deep dive: citrix cloudplatform for infrastructure as a service
DESCRIPTION
Citrix innovation continues to advance our cloud management technology at a rapid rate to keep pace with emerging enterprise customer needs. Learn about the core capabilities and newest innovations for Citrix CloudPlatform, which is powering the world's largest clouds today. CloudPlatform provides the latest and most advanced open source software platform to build highly scalable and reliable cloud computing environments. You’ll also see why Citrix cloud solutions differ from VMware and OpenStack offerings.TRANSCRIPT
SYN402 Deep dive: Citrix CloudPlatform for Infrastructure as a Service
Kedar Poduri Director of Product Management, Cloud Platforms Group
October ‘2012
© 2012 Citrix | #CitrixSynergy
Tweet about this session with hashtag #SYN402 and #CitrixSynergy
2
3
• Secure, mul*-‐tenant cloud orchestra*on pla4orm – Turnkey pla4orm for delivering IaaS clouds – Hypervisor agnos*c – Massively scalable, secure and open – Open source, open standards – Deploys on premise or as a hosted solu*on
• Deliver cloud services faster and at a frac*on of the cost
What is CloudPlatform?
Build your cloud the way the world’s most successful clouds are built
Citrix CloudPlatform Supports Multiple Cloud Strategies
Mul*-‐tenant Public Cloud
• Dedicated resources • Security & total control • Internal network • Managed by Enterprise
or 3rd party
• Mix of shared and dedicated resources
• Elas*c scaling • Pay as you go • Public internet, VPN
access
Hosted Enterprise Cloud
• Dedicated resources • Security • SLA bound • 3rd party owned and
operated
Private Clouds Public Clouds
On-‐premise Enterprise Cloud
6
Service Providers Enterprise Web 2.0
Compute
On-demand Access to Infrastructure Through Self-Service Portal
Citrix Confiden*al -‐ Do Not Distribute
Network
Storage
Admin
Users
Org A
Admin
Users
Org B Users
End User
Admin
© 2012 Citrix | #CitrixSynergy
Load Balancers FWs & VPNs
Dashboard Iden*ty Mgmt. Image Mgmt.
Compute Storage Network
Metering API (EC2 & CS) Self-‐service Portal
Citrix CloudPlatform is Full-service Orchestration Software
End User Experience
9
© 2012 Citrix | #CitrixSynergy
End-user Experience can Vary Vastly
Virtual Machine Lease Time: 30 days Renew: 30 days
Students
Research
Governance Compute Storage Networking
Medium Enterprise
Professors
University
Semester
Semester
Period of stay
Assigned VMs based on registered courses
Custom VMs 5 CPUs 10 GB RAM
2 TB
Custom VMs 10 CPUs 20 GB RAM
10 TB
20 GB None
Request approval
On-‐demand
Employees
Citrix Confiden*al -‐ Do Not Distribute
Select Opera*ng System • Windows, Linux
Select Compute Offering • CPU & RAM
Select Data Disk Offering • Volume Size
Select Network Offering • Network & Services
Create VM
Create Custom Virtual Machines via Service Offerings
Dashboard Provides Overview of Consumed Resources
Citrix Confiden*al -‐ Do Not Distribute
• Running, Stopped & Total VMs
• Public IPs
• Private networks
• Latest Events
Virtual Machine Management
Citrix Confiden*al -‐ Do Not Distribute
Users
Start
Stop
Restart
Destroy
VM Operations Console Access
• CPU U*lized
• Network Read
• Network Writes
VM Status Change Service Offering
2 CPUs 1 GB RAM 20 GB 20 Mbps
4 CPUs 4 GB RAM 200 GB 100 Mbps
Volume & Snapshot Management
Citrix Confiden*al -‐ Do Not Distribute
Volume
VM 1 Add / Delete Volumes
Schedule Snapshots
Hourly Daily
Weekly Monthly
Now
Create Templates from Volumes
Volume
Template
View Snapshot History 12/2/2012 7.30 am
….
