1. Select "Create Virtual Machine" from the Workloads menu.
2. On the General tab, choose the source of the virtual machine such as a Container image, URL, or existing disk. Then select the Operating System.
3. Configure resources for the virtual machine including CPU, memory, and storage on the Hardware tab.
4. Review and create the virtual machine. The new virtual machine will be added to the list and can be managed like other workloads.
Kubernetes 101 - an Introduction to Containers, Kubernetes, and OpenShiftDevOps.com
Administrators and developers are increasingly seeking ways to improve application time to market and improve maintainability. Containers and Red Hat® OpenShift® have quickly become the de facto solution for agile development and application deployment.
Red Hat Training has developed a course that provides the gateway to container adoption by understanding the potential of DevOps using a container-based architecture. Orchestrating a container-based architecture with Kubernetes and Red Hat® OpenShift® improves application reliability and scalability, decreases developer overhead, and facilitates continuous integration and continuous deployment.
In this webinar, our expert will cover:
An overview of container and OpenShift architecture.
How to manage containers and container images.
Deploying containerized applications with Red Hat OpenShift.
An outline of Red Hat OpenShift training offerings.
Kubernetes or OpenShift - choosing your container platform for Dev and OpsTomasz Cholewa
Kubernetes has become the most popular choice among container orchestrators with strong community and growing numbers of production deployments. There is no shortage of various K8s distros, at the moment 20+ and counting. There are many distributions available that just simply add toolsets and products that embed it and adds more features. In this presentation, you'll learn about OpenShift and how it compares to vanilla Kubernetes - their major differences, best features and how they can help to build a consistent platform for Dev and Ops cooperation.
OpenShift is Red Hat's Platform-as-a-Service (PaaS) that lets developers quickly develop, host, and scale Docker container-based applications. OpenShift enables a uniform and standardised approach to container management across all hosting options including AWS/EC2 and other private/public cloud and on/off-premise variants. At this session, you will learn how Red Hat's enterprise clients are using OpenShift to enable their digital transformation initiatives. Examples will cover how realising a hybrid cloud strategy can simplify and reduce the risk of migrating and transitioning application workloads to containers in the cloud.
Alex Smith, Solutions Architect, Amazon Web Services, ASEAN
Stephen Bylo, Senior Solution Architect, Red Hat Asia Pacific Pte Ltd
Kubernetes 101 - an Introduction to Containers, Kubernetes, and OpenShiftDevOps.com
Administrators and developers are increasingly seeking ways to improve application time to market and improve maintainability. Containers and Red Hat® OpenShift® have quickly become the de facto solution for agile development and application deployment.
Red Hat Training has developed a course that provides the gateway to container adoption by understanding the potential of DevOps using a container-based architecture. Orchestrating a container-based architecture with Kubernetes and Red Hat® OpenShift® improves application reliability and scalability, decreases developer overhead, and facilitates continuous integration and continuous deployment.
In this webinar, our expert will cover:
An overview of container and OpenShift architecture.
How to manage containers and container images.
Deploying containerized applications with Red Hat OpenShift.
An outline of Red Hat OpenShift training offerings.
Kubernetes or OpenShift - choosing your container platform for Dev and OpsTomasz Cholewa
Kubernetes has become the most popular choice among container orchestrators with strong community and growing numbers of production deployments. There is no shortage of various K8s distros, at the moment 20+ and counting. There are many distributions available that just simply add toolsets and products that embed it and adds more features. In this presentation, you'll learn about OpenShift and how it compares to vanilla Kubernetes - their major differences, best features and how they can help to build a consistent platform for Dev and Ops cooperation.
OpenShift is Red Hat's Platform-as-a-Service (PaaS) that lets developers quickly develop, host, and scale Docker container-based applications. OpenShift enables a uniform and standardised approach to container management across all hosting options including AWS/EC2 and other private/public cloud and on/off-premise variants. At this session, you will learn how Red Hat's enterprise clients are using OpenShift to enable their digital transformation initiatives. Examples will cover how realising a hybrid cloud strategy can simplify and reduce the risk of migrating and transitioning application workloads to containers in the cloud.
Alex Smith, Solutions Architect, Amazon Web Services, ASEAN
Stephen Bylo, Senior Solution Architect, Red Hat Asia Pacific Pte Ltd
Pushing Packets - How do the ML2 Mechanism Drivers Stack UpJames Denton
Architecting a private cloud to meet the use cases of its users can be a daunting task. How do you determine which of the many L2/L3 Neutron plugins and drivers to implement? Does network performance outweigh reliability? Are overlay networks just as performant as VLAN networks? The answers to these questions will drive the appropriate technology choice.
In this presentation, we will look at many of the common drivers built around the ML2 framework, including LinuxBridge, OVS, OVS+DPDK, SR-IOV, and more, and will provide performance data to help drive decisions around selecting a technology that's right for the situation. We will discuss our experience with some of these technologies, and the pros and cons of one technology over another in a production environment.
Since the release of 17.05, Docker has introduced Multi-Stage Build for Docker Images for anyone who has struggled to optimize Dockerfiles while keeping them easy to read and maintain. This builder pattern will help anyone who would just like to have the runtime, configuration & application and doesn’t want to have compilers, debuggers, code, build, test logs etc.
Kubernetes Helm makes application deployment easy, standardized and reusable. Use of Kubernetes Helm leads to better developer productivity, reduced Kubernetes deployment complexity and enhanced enterprise production readiness.
Enterprises using Kubernetes Helm can speed up the adoption of cloud native applications. These applications can be sourced from open-source community provided repositories, or from an organization’s internal repository of customized application blueprints.
Developers can use Kubernetes Helm as a vehicle for packaging their applications and sharing them with the Kubernetes community. Kubernetes Helm also allows software vendors to offer their containerized applications at “the push of a button.” Through a single command or a few mouse clicks, users can install Kubernetes apps for dev-test or production environments.
Virtualization with KVM (Kernel-based Virtual Machine)Novell
As a technical preview, SUSE Linux Enterprise Server 11 contains KVM, which is the next-generation virtualization software delivered with the Linux kernel. In this technical session we will demonstrate how to set up SUSE Linux Enterprise Server 11 for KVM, install some virtual machines and deal with different storage and networking setups.
To demonstrate live migration we will also show a distributed replicated block device (DRBD) setup and a setup based on iSCSI and OCFS2, which are included in SUSE Linux Enterprise Server 11 and SUSE Linux Enterprise 11 High Availability Extension.
OpenStack 운영을 통해 얻은 교훈을 공유합니다.
목차
1. TOAST 클라우드 지금의 모습
2. OpenStack 선택의 이유
3. 구성의 어려움과 극복 사례
4. 활용 사례
5. 풀어야 할 문제들
대상
- TOAST 클라우드를 사용하고 싶은 분
- WMI를 처음 들어보시는 분
Session Description:
In this session, Ravi Described some use cases about harmonizing Ceph storage with Apache CloudStack for a CloudStack infrastructure setup. This includes using primary and secondary storage for CloudStack, synchronizing and rendering VM snapshots accessible across remote zones, fortifying storage for disaster recovery, and upholding client VM data backup.
Speaker Bio:
Ravichandran has 15+ years of technical expertise in Linux and Cloud solutions in Assistanz Networks Private Limited. Ravi is currently leading Business Development at Apache CloudStack consulting, Storage solutions and Stackbill CMP product.
