Uploaded byesmerlinmiesesstudy
PDF, PPTX21 views

OpenStack Ironic: From Zero to “Pro”.pdf

OpenStack Ironic: From Zero to “Pro”.pdf

Embed presentation

Download as PDF, PPTX
OPENSTACK IRONIC: FROM ZERO TO “PRO” Aris Cahyadi Risdianto Singapore Institute of Technology (SIT) Huang Kang Individual Technical Contributor
Former Engineer & ICT professional for 8 years and involved in the design/ implementation/maintenance of ICT infrastructure for enterprise and service provider. Working on research and education of ICT infrastructure for over 12 years by building labs and testbeds leveraging open source software and project collaboration. ONF* Ambassador & Steering Team, Speaker at ONF Summit, KubeCon, FOSSASIA Summit, IEEE/ACM Conferences, IETF/APNIC/APAN Fellow, APNIC Community Trainer, and OpenInfra/CNCF ID Day Organizer. *) Now is part of LF
Disclaimer! ● This talk is our personal experiences in our previous role ● Nothing to do with current company or role ● We are not talking on behalf of our previous company ● It may not be a good example/experience! ● We are open to any discussion! ●
Day Zero to Production Day
Overview ● We ran our own private cloud infrastructure ● It used only for cybersecurity research and education (e.g., hacking, pentesting, cyber-range, DDoS, …) ● Our hardware spreaded over seven (7) of racks ● Hosted in a limited and protected hosting data center ● Consists of around 200 - 300 servers (i.e., low-end, mid-end, and high-end models)
Challenges ● Proprietary or highly-customized “open-source” baremetal provisioning system ● A problematic operational issues, inconsistent solutions ● Must be upgraded to OpenStack, but needs to keep same UI ● Old baremetal servers ( > 7 years old) ● No professional services, must be in-house develop
Helps are on the way! ● OpenStack docs is good, but it is very long/complex for Ironic ● Online discussion forum is very old and tight to the HW ● Example deployment configuration is not complete (only snapshot) ● Professional consultant offers help but we can’t utilize them ● Online assistance but unwilling/unable to access/check
Chameleon is Coming! Chameleon Testbed Team ● Kate Keahey ● Jason Anderson ● Mike Sherman ● Others https://www.chameleoncloud.org/
Progressing Better Than Nothing ● To install Chameleon-in-a-box to provision a single BM → 6 months ● To install a base openstack cluster with 3 controller, 2 compute, and 1 network for VM provisioning → 6 months ● To get first multiple baremetal provisioned → 6 months ● To integrate the backend and frontend → 6 months ● To test and provide user trial → 3 months
Solving the Technical Puzzles
Installation: DevStack to Chameleon ● DevStack is fast & easy → only work with emulated baremetal (VM with fake IPMI) ● Manual or script-based installation is possible → highly customized and high error-prone possibility ● Kolla-ansible is fast and scalable → issue with compatibility and stability for recurrence installation or update ● Juju + MAAS is easy and scalable → too many components and works only Ubuntu ● Chameleon-in-a-box works for baremetal physical hardware → not scalable (only in a single machine) ● Chameleon-in-a-box for cluster is used → too many additional (unused) packages, but got “unofficial” support :) SOLVING THE TECHNICAL PUZZLES
Integration: Frontend + BackEnd + API + Infrastructure Infrastructure OpenStack API Server Backend Server Front End (Web UI) Front End (Apps) Nova Neutron Cinder Ironic Glance OpenStack API Backend API (Proprietary) Existing Platform New CLI (Customized)* SOLVING THE TECHNICAL PUZZLES
Configuration: Kolla vs Chameleon YAML config SOLVING THE TECHNICAL PUZZLES Hundreds line codes vs few line codes!
User Experience: “Experiment” to “Stack” Source: https://ncl.sg/tutorials Stack Project/tenant State Stack Detail Stack Action (Start/Suspend/Delete) SOLVING THE TECHNICAL PUZZLES
Automation: From NS2 to Heat Template SOLVING THE TECHNICAL PUZZLES ● Different format but the same concept (node, image, network, …) ● No conversion tool is available, but it is not huge task
Lessons Learned
Networking is “Not” Working ● It combines of virtual and physical networking configuration: user space switch and physical port ● Different solutions: creating virtual ports for the bridge, use virtual/physical router, or totally “flat” network ● Be mindful other features such as DHCP relay, TFTP over HTTP, … ● Issue with multiple NICs baremetal → select and activate one MAC address DHCP/TFTP Container OVS SW Container Control ETH BM Bridge BM ETH Baremetal Physical Network OpenStack Services Network LESSON LEARNED
P@$$w0rd is not Acceptable for Baremetal ● Be mindful when enrolling the baremetal from OS CLI/API: ○ The IPMI password is typed in clear text ○ A special characters for IPMI password must be type with single quote ● Be mindful when configuring IPMI password in the BIOS ○ The IPMI password must be typed in (unable to copy and paste) ○ Some of the old IPMI didn’t accept a specific characters ○ Ensure the validity period of the IPMI password (new IPMI) LESSON LEARNED
To Build an Image != Use Built-in Image ● Two images are used in Ironic: deploy image and user image ● Deploy image is straightforward and no need to be customized ● Different built tools are available to build user image → many different options and configurations ● Some tools guide are outdated and not valid → official diskimage-builder is better but need to find correct options # ubuntu baremetal cloud-init dhcp-all-interfaces grub2 devuser LESSON LEARNED
BAREMETAL_CUSTOM is not Customizable ● Writing of the name is important → must be exact and in capital ● Specification options or metadatas are not important to match the hardware resources LESSON LEARNED
Others Things ● User image deployment: iSCSI vs Direct Deploy ● Baremetal cleaning: skip if not necessary or exclude large disk ● OpenStack cluster: rely on database cluster LESSON LEARNED
Acknowledgement Aris Cahyadi Risdianto Team Leader https://www.linkedin.com/in/ariscahyadirisdianto/ Huang Kang OpenStack + System Engineer https://www.linkedin.com/in/kang-huang-19b929289/ Felix Wong Infrastructure/HW Engineer https://www.linkedin.com/in/felixwongcw/ Thazin Hlaing Backend Developer/API Engineer https://www.linkedin.com/in/thazin-hlaing-1a372a7a/ Deepshikha Front-end Developer https://www.linkedin.com/in/deepshikha-121009/
Thank You! ariscahyadi.risdianto@singaporetech.edu.sg

