openstackday - xifi federation

OpenStackDay: XIFI ProjectOpenStackDay: XIFI Project

alessandro.martellone@create-net.org

Introduction

Alessandro M. Martellone | IT engineerI am an IT engineer at Create-Net[1]. In August 2013 I joined Smart Infrastructures Area where I work on Future Internet infrastructures and cloud platforms (I’m an enthusiastic user of OpenStack). Previously, I’ve worked in several ICT companies, dealt of web developing, software product design dealt of web developing, software product design and of critical financial software. I’m currently involving on an OpenStack cloud infrastructure to support the European project XIFI [2]. If you want more information about me, you may see my Linkedin profile [3] and my Github page [4].Useful links:

[1] Create-Net http://www.create-net.org/people/amartellone

[2] XiFi project: https://fi-xifi.eu/home.html

[3] Linkedin profile: http://www.linkedin.com/in/alessandromartellone

[4] Github page: https://github.com/amartellone

Create-Net

• CREATE-NET is an international research centre recognized as one of Europe's leading institutions in ICT and telecommunications technologies.– 90+ people– 20+ nationality– 6 international patent– 32 research projects founded (18 european project)– 3 spin-off

• Its mission is:• Its mission is:– achieve research excellence in ICT, with focus on telecommunications;– promote technology transfer towards the industry through Engineering of technologies &

solutions;– promote Innovation to improve European high-tech competitiveness;– focus on key application areas and services with impact on quality of life for the global society.

• In April 2014 CREATE-NET becomes Mirantis’ training partner• It will soon offer OpenStack training courses and maintain the proven qualityand rigor of the Mirantis curriculum. (http://www.create-net.org/news/create-net-becomes-mirantis%E2%80%99-training-partner)

Smart Instrastructures Area

• The main research topic of Smart Infrastructures application area includes

– Highly available and automated cloud environments;environments;

– Software-defined networks for cloud and data centers;

– Green and Zero CO2 emissions data centers

XIFI project

• What is XIFI? – XIFI (https://fi-xifi.eu/) is a

project of the European Public-Private-Partnership on Future Internet Future Internet (http://www.fi-ppp.eu/) programme.

– +30 Partners

– Sustainable federation of FI-WARE core platform enabled infrastructures.

FI-WARE is an innovative, open cloud-based infrastructure based on OpenStack for cost-effective creation and delivery of Future Internet applications and services.

http://www.fi-ware.org/

The official instance of FI-WARE platform open to use cases projects ( conceptual

XIFI and FI-WARE ecosystem

A collections of tools that ease the deployment, setup, and operation of FI-WARE instances.

http://www.fi-xifi.eu/fi-ops

The official instance of FI-WARE platform open to use cases projects ( conceptual prototypes) and third party developers. Backed by a Community Cloud of 5 nodes that will become 17.

https://account.lab.fi-ware.org/home

XIFI: core concepts

• XIFI as showcase for promotion of FI-PPP technologies for developers.

• XIFI as a community cloud and a federation of resources offered to the FI-PPP developer community.community.

• XIFI as a flexible platform: the need to integrate and federate different existing infrastructures.

• XIFI as an opportunity for FI infrastructures to attract new communities of developers through FI-PPP services

XIFI Federation

• Availability of 5 nodes (End of March 2014) with 500+ cores, 1TB+ Ram, 100TB+ HD

• Additional 12 nodes (April / September 2014) September 2014) with 1000+ cores, 2TB+ Ram, 200TB+ HD

• Showcases for developers, infrastructures, smart businesses

What should we federate?

• Network Federation

– Datacenters

– VMs on different environments

• Services Federation• Services Federation

– Instance VMs, create and manage networks, use image and block storage services on every

environment according to user's access control policy.

Internode connection

• Connect not only datacenters but distinct OpenStack infrastructures (VMs)

• Solution: Multi-domain VPN (MD-VPN).– Service provided by GÉANT (the GÉANT pan-European

backbone and the connecting NREN - National backbone and the connecting NREN - National Research and Education Network centers )

• L3 or L2 VPNs spanned over several domains only by configuring the edge routers.

• There is transparent traversal of the backbone and other domains.

GÉANT MD-VPN

• The MD-VPN service is reliant upon MPLS and BGP technology.

• To data packets are assigned labels. Packet-assigned labels. Packet-forwarding decisions are made on the label, without the need to examine the packet itself.

Use case: XIFI Project

• Two external networks.

– Tenant

– Federation

• Using OS Networking L3 agents is possible to use multiple floating IP poolsmultiple floating IP pools

– Added a new bridge to a physical eth interface.

– Duplicated quantum-l3-agent

• Private IP, private federation IP, public IP(via OpenStack floatingIP process)

Use case: XIFI Project

KeystoneProxy

Servicescatalog

• Cloud portal (an extension of Horizon*): DNS

load balancing with geographic algorithm;

•Keystone-proxy (a Keystone wrapper)

replicated on every zone;

•currently, we have only an instance of the IDM

to cause of user privacy issues.

* Multi-region, blueprint architecture template,

Oauth 2.0

Trento - Italy

Berlin - Germany

Santander - Spain

CloudPortal

KeystoneProxy

OpenStack services

CloudPortal

OpenStack services

KeystoneProxy

IDM

OpenStack services

Servicescatalog

Servicescatalog

Users, Organizations,Roles,Regions

Trento’s datacenter

• Deployment in HA

• 3 controller nodes

• 5 compute nodes (+1 deployment planned for June/July)planned for June/July)

• 1 service node (monitoring)

• 1 ITBox node

• 4 storage nodes (deployment planned for June/July)

• 160 cores, 320 GB RAM, + 40 VMs

Problem: deploy a distributed infrastructure

• The deployment of a large distributed infrastructure is a complex task that requires automation to scale.

• Why Fuel?– It supports natively OpenStack (required to create a new

FI-WARE Cloud instance) ;– The graphical interface is very intuitive;– The graphical interface is very intuitive;– It is a mature an stable solution;– Open source (Apache License Version 2.0);– Customizable.

• Why ITBox? – In order to joint into federation, a node should install

additional and customized software components.

What is ITBox?

Cloud infrastructure, GEs

APIs, Cloud Portal, user’s extensions

Physical resources

Operating system & Core components

GEs

What is ITBox?

• Based on Fuel 3.2.1 (in the next July -> Fuel 4.1)

• 4 extra modules integrated (monitoring, compute schedulers, security)compute schedulers, security)

• HA with an even number of controllers (+ Galera Arbitrator)

• Nagios, NodeJs ( > 0.10)

• https://github.com/SmartInfrastructures?query=itbox

ITBox : demo

References

• XIFI: https://fi-xifi.eu/

• European Public-Private-Partnership on Future Internet: http://www.fi-ppp.eu

• FI-WARE: http://www.fi-ware.org/

• FI-LAB: https://account.lab.fi-ware.org/home

• FI-OPS: http://www.fi-xifi.eu/fi-ops

• GÉANT MD-VPN: • GÉANT MD-VPN: http://www.geant.net/Resources/Deliverables/Documents/D7.1_DS%203%203%201-MDVPN-service-architecture.pdf

Thank you!

Thanks and Q&A

20

Contacts:

alessandro.martellone@create-net.org

Create-Net : http://www.create-net.org/