---------------------------------------------
On Friday 18th August, the Apache CloudStack India User Group 2023 took place in Bangalore, seeing CloudStack enthusiasts, experts, and industry leaders from across the country, discuss the open-source project. The meetup served as a vibrant platform to delve into the depths of Apache CloudStack, share insights, and forge new connections.
Kubernetes Concepts And Architecture Powerpoint Presentation SlidesSlideTeam
Get these visually appealing Kubernetes Concepts And Architecture PowerPoint Presentation Slides to discuss the process of operating containerized applications. You can display the need for containers by the company with the help of an open-source architecture PPT slideshow. The architecture of containers can be demonstrated with the help of a visually appealing PPT slideshow. The reasons for opting for Kubernetes by an organization can be explained to your teammates with the help of containers PowerPoint infographics. Highlight the roadmap for installing Kubernetes in the organization by using content-ready PPT slides. Take the assistance of visually appealing PPT templates to depict the major advantages of Kubernetes such as improving productivity, the stability of application run, and many more. After that, display 30 60 90 days plan to implement Kubernetes in the organization. Display the key components of Kubernetes with the help of a diagram using this professionally designed cluster architecture PPT layouts. Describe the functionality of each components of Kubernetes. Hence, download Kubernetes architecture PPT slides to easily and efficiently manage the clusters. https://bit.ly/34DWa7x
KubeVirt (Kubernetes and Cloud Native Toronto)Stephen Gordon
In this session Stephen will present the use cases for and current state of the KubeVirt project (http://www.kubevirt.io/), which aims to build a virtualization API for Kubernetes in order to manage virtual machines which themselves run in Kubernetes pods.
You will also hear how this project differs from, and is complementary to, the recently announced Katacontainers (https://katacontainers.io/) project.
Building a secure image pipeline with Ansible. Generating secure OS images for OpenShift Virtualization. Creating a immutable image pipeline with Ansible, OpenSCAP, Packer, Molecule and Vagrant. Packaging OS images for consumption to OpenShift Virtualization.
OpenShift Commons - Adopting Podman, Skopeo and Buildah for Building and Mana...Mihai Criveti
KubeCon OpenShift Commons - How Podman, Skopeo and Buildah provide a drop in replacement for Docker. How Podman offers better security using a fork-exec model. Building images with buildah. Introducing podman-compose and the Red Hat Universal Base Image.
Pushing Packets - How do the ML2 Mechanism Drivers Stack UpJames Denton
Architecting a private cloud to meet the use cases of its users can be a daunting task. How do you determine which of the many L2/L3 Neutron plugins and drivers to implement? Does network performance outweigh reliability? Are overlay networks just as performant as VLAN networks? The answers to these questions will drive the appropriate technology choice.
In this presentation, we will look at many of the common drivers built around the ML2 framework, including LinuxBridge, OVS, OVS+DPDK, SR-IOV, and more, and will provide performance data to help drive decisions around selecting a technology that's right for the situation. We will discuss our experience with some of these technologies, and the pros and cons of one technology over another in a production environment.
Since the release of 17.05, Docker has introduced Multi-Stage Build for Docker Images for anyone who has struggled to optimize Dockerfiles while keeping them easy to read and maintain. This builder pattern will help anyone who would just like to have the runtime, configuration & application and doesn’t want to have compilers, debuggers, code, build, test logs etc.
Kubernetes Helm makes application deployment easy, standardized and reusable. Use of Kubernetes Helm leads to better developer productivity, reduced Kubernetes deployment complexity and enhanced enterprise production readiness.
Enterprises using Kubernetes Helm can speed up the adoption of cloud native applications. These applications can be sourced from open-source community provided repositories, or from an organization’s internal repository of customized application blueprints.
Developers can use Kubernetes Helm as a vehicle for packaging their applications and sharing them with the Kubernetes community. Kubernetes Helm also allows software vendors to offer their containerized applications at “the push of a button.” Through a single command or a few mouse clicks, users can install Kubernetes apps for dev-test or production environments.
Virtualization with KVM (Kernel-based Virtual Machine)Novell
As a technical preview, SUSE Linux Enterprise Server 11 contains KVM, which is the next-generation virtualization software delivered with the Linux kernel. In this technical session we will demonstrate how to set up SUSE Linux Enterprise Server 11 for KVM, install some virtual machines and deal with different storage and networking setups.
To demonstrate live migration we will also show a distributed replicated block device (DRBD) setup and a setup based on iSCSI and OCFS2, which are included in SUSE Linux Enterprise Server 11 and SUSE Linux Enterprise 11 High Availability Extension.
OpenStack 운영을 통해 얻은 교훈을 공유합니다.
목차
1. TOAST 클라우드 지금의 모습
2. OpenStack 선택의 이유
3. 구성의 어려움과 극복 사례
4. 활용 사례
5. 풀어야 할 문제들
대상
- TOAST 클라우드를 사용하고 싶은 분
- WMI를 처음 들어보시는 분
Session Description:
In this session, Ravi Described some use cases about harmonizing Ceph storage with Apache CloudStack for a CloudStack infrastructure setup. This includes using primary and secondary storage for CloudStack, synchronizing and rendering VM snapshots accessible across remote zones, fortifying storage for disaster recovery, and upholding client VM data backup.
Speaker Bio:
Ravichandran has 15+ years of technical expertise in Linux and Cloud solutions in Assistanz Networks Private Limited. Ravi is currently leading Business Development at Apache CloudStack consulting, Storage solutions and Stackbill CMP product.
---------------------------------------------
On Friday 18th August, the Apache CloudStack India User Group 2023 took place in Bangalore, seeing CloudStack enthusiasts, experts, and industry leaders from across the country, discuss the open-source project. The meetup served as a vibrant platform to delve into the depths of Apache CloudStack, share insights, and forge new connections.
Kubernetes Concepts And Architecture Powerpoint Presentation SlidesSlideTeam
Get these visually appealing Kubernetes Concepts And Architecture PowerPoint Presentation Slides to discuss the process of operating containerized applications. You can display the need for containers by the company with the help of an open-source architecture PPT slideshow. The architecture of containers can be demonstrated with the help of a visually appealing PPT slideshow. The reasons for opting for Kubernetes by an organization can be explained to your teammates with the help of containers PowerPoint infographics. Highlight the roadmap for installing Kubernetes in the organization by using content-ready PPT slides. Take the assistance of visually appealing PPT templates to depict the major advantages of Kubernetes such as improving productivity, the stability of application run, and many more. After that, display 30 60 90 days plan to implement Kubernetes in the organization. Display the key components of Kubernetes with the help of a diagram using this professionally designed cluster architecture PPT layouts. Describe the functionality of each components of Kubernetes. Hence, download Kubernetes architecture PPT slides to easily and efficiently manage the clusters. https://bit.ly/34DWa7x
KubeVirt (Kubernetes and Cloud Native Toronto)Stephen Gordon
In this session Stephen will present the use cases for and current state of the KubeVirt project (http://www.kubevirt.io/), which aims to build a virtualization API for Kubernetes in order to manage virtual machines which themselves run in Kubernetes pods.
You will also hear how this project differs from, and is complementary to, the recently announced Katacontainers (https://katacontainers.io/) project.
Building a secure image pipeline with Ansible. Generating secure OS images for OpenShift Virtualization. Creating a immutable image pipeline with Ansible, OpenSCAP, Packer, Molecule and Vagrant. Packaging OS images for consumption to OpenShift Virtualization.
