Documente Academic
Documente Profesional
Documente Cultură
T4.1 Overview
T4.5 Self-service & PaaS
Fundamental physical Resource virtualisation Instrument and Monitor Resources Secure and Performant Resources Holistic Management of Resources
Composed of
T4.1A Resources
2. Storage:
Object and block level: data and VM image storage
3. Network:
Intra and Inter physical host virtual networks. Provisioning of related services (Firewall, DHCP, DNS) Integrate with T7.4 Network Services
Performance
There will be trade-offs
Typical example: with power savings
Intel Assets
T4.1A
Hypervisors: KVM, XEN, VMware, OS Containers (?) Resource management: FlexMigration, Apache Tashi & Zoni, OpenStack: Nova & Swift, OpenVswitch
T4.1C
Security: TXT, TPM, Trusted Compute Pools Performance: IOMMU, SR-IOV, VMDQ, IOLanes (?)
T4.1D
Management API: OCCI Service Interface Intel Web API SLA@SOI Messaging (XMPP, AMQP)
T4.1B
Monitoring: collectl, ganglia, IOLanes-developed kernel probes
Currently exposed by VmWare ESX (vMotion) & XEN (patch Apr 2010) Why? Reliable migrations
Implements QoS using Cgroups Large changes in scheduler for power-aware resource mgt*
Monitoring, QoS, Scheduler, OCCI Service manager enable an SLA-aware infrastructure service. Apache 2.0
Registers, configures and deploys clusters Converts existing virtual deployments to physical ones
Functionality:
Isolation Allocation Provisioning OOB Management
Components:
DHCP & DNS PXE & HTTP Image Store (NFS) Configurable switches Remote Access (iLO, DRAC, PDUs)
Storage
Volume controller SAN, iSCSI, Image Repository glance,
Networking
Number of modes: flat, flat DHCP and VLAN DHCP
Container Server:
Lists objects, listings are replicated using hash lists and shared high watermarks, DB replicator has responsibility
Account Reaper:
Removes data from deleted accounts in the background. Runs on the account server.
Updaters:
Load is high or failure conditions: replication is deprioritised. Updaters implement the eventual consistency characteristic of the system.
Auditors:
Logs and check for integrity. If corruption is found an auditor will replace from another replica.
Intercept point for work out of T8.1, T.8.1 Access Logs, Account Stats Log, supports log processing plugins performed on write requests to the account and container dbs requires synchronised time across proxy server(s) Upload is defaults to max 5GB Uploads can be segmented (client side chunking, multiple parallel connections) Download is unlimited (via segmentation)
TA4.1A OpenvSwitch
A L2/L3 Managed Distributed Virtual Switch Provides inter- and intra-physical host virtual networking capabilities
Allows for cross subnet migrations via virtualisation Allows for cross subnet vVLAN per customer
IPv6 Support Tunnelling (VPN, GRE) Per VM traffic policing NIC bonding 802.1ag link monitoring Fine-grained min/max rate QoS
*B. Pfaff, J. Pettit, T. Koponen, and K. Amidon, Extending networking into the virtualization layer, Proc. HotNets 09
T4.1B: Monitoring
Expose Metrics across all 3 types of Resources
Raw Metrics, no computed metrics (upper layers) Make accessible via T4.1D
Metrics will come from different systems (e.g. Ganglia, collectl) SLA@SOI monitoring source agnostic FP7 IOLanes kernel probes
Isolation offered by OpenvSwitch (see previous) IOMMU: I/O Memory Management Unit
Dedicates complete PCIe device to one VM, minimal hypervisor overhead. Need use case to motivate IOMMU - is this an edge case?
Dynamic Allocation of Graphics Processors based on work load type? Adding additional compute power to an existing VM?
* https://blueprints.launchpad.net/nova/+spec/trusted-computing-pools
Intel VMDq can provide hardware accelerated switching in the NIC (push fast paths into silicon) OpenvSwitchs Fast path can reside here
SR-IOV support in PCIe devices Device supports PFs and VFs PF full config and data VF only data, exposed as device
OVS:
Hardware & software Management via OVS
Impact:
Recommended by UK G-Cloud Only IaaS standard considered by NIST To be submitted to DMTF-CMWG, Work charter established Many implementations** Monitoring & SLA extensions DGSI, SLA@SOI OVF and JSON interop output of DMTF meeting (mid-may) Planned collaboration with FP7 SAIL focused on Networking OCCI over AMQP transport (REST does not mandate HTTP)
Upcoming
* A. Edmonds, T. Metsch, and A. Papaspyrou, Open Cloud Computing Interface in Data Management-related Setups, Springer Grid and Cloud Database Management, Apr. 2011. ** http://occi-wg.org/community/implementations/
Overarching Assets
Intel CloudBuilder
Library of infrastructure HOWTOs Avenue of dissemination for FI-ware
Reuse and extend with critical evaluation Influence standards and initiatives Drive by real world needs:
FI-ware partner project use cases Open data centre use cases
Create a basic framework to plug-in all our assets Most IaaS systems follow a similar pattern For this experiment lets use:
Tashi Nova Swift and for some balance: CloudFoundry
CloudFoundry Arch
Generalised Architecture
A start! Theres a place for all WP4 assets
Requests for Provisioning Monitoring CRUD Metrics Bus
Collect Metrics
Entr y Point
Resource Provider
Request Management Provisionings Service Consumer
Loose ends
How to characterise typical work loads, typical customer needs? (Guerilla Capacity Planning Method?) Source code - where? license? Non-viral please Packaging of outputs - all in one? runnable on a laptop? only in a massive DC? Probably More Testbeds - who has what? Some might be Dedicated WP4 F2F? redundant by Tues.
Cheers!
OCCI Features
Discovery system for supported Resources
Types (kind, mixins) offered for instantiation are advertised
Full CRUD on Resources and Links Resources are linkable (Link) Resources are actionable (Action) Batch atomic operations are supported (multipart) Current transport == HTTP, resources rendered in header or body
T4.5
T4.5
T4.4
T4.2
T4.1