI with ActOnCloud User Interface
Generate Detailed Billing Usage Reports for different cloudstack accounts
How to manage multiple cloudstack instances
How to perform capacity planning for Zones inside Cloud stack
How to autoscale VMs in VPC without depending on Hardware based loadbalancers
How to group VMs and apply policies and rules to govern and optimize them
Managing hybrid cloud.
Also if you are tired of seeing the old UI? You can find here the next generation mobile responsive interface to manage your cloud stack.
Cloud Networking is not Virtual Networking - London VMUG 20130425Greg Ferro
Talking how and why virtual networking that we use today is not suitable for use in Cloud deployments. First I talk about the gap between "server" & "networks", then discuss the problems of virtual networking that we use today. Then into using software appliances instead of physical devices by highlighting the good & bad.
Then a brief overview of Software Defined Networking and how it will impact Cloud Networking in the next two years,
See Your OpenStack Network Like Never Before with Real-time Visibility and Mo...PLUMgrid
After deployment and build-out of an OpenStack cloud, operators require a complete end to end single pane view of the SDN-based network overlay, all the associated workloads and hypervisors and physical infrastructure. Enterprises and cloud providers alike have aggressively adopted SDN visualization and monitoring platforms in addition to OpenStack horizon to keep their infrastructure running with 100% uptime. Additionally, new tools that aim at helping with proactive remediation of issues are being deployed and leveraged to quickly bring back the system to healthy conditions. In this session, attendees will discover:
How comprehensive visualization could help operations staff
How to correlate physical and virtual networks
How to immediately identify problems as they arise
How we built Packet's bare metal cloud platformPacket
Overview on Packet's approach to bare metal server and network automation for our public cloud. Presented at the Downtech NY Tech meetup on May 19th, 2016
After two years, CloudStack Meetup was conducted on Aug 6 to understand the simplicity of Cloudstack, Drill-down into Optional Secondary Storage, How it fares with Openstack
and a Detailed demo of VPC feature of Cloudstack
Why
Critical to establishing a baseline knowledge
Establishes you as “knowledgeable”
Required for getting in the door.
Government mandate in some cases (FEDRAMP).
Some IT CLOUD Certifications
CompTIA Cloud Essentials
CompTIA Cloud Plus
AWS Certified Architect
GCP Certified Architect
MS Azure Certified Pro
Rackspace Certified
On-demand self-service. A consumer can unilaterally provision computing capabilities, such as server time and network storage, as needed automatically without requiring human interaction with each service provider
Broad network access. Capabilities are available over the network and accessed through standard mechanisms that promote use by heterogeneous thin or thick client platforms (e.g., mobile phones, tablets, laptops, and workstations).
Resource pooling. The provider’s computing resources are pooled to serve multiple consumers using a multi-tenant model, with different physical and virtual resources dynamically assigned and reassigned according to consumer demand
Rapid elasticity. Capabilities can be elastically provisioned and released, in some cases automatically, to scale rapidly outward and inward commensurate with demand
Measured service. Cloud systems automatically control and optimize resource use by leveraging a metering capability at some level of abstraction appropriate to the type of service
Public cloud. The cloud infrastructure is provisioned for open use by the general public. It may be owned, managed, and operated by a business, academic, or government organization, or some combination of them. It exists on the premises of the cloud provider.
Private cloud. The cloud infrastructure is provisioned for exclusive use by a single organization comprising multiple consumers (e.g., business units). It may be owned, managed, and operated by the organization, a third party, or some combination of them, and it may exist on or off premises.
Community cloud. The cloud infrastructure is provisioned for exclusive use by a specific community of consumers from organizations that have shared concerns.
You Can Build Your OpenStack and Consume it TooPLUMgrid
The power of the community is what makes open source initiatives extremely transformational—like OpenStack. On the other hand, enterprise users who are looking at adopting this solution need to go through a steep learning curve and deep transformation of their internal team structure. The power of OpenStack is actually greatly amplified by the ecosystem of vendors around it that look at important aspects like support and hardening as well as augmentation of specific aspects (e.g. scalability and performance) that are needed in production environments bringing the most value to users. Join Rackspace and PLUMgrid product specialists to learn how we jointly enable our Private Cloud enterprise users to consume OpenStack and Software Defined Networks (SDN) as ONE solution that brings comprehensive security, scalability and performance and a rich set of operational tools.
