Abstract image of a woman sitting on books and studying on a laptop

Foreman-and-Puppet-for-Openstack-Audo-Deployment

Download as PPTX, PDF
Y
yating yang

The document discusses Foreman and Puppet for deploying OpenStack. It provides an introduction to Foreman and Puppet, and describes how they can be used together to automatically deploy and configure OpenStack on bare metal servers. The Foreman server acts as a Puppet master and PXE server, installing Ubuntu 14.04 on the bare metal nodes and configuring them using Puppet modules for OpenStack components. It outlines the network requirements and provides an example Puppet manifest for configuring OpenStack networks, services, and nodes.

1 of 47
Downloaded 25 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1Cisco Confidential© 2010 Cisco and/or its affiliates. All rights reserved. 1 Foreman&Puppet Integrated Solution for OpenStack Auto Deployment Yating Yang Feb 10 2015
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2 • Foreman&Puppet Solution for OpenStack deployment introduction (20min ) • Foreman introduction (30min ) • Puppet introduction (Optionnal:10min) • Q&A (10min)
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3 http://www.chenshake.com/openstack-deployment-tool-summary/ • Fuel (Mirantis) • Devstack • Crowbar • Cobbler • RDO • Packstack • TripleO
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4 Foreman & Puppet Network Controller Compute Compute Compute Compute Network Controller Compute Compute Compute Compute Ironic VM VM VM VM Bare metal
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5 Foreman Server (include Puppet Master +PXE server) Bare Metal #1 Ubuntu14.04 #1 with Puppet agent Control Node Bare Metal #2 Ubuntu14.04 #2 with Puppet agent Computer Node Bare Metal #3 Ubuntu14.04 #3 with Puppet agent Network Node Bare Metal #4 Ubuntu14.04 #4 with Puppet agent Ironic Node PXE Puppet PXE PXE PXE PuppetPuppetPuppet
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7 Foreman GUI Add Preseed Templates Add Partition Template Add Ubuntu 14.04 OS Add a Domain Ubuntu 14.04 Bare Metal Add a Host Add 2 Subnet CIMC (change BIOS boot from PXE, Reboot) CIMC (change BIOS boot from HardDisk, Reboot)
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15 Puppet OpenStack Module Install common.yaml configuration site.pp configuration OpenStack auto Deployment Start Puppet OpenStack Module Insta Computer Network Control Wait 2 hours, Installation is done
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16 • The puppetlabs-openstack module is used to deploy a multi- node, all-in-one, or swift-only installation of OpenStack. • Install puppet module puppet module install puppetlabs-openstack or git clone https://github.com/puppetlabs/puppetlabs-openstack.git
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18 Each node needs a minimum of two network interfaces, and up to four. The network interfaces are divided into two groups. • Public interfaces: API network. External network. • Internal interfaces: Management network. Data network.
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19 openstack::region: 'openstack’ ######## Networks openstack::network::api: '10.74.116.0/24' openstack::network::external: '10.74.116.0/24' openstack::network::management: '10.74.15.0/24' openstack::network::data: '10.74.15.0/24’ openstack::network::external::ippool::start: 10.74.116.165 openstack::network::external::ippool::end: 10.74.116.168 openstack::network::external::gateway: 10.74.116.1 openstack::network::external::dns: 64.104.123.144 ] ######## Private Neutron Network openstack::network::neutron::private: '10.0.0.0/24' ######## Fixed IPs (controllers) openstack::controller::address::api: '10.74.116.163' openstack::controller::address::management: '10.74.15.85' openstack::storage::address::api: '10.74.116.163' openstack::storage::address::management: '10.74.15.85' ######## Database openstack::mysql::root_password: 'spam-gak' openstack::mysql::service_password: 'fuva-wax' openstack::mysql::allowed_hosts: ['localhost', '127.0.0.1', '10.74.15.%’ … …
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20 node 'control' { include ::openstack::role::controller } node 'network' { include ::openstack::role::network } node 'compute' { include ::openstack::role::compute }
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21 Controller Node nova-api nova-cert nova-conductor nova-consoleauth nova-novncproxy nova-scheduler keystone neutron-server glance-api glance-registry dashboard MySQL Server RabbitMQ Server NTP Network Node Compute Node Ironic Node neutron-dhcp-agent neutron-l3-agent neutron-metadata-agent neutron-ovs-cleanup neutron-plugin- openvswitch-agent RabbitMQ Client NTP nova-compute neutron-ovs-cleanup neutron-plugin- openvswitch-agent RabbitMQ Client NTP Hypervisor + libvirt MySQL Client tftp-hpa openipmi NTP ironic-api ironic-conductor