More Related Content

PDF
Openstack devops challenges
byopenstackindia
 
PDF
Hitchhikers guide to open stack toolchains
bystagr_lee
 
PDF
10 Years of OpenStack at CERN - From 0 to 300k cores
byBelmiro Moreira
 
PDF
Public vs. Private Cloud Performance by Flex
byStackIQ
 
PDF
OpenstackOverview.pdf
byKevinBuck30
 
PPTX
Operating OpenStack on a Budget
bySusan Wu
 
PPTX
Operating OpenStack on a Budget
bySamir Ibradzic
 
PPT
Openstack devops challenges a journey from dump baremetal to functional ope...
byHarish Kumar
 
Openstack devops challenges
byopenstackindia
 
Hitchhikers guide to open stack toolchains
bystagr_lee
 
10 Years of OpenStack at CERN - From 0 to 300k cores
byBelmiro Moreira
 
Public vs. Private Cloud Performance by Flex
byStackIQ
 
OpenstackOverview.pdf
byKevinBuck30
 
Operating OpenStack on a Budget
bySusan Wu
 
Operating OpenStack on a Budget
bySamir Ibradzic
 
Openstack devops challenges a journey from dump baremetal to functional ope...
byHarish Kumar
 

Similar to OpenStack Ironic: From Zero to “Pro”.pdf

PDF
(SCALE 12x) OpenStack vs. VMware - A System Administrator Perspective
byStackStorm
 
PDF
Openstackoverview-DEC2013
byMichael Lessard
 
PDF
"OpenStack — more than just software". Tom Fifield, OpenStack
byYandex
 
PDF
Build cloud like Rackspace with OpenStack Ansible
byJirayut Nimsaeng
 
PDF
Minimal OpenStack LinuxCon NA 2015
bySean Dague
 
PDF
Automating hard things may 2015
byMark Baker
 
PDF
#SREcon Immutable Infrastructure: rethinking configuration mgmt
byrhirschfeld
 
PDF
SRECon 18 Immutable Infrastructure
byRackN
 
PPTX
Openstack
byBhavna Mor
 
PPTX
Open stack implementation
bySoumyajit Basu
 
PDF
Openstack In Action 1st Edition V K Cody Bumgardner
bypompefodge3d
 
PDF
Immutable Infrastructure & Rethinking Configuration - Interop 2019
byRackN
 
PPT
openstack-session.ppt
bykaushal76thakur
 
PPT
Openshift + Openstack + Fedora = Awesome
byMark Atwood
 
PDF
Colin McNamara - Surviving your first check-in: An engineers guide to contrib...
byShannon McFarland
 
