cloudforms architectural overview-1

7/21/2019 CloudForms Architectural Overview-1

1/74

Red Hat CloudFormsArchitectural Overview

Steve Reichard, RHCEPrincipal Software Engineer

Vinn Valde!, RHCAPrincipal Software Engineer

Version "#$

%a &$""


2/74

1801 Varsity DriveRaleigh NC 27606-2072 USAPhone !1 "1" 7#$ %700Phone 888 7%% $281&a' !1 "1" 7#$ %701P( )o' 1%#88

Resear*h +riangle Par, NC 2770" USA

UN. is a registere/ tra/ear, o +he (en 3ro45

ntel an/ .eon are registere/ tra/ear,s o ntel Cororation or its s4si/iaries in the Unite/ Statesan/ other *o4ntries5

All other tra/ear,s reeren*e/ herein are the roerty o their rese*tive oners5

2011 y Re/ 9at: n*5 +his aterial ay e /istri4te/ only s4;e*t to the ters an/ *on/itions setorth in the (en P4li*ation >5oen*ontent5org>oen4>?5

+he inoration *ontaine/ herein is s4;e*t to *hange itho4t noti*e5 Re/ 9at: n*5 shall not e lialeor te*hni*al or e/itorial errors or oissions *ontaine/ herein5

Distri4tion oo/iie/ versions o this /o*4ent is rohiite/ itho4t the e'li*it erission o Re/9at n*5

Distri4tion o this or, or /erivative o this or, in any stan/ar/ =aer? oo, or or *oer*ial4roses is rohiite/ 4nless rior erission is otaine/ ro Re/ 9at n*5

+he 3P3 ingerrint o the se*4rity@re/hat5*o ,ey isCA 20 86 86 2) D6 "D &C 6# &6 C C$ 21 "1 80 CD D) $2 A6 0

Sen/ ee/a*, to 4s atrear*h-ee/a*,@re/hat5*o

refarch'feed(ac)*redhat#com " www#redhat#com
http://www.opencontent.org/openpub/mailto:[email protected]:[email protected]?subject=Feedback%20on%20CloudForms%20Architectural%20Overview%20Reference%20Architecturemailto:[email protected]://www.opencontent.org/openpub/mailto:[email protected]:[email protected]?subject=Feedback%20on%20CloudForms%20Architectural%20Overview%20Reference%20Architecturemailto:[email protected]


3/74

Table of Contents

1 'e*4tive S4ary5555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555%

2 Re/ 9at Clo4/ Strategy5555555555555555555555555555555555555555555555555555555555555555555555555555555555555$

251 Clo4/&ors Clo4/ ngine5555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555556

252 Clo4/&ors Ali*ation ngine55555555555555555555555555555555555555555555555555555555555555555555555555555555555555556

25% Clo4/&ors Syste ngine5555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555557

25$ Clo4/&ors Clo4/ Servi*es55555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555557

% Re/ 9at Clo4/ Sol4tion Ar*hite*t4re555555555555555555555555555555555555555555555555555555555555555558

%51 +he Clo4/ as viee/ y NS+55555555555555555555555555555555555555555555555555555555555555555555555555555555555555555558

%52 Re/ 9at Clo4/&ors an/ the NS+ o/el5555555555555555555555555555555555555555555555555555555555555555555551$

%5% 9igh


4/74

" E+ecutive SummarClo4/ *o4ting is 4i*,ly e*oing the lator o *hoi*e or 4sers an/ 4sinesses that

ant to re/4*e oerating e'enses an/ e ale to s*ale reso4r*es rai/ly5 ase/ a4toation:le'iility: oility: resilien*y: an/ re/4n/an*y are several other a/vantages o ovingreso4r*es to the *lo4/5

ven tho4gh *lo4/ *o4ting is in the early stages: there are /ierent tyes o *lo4/ sol4tionsavailale to 4sinesses to/ay5 (n-reise rivate *lo4/s allo 4sinesses to ta,e a/vantageo *lo4/ te*hnologies hile reaining on a rivate netor,5 P4li* *lo4/s allo 4sinesses toa,e reso4r*es availale to e'ternal *ons4ers5 9yri/ *lo4/s allo the est o oth 4li*an/ rivate *lo4/ *o4ting o/els5

n this aer the *on*ets that *orise an nrastr4*t4re as a Servi*e =aaS? Clo4/ are/is*4sse/ irst at a high-level *on*et4al vie: then ro,en /on into a*t4al ro/4*ts: an

e'ale ali*ation /eloye/ an/ ea*h ste o this 4se *ase ro,en /on5 +he rea/er*on*l4/es ith *olete ,nole/ge o a Re/ 9at Clo4/&ors: ho to /eloy ali*ations:an/ ho Re/ 9at is 4ni4ely ositione/ to e the a4thoritative intera*e o all Private: 9yri/:Co4nity: an/ P4li* Clo4/s5

refarch'feed(ac)*redhat#com www#redhat#com
mailto:[email protected]:[email protected]


5/74

& Red Hat Cloud StrategRe/ 9atEs *lo4/ vision is 4nli,e that o any other + ven/or5 e re*ogniFe that yo4r +

inrastr4*t4re is - an/ ill *ontin4e to e - *oose/ o ie*es ro any /ierent har/arean/ sotare ven/ors5 e let yo4 4se an/ anage these /iverse assets as one *lo4/:enaling *lo4/ to e an evol4tion: not a revol4tion or a onolithi* sta*, lo*,e/ to thete*hnology roa/a an/ 4siness ra*ti*es o a single ven/or5

hen yo4 *hoose Re/ 9at or yo4r *lo4/: yo4 get

+he ost *orehensive sol4tions or *lo4/s - oth rivate an/ 4li*5

Consistent enterrise-*lass environents that ri/ge the hysi*al an/ virt4al orl/:insi/e the /ata *enter an/ 4li* *lo4/s5

Strategi* le'iility itho4t lo*,-in5

)etter inrastr4*t4re: /esigne/ se*ii*ally or 4lti-tenant *lo4/s5

n/4stry-lea/ing e*osyste that a,es *lo4/ 4sale: a**essile: an/ sae5

n a ar,et 4ll o hye: Re/ 9at a,es the *lo4/ real an/ *oelling5 +o/ay5

nrastr4*t4re-as-a-Servi*e =aaS? is ao4t /elivering inrastr4*t4reGhi*h is to say reso4r*esli,e *o4te: storage: an/ netor,ing - to 4sers5 Bany organiFations are getting into *lo4/*o4ting y 4il/ing an on-reise aaS *lo4/5 +hey ay ant to ,ee the otion to ri/gero rivate to 4li* *lo4/s: a5,5a5 hyri/ *lo4/s: oen5 )4t they are oten *on*erne/ ao4t4sing 4li* *lo4/s or iortant 4siness ali*ations: hether e*a4se o se*ii* reg4latoryor a4/it iss4es or ;4st e*a4se they are ary o a//ing a ne eleent o otential ris, to their+ governan*e5

+he aaS ter is i/ely 4se/5 Dig /eeer tho4gh: an/ yo4 in/ that not all aaS sol4tions are*reate/ e4al5 &or e'ale: the tyi*al aaS anages the *lo4/ 4t /oes not anage the lie-*y*le o ali*ations r4nning in the *lo4/ - even tho4gh the *lo4/ sho4l/ e in s4ort o theali*ation an/ not the other ay aro4n/5