Cloudify: Open vCPE Design Concepts and Multi-Cloud OrchestrationCloudify Community
See how open vCPE can be achieved in the real world and in action, while integrating other VNFs into the service chain, while easily instantiating and managing on any cloud, leveraging open orchestration design concepts. More and more vendors are looking to not only easily onboard their VNFs to the cloud, but also build a stack that is versatile and not locked into one cloud provider or vendor. Join this webinar and learn how Datavision and Cloudify are helping deliver this end-to-end solution across the globe
Monitoring Security Policies for Container and OpenStack CloudsPLUMgrid
Container and OpenStack clouds often co-exist in data centers. Monitoring both environments require views into the underlay and overlay infrastructure, but infrastructure monitoring alone is no longer sufficient and needs to be paired with security policy views as containers and microservices are constantly reshaping data center traffic and flow patterns. A visualization GUI that correlates containers and VMs with security policy views provide a powerful tool for any operations team to detect security flow violations in real-time. Enterprises and cloud providers are adopting visualization and monitoring platforms in addition to OpenStack Horizon to keep their infrastructure running with 100% uptime. New tools that help with proactive remediation of issues are being deployed to quickly bring back the system to healthy conditions.
Hands-on Lab: Test Drive Your OpenStack NetworkPLUMgrid
Neutron is deployed in the majority of OpenStack clouds but it still constitutes one of the key areas of concerns for organizations world-wide. The transition from traditional hardware-centric networking to the software defined model takes time and learning and requires a mental shift as well as a change in workflows, procedures, tools and best-practices. In this session each participant will be provided with a personal sandbox OpenStack running a live Liberty-based environment and will work on common use cases and applications of SDNs in an OpenStack Cloud. The class will focus on test cases that will move beyond the basics of L2 and L3 and deploy VNFs such as NAT and security policies on top of a 3-tier application topology. The class will also go through exercises that are focused on monitoring and troubleshooting SDNs in an OpenStack cloud.
Understanding the New Enterprise Multi-Cloud Backbone for DevOps EngineersDevOps.com
IT infrastructure and apps are moving en masse to public clouds – AWS, Azure, Google – understanding leveraging infrastructure as code to provision the network services, connectivity and security to maximize simplicity, security and performance is critical to DevOps success in building and managing the new Enterprise Multi-Cloud Backbone.
In this webinar, you’ll learn more about critical use cases such as (1) Using Terraform to spin up transit networking services in AWS, (2) profile-based secure cloud access for developers, and (3) VPC secure egress filtering to meet compliance, including deeper dives into:
Deploying the network as code using automation tools
Addressing specific operational challenges for high availability, across multiple VPCs
Isolating environments for dev and test easily
Design pattern details and the pros and cons of each approach
Understanding the limitation of native services and how to add value and capabilities with advanced services
How to architect an Enterprise Multi-Cloud Backbone to support all your cloud use case
Delivering Composable NFV Services for Business, Residential and Mobile EdgePLUMgrid
In this talk, Principal architects will share considerations in designing virtual infrastructure to deliver vCPE and vPE based services. The speakers will provide some background on service function chaining, service edge routing, Openstack clouds and discuss virtualized architectures that can solve Service Provider problems to achieve agility and richness of cloud based services
Multi-Cloud Orchestration for Kubernetes with CloudifyCloudify Community
This presentation details Cloudify's Kubernetes plugin as well as Kubernetes Provider, offering complete integration with K8s and delivering multi-cloud container-based orchestration.
While the need for network automation is becoming a key part of the overall digital transformation agenda, the reality is that the success rate behind previous attempts to drive network automation (a.k.a NFV) is only at about 30%, where the statistics show that 70% of transformation projects fail!
Cloud Application Blueprints with Apache Brooklyn by Alex Henevaldbuildacloud
So you have your cloud running, what now? Extend the devops agility from infrastructure to applications by learning how to use Brooklyn, the Apache-incubating project for application management. Create blueprints for applications to enable one-click deployment into Cloudstack, Docker, localhost, or other targets. Leverage your favourite server management tools, from Bash to Chef. Automatically change the deployment after it's deployed. Attach policies to support scaling, failover, and alerting in the way your application needs.