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22Cisco Confidential© 2010 Cisco and/or its affiliates. All rights reserved. 22 Foreman TOI Yating Yang Feb 10 2015
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 23  Foreman is a complete lifecycle management tool for physical and virtual servers.  Foreman is an open source tool that can help with the management of servers, by providing an easy way to interact with Puppet (or Chef) to automate tasks and application deployment.  Foreman provides a robust web user interface, API, and CLI which can be used to provision, configure, and monitor your servers.
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 25 • The Smart Proxy is a project which provides a restful API to various sub-systems • DHCP - ISC DHCP and MS DHCP Servers • DNS - Bind and MS DNS Servers • TFTP - any UNIX based tftp server • Puppet - Any Puppet server from 0.24.x • Puppet CA - Manage certificate signing, cleaning and autosign on a Puppet CA server • Realm - Manage host registration to a realm (e.g. FreeIPA)
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 26 • A lot of options • Interactive installation: -I • Enables/disables stuff • Creates a puppet tree skeleton
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 28 • Bare metal and virtual machine • Install any distribution • Configure almost everything • Decentralized (control remote TFTP, DNS, DHCP) • ERB Scripting
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 29 • Trigger Puppet runs • Advanced use: parameters,… • History of changes • ENC ( External Node Classifiers ) is optional
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 30 • Visualize changes • See the full logs • View the facts
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 31 • Libvirt • EC2 • OpenStack • Google Compute Engine • oVirt • VMWare
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 32 • Depending on the provider • Unattended installation • Image-based install • Power management • Console (noVNC)
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 33 • CentOS/RHEL • Fedora • Ubuntu/Debian • Suse • Solaris
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 34
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 35 • Puppet-ca proxy • Takes care of signing certificates • Trigger first puppet run • Run first puppet run in loop (before reboot)
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 36 • Very detailed • History • Host Configuration Status • Overview of the last reports
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 37 • Default provisioning parameters • Puppet classes • Network configuration
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 38 • Command line to foreman • Scripting • Automation • Without browser (e.g no http(s) access)
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 39 • Multiple Puppet Masters • Multiple Smart Proxies • Foreman talks with the CA • Multiple compute resources
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 40 • Foreman plugins are implemented as gems • RPM Installations • Debian Installations • Gems Installations
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 41 • From small labs to larger environments • Interactions with RESTful API • Complete puppet management • Bare Metal and virtual machines
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 42Cisco Confidential© 2010 Cisco and/or its affiliates. All rights reserved. 42 Puppet TOI Yating Yang Feb 10 2015
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 43 • Puppet is a configuration management system that allows you to define the state of your IT infrastructure, then automatically enforces the correct state. • Fact colletction • Catalog compilation • Enforcement • Report • Report sharing
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 44
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 45 • stackforge/puppet-ceph • stackforge/puppet-cinder • stackforge/puppet-designate • stackforge/puppet-glance • stackforge/puppet-heat • stackforge/puppet-horizon • stackforge/puppet-ironic • stackforge/puppet-keystone • stackforge/puppet-manila • stackforge/puppet-neutron • stackforge/puppet-nova • stackforge/puppet-openstack • stackforge/puppet-sahara • stackforge/puppet-swift • stackforge/puppet-tempest • stackforge/puppet-trove • stackforge/puppet-tuskar • stackforge/puppet-vswitch • stackforge/puppet-openstacklib • stackforge/puppet-openstack-specs • stackforge/puppet-openstack_extras
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 46
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 47