OpenShift Commons - Adopting Podman, Skopeo and Buildah for Building and Mana...Mihai Criveti
KubeCon OpenShift Commons - How Podman, Skopeo and Buildah provide a drop in replacement for Docker. How Podman offers better security using a fork-exec model. Building images with buildah. Introducing podman-compose and the Red Hat Universal Base Image.
Kubernetes Story - Day 2: Quay.io Container Registry for Publishing, Building...Mihai Criveti
Friday Brunch - a Kubernetes Story - Day 2: Build containers with Buildah, Skopeo and Quay.io https://www.youtube.com/watch?v=ygJrzMIZiWQ
In this workshop you'll learn how to build and manage containers, publish images to Quay, then install and deploy containers onto OpenShift.
Experience new tools to build, manage and deploy containerized applications following best practices. Learn how to build containers locally with podman, skopeo and buildah, publish and scan containers for vulnerabilities - and deploy containerized applications locally or on cloud using Kubernetes and OpenShift!
Mihai will take you through the process of:
Day 1 = Build: Building and running container images locally with podman, skopeo and buildah. Building containers for years or just getting started? Check out these new tools that help you build and run containers locally, and how they can help you get started with Kubernetes and OpenShift.
Learn some of the best practices on how you can build containers that run as regular users and how to automate the container build process using buildah. Learn about the Universal Base Image and how you can start your image builds from a known, trusted source.
and then over the next two Fridays the story will evolve as follows...
Day 2 = Publish: Publishing container images to quay.io and scanning containers for vulnerabilities and container best practices
Day 3 = Deploy: Getting started with OpenShift using CodeReady Containers or OKD and deploying containers on a Kubernetes Platform (Red Hat OpenShift / OKD / CRC)
Kubernetes Story - Day 1: Build and Manage Containers with PodmanMihai Criveti
OpenShift Workshop Day 1: https://www.youtube.com/watch?v=3IuaZu8-fsY - Build and Manage Containers with Podman
In this workshop you'll learn how to build and manage containers, publish images to Quay, then install and deploy containers onto OpenShift.
Using Packer to Migrate XenServer Infrastructure to CloudStackTim Mackey
When adopting IaaS cloud solutions, one of the biggest challenges will be template management. Creating that first template can easily be more challenging that deploying the cloud software itself. In this presentation two options are presented for template creation, using a kickstart file or cloning a running VM with Packer from packer.io as the core framework.
This presentation was delivered at CloudStack Days 2015 in Austin Texas. Two demos were given. The first demo used an existing XenServer environment to create a golden master from ISO and kickstart file, then automatically upload it to a CloudStack management server for deployment. The second demo cloned a running VM and created a template which was then uploaded to CloudStack. In the case of the running VM, migration occurred without any user interruption. The VM in question was a CentOS 7 image, and the hypervisor for both source infrastructure and CloudStack compute was XenServer based
Container and Cloud Native Application: What is VMware doing in this space? -...gguglie
A quick view on VMware products and technologies in the Container and Cloud Native Application space. This preso was done at VMUGIT Meeting in Cremona on june 2017.
OSDC 2019 | KubeVirt: Converge IT infrastructure into one single Kubernetes p...NETWAYS
We will dive into KubeVirt and see how we could create and manage VMs in Kubernetes In this session we will talk about what is KubeVirt and how it works on a kubernetes platform. KubeVirt allows users to create and manage virtual machines within a Kubernetes Cluster.
This session will be covering the following topics:
KubeVirt Installation
Basic KubeVirt objects and components
How to deploy and manage virtual machines
KubeVirt Storage
KubeVirt Networking
Benefits :
Kubernetes is a well established container platform, but migrating applications/services to containers is not always easy. KubeVirt allows in such situations to migrate virtual machine based workloads to the same platform where the containers are already running, thus helping converge IT Infrastructure into one single platform, Kubernetes.
Choosing the Right Framework for Running Docker Containers in ProdJosh Padnick
In this talk, I cover the key elements of running multiple Docker containers per VM, the major frameworks available to assist with this, and when to choose each.
10 Limitations of Large Language Models and Mitigation OptionsMihai Criveti
10 Limitations of Large Language Models and ways to overcome them. Dealing with hallucinations, performance,
costs, stale training data, injecting private data, token limits and contextual memory, text conversion, lack of
transparency, ethical concerns and training costs.
Retrieval Augmented Generation in Practice: Scalable GenAI platforms with k8s...Mihai Criveti
Mihai is the Principal Architect for Platform Engineering and Technology Solutions at IBM, responsible for Cloud Native and AI Solutions. He is a Red Hat Certified Architect, CKA/CKS, a leader in the IBM Open Innovation community, and advocate for open source development. Mihai is driving the development of Retrieval Augmentation Generation platforms, and solutions for Generative AI at IBM that leverage WatsonX, Vector databases, LangChain, HuggingFace and open source AI models.
Mihai will share lessons learned building Retrieval Augmented Generation, or “Chat with Documents” platforms and APIs that scale, and deploy on Kubernetes. His talk will cover use cases for Generative AI, limitations of Large Language Models, use of RAG, Vector Databases and Fine Tuning to overcome model limitations and build solutions that connect to your data and provide content grounding, limit hallucinations and form the basis of explainable AI. In terms of technology, he will cover LLAMA2, HuggingFace TGIS, SentenceTransformers embedding models using Python, LangChain, and Weaviate and ChromaDB vector databases. He’ll also share tips on writing code using LLM, including building an agent for Ansible and containers.
Scaling factors for Large Language Model Architectures:
• Vector Database: consider sharding and High Availability
• Fine Tuning: collecting data to be used for fine tuning
• Governance and Model Benchmarking: how are you testing your model performance
over time, with different prompts, one-shot, and various parameters
• Chain of Reasoning and Agents
• Caching embeddings and responses
• Personalization and Conversational Memory Database
• Streaming Responses and optimizing performance. A fine tuned 13B model may
perform better than a poor 70B one!
• Calling 3rd party functions or APIs for reasoning or other type of data (ex: LLMs are
terrible at reasoning and prediction, consider calling other models)
• Fallback techniques: fallback to a different model, or default answers
• API scaling techniques, rate limiting, etc.
• Async, streaming and parallelization, multiprocessing, GPU acceleration (including
embeddings), generating your API using OpenAPI, etc.
Get started with Ansible - an introduction for Python developers
Ansible: Provisioning and Configuration Management
Molecule: Test your Ansible Playbooks on Docker, Vagrant or Cloud
Vagrant: Test images with vagrant
Mihai Criveti - PyCon Ireland - Automate EverythingMihai Criveti
PyCon Ireland - Python DevOps flows with Ansible, Packer & Kubernetes - Mihai Criveti
https://www.youtube.com/watch?v=lO884XAdddQ
1 Packer: Image Build Automation
2 OpenSCAP: Automate Security Baselines
3 Ansible: Provisioning and Configuration Management
4 Molecule: Test your Ansible Playbooks on Docker, Vagrant or Cloud
5 Vagrant: Test images with vagrant
6 Package Python Applications with setuptools
7 Kubernetes: Container Orchestration at Scale
8 DevOps Culture and Practice
Data Science at Scale - The DevOps ApproachMihai Criveti
DevOps Practices for Data Scientists and Engineers
1 Data Science Landscape
2 Process and Flow
3 The Data
4 Data Science Toolkit
5 Cloud Computing Solutions
6 The rise of DevOps
7 Reusable Assets and Practices
8 Skills Development
ShipItCon - Continuous Deployment and Multicloud with Ansible and KubernetesMihai Criveti
Continuous Deployment and Multi-Cloud with Ansible, Packer, OpenSCAP and Kubernetes
Building and automating a multi-cloud pipeline using Ansible, Packer, OpenSCAP and Molecule
Using Kubernetes to orchestrate containers at scale
ShipItCon is a community driven, not-for-profit conference about Software Delivery https://shipitcon.com/
DevOps for Data Engineers - Automate Your Data Science Pipeline with Ansible,...Mihai Criveti
Automate your Data Science pipeline with Ansible, Python and Kubernetes - ODSC Talk
What is Data Science and the Data Science Landscape
Process and Flow
Understanding Data
The Data Science Toolkit
The Big Data Challenge
Cloud Computing Solutions
The rise of DevOps in Data Science
Automate your data pipeline with Ansible
Kubernetes Story - Day 3: Deploying and Scaling Applications on OpenShiftMihai Criveti
Day 3: OpenShift, CodeReady Containers and Operators https://www.youtube.com/watch?v=0txK3icU2Pg
Experience new tools to build, manage and deploy containerized applications following best practices. Learn how to build containers locally with podman, skopeo and buildah, publish and scan containers for vulnerabilities - and deploy containerized applications locally or on cloud using Kubernetes and OpenShift!
