Red Hat Enterprise Linux OpenStack Platform User Group.Chris MilstedSeniour Solutions Architect; RHEL, Satellite, OpenStack, OpenShift, Red Hat Storage, Containers.... cmilsted@redhat.com

Session title

Non confidential Session title Confidential

Recap on RHEL OSP 6.0 (Juno)

What’s the latest in RHEL OSP 6.0?• OpenStack Compute (Nova)

• Support for NUMA and vCPU topology configuration

• SR/IOV port support for guests where supporting hardware is available

• Continual improvement on live-upgrade support

• Support for serial console

• Technology Preview for Ironic - Bare-metal Nova Driver

• Evacuation to scheduled host

• Previous versions of Nova meant specifying a host to evacuate to

• Now, Nova asks the scheduler to re-place instances after a migration

What’s the latest in RHEL OSP 6.0?• OpenStack Block Storage (Cinder)

• Support for volume replication where backend driver permits for disaster recovery purposes

• Implements bandwidth restrictions on volume-copy to help with QoS

• Many new plugins/drivers, e.g. FusionIO, XtremIO, Datera (all certification pending)

• OpenStack Identity Service (Keystone)

• Multi-backend for multiple-domains, i.e. an external backend per domain

• PKI token compression to ease data throughput

• Configurable hash algorithm for PKI; default is still MD5, but SHA256 recommended

What’s the latest in RHEL OSP 6.0?• OpenStack Networking (Neutron)

• Full IPv6 support for tenant and provider networks

• High Availability for Neutron routers (via VRRP)

• Distributed Virtual Routing (DVR - Tech Preview)

• Allows “multi-host” routing for throughput and availability

• Further parity with nova-network

What’s the latest in RHEL OSP 6.0?• OpenStack Data Processing (Sahara)

• Will be fully supported in RHEL OSP 6.0 (previously technology preview)

• Certification of both HortonWorks and Cloudera distributions

• Hadoop 2.4.0 support

• Ceph Integration

• Support for Ceph RBD-backed ephemeral storage

• Permits diskless compute nodes and live-migration

• Now supports copy-on-write (Glance image —> Nova ephemeral disk)

Update on RHEL OSP 7.0 (Kilo)

What’s coming in RHEL OSP 7.0?• Based on the upstream Kilo release, expected July 2015

• Major new features and changes include-

• Trove (DBaaS) - Fully supported

• DNS-as-a-Service (Designate) - Technology Preview

• File share (-as-a-Service, Manila) - Technology Preview

• Operational Tools - Technology Preview

• Evolution of installation and management platform - “RHEL OSP Manager”

• Looking into VM/Instance High Availability

What’s coming in RHEL OSP 7.0?• OpenStack Networking (Neutron)

• Full-support for Distributed Virtual Routing (DVR) - what is this?

Distributed Virtual Routing (DVR)• Pre-DVR Topology-

InstanceInstance InstanceInstance InstanceInstance

Tenant Network

L3 AgentL3 Agent

External NetworkDNAT w/Floating IP’s

SNAT

Host AHost A Host BHost B

Distributed Virtual Routing (DVR)• Pre-DVR Topology-

InstanceInstance InstanceInstance InstanceInstance

Tenant Network

L3 AgentL3 Agent

External NetworkDNAT w/Floating IP’s

SNAT

Host AHost A Host BHost B

Single Point of Failure

Distributed Virtual Routing (DVR)• With DVR, routing for instances without floating IP’s still goes via L3 agent

InstanceInstance InstanceInstance InstanceInstance

Tenant Network

L3 AgentL3 Agent

External Network

SNAT

Host AHost A Host BHost B

Distributed Virtual Routing (DVR)• With DVR, routing for instances with floating IP’s goes via compute nodes themselves

InstanceInstance InstanceInstance InstanceInstance

Tenant Network

L3 AgentL3 Agent

External Network

SNATHost AHost A Host BHost B

DNAT w/Floating IP’s

SNAT - No Floating

What’s coming in RHEL OSP 7.0?• OpenStack Networking (Neutron)

• Full-support for Distributed Virtual Routing (DVR)

• Per-port security group implementation - i.e. remove anti-spoof/filtering

• IPv6 everywhere - will include API’s, message-bus, database, etc.

• DPDK-enabled/accelerated Open vSwitch (Tech Preview)

What’s coming in RHEL OSP 7.0?• OpenStack Compute (Nova)

• Full-support for Ironic (Bare-metal as a Service)

• Support for file-system quiescing (via guest agent) - consistent snapshots

• Support for vhost-user virtual interface plugging

What’s coming in RHEL OSP 7.0?• OpenStack Compute (Nova)

• Full-support for Ironic (Bare-metal as a Service)

• Support for file-system quiescing (via guest agent) - consistent snapshots

• Support for vhost-user virtual interface plugging

• OpenStack Volume Service (Cinder)

• Snapshot-based Backup support - volume remains online during backup

• Import/Export of Snapshots - Re-import existing volumes via metadata

• Volume multi-attach - attach volumes to multiple instances simultaneously

• Private volume types - restrict certain storage tiers to select users

What’s coming in RHEL OSP 7.0?• OpenStack Identity (Keystone)

• Hierarchy support - nested projects, sub-admin support

• Federation support - authenticate against external providers, SAML and OpenID

• Switch over to Keystone v3.0 API - most services currently use v2.0.

What’s coming in RHEL OSP 7.0?• OpenStack Identity (Keystone)

• Hierarchy support - nested projects, sub-admin support

• Federation support - authenticate against external providers, SAML and OpenID

• Switch over to Keystone v3.0 API - most services currently use v2.0.

• Ceph Integration

• Support for volume migration to/from RBD-backed volumes

• Offload copy-volume-to-image function; Ceph does the hard work

• Cinder awareness of over-subscription in thin provisioned Ceph backends