SlideShare a Scribd company logo

Tweaking openstack

Download as PPTX, PDF
V
Vish Abrams

Vishvananda Ishaya is the Director of Open Source at Nebula Inc. He has extensive experience with OpenStack, including being a member of the OpenStack Technical Committee and leading the development of Nova for the first two years. The document discusses how to install and configure OpenStack and its core components like Nova, Neutron, Swift, and Glance using various methods such as DevStack. It also provides tips on optimizing performance and security when deploying OpenStack.

Technology
1 of 34
Downloaded 24 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
© 2013 Nebula, Inc. All rights reserved. Vishvananda Ishaya, Director of Open Source, Nebula Inc.
© 2013 Nebula, Inc. All rights reserved. 2 • OpenStack Technical Committee Member • Started at NASA the day Nova was created • Nova Technical Lead for the first two years of its existence • Designed and deployed multiple private clouds with OpenStack
© 2013 Nebula, Inc. All rights reserved.
© 2013 Nebula, Inc. All rights reserved. 4 $ _
© 2013 Nebula, Inc. All rights reserved. 5 $ (apt-get|yum) install openstack
© 2013 Nebula, Inc. All rights reserved. 6 $ (apt-get|yum) install openstack ...
© 2013 Nebula, Inc. All rights reserved. 7 $ (apt-get|yum) install openstack ... openstack installed successfully! $ _
© 2013 Nebula, Inc. All rights reserved. 8 $ _
© 2013 Nebula, Inc. All rights reserved. 9 $ (apt-get|yum) install openstack
© 2013 Nebula, Inc. All rights reserved. 10 $ (apt-get|yum) install openstack unknown command $ _
© 2013 Nebula, Inc. All rights reserved. 11 $ (apt-get|yum) install openstack unknown command $ _
© 2013 Nebula, Inc. All rights reserved. 12 $ (apt-get|yum) install openstack unknown command $ _
© 2013 Nebula, Inc. All rights reserved. 13 $ (apt-get|yum) install openstack unknown command $ _
© 2013 Nebula, Inc. All rights reserved. 14 $ _
© 2013 Nebula, Inc. All rights reserved. 15 $ git clone git::/github.com... ... $ cd devstack $ ./stack.sh
© 2013 Nebula, Inc. All rights reserved. 16 $ git clone git::/github.com... ... $ cd devstack $ ./stack.sh
© 2013 Nebula, Inc. All rights reserved. 17 • Tiny to very large scale • Pluggable backends • Multiple components
© 2013 Nebula, Inc. All rights reserved. 18 • Tiny to very large scale • Pluggable backends • Multiple components WAT!?
© 2013 Nebula, Inc. All rights reserved.
© 2013 Nebula, Inc. All rights reserved. 20 • Neutron OVS • Neutron Vendor • Nova-network vlan • Nova-network flat
© 2013 Nebula, Inc. All rights reserved. 21 • KVM • Xen • Hyper-V • ESX • Other
© 2013 Nebula, Inc. All rights reserved. 22 • Swift • Ceph
© 2013 Nebula, Inc. All rights reserved. 23 • Default LVM • Ceph • Solidfire • Netapp
© 2013 Nebula, Inc. All rights reserved. 24 • Compute (nova) • Object Storage (swift) • Image Service (glance) • Identity (keystone) • Dashboard (horizon) • Networking (neutron) • Block Storage (cinder) • Metering (ceilometer) • Orchestration (heat)
© 2013 Nebula, Inc. All rights reserved. 25 • Compute (nova) • Object Storage (swift) • Image Service (glance) • Identity (keystone) • Dashboard (horizon) • Networking (neutron) • Block Storage (cinder) • Metering (ceilometer) • Orchestration (heat)
© 2013 Nebula, Inc. All rights reserved.
© 2013 Nebula, Inc. All rights reserved. 27 • force_dhcp_release=true • defer_iptables_apply=true • multi_host=true • share_dhcp_address=true • dnsmasq_config_file=/path/to/file (configure dnsmasq to pass external gateway)
© 2013 Nebula, Inc. All rights reserved. 28 • force_raw_images=False • use_cow_images=False • resume_guests_state_on_host_boot=True • running_deleted_instance_action=reap
© 2013 Nebula, Inc. All rights reserved. 29 • Turn on jumbo frames • Increase tx queue length • Tweak guest tcp settings • http://buriedlede.blogspot.com/2012/11/driving-100-gigabit-network- with.html
© 2013 Nebula, Inc. All rights reserved.
© 2013 Nebula, Inc. All rights reserved. 31 • Normal linux hardening applies • Control access to the host machines • Keep software up-to-date • Don’t have services listen on 0.0.0.0 • Separate mgmt and guest traffic • http://aa4698cc2bf4ab7e5907- ed3df21bb39de4e57eec9a20aa0b8711.r41.cf2.rackcdn.com/Ope nStackSecurityGuide.epub
© 2013 Nebula, Inc. All rights reserved. 32 • Only enable api extensions your users need • Only enable scheduler filters your users need • Customize policy for administrative actions • Use HTTPS in front of api services • Consider disabling instance migration
© 2013 Nebula, Inc. All rights reserved.
© 2013 Nebula, Inc. All rights reserved. Thank you.Thank you.

