This document discusses Debian cloud images for Amazon EC2. It provides an overview of Debian, AWS EC2, different types of EC2 machine images including EBS-backed and S3-backed AMIs. It describes how Debian generates and distributes its official Debian AMIs across different AWS regions and architectures while managing the image lifecycle and security updates. It also briefly mentions using Cloudfront CDN for Debian archive access from EC2 instances.
Amazon Elastic Block Store (Amazon EBS) provides persistent block level storage volumes for use with Amazon EC2 instances. In this technical session, we conduct a detailed analysis of the differences among the three types of Amazon EBS block storage: General Purpose (SSD), Provisioned IOPS (SSD), and Magnetic. We discuss how to maximize Amazon EBS performance, with a special eye towards low-latency, high-throughput applications like databases. We discuss Amazon EBS encryption and share best practices for Amazon EBS snapshot management. Throughout, we share tips for success.
The Xen Hypervisor was built for the Cloud from the outset: when Xen was designed, we anticipated a world, which today is known as cloud computing. Today, 10 years after the project started, Xen powers the largest clouds in production.
This talk explores success criteria, architecture, trade-offs and challenges for cloudy hypervisors. It is intended for users and developers and starts with a brief introduction to Xen and XCP, their architecture, common challenges for KVM and Xen and securing the cloud. It will introduce concepts such as the virtualization spectrum, the concept of domain disaggregation and the Xen Security Modules as techniques to increase security, robustness and scalability. All important factors for building clouds at scale.
The talk will conclude with exciting developments in the Xen community, such as Xen support for ARM servers, Mirage appliances that can be run on any Xen based cloud, etc. and explore their implications for building open source clouds.
Rackspace has years of experience with running Xen at scale, starting with Xen and migrating to XenServer. We will share why we use Xen/XenServer along with some of the issues that we've experienced. We will touch on our experience with migrating from Xen to XenServer and the challenges there. We will share information about Rackspace Cloud Servers architecture, and touch briefly on OpenStack when doing so. We will explain how we use Xen to quickly deploy new Openstack services with what we call Nova on Nova. And finally, we will discuss what additional features and improvements are needed and why.
The Xen Hypervisor was built for the Cloud from the outset: when Xen was designed, we anticipated a world, which today is known as cloud computing. Today, Xen powers the largest clouds in production.
This talk explores success criteria, architecture, trade-offs and challenges for cloudy hypervisors. It is intended for users and developers and starts with a brief introduction to Xen and XCP, their architecture and on common challenges for KVM and Xen.
I will introduce the concept of domain disaggregation as an approach to increase security, robustness and scalability: all important factors for building clouds at scale and show how advanced security features suchas Xen Security Modules and SELinux can help secure your cloud further.
The talk will conclude with exciting developments in the Xen community, such as Xen for ARM servers, a new virtualization mode for Xen, running applications without OS in a Xen guest and point out their implications for building open source clouds.
Amazon Elastic Block Store (Amazon EBS) provides persistent block level storage volumes for use with Amazon EC2 instances. In this technical session, we conduct a detailed analysis of the differences among the three types of Amazon EBS block storage: General Purpose (SSD), Provisioned IOPS (SSD), and Magnetic. We discuss how to maximize Amazon EBS performance, with a special eye towards low-latency, high-throughput applications like databases. We discuss Amazon EBS encryption and share best practices for Amazon EBS snapshot management. Throughout, we share tips for success.
The Xen Hypervisor was built for the Cloud from the outset: when Xen was designed, we anticipated a world, which today is known as cloud computing. Today, 10 years after the project started, Xen powers the largest clouds in production.
This talk explores success criteria, architecture, trade-offs and challenges for cloudy hypervisors. It is intended for users and developers and starts with a brief introduction to Xen and XCP, their architecture, common challenges for KVM and Xen and securing the cloud. It will introduce concepts such as the virtualization spectrum, the concept of domain disaggregation and the Xen Security Modules as techniques to increase security, robustness and scalability. All important factors for building clouds at scale.
The talk will conclude with exciting developments in the Xen community, such as Xen support for ARM servers, Mirage appliances that can be run on any Xen based cloud, etc. and explore their implications for building open source clouds.
Rackspace has years of experience with running Xen at scale, starting with Xen and migrating to XenServer. We will share why we use Xen/XenServer along with some of the issues that we've experienced. We will touch on our experience with migrating from Xen to XenServer and the challenges there. We will share information about Rackspace Cloud Servers architecture, and touch briefly on OpenStack when doing so. We will explain how we use Xen to quickly deploy new Openstack services with what we call Nova on Nova. And finally, we will discuss what additional features and improvements are needed and why.
The Xen Hypervisor was built for the Cloud from the outset: when Xen was designed, we anticipated a world, which today is known as cloud computing. Today, Xen powers the largest clouds in production.
This talk explores success criteria, architecture, trade-offs and challenges for cloudy hypervisors. It is intended for users and developers and starts with a brief introduction to Xen and XCP, their architecture and on common challenges for KVM and Xen.
I will introduce the concept of domain disaggregation as an approach to increase security, robustness and scalability: all important factors for building clouds at scale and show how advanced security features suchas Xen Security Modules and SELinux can help secure your cloud further.
The talk will conclude with exciting developments in the Xen community, such as Xen for ARM servers, a new virtualization mode for Xen, running applications without OS in a Xen guest and point out their implications for building open source clouds.
Oscon 2012 : From Datacenter to the Cloud - Featuring Xen and XCPThe Linux Foundation
Do you dream of being able to spin up ten or twenty (or a thousand) virtual machines in an instant? Discover and repair resource bottlenecks without moving a finger? Dodge the loss of an entire storage array with no-one noticing? Span across data centers with a fleet of virtual machines? This is no sales pitch; during this tutorial, we’ll demonstrate how to leverage truly FOSS tools to build a powerful, scalable cloud that easily competes with those proprietary solutions!