&4rtherore: this tyi*al aaS a,es the naive ass4tion that organiFations are loo,ing tostart over ith a ran/ ne inrastr4*t4re as they ove into *lo4/ *o4ting5 Nothing *o4l/ e4rther ro the tr4th5 (rganiFations ant to ;oin the *lo4/ *o4ting revol4tion: 4t they antto /o it in an evol4tionary ay that leverages an/ e'ten/s their e'isting inrastr4*t4re an/

aintains ortaility a*ross /ierent te*hnology sta*,s an/ rovi/ers5

Re/ 9at Clo4/&ors is /ierent5


6/74

Previo4sly: Re/ 9at has shon that Re/ 9at Clo4/ &o4n/ations rovi/e/ the ne*essaryte*hnologies nee/e/ or the *lo4/ inrastr4*t4re5 Clo4/&ors is the ne't generation ote*hnologies hi*h 4il/s 4on Re/ 9at Clo4/ &o4n/ations to rovi/e a *olete aaS *lo4/sol4tion5

Clo4/&ors rovi/es the aaS inrastr4*t4re thro4gh

Ali*ation


7/74

Clo4/&ors is /elivering te*hnologies in the olloing areas

Clo4/&ors Clo4/ ngine

Clo4/&ors Ali*ation ngine

Clo4/&ors Syste ngine Clo4/&ors Clo4/ Servi*es

2.1 CloudForms Cloud Engine

Clo4/&ors Clo4/ ngine is resonsile or all *lo4/ reso4r*e anageent5 t enales*reating *lo4/ reso4r*es: anaging oli*ies an/ or,-los aro4n/ those reso4r*es: an/governing a**ess an/ erissions or the reso4r*es5 H4otas: 4ality-o-servi*e: an/ se*4rityoli*ies are also 4n/er a/inistrator *ontrol5 n/-4sers *an then rovision reso4r*es thro4gha sel-servi*e e intera*e s4;e*t to oli*y *onstraints5

+he Clo4/&ors Clo4/ ngine rovi/es 4n*tionality in the olloing areas

Clo4/ ntera*e

Ali*ation


8/74

2.3 CloudForms System Engine

Clo4/&ors Syste ngine oerationally anages r4nning systes a*ross hysi*al: virt4al:an/ *lo4/ environents5 t rovi/es *ontin4o4s *olian*e o *ontent an/ *onig4rations =as

ell as Re/ 9at entitleents? *onsistent ith the /einitions 4se/ y Ali*ation ngine5 t4il/s on to o Ali*ation ngineIs 4n*tionality y onitoring an/ 4/ating hile systesare r4nning on an ongoing asis5 Syste ngine also or,s in *on*ert ith Ali*ation nginey s4lying *ontent that it *an 4se to 4il/ iages an/ /eloy5

+he Clo4/&ors Syste ngine rovi/es 4n*tionality in the area o Content ProvisionBanageent5

2.4 CloudForms Cloud Services

Clo4/&ors Clo4/ Servi*es rovi/e the *onsistent 4n*tionality a*ross varie/ *lo4/environents or a i/e variety o servi*e s4*h as storage: availaility: et*55

refarch'feed(ac)*redhat#com 0 www#redhat#com


9/74

Red Hat Cloud Solution Architecturen this se*tion the *lo4/ /einitions as *4rrently /eine/ y NS+ are rovi/e/: the aing o

Re/ 9at Clo4/&ors to the /einitions are roose/: an/ a high level loo, that the Re/ 9atClo4/&ors Sol4tion Ar*hite*t4re is /es*rie/5

3.1 The Cloud as viewed y !"ST

NS+1=National nstit4te o Stan/ar/s an/ +e*hnology? has ro/4*e/ several /o*4ents thats4ly /einitions an/ rovi/e *oon terinology or the *lo4/ ara/ig that are reiterate/in the reain/er o this se*tion5

NS+ Deinition o Clo4/ Co4ting2

NS+ Clo4/ Co4ting Reeren*e Ar*hite*t4re: v150

%

#"#" 1efinition of Cloud Computing

Clo4/ *o4ting is a o/el or enaling *onvenient: on-/ean/ netor, a**ess to a share/ool o *onig4rale *o4ting reso4r*es =e5g5: netor,s: servers: storage: ali*ations: an/servi*es? that *an e rai/ly rovisione/ an/ release/ ith inial anageent eort orservi*e rovi/er intera*tion5 +his *lo4/ o/el rootes availaility an/ is *oose/ o iveessential *hara*teristi*s: three servi*e o/els: an/ o4r /eloyent o/els5

#"#& Essential Characteristics

On'demand self'service2

A *ons4er *an 4nilaterally rovision *o4ting *aailities: s4*h as server tie an/netor, storage: as nee/e/ a4toati*ally itho4t re4iring h4an intera*tion ith ea*hservi*eIs rovi/er5 )roa/ netor, a**ess *aailities are availale over the netor, an/a**esse/ thro4gh stan/ar/ e*haniss that roote 4se y heterogeneo4s thin or thi*,*lient lators =e5g5: oile hones: latos: an/ PDAs?5

Resource pooling2

+he rovi/erIs *o4ting reso4r*es are oole/ to serve 4ltile *ons4ers 4sing a 4lti-tenant o/el: ith /ierent hysi*al an/ virt4al reso4r*es /ynai*ally assigne/ an/reassigne/ a**or/ing to *ons4er /ean/5 +here is a sense o lo*ation in/een/en*e inthat the *4stoer generally has no *ontrol or ,nole/ge over the e'a*t lo*ation o therovi/e/ reso4r*es 4t ay e ale to se*iy lo*ation at a higher level o astra*tion =e5g5:*o4ntry: state: or /ata *enter?5 'ales o reso4r*es in*l4/e storage: ro*essing: eory:netor, an/i/th: an/ virt4al a*hines5

www#redhat#com 3 refarch'feed(ac)*redhat#com
http://collaborate.nist.gov/twiki-cloud-computing/pub/CloudComputing/Documents/Draft-SP-800-145_cloud-definition.pdfhttp://www.redhat.com/http://www.redhat.com/http://collaborate.nist.gov/twiki-cloud-computing/pub/CloudComputing/Documents/Draft-SP-800-145_cloud-definition.pdf


10/74

Rapid elasticit2

Caailities *an e rai/ly an/ elasti*ally rovisione/: in soe *ases a4toati*ally: to4i*,ly s*ale o4t an/ rai/ly release/ to 4i*,ly s*ale in5 +o the *ons4er: the *aailitiesavailale or rovisioning oten aear to e 4nliite/ an/ *an e 4r*hase/ in any 4antityat any tie5

%easured Service2

Clo4/ systes a4toati*ally *ontrol an/ otiiFe reso4r*e 4se y leveraging a etering*aaility at soe level o astra*tion aroriate to the tye o servi*e =e5g5: storage:ro*essing: an/i/th: an/ a*tive 4ser a**o4nts?5 Reso4r*e 4sage *an e onitore/:*ontrolle/: an/ reorte/ rovi/ing transaren*y or oth the rovi/er an/ *ons4er o the4tiliFe/ servi*e5

#"# Service %odelsCloud 4nfrastructure as a Service 54aaS6

+he *aaility rovi/e/ to the *ons4er is to rovision ro*essing: storage: netor,s: an/other 4n/aental *o4ting reso4r*es here the *ons4er is ale to /eloy an/ r4naritrary sotare: hi*h *an in*l4/e oerating systes an/ ali*ations5 +he *ons4er/oes not anage or *ontrol the 4n/erlying *lo4/ inrastr4*t4re 4t has *ontrol overoerating systes: storage: /eloye/ ali*ations: an/ ossily liite/ *ontrol o sele*tnetor,ing *oonents =e5g5: host irealls?5

