redefining the enterprise os red hat enterprise linux 7 › rfreire › cce-rhel7-rio.pdf · red...
TRANSCRIPT
Rodrigo Freire / Ron Pacheco1
REDEFINING THE ENTERPRISE OSRED HAT ENTERPRISE LINUX 7
Rodrigo FreireSr. Technical Account Manager29/Ago/2014
Rodrigo Freire / Ron Pacheco2>
Roadmap At A Glance
CY2010 CY2011 CY2012 CY2013 CY2014
Production 3Production 2Production 1
*All dates are approximate and subject to change
RHEL 6
RHEL 5
.4
.10
RHEL 7
.11
.3.2.1.0
.0
.5
.9.8.7.6.5
.6
Application Isolationvia Containers
Rodrigo Freire / Ron Pacheco4
CONTAINERS ENABLE CONTINUOUS DELIVERY
LIBS
APP HOST OS
SERVER
HOST OS
SERVER
CONTAINER
OPERATIONS FOCUS● HARDWARE● OPERATING SYSTEM● NETWORKING● MONITORING
DEVELOPMENT FOCUS● CODE● APPLICATIONS● LIBRARIES AND OTHER
DEPENDENCIES● DATA STORE
CONTAINER
LIBS
APP
Rodrigo Freire / Ron Pacheco5
RHEL 7 Containers Architecture with Docker CLI
RHEL Kernel
Hardware (Intel, AMD)
Containers ContainersContainers
Unit File
Docker Image
DOCKER CLI
SYSTEMD
Cgroups Namespaces SELinux
Drivers
Rodrigo Freire / Ron Pacheco6
BENEFITS OF LINUX CONTAINERS
Rodrigo Freire / Ron Pacheco8
SPEED DEPLOYMENT WITH SERVER PROFILES
IN-PLACE UPGRADES FROM 6.X TO 7
SAFELY ROLL-BACK DURING INSTALL
EASILY CREATE CUSTOM INSTALL IMAGES
PRIORITIZE CRITICAL SERVICES AT START-UP
DRAMATICALLY SPEED START-UP TIMES
MORE EFFICIENT INSTALLATIONAND DEPLOYMENT
Create, Install,Deploy & Manage
Rodrigo Freire / Ron Pacheco10
Custom Install Images using Live Media Creator
Easier installation, deployment, and custom image creation/management across large-scale enterprises
● Spin custom installable images with the help of Live Media Creator
Content Sources(Repositories)
Custom Image
Rodrigo Freire / Ron Pacheco11
Image Deployment with Anaconda Kickstart
● Filesystem Image Deployment● kickstart liveimg command
● Same family as url, harddrive, &c● Deployment of pre-created filesystem images● Supports squashfs compressed images
● Manual deployment of partitioned disk images for virt usage
● live images must contain the utilities needed by anaconda to perform the OS installation
Rodrigo Freire / Ron Pacheco12
CENTRALIZED MANAGEMENT AND FASTER BOOT UP
● Gain centralized management of processes, services, security, and other resources
● Prioritize critical services and deliver production support while less critical resources are still initializing
● Dramatically decrease start up times
● Compatible with existing scripts (SysV and LSB init scripts)
“Systemd is my favorite feature so far. We deal with lots of init scripts currently; I’m already seeing great improvements by switching most of them to systemd.”1
IT Architect, Medium Enterprise Media & Entertainment Company
1 Source: Research by TechValidate: www.techvalidate.com/product-research/red-hat-enterprise-linux TVID: 6D2-C98-90F
Rodrigo Freire / Ron Pacheco13
MANAGEABILITY WITH OPEN LMI
● Open standards-based management framework for low-level system configuration
● Unified management tools and system-wide resource management allow users to streamline administration
MANAGED SYSTEMS
OpenLMI Object Broker
MANAGEMENT SYSTEMPYTHON SCRIPTS
CUSTOMAPPS JBOSS SHELL
SCRIPTS
LMISHELL PYTHON C/C++ JAVA CLI
OpenLMI Client Interface Libraries
NETWORK STORAGE SERVICESSOFTWARE OTHERAGENTS
USERS SECURITY SYSTEMCONFIG
MONITOR
File System Choice
Rodrigo Freire / Ron Pacheco15
CHOICE OF FILE SYSTEMSRED HAT ENTERPRISE LINUX 7 RC
● Scale file systems to 500TB with new default filesystem XFS
● Scale to 50TB with ext4
● Btrfs also available2
● Parallel NFS v4 provides improved performance and throughput
TypeSupported
LimitRoot Boot Comments
Single-node
XFS 500TB Yes Yes System default
ext4 50TB Yes Yes Driver allow access to older versions (ext2, ext3).
btrfs2 50TB Yes Yes
Network/Multi-node
GFS2 2-16 nodes Yes No Shared-storage file system
“The default XFS filesystem is just great!!”1
IT Specialist,US Federal Government
1 Source: Research by TechValidate: www.techvalidate.com/product-research/red-hat-enterprise-linux TVID: 6D2-C98-90F2 Available as a Technology Preview
Rodrigo Freire / Ron Pacheco17
RHEL 7 Storage Enhancements
● SSD’s● Hierarchical/Tiered storage (Device mapper cache)● MultiQ block layer design● Interconnect support – upstream dependent (NVMe,
SOP, SAS-3) ● Linux-IO SCSI Target (LIO)
● Asynchronous SCSI events
● Software RAID enhancements
Rodrigo Freire / Ron Pacheco18
Storage Management APIs and CLI
● libstoragemgt manages SAN and NAS
● liblvm is the API equivalent of LVM user commands
● Blivet is a new high level storage and file system library that will be used by anaconda and OpenLMI
● Storage system manager provides an easy to use command line interface
Unification of storage management code
Networking
Rodrigo Freire / Ron Pacheco20
Team Driver
● Mechanism to aggregate multiple network devices into a single logical interface at the data link layer (L2.)