This deep-dive into Xen, Xen Cloud Platform, and other FOSS cloud tools and concepts is intended both for those ready to wholeheartedly embrace virtualization and for those already seasoned in general virtualization practices. You’ll leave with a collection of pre-made tools that you can use right out of the box or modify to your liking. You’ll also leave with immediately useful knowledge on best practices and common pitfalls, presented by actual FOSS practitioners like you.
We begin this tutorial by discussing Xen, Xen Cloud Platform (XCP), and XCP cloud concepts (pools, hosts, storage, networks, etc.). We then explore in detail the API that makes Xen so useful for building a cloud, explore provisioning of hosts and guests using PXE, and discuss templating and installing guest virtual machines. Critical to understanding potential bottlenecks, identifying tuning opportunities and planning for the future, we will discuss performance monitoring and methodologies. Next, we teach you how to make the most of your new FOSS cloud capabilities and discuss in detail high availability infrastructure for storage and networking, advanced networking capabilities like bonding/VLANs, and the cloud orchestration tools that save you time and money. All of this with a focus on XCP in enterprise environments. Tools discussed include DRBD, Pacemaker, Open vSwitch, Cloudstack, Openstack, and more.
We conclude by shedding light on exciting developments: Xen 4.2 has recently been released, with just over a year of development time and nearly 3,000 changesets. We will discuss many of the new features introduced in 4.2, as well as what changes we have in store for the 4.3 release as well as other exciting developments.
Amazon EC2 provides a broad selection of instance types to deliver high performance for a diverse mix of applications. In this session, we overview the drivers of system performance and discuss in depth how Amazon EC2 instances deliver system performance while also providing elasticity and complete control over your infrastructure. We also detail best practices and share performance tips for getting the most out of your Amazon EC2 instances.
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary sessionThe Linux Foundation
The Xen on ARM effort has had a short, but impressive, history. In late 2011, Citrix seeded a Xen.org community project to port Xen to ARMv7 with virtualization extensions targeting the Cortex A15 as the reference platform. In 2012, the project scope was expanded to include the ARMv8 architecture. Linux 3.7 was the first kernel release to run on Xen on ARM as Dom0 and DomU. Very soon now (Q2 2013), Xen 4.3 will fully support several different ARM platforms, including Samsung Chromebooks, Versatile Express Cortex A15 and Arndale development boards.
In this talk, we will outline how virtualization enabled server consolidation and cloud computing, as well as innovative and secure solutions for both desktops and mobile devices. We will explain why Citrix saw the need for the project, and why it is highly relevant in today’s cloud-centric virtualization landscape. We will discuss the opportunities this has brought to the Xen ecosystem, and then peek into the future possibilities which Xen on ARM will enable. While Xen is best known as technology powering some of the biggest clouds in the industry, but could also be powering virtual machines on devices that fit in your pocket.
The talk will also include a brief overview of the Xen on ARM architecture, including the key design principles employed. The techniques pioneered during the ARM port will allow the Xen community to remove many legacy components from the Xen code base, streamlining both the ARM and x86 implementations. We will share some data on the challenges in porting Xen to new ARM boards. Due to full reliance on Device Tree and to the minimal hardware requirements of the hypervisor, ports to new boards require surprisingly little effort.
Finally, the talk will conclude by outlining the immediate roadmap for Xen on ARM.
Xen, XenServer, and XAPI: What’s the Difference?-XPUS13 Bulpin,PavlicekThe Linux Foundation
Many people have difficulty understanding the difference between the Xen Hypervisor, XenServer, and XAPI. In this session, James Bulpin, Director of Technology for XenServer, and Russell Pavlicek, Evangelist for the Xen Project, will attempt to clarify what each project is, what it does, and how it compares with the others. We will cover some of the basic features and functions, the tasks for which each is suitable, and where the projects overlap. Attendees will come away with a better sense of where these three projects fit in the world of Xen virtualization.
CloudStack, the world's leading open-source cloud infrastructure platform, was recently donated to the Apache Foundation, and is now an incubated Apache project. Ewan Mellor, Director of Engineering in the Citrix Cloud Platforms Group will describe the CloudStack project and explain why Xen is the pre-eminent hypervisor in public clouds today. He will describe the changes coming in CloudStack in the next 12 months, and how they are going to change the way that Xen is consumed in public and private clouds next year.
Leveraging OpenStack Cinder for Peak Application PerformanceNetApp
Deploying performance sensitive, database-driven applications in OpenStack can be tenuous if you are unsure how to utilize the Cinder API to get the most out of your OpenStack block storage.
This presentation:
Introduces Cinder, the OpenStack block storage service
Talks about the unique attributes of performance-sensitive applications and what this means in OpenStack
Walks you through how to use Cinder volume types and extra specs to guarantee performance to your various cloud workloads
Discusses OpenStack Trove and what it means for running database as a service in your OpenStack cloud
In a traditional Xen configuration domain 0 is used for a large number of different functions including running the toolstack(s), backends for network and disk I/O, running the QEMU device model instances, driving the physical devices in the system, handling guest console/framebuffer I/O and miscellaneous monitoring and management functions. Having all these functions in one domain produces a complex environment which is susceptible to shared fate on the failure of any one function, has complex interactions between functions (including resource contention) which makes it difficult to predict performance, and has limited flexibility (such as requiring the same kernel for all device drivers).
""Domain 0 disaggregation"" has been discussed for some time as a way to break out domain 0's functions into separate domains. Doing this enables each domain to be tailored to its function such as using a different kernel or operating system to drive different physical devices. Splitting functions into separate domains removes some of the unintentional interactions such as in-domain resource contention and reduces the system impact of the failure of a single function such as a device driver crash.
Although domain 0 disaggregation is not new it is seldom used in practise and much of its use is focussed on providing enhanced security. Citrix XenServer will be moving towards a disaggregated domain 0 in order to provide better security, scalability, performance, reliability, supportability and flexibility. This talk will describe XenServer's “Windsor” architecture and explain how it will provide the above benefits to customers and users. We will present an overview of the architecture and some early experimental measurements showing the benefits.