Cloud Platform as a Service 5PaaS6

+he *aaility rovi/e/ to the *ons4er is to /eloy onto the *lo4/ inrastr4*t4re *ons4er-*reate/ or a*4ire/ ali*ations *reate/ 4sing rograing lang4ages an/ tools s4orte/y the rovi/er5 +he *ons4er /oes not anage or *ontrol the 4n/erlying *lo4/inrastr4*t4re in*l4/ing netor,: servers: oerating systes: or storage: 4t has *ontrol overthe /eloye/ ali*ations an/ ossily ali*ation hosting environent *onig4rations5

Cloud Software as a Service 5SaaS6

+he *aaility rovi/e/ to the *ons4er is to 4se the rovi/erIs ali*ations r4nning on a*lo4/ inrastr4*t4re5 +he ali*ations are a**essile ro vario4s *lient /evi*es thro4gh athin *lient intera*e s4*h as a e roser =e5g5: e-ase/ eail?5 +he *ons4er /oes notanage or *ontrol the 4n/erlying *lo4/ inrastr4*t4re in*l4/ing netor,: servers: oeratingsystes: storage: or even in/ivi/4al ali*ation *aailities: ith the ossile e'*etion oliite/ 4ser-se*ii* ali*ation *onig4ration settings5

refarch'feed(ac)*redhat#com 7 www#redhat#com


11/74

#"#- 1eploment %odels

Private cloud2

+he *lo4/ inrastr4*t4re is oerate/ solely or an organiFation5 t ay e anage/ y the

organiFation or a thir/ arty an/ ay e'ist on reise or o reise5Communit cloud2

+he *lo4/ inrastr4*t4re is share/ y several organiFations an/ s4orts a se*ii**o4nity that has share/ *on*erns =e5g5: ission: se*4rity re4ireents: oli*y: an/*olian*e *onsi/erations?5 t ay e anage/ y the organiFations or a thir/ arty an/ay e'ist on reise or o reise5

Pu(lic cloud2

+he *lo4/ inrastr4*t4re is a/e availale to the general 4li* or a large in/4stry gro4an/ is one/ y an organiFation selling *lo4/ servi*es5

H(rid cloud2

+he *lo4/ inrastr4*t4re is a *oosition o to or ore *lo4/s =rivate: *o4nity: or4li*? that reain 4ni4e entities 4t are o4n/ together y stan/ar/iFe/ or rorietaryte*hnology that enales /ata an/ ali*ation ortaility =e5g5: *lo4/ 4rsting or loa/-alan*ing eteen *lo4/s?5

#"#. Cloud Actors

+he olloing are soe o the Clo4/ A*tors ro the NS+ Clo4/ Bo/el5

Cloud Consumer

Person or organiFation that aintains a 4siness relationshi ith: an/ 4ses servi*e ro:Clo4/ Provi/ers5

Clo4/ *ons4ers are *ategoriFe/ into three gro4s: ase/ on their /ierentali*ation>4sage s*enarios as liste/ in 8a(le '"2 Cloud Consumer Activities5

Consumer 8pe %a9or Activities

aaSCreates>installs: anages an/ onitors servi*es or +inrastr4*t4re oerations5

PaaSDevelos: tests: /eloys an/ anages ali*ations in a*lo4/ environent5

SaaS Uses ali*ation>servi*e or 4siness ro*ess oerations

Table 3-1: Cloud Consumer Activities

www#redhat#com "$ refarch'feed(ac)*redhat#com
http://www.redhat.com/http://www.redhat.com/


12/74

Cloud Provider

Person: organiFation or entity resonsile or a,ing a servi*e availale to Clo4/Cons4ers5

+he rovi/ers eror /ierent tas,s or /ierent servi*e tyes: hi*h are liste/ in8a(le '&2 Cloud Provider Activities5

Provider 8pe %a9or Activities

aaSProvisions an/ anages the hysi*al ro*essing: storage:netor,ing an/ the hosting environent an/ *lo4/inrastr4*t4re or aaS *ons4ers5

PaaS

Provisions an/ anages *lo4/ inrastr4*t4re an/i//leare or the lator *ons4ersJ rovi/es/eveloent: /eloyent an/ a/inistration tools tolator *ons4ers5

SaaS nstalls: anages: aintains an/ s4orts the sotareali*ation on a *lo4/ inrastr4*t4re5

Table 3-2: Cloud Provider Activities

+he a*tivities o *lo4/ rovi/ers *an e gro4e/ into the olloing erse*tives Servi*eDeloyent: Servi*e (r*hestration: Clo4/ Servi*e Banageent: Se*4rity: an/ Priva*y5

Servi*e Deloyent reers to the *lo4/ inrastr4*t4re oeration as relate/ to the/eloyent o/els Private *lo4/: Co4nity *lo4/: P4li* *lo4/: 9yri/ *lo4/5

Servi*e (r*hestration reers to the arrangeent: *oor/ination an/ anageento *lo4/ inrastr4*t4re to rovi/e /ierent *lo4/ servi*es to eet + an/ 4sinessre4ireents5 +he three *on*et4al layers o a generaliFe/ *lo4/ environentServi*e


13/74

As /ei*te/ in the olloing ill4stration: Clo4/ Servi*e Banageent in*l4/es allthe servi*e-relate/ 4n*tions that are ne*essary or the anageent an/oerations o those servi*es re4ire/ y or roose/ to Clo4/ Cons4ers5 A*lo4/ rovi/er erors the olloing 4n*tions to s4ort *lo4/ servi*eanageent )4siness S4ort: Provisioning>Conig4ration: an/

Portaility>nteroeraility5

+he olloing ase*ts o Se*4rity 4st e anage/ in the *lo4/ A4thenti*ationan/ A4thoriFation: Availaility: Coni/entiality: /entity Banageent: ntegrity:Se*4rity Bonitoring K n*i/ent Resonse: an/ Se*4rity Poli*y Banageent5

+he goal o Priva*y in the *lo4/ is to rote*t the ass4re/: roer: an/ *onsistent*olle*tion: ro*essing: *o4ni*ation: 4se an/ /isosition o ersonalinoration =P? an/ ersonally i/entiiale inoration =P? in the *lo4/5

www#redhat#com "& refarch'feed(ac)*redhat#com

Illustration 3-1: Cloud Providers Cloud Service ana!ement


14/74

Cloud :ro)er

An entity that anages the 4se: eroran*e an/ /elivery o *lo4/ servi*es: an/ negotiatesrelationshis eteen Clo4/ Provi/ers an/ Clo4/ Cons4ers5

+hree a;or servi*es rovi/e/ y Clo4/ )ro,ers

Service 4ntermediation2

A *lo4/ ro,er enhan*es a given servi*e y iroving soe se*ii* *aailityan/ rovi/es the val4e-a//e/ servi*e to Clo4/ Cons4ers5

Service Aggregation2

A *lo4/ ro,er *oines an/ integrates 4ltile servi*es into one or ore neservi*es5 +he ro,er ill rovi/e /ata integration an/ ens4re the se*4re /ataoveent eteen Clo4/ Cons4er an/ 4ltile *lo4/ rovi/ers5

Service Ar(itrage2

Servi*e Aritrage is siilar to servi*e aggregation: ith the /ieren*e in that theservi*es eing aggregate/ are not i'e/5 Servi*e aritrage allos le'ile an/oort4nisti* *hoi*es or the ro,er5 &or e'ale: the *lo4/ ro,er *an 4se a*re/it-s*oring servi*e an/ sele*t the est s*ore ro 4ltile s*oring agen*ies5