Mihai will take you through the process of:
Day 1 = Build: Building and running container images locally with podman, skopeo and buildah. Building containers for years or just getting started? Check out these new tools that help you build and run containers locally, and how they can help you get started with Kubernetes and OpenShift.
Learn some of the best practices on how you can build containers that run as regular users and how to automate the container build process using buildah. Learn about the Universal Base Image and how you can start your image builds from a known, trusted source.
and then over the next two Fridays the story will evolve as follows...
Day 2 = Publish: Publishing container images to quay.io and scanning containers for vulnerabilities and container best practices
Day 3 = Deploy: Getting started with OpenShift using CodeReady Containers or OKD and deploying containers on a Kubernetes Platform (Red Hat OpenShift / OKD / CRC)
Container Technologies and Transformational valueMihai Criveti
Transformational value for container technologies - the business impact of Digital Transformation to Cloud Native technologies.
A brief overview of the technology impact of containers, OpenShift and automation.
Talk delivered at Guide Share Europe Conference 2021: https://www.youtube.com/watch?v=1QunNECL26M
TROUBLESHOOTING 9 TYPES OF OUTOFMEMORYERRORTier1 app
Even though at surface level ‘java.lang.OutOfMemoryError’ appears as one single error; underlyingly there are 9 types of OutOfMemoryError. Each type of OutOfMemoryError has different causes, diagnosis approaches and solutions. This session equips you with the knowledge, tools, and techniques needed to troubleshoot and conquer OutOfMemoryError in all its forms, ensuring smoother, more efficient Java applications.
Developing Distributed High-performance Computing Capabilities of an Open Sci...Globus
COVID-19 had an unprecedented impact on scientific collaboration. The pandemic and its broad response from the scientific community has forged new relationships among public health practitioners, mathematical modelers, and scientific computing specialists, while revealing critical gaps in exploiting advanced computing systems to support urgent decision making. Informed by our team’s work in applying high-performance computing in support of public health decision makers during the COVID-19 pandemic, we present how Globus technologies are enabling the development of an open science platform for robust epidemic analysis, with the goal of collaborative, secure, distributed, on-demand, and fast time-to-solution analyses to support public health.
Check out the webinar slides to learn more about how XfilesPro transforms Salesforce document management by leveraging its world-class applications. For more details, please connect with sales@xfilespro.com
If you want to watch the on-demand webinar, please click here: https://www.xfilespro.com/webinars/salesforce-document-management-2-0-smarter-faster-better/
OpenFOAM solver for Helmholtz equation, helmholtzFoam / helmholtzBubbleFoamtakuyayamamoto1800
In this slide, we show the simulation example and the way to compile this solver.
In this solver, the Helmholtz equation can be solved by helmholtzFoam. Also, the Helmholtz equation with uniformly dispersed bubbles can be simulated by helmholtzBubbleFoam.
How Does XfilesPro Ensure Security While Sharing Documents in Salesforce?XfilesPro
Worried about document security while sharing them in Salesforce? Fret no more! Here are the top-notch security standards XfilesPro upholds to ensure strong security for your Salesforce documents while sharing with internal or external people.
To learn more, read the blog: https://www.xfilespro.com/how-does-xfilespro-make-document-sharing-secure-and-seamless-in-salesforce/
In software engineering, the right architecture is essential for robust, scalable platforms. Wix has undergone a pivotal shift from event sourcing to a CRUD-based model for its microservices. This talk will chart the course of this pivotal journey.
Event sourcing, which records state changes as immutable events, provided robust auditing and "time travel" debugging for Wix Stores' microservices. Despite its benefits, the complexity it introduced in state management slowed development. Wix responded by adopting a simpler, unified CRUD model. This talk will explore the challenges of event sourcing and the advantages of Wix's new "CRUD on steroids" approach, which streamlines API integration and domain event management while preserving data integrity and system resilience.
Participants will gain valuable insights into Wix's strategies for ensuring atomicity in database updates and event production, as well as caching, materialization, and performance optimization techniques within a distributed system.
Join us to discover how Wix has mastered the art of balancing simplicity and extensibility, and learn how the re-adoption of the modest CRUD has turbocharged their development velocity, resilience, and scalability in a high-growth environment.
Experience our free, in-depth three-part Tendenci Platform Corporate Membership Management workshop series! In Session 1 on May 14th, 2024, we began with an Introduction and Setup, mastering the configuration of your Corporate Membership Module settings to establish membership types, applications, and more. Then, on May 16th, 2024, in Session 2, we focused on binding individual members to a Corporate Membership and Corporate Reps, teaching you how to add individual members and assign Corporate Representatives to manage dues, renewals, and associated members. Finally, on May 28th, 2024, in Session 3, we covered questions and concerns, addressing any queries or issues you may have.
For more Tendenci AMS events, check out www.tendenci.com/events
Exploring Innovations in Data Repository Solutions - Insights from the U.S. G...Globus
The U.S. Geological Survey (USGS) has made substantial investments in meeting evolving scientific, technical, and policy driven demands on storing, managing, and delivering data. As these demands continue to grow in complexity and scale, the USGS must continue to explore innovative solutions to improve its management, curation, sharing, delivering, and preservation approaches for large-scale research data. Supporting these needs, the USGS has partnered with the University of Chicago-Globus to research and develop advanced repository components and workflows leveraging its current investment in Globus. The primary outcome of this partnership includes the development of a prototype enterprise repository, driven by USGS Data Release requirements, through exploration and implementation of the entire suite of the Globus platform offerings, including Globus Flow, Globus Auth, Globus Transfer, and Globus Search. This presentation will provide insights into this research partnership, introduce the unique requirements and challenges being addressed and provide relevant project progress.
Enhancing Research Orchestration Capabilities at ORNL.pdfGlobus
Cross-facility research orchestration comes with ever-changing constraints regarding the availability and suitability of various compute and data resources. In short, a flexible data and processing fabric is needed to enable the dynamic redirection of data and compute tasks throughout the lifecycle of an experiment. In this talk, we illustrate how we easily leveraged Globus services to instrument the ACE research testbed at the Oak Ridge Leadership Computing Facility with flexible data and task orchestration capabilities.
Into the Box Keynote Day 2: Unveiling amazing updates and announcements for modern CFML developers! Get ready for exciting releases and updates on Ortus tools and products. Stay tuned for cutting-edge innovations designed to boost your productivity.