AWS Summit 2014 Melbourne - Breakout 4
Veeam Backup and Replication tops the list when it comes to data protection built for virtualisation. But did you know that Veeams award-winning on-premise backup solution can be extended to Amazon Web Services for off-site archiving? Combining Veeam with cost effective, extensible storage like S3 and Glacier means cloud backups are a real option. Topics to be discussed in this session will include: Recovering on-premise virtual machines from AWS storage Built-in WAN acceleration across internet links Item-level recovery for files, SharePoint and Exchange Full virtual hard disk recovery to EC2 Getting the best from AWS Storage Gateway Using Amazon VM Import/Export tools …and more. Your guide for this session is Ben Adamson, Enterprise Systems Engineer with Veeam Software. He brings a wealth of virtualisation and data protection experience and is perfectly placed to show you how to get backup and recovery in AWS your way!
Presenter: Ben Adamson, Enterprise System Engineer, Veeam ANZ
The Xen 4.3 release we will experiment with a roadmap: an informal set of features and changes that we as a community will be aiming at for the 4.3 release. The roadmap is flexible, but will be used as a guide to coordinate our efforts, as well as a benchmark to let us know when 4.3 will be ready to release.
This tutorial is an introduction to Debian packaging. It teaches prospective developers how to modify existing packages, how to create their own packages, and how to interact with the Debian community. In addition to the main tutorial, it includes three practical sessions on modifying the 'grep' package, and packaging the 'gnujump' game and a Java library.
Oscon 2012 : From Datacenter to the Cloud - Featuring Xen and XCPThe Linux Foundation
Do you dream of being able to spin up ten or twenty (or a thousand) virtual machines in an instant? Discover and repair resource bottlenecks without moving a finger? Dodge the loss of an entire storage array with no-one noticing? Span across data centers with a fleet of virtual machines? This is no sales pitch; during this tutorial, we’ll demonstrate how to leverage truly FOSS tools to build a powerful, scalable cloud that easily competes with those proprietary solutions!
This deep-dive into Xen, Xen Cloud Platform, and other FOSS cloud tools and concepts is intended both for those ready to wholeheartedly embrace virtualization and for those already seasoned in general virtualization practices. You’ll leave with a collection of pre-made tools that you can use right out of the box or modify to your liking. You’ll also leave with immediately useful knowledge on best practices and common pitfalls, presented by actual FOSS practitioners like you.
We begin this tutorial by discussing Xen, Xen Cloud Platform (XCP), and XCP cloud concepts (pools, hosts, storage, networks, etc.). We then explore in detail the API that makes Xen so useful for building a cloud, explore provisioning of hosts and guests using PXE, and discuss templating and installing guest virtual machines. Critical to understanding potential bottlenecks, identifying tuning opportunities and planning for the future, we will discuss performance monitoring and methodologies. Next, we teach you how to make the most of your new FOSS cloud capabilities and discuss in detail high availability infrastructure for storage and networking, advanced networking capabilities like bonding/VLANs, and the cloud orchestration tools that save you time and money. All of this with a focus on XCP in enterprise environments. Tools discussed include DRBD, Pacemaker, Open vSwitch, Cloudstack, Openstack, and more.
We conclude by shedding light on exciting developments: Xen 4.2 has recently been released, with just over a year of development time and nearly 3,000 changesets. We will discuss many of the new features introduced in 4.2, as well as what changes we have in store for the 4.3 release as well as other exciting developments.
Amazon EC2 provides a broad selection of instance types to deliver high performance for a diverse mix of applications. In this session, we overview the drivers of system performance and discuss in depth how Amazon EC2 instances deliver system performance while also providing elasticity and complete control over your infrastructure. We also detail best practices and share performance tips for getting the most out of your Amazon EC2 instances.
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary sessionThe Linux Foundation
The Xen on ARM effort has had a short, but impressive, history. In late 2011, Citrix seeded a Xen.org community project to port Xen to ARMv7 with virtualization extensions targeting the Cortex A15 as the reference platform. In 2012, the project scope was expanded to include the ARMv8 architecture. Linux 3.7 was the first kernel release to run on Xen on ARM as Dom0 and DomU. Very soon now (Q2 2013), Xen 4.3 will fully support several different ARM platforms, including Samsung Chromebooks, Versatile Express Cortex A15 and Arndale development boards.
In this talk, we will outline how virtualization enabled server consolidation and cloud computing, as well as innovative and secure solutions for both desktops and mobile devices. We will explain why Citrix saw the need for the project, and why it is highly relevant in today’s cloud-centric virtualization landscape. We will discuss the opportunities this has brought to the Xen ecosystem, and then peek into the future possibilities which Xen on ARM will enable. While Xen is best known as technology powering some of the biggest clouds in the industry, but could also be powering virtual machines on devices that fit in your pocket.
The talk will also include a brief overview of the Xen on ARM architecture, including the key design principles employed. The techniques pioneered during the ARM port will allow the Xen community to remove many legacy components from the Xen code base, streamlining both the ARM and x86 implementations. We will share some data on the challenges in porting Xen to new ARM boards. Due to full reliance on Device Tree and to the minimal hardware requirements of the hypervisor, ports to new boards require surprisingly little effort.
Finally, the talk will conclude by outlining the immediate roadmap for Xen on ARM.
Xen, XenServer, and XAPI: What’s the Difference?-XPUS13 Bulpin,PavlicekThe Linux Foundation
Many people have difficulty understanding the difference between the Xen Hypervisor, XenServer, and XAPI. In this session, James Bulpin, Director of Technology for XenServer, and Russell Pavlicek, Evangelist for the Xen Project, will attempt to clarify what each project is, what it does, and how it compares with the others. We will cover some of the basic features and functions, the tasks for which each is suitable, and where the projects overlap. Attendees will come away with a better sense of where these three projects fit in the world of Xen virtualization.