15/74

3.2 #ed $at CloudForms and the !"ST model

Re/ 9at Clo4/&ors /oes not it as a single a*tor in the NS+ o/el5 )y itsel: Re/ 9atClo4/&ors is not a NS+ /eine/ Clo4/ Provi/er5 here a NS+ /eine/ Clo4/ Provi/errovi/es the 4n/erlying hosting environent s4*h as virt4al a*hines: Re/ 9at Clo4/&ors/oes not5 Rather: it e'ten/s the Clo4/ Provi/erEs Clo4/ Servi*e Banageent s4ort an/a*ilitates Servi*e Deloyent an/ Servi*e (r*hestration5 +he ill4stration elo shos thestan/ar/ NS+ Clo4/ Provi/er itho4t Re/ 9at Clo4/&ors5

www#redhat#com "- refarch'feed(ac)*redhat#com

Illustration 3-2: "IST Cloud Provider


16/74

Re/ 9at Clo4/&ors also rovi/es 4*h ore 4n*tionality than a NS+ /eine/ Clo4/ )ro,er5A Clo4/ )ro,er erely re/ire*ts the Clo4/ Cons4er to e'isting *lo4/ rovi/ers as i*t4re/here5

refarch'feed(ac)*redhat#com ". www#redhat#com

Illustration 3-3: "IST Cloud #ro$er


17/74

Re/ 9at Clo4/&ors: hoever: e'ten/s a Re/ 9at Certiie/ Clo4/ Provi/erEs eat4res:ese*ially those relate/ to Clo4/ Servi*e Banageent5 n arti*4lar:theortaility>interoeraility 4n*tionality is in*rease/ ith the eat4res that are inherent in Re/9at Clo4/&ors: an/ 4rther a*ilitate all re4ests ro the Clo4/ Cons4ers5 (ther areasay also see in*rease/ 4n*tionality an/ eneit ro Re/ 9at Clo4/&orsEs astra*tion eing

ale to rovi/e a single 4lti4rose intera*e5 +he olloing ill4stration reresents Re/ 9atClo4/&ors e'ten/ing a Clo4/ Provi/erEs 4n*tionality5

www#redhat#com "/ refarch'feed(ac)*redhat#com

Illustration 3-%: Red Hat CloudForms &'tends Certi(ied Clouds


18/74

hen *oine/ ith a virt4aliFation environent: gri/ /eloyent: or are-etal ar:issing essential *lo4/ *hara*teristi*s are rovi/e/ y Re/ 9at Clo4/&ors5 +he hoste/environent is transore/ into a 4n*tional *lo4/ rovi/er y the sharing o the Clo4/ Servi*eBanageent 4n*tionality eteen the hosting environent an/ Re/ 9at Clo4/&ors: asortraye/ elo#

refarch'feed(ac)*redhat#com "0 www#redhat#com

Illustration 3-): Red Hat CloudForms * Hosted &nvironment Cloud


19/74

Re/ 9at Clo4/&ors astra*tion *aailities allo it to eror ore than the 4n*tionality o aServi*e Aggregation )ro,er: y rovi/ing *onsistent eat4res: *ontent: an/ servi*es a*rosss4orte/ environents5 +he aility to *ontrol /eloyents into any *ertiie/ *lo4/ rovi/erres4lts in *onsistent *ross-*lo4/ vies o *ontent5 +he ne't ill4stration/islays ho Re/ 9atClo4/&ors a,es this ossile5

www#redhat#com "3 refarch'feed(ac)*redhat#com

Illustration 3-+: Red Hat CloudForms Provides ulti-Cloud

Intero,erabilit


20/74

3.3 $igh %evel Functional Areas

+he high level 4n*tional areas o Re/ 9at Clo4/&ors are

Clo4/ ntera*e Content Provision Banageent

Ali*ation Des*rition 3eneration age


21/74

Application Description Generation allos the Clo4/ Cons4er to /eine their entireali*ation /eloyent: hi*h is store/ in .B< orat5 +his .B< is 4se/ to 4il/ an/ *onig4rethe ali*ation in vario4s *lo4/ rovi/er environents5

Image Lifecycle Management*ontrols the *reation an/ anageent o the iages 4se/ in

/eloying the Clo4/ Cons4erEs ali*ation5 Image Lifecycle Management 4ses the .B9igh Availaility

www#redhat#com &$ refarch'feed(ac)*redhat#com


22/74

##" Cloud 4nterface

hen a Clo4/ Cons4er engages Re/ 9at Clo4/&ors: the Cloud Interfaceis the riaryoint o intera*tion that the Clo4/ Cons4er 4ses to initiate a*tivities: ro a/inistration/4ties: gathering reorts on vario4s reso4r*es: to /eining an/ *ontrolling an ali*ation/eloyent into a *lo4/5+he olloing ill4strations4ariFes these 4n*tions5

refarch'feed(ac)*redhat#com &" www#redhat#com

Illustration 3-: Cloud Inter(ace


23/74

##& Content Provision %anagement

Content ProvisionManagementrovi/es sotare to the other 4n*tional areas: anagessotare reositories =ro stan/ar/ *ontent so4r*es s4*h as Re/ 9at Netor,: 4loa/e/ sel-s4lie/ *olle*tions: S(s: et*?: an/ alies *onig4ration *olian*e an/ sotare

o/ii*ations or r4nning instan*es5 +he ill4stration elo /ei*ts its intera*tion ith the other4n*tional areas5

www#redhat#com && refarch'feed(ac)*redhat#com

Illustration 3-: Content Provision ana!ement


24/74

## Application 1escription ;eneration

+he Clo4/ Cons4er /eines their ali*ation /eloyent as a set o systes *onig4re/ ith*olle*tions o sotare an/ *onig4ration /ata re4ire/ to a**olish the assigne/ tas,5 +he

Application Description Generation o4t4ts this/einition as .B


25/74

##- 4mage


26/74

##. Application


27/74

##/ Functional Area Summar

+he ill4stration elo s4ariFes the high level *on*et4al sol4tion hen Re/ 9atClo4/&ors astra*ts vario4s 4li* Clo4/ Provi/ers or y Clo4/&ors e'ten/ing vario4svirt4aliFation: 3ri/: or ar environents5 Re/ 9at Clo4/&ors oerations are segregate/ into

the olloing 4n*tional areas

Clo4/ ntera*e

Content Provision Banageent

Ali*ation Des*rition 3eneration

age


28/74

- Red Hat CloudForms Components+he revio4s se*tion /es*rie/ the ar*hite*t4re in ters o the 4n*tional areas5 +he a*t4alileentation erors the 4n*tionality as a set o ro/4*ts5 +his se*tion i/entiies the

*oonents o Re/ 9at Clo4/&ors an/ asso*iates the ar*hite*t4ral 4n*tion ith the*orreson/ing *oonents5 +he Aeol4s Pro;e*t$is the 4rella ro;e*t or any ie*es o the*lo4/ sotare5 hile/ei*te/ elo is the aing o 4n*tional areas to the higher levelro;e*ts: the olloing se*tions rovi/e greater /etail5

refarch'feed(ac)*redhat#com &0 www#redhat#com

Illustration %-1: Arc7itectural Com,onent a,,in!