We describe the deployment and use of Globus Compute for remote computation. This content is aimed at researchers who wish to compute on remote resources using a unified programming interface, as well as system administrators who will deploy and operate Globus Compute services on their research computing infrastructure.
Globus Compute wth IRI Workflows - GlobusWorld 2024Globus
As part of the DOE Integrated Research Infrastructure (IRI) program, NERSC at Lawrence Berkeley National Lab and ALCF at Argonne National Lab are working closely with General Atomics on accelerating the computing requirements of the DIII-D experiment. As part of the work the team is investigating ways to speedup the time to solution for many different parts of the DIII-D workflow including how they run jobs on HPC systems. One of these routes is looking at Globus Compute as a way to replace the current method for managing tasks and we describe a brief proof of concept showing how Globus Compute could help to schedule jobs and be a tool to connect compute at different facilities.
top nidhi software solution freedownloadvrstrong314
This presentation emphasizes the importance of data security and legal compliance for Nidhi companies in India. It highlights how online Nidhi software solutions, like Vector Nidhi Software, offer advanced features tailored to these needs. Key aspects include encryption, access controls, and audit trails to ensure data security. The software complies with regulatory guidelines from the MCA and RBI and adheres to Nidhi Rules, 2014. With customizable, user-friendly interfaces and real-time features, these Nidhi software solutions enhance efficiency, support growth, and provide exceptional member services. The presentation concludes with contact information for further inquiries.
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...Juraj Vysvader
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I didn't get rich from it but it did have 63K downloads (powered possible tens of thousands of websites).
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...Globus
The Earth System Grid Federation (ESGF) is a global network of data servers that archives and distributes the planet’s largest collection of Earth system model output for thousands of climate and environmental scientists worldwide. Many of these petabyte-scale data archives are located in proximity to large high-performance computing (HPC) or cloud computing resources, but the primary workflow for data users consists of transferring data, and applying computations on a different system. As a part of the ESGF 2.0 US project (funded by the United States Department of Energy Office of Science), we developed pre-defined data workflows, which can be run on-demand, capable of applying many data reduction and data analysis to the large ESGF data archives, transferring only the resultant analysis (ex. visualizations, smaller data files). In this talk, we will showcase a few of these workflows, highlighting how Globus Flows can be used for petabyte-scale climate analysis.
Strategies for Successful Data Migration Tools.pptxvarshanayak241
Data migration is a complex but essential task for organizations aiming to modernize their IT infrastructure and leverage new technologies. By understanding common challenges and implementing these strategies, businesses can achieve a successful migration with minimal disruption. Data Migration Tool like Ask On Data play a pivotal role in this journey, offering features that streamline the process, ensure data integrity, and maintain security. With the right approach and tools, organizations can turn the challenge of data migration into an opportunity for growth and innovation.
How to Position Your Globus Data Portal for Success Ten Good PracticesGlobus
Science gateways allow science and engineering communities to access shared data, software, computing services, and instruments. Science gateways have gained a lot of traction in the last twenty years, as evidenced by projects such as the Science Gateways Community Institute (SGCI) and the Center of Excellence on Science Gateways (SGX3) in the US, The Australian Research Data Commons (ARDC) and its platforms in Australia, and the projects around Virtual Research Environments in Europe. A few mature frameworks have evolved with their different strengths and foci and have been taken up by a larger community such as the Globus Data Portal, Hubzero, Tapis, and Galaxy. However, even when gateways are built on successful frameworks, they continue to face the challenges of ongoing maintenance costs and how to meet the ever-expanding needs of the community they serve with enhanced features. It is not uncommon that gateways with compelling use cases are nonetheless unable to get past the prototype phase and become a full production service, or if they do, they don't survive more than a couple of years. While there is no guaranteed pathway to success, it seems likely that for any gateway there is a need for a strong community and/or solid funding streams to create and sustain its success. With over twenty years of examples to draw from, this presentation goes into detail for ten factors common to successful and enduring gateways that effectively serve as best practices for any new or developing gateway.
How to Position Your Globus Data Portal for Success Ten Good Practices
OpenShift Virtualization - VM and OS Image Lifecycle
1. OpenShift Virtualization - VM and Image Lifecycle
Building and packaging OS Images with KVM, qemu-img and podman
Mihai Criveti, CTO Cloud Native and Red Hat Solutions IBM, STSM, RHCE, OpenShift Certified
November 23, 2020
1
2. OpenShift Virtualization Overview
Container Build Tools: Podman, Skopeo and Buildah
Container Registries
Prerequisities and Build Tools
Create Virtual Machine Wizard
Building OS Images
Automating image builds with Kickstart and Ansible
IBM Cloud: VPC Gen 2 Custom Images
Continuous Image Build
Layered Image Compliance with OpenSCAP 2
4. Overview
• Prerequisites
• KVM and qemu tools for building OS images
• qemu, cloud-init and virtio drivers
• podman and skopeo for building container images
• Virtual Machine Options
• OS Support (RHEl 6-8, Fedora, Windows 10, 2012R2,
2016, 2019)
• Type: Ephemeral or Persistent
• Source: PXE, URL, Container or Disk
• Virtual Machine Disks
• Volume Mode: Filesystem or Block
• Storage volume types: persistentVolumeClaim,
dataVolume, ephemeral, containerDisk, emptyDisk,
cloudInitNoCloud
• CDI - Containerized Data Importer
• CDI supported operations matrix
• CDI operations that require scratch space
• Building container images with KVM
virt-install
• Building a Fedora image
• Installing VirtIO, qemu and cloud-init
• Using qemu-img to compress the image
• Packaging the image as a container using podman
• Enable the OpenShift Registry for external access
• Upload images with podman
• Copy images with skopeo
• Testing OS Images
• QCOW2 images on HTTP Servers or S3 Storage
• Container images from the container registry
• Using the IBM Cloud OS Images!
3
5. Provision OpenShift Virtualization on IBM Cloud
Deploy ROKS
• Create a ROKS cluster with at least 1 Bare Metal worker node. Make sure you select version 4.5.x or higher.
Install the OpenShift Virtualization Operator and create a cluster
• Install the OpenShift Virtualization Operator (2.4 or higher)
• Create a OpenShift Virtualization Operator Deployment: kubevirt-hyperconverged cluster on the Bare
Metal node(s).
Create a new project namespace
oc new-project virtual-machines
You can now create Virtual Machines by clicking on Workloads > Virtualization.
4
6. Red Hat Portfolio integration
RHV 4.4 can manage OpenShift Virtualization VMs
OpenShift virtualization is a feature of OpenShift
Container Platform and is delivered, integrated and
managed via the OpenShift Operator framework.
OpenShift Virtualization integrates with Red Hat
Virtualization.
Figure 1: RHV Integration
RHV Console
With RHV 4.4, the RHV Manager allows you to easily
add an existing OpenShift virtualization cluster as an
external provider and then to perform basic
management of underlying VMs side-by-side with
RHV VMs.
Figure 2: RHV Integration
5
8. Virtual Machine Types
Ephemeral
• When using a ephemeral storage volume type, or containerDisk.
• The ephemeral image is created when the virtual machine starts and stores all writes locally. The
ephemeral image is discarded when the virtual machine is stopped, restarted, or deleted. The backing
volume (PVC) is not mutated in any way.
Persistent (persistentVolumeClaim)
• When using a persistentVolumeClaim
• Attaches an available PV to a virtual machine. Attaching a PV allows for the virtual machine data to persist
between sessions.