2/2/2012 7.30 am
Network & Network Services
Citrix Confiden*al -‐ Do Not Distribute
Create Networks and aeach VMs Acquire public IP address for NAT Control traffic to VM using firewall rules Load balance traffic to VMs
VM VM VM
65.19.41.2 65.19.41.3 65.19.41.4 Router
Load Balancer
Firewall
Cloud Architecture
Citrix Confiden*al -‐ Do Not Distribute
Cloud Workloads
Traditional Workloads Expect Reliability
• Redundant hardware. Backup
entire cloud, restore for users on failure
Cloud-Era Workloads Expect Failure
• Apps are built to withstand failure
Both types of workloads must run reliably in the cloud
Workloads can be categorized into two sets
Traditional Workloads
• Link Aggregation
• Storage Multi-pathing
• Live Migration, FT
Cloud-Era Workloads
• VM Snapshots / Backup
• Ephemeral Resources
• Multi-site Redundancy
Workload reliability drives unique requirements
Cloud Workloads
Designing a zone for an Cloud-Era workload
Hypervisor
Storage
Local EBS
Networking
L3 SDN based L2 Elas*c IP
Network Services
Security Groups ELB
Mul*-‐*er Apps
L3 SDN based VPC
Simple -‐ XenServer
Object store
GSLB
CloudForma*on
Sokware Defined Networks (e.g., Security Groups, EIP, ELB,...)
Cloud-‐Era Availability Zone
Server Racks
Server Racks
Server Racks
Server Racks
Server Racks
Server Racks
Server Racks
Server Racks
Server Racks
Server Racks
Server Racks
Server Racks
Elas*c Block Storage
Availability Zone
Availability Zone
Availability Zone
Object Storage
Cloud-Era Cloud
CloudStack Mgmt. Server • Workloads are distributed across
availability zones • No guarantee on zone reliability • Applications designed to handle node level failure
• DBs and Templates snapped to object store.
• In event of failure, images are recreated on new availability zone.
• Dramatically less expensive
Designing a zone for an Cloud-Era workload
Designing a zone for a traditional workload
vCenter
ESXi Cluster
ESXi Cluster
ESXi Cluster
Enterprise Networking (e.g., VLAN)
Enterprise Storage (e.g., SAN)
Hypervisor
Storage
SAN
Networking
L2 VLANs
Network Services
Load Balancing PV-‐LANs
Mul*-‐*er Apps
Mul*-‐*er VLANs OVF
Feature Rich– vSphere, vCenter
Designing a zone for a traditional workload
• Can achieve significant reliability for applications running in one zone.
• Reliability of individual nodes is very high.
• All zone storage is replicated to a second storage platform (synchronous or asynchronous)
• In event of failure, images are recovered from second storage array.
• Existing workloads will run reliably.
• Little cost benefit over existing approaches
vCenter
ESXi Cluster
ESXi Cluster
ESXi Cluster
Enterprise Networking (e.g., VLAN)
Enterprise Storage (e.g., SAN)
CloudPla$orm
Support for different workloads will be required
Sokware Defined Networks (e.g., Security Groups, EIP, ELB,...)
Cloud-‐Era Availability Zone
Server Racks
Server Racks
Server Racks
Server Racks
Server Racks
Server Racks
Server Racks
Server Racks
Elas*c Block Storage
vCenter
ESXi Cluster
ESXi Cluster
ESXi Cluster
Enterprise Networking (e.g., VLAN)
Enterprise Storage (e.g., SAN)
Tradi*onal Availability Zone
Support for different workloads will be required
CloudPla$orm
Cloud-‐Era Availability
Zone
Cloud-‐Era Availability
Zone
Cloud-‐Era Availability
Zone
Tradi*onal Availability
Zone
Tradi*onal Availability
Zone
Object Storage
Open Platform to Suit Customer Needs
Citrix Confiden*al -‐ Do Not Distribute
Compute
XenServer VMware KVM Oracle VM Bare metal
Hypervisor
Storage
Local Disk iSCSI NFS Fiber Channel Swik
Block & Object
Network
Network Type Isola*on Load balancer Firewall VPN
Network & Network Services
Multi-tenancy & Account Management
Cloud • Domain is a unit of isola*on that
represents a customer org, business unit or a reseller
• Domain can have arbitrary levels of sub-‐domains
• A Domain can have one or more accounts
• An Account represents one or more users and is the basic unit of isola*on
• Admin can limit resources at the Account or Domain levels
Admin
Org A
Admin
Reseller A
Domain
Domain
Admin
Org C
Sub-Domain
User 1
User 2
Group B
Account
Group A
Account
VMs, IPs, Snapshots…
VMs, IPs, Snapshots…
Resources
Resources
Pod 1
….