29/74

4.1 Cloud "nter&ace

+he Cloud Interfacerovi/es the riary 4ser intera*e or Re/ 9at Clo4/&ors a*tivities5 AnAP is also availale as an alternative a**ess etho/5 +he Clo4/ ntera*e 4n*tionality is

s4lie/ y theAeolus UIas reresente/ elo5

www#redhat#com &3 refarch'feed(ac)*redhat#com

Illustration %-2: Cloud Inter(ace Com,onents


30/74

+he *lo4/ intera*e rovi/es a *entraliFe/ anageent intera*e or Clo4/ Cons4ers:hether they e a/inistrators or /eveloers: to intera*t ith /isarate *lo4/ rovi/ers5 Usingthe e-ase/ intera*e: a Clo4/ Cons4er *an log on an/ eror *ertain a*tions ase/ onthe rights asso*iate/ ith their a**o4nt5 +he goal o the *lo4/ intera*e is to astra*t the a*,-en/ *lo4/ rovi/er ro the Clo4/ Cons4er: regar/less o hether the Clo4/ Cons4er/esires to 4tiliFe C2: Ra*,sa*e: a Re/ 9at nterrise Virt4aliFation inrastr4*t4re: or other

arove/ *lo4/ inrastr4*t4re or their ali*ation5 +he ill4stration elo shos ho the *lo4/intera*e rovi/es a**ess to Resource Management, Image Management, Administration,Reporting, an/Accounting

refarch'feed(ac)*redhat#com &7 www#redhat#com

Illustration %-3: Cloud Inter(ace Functional 8ie0


31/74

ith Resource Management,the a4thoriFe/ Clo4/ Cons4er is ale to anage the a*tivereso4r*es s4*h as liste/ in 8a(le -'"2 Resources5 ithin ea*h o these *ategories: attri4tesli,e roerties an/ erissions *an e o/iie/ as nee/e/5

Resource 1escription

User a**o4ntA Re/ 9at Clo4/&ors Clo4/ Cons4erJ allos a**ess an/*ontrols erissions > roles5

H4otaleents liits on instan*es or /is, 4sages: *an easso*iate/ ith a 4ser a**o4nt: *lo4/ rovi/er a**o4nt: ool: orool aily5

Clo4/ Provi/era**o4nt

+he a**o4nt that allos a**ess to a se*ii* *lo4/ rovi/er5+his a**o4nt *an e asso*iate/ ith 4ltile ools5

Pool A gro4ing o *lo4/ rovi/ers as se*iie/ y the Clo4/rovi/ers a**o4nts assigne/ to or the oolEs 4se5

Pool ailyA gro4ing o ools y 4ser /eine/ seanti*sM e5g5 /ev: test5A ool *an only e assigne/ to on ool aily5

nstan*es +hese are systes that are r4nning in *lo4/ rovi/er5

Deloyent3ro4s o instan*es that are relate/ y eing /eine/ as art othe sae ali*ation /eloyent5

Table %-1: Resources

ith the Image Management intera*e: the Clo4/ Cons4er is ale to *reate: o/iy an//elete ites relating to the /einition o ali*ation /eloyent: e5g5: systes: /is, iages:*onig4ration settings: et*5 +his allos the 4ser to *reate the raeor, or 4lishingali*ations an/ instan*es5

+he intera*e also rovi/esAdministration*aailities hi*h allos *ontrol over a**o4nt rolesan/ erissions5 Provi/ers *an e anage/ as ell as har/are roiles5

(ne other ,ey attri4te o the *lo4/ intera*e is the aility to tra*, Reporting an/Accounting/etails ro the *lo4/ rovi/ers an/ lo*al reso4r*es hi*h are eing 4tiliFe/5 tes s4*h as then4er o instan*es r4nning an/ the *orreson/ing *harges e*oes ore an/ oreiortant as ali*ations are s*ale/5

www#redhat#com $ refarch'feed(ac)*redhat#com


32/74

4.2 Content 'rovision (anagement

Content Provision Management4n*tionality is rovi/e/ y the atello *oonent hi*hrovi/es the *olle*tion o sotare an/ sotare ee/s 4tiliFe/ y age &a*tory hen 4il/ingan/ o/iying iages5 +his *ontent *an *oe ro a variety o reso4r*es5 hile Re/ 9at

Netor, is the rei4 s4lier: other etho/s in*l4/e reositories: S(s: or sotare*olle*tions - hether these are Re/ 9at: Re/ 9at Partners: other (Bs: or *4sto s4lie/5


Illustration %-%: Content Provision ana!ement


33/74

4.3 Application )escription *eneration

Application Description Generationis the set o 4n*tionality that allos the Clo4/ Cons4er to*reate a re*ie /es*riing an ali*ation that they /esire to /eloy5 As a re*ie lists theingre/ients an/ the instr4*tions o ho to *oine the ingre/ients5 +he generate/ ali*ation/es*rition i/entiies the systes an/ sotare along ith *onig4ration /ata 4se/ in thero*ess o *oining all eleents5 +he 4n*tionality o Ali*ation Des*rition 3eneration isostly rovi/e/ y the Con/4*tor5 8a(le -'&2 1efinitions/eines ters relevant to this*oonent5

8erm E+planation

age or Dis,age

+he *ontents o a o4ntale /is,J the *ontents o a o4nt-oint

+elate

Des*rition o a /is, iage ith any eta-/ata re4ire/ to*reate an iageJ the /es*rie/ iage ay e ootale or non-

ootaleJ a non-ootale iage is 4se/ to rovi/e a /istin*tsotare layer: s4*h as a /ataase

Assely

Deinition o a single instan*e *ontaining one or oretelates an/ eta-/ata relate/ to servi*e *onig4rationsJsin*e this /eines an instan*e: one *onstit4ent telate 4ste /es*rie/ as a ootale iageJ all *onig4ration a*tions areerore/ ost-oot

Servi*eConig4ration

(tional attri4te o the assely hi*h /es*ries the servi*eor servi*es that the assely rovi/es to re4iresJ thisinoration is 4se/ to *onig4re an/ tie the asselies o a/eloyent together at la4n*h

Deloyale

Ali*ation /eloyent /einition: *ontains one or oreasselies an/ eta-/ata *onig4rationJ this *onig4rationse*ialiFes a /eloyent y 4aliying it or a se*ii* targete/inrastr4*t4re

CDa*tive availaility5 9ar/are or sotarease/ loa/ alan*ing ay e 4se/ to srea/ the re4ests a*ross the arti*iating eservers: 4t this ileentation 4ses a sotare-ase/ loa/ alan*er5 +he i//leare ishoste/ on the sae systes as the e-server: 4tiliFing *l4stering to aintain availaility an/*onsisten*y5 +he loa/ alan*er: reverse ro'y: an/ /ataase are ea*h searate systes5

refarch'feed(ac)*redhat#com -7 www#redhat#com

Illustration )-1: A,,lication Tiers


51/74

&or high availaility o the loa/ alan*er: reverse ro'y: an/ /ataase server: the a*tiveinstan*e is onitore/5 Uon a /isr4tion in the servi*e: a rela*eent server is instantiate/5&or the /ataase server: this re4ires the storage to e highly availale: highly reliale: an/ersistent5 +his storage 4st e ale to e /isasso*iate/ ith the ol/ instan*e an/ asso*iate/

ith the ne instan*e5 A Clo4/ Servi*e that rovi/es a Clo4/ &ileSyste is 4se/5

+he ro*ess o /ire*ting netor, trai* to the site ay re4ire a Virt4al Private Netor,*onig4ration5 the /eloyent is oen to the internet: a DNS 4/ate is ossile5

+o s4ariFe: 8a(le .'"2 Store Componentslists all a*tive systes y 4n*tionality lanne/or the initial /eloyent5

4nstance ?ame4nstance

CountRole

loa/-alan*er01 1 Distri4te n*oing Re4ests

reverse-ro'y01 1 Serve stati* *ontent 4i*,ly

/ataase01 1 Store /ata or ali*ation

4ser-a-store01-0% %

9ost 4ser ali*ations=eserver: i//leare:*l4steriFe/ L instan*e ithLD)C instan*es

Table )-1: Store Com,onents

www#redhat#com .$ refarch'feed(ac)*redhat#com


52/74

+he olloing /iagra reresents the entire ali*ation /eloyent5

Not all the systes have the sae *o4te: eory: or ( re4ireents5 &or e'ale: a loa/alan*er ay have inial re4ireents in regar/s to storage sa*e: hoever: the storageor a /ataase is ore *riti*al5

