Upload
duongdung
View
224
Download
0
Embed Size (px)
Citation preview
Introduction to
Software Defined Infrastructure
SUSE OpenStack Cloud
SUSE CaaS Platform
Matthias G. Eckermann
Director Product Management SUSE Linux Enterprise
Helsinki, 2018-03-08
2
SUSE Software-defined Infrastructure
and Application Delivery Approach Application Delivery
Physical Infrastructure: Server, Switches, Storage
Public Cloud
SUSE Cloud Service Provider Program
Container ManagementSUSE CaaS Platform
StorageSUSE Enterprise
Storage
NetworkingSDN and NFV
ComputeVirtual Machine &
Container
Operating SystemSUSE Linux Enterprise Server
Platform as a ServiceSUSE Cloud Application Platform
Private Cloud / IaaSSUSE OpenStack Cloud
SUSE Manager
SUSE OpenStack
Cloud Monitoring
Infrastructure &
Lifecycle
Management
Software-Defined Infrastructure
3
What is SUSE OpenStack Cloud
• You know of Cloud Compute right?
Maybe you use AWS or Azure?
• Allowing pay-as-you-go model for IT infrastructure and
toward dynamic software-defined service delivery.
• But you may need a capital investment that resides in
your control domain (data center).
• But need the same multi-tenant, agile, cloud scale
characteristics for this cloud service.
• That is where SUSE OpenStack Cloud comes in.
4
Why OpenStack?
• OpenStack is an open source software platform for cloud
computing. Mostly deployed as infrastructure-as-a-service
(IaaS), whereby virtual servers and other resources are
made available to customers.
• Manages multi-vendor hardware pools of processing,
storage and networking resources throughout a data center.
• Managed through a web-based dashboard, command-line
tools, or via RESTful web services.
• The OpenStack Foundation began managing
Openstack in 2010.
• More than 500 companies have joined the project.
5
How SUSE Works in OpenStack
• This is great with Cloud Native because you can
not only orchestrate VM’s but also Bare Metal and
containers.
• But why not manage the more traditional
workloads in your environments?
• We influence the leadership (Alan Clark and
Helion).
• Give back: our message of HA for the
Cloud was critical.
• It also helps that SUSE is in open source
generally, Linux, KVM, Xen, Networking, Storage
etc.
6
Scheduler
Hypervisor Choice and SupportInvestment protection and enhanced value
Deployment
UI
Admin Server
SUSE Linux Enterprise
Chef Server
Crowbar
Software mirror
DHCP/TFTP
Control Node
SUSE Linux Enterprise
Database
Message queue
Identity
Image store
Cinder
Neutron
Dashboard
Scheduler
OtherCloud UI
OpenStack compute
z/VM
Hyper-V
OpenStack compute
KVM/XEN/
Docker
OpenStack
Commute
SUSE
OpenStack
Monitoring
z/VM
OpenStack
Commute
Vmware Proxy
OpenStack
Commute +
7
High-Availability OpenStack InfrastructureBecause downtime is not an option
HA Proxy
Node 1 Node 2 Node 3
COROSYNC
PACEMAKER
Services Cluster
SUSE Linux
KVM or Xen
OpenStack compute
PACEMAKER REMOTE
SUSE Linux
KVM or Xen
OpenStack compute
PACEMAKER REMOTE
SUSE Linux
KVM or Xen
OpenStack compute
PACEMAKER REMOTE
SUSE Linux
KVM or Xen
OpenStack compute
PACEMAKER REMOTE
PACEMAKER
Keep my workload runningKeep my cloud running
8
SUSE OpenStack Cloud 7: Project Coverage
Docs
OpenStack
Ansible
Shared
Libraries
Compute
Service
Orchest.
File-Share
Service
SDN
Object
Storage
Service
Big Data
Service
App Catalog
Block Storage
Service
Pluggable
Authent.
Bare Metal
Provision
Self-Service
Dashboard
Template
and Image
Repository
Rally
DNS Service
Kolla
DBaas
Telemetry
Caas
Secure/Key
Vault
OpenStack
Client (OSC)
Kuryr
RefStack
Tempest
Identity
Management
New
Full Support
Tech Preview
Package Only
Under
Evaluation
9
This Section Covered:
• SUSE is the most experienced vendor in delivering open source IaaS
Clouds with OpenStack.
• We are a key representative on behalf of any customer in that community.