• Importing an existing virtual machine disk into a PVC by using CDI and attaching the PVC to a virtual
machine instance is the recommended method for importing existing virtual machines into OpenShift
Container Platform.
Note CDI: Containerized Data Importer.
7
9. Storing VMI Disks in the Container Registry Use Cases
Immutable VMIs booting from ephemeral disk
• launch VMI workloads backed by local ephemeral storage.
• VMI workload does not need to remain persistent across VMI restarts and the workload does not require
live migration support.
Questions:
• I this emptyDir?
• What happens when it fills up?
• Can we setup a quota?
8
10. Storage Features
Features Live Migration Host-assisted VM disk cloning
OpenShift Container Storage: RBD block-mode volumes Yes Yes
OpenShift Virtualization hostpath provisioner No Yes
Other multi-node writable storage Yes (1) Yes (1)
Other single-node writable storage No Yes (2)
1. PVCs must request a ReadWriteMany access mode.
2. PVCs must request a ReadWriteOnce access mode.
You cannot live migrate virtual machines that use: - A storage class with ReadWriteOnce (RWO) access mode -
Passthrough features such as SRI-OV and GPU
9
13. CDI: Containerized Data Importer Overview
CDI Function
• persistent storage management add-on for Kubernetes.
• provides a declarative way to build Virtual Machine Disks on PVCs for Kubevirt VMs
• provides a way to populate PVCs with VM images or other data upon creation.
• data can come from different sources: a URL, a container registry, another PVC (clone), or an upload from a
client.
Import from URL
This method is selected when you create a DataVolume with an http source. Supports basic authentication
(secret) and custom TLS certificates (ConfigMap).
Import from container registry
When a DataVolume has a registry source CDI will populate the volume with a Container Disk downloaded
from the given image URL.
12
14. CDI supported operations matrix
DataVolumes
DataVolume objects are custom resources that are provided by the Containerized Data Importer (CDI) project.
DataVolumes orchestrate import, clone, and upload operations that are associated with an underlying
PersistentVolumeClaim (PVC). DataVolumes are integrated with KubeVirt, and they prevent a virtual machine
from being started before the PVC has been prepared.
Understanding scratch space
The Containerized Data Importer (CDI) requires scratch space (temporary storage) to complete some
operations, such as importing and uploading virtual machine images. During this process, the CDI provisions a
scratch space PVC equal to the size of the PVC backing the destination DataVolume (DV). The scratch space
PVC is deleted after the operation completes or aborts.
Note: The CDI requires requesting scratch space with a file volume mode, regardless of the PVC backing the
origin DataVolume. If the origin PVC is backed by block volume mode, you must define a StorageClass capable
of provisioning file volume mode PVCs.
13
15. CDI operations that require scratch space
Registry imports
The CDI must download the image to a scratch space and extract the layers to find the image file. The image
file is then passed to QEMU-IMG for conversion to a raw disk.
Upload image
QEMU-IMG does not accept input from STDIN. Instead, the image to upload is saved in scratch space before it
can be passed to QEMU-IMG for conversion.
HTTP imports of archived images
QEMU-IMG does not know how to handle the archive formats CDI supports. Instead, the image is unarchived
and saved into scratch space before it is passed to QEMU-IMG.
HTTP imports of authenticated images
QEMU-IMG inadequately handles authentication. Instead, the image is saved to scratch space and
authenticated before it is passed to QEMU-IMG.
HTTP imports of custom certificates
QEMU-IMG inadequately handles custom certificates of HTTPS endpoints. Instead, the CDI downloads the
image to scratch space before passing the file to QEMU-IMG.
14
17. Podman Overview
What is Podman?
Figure 3: podman - manage pods, containers and OCI compliant container images
How is Podman different?
• Can be run as a regular user without requiring root.
• Can manage pods (groups of one or more containers that operate together).
• Lets you import Kubernetes definitions using podman play.
• Fork-exec model instead of client-server model (containers are child processes of podman).
• Compatible with Docker, Docker Hub or any OCI compliant container implementation.
15
18. Buildah
What is Buildah?
Figure 4: buildah - build container images from CLI or Dockerfiles
How is Buildah different?
• Containers can be build using simple CLI commands or shell scripts instead of Dockerfiles.
• Images can then be pushed to any container registry and can be used by any container engine, including
Podman, CRI-O, and Docker.
• Buildah is also often used to securely build containers while running inside of a locked down container by a
tool like Podman, OpenShift/Kubernetes or Docker. 16
19. Skopeo
What is Skopeo?
Figure 5: skopeo - inspect and copy containers and images between different storage
How does Skopeo help?
• It can copy images to and from a host, as well as to other container environments and registries.
• Skopeo can inspect images from container image registries, get images and image layers, and use
signatures to create and verify images.
17
20. Install podman, buildah and skopeo
Fedora 32 / RHEL 8
# Install podman, buildah and skopeo on Fedora 32
sudo dnf -y install podman buildah skopeo slirp4netns fuse-overlayfs
Ubuntu / Debian
sudo apt update && sudo apt -y install podman buildah skopeo
Getting help
podman version
podman --help # list available commands
man podman-ps # or commands like run, rm, rmi, image, build
podman info # display podman system information
https://podman.io/getting-started/installation
18
22. Container Image Registries available to OpenShift
quay.io
• Public / private container repository from Red Hat
• Quay is a container image registry that enables you to build, organize, distribute, and deploy containers.
• Quay gives you security over your repositories with image vulnerability scanning and robust access controls.
IBM Cloud Container Registry
• IBM Cloud multi-tenant private image registry
• store and distribute Docker images in a managed, private registry.
Image Registry Operator in OpenShift Container Platform
• The Image Registry Operator installs a single instance of the OpenShift Container Platform registry, and
manages all registry configuration, including setting up registry storage.
• Integrated OpenShift Container Platform registry: built-in container image registry that runs as a standard
workload on the cluster.
• Can be exposed externally (not exposed by default).
Other options
• JFrog Artifactory.
• GitHub / GitLab provide a container registry as well.
• Docker Hub (not recommended, will limit free pulls, security concerns).
19
23. Private Registry Security: Create a Secret
Get the secret base64
oc whoami | base64
oc whoami -t | base64
Create a Secret in the same namespace as the DataVolume secret.yaml
apiVersion: v1
kind: Secret
metadata:
name: endpoint-secret
labels:
app: containerized-data-importer
type: Opaque
data:
accessKeyId: "" # <optional: your key or user name, base64 encoded>
secretKey: "" # <optional: your secret or password, base64 encoded>
podman create secret.yaml
podman login -u $(oc whoami) -p $(oc whoami -t) $REGISTRY
20
24. Private Registry Security: Create a Volume
Create your volume
apiVersion: cdi.kubevirt.io/v1alpha1
kind: DataVolume
...
spec:
source:
registry:
url: "docker://my-private-registry:5000/my-username/my-image"
secretRef: my-docker-creds
certConfigMap: my-registry-certs
...
Get the pvc
oc apply -f datavolume.yaml
oc get pvc
watch oc get pvc,dvs,pod
21
25. Registry TLS Certificate configuration
Create a ConfigMap with certificates in the same namespace as the DataVolume
apiVersion: cdi.kubevirt.io/v1beta1
kind: DataVolume
...
spec:
source:
registry:
url: "docker://my-private-registry-host:5000/my-username/my-image"
certConfigMap: my-registry-certs
...