CloudStack, the world's leading open-source cloud infrastructure platform, was recently donated to the Apache Foundation, and is now an incubated Apache project. Ewan Mellor, Director of Engineering in the Citrix Cloud Platforms Group will describe the CloudStack project and explain why Xen is the pre-eminent hypervisor in public clouds today. He will describe the changes coming in CloudStack in the next 12 months, and how they are going to change the way that Xen is consumed in public and private clouds next year.
Leveraging OpenStack Cinder for Peak Application PerformanceNetApp
Deploying performance sensitive, database-driven applications in OpenStack can be tenuous if you are unsure how to utilize the Cinder API to get the most out of your OpenStack block storage.
This presentation:
Introduces Cinder, the OpenStack block storage service
Talks about the unique attributes of performance-sensitive applications and what this means in OpenStack
Walks you through how to use Cinder volume types and extra specs to guarantee performance to your various cloud workloads
Discusses OpenStack Trove and what it means for running database as a service in your OpenStack cloud
In a traditional Xen configuration domain 0 is used for a large number of different functions including running the toolstack(s), backends for network and disk I/O, running the QEMU device model instances, driving the physical devices in the system, handling guest console/framebuffer I/O and miscellaneous monitoring and management functions. Having all these functions in one domain produces a complex environment which is susceptible to shared fate on the failure of any one function, has complex interactions between functions (including resource contention) which makes it difficult to predict performance, and has limited flexibility (such as requiring the same kernel for all device drivers).
""Domain 0 disaggregation"" has been discussed for some time as a way to break out domain 0's functions into separate domains. Doing this enables each domain to be tailored to its function such as using a different kernel or operating system to drive different physical devices. Splitting functions into separate domains removes some of the unintentional interactions such as in-domain resource contention and reduces the system impact of the failure of a single function such as a device driver crash.
Although domain 0 disaggregation is not new it is seldom used in practise and much of its use is focussed on providing enhanced security. Citrix XenServer will be moving towards a disaggregated domain 0 in order to provide better security, scalability, performance, reliability, supportability and flexibility. This talk will describe XenServer's “Windsor” architecture and explain how it will provide the above benefits to customers and users. We will present an overview of the architecture and some early experimental measurements showing the benefits.
AWS Summit 2014 Melbourne - Breakout 4
Veeam Backup and Replication tops the list when it comes to data protection built for virtualisation. But did you know that Veeams award-winning on-premise backup solution can be extended to Amazon Web Services for off-site archiving? Combining Veeam with cost effective, extensible storage like S3 and Glacier means cloud backups are a real option. Topics to be discussed in this session will include: Recovering on-premise virtual machines from AWS storage Built-in WAN acceleration across internet links Item-level recovery for files, SharePoint and Exchange Full virtual hard disk recovery to EC2 Getting the best from AWS Storage Gateway Using Amazon VM Import/Export tools …and more. Your guide for this session is Ben Adamson, Enterprise Systems Engineer with Veeam Software. He brings a wealth of virtualisation and data protection experience and is perfectly placed to show you how to get backup and recovery in AWS your way!
Presenter: Ben Adamson, Enterprise System Engineer, Veeam ANZ
The Xen 4.3 release we will experiment with a roadmap: an informal set of features and changes that we as a community will be aiming at for the 4.3 release. The roadmap is flexible, but will be used as a guide to coordinate our efforts, as well as a benchmark to let us know when 4.3 will be ready to release.
This tutorial is an introduction to Debian packaging. It teaches prospective developers how to modify existing packages, how to create their own packages, and how to interact with the Debian community. In addition to the main tutorial, it includes three practical sessions on modifying the 'grep' package, and packaging the 'gnujump' game and a Java library.
Connect your Javascript web app to ownCloud over the WebDAV interface Ilian Sapundshiev
Here you will learn how to connect a pure JS app like TagSpaces to ownCloud over its WebDAV interface. These slides were presented on the #owncloudconf 2014 in Berlin.
Supporting Debian machines for friends and familyFrancois Marier
Many Debian developers find themselves providing some form of technical support to friends and family. Achieving the mystical five nines is well beyond the means of an amateur sysadmin like myself, but giving my dad reliable boxes to use can be achieved without eating all of my free time.
This talk will draw on my experience supporting and maintaining my dad's Debian-based computers. I will briefly describe the hardware setup, introduce some useful packages and share some configuration hints. Areas of focus will include system updates, reliability, monitoring and security.
http://nz2015.mini.debconf.org/Programme/Francois/
A demo by Matthew Addis of Arkivum on using Archivematica with ownCloud on a Mac. Session held at Cardiff University for the Research Data Network event in May 2016.
Amazon Elastic Block Store (Amazon EBS) provides persistent block level storage volumes for use with Amazon EC2 instances. In this technical session, we conduct a detailed analysis of the differences among the three types of Amazon EBS block storage: General Purpose (SSD), Provisioned IOPS (SSD), and Magnetic. We discuss how to maximize Amazon EBS performance, with a special eye towards low-latency, high-throughput applications like databases. We discuss the performance implications of our new larger and faster SSD volumes (up to 16 TB with increased max throughput levels), as well as Amazon EBS encryption. Throughout, we share tips for success.
Amazon Elastic Block Store (Amazon EBS) provides persistent block level storage volumes for use with Amazon EC2 instances. In this technical session, we conduct a detailed analysis of the differences among the three types of Amazon EBS block storage: General Purpose (SSD), Provisioned IOPS (SSD), and Magnetic. We discuss how to maximize Amazon EBS performance, with a special eye towards low-latency, high-throughput applications like databases. We discuss Amazon EBS encryption and share best practices for Amazon EBS snapshot management. Throughout, we share tips for success.
Design, Deploy, and Optimize SQL Server on AWS - AWS Online Tech TalksAmazon Web Services
Enterprises are quickly moving database workloads like SQL Server to the cloud, but with so many options, the best approach isn’t always obvious. You exercise full control of your SQL Server workloads by running them on Amazon EC2 instances, or leverage Amazon RDS for a fully managed database experience. This session will go deep on best practices and considerations for running SQL Server on AWS. We will cover best practices for deploying SQL Server, how to choose between Amazon EC2 and Amazon RDS, ways to optimize the performance of your SQL Server deployment for different applications types. We review in detail how to provision and monitor your SQL Server databases, and how to manage scalability, performance, availability, security, and backup and recovery, in both Amazon RDS and Amazon EC2.