More Related Content

ODP
Foreman in your datacenter
lzap
 
PDF
Openstack il2014 staypuft- your friendly foreman openstack installer
Arthur Berezin
 
PDF
Apache Provisionr (incubating) - Bucharest JUG 10
Andrei Savu
 
PPTX
Using puppet, foreman and git to develop and operate a large scale internet s...
techblog
 
PDF
Connecting AWS and Katello/The Foreman
Lukas Kallies
 
PDF
Configuration and lifecycle in Mixed environments
Dmitry Kireev
 
PDF
Deploying RDO OpenStack with a pair of plugins
Dominic Cleal
 
ODP
SaltStack Integration with Foreman (2016)
Stephen Benjamin
 
Foreman in your datacenter
lzap
 
Openstack il2014 staypuft- your friendly foreman openstack installer
Arthur Berezin
 
Apache Provisionr (incubating) - Bucharest JUG 10
Andrei Savu
 
Using puppet, foreman and git to develop and operate a large scale internet s...
techblog
 
Connecting AWS and Katello/The Foreman
Lukas Kallies
 
Configuration and lifecycle in Mixed environments
Dmitry Kireev
 
Deploying RDO OpenStack with a pair of plugins
Dominic Cleal
 
SaltStack Integration with Foreman (2016)
Stephen Benjamin
 

What's hot (20)

ODP
Managing your SaltStack Minions with Foreman
Stephen Benjamin
 
ODP
Linux host orchestration with Foreman, Puppet and Gitlab
Ben Tullis
 
PDF
Full Stack Automation with Katello & The Foreman
Weston Bassler
 
PDF
Foreman presentation
Glen Ogilvie
 
ODP
Auto infra with_foreman_katello
Sachin Ghai
 
PPTX
Deploying Foreman in Enterprise Environments
inovex GmbH
 
ODP
CfgMgmtCamp 2015 - Managing the Content Lifecycle with Katello
Stephen Benjamin
 
ODP
Foreman in Your Data Center :OSDC 2015
Stephen Benjamin
 
PDF
OpenNebula, the foreman and CentOS play nice, too
inovex GmbH
 
ODP
PXEless Discovery with Foreman
Stephen Benjamin
 
PDF
OSCamp 2019 | #3 Ansible: Foreman Discovery by Adam Ruzicka
NETWAYS
 
PDF
Cobbler - Fast and reliable multi-OS provisioning
RUDDER
 
PDF
PuppetCamp Sydney 2012 - Building a Multimaster Environment
Greg Cockburn
 
PDF
Extending Foreman the easy way with foreman_hooks
Dominic Cleal
 
PDF
SaltConf14 - Matthew Williams, Flowroute - Salt Virt for Linux contatiners an...
SaltStack
 
PDF
Making your first contribution to Foreman
Dominic Cleal
 
PDF
Spot Trading - A case study in continuous delivery for mission critical finan...
SaltStack
 
PPTX
High availability for puppet - 2016
Zack Smith
 
PPTX
Ksplice - Keep your Database systems up to date with no downtime
Luis Marques
 