In this session we'll show how with just a few lines of YAML, you can build powerful application blueprints by composing pre-existing components, from polyglot web stacks to big data tools such as Riak. We'll also cover defining new blueprints using custom scripts, configuring machine selection and runtime policies, and managing new locations such as Clocker -- the cloud of docker.
About Alex Henevald
Alex brings twenty years experience designing software solutions in the enterprise, start-up, and academic sectors. Most recently Alex was with Enigmatec Corporation where he led the development of what is now the Monterey® Middleware Platform™. Previous to that, he founded PocketWatch Systems, commercialising results from his doctoral research. Alex holds a PhD (Informatics) and an MSc (Cognitive Science) from the University of Edinburgh and an AB (Mathematics) from Princeton University. Alex was both a USA Today Academic All-Star and a Marshall Scholar.
After two years, CloudStack Meetup was conducted on Aug 6 to understand the simplicity of Cloudstack, Drill-down into Optional Secondary Storage, How it fares with Openstack
and a Detailed demo of VPC feature of Cloudstack
Why
Critical to establishing a baseline knowledge
Establishes you as “knowledgeable”
Required for getting in the door.
Government mandate in some cases (FEDRAMP).
Some IT CLOUD Certifications
CompTIA Cloud Essentials
CompTIA Cloud Plus
AWS Certified Architect
GCP Certified Architect
MS Azure Certified Pro
Rackspace Certified
On-demand self-service. A consumer can unilaterally provision computing capabilities, such as server time and network storage, as needed automatically without requiring human interaction with each service provider
Broad network access. Capabilities are available over the network and accessed through standard mechanisms that promote use by heterogeneous thin or thick client platforms (e.g., mobile phones, tablets, laptops, and workstations).
Resource pooling. The provider’s computing resources are pooled to serve multiple consumers using a multi-tenant model, with different physical and virtual resources dynamically assigned and reassigned according to consumer demand
Rapid elasticity. Capabilities can be elastically provisioned and released, in some cases automatically, to scale rapidly outward and inward commensurate with demand
Measured service. Cloud systems automatically control and optimize resource use by leveraging a metering capability at some level of abstraction appropriate to the type of service
Public cloud. The cloud infrastructure is provisioned for open use by the general public. It may be owned, managed, and operated by a business, academic, or government organization, or some combination of them. It exists on the premises of the cloud provider.
Private cloud. The cloud infrastructure is provisioned for exclusive use by a single organization comprising multiple consumers (e.g., business units). It may be owned, managed, and operated by the organization, a third party, or some combination of them, and it may exist on or off premises.
Community cloud. The cloud infrastructure is provisioned for exclusive use by a specific community of consumers from organizations that have shared concerns.
You Can Build Your OpenStack and Consume it TooPLUMgrid
The power of the community is what makes open source initiatives extremely transformational—like OpenStack. On the other hand, enterprise users who are looking at adopting this solution need to go through a steep learning curve and deep transformation of their internal team structure. The power of OpenStack is actually greatly amplified by the ecosystem of vendors around it that look at important aspects like support and hardening as well as augmentation of specific aspects (e.g. scalability and performance) that are needed in production environments bringing the most value to users. Join Rackspace and PLUMgrid product specialists to learn how we jointly enable our Private Cloud enterprise users to consume OpenStack and Software Defined Networks (SDN) as ONE solution that brings comprehensive security, scalability and performance and a rich set of operational tools.
Cloudify: Open vCPE Design Concepts and Multi-Cloud OrchestrationCloudify Community
See how open vCPE can be achieved in the real world and in action, while integrating other VNFs into the service chain, while easily instantiating and managing on any cloud, leveraging open orchestration design concepts. More and more vendors are looking to not only easily onboard their VNFs to the cloud, but also build a stack that is versatile and not locked into one cloud provider or vendor. Join this webinar and learn how Datavision and Cloudify are helping deliver this end-to-end solution across the globe
Monitoring Security Policies for Container and OpenStack CloudsPLUMgrid
Container and OpenStack clouds often co-exist in data centers. Monitoring both environments require views into the underlay and overlay infrastructure, but infrastructure monitoring alone is no longer sufficient and needs to be paired with security policy views as containers and microservices are constantly reshaping data center traffic and flow patterns. A visualization GUI that correlates containers and VMs with security policy views provide a powerful tool for any operations team to detect security flow violations in real-time. Enterprises and cloud providers are adopting visualization and monitoring platforms in addition to OpenStack Horizon to keep their infrastructure running with 100% uptime. New tools that help with proactive remediation of issues are being deployed to quickly bring back the system to healthy conditions.