• It is all built on core SUSE technology and we bring value to you.
• We have a mature, powerful, replicable deployment technology providing
broad support of other technologies.
• SUSE has augmented this with newer powerful capabilities. Be that with
HA in the Compute Plane, project support or SUSE OpenStack Cloud
Monitoring.
• The real value to you is what you can deliver with Software-defined
Infrastructure service delivery.
10
SUSE OpenStack Cloud Version 7Foundation for software-defined data centers
Business
oriented release
cycle & longer
support
The best
interoperability
Smooth
upgrades
Leading support
for the entire
OpenStack cloud
platform
The widest
hypervisor
support
Fast & easy
setup and
management
Rock-solid
reliability
11
2017 2018 2019 2020
SUSE OpenStack Cloud
v7
v8
v9
Built On• OpenStack Newton release
• SUSE Linux Enterprise Server
12 SP2
New or Expanded Services• Magnum & Kubernetes support
for container orchestration
• Manila integration with CephFS
• Physical server as a Service**
Operational Enhancements• SUSE OpenStack Cloud
Monitoring
v7
Built On• OpenStack Pike release
• SUSE Linux Enterprise Server 12
SP3
New or Expanded Services• SUSE Cloud Application Platform
integration
• Physical server as a Service (Ironic)
• SDN support for NSX-V
• Dual lifecycle manager options
Operational Enhancements• Non-disruptive upgrade to v8
• Planning and pre-install validation
• Simple deployment UI
• Multi-region scaling (intra-DC) –
100 nodes per region
• Monitor capacity and performance
• 3-year support
Built On• OpenStack Rocky release
• SUSE Linux Enterprise Server 15
• Scalability Enhancements
New or Expanded Services• Arm control plane
• Unified lifecycle manager
• SUSE Cloud Application Platform integration
improvements
• SUSE CaaS Platform integration
improvements
Operational Enhancements• Fully containerized control plane
• Multiple data center support Improvements
• Cloud monitoring
• Suggestion-based remediation
• Reporting extensions
• Event correlation
• Monitoring of containers
• Alternative authentication
Built on• OpenStack Pike release
• SUSE Linux Enterprise Server 12 SP3
New or Expanded Services• IBM s390x control plane
• IBM s390x KVM support
• Arm compute nodes**
• SDN support for NSX-T
• SDN support for Cisco ACI
• SDN Nuage support
• SDN Juniper Contrail integration
• OpenDaylight integration
• OPNFV framework integration
Operational Enhancements• Migrate to Nextgen lifecycle tool
• Lifecycle tools improvements
• Cloud monitoring tenant support
v8 v8 Updates v9
* Information is forward looking and subject to change at any time.
** Items are tech preview
12
SUSE Software-defined Infrastructure
and Application Delivery Approach Application Delivery
Physical Infrastructure: Server, Switches, Storage
Public Cloud
SUSE Cloud Service Provider Program
Container ManagementSUSE CaaS Platform
StorageSUSE Enterprise
Storage
NetworkingSDN and NFV
ComputeVirtual Machine &
Container
Operating SystemSUSE Linux Enterprise Server
Platform as a ServiceSUSE Cloud Application Platform
Private Cloud / IaaSSUSE OpenStack Cloud
SUSE Manager
SUSE OpenStack
Cloud Monitoring
Infrastructure &
Lifecycle
Management
Software-Defined Infrastructure
13
What are Containers?
A package/image that can be deployed anywhere (that’s running a Linux
Kernel)
Developers create a layered image of their application that contains
everything their application requires to run on top of a base OS layer
A container image will be able to be built once and run everywhere
Developers can focus on what they do best – development - opposed to
dealing with packaging or library dependency management
Operations can deploy an entire app stack in seconds as they don’t need to
worry about prerequisites
14
Host OS
Hypervisor
Guest
OSGuest
OS
Guest
OS
Server
VM VM VM
OS Kernel
Server
Container Runtime
What are Containers?
Making more efficient use of your server resources while empowering your development and operations staff
Deploying the same code to dev and prod
Easier for developers – creating a package with just the software needed to run
Can run anywhere – On Premise, Public Cloud or Private Cloud – It’s no difference!
15
How Do Containers Help Transform IT?