PPTX
OVN 設定サンプル | OVN config example 2015/12/27
Kentaro Ebisawa
 
Managing your SaltStack Minions with Foreman
Stephen Benjamin
 
Linux host orchestration with Foreman, Puppet and Gitlab
Ben Tullis
 
Full Stack Automation with Katello & The Foreman
Weston Bassler
 
Foreman presentation
Glen Ogilvie
 
Auto infra with_foreman_katello
Sachin Ghai
 
Deploying Foreman in Enterprise Environments
inovex GmbH
 
CfgMgmtCamp 2015 - Managing the Content Lifecycle with Katello
Stephen Benjamin
 
Foreman in Your Data Center :OSDC 2015
Stephen Benjamin
 
OpenNebula, the foreman and CentOS play nice, too
inovex GmbH
 
PXEless Discovery with Foreman
Stephen Benjamin
 
OSCamp 2019 | #3 Ansible: Foreman Discovery by Adam Ruzicka
NETWAYS
 
Cobbler - Fast and reliable multi-OS provisioning
RUDDER
 
PuppetCamp Sydney 2012 - Building a Multimaster Environment
Greg Cockburn
 
Extending Foreman the easy way with foreman_hooks
Dominic Cleal
 
SaltConf14 - Matthew Williams, Flowroute - Salt Virt for Linux contatiners an...
SaltStack
 
Making your first contribution to Foreman
Dominic Cleal
 
Spot Trading - A case study in continuous delivery for mission critical finan...
SaltStack
 
High availability for puppet - 2016
Zack Smith
 
Ksplice - Keep your Database systems up to date with no downtime
Luis Marques
 
OVN 設定サンプル | OVN config example 2015/12/27
Kentaro Ebisawa
 
Ad

Similar to Foreman-and-Puppet-for-Openstack-Audo-Deployment (20)

PPTX
Considerations for Operating an OpenStack Cloud
All Things Open
 
PPTX
Considerations for Operating An OpenStack Cloud
Mark Voelker
 
PDF
3 Years of Puppet at Cisco: The Secrets to Our Success - PuppetConf 2013
Puppet
 
PPTX
Puppet for Production in WebEx - PuppetConf 2013
Puppet
 
PPTX
TechWiseTV Workshop: Open NX-OS and Devops with Puppet Labs
Robb Boyd
 
PDF
Configuration Management Tools on NX-OS
Cisco DevNet
 
PPTX
Exploring the Final Frontier of Data Center Orchestration: Network Elements -...
Puppet
 
PDF
Puppet devops wdec
Wojciech Dec
 
PDF
5 cisco open_stack
openstackindia
 
PPTX
Introducing Cloud Development with Mantl
Cisco DevNet
 
PDF
Introducing Cloud Development with Project Shipped and Mantl: a deep dive
Cisco DevNet
 
PDF
Accelerate and unify network deployment with Puppet on Juniper
Puppet
 
PPTX
Opensource tools for OpenStack IAAS
Satya Sanjibani Routray
 
PPTX
BRKDCT-2445 Agile OpenStack Networking with Cisco Solutions-Cisco Live! US 20...
Rohit Agarwalla
 
PDF
Nexus1000V on KVM and OpenStack Integration
openstackindia
 
PPTX
Devicemgmt
xyxz
 
PDF
CISCO - Presentation at Hortonworks Booth - Strata 2014
Hortonworks
 
PPTX
OpenStack Day 2 Operations (Toronto)
Dirk Wallerstorfer
 
PDF
Puppet day v1.1
Wojciech Dec
 
PDF
tack Deployment in the Enterprise
Cisco Canada
 
Considerations for Operating an OpenStack Cloud
All Things Open
 
Considerations for Operating An OpenStack Cloud
Mark Voelker
 
3 Years of Puppet at Cisco: The Secrets to Our Success - PuppetConf 2013
Puppet
 
Puppet for Production in WebEx - PuppetConf 2013
Puppet
 
TechWiseTV Workshop: Open NX-OS and Devops with Puppet Labs
Robb Boyd
 
Configuration Management Tools on NX-OS
Cisco DevNet
 
Exploring the Final Frontier of Data Center Orchestration: Network Elements -...
Puppet
 