More Related Content

PPTX
Openstack - an introduction to the cloud
Barak Merimovich
 
PPTX
Openstack 101
Jason Kalai Arasu
 
PDF
OpenStack for Rookies @ IPN
Carlos Gonçalves
 
PDF
OpenStack Benelux - Cloud, OpenStack and a Market In Motion - Sept 2015final
John Zannos
 
PDF
20121204 open technet_openstack_이틀만하면나처럼할수있다
Nalee Jang
 
PPTX
Openstack days taiwan 2016 0712
Naoto Gohko
 
PDF
OpenStack en 10 minutes
Romain Hardouin
 
PDF
Montreal OpenStack Q3-2017 MeetUp
Stacy Véronneau
 
Openstack - an introduction to the cloud
Barak Merimovich
 
Openstack 101
Jason Kalai Arasu
 
OpenStack for Rookies @ IPN
Carlos Gonçalves
 
OpenStack Benelux - Cloud, OpenStack and a Market In Motion - Sept 2015final
John Zannos
 
20121204 open technet_openstack_이틀만하면나처럼할수있다
Nalee Jang
 
Openstack days taiwan 2016 0712
Naoto Gohko
 
OpenStack en 10 minutes
Romain Hardouin
 
Montreal OpenStack Q3-2017 MeetUp
Stacy Véronneau
 

What's hot (16)

PDF
Latinoware 2013 - OpenStack RDO - A walkthrough by the Open Source Cloud Comp...
Luan Cestari
 
PDF
OpenStack Toronto Q3 MeetUp - September 28th 2017
Stacy Véronneau
 
PPTX
Elastic build environment
Cachet Software Solutions Ltd
 
PDF
OpenStack Congress and Datalog (English)
Motonori Shindo
 
PDF
VietOpenStack Boston recap 2017
Vietnam Open Infrastructure User Group
 
PDF
OpenStack e le nuove Infrastrutture IT
Giuseppe Paterno'
 
PDF
Libcloud and j clouds
DaeMyung Kang
 
PPT
Getting Started with OpenStack from Hong Kong Summit Session November 5
Niki Acosta
 
PDF
OpenStack @ CERN, by Tim Bell
Amrita Prasad
 
PPTX
Science logic cloudstack london meetup 2015 02-11
ShapeBlue
 
PDF
OpenStack運用管理最前線 - OpenStack最新情報セミナー 2014年12月
VirtualTech Japan Inc.
 
PPTX
OpenStack architecture and services
vinoth kumar selvaraj
 
PDF
OpenStack Overview and History
Mirantis
 
PDF
[Rakuten TechConf2014] [F-4] At Rakuten, The Rakuten OpenStack Platform and B...
Rakuten Group, Inc.
 
PDF
Robert collins openstack on openstack 201304162
OpenStack Foundation
 
PPTX
OpenStack Overview
openstackstl
 
Latinoware 2013 - OpenStack RDO - A walkthrough by the Open Source Cloud Comp...
Luan Cestari
 
OpenStack Toronto Q3 MeetUp - September 28th 2017
Stacy Véronneau
 
Elastic build environment
Cachet Software Solutions Ltd
 
OpenStack Congress and Datalog (English)
Motonori Shindo
 
VietOpenStack Boston recap 2017
Vietnam Open Infrastructure User Group
 
OpenStack e le nuove Infrastrutture IT
Giuseppe Paterno'
 
Libcloud and j clouds
DaeMyung Kang
 
Getting Started with OpenStack from Hong Kong Summit Session November 5
Niki Acosta
 
OpenStack @ CERN, by Tim Bell
Amrita Prasad
 
Science logic cloudstack london meetup 2015 02-11
ShapeBlue
 
OpenStack運用管理最前線 - OpenStack最新情報セミナー 2014年12月
VirtualTech Japan Inc.
 
OpenStack architecture and services
vinoth kumar selvaraj
 
OpenStack Overview and History
Mirantis
 
[Rakuten TechConf2014] [F-4] At Rakuten, The Rakuten OpenStack Platform and B...
Rakuten Group, Inc.
 
Robert collins openstack on openstack 201304162
OpenStack Foundation
 
OpenStack Overview
openstackstl
 
Ad

Similar to Tweaking openstack (20)

PPTX
Couch to OpenStack: Nova - July, 30, 2013
Trevor Roberts Jr.
 