PDF
OpenStack on AArch64
byLinuxCon ContainerCon CloudOpen China
 
PDF
Sanger OpenStack presentation March 2017
byDave Holland
 
PDF
Ammeon See OpenStack in Action
byAmmeon HR
 
PPTX
What is the OpenStack Platform? By Peter Dens - Kangaroot
byKangaroot
 
PDF
Leveraging CI/CD to improve open stack operation
byMaría Angélica Bracho
 
(SCALE 12x) OpenStack vs. VMware - A System Administrator Perspective
byStackStorm
 
Openstackoverview-DEC2013
byMichael Lessard
 
"OpenStack — more than just software". Tom Fifield, OpenStack
byYandex
 
Build cloud like Rackspace with OpenStack Ansible
byJirayut Nimsaeng
 
Minimal OpenStack LinuxCon NA 2015
bySean Dague
 
Automating hard things may 2015
byMark Baker
 
#SREcon Immutable Infrastructure: rethinking configuration mgmt
byrhirschfeld
 
SRECon 18 Immutable Infrastructure
byRackN
 
Openstack
byBhavna Mor
 
Open stack implementation
bySoumyajit Basu
 
Openstack In Action 1st Edition V K Cody Bumgardner
bypompefodge3d
 
Immutable Infrastructure & Rethinking Configuration - Interop 2019
byRackN
 
openstack-session.ppt
bykaushal76thakur
 
Openshift + Openstack + Fedora = Awesome
byMark Atwood
 
Colin McNamara - Surviving your first check-in: An engineers guide to contrib...
byShannon McFarland
 
OpenStack on AArch64
byLinuxCon ContainerCon CloudOpen China
 
Sanger OpenStack presentation March 2017
byDave Holland
 
Ammeon See OpenStack in Action
byAmmeon HR
 
What is the OpenStack Platform? By Peter Dens - Kangaroot
byKangaroot
 
Leveraging CI/CD to improve open stack operation
byMaría Angélica Bracho
 

Recently uploaded

PDF
Shear Strength of Soil (Direct shear test).pdf
byMahmoodKhalid11
 
PPTX
This Bearing Didn’t Fail Suddenly — How Vibration Data Predicts Failure Month...
byMaintWiz Technologies Private Limited
 
PDF
Ericsson 6230 Training Module Document.pdf
byMd Bellal Hossain
 
PPTX
Value engineering and cost analysis with case study
byhp9879098082
 
PDF
Computer Network Lab Manual ssit -kavya r.pdf or Computer Network Lab Manual ...
bykavya R
 
PDF
Infinite Sequence and Series: It Includes basic Sequence and Series
byDynamicDomain1
 
PDF
NS unit wise unit wise 1 -5 so prepare,.
bykumaransudhan1512
 
PPTX
Batch-1(End Semester) Student Of Shree Durga Tech. PPT.pptx
byrashesw1122s
 
PPTX
Designing Work for Humans, Not Machines: Human-Centered Maintenance Excellence
byMaintWiz Technologies Private Limited
 
PPT
Ceramic Matrix Composites Slide from Composite Materials
byUsman635773
 
PDF
Model QP 2025 scheme Q &A- Module 1 and 2.pdf
bySURESHA V
 
PPT
Oracle Advanced subquery and types of subquery
bytejaswinikulkarni549
 
PPTX
Fitting Infiltration Models to Infiltration using Excel (1).pptx
byTomNickoRivera1
 
PPTX
Unit 1_Importance of modelling(Object oriented concepts).pptx
byVidyaranichougule
 
PPTX
Presentation-WPS Office.pptx afgouvhyhgfccf
byEndaleTimerga
 
PPTX
Why TPM Succeeds in Some Plants and Struggles in Others | MaintWiz
byMaintWiz Technologies Private Limited
 
PDF
AWS Re:Invent 2025 Recap by FivexL - Guilherme, Vladimir, Andrey
byAndrey Devyatkin
 
PPTX
Basic Volume Mass Relationship and unit weight as function of volumetric wate...
byMahmoodKhalid11
 
PDF
Rajesh Prasad- Brief Profile with educational, professional highlights
byRajesh Prasad
 
