Building an Enterprise Cloud on OpenStack
-
Upload
david-grizzanti -
Category
Technology
-
view
165 -
download
2
Transcript of Building an Enterprise Cloud on OpenStack
©2016SungardAvailabilityServices,allrightsreserved
BuildinganEnterpriseCloudonOpenStackDavid Grizzan+, Cloud Architect OpenStack Summit – Aus+n 2016
2
SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved
SungardAvailabilityServices
▼ Sungard AS provides a variety of IT services to help your company get where it wants to go, including enterprise cloud, application management, IT consulting, disaster recovery services, and more.
▼ Sungard AS provides tailored enterprise cloud services, as well as innovative solutions including:
• Disaster Recovery • Managed Hosting • Software • Consulting
3
SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved
Whatproblemarewetryingtosolve?
• Target market
• 80% mid-to-large enterprise customers
• Control month-to-month spend
• Term & Commit or determinis+c usage based billing
• Typical Customer
• Shrink wrapped applica+ons
• Limited automa+on due to lack of +me/talent
• Access to non-Cloud/non-Internet Sungard services (Hybrid, Colo)
• Looking for a mix of self-managed and Sungard AS managed offerings
• PlaUorm Expecta+ons
• Cloud Na+ve & Tradi+onal Networking models
• Above the hypervisor services (per tenant FW, LB, VPN), service-chaining
4
SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved
WhatCisco&ACIbringtothetable
• Policy-based automa+on – GBP + ACI to offer managed per tenant network services / chaining
• Distributed neutron networking – Wanted op+mal forwarding with no single point of failure.
• Mul+-hypervisor – Both KVM and VMware are required in our environment
• Standardizing our networking on ACI – Performance, scalable, easily automated, and rich troubleshoo+ng capability
5
SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved
SungardCustomizaBons
• Chose to u+lize func+onality Horizon brings to the table • Added branding and billing func+onality
• Integrated custom features without changing Horizon base • Keystone v3 & mul+-domain support
• Largely using what was already upstream
• Needed customiza+ons to get necessary Single-Sign-On (SSO) integra+on • Horizon patches for mul+-domain support
6
SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved
Workplaces• Workplaces allow company tracking of expenses and appropriate department level charging
Company Monthly Commit: $7,500
Admin: CTO, CIO or Assignee
Workplace1
Owner:SueUser1:DanUser2:Danesh
$1,500Monthlybudget
4VMs,16-32GB80GBStorageeach
Owner:SarahUser1:SeanUser2:Alex
3VMs,8GB40GBStorageeach
Owner:RogerUser1:ShawnUser2:DaveUser3:Sam10VMs,16GB120GBStorageeach
Development Project 1
(e.g., Automated Customer Entry)
Development Project 2
(e.g., Billing Module)
Application 3 (e.g., Web Server)
Workplace2$2,500Monthlybudget
Workplace3$3,500Monthlybudget
7
SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved
DeploymentintheapplicaBonlifecycle• Workplaces allow for self-managed (DIY) and service provider managed capabili+es
Workplace1
Development Project 1
(e.g., Automated Customer Entry)
Requirements Specification Development Testing Deployment Maintenance
Define Develop Operate
Development Project 2 (e.g., Billing
Module)
Workplace2
Application 3 (e.g., Web Server)
Workplace3
UnderchangecontrolSelf-Managed
8
SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved
Toolset
OpenStack(Juno) Cisco
• Horizon (Kilo)
• Nova
• Neutron w/ Group-Based Policy
• Glance
• Cinder
• Keystone (v3)
• Ceilometer
• Mistral
• Heat
• APIC ACI Integrated GBP
• VxLAN on OVS with Opflex control plane
AdvancedServices
• ASAv (Firewall/VPN)
• VyOS (Firewall/VPN)
• HAProxy (Load Balancing)
9
SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved
Whatdidallthatgetus?
• Opflex enabled, APIC controlled, ACI fabric orchestrated by OpenStack
APIC
10
SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved
ControllerArchitecture
11
SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved
NetworkReferenceArchitecture
Sungard ASCore Internet
Cisco ACI Fabric
Cst1
FW
Cst2
FW
Cstn
FW
SGAS services
Internet
VxLAN VxLAN VxLAN
Cust 2 hybrid
Cust n hybrid
Cust 2hybrid
Cust nhybrid
Cust 2 hybrid
Cust n hybrid
VxLAN VxLAN VxLAN VxLAN VxLAN
VxLAN
.............Cst1
FW
Cst2
FW
Cstn
FW
12
SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved
OperaBngOpenStack
• Building and suppor+ng mul+ple labs and 5 produc+on sites is hard… • We have a great team
• Mul+disciplinary, mix of sofware, network, and infrastructure engineers • Blend works well for us in building and opera+ng a complex plaUorm
• OpenStack doesn’t always make it easy...
• Finding source of the problem is difficult • Disparate controller architecture makes this more challenging
13
SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved
ContribuBngBack
• Up un+l now, we’ve only contributed minor changes • Hope to increase our ac+vity in the future
• Most of our interac+on is through our vendors (Cisco and One Convergence)
14
SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved
Wherearewenow?
• Live in 5 sites • EMEA and North America
• 7 sites globally in 2016
15
SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved
InterestedinLearningMoreaboutGBP?
Come to our Hands On Lab session
Developing, Deploying, and Consuming L4-7 Network Services in an OpenStack Cloud- Thursday 4:10pm-5:40pm, JW MarrioI AusKn – 110 East 2nd Street, AusKn, TX 78701
16
SungardAvailabilityServicesConfidenBalandProprietary©2016SungardAvailabilityServices,allrightsreserved
Q A
OpenStack Summit Austin, Texas 2016