22
26. OpenShift Internal Registry
Exposing the OpenShift Container Registry
# Set the DefaultRoute to True:
oc patch configs.imageregistry.operator.openshift.io/cluster
--patch '{"spec":{"defaultRoute":true}}' --type=merge
Log in with podman
HOST=$(oc get route default-route -n
openshift-image-registry --template='{{ .spec.host }}')
podman login -u $(oc whoami) -p $(oc whoami -t) --tls-verify=false $HOST
Accessing the registry from inside the cluster
image-registry.openshift-image-registry.svc:5000
Accessing the registry from OUTSIDE the cluster
$HOST/namespace/myimage
23
28. Image Build and Management Server
You need a Bare Metal server running RHEL 8 to build images using KVM (virt-install) and setup the virtctl
client.
Install KVM
yum install @virt virt-top libguestfs-tools
virt-manager virt-install virt-viewer qemu-img
sudo systemctl enable --now libvirtd
Install virtctl client on RHEL 7
subscription-manager repos --enable rhel-7-server-cnv-2.4-rpms
yum -y install kubevirt-virtctl
Install the virtctl client on RHEL 8
subscription-manager repos --enable cnv-2.4-for-rhel-8-x86_64-rpms
dnf -y install kubevirt-virtctl
24
29. HTTP Server for Images with Basic Access
Install Apache
dnf install -y httpd httpd-tools
systemctl start httpd && systemctl enable httpd
Enable Basic Auth for /etc/apache2/apache2.conf
<Directory "/var/www/html">
AuthType Basic
AuthName "Restricted Content"
AuthUserFile /etc/apache2/.htpasswd
Require valid-user
</Directory>
Create a password file
htpasswd -c /etc/apache2/.htpasswd cmihai
Store OS images
cp image.qcow2 /var/www/html
25
32. Creating Virtual Machines
Creating Virtual Machines can be done with:
• Create Virtual Machine wizard
• YAML file with OpenShift Console
• Using the CLI
• Importing a VMware virtual machine or template
with the virtual machine wizard
Notes
• If either URL or Container are selected as the
Source in the General step, a rootdisk disk is
created and attached to the virtual machine as the
Bootable Disk. You can modify the rootdisk but you
cannot remove it.
• When you create your virtual machine using the
wizard, your virtual machine’s storage medium
must support Read-Write-Many (RWX) PVCs.
• Network Interface Cards (NICs) and storage disks
can be created and attached to virtual machines
after they have been created.
Create ephemeral Fedora VM
Figure 6: New VM from Container Image in internal registry
27
33. Create VM - General: Source
PXE
• Provision virtual machine from PXE menu.
• Requires a PXE-capable NIC in the cluster.
URL
Provision virtual machine from an image available
from an HTTP or S3 endpoint. Ex:
http://server/image.qcow2 It is possible to
configure basic authentication using a secret and
specify custom TLS certificates in a ConfigMap.
Container
Provision virtual machine from a bootable operating
system container located in a registry accessible from
the cluster. Ex: image-registry.openshift-image-
registry.svc:5000/virtual-machines/windows2016
Disk
Provision virtual machine from a disk. Ex: Select an
existing PVC in the Storage tab.
Source
Figure 7: Internal Registry Container
Note: for an external container registry - you need to
set up a secret with the credentials. Ex:
oc create secret generic <secret_name>
--from-file=.dockercfg=<.dockercfg>
--type=kubernetes.io/dockercfg
Source URL
Figure 8: HTTP Source URL
28
34. Create VM - General: Operating System
The following operating systems are supported (64-bit
x86 only) in OpenShift Virtualization 2.4.
Linux
• Fedora 31 or higher (desktop).
• Red Hat Enterprise Linux 6.x, 7.x, 8.x.
Linux systems need to be built with VirtIO drivers,
cloud-init and SSH enabled.
Windows
• Windows 10 (desktop).
• Windows Server 2012 R2, 2016, 2019.
Windows images need to be built with VirtIO drivers,
sysprep, cloud-init and RDP enabled. When installing
Windows from a DVD, you need to use a SATA disk.
Workload Profile
• High Performance
• Server
• Desktop
Create Virtual Machine: Operating System
Figure 9: Supported Operating Systems
Notes:
• OpenShift Virtualization is certified in Microsoft’s
Windows Server Virtualization Validation Program
(SVVP) to run Windows Server workloads on Red
Hat Enterprise Linux CoreOS 8 workers.
• Other operating system templates shipped with
OpenShift Virtualization are not supported.
29
35. Create VM - Networking
Attach one or more network interface
Network interface options:
• Model: VirtIO (requires drivers, fastest), e1000, e1000e, ne2kPCI, pcnet, rtl8139 (various simulated
drivers)
• Network: Select a Network Definition in OpenShift.
• Type: bridge, masquerade, sriov
30
37. Storage: Add Disk
Disks
Source
One of: Blank, URL, Container (registry image),
Attached Cloned Disk (PVC), Attach Disk (PVC).
Size
GiB when using Blank, URL or Attached Cloned Disks.
Container will be dynamic, and Attach Disk - the size
of the PVC.
Interface
VirtIO, sata or scsi. Pick VirtIO when guest image has
VirtIO drivers installed.
Adding a blank disk
Storage Class
The StorageClass that is used to create the disk. Ex:
ibmc-block-bronze, ibmc-file-silver (as configured in
ROKS). See: oc get storageclass. 32
38. Storage: Advanced
Disks: Avanced Options
Figure 10: Add Disk: Advanced Options
Volume Mode
• Filesystem: Stores the virtual disk on a
filesystem-based volume.
• Block: Stores the virtual disk directly on the block
volume. Only use Block if the underlying storage
supports it.
Access Mode
• Single User (RWO): The disk can be mounted as
read/write by a single node.
• Shared Access (RWX): The disk can be mounted
as read/write by many nodes. This is required for
some features, such as live migration of virtual
machines between nodes.
• Read Only (ROX): The disk can be mounted as
read-only by many nodes.
33
39. Storage: Virtual machine storage volume types (persistent)
persistentVolumeClaim
• Attaches an available PV to a virtual machine.
• Attaching a PV allows for the virtual machine data to persist between sessions.
• Importing an existing virtual machine disk into a PVC by using CDI and attaching the PVC to a virtual
machine instance is the recommended method for importing existing virtual machines.
dataVolume
• DataVolumes build on the persistentVolumeClaim disk type by managing the process of preparing the
virtual machine disk via an import, clone, or upload operation.
• VMs that use this volume type are guaranteed not to start until the volume is ready.
• Specify type: dataVolume or type: ””. If you specify any other value for type, such as
persistentVolumeClaim, a warning is displayed, and the virtual machine does not start.
34
40. Storage: Virtual machine storage volume types (ephemeral)
ephemeral
• A local copy-on-write (COW) image that uses a network volume as a read-only backing store. The backing
volume must be a PersistentVolumeClaim.
• The ephemeral image is created when the virtual machine starts and stores all writes locally and is
discarded when the virtual machine is stopped, restarted, or deleted. The backing volume (PVC) is not
mutated in any way.
containerDisk
• References an image, such as a virtual machine disk, that is stored in the container image registry.
• The image is pulled from the registry and embedded in a volume when the virtual machine is created.
• A containerDisk volume is ephemeral and is discarded when the VM is stopped, restarted, or deleted.
• Container disks are not limited to a single virtual machine and are useful for creating large numbers of
virtual machine clones that do not require persistent storage.