Hands-on Lab: Test Drive Your OpenStack NetworkPLUMgrid
Neutron is deployed in the majority of OpenStack clouds but it still constitutes one of the key areas of concerns for organizations world-wide. The transition from traditional hardware-centric networking to the software defined model takes time and learning and requires a mental shift as well as a change in workflows, procedures, tools and best-practices. In this session each participant will be provided with a personal sandbox OpenStack running a live Liberty-based environment and will work on common use cases and applications of SDNs in an OpenStack Cloud. The class will focus on test cases that will move beyond the basics of L2 and L3 and deploy VNFs such as NAT and security policies on top of a 3-tier application topology. The class will also go through exercises that are focused on monitoring and troubleshooting SDNs in an OpenStack cloud.
Understanding the New Enterprise Multi-Cloud Backbone for DevOps EngineersDevOps.com
IT infrastructure and apps are moving en masse to public clouds – AWS, Azure, Google – understanding leveraging infrastructure as code to provision the network services, connectivity and security to maximize simplicity, security and performance is critical to DevOps success in building and managing the new Enterprise Multi-Cloud Backbone.
In this webinar, you’ll learn more about critical use cases such as (1) Using Terraform to spin up transit networking services in AWS, (2) profile-based secure cloud access for developers, and (3) VPC secure egress filtering to meet compliance, including deeper dives into:
Deploying the network as code using automation tools
Addressing specific operational challenges for high availability, across multiple VPCs
Isolating environments for dev and test easily
Design pattern details and the pros and cons of each approach
Understanding the limitation of native services and how to add value and capabilities with advanced services
How to architect an Enterprise Multi-Cloud Backbone to support all your cloud use case
Delivering Composable NFV Services for Business, Residential and Mobile EdgePLUMgrid
In this talk, Principal architects will share considerations in designing virtual infrastructure to deliver vCPE and vPE based services. The speakers will provide some background on service function chaining, service edge routing, Openstack clouds and discuss virtualized architectures that can solve Service Provider problems to achieve agility and richness of cloud based services
Multi-Cloud Orchestration for Kubernetes with CloudifyCloudify Community
This presentation details Cloudify's Kubernetes plugin as well as Kubernetes Provider, offering complete integration with K8s and delivering multi-cloud container-based orchestration.
While the need for network automation is becoming a key part of the overall digital transformation agenda, the reality is that the success rate behind previous attempts to drive network automation (a.k.a NFV) is only at about 30%, where the statistics show that 70% of transformation projects fail!
Cloud Application Blueprints with Apache Brooklyn by Alex Henevaldbuildacloud
So you have your cloud running, what now? Extend the devops agility from infrastructure to applications by learning how to use Brooklyn, the Apache-incubating project for application management. Create blueprints for applications to enable one-click deployment into Cloudstack, Docker, localhost, or other targets. Leverage your favourite server management tools, from Bash to Chef. Automatically change the deployment after it's deployed. Attach policies to support scaling, failover, and alerting in the way your application needs.
In this session we'll show how with just a few lines of YAML, you can build powerful application blueprints by composing pre-existing components, from polyglot web stacks to big data tools such as Riak. We'll also cover defining new blueprints using custom scripts, configuring machine selection and runtime policies, and managing new locations such as Clocker -- the cloud of docker.
About Alex Henevald
Alex brings twenty years experience designing software solutions in the enterprise, start-up, and academic sectors. Most recently Alex was with Enigmatec Corporation where he led the development of what is now the Monterey® Middleware Platform™. Previous to that, he founded PocketWatch Systems, commercialising results from his doctoral research. Alex holds a PhD (Informatics) and an MSc (Cognitive Science) from the University of Edinburgh and an AB (Mathematics) from Princeton University. Alex was both a USA Today Academic All-Star and a Marshall Scholar.
