AW
Uploaded byArne Wiebalck
PPTX, PDF171 views

Operational War Stories from 5 Years of Running OpenStack in Production

The document outlines Arne Wiebalck's experiences and challenges from five years of operating OpenStack at CERN, which is critical for managing extensive computational resources for experiments. It discusses issues like performance regressions, scaling challenges, and the need for continuous upgrades while achieving significant milestones such as provisioning 300k cores and managing substantial data volumes. The presentation emphasizes the evolution and improvements in CERN's IT infrastructure through OpenStack, enabling a more agile and efficient system.

Embed presentation

Download to read offline
Operational War Stories from 5 Years of Running OpenStack in Production Arne Wiebalck, CERN OpenStack Summit, Vancouver, May 2018 (R)Evolution in CERN IT:
CERN: Understand the mysteries of the universe! Arne Wiebalck: Operational War Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 2 Large Hadron Collider • Largest machine ever built by mankind! • 100m underground • 27km circumference • Protons do 11’000 turns/sec!
CERN: Understand the mysteries of the universe! Arne Wiebalck: Operational War Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 3 Four main detectors • Positioned at interaction points • ~10’000 tons heavy • Handling ~1’000’000 collisions/sec • Selecting ~200 events (few GB/sec) Note the physicist for scale!
CERN: Understand the mysteries of the universe! Arne Wiebalck: Operational War Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 4 home.cern Mysteries Challenges Setbacks Achievements Distributed analysis - 170 data centers worldwide - 800k cores, ~0.9EB on disk/tape 90% of CERN’s Compute Resources are delivered on top of OpenStack
5 Arne Wiebalck: Operational War Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 Running OpenStack at CERN in production during the past 5 years … Mysteries Challenges Setbacks Achievements
Mysteries? 6 Arne Wiebalck: Operational War Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 • Innocent instances being killed …? - init script sending SIGTERM to wrong PID • Host shut down shortly after boot …? - IPMI bypass upset nova’s power state synchronization • Deletions grinding Cinder to a halt …? - “In-place upgrades are evil!” • Bare metal database losing entries …? - everyone has mixed up dev and prod once • Upgrades before the upgrade …? - some have even mixed up dev and prod twice  • No monitoring when doing Manila tests…? - reduce logging when launching 10k pods! • Volume data loss on reboot …? After a reboot, a user reported all data disappeared from a mounted volume. The volume was attached and mounted. $ df –h Filesystem Size Used Avail Use% Mounted on … /dev/vdb 3.5G 0 3.5G 0% /mnt … $ cat /etc/fstab # # /etc/fstab # # Accessible filesystems are maintained under '/dev/disk' # See man pages fstab(5), findfs(8), mount(8) and/or blkid(8) # … /dev/vdb /mnt/myvolume tmpfs defaults 1 2 …
Challenges! 7 Arne Wiebalck: Operational War Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 • Scaling an ever-growing service - To 300k cores and ~38’000 instances, cells v1/v2 - Automate and outsource: workflow engines • Continuously upgrading - 10+ projects times 2 releases/year - Operating systems upgrades • Deal with team turn-over - Around 15 members, but 50+ contributors in total! • Reboot 9k hosts w/ 35’000 VMs! - Triggered by Spectre/Meltdown • Fix virtual-to-physical performance gap Up to 20% loss on large VMs! “Tuning”: KSM*, EPT, pinning, … 10% Compare with Hyper-V: no issue ... NUMA! Numa-awares & node pinning ... 3%! Rolled out to our batch farm ...  *KSM on/off: beware of the memory reclaim! VM Before After 4x 8 7.8% 2x 16 16% 1x 24 20% 5% 1x 32 20% 3%
A Setback … Performance regression 8 Arne Wiebalck: Operational War Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 After roll-out and recreation of thousands of instances we received reports about (a few) extremely slow instances! VMs looked OK ... Hosts: 30-50% load, 100k IRQs/sec (TLB)! “EPT off” side-effect! 2MB huge pages Slipped testing, required new campaign 
(Some) Achievements! 9 Arne Wiebalck: Operational War Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 • 300k cores provisioned to experiments and services • 9000 hosts with 40 h/w types integrated into the service • Deployment across two data centers, 23ms apart • Migration of 1000s of VMs due to hardware retirement • 2M requests handled by a Magnum K8s cluster • Sustained VM creation/deletion rate: every 10 secs • Support use cases from number crunching to hotel bookings • Service runs on virtual machines itself • 5’000 volumes with >.5PB of data • Many contributions upstream • Close to 10 million instances created in total • Running Nova Queens with multiple cells in v2 • … Decided to move to an Agile Infra in 2012 OpenStack one of the cornerstones “All services shall be virtual!” Managed the increasing demand for resources with a constant team size! Reduced the provisioning cycle from months to minutes! Established single interface for compute resource provisioning! Enabled the (R)Evolution in CERN IT!
Operational War Stories from 5 Years of Running OpenStack in Production