Accelerate
application
development and
delivery
Build and deliver
new cloud native
applications
Ease application
transformation
16
Without Containers
Isolated development environment
Small team builds a POC
POC hand over to Dev/Ops teams
One of the following issues is likely:
• POC doesn’t run in production/staging
• Development environment not easy to setup (different OS, different tools, missing packages)
POC can’t be safely used in production or
easily migrated to production
With Containers
Team creating POC can also deploy
POC deployed with containers
POC runs in a staging/production environment
New dev environments are easy to setup
Developers can continue using the preferred tools and OS
Happy Developers! Productive teams!
How Containers Ease App Development
Deploying a POC app using modern Ruby on Rails technology
17
Plan Code Test Release Deploy OperateBuild
Build and Deliver Cloud Native Applications
Instead of larger, monolithic services …
18
Plan Code Test Release Deploy OperateBuild
Smaller Codebase + Specialized Teams + Deconstructed Services
= Agile IT
= Opportunity!
Build and Deliver Cloud Native Applications
Increase agility with Microservices
19
Fast start/stop
Densification
In-place upgrades (we destroy and re-deploy)
Host OS
Hypervisor
Guest
OSGuest
OS
Guest
OS
Server
VM VM VM
OS Kernel
Server
Container Runtime
Build and Deliver Cloud Native Applications
Containers enable Microservices model
20
Deploying Microservices
Microservices help companies move faster. Containers make it work!
Without Containers
• Set up development environments
• Download, Run all services locally
• (Try to) keep all services up to date
• Check code against dependencies
• Submission of code becomes difficult
With Containers
• Containers are great for
Microservices
• Setup a development namespace
• Developers push code into
dedicated containers -> saves lot of
time
• No need to keep code locally
• Continuous Integration/Continuous
Development (CI/CD) run against all
services
22
Organizations Need Containers to be More Consumable
Container
Lifecycle
OrchestrationContainer
Microservices
Provision Manage Automate Host Services
23
Building a
containerized platform
& stack from the
ground up is not for
everyone
Container Services in the Public Cloud. Gartner 2017
25
What is SUSE CaaS Platform?
Speed application delivery to improve business agility
SUSE CaaS Platform is an enterprise class
container management solution that
enables IT and DevOps professionals to more
easily deploy, manage, and scale container-
based applications and services.
26
• Achieve faster time-to-value
• Simplify management of your
container platform
• Maximize return on your investment
3 Key Benefits
27
Achieve Faster Time-to-Value
Curated
Package
• Kubernetes
• Container engine;
Image registry
• SUSE MicroOS
• Open source technologies:
Helm, open interface
SUSE
Enterprise
Hardening &
Support
• Meet internal compliance
standards
• Assure reliable, scalable
and robust SUSE CaaS
Platform
28
Simplify Management of Your
Container Platform
Efficient
InstallationEasy
Scaling
Always
up-to-date
Easy setup of
Kubernetes
Mass deploy in
minutes
Manage
using CLI or
dashboard
Simplify with
deployment
profiles
Complete control on-
command updates
Unique rollback
capability by SUSE
MicroOS
29
Maximize ROI
Flexible
Platform
Designed
for Today &
Tomorrow
Cloud
Service
Economics
Run generic Linux
container, built on
any Linux
Deliver using
enterprise grade
SUSE MicroOS
Bank on technology
standards
(Kubernetes)
Upgrade to SUSE
Cloud Application
Platform
Offer container
services
Deploy on private
& public clouds
31
SUSE MicroOS for Hosting Containers
A purpose built operating system designed for running containers and
optimized for large deployments..
Contains everything you need for running containers in production
Key features include:
• An easy to manage/upgrade OS
• Easily setup/manage a cluster of nodes
• Use core SUSE Linux technologies,
such as btrfs, RPM, autoyast
• Scalable - up to thousands of nodes
• Transactional/Atomic updates
32
Kubernetes for Container Orchestration
Helps you deploy and run large numbers of containers at scale in a production
ready environment
Deploy
Manage
Scale
Clustered
Allows users to manage applications, not machines
• Complete container orchestration solution
• Open source
• Production grade
• Industry-leading container technology
• Designed by Google, now part of Cloud
Native Computing Foundation
33
Kubernetes Deployment is Not Easy
Kubernetes is great for container orchestration but is
notoriously hard to
• Set up/install
• Configure
• Update
• Manage
• Secure
SUSE CaaS Platform takes this pain away
What used to take hours for skilled engineers can be
done in minutes by junior administrators
34
SUSE CaaS Platform
Kubernetes Cluster
k8s
Master
k8s
Worker…
k8s
Master
k8s
Worker…
k8s
Worker
k8s
Worker…
Dashboard
Admin
Node
35
HelmPackage management for Kubernetes
What is Helm? • Tool to manage Kubernetes application
• Streamlines installation and management
• It’s like ‘zypper’ for Kubernetes
• Helm has two parts: a client (helm) and a server (tiller).
