2. Agenda
• About AVG
• AVG
• AVG Goals
• Where We Started
• AVG Infrastructure Layers
• Production Architecture
• OpenStack Architecture
• Model Driven CI/CD
• Stagging Deployment Process Comparison
3. About AVG Technologies
• internet security, performance optimization, and personal privacy and
identity protection applications
• top global antivirus company
• over 202 million active users used AVG´s software products and services
• products distributed over 100 countries
4. AVG (Where we started)
• IT Silos (different departments, technologies, domain specialists)
• Manual deployment processes
• Impossible to make frequent changes
• Vendor specific technologies (VMware, Cisco, etc.)
• Insuficcient APIs
• Legacy virtualize architecture with VMware vCenter, VLANs and Fibre
Channel
• No time for innovations
6. AVG Goals
• Remove Vendor Lock-in
• Reuse current Hardware Infrastructure with minimum intial costs
• Automate internal deployment processes (speed and complexity)
• Self-service tool for application life cycle management
• Robust Automation & Orchestration
• Seamless On-Demand Capacity Fulfillment
• Adopt Open Source Solutions based on OpenStack
7. AVG Infrastructure Layers
Server Virtualization
Network Virtualization
Infrastructure Orchestration
Infrastructure Service
Server & Apps
8. Neutron SDN solution
• All clouds are about networking
• Key and the most crucial component of OpenStack
• High Availability, Scalability, Migration, Multi-tenancy,
Performance, Security
• LBaaS, FWaaS, Service Chainning
• Possible solutions:
• Vanilla Neutron
• Cisco APIC
• VMWare NSX
• Juniper Contrail
9. AVG PoC findings
• Live Migration VM
• Production instances booted from volume – Hitachi VSP driver
• Automatic DNS registration
• OpenContrail DNS – Virtual, Tenant
• Glance image repository stored at EMC NFS
• Heat orchestration
Deployment description
High Availability
Compute Management
Dell Chassis
Prague DC
Storage Management
Software defined
Current Hitachi storage used
Dynamic creating and attaching
Network Management
Software Defined
Current Cisco Network used
Automatic DNS registration
Software Load Balancers
Network Policies
Security Groups
Public IP management
Traffic Monitoring
User Dashboard
Fully customizable
Resource Orchestration
AVG development environment automatic deployment
Identity Management
Multi-tenant environment
Development Access
REST APIs
Completely under Salt configuration management