More Related Content

PPTX
The OpenStack Cloud at CERN
byArne Wiebalck
 
PDF
Unveiling CERN Cloud Architecture - October, 2015
byBelmiro Moreira
 
PDF
Cern Cloud Architecture - February, 2016
byBelmiro Moreira
 
PDF
Multi-Cell OpenStack: How to Evolve Your Cloud to Scale - November, 2014
byBelmiro Moreira
 
PDF
10 Years of OpenStack at CERN - From 0 to 300k cores
byBelmiro Moreira
 
PDF
Deep Dive Into the CERN Cloud Infrastructure - November, 2013
byBelmiro Moreira
 
PPTX
Integrating Bare-metal Provisioning into CERN's Private Cloud
byArne Wiebalck
 
PDF
Tips Tricks and Tactics with Cells and Scaling OpenStack - May, 2015
byBelmiro Moreira
 
The OpenStack Cloud at CERN
byArne Wiebalck
 
Unveiling CERN Cloud Architecture - October, 2015
byBelmiro Moreira
 
Cern Cloud Architecture - February, 2016
byBelmiro Moreira
 
Multi-Cell OpenStack: How to Evolve Your Cloud to Scale - November, 2014
byBelmiro Moreira
 
10 Years of OpenStack at CERN - From 0 to 300k cores
byBelmiro Moreira
 
Deep Dive Into the CERN Cloud Infrastructure - November, 2013
byBelmiro Moreira
 
Integrating Bare-metal Provisioning into CERN's Private Cloud
byArne Wiebalck
 
Tips Tricks and Tactics with Cells and Scaling OpenStack - May, 2015
byBelmiro Moreira
 

What's hot

PPTX
The OpenStack Cloud at CERN - OpenStack Nordic
byTim Bell
 
PPTX
CERN User Story
byTim Bell
 
PDF
TripleO
byKiran Murari
 
PDF
CERN OpenStack Cloud Control Plane - From VMs to K8s
byBelmiro Moreira
 
PDF
Evolution of Openstack Networking at CERN
byBelmiro Moreira
 
PDF
Meetup 23 - 01 - The things I wish I would have known before doing OpenStack ...
byVietnam Open Infrastructure User Group
 
PDF
Moving from CellsV1 to CellsV2 at CERN
byBelmiro Moreira
 
PPTX
OpenStack QA Tooling & How to use it for Production Cloud Testing | Ghanshyam...
byVietnam Open Infrastructure User Group
 
PPTX
Manila on CephFS at CERN (OpenStack Summit Boston, 11 May 2017)
byArne Wiebalck
 
PDF
CPU Optimizations in the CERN Cloud - February 2016
byBelmiro Moreira
 
PDF
Future Science on Future OpenStack
byBelmiro Moreira
 
PPTX
20161025 OpenStack at CERN Barcelona
byTim Bell
 
PDF
Autoscaling OpenStack Natively with Heat, Ceilometer and LBaaS
byShixiong Shang
 
PPTX
OpenContrail Implementations
byJakub Pavlik
 
PDF
Containers on Baremetal and Preemptible VMs at CERN and SKA
byBelmiro Moreira
 
