OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA ·...
Transcript of OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA ·...
![Page 1: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/1.jpg)
OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは
Rossella Sblendido Software Engineer
SUSE
Ryo Murakawa Evangelist
Novell Japan
![Page 2: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/2.jpg)
2
What is SUSE® OpenStack Cloud?
SUSE will change the name from SUSE Cloud to SUSE OpenStack Cloud as same as the release of next version OpenStack product.
SUSE OpenStack Cloud 5
Before, we called our product SUSE Cloud.
Name Based OpenStack
SUSE Cloud 2 Grizzly
SUSE Cloud 3 Havana
SUSE Cloud 4 Icehouse
![Page 3: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/3.jpg)
3
OpenStack Distribution
Billling
VM Mgmt Image Tool
Portal
App Monitor Sec & Perf
Cloud
Management
Orchestration
(Heat)
Dashboard
(Horizon)
Cloud APIs
(OpenStack and
EC2)
Required
Services
Message Q
Database
Identity
(Keystone)
Images
(Glance)
Hypervisor
Compute
(Nova)
Operating System
Physical Infrastructure: x86-64, Switches, Storage
OpenStack Icehouse Management Tools OS and Hypervisor
Object
(Swift) Network
(Neutron)
Adapters Adapters
Telemetry
(Ceilometer)
Ins
tall
Fra
me
wo
rk
Physical Infrastructure
Block
(Cinder)
SUSE Cloud Adds
Required
Services
RabbitMQ
Postgresql
Ins
tall
Fra
me
wo
rk
(Cro
wb
ar,
Che
f, T
FT
P,D
NS
,
DH
CP
) SUSE® OpenStack Cloud
![Page 4: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/4.jpg)
4
SUSE® OpenStack Cloud Feature
Crowbar based Installation Framework
![Page 5: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/5.jpg)
5
Days
Parameters
Components
>1400 11 2
Deploying OpenStack Manually
![Page 6: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/6.jpg)
6
Hours
Parameters
Components
>1400 11 2
Deploying OpenSack with SUSE OpenStack Cloud
![Page 7: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/7.jpg)
7
Multi Hyper Visor Support
Supported Hyper Visor
KVM
Xen
vSphere
Hyper-V
![Page 8: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/8.jpg)
8
High Availability for Control Node
High Availability for Control Node
OpenStack Component High Availability type
Data Base Active/Standby
Messaging Service Active/Standby
Keystone Active/Active
Glance Active/Active
Cinder Active/Active
Neutron Active/Active
Nova-Service Active/Active
Horizon Active/Active
Ceilometer Active/Active
![Page 9: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/9.jpg)
High Availability in Neutron
![Page 10: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/10.jpg)
10
What's Neutron?
• Neutron is an OpenStack project to provide
“networking as a service” between interface devices
(e.g., vNICs) managed by other Openstack services
(e.g., nova)
• provides a powerful API to define the network
connectivity
![Page 11: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/11.jpg)
11
Neutron abstractions
• Network: L2 broadcast domain
• Subnet: a block of v4 or v6 IP addresses and
associated configuration state.
• Port: a connection point for attaching a single device,
such as the NIC of a virtual server, to a virtual network.
Also describes the associated network configuration,
such as the MAC and IP addresses to be used on that
port.