Puppet devops wdec
Wojciech Dec
 
5 cisco open_stack
openstackindia
 
Introducing Cloud Development with Mantl
Cisco DevNet
 
Introducing Cloud Development with Project Shipped and Mantl: a deep dive
Cisco DevNet
 
Accelerate and unify network deployment with Puppet on Juniper
Puppet
 
Opensource tools for OpenStack IAAS
Satya Sanjibani Routray
 
BRKDCT-2445 Agile OpenStack Networking with Cisco Solutions-Cisco Live! US 20...
Rohit Agarwalla
 
Nexus1000V on KVM and OpenStack Integration
openstackindia
 
Devicemgmt
xyxz
 
CISCO - Presentation at Hortonworks Booth - Strata 2014
Hortonworks
 
OpenStack Day 2 Operations (Toronto)
Dirk Wallerstorfer
 
Puppet day v1.1
Wojciech Dec
 
tack Deployment in the Enterprise
Cisco Canada
 
Ad

Foreman-and-Puppet-for-Openstack-Audo-Deployment

  • 1. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1Cisco Confidential© 2010 Cisco and/or its affiliates. All rights reserved. 1 Foreman&Puppet Integrated Solution for OpenStack Auto Deployment Yating Yang Feb 10 2015
  • 2. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2 • Foreman&Puppet Solution for OpenStack deployment introduction (20min ) • Foreman introduction (30min ) • Puppet introduction (Optionnal:10min) • Q&A (10min)
  • 3. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3 http://www.chenshake.com/openstack-deployment-tool-summary/ • Fuel (Mirantis) • Devstack • Crowbar • Cobbler • RDO • Packstack • TripleO
  • 4. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4 Foreman & Puppet Network Controller Compute Compute Compute Compute Network Controller Compute Compute Compute Compute Ironic VM VM VM VM Bare metal
  • 5. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5 Foreman Server (include Puppet Master +PXE server) Bare Metal #1 Ubuntu14.04 #1 with Puppet agent Control Node Bare Metal #2 Ubuntu14.04 #2 with Puppet agent Computer Node Bare Metal #3 Ubuntu14.04 #3 with Puppet agent Network Node Bare Metal #4 Ubuntu14.04 #4 with Puppet agent Ironic Node PXE Puppet PXE PXE PXE PuppetPuppetPuppet
  • 6. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6
  • 7. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7 Foreman GUI Add Preseed Templates Add Partition Template Add Ubuntu 14.04 OS Add a Domain Ubuntu 14.04 Bare Metal Add a Host Add 2 Subnet CIMC (change BIOS boot from PXE, Reboot) CIMC (change BIOS boot from HardDisk, Reboot)
  • 8. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8
  • 9. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9
  • 10. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
  • 11. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11
  • 12. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
  • 13. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13
  • 14. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
  • 15. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15 Puppet OpenStack Module Install common.yaml configuration site.pp configuration OpenStack auto Deployment Start Puppet OpenStack Module Insta Computer Network Control Wait 2 hours, Installation is done
  • 16. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16 • The puppetlabs-openstack module is used to deploy a multi- node, all-in-one, or swift-only installation of OpenStack. • Install puppet module puppet module install puppetlabs-openstack or git clone https://github.com/puppetlabs/puppetlabs-openstack.git
  • 17. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17
  • 18. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18 Each node needs a minimum of two network interfaces, and up to four. The network interfaces are divided into two groups. • Public interfaces: API network. External network. • Internal interfaces: Management network. Data network.
  • 19. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19 openstack::region: 'openstack’ ######## Networks openstack::network::api: '10.74.116.0/24' openstack::network::external: '10.74.116.0/24' openstack::network::management: '10.74.15.0/24' openstack::network::data: '10.74.15.0/24’ openstack::network::external::ippool::start: 10.74.116.165 openstack::network::external::ippool::end: 10.74.116.168 openstack::network::external::gateway: 10.74.116.1 openstack::network::external::dns: 64.104.123.144 ] ######## Private Neutron Network openstack::network::neutron::private: '10.0.0.0/24' ######## Fixed IPs (controllers) openstack::controller::address::api: '10.74.116.163' openstack::controller::address::management: '10.74.15.85' openstack::storage::address::api: '10.74.116.163' openstack::storage::address::management: '10.74.15.85' ######## Database openstack::mysql::root_password: 'spam-gak' openstack::mysql::service_password: 'fuva-wax' openstack::mysql::allowed_hosts: ['localhost', '127.0.0.1', '10.74.15.%’ … …
  • 20. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20 node 'control' { include ::openstack::role::controller } node 'network' { include ::openstack::role::network } node 'compute' { include ::openstack::role::compute }