PDF
Open nebula froscon
OpenNebula Project
 
PPT
Neutrondev ppt
marunewby
 
TXT
Havana版 RDO-QuickStart-2 Answer File(answer2.txt)
VirtualTech Japan Inc.
 
TXT
Havana版 RDO-QuickStart-1 Answer File(answer1.txt)
VirtualTech Japan Inc.
 
TXT
Havana版 RDO-QuickStart-3 Answer File(RDO-QuickStart-3.txt)
VirtualTech Japan Inc.
 
PDF
Build cloud like Rackspace with OpenStack Ansible
Jirayut Nimsaeng
 
PDF
Oreilly solinea-managing-openstack
Vietnam Open Infrastructure User Group
 
PDF
Minimal OpenStack LinuxCon NA 2015
Sean Dague
 
PDF
Getting Started Hacking OpenNebula - Fosdem-2013
OpenNebula Project
 
PDF
Cloud Computing in practice with OpenNebula ~ Develer workshop 2012
Giovanni Toraldo
 
PDF
Cloud computing, in practice ~ develer workshop
Develer S.r.l.
 
PPTX
Cloud computing and OpenStack
Edgar Magana
 
PDF
Loadays 2013 OpenNebula Fundamentals
OpenNebula Project
 
PDF
OpenNebula TechDay Boston 2015 - installing and basic usage
OpenNebula Project
 
PDF
OpenNebula TechDay Waterloo 2015 - Open nebula hands on workshop
OpenNebula Project
 
PDF
OSDC 2013 | The OpenNebula Cloud Platform for Datacenter Virtualization by Co...
NETWAYS
 
PDF
"OpenStack — more than just software". Tom Fifield, OpenStack
Yandex
 
PPTX
Baylisa - Dive Into OpenStack
Jesse Andrews
 
PDF
Open stack networking_101_part-2_tech_deep_dive
yfauser
 
Couch to OpenStack: Nova - July, 30, 2013
Trevor Roberts Jr.
 
Open nebula froscon
OpenNebula Project
 
Neutrondev ppt
marunewby
 
Havana版 RDO-QuickStart-2 Answer File(answer2.txt)
VirtualTech Japan Inc.
 
Havana版 RDO-QuickStart-1 Answer File(answer1.txt)
VirtualTech Japan Inc.
 
Havana版 RDO-QuickStart-3 Answer File(RDO-QuickStart-3.txt)
VirtualTech Japan Inc.
 
Build cloud like Rackspace with OpenStack Ansible
Jirayut Nimsaeng
 
Oreilly solinea-managing-openstack
Vietnam Open Infrastructure User Group
 
Minimal OpenStack LinuxCon NA 2015
Sean Dague
 
Getting Started Hacking OpenNebula - Fosdem-2013
OpenNebula Project
 
Cloud Computing in practice with OpenNebula ~ Develer workshop 2012
Giovanni Toraldo
 
Cloud computing, in practice ~ develer workshop
Develer S.r.l.
 
Cloud computing and OpenStack
Edgar Magana
 
Loadays 2013 OpenNebula Fundamentals
OpenNebula Project
 
OpenNebula TechDay Boston 2015 - installing and basic usage
OpenNebula Project
 
OpenNebula TechDay Waterloo 2015 - Open nebula hands on workshop
OpenNebula Project
 
OSDC 2013 | The OpenNebula Cloud Platform for Datacenter Virtualization by Co...
NETWAYS
 
"OpenStack — more than just software". Tom Fifield, OpenStack
Yandex
 
Baylisa - Dive Into OpenStack
Jesse Andrews
 
Open stack networking_101_part-2_tech_deep_dive
yfauser
 
Ad

Recently uploaded (20)

PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PPTX
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
Approach and Philosophy of On baking technology
30anthuong17
 