+.2 )e&ining Application )eployment

+his se*tion /eines the ali*ation in ters o the +elates: Asselies: an/ theDeloyale5 +he Clo4/ Cons4er has the otion to s4ly *onig4ration an/>or *4stoiFation

araeters in*l4/ing a s*rit or the vario4s *oonents5

.#" 1efine 8emplates

As /es*rie/ in /etail in +ale $-2 Deinitions: a +elate is a re*ie o hat sotare sho4l/e in a /is, iage5 +his /es*rition is the list o sotare *ontaine/ in the /is, iage: along

ith eta/ata i/entiying the s4orte/ )ase (S5 +he )ase (S telate is rovi/e/ y eithera Clo4/ Provi/erEs /einition or ro a atello /einition5

refarch'feed(ac)*redhat#com ." www#redhat#com

Illustration )-2: Retail ;eb Store A,,lication 4e,loment


53/74

All +elates are /eine/ as re4ire/ or the inal ali*ation sta*, as /etaile/ elo5

8emplate Reuirements :oot

rhel6Qase rhel-'86Q6$-server-6

l rhel-'86Q6$-server-l-6 N

rro'y s4i/ N

/ PostgreSH< N

aQserver L)oss nterrise Ali*ation Plator N

aQstore User s4lie/ ali*ation 4n/le N

Table )-2: Tem,lates

.#& 1efine Assem(lies

An Assely is a list o +elates: one o hi*h 4st /es*rie a ootale iage5 Asseliesalso /es*rie the servi*e *onig4rations that are rovi/e/ an/ re4ire/ y the assely5 a*hassely that in/i*ates it re4ires anageent res4lt in L)oss (N an/ atello arti*iating inanaging the instan*e5 +he Asselies 4se/ or this sol4tion are /etaile/ in the olloingtale5

Assem(l ?ame 8emplates 4ncluded Services Provided Services Reuired

loa/-alan*er rhel6Qase: l loa/-alan*ere-i =a**ets 4ltiles?:*ontent-anageent

reverse-ro'y rhel6Qase: rro'y reverse-ro'y *ontent-anageent

/ataase rhel6Qase: / /ataase*lo4/-storage =rovi/e/ yClo4/&S?: *ontent-anageent

a-storerhel6Qase: /:aQserver: aQstoreaQserver

e-i

/ataase: reverse-ro'y:loa/-alan*er: *ontent-anageent: L(N-anageent

Table )-3: Assemblies

www#redhat#com .& refarch'feed(ac)*redhat#com


54/74

.# 1efine 1eploa(le

No the *olete sol4tion sta*, *an e /eine/ as a Deloyale: hi*h is *oose/ oAsselies an/ a//itional eta-/ata5 hen instantiate/: ea*h Assely is *reate/ a**or/ingto se*iie/ araeters55 8a(le .'-2 1eploa(lelists all relevant *oonents5

4nstance ?ame Assem(lies 4ncluded 4nstance Count 8argeting 1ataloa/-alan*er01 loa/-alan*er 1 Sall instan*e siFe

reverse-ro'y01 reverse-ro'y 1 Be/i4 instan*e siFe

/ataase01 /ataase 1


55/74

/ 1etailed Architectural Bor)flows+his se*tion /es*ries the a;or lo o a*tivity that Re/ 9at Clo4/&ors erors hen a

Clo4/ Cons4er initiates Re/ 9at Clo4/&ors a*tions as /es*rie/ in High


56/74

,.1 Functionality (apping

n the revio4s se*tions 4n*tionality as /es*rie/ as erore/ y Ali*ation Des*rition3eneration: Ali*ation


57/74

+he Pro/4*t Classii*ation as in the olloing ay into the ar*hite*t4re as reresente/ inthe olloing /iagra5

,.2 Assumptions+he ass4tions hi*h ollo are either airly straightorar/ a*tions: or a*tions that are/es*rie/ in ore /etail in a 4t4re Reeren*e Ar*hite*t4re5e

Ass4e/ A*tivities

All 4sers have een *reate/ ith re4ire/ erissions to eror the a*tivitiesattete/

A Pool>Pool &aily has een estalishe/ ith the a**o4nt a**ess re4ire/ or the*onstit4ent *lo4/ rovi/ers

All inrastr4*t4re an/ s4ort 4n*tions have een erore/ e5g5: Re/ 9at Clo4/&orshas een installe/ an/ *onig4re/

www#redhat#com ./ refarch'feed(ac)*redhat#com

Illustration +-3: Arc7itectural /vervie0


58/74

,.3 )e&ine

+he se*tionHigh


59/74

8emplate for ?on':oot 4mage

+he ro*ess o4tline/ elo or the loa/ alan*er +elate sho4l/ e reeate/ or ea*h o thereaining +elates: as /ei*te/ in the ill4stration that ollos5

Piranha loa/ alan*er S4i/ reverse ro'y PostgreSH< /ataase L)oss nterrise Ali*ation Plator Clo4/ *ons4er 4loa/e/ ali*ation

15 Clo4/ Cons4er se*iies the *reation o a ne telate ase/ on Re/ 9at nterrise


60/74

/##& Assem(lies

+he ro*ess o4tline/ elo or the


61/74

/## 1eploa(le

n this ste the Clo4/ Cons4er /eines the overall Deloyale hi*h *onsists o therevio4sly *reate/ Asselies5 +he or,lo is i*t4re/ ne't5

15 Clo4/ Cons4er se*iies ne Deloyale

a? 1 instan*e o loa/-alan*er Assely ith nae loa/-alan*er01 an/ siFe sall

? 1 instan*e o reverse-ro'y Assely ith nae reverse-ro'y01 an/ siFe e/i4

*? 1 instan*e o /ataase Assely ith nae /ataase01 o siFe large

/? % instan*es o a-store ith nae 4ser-a-store01-0% o siFe e/i4

25 Con/4*tor generates Re/ 9at nterrise


62/74

,.4 )eploy

+he Clo4/ Cons4er has lanne/ an/ /eine/ ali*ation /eloyent: in4tting the/einitions in Re/ 9at Clo4/&ors5 +his se*tion /etails the ro*ess o a,ing the ali*ationlive5

/#-#" :uild

+he 4il/ ro*ess is /es*rie/ in the olloing /iagra an/ e'lains ho a +elate re*ie isa/e into a /is, iage5 n o4r e'ale: the )ase (S is not 4ilt 4t rovi/e/ y an AaFonC2 AB5

15 Clo4/ Cons4er 4loa/s L)oss 4n/le to L)oss (N

25 L)oss (N 4shes to atello

%5 Clo4/ Cons4er initiates 4il/ a*tion ro Con/4*tor

$5 Con/4*tor sen/s essage to age &a*tory to 4il/ iage

#5 age &a*tory re*eives re4est to 4il/ iage

refarch'feed(ac)*redhat#com /" www#redhat#com

Illustration +-: Ima!e #uild


63/74

65 age &a*tory *alls 4il/ ro*ess

a? *reates a teorary VB

? 4ses atello as so4r*e to 4il/ inial VB

*? ani4lates inial VB to allo teorary a**ess

/? installs reaining re4este/ a*,ages>sotare

e? installs sotare an/ 4/ates *onig4ration re4ire/ to s4ort *lo4/ environent:in*l4/ing any sotare nee/e/ or Banageent

? generates CC


64/74

/#-#& 4nstantiate

+he stes to la4n*h the on-line store /eloyale are i*t4re/ ne't5 +his is a /etaile/ ro*esshi*h /etails any stes5