  • 21. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21 Controller Node nova-api nova-cert nova-conductor nova-consoleauth nova-novncproxy nova-scheduler keystone neutron-server glance-api glance-registry dashboard MySQL Server RabbitMQ Server NTP Network Node Compute Node Ironic Node neutron-dhcp-agent neutron-l3-agent neutron-metadata-agent neutron-ovs-cleanup neutron-plugin- openvswitch-agent RabbitMQ Client NTP nova-compute neutron-ovs-cleanup neutron-plugin- openvswitch-agent RabbitMQ Client NTP Hypervisor + libvirt MySQL Client tftp-hpa openipmi NTP ironic-api ironic-conductor
  • 22. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22Cisco Confidential© 2010 Cisco and/or its affiliates. All rights reserved. 22 Foreman TOI Yating Yang Feb 10 2015
  • 23. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 23  Foreman is a complete lifecycle management tool for physical and virtual servers.  Foreman is an open source tool that can help with the management of servers, by providing an easy way to interact with Puppet (or Chef) to automate tasks and application deployment.  Foreman provides a robust web user interface, API, and CLI which can be used to provision, configure, and monitor your servers.
  • 24. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24
  • 25. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 25 • The Smart Proxy is a project which provides a restful API to various sub-systems • DHCP - ISC DHCP and MS DHCP Servers • DNS - Bind and MS DNS Servers • TFTP - any UNIX based tftp server • Puppet - Any Puppet server from 0.24.x • Puppet CA - Manage certificate signing, cleaning and autosign on a Puppet CA server • Realm - Manage host registration to a realm (e.g. FreeIPA)
  • 26. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 26 • A lot of options • Interactive installation: -I • Enables/disables stuff • Creates a puppet tree skeleton
  • 27. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27
  • 28. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 28 • Bare metal and virtual machine • Install any distribution • Configure almost everything • Decentralized (control remote TFTP, DNS, DHCP) • ERB Scripting
  • 29. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 29 • Trigger Puppet runs • Advanced use: parameters,… • History of changes • ENC ( External Node Classifiers ) is optional
  • 30. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 30 • Visualize changes • See the full logs • View the facts
  • 31. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 31 • Libvirt • EC2 • OpenStack • Google Compute Engine • oVirt • VMWare
  • 32. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 32 • Depending on the provider • Unattended installation • Image-based install • Power management • Console (noVNC)
  • 33. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 33 • CentOS/RHEL • Fedora • Ubuntu/Debian • Suse • Solaris
  • 34. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 34
  • 35. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 35 • Puppet-ca proxy • Takes care of signing certificates • Trigger first puppet run • Run first puppet run in loop (before reboot)
  • 36. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 36 • Very detailed • History • Host Configuration Status • Overview of the last reports
  • 37. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 37 • Default provisioning parameters • Puppet classes • Network configuration
  • 38. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 38 • Command line to foreman • Scripting • Automation • Without browser (e.g no http(s) access)
  • 39. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 39 • Multiple Puppet Masters • Multiple Smart Proxies • Foreman talks with the CA • Multiple compute resources
  • 40. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 40 • Foreman plugins are implemented as gems • RPM Installations • Debian Installations • Gems Installations
  • 41. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 41 • From small labs to larger environments • Interactions with RESTful API • Complete puppet management • Bare Metal and virtual machines
  • 42. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 42Cisco Confidential© 2010 Cisco and/or its affiliates. All rights reserved. 42 Puppet TOI Yating Yang Feb 10 2015
  • 43. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 43 • Puppet is a configuration management system that allows you to define the state of your IT infrastructure, then automatically enforces the correct state. • Fact colletction • Catalog compilation • Enforcement • Report • Report sharing
  • 44. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 44
  • 45. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 45 • stackforge/puppet-ceph • stackforge/puppet-cinder • stackforge/puppet-designate • stackforge/puppet-glance • stackforge/puppet-heat • stackforge/puppet-horizon • stackforge/puppet-ironic • stackforge/puppet-keystone • stackforge/puppet-manila • stackforge/puppet-neutron • stackforge/puppet-nova • stackforge/puppet-openstack • stackforge/puppet-sahara • stackforge/puppet-swift • stackforge/puppet-tempest • stackforge/puppet-trove • stackforge/puppet-tuskar • stackforge/puppet-vswitch • stackforge/puppet-openstacklib • stackforge/puppet-openstack-specs • stackforge/puppet-openstack_extras
  • 46. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 46
  • 47. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 47