Understanding Elastic Block Store Availability and PerformanceAmazon Web Services
Depending on your application needs, Elastic Block Store’s volumes can be configured for optimal performance and higher availability. In this session, we will present the different design characteristics of EBS Standard and Provisioned IOPS volumes, provide technical insights on how to think about EBS performance and availability, and share best practices to achieve higher availability and performance.
Design, Deploy, and Optimize SQL Server on AWS - June 2017 AWS Online Tech TalksAmazon Web Services
Learning Objectives:
- Learn how to build applications on AWS from a strong foundation on SQL Server
- Learn when to deploy SQL Server on Amazon EC2 versus Amazon RDS
- Learn how to take advantage of the latest features in SQL Server 2016 when running on AWS
Enterprises are quickly moving database workloads like SQL Server to the cloud, but with so many options, the best approach isn’t always obvious. You exercise full control of your SQL Server workloads by running them on Amazon EC2 instances, or leverage Amazon RDS for a fully managed database experience. This session will go deep on best practices and considerations for running SQL Server on AWS. We will cover best practices for deploying SQL Server, how to choose between Amazon EC2 and Amazon RDS, ways to optimize the performance of your SQL Server deployment for different applications types. We review in detail how to provision and monitor your SQL Server databases, and how to manage scalability, performance, availability, security, and backup and recovery, in both Amazon RDS and Amazon EC2.
Backing up Amazon EC2 with Amazon EBS Snapshots - June 2017 AWS Online Tech T...Amazon Web Services
Learning Objectives:
- Learn how to use snapshots effectively to backup EC2 Instances - Learn how to tag snapshots and leverage tagging for tracking costs
- Learn how to automate snapshot management
We’ve made it easy to make a simple point in time backup for your Amazon EC2 Instances. In this tech talk, you will learn about how to use Amazon EBS snapshots to back up your Amazon EC2 environment. We will review the basics of how snapshots work as well as how to tag snapshots, track costs, and automate snapshots leveraging AWS Lambda. We will describe best practices and share tips for success throughout.
AWS Webcast - Webinar Series for State and Local Government #2: Discover the ...Amazon Web Services
This webinar will cover the basics of getting started with AWS. After a brief overview this session will dive into live demonstration of core AWS services of how to set up and utilize compute (EC2), storage (S3), and other services. The focus will be on how you get started with AWS, including creating user accounts, set up multiple EC2 virtual machine instances, set up an email alert for changes in EC2 based on usage, upload data to S3 services and make it available via the internet.
AWS Webcast - AWS Webinar Series for Education #2 - Getting Started with AWSAmazon Web Services
This webinar will cover the basics of getting started with AWS. After a brief overview, this session will dive into core AWS services with live demonstrations of how to set up and utilize compute, storage, and other services. The focus will be on the ease of use and the ability to clone environments that largest customers are running to highlight AWS’ versatility and ease of use as a cloud platform.
Let’s get started. Join this session to continue your journey through the core AWS services with live demonstrations of how to set up and use the services.
Case study of amazon EC2 by Akash BadoneAkash Badone
Introduction to Amazon EC2, Historical Trends, Elastic Map Reduce (EMR), Dynamo DB, RDS, S3, EBS, Iaas, Getting started with EC2 from scratch. Creating key pairs, Launching an instance and types of the instance.AWS services, virtualization and XEN hypervisor with cost (according to on-demand services).
Deep Dive: Maximizing Amazon EC2 and Amazon Elastic Block Store PerformanceAmazon Web Services
Amazon Elastic Block Store (Amazon EBS) provides persistent block-level storage volumes for use with Amazon EC2 instances. In this technical session, we conduct a detailed analysis of the differences among the three types of Amazon EBS block storage: General Purpose (SSD), Provisioned IOPS (SSD), and Magnetic. We discuss how to maximize Amazon EBS performance, with a special eye towards low-latency, high-throughput applications like databases. We discuss the performance implications of our new larger and faster SSD volumes (up to 16 TB with increased maximum throughput levels), as well as Amazon EBS encryption. Throughout, we share tips for success.
Similar to Debian Cloud - building the Debian AMIs (20)
20 years of web cryptography, and its amazing how frequently its configured sub-optimally. We've had numerous encryption algorithms, digests, protocols come, and should have GONE, but everyone has just left them on. Its time to shut out the legacy browser. The vast majority of the worlds browser install base now auto-updates, and with strict (and prescriptive) compliance in force, we get to drop the bloat form the past. In this talk we'll cover the current TRANSITIONS we're going through from a web admins perspective: TLS, Cipher Suites, HTTP Security Headers, CAs, the move to an encrypted-by-default web, and more.
Understanding Globus Data Transfers with NetSageGlobus
NetSage is an open privacy-aware network measurement, analysis, and visualization service designed to help end-users visualize and reason about large data transfers. NetSage traditionally has used a combination of passive measurements, including SNMP and flow data, as well as active measurements, mainly perfSONAR, to provide longitudinal network performance data visualization. It has been deployed by dozens of networks world wide, and is supported domestically by the Engagement and Performance Operations Center (EPOC), NSF #2328479. We have recently expanded the NetSage data sources to include logs for Globus data transfers, following the same privacy-preserving approach as for Flow data. Using the logs for the Texas Advanced Computing Center (TACC) as an example, this talk will walk through several different example use cases that NetSage can answer, including: Who is using Globus to share data with my institution, and what kind of performance are they able to achieve? How many transfers has Globus supported for us? Which sites are we sharing the most data with, and how is that changing over time? How is my site using Globus to move data internally, and what kind of performance do we see for those transfers? What percentage of data transfers at my institution used Globus, and how did the overall data transfer performance compare to the Globus users?