As more OpenStack clouds move into production, the limits of scale and performance of the cloud need to be known as a pre-requisite to building a predictable operations plan. PLUMgrid ONS is based on a fully distributed architecture that is built for scale. Since forwarding decisions are distributed and made at each individual server, every new server added to the cloud increases the cloud’s forwarding capacity. This unique distributed architecture allows any OpenStack cloud built using the PLUMgrid Open Networking Suite to scale to tens of thousands of workloads across multiple racks. This joint PLUMgrid and Ixia session between will highlight the latest scale and performance numbers for PLUMgrid ONS. In addition, it will cover the various scale targets that were achieved, the testing methodology plus the Ixia IxChariot product used to measure them.
How to Quickly Implement a Secure Cloud for Government and Military | WebinarPLUMgrid
In this webinar see how Awnix meets your needs with its Secure Private Cloud products and services through a live demo and technical deep dive of common use cases.
See Your OpenStack Network Like Never BeforePLUMgrid
PLUMgrid CloudApex is a SDN visualization and monitoring platform that works in conjunction with PLUMgrid ONS to display real-time status of physical and virtual resources in OpenStack clouds.
PLUMgrid CloudApex speeds up network deployment, simplifies everyday operations at scale and minimizes production downtime.
OpenStack and Application Delivery: Joy and Pain of an Intricate RelationshipPLUMgrid
During this webinar F5 Networks and PLUMgrid will discuss and demonstrate how to build rich multi-tenant service offerings with a combination of in-kernel and appliance-based network functions.
Docker Networking in OpenStack: What you need to know nowPLUMgrid
Learn how you bring secure, scalable, available and open software defined networking to Docker containers managed by OpenStack. This session will cover how Docker virtual networks function, how to plumb them into the virtual network fabric and reliably assign information such as IP addresses, virtual interfaces and more. In addition, this session will also cover how to securely wrap Docker containers using security policies and encryption.
Design and Deploy Secure Clouds for Financial Services Use CasesPLUMgrid
During this webinar Red Hat and PLUMgrid discussed how to design and deploy clouds for Financial Services in a secure and compliant way with OpenStack and SDN
Building a full-stack app with Golang and Google Cloud Platform in one weekDr. Felix Raab
The talk will cover how to effectively build a production-ready, full-stack app with Golang and GCP under time constraints. I'll discuss how to approach making quick and sound technical decisions and how to apply modern software engineering practices for end-to-end apps. The presentation shows, in an opinionated and "meme-ful" way, various lessons learned, tools, and key takeaways for cloud environments.
Build & Deploy Scalable Cloud Applications in Record TimeRightScale
RightScale Webinar: August 11, 2009 - Watch this webinar to see a hands-on demonstration of WaveMaker Visual Ajax Studio and Rapid Deployment Framework to illustrate how easy it is to build your app in Wavemaker. We demonstrate the one-button push from Wavemaker to deploying your application on the cloud with the RightScale Cloud Management Platform. From there we show you how easy it is to manage, automate and scale your application running on the cloud.
Slides for an introductory workshop on cloud computing for a web app developer audience at FOWA Miami 09 (http://events.carsonified.com/fowa/2009/miami/workshops#workshop_36)
Leaning into Server to Cloud App MigrationAtlassian
Interest in Atlassian Cloud by Server (and Data Center) customers has been steadily increasing, propelled by new cloud capabilities like SAML authentication, SCIM provisioning, local data centers for performance, encryption at rest, guaranteed uptime, unlimited storage, and the ever-increasing availability of essential Marketplace apps.
To anticipate increasing demand, the time has come to develop a standard app migration framework that makes migrating app data from Server to Cloud feasible, intuitive, reliable, secure, and above all, self-serve.
In this talk, Chris Clarke will provide an overview of our emerging app data migration architecture, how it will integrate into our evolving Cloud Migration Assistants, and what we’d need from Marketplace vendors to make it work. App migration will be a key part of every customer’s migration journey and we will only be successful by working on it together.
Webinar - Order out of Chaos: Avoiding the Migration MigrainePeak Hosting
When your business has outgrown your current managed hosting provider, the logical thing is to search for something better. Change can be difficult and chaotic, but it doesn’t have to be.
This webinar focuses on best practices for making your migration from the cloud as pain free as possible, including a discussion on what you need to know and ask of your migration provider to ensure it goes smoothly. As an example of this, we will outline Peak Hosting’s migration process, as well as discuss one of our customer migrations and why they chose to undertake it.
Immutable pattern in IT infrastructure architecture. Building own OS'es and containers to deliver software.