Cluster N
L2 switch
Host 2
Cluster 1
Citrix CloudPlatform Cloud Architecture
Citrix Confiden*al -‐ Do Not Distribute
Host 1
Ø Host is the basic unit of scale. Runs a hypervisor or is bare metal
Ø Cluster consists of one ore more hosts of same hypervisor
Ø All hosts in cluster have access to shared (primary) storage
Ø Pod is one or more clusters, usually with a L2 switch. Represents a rack
Ø Availability Zone has one or more pods, has access to secondary storage.
Ø Firewall and Load balancers separate public and private networks
Ø One or more zones represent cloud
Primary Storage
Zone 1
Firewall Load Balancer
….
L3 switch
Secondary Storage
Pod N
Guest Networks
Public Network/Internet
Guest Virtual Network 10.0.0.0/8 VLAN 100
Gateway address 10.1.1.1
DHCP, DNS NAT Load Balancing VPN
Public IP 65.37.141.11
10.1.1.1
Guest VM 1
10.1.1.3
Guest VM 2
10.1.1.4
Guest VM 3
10.1.1.5
Guest VM 4
CS Virtual Router
Public Network/Internet
Guest Virtual Network 10.0.0.0/8 VLAN 100
Private IP 10.1.1.112
DHCP, DNS
Public IP 65.37.141.112
10.1.1.1
Guest VM 1
10.1.1.3
Guest VM 2
10.1.1.4
Guest VM 3
10.1.1.5
Guest VM 4
NetScaler Load Blancer
Private IP 10.1.1.111
Public IP 65.37.141.111
Juniper SRX Firewall
CS Virtual Router provides Network Services External Devices provide Network Services
CS Virtual Router
CloudStack Cloud Architecture
Citrix Confiden*al -‐ Do Not Distribute
Zone1
Data Center 1
Cloud
Data Center 2
Zone 3 Zone 2
Data Center 3
Zone 4 CloudStack Cloud can have one or more Availability Zones. Zones represent a Datacenter
Determine Required Service-Levels
Servers
Storage
Windows Applica*ons vs. Linux Applica*ons
Real-‐*me Applica*ons vs. Big Data Applica*ons
Network Dev./Test Environment vs. Produc*on Environment
Provision Corresponding Infrastructure
Citrix Confiden*al -‐ Do Not Distribute
Servers
Low end High end Windows
Storage
Low latency High throughput Cheap
Network Services CS
Virtual Router Physical
Appliances
CPU Cores
CPU (MHz)
Memory (MB)
Name
Compute
Specify Resource Levels
Service Offerings
Citrix Confiden*al -‐ Do Not Distribute
Custom Disk Size
Disk Size (GB)
Storage Tag
Public
Name
Disk
Network Rate
Redundant VR
Public
Name
Network
Firewall
Load balancer Host Tag
Configure Proper*es
Public
Define Scope
Orchestrate Service-Levels
L3 Core Switch
L3 Switch
… … … …
Low-‐end Servers
Pod 1 Pod 2 Pod N
High-‐end Servers
VM Windows App
Real-‐*me App
Low latency
Produc*on App VM
VM
CloudPlatform Deployment
Management Server Deployment Architecture
Citrix Confiden*al -‐ Do Not Distribute
Management Server MySQL
DB
Back Up DB
Infrastructure Resources
User API
Admin API
Load Balancer
Management Server
Management Server MySQL
DB
Infrastructure Resources
User API
Admin API
Single-‐node Deployment Mul*-‐node Deployment
Ø MS is stateless. MS can be deployed as physical server or VM
Ø Single MS node can manage up to 5K hosts. Mul*ple nodes can be deployed for scale or redundancy
Ø Commercial: RHEL 5.4+; FOSS: Ubuntu 10.0.4, Fedora 16
Replica*on
Empower with Ecosystem
Leverage Partner Ecosystem for Best of Breed Solutions
Compute
Storage
Network
Monitoring & Management
PaaS
Automa*on
Business Portals
Migra*on
Applica*on Mgmt.
y
Public Clouds
© 2012 Citrix | #CitrixSynergy
Before you leave… • Conference surveys are available online at www.citrixsynergy.com starting Thursday, 18 October ○ Provide your feedback and pick up a complimentary gift at the registration desk
• Download presentations starting Monday, 29 October, from your My Organizer tool located in your My Account
38