A Comprehensive Look at Generative AI in Retail App Testing.pdfkalichargn70th171
Traditional software testing methods are being challenged in retail, where customer expectations and technological advancements continually shape the landscape. Enter generative AI—a transformative subset of artificial intelligence technologies poised to revolutionize software testing.
Navigating the Metaverse: A Journey into Virtual Evolution"Donna Lenk
Join us for an exploration of the Metaverse's evolution, where innovation meets imagination. Discover new dimensions of virtual events, engage with thought-provoking discussions, and witness the transformative power of digital realms."
Software Engineering, Software Consulting, Tech Lead.
Spring Boot, Spring Cloud, Spring Core, Spring JDBC, Spring Security,
Spring Transaction, Spring MVC,
Log4j, REST/SOAP WEB-SERVICES.
Paketo Buildpacks : la meilleure façon de construire des images OCI? DevopsDa...Anthony Dahanne
Les Buildpacks existent depuis plus de 10 ans ! D’abord, ils étaient utilisés pour détecter et construire une application avant de la déployer sur certains PaaS. Ensuite, nous avons pu créer des images Docker (OCI) avec leur dernière génération, les Cloud Native Buildpacks (CNCF en incubation). Sont-ils une bonne alternative au Dockerfile ? Que sont les buildpacks Paketo ? Quelles communautés les soutiennent et comment ?
Venez le découvrir lors de cette session ignite
May Marketo Masterclass, London MUG May 22 2024.pdfAdele Miller
Can't make Adobe Summit in Vegas? No sweat because the EMEA Marketo Engage Champions are coming to London to share their Summit sessions, insights and more!
This is a MUG with a twist you don't want to miss.
Into the Box Keynote Day 2: Unveiling amazing updates and announcements for modern CFML developers! Get ready for exciting releases and updates on Ortus tools and products. Stay tuned for cutting-edge innovations designed to boost your productivity.
Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...Globus
Large Language Models (LLMs) are currently the center of attention in the tech world, particularly for their potential to advance research. In this presentation, we'll explore a straightforward and effective method for quickly initiating inference runs on supercomputers using the vLLM tool with Globus Compute, specifically on the Polaris system at ALCF. We'll begin by briefly discussing the popularity and applications of LLMs in various fields. Following this, we will introduce the vLLM tool, and explain how it integrates with Globus Compute to efficiently manage LLM operations on Polaris. Attendees will learn the practical aspects of setting up and remotely triggering LLMs from local machines, focusing on ease of use and efficiency. This talk is ideal for researchers and practitioners looking to leverage the power of LLMs in their work, offering a clear guide to harnessing supercomputing resources for quick and effective LLM inference.
Prosigns: Transforming Business with Tailored Technology SolutionsProsigns
Unlocking Business Potential: Tailored Technology Solutions by Prosigns
Discover how Prosigns, a leading technology solutions provider, partners with businesses to drive innovation and success. Our presentation showcases our comprehensive range of services, including custom software development, web and mobile app development, AI & ML solutions, blockchain integration, DevOps services, and Microsoft Dynamics 365 support.
Custom Software Development: Prosigns specializes in creating bespoke software solutions that cater to your unique business needs. Our team of experts works closely with you to understand your requirements and deliver tailor-made software that enhances efficiency and drives growth.
Web and Mobile App Development: From responsive websites to intuitive mobile applications, Prosigns develops cutting-edge solutions that engage users and deliver seamless experiences across devices.
AI & ML Solutions: Harnessing the power of Artificial Intelligence and Machine Learning, Prosigns provides smart solutions that automate processes, provide valuable insights, and drive informed decision-making.
Blockchain Integration: Prosigns offers comprehensive blockchain solutions, including development, integration, and consulting services, enabling businesses to leverage blockchain technology for enhanced security, transparency, and efficiency.
DevOps Services: Prosigns' DevOps services streamline development and operations processes, ensuring faster and more reliable software delivery through automation and continuous integration.
Microsoft Dynamics 365 Support: Prosigns provides comprehensive support and maintenance services for Microsoft Dynamics 365, ensuring your system is always up-to-date, secure, and running smoothly.
Learn how our collaborative approach and dedication to excellence help businesses achieve their goals and stay ahead in today's digital landscape. From concept to deployment, Prosigns is your trusted partner for transforming ideas into reality and unlocking the full potential of your business.
Join us on a journey of innovation and growth. Let's partner for success with Prosigns.
First Steps with Globus Compute Multi-User EndpointsGlobus
In this presentation we will share our experiences around getting started with the Globus Compute multi-user endpoint. Working with the Pharmacology group at the University of Auckland, we have previously written an application using Globus Compute that can offload computationally expensive steps in the researcher's workflows, which they wish to manage from their familiar Windows environments, onto the NeSI (New Zealand eScience Infrastructure) cluster. Some of the challenges we have encountered were that each researcher had to set up and manage their own single-user globus compute endpoint and that the workloads had varying resource requirements (CPUs, memory and wall time) between different runs. We hope that the multi-user endpoint will help to address these challenges and share an update on our progress here.
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...Juraj Vysvader
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I didn't get rich from it but it did have 63K downloads (powered possible tens of thousands of websites).
Unleash Unlimited Potential with One-Time Purchase
BoxLang is more than just a language; it's a community. By choosing a Visionary License, you're not just investing in your success, you're actively contributing to the ongoing development and support of BoxLang.
Globus Connect Server Deep Dive - GlobusWorld 2024Globus
We explore the Globus Connect Server (GCS) architecture and experiment with advanced configuration options and use cases. This content is targeted at system administrators who are familiar with GCS and currently operate—or are planning to operate—broader deployments at their institution.