Examples for delivery pipelines. Pros and cons for containers and configuration managers. Docker, Ansible, Chef, AWS CloudFormation, GCE, Terraform.
Introduction to Microsoft Azure. Covers the change to a cloud development paradigm. Motivations for the change, Pricing structures, and an exercise in IT portfolio evaluation.
From Zero to still Zero: The most beautiful mistakes going into the cloud. OPEN KNOWLEDGE GmbH
"Cloud is the new Normal”, so Andrew R. Jassy (CIO AWS). Was also liegt näher, als genau jetzt den Schritt in die Cloud zu wagen? Passende Blaupausen dazu gibt es mehr als genug. Aber ist dieser Schritt wirklich so einfach, wie uns die verschiedenen Cloud-Anbieter glauben machen wollen? Natürlich nicht. Diese Session zeigt anhand typischer Antipattern, wie der Weg in die Cloud garantiert im Desaster endet und wie man sich dagegen wappnen kann. Ähnlichkeiten zu existierenden Projekten sind rein zufällig – oder auch nicht.
Adrian Cockcroft on his top predictions for the cloud computing industry in 2015 and beyond, as well as how cloud-native applications, continuous-delivery and DevOps techniques, will speed the pace of innovation and disruption.
For more about Adrian be sure to check out his page on Battery Ventures:
https://www.battery.com/our-team/member/adrian-cockcroft/
Follow Adrian on Twitter: @adrianco
Christian's part of the AWS re:Invent 2015 talk shared with Sajee Mathew - ARC304 - Designing for SaaS: Next Generation Software Delivery Models on AWS. Full video of the 60 minute presentation: https://www.youtube.com/watch?v=d16aUztH9hk&list=PLhr1KZpdzukdRxs_pGJm-qSy5LayL6W_Y
Why Cloud-Native Kafka Matters: 4 Reasons to Stop Managing it YourselfDATAVERSITY
With your most talented teams bogged down managing a massive Kafka deployment, it can be challenging to move the dial on projects that drive real value for your business. For example, launching your next major feature, fueling more best-in-breed services like AI/ML on your cloud provider platform, or developing your first use cases for real-time data movement across clouds. By shifting to a fully managed, cloud-native service for Kafka you can unlock your teams to work on the projects that make the best use of your data in motion.
In this webinar you will learn about:
• The increasing value of data in motion to your business
• Challenges and costs of self-managing a large-scale Kafka deployment
• Benefits of managed cloud services for non-core activities like data storage, data warehousing, and messaging
• Optimizing time usage for value-generating activity like new product launches
• Potential cost savings for your business with a cloud-native service for Kafka
Create Agile, Automated and Predictable IT Infrastructure in the CloudRightScale
RightScale Webinar: February 9, 2010 – In this Webinar, RightScale founder Thorsten von Eicken walks you through the differences between RightScale's ServerTemplate technology and machine images. During the live demonstration, see how ServerTemplates allow you to deploy agile, automated and predictable IT infrastructure in the cloud using RightScale. We also present research on how much time our customers have saved by utilizing this technology.
Similar to Building a Scalable Federated Hybrid Cloud (20)
SDN Scale-out Testing at OpenStack Innovation Center (OSIC)PLUMgrid
The OpenStack Innovation Center (OSIC), established by Intel and Rackspace, is created to accelerate adoption of open source cloud operating system while supporting open source principles. OSIC provides ready-to-use data center facilities to the OpenStack community for development and test. This case study presentation highlights a scale-out test performed within a 3 week period using OpenStack Ansible Community based on Liberty with an SDN overlay network connecting 131 nodes running over 1,000 VMs. Tempest and Rally tests were conducted to validate functions including high availability failure scenarios. Join this session to find out more about OSIC and the SDN scale-out test configuration, scenarios, and results.
In-kernel Analytics and Tracing with eBPF for OpenStack CloudsPLUMgrid
As the movement of applications from bare metal to the cloud continues, considerations around analytics and tracing are becoming more prevalent for security, monitoring, and accounting. As an open source project under the Linux Foundation, the IO Visor Project is working with the kernel community on extending BPF (eBPF) and is being used by many companies for security, tracing, and analytics. This talk will describe how an OpenStack micro-segmentation framework using eBPF can be utilized for analytics and tracing to secure application workloads. Use cases around application security, intrusion detection using service insertion, identity will be described. While networking is one piece of the solution, sandboxing applications to avoid attacks is also important. We will also touch upon how eBPF technology and a unified policy framework can secure application workloads in areas beyond networking.
