Succeeding with OpenStack in the Enterprise (OpenStack Summit Austin 2016)

OpenStack® Summit Austin 2016OpenStack® Summit Austin 2016

Succeeding with cloud in the enterpriseOmri GazittVP Products & ServicesHPE Helion@omrig

2

OpenStack success in the enterpriseState of the union, 2016

3

Upstream

Distro

Solution

Operated

Sweet spot

$ $ $ $ $

Deployment / lifecycle lessons

4

V1

Triple-OV2+

Ansible

Standard configurations

Text-based, transparent

Easy to tweak

Easy to update

Predictable upgrades

Secure out of the box

Management lessons

5

V1

Ceilometer, HorizonV2+

Monasca, Ops Console

Operations as a first-class persona

Separate OLTP / Management DB’s

Scalable event store

Alarm engine

Prescribed resolutions

Remediation and lifecycle actions

Time series visualization

Security lessons

6

V1

“Read the whitepaper”V2+

Barbican, Bandit

TLS for endpoints

TLS for internal services

Barbican for key management

Data-at-rest encryption

Bandit: static analysis in CICD

Audit logging: PCI compliance

Standard configs secure by default

Platforms are about workloads

7

OpenStack

CattleWorkload

Requirements

Features/complexity

(IaaS+: Heat, LBaaS, …)

2013


8

OpenStack

Cloud Native Platforms

CattleWorkload

Requirements

Features/complexity

(Nova, plus…Cinder/Neutron)


2014


9

OpenStack


Cattle PetsWorkload

Requirements

Features/complexity



(Live Migration)

2015


10

OpenStack


CattleCarrier-Grade

PetsWorkload

Requirements

Features/complexity



(DPDK, SR-IOV)(Live Migration)

2016

Cloud-native workloads“DIY” by stitching together services versus “delegate to a platform”

11

“AWS approach” PaaS approach

Unit of compute EC2/ECS (nova/docker) Docker/runC

App deployment/versioning CloudFormation (heat) Built in

Load balancing ELB (neutron-lbaas) Built in

Zero-downtime deployment CodeDeploy/Elastic Beanstalk (diy) Built in

Services (DB/queuing) RDS (trove)/SQS (zaqar/cue) Service brokering

App health monitoring CloudWatch (monasca) Built in

Auto-scaling AutoScaling (heat?) Built in

Log aggregation CloudTrail (ELK/diy?) Built in

What about containers?“Everything is a container” versus “delegate to a platform”

12

CaaS approach PaaS approach

Unit of compute Docker/runC Docker/runC

App deployment/versioning Pods, replication controllers/compose Built in

Load balancing k8s services (plumbed to LB) Built in

Zero-downtime deployment k8s rolling-update Built in

Services (DB/queuing) Data service in a pod? Service brokering

App health monitoring Datadog? Sysdig? Built in

Auto-scaling “Horizontal pod auto-scaler” Built in

Log aggregation Fluentd, elasticsearch, kibana Built in

Use the platforms, Luke!

13

OpenStack Platform

Cloud Native Platform

Traditional/High-end

Workloads

Apps Apps Apps Apps Apps AppsApps

Announcing…

14

HELION OPENSTACK 3.0

Other talks you should check out…

15

HPE Track Speakers Title

Tuesday 11:15 AM–11:55 AM Joy Dorairaj Security & Compliance in OpenStack

Tuesday 12:05 PM–12:45 PM Tom Howley Lifecycle management of Openstack using Ansible

Tuesday 2:00 PM–2:50 PM Joy Dorairaj Achieving OpenStack Carrier—Grade Performance

and Reliability

Tuesday 2:50 PM–3:30 PM Nayana Dhawalbhakta Multi-Data Center OpenStack Carrier Grade for CSP's

Tuesday 3:40 PM–4:20 PM HPE & Telstra ExecutiveFull ISO 7-Layer Stack Fullfillment, Activation and

Orchestration of VNF's in Carrier Networks

Tuesday 4:40 PM–5:20 PMSwami Vasudevan, Fabrizio Fresco,

Matt Young, Joy Dorairaj, Paul MurrayOpenStack in Production Panel

Tuesday 5:30 PM–6:10 PMHenrik Blixt, Dave Hawley, Matt Young,

Nathanial DillonIgnite Session: What's Hot and What's New

Thank you

Succeeding with OpenStack in the Enterprise (OpenStack Summit Austin 2016)

Technology