Gamify Your Mind; The Secret Sauce to Delivering Success, Continuously Improv...Shahin Sheidaei
Games are powerful teaching tools, fostering hands-on engagement and fun. But they require careful consideration to succeed. Join me to explore factors in running and selecting games, ensuring they serve as effective teaching tools. Learn to maintain focus on learning objectives while playing, and how to measure the ROI of gaming in education. Discover strategies for pitching gaming to leadership. This session offers insights, tips, and examples for coaches, team leads, and enterprise leaders seeking to teach from simple to complex concepts.
SOCRadar Research Team: Latest Activities of IntelBrokerSOCRadar
The European Union Agency for Law Enforcement Cooperation (Europol) has suffered an alleged data breach after a notorious threat actor claimed to have exfiltrated data from its systems. Infamous data leaker IntelBroker posted on the even more infamous BreachForums hacking forum, saying that Europol suffered a data breach this month.
The alleged breach affected Europol agencies CCSE, EC3, Europol Platform for Experts, Law Enforcement Forum, and SIRIUS. Infiltration of these entities can disrupt ongoing investigations and compromise sensitive intelligence shared among international law enforcement agencies.
However, this is neither the first nor the last activity of IntekBroker. We have compiled for you what happened in the last few days. To track such hacker activities on dark web sources like hacker forums, private Telegram channels, and other hidden platforms where cyber threats often originate, you can check SOCRadar’s Dark Web News.
Stay Informed on Threat Actors’ Activity on the Dark Web with SOCRadar!
How to Position Your Globus Data Portal for Success Ten Good PracticesGlobus
Science gateways allow science and engineering communities to access shared data, software, computing services, and instruments. Science gateways have gained a lot of traction in the last twenty years, as evidenced by projects such as the Science Gateways Community Institute (SGCI) and the Center of Excellence on Science Gateways (SGX3) in the US, The Australian Research Data Commons (ARDC) and its platforms in Australia, and the projects around Virtual Research Environments in Europe. A few mature frameworks have evolved with their different strengths and foci and have been taken up by a larger community such as the Globus Data Portal, Hubzero, Tapis, and Galaxy. However, even when gateways are built on successful frameworks, they continue to face the challenges of ongoing maintenance costs and how to meet the ever-expanding needs of the community they serve with enhanced features. It is not uncommon that gateways with compelling use cases are nonetheless unable to get past the prototype phase and become a full production service, or if they do, they don't survive more than a couple of years. While there is no guaranteed pathway to success, it seems likely that for any gateway there is a need for a strong community and/or solid funding streams to create and sustain its success. With over twenty years of examples to draw from, this presentation goes into detail for ten factors common to successful and enduring gateways that effectively serve as best practices for any new or developing gateway.
2. Agenda
• What is Debian
• What is AWS EC2
• A meander through block storage for EC2
instances
• Types of images
• Generating & distributing Debian’s AMIs
• Debuab Image lifecycle and security
• If there is time: Debian via Cloudfront CDN
8. What is AWS and EC2
• AWS = Amazon Web Services
• EC2 = Elastic Compute Cloud
– Virtual servers running Linux, Windows, BSD
• Started 2006
• Now with 11 Regions and 52 Edge Locations
• Compute, storage, platform, infrastructure – as-a-service
– typically billed by the hour or by the month
Amazon EC2
10. What is EC2
• Amount of CPU & Memory is combined into
“instance type”:
– Small
– Medium
– Large
– ...
instance
instance
instance
11. What is EC2
• Several instance types are grouped into an
“instance family”:
– General Purpose (balanced memory:cpu)
– Memory Optimised (more memory:cpu)
– CPU Optimised (more cpu:memory)
– Storage Optimised (more ‘ephemerial’ storage)
– GPU (CUDA, OpenCL)
– Cluster Nodes (10 GB/sec networking and more)
12. What is EC2
• EC2 instance run on real servers!
instance instance instance instance
Total number of
(hyperthread)
CPU cores, each
dedicated* to an
instance
Disk inside the
physical server is
deemed
‘ephemeral’. Not
raid, but is local to
CPU and Memory.
Different amounts
of storage
depending on
instance type
RAM is dedicated
to each instance
Each instance can
send a certain
number of packets
per second
17. Persistent (EBS) Storage
Amazon EBS
Mechanical disk
General Purpose SSD (GP2)
Provisioned IOPS (SSD)
Amazon S3
18. Persistent (EBS) Storage
Amazon EBS
Mechanical disk
General Purpose SSD (GP2)
Provisioned IOPS (SSD)
Amazon S3
AFR of a typical standard HDD
Designed for 99.999% availability
(5.26 min/yr)
Single instance attach only
(currently)
1GB..1TB (currently)
Your choice of file-system
Optional transparent encryption
by AWS
Network attached to your
instance back in the EC2
environment
99.999999999% durability
Replicated multiple times
within the same Region
Check-summed and re-check-
summed periodically
Designed for 99.99%
availability (SLA at 99.9%)
Can be shared with other
customers (specific, or all)
unless AWS-encrypted
Can be used to create a
new EBS volume
EBS snapshots cannot be
seen in your S3 buckets
19. Persistent (EBS) Storage
Amazon EBS
Mechanical disk
General Purpose SSD (GP2)
Provisioned IOPS (SSD)
Amazon S3
AFR of a typical standard HDD
Designed for 99.999% availability
(5.26 min/yr)
Single instance attach only
(currently)
1GB..1TB (currently)
Your choice of file-system
Optional transparent encryption
by AWS
Network attached to your
instance back in the EC2
environment
99.999999999% durability
Replicated multiple times
within the same Region
Check-summed and re-check-
summed periodically
Designed for 99.99%
availability (SLA at 99.9%)
Can be shared with other
customers (specific, or all)
unless AWS-encrypted
Can be used to create a
new EBS volume
EBS snapshots cannot be
seen in your S3 buckets
24. Amazon Machine Images
• AMI is “golden master”
• Start as many instances as you like*
AMI
instance
instance
instance
instance instance instance
25. Ephemeral and EBS
• Why is the Ephemeral and EBS storage options
important in AMIs?
Your root volume
/ -> persistent (EBS)
/ -> transitory (Ephemeral)
26. Ephemeral and EBS
• Why is the Ephemeral and EBS storage options
important in AMIs?