15 Clo4/ Cons4er in/i*ates the start o a /eloyale in a arti*4lar ool

25 Con/4*tor *reates a *on/or re4est to start all 6 instan*es

loa/-alan*er01

reverse-ro'y01

/ataase01

4ser-a-store01: 4ser-a-store02: 4ser-a-store0%

%5 Clo4/ Cons4er is rote/ or any issing araeters that are re4ire/

$5 Con/or a**ets an/ 4e4es re4est

refarch'feed(ac)*redhat#com / www#redhat#com

Illustration +-: 4e,loable 6aunc7 Process


65/74

#5 Con/or attets to at*h re4est 4sing ro*ess o4tline in the or,lo elo5 Con/oregins y interrogating Con/4*tor to in/ availale *lo4/ rovi/er5

65 a at*h is s4**ess4l: Con/or inors Delta*lo4/ to start instan*es an/ inorsA4/rey to *onig4re instan*es: rovi/ing one tie *re/entials: UUD: an/ other hosti/entity inoration or ea*h iage5 Con/or also *o4ni*ates ith atelloEsCan/lein1%to reserve entitleents or ea*h instan*e5 +his is re4ires three a*tions5

75 Delta*lo4/ re*eives la4n*h re4ests ro *on/or an/ initiates instan*es5

85 A4/rey re4ests CD< an/ CC


66/74

"5 As ea*h instan*e is la4n*he/: a teorary se*4re *onne*tion is estalishe/ 4sing /ata*olle*te/ ro the Clo4/ Cons4er5

Using the teorary se*4re *onne*tion: long-ter i/entity an/ *re/entials are 4se/or a4thenti*ate/ *onne*tions5

Re4ire/ VPN *onne*tions are estalishe/5

105 a*h instan*e rovi/es its UUD to the A4/rey *onig4ration server: starting anyreaining *onig4ration=s?5 +he olloing a*tions are erore/: hoever: notne*essarily in the or/er rovi/e/5

All instan*es

stan/ar/ *onig4ration in*l4/ing asi* server an/ *lo4/ se*ii* /etails areretrieve/ ro *onig4ration server

stan/ar/ *onig4ration s*rits are alie/

non-ootale iages are o4nte/ an/ integrate/


67/74

4ser-a-store01-0% instan*es

ea*h instan*e starts L)oss agents

agents *onne*t ith L)oss (N

ea*h instan*e rovi/es e-P araeters to *onig4ration server

ea*h instan*e aits or a-store *onig4ration s*rits hi*h *ontain the/ataase: reverse-ro'y: an/ loa/-alan*er araeters

ea*h instan*e alies a-store *onig4ration s*rit

inors *onig4ration server that *onig4ration is *olete

Clo4/&S Servi*e

aits or Clo4/&S araeters ro *onig4ration server

alies Clo4/&S *onig4ration

inors *onig4ration server that servi*e is rea/y

A4/reyEs *onig4ration server

aits or ea*h instan*e to rovi/e araeters: hi*h it 4se/ to generate*oor/inate/ ali*ation *onig4ration: hi*h is sent in the or o s*rits to ea*hinstan*e

aits or *onig4ration to *olete ro ea*h instan*e: then reares transitsinstan*e /ata to Con/4*tor

115 A4/rey Conig4ration Server transits instan*e /ata to Con/4*tor

,.+ (anage

+his se*tion rovi/es insight to the a*tions that *an e erore/ on a /eloyent aterla4n*h5 +he olloing a*tivities are a//resse/

U/ating

Baintaining>S4sen/ing

S*aling

Bigrating

Reorting

)4siness Contin4ity

liinating

www#redhat#com // refarch'feed(ac)*redhat#com


68/74

/#.#" @pdating

+here are 4ltile targets or 4/ating in a /eloyent5 +he ost *oon o4l/ e errataan/ sotare 4/ates5 (thers in*l4/e 4/ating the 4ser rovi/e/ ali*ation hi*h ayre4ire a//itional sotare: *lo4/ servi*e 4/ates or ne oerings: or *hanges in the/eloyaleEs /einition5

+hese 4/ates *an haen y three /ierent etho/s *ontrolle/ y 4ser oli*y5

live 4/ate M atello>L)oss (N 4/ate r4nning /eloyale

restart o /eloyent M /einition is 4/ate/: then re/eloye/

hyri/ M live 4/ate olloe/ y an 4/ate/ CD< hi*h 4shes an/ re4ires a restart

/#.#& %aintainingSuspending

+he Clo4/ Cons4er ay /esire to teorarily have their ali*ation sto ro*essing so that

o/ii*ations *an e a/e: then allo ro*essing to res4e5 +his ro*ess ollos the steselo

sto all instan*es o the /eloyent

retain snashot ro all instan*es

eror aintenan*e>o/ii*ation

*ontin4e instan*es ro snahot

/#.# Scaling

+he Clo4/ Cons4er ay in/ that they ish to s*ale 4 or /on their r4nning /eloyent5+he otions availale in*l4/e the olloing

4/ate /eloyale /einition to in*l4/e ore or larger instan*es: then restart entire/eloyent

4sing the sae /eloyale /einition: start ore /eloyents

4/ate /eloyale /einition: aly *hanges an/ *on/or starts>stos aroriately

a4toati*ally in*rease or /e*rease n4er o instan*es in /eloyale ase/ on*aa*ity eas4reent as onitore/ ith Batahari

/#.#- %igrating(n*e a /eloyent has een r4le/ 4nstale: the e'isting /eloyent is stoe/ an/ a/eloyent 4sing the sae /einition is starte/ at a /ierent *lo4/ rovi/er5

refarch'feed(ac)*redhat#com /0 www#redhat#com


69/74

/#.#. Reporting+he *ategories o reorting relating to a r4nning /eloyent in*l4/e

ali*ation>instan*e>/eloyent stat4s

reso4r*e 4sage reorts

ali*ation se*ii* reorts =atahari agent /een/ent?

/#.#/ :usiness Continuithether the Clo4/ Cons4er is 4sing a *lo4/ or not: the i/ea o g4aranteeing that /ata is notlost is a riority5 hile the etho/s have not een resolve/ as to 4sing live snashots: a*, 4an/ ar*hival sotare: or /ata reli*ation: ea*h o the olloing is ossile5

Point in +ie a*,4 o iage an/ /ata storage M restorale to revio4s lo*ation

Bigration o /ata ro la*e to another

)a*,4 o /ata to a reote lo*ation: restorale to a /ierent lo*ation

/#.#0 Eliminatinghen the Clo4/ Cons4er /eterines that a /eloyent is no longer nee/e/: any iages atthe *lo4/ rovi/er *an e /is*ar/e/5 +he resonsiility to *onir any re4ire/ /ata has eenreli*ate/ to a lo*ation that allos at-ill a**ess is 4 to the Clo4/ Cons4er5

www#redhat#com /3 refarch'feed(ac)*redhat#com


70/74

0 Architectural Operational Fle+i(ilit

+he e'ale that as revio4sly /etaile/ in this aer as one ossile etho/ oileenting a Clo4/ Cons4erEs nee/ or an online store5 Ass4ing no *hanges in the

re4ireents: this se*tion /is*4sses alternative *onsi/erations an/ ossiilities toa**olishing this goal5 A//itional *onsi/erations or *lo4/ /eloyents not *overe/ in thee'ale are also e'lore/5

.1 Security/ (ulti0tenancy/ Service 'roy

Re/ 9at Clo4/&ors rovi/es the *aaility or 4ltile Clo4/ Cons4ers to se*4rely share a*lo4/ rovi/er a**o4nt or to si4ltaneo4sly se*4rely a**ess 4ltile *lo4/s as a single Clo4/Cons4er5 A**ess to a Re/ 9at Certiie/ Clo4/ Provi/er P4li* Clo4/s ay re4ire the 4se oro'ies5

.2 Alternative )eployments+he e'ale in this aer rovi/e/ one /eloyale /einition5 +here are a 4ltit4/e ovariations in*l4/ing the olloing: 4t not liite/ to

4sing a *lo4/ ase/ on lo*al virt4aliFation =oose/ to C2?