Service Discovery and Registration in a Microservices ArchitecturePLUMgrid
Microservices, Service Discovery and Registration have been heading towards the peak of inflated expectations on the Gartner Hype cycle for over the last year or so, but there has often been a lack of clarity as to what these are, why are they needed or how to implement them well.
Service discovery and registration are key components of most distributed systems and service oriented architectures. In this session we will talk about what, why and how of service registration and discovery in distributed systems in general and OpenStack in particular.
We will talk about some of the technologies that address this challenge like Zookeeper, Etcd, Consul, Mesos-DNS, Minuteman, SkyDNS, SmartStack or Eureka. We will also address how these technologies as well as existing OpenStack projects can be used to solve this problem inside OpenStack environments.
Networking For Nested Containers: Magnum, Kuryr, Neutron IntegrationPLUMgrid
In the OpenStack ecosystem, containers were introduced as first class citizens recently with the project Magnum and the networking for containers has also evolved since then. Project Kuryr makes networking available to containers through Neutron. This all brings together how Neutron networking benefits containers like it does virtual machines. However, to make Neutron, Kuryr and Magnum cover all the use cases for containers, nested containers inside Nova VMs require networking to work as seamlessly as it works for virtual machines or bare metal containers. In this session, we will talk about Magnum, Kuryr, Neutron integration and how the problem of nested container networking has been solved in the OpenStack community, it's architecture, the design, current status and next steps.
Implementing vCPE with OpenStack and Software Defined NetworksPLUMgrid
Service providers and the broader vendor community have made progress in virtualizing key vCPE network functions. Concurrently, there is a strong push to bring these functions to the cloud. This session will discuss how Openstack is enabling this transformation and the role played by technologies like SDN and NFV. It will also discuss the latest advances in the networking stack of the Linux kernel which further enable these network functions to run in a fully distributed architecture. Finally, it will tie all these concepts together proposing a model for implementing virtual CPE services.
Docker Networking in Swarm, Mesos and Kubernetes [Docker Meetup Santa Clara |...PLUMgrid
The Docker container ecosystem is growing very fast and networking has taken an interesting direction with different networking models being introduced and it becomes even more interesting when container orchestration engines like Swarm, Mesos, Kubernetes have to implement networking for Docker containers. At this Meetup, we will talk about the networking capabilities for Docker, networking models like CNM (Container Network Model), how they fit into container orchestration frameworks, what's ready for production and what's in the design/discussion phase expected to be available in near future.
Unified Underlay and Overlay SDNs for OpenStack CloudsPLUMgrid
Slides from the SFBay OpenStack Meetup
TOPIC: Unified Underlay and Overlay SDNs for OpenStack Clouds
ABSTRACT: With unified underlay and overlay SDNs, IT and operators can leverage best of both technologies to build service-rich SDNs for OpenStack clouds. At this meet up, PLUMgrid will discuss an overlay SDN architecture for service rich SDNs with service function chaining for 3rd party VNFs and demonstrate how to build that using Cisco Nexus 9K as the underlay to leverage the power and throughput of the Nexus fabric.
In this session, we’ll review how previous efforts, including Netfilter, Berkley Packet Filter (BPF), Open vSwitch (OVS), and TC, approached the problem of extensibility. We’ll show you an open source solution available within the Red Hat Enterprise Linux kernel, where extending and merging some of the existing concepts leads to an extensible framework that satisfies the networking needs of datacenter and cloud virtualization.
Designed for IT professionals looking to expand their OpenStack Networking knowledge, “Navigating OpenStack Networking” is a comprehensive and fast-paced session which provides an overview of OpenStack Networking, its history, its predecessor (Nova Networks), its components and then dives deep into the architecture, its features and plugin model and its role in building an OpenStack Cloud.