PPTX
20170926 cern cloud v4
byTim Bell
 
PPTX
20150924 rda federation_v1
byTim Bell
 
PPTX
(R)Evolution in the CERN IT Department: A 5 year perspective on the Agile Inf...
byArne Wiebalck
 
PPTX
Learning to Scale OpenStack
byRainya Mosher
 
PDF
OpenStack @ CERN, by Tim Bell
byAmrita Prasad
 
The OpenStack Cloud at CERN - OpenStack Nordic
byTim Bell
 
CERN User Story
byTim Bell
 
TripleO
byKiran Murari
 
CERN OpenStack Cloud Control Plane - From VMs to K8s
byBelmiro Moreira
 
Evolution of Openstack Networking at CERN
byBelmiro Moreira
 
Meetup 23 - 01 - The things I wish I would have known before doing OpenStack ...
byVietnam Open Infrastructure User Group
 
Moving from CellsV1 to CellsV2 at CERN
byBelmiro Moreira
 
OpenStack QA Tooling & How to use it for Production Cloud Testing | Ghanshyam...
byVietnam Open Infrastructure User Group
 
Manila on CephFS at CERN (OpenStack Summit Boston, 11 May 2017)
byArne Wiebalck
 
CPU Optimizations in the CERN Cloud - February 2016
byBelmiro Moreira
 
Future Science on Future OpenStack
byBelmiro Moreira
 
20161025 OpenStack at CERN Barcelona
byTim Bell
 
Autoscaling OpenStack Natively with Heat, Ceilometer and LBaaS
byShixiong Shang
 
OpenContrail Implementations
byJakub Pavlik
 
Containers on Baremetal and Preemptible VMs at CERN and SKA
byBelmiro Moreira
 
20170926 cern cloud v4
byTim Bell
 
20150924 rda federation_v1
byTim Bell
 
(R)Evolution in the CERN IT Department: A 5 year perspective on the Agile Inf...
byArne Wiebalck
 
Learning to Scale OpenStack
byRainya Mosher
 
OpenStack @ CERN, by Tim Bell
byAmrita Prasad
 

Similar to Operational War Stories from 5 Years of Running OpenStack in Production

PPTX
OpenStack at CERN : A 5 year perspective
byTim Bell
 
PDF
Openstackoverview-DEC2013
byMichael Lessard
 
PDF
OSDC 2015: Martin Gerhard Loschwitz - Kristian Köhntopp | 45 Minutes of OpenS...
byNETWAYS
 
PDF
Openstack Pakistan Workshop (intro)
byAffan Syed
 
PPTX
Introduction to openstack
byYaniv Zadka
 
PPTX
Introduction To OpenStack
byHaim Ateya
 
PPTX
Power of OpenStack & Hadoop
byTuan Yang
 
PDF
Introduction to OpenStack Storage
byNetApp
 
PPTX
Introduction to Orchestration and DevOps with OpenStack
byAbderrahmane TEKFI
 
PDF
Openstack 101 by Jason Kalai
byMyNOG
 
PPTX
Dev Ops Geek Fest: Automating the ForgeRock Platform
byForgeRock
 
PDF
OSDC 2015: Martin Gerhard Loschwitz - Kristian Köhntopp | 45 Minutes of OpenS...
byNETWAYS
 
PPT
Openstack presentation
bySankalp Jain
 
PDF
OpenStack Toronto Q2 MeetUp - June 1st 2017
byStacy Véronneau
 
PPTX
OpenStack in the Enterprise
byTesora
 
PDF
Business Intelligent
byTuan Luong
 
PPTX
Oct meetup open stack 101 clean
bybenrodrigue
 
PPTX
Openstack 101
byJason Kalai Arasu
 
PPTX
OpenStack at EBSCO
byTesora
 
PDF
Introduction to OpenStack : Barcamp Bangkhen 2016
byOpsta
 
OpenStack at CERN : A 5 year perspective
byTim Bell
 
Openstackoverview-DEC2013
byMichael Lessard
 
OSDC 2015: Martin Gerhard Loschwitz - Kristian Köhntopp | 45 Minutes of OpenS...
byNETWAYS
 