● Alternative to the existing Linux Bonding driver that provides many advantages over traditional bonding.
● Mostly implemented in user space with only the data fast-path implemented in the kernel.
● Supports IEEE 802.3ad (IEEE 802.1ax) LACP + many proprietary standards.
● Performance is equal or better than Linux Bonding driver and provides nearly identical functionality including some added improvements.
Rodrigo Freire / Ron Pacheco21
● Network Namespaces
● Lightweight container-based virtualization allowing virtual network stacks to be associated with a process group. Essentially, another copy of the network stack.
● Network Priority Control Group (cgroup)
● Provides an interface to allow an administrator to dynamically set the priority of network traffic generated by various applications.
● Firewalld
● New dynamic firewall service providing greater flexibility over iptables by eliminating service disruptions during rule updates, abstraction, and support for different network trust zones.
● TCP
● Numerous performance and latency improvements including Fast Open, Tail Loss Probe (TLP) Algorithm, Early Retransmit (ER), Proportional Rate Reduction (PRR) and low latency sockets using Busy Poll
● 127.0.0.0/8 routing
● Useful for private blocks-depleted networks, providing local tenant systems a local network without the risk of clashing network blocks.
Other Network Features and Improvements
Optimal Performance and Monitoring
Rodrigo Freire / Ron Pacheco23
THERMOSTAT (FOR JVMs)PERFORMANCE CO-PILOT (PCP)
OPTIMAL PERFORMANCE VIA PROFILES
Optimal performance management via enhanced performance tuning at install, simplified instrumentation and tuning features, and performance monitoring tooling
Rodrigo Freire / Ron Pacheco24
Profiling and Monitoring - Tuna
● Tool for fine grained control
● Display applications / processes
● Displays CPU enumeration
● • Socket (useful for NUMA tuning)
● • Dynamic control of tuning
● Process affinity● Parent & threads● Scheduling policy● Device IRQ priorities, etc
Rodrigo Freire / Ron Pacheco25
Performance -Tuned
● Re-written for maintainability and extensibility.● Optional hook/callout capability● Adds concept of Inheritance (just like httpd.conf) ● Configuration is now consolidated a single tuned.conf
file● Profiles updated for RHEL7 features and characteristic
Rodrigo Freire / Ron Pacheco26
Performance - numabalance
● Simplify and automate numa management
● numabalance scheduler● Tries to move/keep tasks and their memory
“NUMA-local”● Enable / Disable / Tracing ● sysctl kernel.numa_balancing=0/1● perf list | grep numa
Windows Interoperability
Rodrigo Freire / Ron Pacheco28
“Windows Domain interoperability is what I am looking forward to. We have a large Windows domain with 10k Windows workstations and 1300 Windows servers. Being able to authenticate and interact with Active Directory is a very high priority for us.”1
Lynn Dixon, System Administrator, Mohawk Industries
WINDOWS INTEROPERABILITYVIA DIRECT INTEGRATION
1 Source: Research by TechValidate: www.techvalidate.com/product-research/red-hat-enterprise-linux
MICROSOFTACTIVE DIRECTORY
SSSD
RHEL
Rodrigo Freire / Ron Pacheco29
WINDOWS INTEROPERABILITYVIA INDIRECT INTEGRATION
1 Source: Research by TechValidate: www.techvalidate.com/product-research/red-hat-enterprise-linux
MICROSOFTACTIVE DIRECTORY
SSSD
RHEL
IDENTITYMANAGEMENT
TRUST
ALLOWS FOR EASIER CENTRALIZED NATIVE LINUX MANAGEMENT OF MULTIPLE LINUX CLIENTS
Rodrigo Freire / Ron Pacheco30
STREAMLINED INSTALLATION AND
DEPLOYMENT
OPTIMAL PERFORMANCEVIA PROFILES
SYSTEM MANAGEMENT VIA OPENLMI
SCALABLE FILE SYSTEMS
WINDOWS INTEROPERABILITY
LIGHTWEIGHT APPLICATION ISOLATION
(LINUX CONTAINERS)
RED HAT ENTERPRISE LINUX 7 HIGHLIGHTSS
TAB
LE
AN
D
EF
FIC
IEN
TF
LE
XIB
LE
CERTAINTY OF MISSION-CRITICAL RELIABILITY AND MILITARY-GRADE SECURITY
Rodrigo Freire / Ron Pacheco31
RED HAT ENTERPRISE LINUX 7RETHINK YOUR ENTERPRISE OS
STABILITY to efficiently meet current challenges of datacenter virtualization and cloud
FLEXIBILITY to quickly adapt to demands for business agility
CERTAINTYof mission-critical reliability and military-grade security
90% OF FORTUNE 500 COMPANIES TRUST RED HAT ENTERPRISE LINUX FOR THEIR CRITICAL BUSINESS INFRASTRUCTURE.