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
Elevating Tactical DDD Patterns Through Object CalisthenicsDorra BARTAGUIZ
After immersing yourself in the blue book and its red counterpart, attending DDD-focused conferences, and applying tactical patterns, you're left with a crucial question: How do I ensure my design is effective? Tactical patterns within Domain-Driven Design (DDD) serve as guiding principles for creating clear and manageable domain models. However, achieving success with these patterns requires additional guidance. Interestingly, we've observed that a set of constraints initially designed for training purposes remarkably aligns with effective pattern implementation, offering a more ‘mechanical’ approach. Let's explore together how Object Calisthenics can elevate the design of your tactical DDD patterns, offering concrete help for those venturing into DDD for the first time!
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
3. How did you get here?, or Why are you trying to get
here?
You don’t like having a social life.
You love complexity.
This is your idea of fun.
Or ….
16. How to do the magic
MULTICLOUD MANAGER ARCHITECTURE
17. Why not use an existing controller?
Scale to millions, maybe billions of endpoints.
Be able to manage hybrid clouds, or even things that
don’t “look” like clouds.
18. How not to screw this up
Be a manager, not a micromanager.
Make the clouds do the heavy lifting.
For example – *don’t* go to MCM to validate Keystone
tokens.
Support multiple backends through a pluggable
architecture. OS “just another backend”.
19. Let’s make a controller!
We’ll spend the next two years making the platform.
Another two making it highly available.
And another two years making it scale.
Today
Six years of working on a controller
So let’s not.
20. Does such a unicorn exist?
Well, yes!
You use them every day.
They scale to millions of users and billions of
transactions.
Yes, we’re talking about web applications.
They load balance, auto scale, can be distributed
geographically and still play nice.
Plus, you can build one in just a few weeks.
21. An experiment
Write the MCM as a web application.
Don’t worry about “platform”.
There’s no need to solve every distributed computing
problem already solved.
Just use a PaaS.
23. Which PaaS
Any PaaS would do, we used google app engine APIs
powered by opensource AppScale.
This lets us deploy MCM inside a customer’s private
cloud of any flavor.
This architecture also lets us offer a hosted service
running “in the cloud” for MCM.
24. Multi Cloud Manager Architecture
PaaS
Webapp2 framework
MCM top half
MCM bottom half
OS
plugin
Physical
Router
plugin
IoT
plugi
n
AWS
plugi
n
Swagger
RESTful
API, json
in/out
Outside
World
Schedule
right
bottom half
DB
acces
ses
using
PaaS
API
25. MCM Platform Features
Supports load based auto scaling.
Distributed database backend (big table, cassandra).
Memcache for fast access of database contents.
Web based interface for viewing and monitoring
database contents.
Channels allow MCM to send real time messages to
clients without polling.
Etc., etc.
27. How to protect your cluster from Godzilla
Make two or more.
Using MCM templates, synchronize your config for
keystone, nova, glance, neutron, etc.
Application data is persisted by their databases doing
remote sync. Why?
Too much work for MCM, and we have a less-is-more
approach.
28. A/A or A/S clouds
VM images, user accounts,
compute, storage and
networking config DB
MCM Top Half
MCM Bottom
Half
App
DB
App
DB
• FM takes care of persisting configs and
images.
• Apps are responsible for syncing run-
time databases.
29. A/A or A/S clouds
VM images, user accounts,
compute, storage and
networking config DB
FM Top Half
FM Bottom Half
App
DB
App
DB
30. A/A or A/S clouds
VM images, user accounts,
compute, storage and
networking config DB
MCM Top Half
MCM Bottom
Half
App
DB
• Keystone data, glance images etc were
already synced by FM.
• App’s database had been setup to do
remote replication.
• No impact on your keystone, swift, etc
architecture or backends.
• The switch from one active zone to another
can be done using a GSLB or LB.
31. How to do authentication and authorization
IDENTITY MANAGEMENT
32. This is very boring
Basically, the authentication and authorization is done
“at the periphery” of the system, and MCM programs the
clouds using admin accounts on trusted/encrypted
channels.
MCM can use an external IdP (like oauth, saml, ldap
etc).
33. Server Creation
MCM
Keystone Nova
PG/
networking
1. Create
server
IdP (local
or
external)
2. get user &
group
Assignment
Authorization
Policy
3. get role, VDs,
tenant, etc.
4. check policy for
(operation, role)
5. Create server
using token
5’. If token has
expired,
reauthenticate
Bottom Half
Neutron
6. Check token 7. Create
port using
svc user
token
8. Create
port using
svc user
token
(keystone or
PG?)