Openstack Pakistan Workshop (intro)
byAffan Syed
 
Introduction to openstack
byYaniv Zadka
 
Introduction To OpenStack
byHaim Ateya
 
Power of OpenStack & Hadoop
byTuan Yang
 
Introduction to OpenStack Storage
byNetApp
 
Introduction to Orchestration and DevOps with OpenStack
byAbderrahmane TEKFI
 
Openstack 101 by Jason Kalai
byMyNOG
 
Dev Ops Geek Fest: Automating the ForgeRock Platform
byForgeRock
 
OSDC 2015: Martin Gerhard Loschwitz - Kristian Köhntopp | 45 Minutes of OpenS...
byNETWAYS
 
Openstack presentation
bySankalp Jain
 
OpenStack Toronto Q2 MeetUp - June 1st 2017
byStacy Véronneau
 
OpenStack in the Enterprise
byTesora
 
Business Intelligent
byTuan Luong
 
Oct meetup open stack 101 clean
bybenrodrigue
 
Openstack 101
byJason Kalai Arasu
 
OpenStack at EBSCO
byTesora
 
Introduction to OpenStack : Barcamp Bangkhen 2016
byOpsta
 

Recently uploaded

PDF
Real-Time Data Insight Using Microsoft Forms for Business
byElevate
 
PDF
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
PPTX
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
PDF
December Patch Tuesday
byIvanti
 
PPTX
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
PDF
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
PDF
Unser Jahresrückblick – MarvelClient in 2025
bypanagenda
 
PDF
Vibe Coding vs. Spec-Driven Development [Free Meetup]
byHaim Michael
 
PDF
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
PDF
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
PDF
API-First Architecture in Financial Systems
bycyy111112
 
PPTX
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 
PPTX
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
PPTX
Data Privacy and Protection: Safeguarding Information in a Connected World
byYasir Naveed Riaz
 
PDF
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 
PDF
Day 1 - Cloud Security Strategy and Planning ~ 2nd Sight Lab ~ Cloud Security...
by2nd Sight Lab
 
PDF
Cybersecurity: Safeguarding Digital Assets
byYasir Naveed Riaz
 
PDF
Day 5 - Red Team + Blue Team in the Cloud - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PPTX
Protecting Data in an AI Driven World - Cybersecurity in 2026
byYasir Naveed Riaz
 
PPTX
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 
Real-Time Data Insight Using Microsoft Forms for Business
byElevate
 
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
December Patch Tuesday
byIvanti
 
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
Unser Jahresrückblick – MarvelClient in 2025
bypanagenda
 
Vibe Coding vs. Spec-Driven Development [Free Meetup]
byHaim Michael
 
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
API-First Architecture in Financial Systems
bycyy111112
 
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
Data Privacy and Protection: Safeguarding Information in a Connected World
byYasir Naveed Riaz
 
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 
Day 1 - Cloud Security Strategy and Planning ~ 2nd Sight Lab ~ Cloud Security...
by2nd Sight Lab
 
Cybersecurity: Safeguarding Digital Assets
byYasir Naveed Riaz
 
Day 5 - Red Team + Blue Team in the Cloud - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Protecting Data in an AI Driven World - Cybersecurity in 2026
byYasir Naveed Riaz
 