Editor's Notes

  • #4: 关于 Mirantis Mirantis,一家很牛逼的openstack服务集成商,他是社区贡献排名前5名中唯一一个靠软件和服务吃饭的公司(其他分别是Red Hat, HP, IBM, Rackspace)。相对于其他几个社区发行版,Fuel的版本节奏很快,平均每两个月就能提供一个相对稳定的社区版。 Fuel 是什么? Fuel 是一个为openstack 端到端”一键部署“设计的工具,其功能含盖自动的PXE方式的操作系统安装,DHCP服务,Orchestration服务 和puppet 配置管理相关服务等,此外还有openstack 关键业务健康检查和log 实时查看等非常好用的服务。
  • #7: Initrd ramdisk或者""initrd""是指一个临时文件系统,它在启动阶段被Linux内核调用。initrd主要用于当“根”文件系统被挂载之前,进行准备工作 tftp服务器就会给客户端主机提供一个pxe的文件、这个文件就是pxelinux.0,他相当于我们的bootloader、而这个文件是由syslinux这个程序包提供的
  • #9: kickstart是Red Hat公司针对自动安装Red Hat、Fedora与CentOS这3种同一体系的操作系统而制定的问答规范。它一般会以.cfg作为文件后缀名,不仅可以自动应答一些简单问题,还可 以指定操作系统需要安装的各种软件包,更可以在操作系统完装完成后自动执行一些脚本,这些脚本可以让我们直接配置系统。 通常,kickstart配置文件通过命令行工具system-config-kickstart生成。当然,我们更喜欢在CentOS图形界面环境下生 成用于定制操作系统安装的配置文件。 preseed则是Debian/Ubuntu操作系统自动安装的问答规范,同样可以预定义Ubuntu如何安装,其配置更多通过手动处理。
  • #25: mysql/postgresql/sqlite Amazon Elastic Compute Cloud (Amazon EC2)
  • #29: ERB is a feature of Ruby that enables you to conveniently generate any kind of text, in any quantity, from templates. The templates themselves combine plain text with Ruby code for variable substitution and flow control, which makes them easy to write and maintain.
  • #30: An external node classifier is an executable that can be called by puppet master; it doesn’t have to be written in Ruby. Its only argument is the name of the node to be classified, and it returns a YAML document describing the node.
  • #32: Libvirt 库是一种实现 Linux 虚拟化功能的 Linux® API,它支持各种虚拟机监控程序,包括 Xen 和 KVM,以及 QEMU 和用于其他操作系统的一些虚拟产品。
  • #36: puppetca is the application for managing Puppet’s certification authority.