• Router: interconnects networks
![Page 12: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/12.jpg)
12
Modular architecture
• Plugin: custom back-end implementation of the Networking API
• Neutron-server: exposes the API
• Several agents (L2, L3, DHCP, Metadata, etc)
![Page 13: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/13.jpg)
13
Plugin
• Monolithic plugin (direct control of core resources)
• ML2 • Modular, delegates calls to proper drivers
• Two kind of drives: • Type drivers (support specific network type)
• Mechanism drivers (ensure the information established by the TypeDriver is
properly applied)
• 2 default implementations: OpenVSwitch and LinuxBridge
![Page 14: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/14.jpg)
14
Different kind of nodes
![Page 15: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/15.jpg)
15
L2 Agent
• Runs on hypervisor
• Configure the local vswitch
• Communicates with the server over RPC
• Wires new devices
• Security Group Rules
![Page 16: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/16.jpg)
16
L3 Agent
• Provides L3/NAT
• Runs network node
• Uses namespaces
• External network access
![Page 17: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/17.jpg)
17
DHCP agent
• Provides DHCP services
• Communication over RPC
• Isolation through namespaces
• dnsmasq
![Page 18: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/18.jpg)
18
Metadata Agent
• Proxies Metadata requests to Nova
• Routed Networks • Process embedded in router
• Non-routed Networks • Static routes redirect traffic running in the DHCP namespace
![Page 19: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/19.jpg)
High Availability
![Page 20: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/20.jpg)
20
What HA means
• Minimize two things:
• System downtime — occurs when a user-facing
service is unavailable beyond a specified maximum
amount of time
• Data loss — accidental deletion or destruction of data
![Page 21: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/21.jpg)
21
Stateless vs. Stateful services
• A stateless service is one that provides a response
after your request, and then requires no further
attention
• A stateful service is one where subsequent requests to
the service depend on the results of the first request
![Page 22: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/22.jpg)
22
Active/passive Active/active
• Active/passive (one instance is only receiving
notification but not processing requests):
• Active/active: there's a backup but both the main and
redundant systems run concurrently
![Page 23: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/23.jpg)
How to make Neutron HA
![Page 24: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/24.jpg)
24
How to make Neutron HA
• L2 agent runs on every compute node, no need of HA
• Neutron server, DHCP and L3 agent need HA
![Page 25: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/25.jpg)
25
HA Neutron server
• It's stateless
![Page 26: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/26.jpg)
26
HA DHCP agent
• OpenStack Networking service has a scheduler that lets you
run multiple agents across nodes.
• The DHCP agent can be natively highly available.
![Page 27: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/27.jpg)
27
HA L3 agent
• It is scalable thanks to the scheduler that allows
distribution of virtual routers across multiple nodes.
• But no native HA, routers need to be migrated if a L3
agent fails
![Page 28: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/28.jpg)
28
L3 agent fails...
![Page 29: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/29.jpg)
29
HA upstream solutions
• VRRP (Virtual Router Redundancy Protocol)
• DVR (Distributed Virtual Router)
![Page 30: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/30.jpg)
30
VRRP
![Page 31: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/31.jpg)
31
Without DVR
![Page 32: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/32.jpg)
32
With DVR
![Page 33: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/33.jpg)
Real world example
![Page 34: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/34.jpg)
34
Neutron configuration - Real world
scenario • SUSE Cloud 4 (Icehouse) and tests for Cloud 5 (Juno)
• ML2, OVS with VLAN or LinuxBridge (multi-hypervisor
support)
• HA!
![Page 35: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/35.jpg)
35
L3 Agent HA
• Active/active
• Migration tools that monitors the agents • Migrates routers from dead agents to alive ones
• Replicates networks to all DHCP agents running
![Page 36: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/36.jpg)
36
Network cluster
![Page 37: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/37.jpg)
37
Failure...
![Page 38: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/38.jpg)
38
Failover
![Page 39: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/39.jpg)
Thank you.
If you have questions...come to our booth!
![Page 40: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/40.jpg)
![Page 41: OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack Neutron HA · OpenStackでのダウンタイム・ゼロへの挑戦 OpenStack NeutronのHAとは Rossella Sblendido](https://reader033.fdocument.pub/reader033/viewer/2022042713/5fa775724705c717d6383e7c/html5/thumbnails/41.jpg)
Unpublished Work of SUSE. All Rights Reserved. This work is an unpublished work and contains confidential, proprietary and trade secret information of SUSE.
Access to this work is restricted to SUSE employees who have a need to know to perform tasks within the scope of their assignments. No part of
this work may be practiced, performed, copied, distributed, revised, modified, translated, abridged, condensed, expanded, col lected, or adapted
without the prior written consent of SUSE.
Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability.
General Disclaimer This document is not to be construed as a promise by any participating company to develop, deliver, or market a product. It is not a commitment to
deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. SUSE makes no representations or
warranties with respect to the contents of this document, and specifically disclaims any express or implied warranties of merchantability or fitness
for any particular purpose. The development, release, and timing of features or functionality described for SUSE products remains at the sole
discretion of SUSE. Further, SUSE reserves the right to revise this document and to make changes to its content, at any time, without obligation to
notify any person or entity of such revisions or changes. All SUSE marks referenced in this presentation are trademarks or registered trademarks
of Novell, Inc. in the United States and other countries. All third-party trademarks are the property of their respective owners.