red hat cloud platforms

RED HAT

CLOUD PLATFORMS

Giovanni GalloroCloud Solution Architect, Red [email protected]

Cloud for Application Agility

RED HAT CLOUD PLATFORMS

BUSINESS DEMANDS DRIVE I.T. TRANSFORMATION

● Business wants agility, lower cost, and new capabilities.

● IT is struggling with existing legacy infrastructure architecture and cost model.

● Cloud providers are using next- generation IT built on open source technologies.

● IT needs to adopt cloud architectures and technologies to close the innovation gap.

Infrastructure as a Service: OpenStack


CLOUD INFRASTRUCTURE FOR APPLICATION AGILITY


CLOUD INFRASTRUCTURE FOR APPLICATION AGILITY

● Evolving from pure IaaS● Modular - “Pluggable” Architecture● Set of Integrated Projects


● Top OpenStack Priorities

● 44% Increased emphasis on certified hardware

● 44% commercial OpenStack support

● 43% integration with open source management initiatives

Source: IDC Red Hat Hybrid Cloud Management Survey, October 2014

Plan to use OpenStack APIs to enable management integration across infrastructure

Expect vendors will leverage OpenStack in next-generation products

Will implement a 100% OpenStack Cloud

Unsure

43%

27%

11%

12%

18%

WHAT ROLE DOES OPENSTACK HAVE IN YOUR CLOUD STRATEGY?


RED HAT COMMUNITY CONTRIBUTION

Source: Bitergia http://activity.openstack.org/dash/browser/scm-companies.html?release=juno Stakalytics http://stackalytics.com/?release=juno&company=red%20hat

● Top Contributor to Juno Release (incl. Inktank & eNovance)

Overall commits per company (aggregated)

Red Hat community contributions to projects

0

500

1000

1500

2000

2500

3000Red Hat

HP

IBM

Mirantis

Rackspace

SUSE

OpenStack Foundation

VMware

20.92%

18.48%

23.98%

6.76%24.86%

27.35%

7.38%

5.44%

15.78%5.39%

Nova Horizon Heat Neutron Ceilometer

Sahara Keystone Cinder Swift Glance

Hybrid Cloud Management


http://www.gartner.com/it-glossary/cloud-management-platformsSource: “Evaluation Criteria for Cloud Management Platforms,” 19 July 2012 (refreshed 10 February 2014), By Alessandro Perilli, Gartner

GARTNER REFERENCE ARCHITECTURE FOR IAASAnd the Role of a CMP Solution


CREATE AN OPEN HYBRID CLOUDCloudForms Adds Heterogeneous Capacity

Platform as a Service:OpenShift


PAAS CLOUD SERVICE MODEL


PAAS LETS YOU STREAMLINE APP DEV

With PaaS

How to Build an App:1. Have Idea2. Get Budget3. Code4. Test5. Launch6. Automatically Scale

How to Build an App:1. Have Idea2. Get Budget3. Submit VM Request request4. Wait5. Deploy framework/appserver6. Deploy testing tools7. Code8. Test9. Configure Prod VMs10. Push to Prod11. Launch12. Request VMs to meet demand13. Wait14. Deploy app to new VMs15. Etc.

Virtualized

How to Build an App:1. Have Idea2. Get Budget3. Submit hardware acquisition request4. Wait5. Get Hardware6. Rack and Stack Hardware7. Install Operating System8. Install Operating System Patches9. Create user Accounts10. Deploy framework/appserver11. Deploy testing tools12. Code13. Test14. Buy and configure Prod servers15. Push to Prod16. Launch17. Order more servers to meet demand18. Wait…19. Deploy new servers20. Etc.

Physical

“The use of Platform-as-a-Service technologies will enable IT organizations to become more agile and more responsive to the business needs.” –Gartner*


DEVOPS / CONTINOUS DELIVERY THROUGH PLATFORM AS A SERVICE


REGISTRY / CONTAINER DISCOVERY

CONTAINER FORMAT WITH DOCKER

ISOLATION WITH LINUX CONTAINERS

ORCHESTRATION WITHKUBERNETES

OPENSHIFT:DRIVING AND ADOPTING STANDARDS

Red Hat Strategy forLinux Containers


WHAT ARE LINUX CONTAINERS?

Software packaging concept that typically includes an application and all of its runtime dependencies.