/eining an/ 4il/ing a ase (S iage

4sing e'isting iages to 4il/ ne iages

/o not stratiy the sotare layers: i5e5 /eine a single assely er instan*e that has allthe nee/e/ sotare or that instan*e

have iages e 4lle/ hen nee/e/ =oose/ to re-la*eent?

have asselies e'e*4te in searate *lo4/s

refarch'feed(ac)*redhat#com /7 www#redhat#com


71/74

3 Conclusionn oving to the *lo4/ or 4il/ing ne oort4nities 4sing a *lo4/ inrastr4*t4re: the

onershi: *ontrol: *ost visiility: an/ /e*isions are oving to the /oain e'ert =EonerE othe ali*ation?5 Re/ 9at Clo4/&ors *lo4/ inrastr4*t4re allos or etter oerationalei*ien*y an/ loer +C( or the *reation an/ lie*y*le o *lo4/ ali*ation y enaling the/oain e'ert5

+his aer rovi/e/ a high-level overvie o Re/ 9atEs ne Clo4/&ors te*hnologies5 As arto this overvie several *on*ets ere *overe/: s4*h as a revie o the NS+ /einitionstan/ar/s: Re/ 9atEs *lo4/ strategy an/ a /es*rition: e'ale an/ or,lo o a Clo4/&ors/eloyent5

+he ,ey ta,eaay ro this aer sho4l/ e that Re/ 9at is rovi/ing the te*hnologies toa,e yo4r *lo4/ inrastr4*t4re le'ile M le'iility eans *hoi*es5 +his 4ni4e oering enales

yo4 to ta,e a/vantage o /isarate *lo4/ rovi/ers itho4t the overhea/ o having to*4stoiFe the iages or ea*h environent5 )y rovi/ing a single 4ser intera*e that intera*ts

ith te*hnologies s4*h as Con/4*tor: age &a*tory: Con/or: et*5: Re/ 9at is loering thearriers to 4sing the ne *lo4/ ara/ig5 yo4r enterrise /eveloer ,nos that they *an

rite to one AP M DeltaClo4/ AP an/ then e ale to ta,e a/vantage o 4ltile *lo4/rovi/ers: they are ore li,ely to era*e the te*hnology5

www#redhat#com 0$ refarch'feed(ac)*redhat#com


72/74

+he olloing /iagra /ei*ts an over vie o the Re/ 9at Clo4/&ors ar*hite*t4re5

refarch'feed(ac)*redhat#com 0" www#redhat#com

Illustration -1: Red Hat CloudForms Arc7itectural /vervie0


73/74

Appendi+ A2 Contri(utorse o4l/ li,e to than, the olloing in/ivi/4als or their tie an/ atien*e as e *ollaorate/on this ro*ess5 +his /o*4ent o4l/ not have een ossile itho4t their any *ontri4tions5

Contri(utor 8itle Contri(ution

Vi;ay +rehan Dire*tor o Sol4tions Ar*hite*t4res Content: Diagras: Revies

Carl +rielo+e*hni*al Dire*tor: Sotarengineering

Vision: Content: Revies

Lohn D4nning Banager: Sotare ngineering Content: Revies

94gh )ro*, Banager: Sotare ngineering Content: Revies

Chris


74/74

Appendi+ :2 References

1 htt>>*sr*5nist5gov>gro4s>SNS>*lo4/-*o4ting>

2 htt>>*ollaorate5nist5gov>ti,i-*lo4/-

*o4ting>4>Clo4/Co4ting>Do*4ents>Drat-SP-800-1$#Q*lo4/-

/einition5/

% htt>>*ollaorate5nist5gov>ti,i-*lo4/-

*o4ting>4>Clo4/Co4ting>Reeren*eAr*hite*t4re+a'onoy>NS+QC

CQReeren*eQAr*hite*t4reQv1QBar*hQ%0Q20115/

$ htt>>5aeol4sro;e*t5org

# htts>>gith45*o>atahari>atahari>i,i

6 htt>>5re/hat5*o>rg>essaging>

7 htt>>hail5i,i5,ernel5org>

8 htt>>5re/hat5*o>i/entityQanageent>

" htt>>reeia5org>

10 htt>>e/oraro;e*t5org>i,i>&eat4res>SSSD

11 htt>>5*l4sterlas5org>i,i>Pa*ea,er

12 htt>>5gn45org>s>hello>an4al>a4toa,e>VPA+9-)4il/s5htl

1% htts>>e/orahoste/5org>*an/lein>i,i>(vervie
http://csrc.nist.gov/groups/SNS/cloud-computing/http://collaborate.nist.gov/twiki-cloud-computing/pub/CloudComputing/Documents/Draft-SP-800-145_cloud-definition.pdfhttp://collaborate.nist.gov/twiki-cloud-computing/pub/CloudComputing/Documents/Draft-SP-800-145_cloud-definition.pdfhttp://collaborate.nist.gov/twiki-cloud-computing/pub/CloudComputing/Documents/Draft-SP-800-145_cloud-definition.pdfhttp://collaborate.nist.gov/twiki-cloud-computing/pub/CloudComputing/ReferenceArchitectureTaxonomy/NIST_CC_Reference_Architecture_v1_March_30_2011.pdfhttp://collaborate.nist.gov/twiki-cloud-computing/pub/CloudComputing/ReferenceArchitectureTaxonomy/NIST_CC_Reference_Architecture_v1_March_30_2011.pdfhttp://collaborate.nist.gov/twiki-cloud-computing/pub/CloudComputing/ReferenceArchitectureTaxonomy/NIST_CC_Reference_Architecture_v1_March_30_2011.pdfhttp://www.aeolusproject.org/https://github.com/matahari/matahari/wikihttp://hail.wiki.kernel.org/http://www.redhat.com/identity_management/http://freeipa.org/http://fedoraproject.org/wiki/Features/SSSDhttp://csrc.nist.gov/groups/SNS/cloud-computing/http://collaborate.nist.gov/twiki-cloud-computing/pub/CloudComputing/Documents/Draft-SP-800-145_cloud-definition.pdfhttp://collaborate.nist.gov/twiki-cloud-computing/pub/CloudComputing/Documents/Draft-SP-800-145_cloud-definition.pdfhttp://collaborate.nist.gov/twiki-cloud-computing/pub/CloudComputing/Documents/Draft-SP-800-145_cloud-definition.pdfhttp://collaborate.nist.gov/twiki-cloud-computing/pub/CloudComputing/ReferenceArchitectureTaxonomy/NIST_CC_Reference_Architecture_v1_March_30_2011.pdfhttp://collaborate.nist.gov/twiki-cloud-computing/pub/CloudComputing/ReferenceArchitectureTaxonomy/NIST_CC_Reference_Architecture_v1_March_30_2011.pdfhttp://collaborate.nist.gov/twiki-cloud-computing/pub/CloudComputing/ReferenceArchitectureTaxonomy/NIST_CC_Reference_Architecture_v1_March_30_2011.pdfhttp://www.aeolusproject.org/https://github.com/matahari/matahari/wikihttp://hail.wiki.kernel.org/http://www.redhat.com/identity_management/http://freeipa.org/http://fedoraproject.org/wiki/Features/SSSD