PDF
PROBLEM SLOVING AND PYTHON PROGRAMMING UNIT 3.pdf
byA R SIVANESH M.E., QIP-PG (Cyber Security)., (Ph.D)
 
Shear Strength of Soil (Direct shear test).pdf
byMahmoodKhalid11
 
This Bearing Didn’t Fail Suddenly — How Vibration Data Predicts Failure Month...
byMaintWiz Technologies Private Limited
 
Ericsson 6230 Training Module Document.pdf
byMd Bellal Hossain
 
Value engineering and cost analysis with case study
byhp9879098082
 
Computer Network Lab Manual ssit -kavya r.pdf or Computer Network Lab Manual ...
bykavya R
 
Infinite Sequence and Series: It Includes basic Sequence and Series
byDynamicDomain1
 
NS unit wise unit wise 1 -5 so prepare,.
bykumaransudhan1512
 
Batch-1(End Semester) Student Of Shree Durga Tech. PPT.pptx
byrashesw1122s
 
Designing Work for Humans, Not Machines: Human-Centered Maintenance Excellence
byMaintWiz Technologies Private Limited
 
Ceramic Matrix Composites Slide from Composite Materials
byUsman635773
 
Model QP 2025 scheme Q &A- Module 1 and 2.pdf
bySURESHA V
 
Oracle Advanced subquery and types of subquery
bytejaswinikulkarni549
 
Fitting Infiltration Models to Infiltration using Excel (1).pptx
byTomNickoRivera1
 
Unit 1_Importance of modelling(Object oriented concepts).pptx
byVidyaranichougule
 
Presentation-WPS Office.pptx afgouvhyhgfccf
byEndaleTimerga
 
Why TPM Succeeds in Some Plants and Struggles in Others | MaintWiz
byMaintWiz Technologies Private Limited
 
AWS Re:Invent 2025 Recap by FivexL - Guilherme, Vladimir, Andrey
byAndrey Devyatkin
 
Basic Volume Mass Relationship and unit weight as function of volumetric wate...
byMahmoodKhalid11
 
Rajesh Prasad- Brief Profile with educational, professional highlights
byRajesh Prasad
 
PROBLEM SLOVING AND PYTHON PROGRAMMING UNIT 3.pdf
byA R SIVANESH M.E., QIP-PG (Cyber Security)., (Ph.D)
 