Tweaking openstack

  • 1. © 2013 Nebula, Inc. All rights reserved. Vishvananda Ishaya, Director of Open Source, Nebula Inc.
  • 2. © 2013 Nebula, Inc. All rights reserved. 2 • OpenStack Technical Committee Member • Started at NASA the day Nova was created • Nova Technical Lead for the first two years of its existence • Designed and deployed multiple private clouds with OpenStack
  • 3. © 2013 Nebula, Inc. All rights reserved.
  • 4. © 2013 Nebula, Inc. All rights reserved. 4 $ _
  • 5. © 2013 Nebula, Inc. All rights reserved. 5 $ (apt-get|yum) install openstack
  • 6. © 2013 Nebula, Inc. All rights reserved. 6 $ (apt-get|yum) install openstack ...
  • 7. © 2013 Nebula, Inc. All rights reserved. 7 $ (apt-get|yum) install openstack ... openstack installed successfully! $ _
  • 8. © 2013 Nebula, Inc. All rights reserved. 8 $ _
  • 9. © 2013 Nebula, Inc. All rights reserved. 9 $ (apt-get|yum) install openstack
  • 10. © 2013 Nebula, Inc. All rights reserved. 10 $ (apt-get|yum) install openstack unknown command $ _
  • 11. © 2013 Nebula, Inc. All rights reserved. 11 $ (apt-get|yum) install openstack unknown command $ _
  • 12. © 2013 Nebula, Inc. All rights reserved. 12 $ (apt-get|yum) install openstack unknown command $ _
  • 13. © 2013 Nebula, Inc. All rights reserved. 13 $ (apt-get|yum) install openstack unknown command $ _
  • 14. © 2013 Nebula, Inc. All rights reserved. 14 $ _
  • 15. © 2013 Nebula, Inc. All rights reserved. 15 $ git clone git::/github.com... ... $ cd devstack $ ./stack.sh
  • 16. © 2013 Nebula, Inc. All rights reserved. 16 $ git clone git::/github.com... ... $ cd devstack $ ./stack.sh
  • 17. © 2013 Nebula, Inc. All rights reserved. 17 • Tiny to very large scale • Pluggable backends • Multiple components
  • 18. © 2013 Nebula, Inc. All rights reserved. 18 • Tiny to very large scale • Pluggable backends • Multiple components WAT!?
  • 19. © 2013 Nebula, Inc. All rights reserved.
  • 20. © 2013 Nebula, Inc. All rights reserved. 20 • Neutron OVS • Neutron Vendor • Nova-network vlan • Nova-network flat
  • 21. © 2013 Nebula, Inc. All rights reserved. 21 • KVM • Xen • Hyper-V • ESX • Other
  • 22. © 2013 Nebula, Inc. All rights reserved. 22 • Swift • Ceph
  • 23. © 2013 Nebula, Inc. All rights reserved. 23 • Default LVM • Ceph • Solidfire • Netapp
  • 24. © 2013 Nebula, Inc. All rights reserved. 24 • Compute (nova) • Object Storage (swift) • Image Service (glance) • Identity (keystone) • Dashboard (horizon) • Networking (neutron) • Block Storage (cinder) • Metering (ceilometer) • Orchestration (heat)
  • 25. © 2013 Nebula, Inc. All rights reserved. 25 • Compute (nova) • Object Storage (swift) • Image Service (glance) • Identity (keystone) • Dashboard (horizon) • Networking (neutron) • Block Storage (cinder) • Metering (ceilometer) • Orchestration (heat)
  • 26. © 2013 Nebula, Inc. All rights reserved.
  • 27. © 2013 Nebula, Inc. All rights reserved. 27 • force_dhcp_release=true • defer_iptables_apply=true • multi_host=true • share_dhcp_address=true • dnsmasq_config_file=/path/to/file (configure dnsmasq to pass external gateway)
  • 28. © 2013 Nebula, Inc. All rights reserved. 28 • force_raw_images=False • use_cow_images=False • resume_guests_state_on_host_boot=True • running_deleted_instance_action=reap
  • 29. © 2013 Nebula, Inc. All rights reserved. 29 • Turn on jumbo frames • Increase tx queue length • Tweak guest tcp settings • http://buriedlede.blogspot.com/2012/11/driving-100-gigabit-network- with.html
  • 30. © 2013 Nebula, Inc. All rights reserved.
  • 31. © 2013 Nebula, Inc. All rights reserved. 31 • Normal linux hardening applies • Control access to the host machines • Keep software up-to-date • Don’t have services listen on 0.0.0.0 • Separate mgmt and guest traffic • http://aa4698cc2bf4ab7e5907- ed3df21bb39de4e57eec9a20aa0b8711.r41.cf2.rackcdn.com/Ope nStackSecurityGuide.epub
  • 32. © 2013 Nebula, Inc. All rights reserved. 32 • Only enable api extensions your users need • Only enable scheduler filters your users need • Customize policy for administrative actions • Use HTTPS in front of api services • Consider disabling instance migration
  • 33. © 2013 Nebula, Inc. All rights reserved.
  • 34. © 2013 Nebula, Inc. All rights reserved. Thank you.Thank you.

Editor's Notes

  • #23: Swift has some great characteristics, but its hard to argue against the two for the price of one (object and block storage) that ceph provides.
  • #24: Once again the two-for-one is valuable unless you have existing investment in a storage solution.
  • #25: Ceilometer requires quite a bit of manual configuration and coding to be useful. It doesn’t yet provide a lot out-of-the-box.
  • #26: Swift has proved its value at really large scale and the default neutron backend still has a few performance and HA drawbacks.