Nicira chef webinar-merged

Speakers & Agenda

Rod StuhlmullerDirector of Product Marketing, Nicira/VMware

Nicira’s journey to the cloud & network virtualization

Stathy ToulomisSolutions Architect, Opscode

Opscode Chef overview and the benefits of IT infrastructure automation

Jacob CherkasCloud Solutions Architect, Nicira/VMware

Live demo of the Nicira private cloud, then open discussion on the use of

OpenStack, Chef and Network Virtualization for building a cloud.

The Journey to Our Own OpenStack Cloud

Primary Drivers

– Cost

– Agility

– Speed

Primary Roadblocks

– The network operational model

– Not the network itself

What we learned

– Individual habits, experience, perceptions and organizational changes can have significant impact

– Automation is critical

Our Cloud Objective

Increase Efficiency and Velocity

Our Cloud

L3, ECMPNon-blocking

No Oversubscription

Internet

On-Site Data Center Off-Site Data Center

Abstraction Layer

Physical Infrastructure

Cloud Environment

Virtual Infrastructure

Self-Service Web Interface

Programmatic (OpenStack API + NVP API)

A Complete, Isolated Lab in 50 Seconds

Location Independent

Lab 1 Lab 2 DC 1 DC 2

10.99.9.0/24 10.3.1.0/2410.3.3.0/2410.99.5.0/24

Virtual Lab

10.127.1.0/24

10.10.1.0/2410.10.2.0/24

192.168.1.0/24

Physical Compute, Storage, Network

Physical Compute, Network

Physical Compute, WAN, Network

Physical Compute, Storage, Network

Primary Drivers – Cost, Agility, Speed

Compute Cost

Before

Operations EfficiencyBusiness Velocity

Operational Efficiency and Business Velocity

Compute Cost

Before

Compute CostOperations EfficiencyBusiness Velocity

After

Operations EfficiencyBusiness Velocity

What We Learned

“Our cloud will make everything

faster and more efficient.”

Meet Duffie and Tim

Meet Duffie and Tim Before Cloud

– Network and Systems Administrator

– Master of Complexity

– Majority of time spend responding to infrastructure adds & changes that impact release schedule

– Viewed by R&D as a necessary evil

– Always requesting purchase of more compute and network capacity

After Cloud– Elevate or Terminate

– Becomes Cloud Architect

– Hero to R&D

– “Best decision I’ve ever made!”

Meet Duffie and Tim

Before Cloud– R&D Build Manager– Physical servers under his desk– Always requesting purchase of more

disk, memory, CPU

After Cloud– “Server Hugger”– We are taking your servers, you have

to use the cloud– “You can’t take my servers, I need

isolation, I need security, I need performance, I need reliability and availability”

– “I love the cloud”

Important Components

L3, ECMPNon-blocking

No Oversubscription

Internet

On-Site Data Center Off-Site Data Center

Abstraction Layer

Physical Infrastructure

Controller Nodes Virtual Switch Nodes Virtual – Physical Gateways

Cloud Environment

Automation

L3, ECMPNon-blocking

No Oversubscription

Internet

On-Site Data Center Off-Site Data Center

Abstraction Layer

Physical Infrastructure

Controller Nodes Virtual Switch Nodes Virtual – Physical Gateways

Cloud Environment

Cloud Management

L3, ECMPNon-blocking

No Oversubscription

Internet

On-Site Data Center Off-Site Data Center

Abstraction Layer

Physical Infrastructure

Controller Nodes Virtual Switch Nodes Virtual – Physical Gateways

Cloud Environment

Network Virtualization

L3, ECMPNon-blocking

No Oversubscription

Internet

On-Site Data Center Off-Site Data Center

Abstraction Layer

Physical Infrastructure

Controller Nodes Virtual Switch Nodes Virtual – Physical Gateways

Cloud Environment

Network Virtualization = A complete network in software

L2

L3Virtual Network

L2

All the properties attributed to SDN- Software flexibility- Software innovation and extension- Hardware choice- Service insertion

With the benefits of virtualization- Non-disruptive deployment- Decoupled from topology- Hardware independence- Backwards compatibility

“SDN” is Not Network Virtualization

Physical Network

DistributedForwarding State

L2 TablesL3 Table

Manual Configuration State

VLANsACLsQoSPort Groups

Physical NetworkHardware Dependent

Control PlaneData Plane

Network VirtualizationA New Operational Model for Networking

Physical Network

Virtual Network

Network Virtualization Abstraction Layer (vSwitch)

DistributedControllerCluster

Physical Network

Decouples from Physical Network and moves operational state into software

Leaves the Physical Network to do what it does best, Forward Packets.

Hardware Independent

What VMware did for servers…for the network.

Physical Compute & Memory(Dell, HP, IBM, Quanta,…)

Server Hypervisor

Requirement: x86

Virtual Machine

Virtual Machine

Virtual Machine

Application Application Application

x86 Environment

Physical Network(Arista, Cisco, HP, Juniper, Cumulus,…)

Network Virtualization Platform

Requirement: IP Transport

Virtual Network

Virtual Network

Virtual Network

Workload Workload Workload

L2, L3, L4-7 Network Services

Decoupled

AT&T

“ NVP is a foundational element that supports a major transformation at AT&T. Network virtualization is the future of networking.