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 

Operational War Stories from 5 Years of Running OpenStack in Production

  • 1.
    Operational War Storiesfrom 5 Years of Running OpenStack in Production Arne Wiebalck, CERN OpenStack Summit, Vancouver, May 2018 (R)Evolution in CERN IT:
  • 2.
    CERN: Understand themysteries of the universe! Arne Wiebalck: Operational War Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 2 Large Hadron Collider • Largest machine ever built by mankind! • 100m underground • 27km circumference • Protons do 11’000 turns/sec!
  • 3.
    CERN: Understand themysteries of the universe! Arne Wiebalck: Operational War Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 3 Four main detectors • Positioned at interaction points • ~10’000 tons heavy • Handling ~1’000’000 collisions/sec • Selecting ~200 events (few GB/sec) Note the physicist for scale!
  • 4.
    CERN: Understand themysteries of the universe! Arne Wiebalck: Operational War Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 4 home.cern Mysteries Challenges Setbacks Achievements Distributed analysis - 170 data centers worldwide - 800k cores, ~0.9EB on disk/tape 90% of CERN’s Compute Resources are delivered on top of OpenStack
  • 5.
    5 Arne Wiebalck: OperationalWar Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 Running OpenStack at CERN in production during the past 5 years … Mysteries Challenges Setbacks Achievements
  • 6.
    Mysteries? 6 Arne Wiebalck: OperationalWar Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 • Innocent instances being killed …? - init script sending SIGTERM to wrong PID • Host shut down shortly after boot …? - IPMI bypass upset nova’s power state synchronization • Deletions grinding Cinder to a halt …? - “In-place upgrades are evil!” • Bare metal database losing entries …? - everyone has mixed up dev and prod once • Upgrades before the upgrade …? - some have even mixed up dev and prod twice  • No monitoring when doing Manila tests…? - reduce logging when launching 10k pods! • Volume data loss on reboot …? After a reboot, a user reported all data disappeared from a mounted volume. The volume was attached and mounted. $ df –h Filesystem Size Used Avail Use% Mounted on … /dev/vdb 3.5G 0 3.5G 0% /mnt … $ cat /etc/fstab # # /etc/fstab # # Accessible filesystems are maintained under '/dev/disk' # See man pages fstab(5), findfs(8), mount(8) and/or blkid(8) # … /dev/vdb /mnt/myvolume tmpfs defaults 1 2 …
  • 7.
    Challenges! 7 Arne Wiebalck: OperationalWar Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 • Scaling an ever-growing service - To 300k cores and ~38’000 instances, cells v1/v2 - Automate and outsource: workflow engines • Continuously upgrading - 10+ projects times 2 releases/year - Operating systems upgrades • Deal with team turn-over - Around 15 members, but 50+ contributors in total! • Reboot 9k hosts w/ 35’000 VMs! - Triggered by Spectre/Meltdown • Fix virtual-to-physical performance gap Up to 20% loss on large VMs! “Tuning”: KSM*, EPT, pinning, … 10% Compare with Hyper-V: no issue ... NUMA! Numa-awares & node pinning ... 3%! Rolled out to our batch farm ...  *KSM on/off: beware of the memory reclaim! VM Before After 4x 8 7.8% 2x 16 16% 1x 24 20% 5% 1x 32 20% 3%
  • 8.
    A Setback …Performance regression 8 Arne Wiebalck: Operational War Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 After roll-out and recreation of thousands of instances we received reports about (a few) extremely slow instances! VMs looked OK ... Hosts: 30-50% load, 100k IRQs/sec (TLB)! “EPT off” side-effect! 2MB huge pages Slipped testing, required new campaign 
  • 9.
    (Some) Achievements! 9 Arne Wiebalck:Operational War Stories from 5 Years of Running OpenStack, OpenStack Summit, Vancouver 2018 • 300k cores provisioned to experiments and services • 9000 hosts with 40 h/w types integrated into the service • Deployment across two data centers, 23ms apart • Migration of 1000s of VMs due to hardware retirement • 2M requests handled by a Magnum K8s cluster • Sustained VM creation/deletion rate: every 10 secs • Support use cases from number crunching to hotel bookings • Service runs on virtual machines itself • 5’000 volumes with >.5PB of data • Many contributions upstream • Close to 10 million instances created in total • Running Nova Queens with multiple cells in v2 • … Decided to move to an Agile Infra in 2012 OpenStack one of the cornerstones “All services shall be virtual!” Managed the increasing demand for resources with a constant team size! Reduced the provisioning cycle from months to minutes! Established single interface for compute resource provisioning! Enabled the (R)Evolution in CERN IT!