Building an Enterprise Cloud on OpenStack

©2016SungardAvailabilityServices,allrightsreserved

BuildinganEnterpriseCloudonOpenStackDavid Grizzan+, Cloud Architect OpenStack Summit – Aus+n 2016

2

SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved

SungardAvailabilityServices

▼  Sungard AS provides a variety of IT services to help your company get where it wants to go, including enterprise cloud, application management, IT consulting, disaster recovery services, and more.

▼  Sungard AS provides tailored enterprise cloud services, as well as innovative solutions including:

•  Disaster Recovery •  Managed Hosting •  Software •  Consulting

3


Whatproblemarewetryingtosolve?

•  Target market

•  80% mid-to-large enterprise customers

•  Control month-to-month spend

•  Term & Commit or determinis+c usage based billing

•  Typical Customer

•  Shrink wrapped applica+ons

•  Limited automa+on due to lack of +me/talent

•  Access to non-Cloud/non-Internet Sungard services (Hybrid, Colo)

•  Looking for a mix of self-managed and Sungard AS managed offerings

•  PlaUorm Expecta+ons

•  Cloud Na+ve & Tradi+onal Networking models

•  Above the hypervisor services (per tenant FW, LB, VPN), service-chaining

4


WhatCisco&ACIbringtothetable

•  Policy-based automa+on – GBP + ACI to offer managed per tenant network services / chaining

•  Distributed neutron networking – Wanted op+mal forwarding with no single point of failure.

•  Mul+-hypervisor – Both KVM and VMware are required in our environment

•  Standardizing our networking on ACI – Performance, scalable, easily automated, and rich troubleshoo+ng capability

5


SungardCustomizaBons

•  Chose to u+lize func+onality Horizon brings to the table •  Added branding and billing func+onality

•  Integrated custom features without changing Horizon base •  Keystone v3 & mul+-domain support

•  Largely using what was already upstream

•  Needed customiza+ons to get necessary Single-Sign-On (SSO) integra+on •  Horizon patches for mul+-domain support

6


Workplaces•  Workplaces allow company tracking of expenses and appropriate department level charging

Company Monthly Commit: $7,500

Admin: CTO, CIO or Assignee

Workplace1

Owner:SueUser1:DanUser2:Danesh

$1,500Monthlybudget

4VMs,16-32GB80GBStorageeach

Owner:SarahUser1:SeanUser2:Alex

3VMs,8GB40GBStorageeach

Owner:RogerUser1:ShawnUser2:DaveUser3:Sam10VMs,16GB120GBStorageeach

Development Project 1

(e.g., Automated Customer Entry)


(e.g., Billing Module)

Application 3 (e.g., Web Server)

Workplace2$2,500Monthlybudget

Workplace3$3,500Monthlybudget

7


DeploymentintheapplicaBonlifecycle•  Workplaces allow for self-managed (DIY) and service provider managed capabili+es

Workplace1


(e.g., Automated Customer Entry)

Requirements Specification Development Testing Deployment Maintenance

Define Develop Operate

Development Project 2 (e.g., Billing

Module)

Workplace2

Application 3 (e.g., Web Server)

Workplace3

UnderchangecontrolSelf-Managed

8


Toolset

OpenStack(Juno) Cisco

•  Horizon (Kilo)

•  Nova

•  Neutron w/ Group-Based Policy

•  Glance

•  Cinder

•  Keystone (v3)

•  Ceilometer

•  Mistral

•  Heat

•  APIC ACI Integrated GBP

•  VxLAN on OVS with Opflex control plane

AdvancedServices

•  ASAv (Firewall/VPN)

•  VyOS (Firewall/VPN)

•  HAProxy (Load Balancing)

9


Whatdidallthatgetus?

•  Opflex enabled, APIC controlled, ACI fabric orchestrated by OpenStack

APIC

10


ControllerArchitecture

11


NetworkReferenceArchitecture

Sungard ASCore Internet

Cisco ACI Fabric

Cst1

FW

Cst2

FW

Cstn

FW

SGAS services

Internet

VxLAN VxLAN VxLAN

Cust 2 hybrid

Cust n hybrid

Cust 2hybrid

Cust nhybrid

Cust 2 hybrid

Cust n hybrid

VxLAN VxLAN VxLAN VxLAN VxLAN

VxLAN

.............Cst1

FW

Cst2

FW

Cstn

FW

12


OperaBngOpenStack

•  Building and suppor+ng mul+ple labs and 5 produc+on sites is hard… •  We have a great team

•  Mul+disciplinary, mix of sofware, network, and infrastructure engineers •  Blend works well for us in building and opera+ng a complex plaUorm

•  OpenStack doesn’t always make it easy...

•  Finding source of the problem is difficult •  Disparate controller architecture makes this more challenging

13


ContribuBngBack

•  Up un+l now, we’ve only contributed minor changes •  Hope to increase our ac+vity in the future

•  Most of our interac+on is through our vendors (Cisco and One Convergence)

14


Wherearewenow?

•  Live in 5 sites •  EMEA and North America

•  7 sites globally in 2016

15


InterestedinLearningMoreaboutGBP?

Come to our Hands On Lab session

Developing, Deploying, and Consuming L4-7 Network Services in an OpenStack Cloud- Thursday 4:10pm-5:40pm, JW MarrioI AusKn – 110 East 2nd Street, AusKn, TX 78701

16


Q A

OpenStack Summit Austin, Texas 2016

Building an Enterprise Cloud on OpenStack

Technology

Transcript of Building an Enterprise Cloud on OpenStack