openstackday - xifi federation
TRANSCRIPT
Introduction
Alessandro M. Martellone | IT engineerI am an IT engineer at Create-Net[1]. In August 2013 I joined Smart Infrastructures Area where I work on Future Internet infrastructures and cloud platforms (I’m an enthusiastic user of OpenStack). Previously, I’ve worked in several ICT companies, dealt of web developing, software product design dealt of web developing, software product design and of critical financial software. I’m currently involving on an OpenStack cloud infrastructure to support the European project XIFI [2]. If you want more information about me, you may see my Linkedin profile [3] and my Github page [4].Useful links:
[1] Create-Net http://www.create-net.org/people/amartellone
[2] XiFi project: https://fi-xifi.eu/home.html
[3] Linkedin profile: http://www.linkedin.com/in/alessandromartellone
[4] Github page: https://github.com/amartellone
Create-Net
• CREATE-NET is an international research centre recognized as one of Europe's leading institutions in ICT and telecommunications technologies.– 90+ people– 20+ nationality– 6 international patent– 32 research projects founded (18 european project)– 3 spin-off
• Its mission is:• Its mission is:– achieve research excellence in ICT, with focus on telecommunications;– promote technology transfer towards the industry through Engineering of technologies &
solutions;– promote Innovation to improve European high-tech competitiveness;– focus on key application areas and services with impact on quality of life for the global society.
• In April 2014 CREATE-NET becomes Mirantis’ training partner• It will soon offer OpenStack training courses and maintain the proven qualityand rigor of the Mirantis curriculum. (http://www.create-net.org/news/create-net-becomes-mirantis%E2%80%99-training-partner)
Smart Instrastructures Area
• The main research topic of Smart Infrastructures application area includes
– Highly available and automated cloud environments;environments;
– Software-defined networks for cloud and data centers;
– Green and Zero CO2 emissions data centers
XIFI project
• What is XIFI? – XIFI (https://fi-xifi.eu/) is a
project of the European Public-Private-Partnership on Future Internet Future Internet (http://www.fi-ppp.eu/) programme.
– +30 Partners
– Sustainable federation of FI-WARE core platform enabled infrastructures.
FI-WARE is an innovative, open cloud-based infrastructure based on OpenStack for cost-effective creation and delivery of Future Internet applications and services.
http://www.fi-ware.org/
The official instance of FI-WARE platform open to use cases projects ( conceptual
XIFI and FI-WARE ecosystem
A collections of tools that ease the deployment, setup, and operation of FI-WARE instances.
http://www.fi-xifi.eu/fi-ops
The official instance of FI-WARE platform open to use cases projects ( conceptual prototypes) and third party developers. Backed by a Community Cloud of 5 nodes that will become 17.
https://account.lab.fi-ware.org/home
XIFI: core concepts
• XIFI as showcase for promotion of FI-PPP technologies for developers.
• XIFI as a community cloud and a federation of resources offered to the FI-PPP developer community.community.
• XIFI as a flexible platform: the need to integrate and federate different existing infrastructures.
• XIFI as an opportunity for FI infrastructures to attract new communities of developers through FI-PPP services
XIFI Federation
• Availability of 5 nodes (End of March 2014) with 500+ cores, 1TB+ Ram, 100TB+ HD
• Additional 12 nodes (April / September 2014) September 2014) with 1000+ cores, 2TB+ Ram, 200TB+ HD
• Showcases for developers, infrastructures, smart businesses
What should we federate?
• Network Federation
– Datacenters
– VMs on different environments
• Services Federation• Services Federation
– Instance VMs, create and manage networks, use image and block storage services on every
environment according to user's access control policy.
Internode connection
• Connect not only datacenters but distinct OpenStack infrastructures (VMs)
• Solution: Multi-domain VPN (MD-VPN).– Service provided by GÉANT (the GÉANT pan-European
backbone and the connecting NREN - National backbone and the connecting NREN - National Research and Education Network centers )
• L3 or L2 VPNs spanned over several domains only by configuring the edge routers.
• There is transparent traversal of the backbone and other domains.
GÉANT MD-VPN
• The MD-VPN service is reliant upon MPLS and BGP technology.
• To data packets are assigned labels. Packet-assigned labels. Packet-forwarding decisions are made on the label, without the need to examine the packet itself.
Use case: XIFI Project
• Two external networks.
– Tenant
– Federation
• Using OS Networking L3 agents is possible to use multiple floating IP poolsmultiple floating IP pools
– Added a new bridge to a physical eth interface.
– Duplicated quantum-l3-agent
• Private IP, private federation IP, public IP(via OpenStack floatingIP process)
Use case: XIFI Project
KeystoneProxy
Servicescatalog
• Cloud portal (an extension of Horizon*): DNS
load balancing with geographic algorithm;
•Keystone-proxy (a Keystone wrapper)
replicated on every zone;
•currently, we have only an instance of the IDM
to cause of user privacy issues.
* Multi-region, blueprint architecture template,
Oauth 2.0
Trento - Italy
Berlin - Germany
Santander - Spain
CloudPortal
KeystoneProxy
OpenStack services
CloudPortal
OpenStack services
KeystoneProxy
IDM
OpenStack services
Servicescatalog
Servicescatalog
Users, Organizations,Roles,Regions
Trento’s datacenter
• Deployment in HA
• 3 controller nodes
• 5 compute nodes (+1 deployment planned for June/July)planned for June/July)
• 1 service node (monitoring)
• 1 ITBox node
• 4 storage nodes (deployment planned for June/July)
• 160 cores, 320 GB RAM, + 40 VMs
Problem: deploy a distributed infrastructure
• The deployment of a large distributed infrastructure is a complex task that requires automation to scale.
• Why Fuel?– It supports natively OpenStack (required to create a new
FI-WARE Cloud instance) ;– The graphical interface is very intuitive;– The graphical interface is very intuitive;– It is a mature an stable solution;– Open source (Apache License Version 2.0);– Customizable.
• Why ITBox? – In order to joint into federation, a node should install
additional and customized software components.
What is ITBox?
Cloud infrastructure, GEs
APIs, Cloud Portal, user’s extensions
Physical resources
Operating system & Core components
GEs
What is ITBox?
• Based on Fuel 3.2.1 (in the next July -> Fuel 4.1)
• 4 extra modules integrated (monitoring, compute schedulers, security)compute schedulers, security)
• HA with an even number of controllers (+ Galera Arbitrator)
• Nagios, NodeJs ( > 0.10)
• https://github.com/SmartInfrastructures?query=itbox
ITBox : demo
References
• XIFI: https://fi-xifi.eu/
• European Public-Private-Partnership on Future Internet: http://www.fi-ppp.eu
• FI-WARE: http://www.fi-ware.org/
• FI-LAB: https://account.lab.fi-ware.org/home
• FI-OPS: http://www.fi-xifi.eu/fi-ops
• GÉANT MD-VPN: • GÉANT MD-VPN: http://www.geant.net/Resources/Deliverables/Documents/D7.1_DS%203%203%201-MDVPN-service-architecture.pdf