OpenStack Ironic: From Zero to “Pro”.pdf

  • 1.
    OPENSTACK IRONIC: FROMZERO TO “PRO” Aris Cahyadi Risdianto Singapore Institute of Technology (SIT) Huang Kang Individual Technical Contributor
  • 2.
    Former Engineer &ICT professional for 8 years and involved in the design/ implementation/maintenance of ICT infrastructure for enterprise and service provider. Working on research and education of ICT infrastructure for over 12 years by building labs and testbeds leveraging open source software and project collaboration. ONF* Ambassador & Steering Team, Speaker at ONF Summit, KubeCon, FOSSASIA Summit, IEEE/ACM Conferences, IETF/APNIC/APAN Fellow, APNIC Community Trainer, and OpenInfra/CNCF ID Day Organizer. *) Now is part of LF
  • 3.
    Disclaimer! ● This talkis our personal experiences in our previous role ● Nothing to do with current company or role ● We are not talking on behalf of our previous company ● It may not be a good example/experience! ● We are open to any discussion! ●
  • 4.
    Day Zero toProduction Day
  • 5.
    Overview ● We ranour own private cloud infrastructure ● It used only for cybersecurity research and education (e.g., hacking, pentesting, cyber-range, DDoS, …) ● Our hardware spreaded over seven (7) of racks ● Hosted in a limited and protected hosting data center ● Consists of around 200 - 300 servers (i.e., low-end, mid-end, and high-end models)
  • 6.
    Challenges ● Proprietary orhighly-customized “open-source” baremetal provisioning system ● A problematic operational issues, inconsistent solutions ● Must be upgraded to OpenStack, but needs to keep same UI ● Old baremetal servers ( > 7 years old) ● No professional services, must be in-house develop
  • 7.
    Helps are onthe way! ● OpenStack docs is good, but it is very long/complex for Ironic ● Online discussion forum is very old and tight to the HW ● Example deployment configuration is not complete (only snapshot) ● Professional consultant offers help but we can’t utilize them ● Online assistance but unwilling/unable to access/check
  • 8.
    Chameleon is Coming! ChameleonTestbed Team ● Kate Keahey ● Jason Anderson ● Mike Sherman ● Others https://www.chameleoncloud.org/
  • 9.
    Progressing Better ThanNothing ● To install Chameleon-in-a-box to provision a single BM → 6 months ● To install a base openstack cluster with 3 controller, 2 compute, and 1 network for VM provisioning → 6 months ● To get first multiple baremetal provisioned → 6 months ● To integrate the backend and frontend → 6 months ● To test and provide user trial → 3 months
  • 10.
  • 11.
    Installation: DevStack toChameleon ● DevStack is fast & easy → only work with emulated baremetal (VM with fake IPMI) ● Manual or script-based installation is possible → highly customized and high error-prone possibility ● Kolla-ansible is fast and scalable → issue with compatibility and stability for recurrence installation or update ● Juju + MAAS is easy and scalable → too many components and works only Ubuntu ● Chameleon-in-a-box works for baremetal physical hardware → not scalable (only in a single machine) ● Chameleon-in-a-box for cluster is used → too many additional (unused) packages, but got “unofficial” support :) SOLVING THE TECHNICAL PUZZLES
  • 12.
    Integration: Frontend +BackEnd + API + Infrastructure Infrastructure OpenStack API Server Backend Server Front End (Web UI) Front End (Apps) Nova Neutron Cinder Ironic Glance OpenStack API Backend API (Proprietary) Existing Platform New CLI (Customized)* SOLVING THE TECHNICAL PUZZLES
  • 13.
    Configuration: Kolla vsChameleon YAML config SOLVING THE TECHNICAL PUZZLES Hundreds line codes vs few line codes!
  • 14.
    User Experience: “Experiment”to “Stack” Source: https://ncl.sg/tutorials Stack Project/tenant State Stack Detail Stack Action (Start/Suspend/Delete) SOLVING THE TECHNICAL PUZZLES
  • 15.
    Automation: From NS2to Heat Template SOLVING THE TECHNICAL PUZZLES ● Different format but the same concept (node, image, network, …) ● No conversion tool is available, but it is not huge task
  • 16.
  • 17.
    Networking is “Not”Working ● It combines of virtual and physical networking configuration: user space switch and physical port ● Different solutions: creating virtual ports for the bridge, use virtual/physical router, or totally “flat” network ● Be mindful other features such as DHCP relay, TFTP over HTTP, … ● Issue with multiple NICs baremetal → select and activate one MAC address DHCP/TFTP Container OVS SW Container Control ETH BM Bridge BM ETH Baremetal Physical Network OpenStack Services Network LESSON LEARNED
  • 18.
    P@$$w0rd is notAcceptable for Baremetal ● Be mindful when enrolling the baremetal from OS CLI/API: ○ The IPMI password is typed in clear text ○ A special characters for IPMI password must be type with single quote ● Be mindful when configuring IPMI password in the BIOS ○ The IPMI password must be typed in (unable to copy and paste) ○ Some of the old IPMI didn’t accept a specific characters ○ Ensure the validity period of the IPMI password (new IPMI) LESSON LEARNED
  • 19.
    To Build anImage != Use Built-in Image ● Two images are used in Ironic: deploy image and user image ● Deploy image is straightforward and no need to be customized ● Different built tools are available to build user image → many different options and configurations ● Some tools guide are outdated and not valid → official diskimage-builder is better but need to find correct options # ubuntu baremetal cloud-init dhcp-all-interfaces grub2 devuser LESSON LEARNED
  • 20.
    BAREMETAL_CUSTOM is notCustomizable ● Writing of the name is important → must be exact and in capital ● Specification options or metadatas are not important to match the hardware resources LESSON LEARNED
  • 21.
    Others Things ● Userimage deployment: iSCSI vs Direct Deploy ● Baremetal cleaning: skip if not necessary or exclude large disk ● OpenStack cluster: rely on database cluster LESSON LEARNED
  • 22.
    Acknowledgement Aris Cahyadi Risdianto TeamLeader https://www.linkedin.com/in/ariscahyadirisdianto/ Huang Kang OpenStack + System Engineer https://www.linkedin.com/in/kang-huang-19b929289/ Felix Wong Infrastructure/HW Engineer https://www.linkedin.com/in/felixwongcw/ Thazin Hlaing Backend Developer/API Engineer https://www.linkedin.com/in/thazin-hlaing-1a372a7a/ Deepshikha Front-end Developer https://www.linkedin.com/in/deepshikha-121009/
  • 23.