Virtualization for the LHCb Online system CHEP 2010 - Taipei Dedicato a Zio Renato Enrico Bonaccorsi, (CERN) [email protected] Loic Brarda, (CERN) [email protected] Gary Moine, (CERN) [email protected] Niko Neufeld, (CERN) [email protected] Alexander Zvyagin , (CERN) [email protected]
Virtualization for the LHCb Online system CHEP 2010 - Taipei Dedicato a Zio Renato
Jan 02, 2016
Virtualization for the LHCb Online system CHEP 2010 - Taipei Dedicato a Zio Renato. Enrico Bonaccorsi , (CERN) [email protected] Loic Brarda , (CERN) [email protected] Gary Moine , (CERN) [email protected] Niko Neufeld, (CERN) [email protected] - PowerPoint PPT Presentation
Welcome message from author
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
Virtualization for the LHCb Online
systemCHEP 2010 - Taipei
Dedicato a Zio Renato
Enrico Bonaccorsi, (CERN) [email protected] Brarda, (CERN) [email protected] Moine, (CERN) [email protected]
Niko Neufeld, (CERN) [email protected] Zvyagin , (CERN) [email protected]
2
Outline
• LHCbo What is LHCbo Online system & Experiment Control System
• Virtualizationo What we virtualizeo The choice of the hypervisoro Hardware used
• Architectureo General Hyper-Vo LHCb Network & Security implementation
• Performanceo Networko Hard disks
• Quattor integration• Issues
Enrico Bonaccorsi, Loic Brarda, Gary Moine, Niko Neufeld, Alexander Zvyagin
3
LHCb & Virtualization• Completely isolated
networko Data acquisition systemo Experiment Control System
• Objectiveso Reduce hardwareo Improve manageabilityo High Reliability (in sense of
costs)o Better usage of hardware
resources
Enrico Bonaccorsi, Loic Brarda, Gary Moine, Niko Neufeld, Alexander Zvyagin
4
What do we virtualize?• Traditional Virtualization approach: Not Cloud Computing
• General log in services/ Terminal serviceso RDP windows remote desktopso SSH gatewayso NX linux remote desktops
• Web serviceso 1 VM per Website
• Infrastructure serviceso DNSo Firewallso Domain controllers
• Control PCso Controlling detector hw, running PVSS(standard LHC SCADA System)o Running both on Linux and Windowso Some of them need special hardware to control the detector
• SPECS (special dedicated PCI card)• CANBUS (USB)• Several more
Enrico Bonaccorsi, Loic Brarda, Gary Moine, Niko Neufeld, Alexander Zvyagin
5
Hypervisorallow multiple operating system to run on a host computer
• 4 solutions with active community/support behind:
o Xen• Currently available on Scientific Linux 5• Will be replaced by KVM for Scientific Linux 6
o KVM • Necessary Kernel modifications for Scientific Linux 5
o Vmware• Suitable, high price
o Hyper-V core R2 (free edition)
Enrico Bonaccorsi, Loic Brarda, Gary Moine, Niko Neufeld, Alexander Zvyagin
6
Hardware & SAN• 10 Blade Poweredge M610
o 2 x E5530 @ 2.4GHz (8 real cores + Hyper Threading)o 3 x 8 GB = 24GB RAM o 2 x 10Gb network interfaceso 2 X 1Gb network interfaceso 2 X 8Gb fiber channel interfaces
• Storageo 2 X 8Gb Fiber channel switcheso 10 Terabytes for Virtual Machines storage exported from 2 array controllers trough 2
independent fiber channel fabrics
• Networko 2 X 10Gb Ethernet switcheso 2 X 1Gb Ethernet switches
• Limits:o Average of 20 VM per Server = ~200 Virtual Machines
Enrico Bonaccorsi, Loic Brarda, Gary Moine, Niko Neufeld, Alexander Zvyagin
7
Architecture
Enrico Bonaccorsi, Loic Brarda, Gary Moine, Niko Neufeld, Alexander Zvyagin
VMWP – Virtual Machine Worker Process VSP – Virtualization Service ProviderVID – Virtualization Infrastructure Driver
8
Network architecture & Security
• Special care was devoted to
Enrico Bonaccorsi, Loic Brarda, Gary Moine, Niko Neufeld, Alexander Zvyagin
9
Virtual Machines performances
• Network (from VMs to real server inside LHCb Network)o Throughput: ~900Megabit/secondo Latency: ~0.2 ms
• Disko (512 B blocks – our disk controller always read in 4k blocks) o Reading: ~45MegaByte/seco Writing: ~35MegaByte/sec
10
Virtual machines & Linux cluster management
(Quattor)• Server installation managed by Quattor using
network boot/PXE • Boot from network:
o not supported by para-virtualized network interfaceso supported by emulated network interfaces (very slow)
• Solution:o Do not installo Use cloning of virtual hard disks (virtual machine template)o Custom post boot script adjust main config file according to
the PTR DNS record of the IP acquired by DHCPo Let quattor configure the linux virtual machineNew virtual machines ready to be used in less than 10 minutes
Enrico Bonaccorsi, Loic Brarda, Gary Moine, Niko Neufeld, Alexander Zvyagin
11
Issues
• General issueso Time, ntpd -> ntpdate o PCI cards -> N/Ao Usb -> Usb over IPo Software licenses: hardware dependent(PVSS)
• Hyper-V issueso Ethernet -> multicast n/a, jumbo frames n/a
• Hardware issueso Intel 5500 Series / hyper-v Core / ACPIo Cluster filesystem sector size = 512B
Enrico Bonaccorsi, Loic Brarda, Gary Moine, Niko Neufeld, Alexander Zvyagin
12
Summary and outlook
• Virtualization of LHCb ECSo Aim at reduce hardwareo Special attention to securityo Many issues tackled and solved (or work around)
• Next phase:o USB/IPo iSCSIo Virtualize almost every control pco Intrusion prevention system
Enrico Bonaccorsi, Loic Brarda, Gary Moine, Niko Neufeld, Alexander Zvyagin
13
Backup slides
14
Virtualization CPU overhead
• We run over virtual machines based on KVM what we call the «moore test»
• Moore: software for trigger decision
• Running directly on the real machine we measured:
• ~10% overhead
15
Sharing of VLAN• Massive using of 802.1q• VLAN exported to real servers using a dedicated
trunked 10Gb link
Blade 1 Blade 2 Blade 10
VM1Vlan 20
VM3Vlan 20
VM2Vlan 16
VM8Vlan 16
VM6Vlan 32
10Gb link
10Gb link
802.1q802.1q
Related Documents