● Easy to deploy and portable across host systems

● Isolates applications on a host operating system

● In RHEL, this is done through:

– Control Groups (cgroups)

– kernel namespaces

– SELinux, sVirt

– Docker

HOST OS

SERVER

CONTAINER

LIBS

APP


Traditional OS Containers

TRADITIONAL OS VS. CONTAINERS

HARDWARE

HOST OS

HARDWARE

HOST OS

CONTAINER

LIBS

APP A

LIBS A LIBS B LIBS LIBS

APP A APP B

CONTAINER

LIBS

APP B


LINUX DOCKER CONTAINER LAYERING

● New images can be created by adding

layers

● Layering model allows for specialization

● Base image and select number of

platform layers provided by Red Hat

● ISV images form the base of the RHEL

ecosystem

● Stack optimized for individual

application with minimal packaging per

layer


CONTAINERS DELIVER MANY BENEFITS

Base: 171 IT and Developer/programmer decision-makers at companies with 500+ employees in APAC, EMEA, and NASource: A commissioned study conducted by Forrester Consulting on behalf of Red Hat, January, 2015

Faster provisioning

Greater deployment flexibility

Ability to deliver/deploy applications faster

Greater application mobility/portability

69%

70%

72%

73%

How important are the following benefits of containers to your organization?

Critically or Very Important

73%

72%

70%

69%


● Who built this image?● What’s its purpose? Was

it created to support a demo?

● Is it safe to consume?● Who maintains it?

NEED FOR A “CHAIN OF TRUST”

DOCKER HUB

docker pull mongodb


WHAT'S INSIDE THE CONTAINER MATTERS

36% of official images in Docker Hub contain high priority security vulnerabilities

● High vulnerabilities: ShellShock (bash), Heartbleed (OpenSSL), etc.

● Medium vulnerabilities: Poodle (OpenSSL), etc.

● Low vulnerabilities: gcc: array memory allocations could cause integer overflow

All Images (n=962)0%

10%

20%

30%

40%

50%

60%

70%

80%

90%

100%

36%

28%

Low priority and no vulnerabilities Medium priority

High priority

Source: Over 30% of Official Images in Docker Hub Contain High Priority Security Vulnerabilities, Jayanth Gummaraju, Tarun Desikan, and Yoshio Turner, BanyanOps, May 2015 (http://www.banyanops.com/pdf/BanyanOps-AnalyzingDockerHub-WhitePaper.pdf)


SECURING HOSTS AND CONTAINERSRED HAT CONTAINER CERTIFICATION

UNTRUSTED ● How can you validate what’s in the host and

the containers? Will it compromise your infrastructure?

● It “should” work from host to host, but can you be sure?

CERTIFIED ● Trusted source for the host and the

containers● Enterprise life cycle for container content● Proven portability● Container Development Kit

HOST OS

HARDWARE

CONTAINER

LIBS

APP

CONTAINER

LIBS

APP

HOST OS

HARDWARE

CONTAINER

LIBS

APP

CONTAINER

LIBS

APP


RED HAT ATOMICENTERPRISE PLATFORM

Run and orchestrate multi-container based applications at scale

An integrated infrastructure platform powered by Red Hat Enterprise Linux that is designed to run, orchestrate, and scale container-based applications and services

● Easily manage and scale applications and infrastructure through a managed cluster of container hosts

● Gain application resiliency and elasticity via orchestration and service aggregation


OPENSHIFT ENTERPRISEby Red Hat

An integrated hybrid cloud application platform for application development and deployment that facilitates DevOps workflows and needs

● Develop, build, and manage container based applications with application lifecycle management and a rich developer experience

● Easily turn source code into running applications with source-to-image capabilities

Integrated hybrid cloud application platform for application development and deployment

http://www.banyanops.com/pdf/BanyanOps-AnalyzingDockerHub-WhitePaper.pdf


RED HAT ATOMIC ENTERPRISE PLATFORM AND OPENSHIFT 3

CONTAINER API

RHEL RHEL ATOMIC HOST

CONTAINER ORCHESTRATION AND MANAGEMENT

CONTAINER CONTAINER CONTAINER

PHYSICAL INFRASTRUCTURE

LANGUAGE RUNTIMES, MIDDLEWARE, DATABASES, AND OTHER SERVICES

DEVOPS TOOL AND EXPERIENCE


SIMPLIFYING CONTAINER ADOPTIONFOR PARTNERS


Thank You

red hat cloud platforms

Technology