TOBY FORDAVP, CLOUD ARCHITECTURE & STRATEGY

IT TransformationCommon Computing Platform

Fundamentally transform and accelerate the way AT&T delivers

applications and services both internally and externally.

eBay

“ NVP allows us to repurposenetwork infrastructure on-demand, and reduces the time it takes to deploy test/dev environmentsfrom days to minutes.

JC MARTINCLOUD ARCHITECT, EBAY

7 days to 30 seconds

Transform the time it takes to deploy complex test & development environments for developers and QA.

Rackspace

“ NVP, combined with OpenStackis a game changer. Together we arebringing enterprise private networkingto the cloud.

LEW MOORMANPRESIDENT, RACKSPACE

Rackspace Cloud Networks

Deliver enterprise-class private networking in a public,multi-tenant cloud.

Automation

L3, ECMPNon-blocking

No Oversubscription

Internet

On-Site Data Center Off-Site Data Center

Abstraction Layer

Physical Infrastructure

Controller Nodes Virtual Switch Nodes Virtual – Physical Gateways

Opscode Chef

Stathy ToulomisSolutions Architect, Opscode

Managing Complexity Then

Web Servers

Application Servers

Database Cache

Add 1 server

20+ Changes

To Add a New Server…

• 2x Web Server

Configurations

• 2 Web Server Restarts

• 4x Database Configurations

• 8x Firewall Configurations

• DNS Service

• Network Configuration

• Deployer

• 8x Monitoring Changes

The Bottom Line…

20+ Changes

12+ New Infrastructure

Dependencies

4+ HoursDatabases

Managing Complexity Later

We added:

• Load Balancers

• MemCache

• Search Appliances

• Lots of VM’s

• More Scale

Exponential Increase In:

• Configuration Changes

• Infrastructure

Dependencies

• Skills Needed

• Greater Risk

What is Chef?

Chef is an automation platform for developers & systems engineers to

continuously define, build, and manage infrastructure.

CHEF USES:

Recipes and Cookbooksthat describe Infrastructure as Code.

Chef enables people to easily build & manage complex & dynamic applications at massive scale

• New model for describing infrastructure that promotes flexibility, extensibility and reuse.

• Programmatically provision

and configure

• Treat like any other code

base

• Reconstruct business from

code repository, data

backup, and bare metal

resources.

Chef is Infrastructure as Code

• A configuration management system (DSL)

• A library for configuration management

• A community, contributing to library and expertise

• A systems integration platform (API)

http://www.flickr.com/photos/asten/2159525309/sizes/l/

“Infrastructure As Code”

• Networking

• Files

• Directories

• Symlinks

• Mounts

http://www.flickr.com/photos/philliecasablanca/3354734116/

Collections of Resources

• Routes

• Users

• Groups

• Tasks

• Packages

• Software

• Services

• Configuration

• Other Stuff

Recipes and Cookbooks

• Recipes are collections of

Resources

• Cookbooks contain

recipes, templates, files, cus

tom resources, etc

• Code re-use and modularity

• Hundreds already on

Community.opscode.com

http://www.flickr.com/photos/patrick_q/199986515/

pool_members = search('node','role:webserver')

template '/etc/haproxy/haproxy.cfg' do

source 'haproxy-app_lb.cfg.erb'

owner 'root'

group 'root'

mode '0644'

variables :pool_members => pool_members.uniq

notifies :restart, 'service[haproxy]'

end

Dynamic configuration management

Blueprint Your

Infrastructure

• Compute

• Application

• Storage

• Security

• Network

• Configuration Standards

How Can Chef Help?

Build Anything…

• Provision compute

resources in the Data Center

and the Cloud

• Infrastructure

• Application Stacks

• Big Data

• HPC

• Linux, Windows, OSX, Unixe

s

And Manage It Simply

• Introduce continuous

incremental change or total

change.

• Automatically reconfigure

everything

• Re-provision for disaster

recovery

• Fail-over to bare metal

• Monitor for compliance

• Cloud migrations become

trivialUsing 1,000’s of

man-days of prior art!

Discoverable and Searchable

Infrastructure

Hosted Chef

• Delivered via SaaS Model Hosted by Opscode

• Manage up to 50,000 Servers

• Industry-leading SLA’s

• 24x7x365 Support Options

• Get up and running quickly

• Pay/grow as you need

Private Chef

• All the power of Hosted Chef behind the firewall

• Delivered as enterprise software

• Implementation consulting customized to your needs

How Opscode Can Help

The Opscode

Community

• 650+ Cookbooks

• Plug-Ins

• Source Code Documentation

• FAQ

• Training

18,000+ Registered Users

• 950+ Individual and

170+ Corporate Contributors

• Global Partner Network

Demo

For More Information

[email protected]

[email protected]