Your root volume
1,000 systems for 24 hours,
8 GB EBS each in SYD: ~$30.85
27. Ephemeral and EBS
• Why is the Ephemeral and EBS storage options
important in AMIs?
Your root volume
1,000 systems for 24 hours,
Ephemeral in SYD: $0
28. Ephemeral and EBS
• Why is the Ephemeral and EBS storage options
important in AMIs?
Amazon S3 S3 backed AMI
snapshot
EBS backed AMI
29. CPU Architectures
• EC2 currently supports 2 architectures:
EBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMI
30. Virtualisation Types
• EC2 uses (highly customised) Xen, and
supports two virtualisation types:
Para-
Virtualization
(threads)
Hardware
Virtualization
(emulation)
EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI
31. Each Region is independent
Para-
Virtualization
(threads)
Hardware
Virtualization
(emulation)
EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI
EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI
EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI
AP... US West 1 US East 1
33. • 2 architectures
• 2 virtualisation types
• 2 root volume types
• 11 Regions
• 3 Debian releases
= 198 images
(Plus images currently being end-of-lifed,
experimented with, and used for other purposes)
34. Current Debian AMIs: Squeeze (6)
Architecture EBS Backed S3 Backed
32 bit PVM Yes
64 bit PVM Yes
32 bit HVM
64 bit HVM
35. Current Debian AMIs: Wheezy (7)
Architecture EBS Backed S3 Backed
32 bit PVM Yes
64 bit PVM Yes Yes
32 bit HVM
64 bit HVM Yes (experimental)
36. Future Debian AMIs: Jessie (8)
Architecture EBS Backed S3 Backed
32 bit PVM
64 bit PVM Yes
32 bit HVM
64 bit HVM Yes Yes*
37. Two ways of creating AMIs
Start from scratch
• Uses a fresh, blank volume,
install as a debootstrap
Update existing
• Start existing instance,
customise, create new
image
38. EBS Backed AMI overview
instance
volume
/
volume
/target
snapshot
EC2 API
Endpoint
AMI
39. Let’s create a Jessie image
• Fire up an existing instance (easiest is to use
an existing Debian AMI)
• Install git, debootstrap, python-boto, python-jsonschema,
and some other python bits
– Configure your AWS IAM credentials for boto
• Grab bootstrap-vz from Github
43. Debian AWS Accounts
Region AWS Account ID
Beijing 673060587306*
Gov Cloud 256493402735**
Standard Regions 379101102735
44.
45. Community Shared AMIs
• Un-vetted by AWS
– Trojan horses
– Left over SSH keys in other accounts
– Cron jobs that go bump in the night
• Anyone can share any AMI under their control
(provided they have access within their AWS account to do so – IAM Policy)
– Caveat emptor
46.
47.
48. Pushing images to Marketplace
Vendor
AWS
Account ID
Vendor
Display
Name
Product ID Version ID ASIN SKU Software
by
Title Version
Title
Release
Notes
Short
Description
Description Highlight1
51. AMI Lifecycle
Our aim is to keep the final point release AMI
available for each Debian major release,
starting from Squeeze:
• 6.0.10
• 7.7
52. AMI Lifecycle
Wheezy 7.4
Wheezy 7.5
Try to keep a 2 – 5
week overlap for point
releases, then un-share
Wheezy 7.6
for a period,
Wheezy
7.6.aws.
1
Wheezy
7.6.aws.2
Wheezy 7.7
then delete
Time
Occasionally security
releases that are urgent
in BASE images (AMIs)
force additional version
numbers out of step with
Debian. This was
shellshock,
53. Security in base images
• EC2 instances may be deployed such that they
don’t have direct access to fetch updates
• Administrators may chose not to install
updates unattended
55. Workflow overview
1. Generate AMIs in US East 1
2. Tag AMIs and Snapshot
3. Test image in US East 1
4. Copy to all Standard Regions (python script)
5. Mark AMI and Snapshot as Public (python script)
6. Generate in Beijing and Gov Cloud, tag, mark public
7. Generate signed message to the Debian-cloud mailing list, update wiki
8. Wait a few days (for bugs to surface), then push to AWS Marketplace
9. Announce deprecation of previous versions (typically 3 – 5 weeks notice)
in signed email to Debian-cloud ML
10. After elapsed period, remove public sharing from AMI and Snapshots
(python script)
11. A day or so later, deregister the AMI and delete the snapshot (python
script)
56. What’s new in Jessie EC2 images
• Single Root IO Virtualisation (Enhanced
Networking)
• Multiple Network Interfaces (ENI)
• Multiple sub-interfaces
• AWS CLI and python-boto installed in base
image
• Cloud-init (since Wheezy 7.4)
57. Cloud-init
• Insert this as “User
Data”
• Can be embedded into
CloudFormation
templates
#cloud-config
package_update: true
package_upgrade: true
package_reboot_if_required: true
packages:
- pwgen
- less
locale: fr_FR.UTF-8
ssh_authorized_keys:
- ssh-rsa AAAAB3Nz....89dGp5 me@mykey1
- ssh-rsa AAAAB3Nz....89dGp5 me@mykey2
final_message: "The system is finally up,
after $UPTIME seconds"
59. Debian Archive via CDN
• Default apt sources.list
for EC2 images uses
cloudfront.debian.net
• Primarily for EC2
instances, but is active
in all 52 Cloudfront
locations world-wide
CloudFront
60. Cloudfront.debian.net
• Each edge location is
independent of all
others
edge location
edge location
edge location
traditional server
61. Cloudfront.debian.net
• However, Debian HTTP
servers don’t put any
cache advisory headers
on how long objects
(files) may be cached
for; some of these are
quite volatile, and some
are very stable
edge location
edge location
edge location
traditional server
62. Cloudfront.debian.net
• Luickly, Cloudfront
supports “Cache
behaviours”, mapping
different URL paths to
alternate origin servers
edge location
edge location
edge location
traditional server