• Only RAW and QCOW2 formats are supported. QCOW2 recommended for reduced image size.
emptyDisk
• Creates an additional sparse QCOW2 disk that is tied to the life-cycle of the virtual machine interface. Used
to store data that otherwise exceeds the limited temporary file system of an ephemeral disk.
• The data survives guest-initiated reboots in the virtual machine but is discarded when the virtual machine
stops or is restarted from the web console.
35
41. Storage: Virtual machine storage volume types (supporting)
cloudInitNoCloud
Attaches a disk that contains the referenced cloud-init NoCloud data source, providing user data and
metadata to the virtual machine. A cloud-init installation is required inside the virtual machine disk.
Example:
- cloudInitNoCloud:
userData: |
#!/bin/bash
echo "fedora" | passwd fedora --stdin
name: cloudinitdisk
36
42. Advanced: Cloud-init
Post-provisioning script used to setup users, passwords, insert SSH keys and customize the image.
Example cloud-init
#cloud-config
users:
- default
- name: cmihai
gecos: Mihai Criveti
selinux-user: staff_u
groups: users,wheel
ssh_pwauth: True
ssh_authorized_keys:
- ssh-rsa AA..vz user@domain.com
chpasswd:
list: |
root:password
cmihai:password
expire: False
37
43. Advanced: Virtual Hardware (CD-ROM)
ISO CD-ROM image
Figure 11: Add a CD-ROM ISO Image from URL
Boot order
You will need to change the boot order if you wish to
boot from the CD by editing the YAML:
oc edit vm example
devices:
disks:
- bootOrder: 1
cdrom:
bus: sata
name: cd-drive-1
38
45. Building a Windows Image from ISO
Download container-native-virtualization/virtio-win - Red Hat Container Catalog.
podman login registry.redhat.io
podman pull registry.redhat.io/container-native-virtualization/virtio-win
Create a image disk at least 15GB in size
qemu-img create -f qcow2 w2016.qcow2 15G
Install Windows using virt-install
virt-install --connect qemu:///system
--name ws2016 --ram 4096 --vcpus 2
--network network=default,model=virtio
--disk path=ws2016.qcow2,format=qcow2,device=disk,bus=sata
--cdrom Windows_Server.ISO
--disk path=virtio-win-0.1.189.iso,device=cdrom
--vnc --os-type windows --os-variant win2k16
Installation
• Install QEMU guest agent and VirtIO Drivers
• Configure RDP
• Install Cloud Init and Sysprep the image
39
46. Building a Red Hat OS Image with Kickstart
Create a Kickstart file (response file)
You can manually install the OS to generate a .ks file. Installations from kickstart are automated, and you can
use this as part of a CI/CD OS build.
Kickstart install the OS
# virt-install
--name guest1-rhel7
--memory 2048
--vcpus 2
--disk size=8
--location http://example.com/path/to/os
--os-variant rhel7
--initrd-inject /path/to/ks.cfg
--extra-args="ks=file:/ks.cfg console=tty0 console=ttyS0,115200n8"
Setup QEMU guest agent on virtual machines
systemctl enable qemu-guest-agent
40
47. Processing and converting images
Compress the image
qemu-img convert -O qcow2 -c w2016.qcow2 windows2016.qcow2
qemu-img convert -O qcow2 -c r7.qcow2 rhel7.qcow2
Create a SHA256 for your images
This is optional, but good practice when uploading your images to a webserver, etc.
sha256sum *qcow2 > SHA256SUMS
Optionally, sign your image with GPG.
gpg --sign myfile
41
48. Creating and pushing images to the container registry
Create a Dockerfile
FROM scratch
ADD windows2016.qcow2 /disk/
Create a docker container
podman build -t cmihai/windows2016 .
Login to the container registry
REGISTRY="$(oc get route/default-route
-n openshift-image-registry -o=jsonpath='{.spec.host}')"
podman login ${REGISTRY}
Tag and push the image to your desired namespace (ex: virtual-machines)
podman tag localhost/virtual-machine/fedora31
${REGISTRY}/virtual-machines/windows2016
podman push ${REGISTRY}/virtual-machines/windows2016
42
49. Creating container images with Buildah
Create a Dockerfile in /tmp/vmdisk
cat << END > Dockerfile
FROM kubevirt/container-disk-v1alpha
ADD fedora32.qcow2 /disk
END
Build and push to registry
buildah bud -t vmidisk/fedora32:latest /tmp/vmdisk
buildah push --tls-verify=false
vmidisk/fedora32:latest
docker://cdi-docker-registry-host.cdi/fedora28:latest
43
50. Import the registry image into a Data volume
YAML
apiVersion: cdi.kubevirt.io/v1alpha1
kind: DataVolume
metadata:
name: fedora31image
spec:
source:
registry:
url: "docker://image-registry.openshift-image-registry.svc:5000/
virtual-machines/fedora31"
pvc:
accessModes:
- ReadWriteMany
resources:
requests:
storage: 20Gi
Get the image info
oc apply -f datavolume.yaml
oc get pvc, dvs, pods # look for importer-fedora31image
44
51. Uploading local disk images by using the virtctl tool
Creating an upload DataVolume YAML
apiVersion: cdi.kubevirt.io/v1alpha1
kind: DataVolume
metadata:
name: <upload-datavolume>
spec:
source:
upload: {}
pvc:
accessModes:
- ReadWriteOnce
resources:
requests:
storage: <2Gi>
Create the volume
oc create -f <upload-datavolume>.yaml
Upload the image
virtctl image-upload dv <volume_name>
--size=2G
--image-path=</path/to/image>
Verify that a DataVolume was created
View all DataVolume objects
oc get dvs
45
53. Building a Red Hat OS Image with Kickstart
Create a Kickstart file (response file)
You can manually install the OS to generate a .ks file. Installations from kickstart are automated, and you can
use this as part of a CI/CD OS build.
Kickstart install the OS
# virt-install
--name guest1-rhel7
--memory 2048
--vcpus 2
--disk size=8
--location http://example.com/path/to/os
--os-variant rhel7
--initrd-inject /path/to/ks.cfg
--extra-args="ks=file:/ks.cfg console=tty0 console=ttyS0,115200n8"
Setup QEMU guest agent on virtual machines
systemctl enable qemu-guest-agent
46
54. Kickstart File
RHEL 8 KickStart
ignoredisk --only-use=sda
clearpart --none --initlabel
text
repo --name="AppStream" --baseurl=file:///run/install/repo/AppStream
cdrom
keyboard --vckeymap=us --xlayouts='us'
lang en_US.UTF-8
...
part /boot --fstype="xfs" --ondisk=sda --size=512
part / --fstype="xfs" --ondisk=sda --size=15360
part /home --fstype="xfs" --ondisk=sda --size=10240
%post
sed -i "s/^.*requiretty/#Defaults requiretty/" /etc/sudoers
/bin/echo 'UseDNS no' >> /etc/ssh/sshd_config
47
56. VPC Gen2 Image Format
Custom Image Support for VPC Gen 2
You can create your own custom image, and import it to IBM Cloud™ Virtual Private Cloud infrastructure from
IBM Cloud Object Storage. Then, you can use your custom image to create new virtual server instances that
run on the KVM hypervisor.
This is the same type of image used for OpenShift Virtualization, OpenStack, KVM, RHV, etc.
Requirements
• Contains a single file or volume
• Is in qcow2 format
• Is cloud-init enabled
• The operating system is supported as a stock image operating system (including RHEL 7/8, Windows 2012
R2 and 2016)
• Size doesn’t exceed 100 GB
48