• Tiller runs inside of Kubernetes cluster, and manages
releases (installations) of charts*
• During SUSE CaaS Platform set up the server can be
installed on the Kubernetes cluster and then Helm can be
used to deploy containerized applications.
Why Helm? • Ability to deploy applications from SUSE maintained Helm
charts or from 3rd party sources
• Official tool to deploy containerized products such as SUSE
Cloud Application Platform
• Easy to integrate with SUSE CaaS Platform* “Helm Chart” is the Kubernetes equivalent of an RPM file
36
2017 2018 2019 2020
SUSE CaaS Platform
v1
v2
v2.x
v3
v3+
Container Host OS
(MicroOS)• Codebase: SUSE Linux
Enterprise 12 SP2
• Designed for containers
and optimized for large
deployments
• Transactional updates
• Cluster dashboard for
deployment and update
Orchestration• Kubernetes v1.5: Complete
solution for container-based
workloads: deploy, scale,
manage
• Cmdline capabilities
• Docker open source
project version 1.12.6
Ecosystem• Private registry
• Persistent storage: local,
NFS, SUSE Enterprise
Storage
v1
Container Host OS • Codebase: SUSE Linux
Enterprise 15
• More flexible set up
• Enhance administration
dashboard
• Further scalability
Orchestration• Kubernetes version update
• Federation of Kubernetes
cluster
Ecosystem• Enable SUSE Enterprise
Storage on top of SUSE
CaaS Platform
• Additional container
images for workloads
• Improved processes for
maintenance
• 3+ years general support,
LTSS and overlap support
Container Host OS (MicroOS)• Codebase: SUSE Linux Enterprise 12 SP3
• Tested with 50 nodes
• Multi-master cluster set up, tested with 100
nodes
• Integration with public cloud (Amazon, Azure,
Google)***
• Enhance administration dashboard
Orchestration• Kubernetes 1.7
• Add Kubernetes DNS module (kube-dns)
• Docker open source project
version 1.12.6
Ecosystem• Helm for installing containerized applications
• Enable SUSE CAP on top of SUSE CaaS
Platform
Container Host OS• Codebase and packaging
optimized for transactional
updates
• HA setup of cluster
• Improve isolation options
• Container engine change
• Disaster recovery
• Single node install
Orchestration• Kubernetes version update
• Network options (CNI and
Callico or Cilium?)
Ecosystem• Smaller base container
images
• Additional container
images for workloads
Container Host OS • Codebase: SUSE Linux
Enterprise 12 SP3
• Tested with 200 nodes
• Enhance administration
dashboard
Orchestration• Kubernetes version update
• Kubernetes dashboard
(kube-dash)
• Multi-user / RBAC support
• Loadbalancer for
bare metal
Ecosystem• Private registry in
offline mode
• Trusted container images
v2 v2.x v3 v3+
* Information is forward looking and subject to change at any time.*** Item delivered post-GA
3939
Unpublished Work of SUSE LLC. All Rights Reserved.This work is an unpublished work and contains confidential, proprietary and trade secret information of SUSE LLC.
Access to this work is restricted to SUSE employees who have a need to know to perform tasks within the scope of their
assignments. No part of this work may be practiced, performed, copied, distributed, revised, modified, translated,
abridged, condensed, expanded, collected, or adapted without the prior written consent of SUSE.
Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability.
General DisclaimerThis document is not to be construed as a promise by any participating company to develop, deliver, or market a
product. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making
purchasing decisions. SUSE makes no representations or warranties with respect to the contents of this document, and
specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. The
development, release, and timing of features or functionality described for SUSE products remains at the sole discretion
of SUSE. Further, SUSE reserves the right to revise this document and to make changes to its content, at any time,
without obligation to notify any person or entity of such revisions or changes. All SUSE marks referenced in this
presentation are trademarks or registered trademarks of Novell, Inc. in the United States and other countries. All third-
party trademarks are the property of their respective owners.