Cloud RoadmapTim Burke & Cloud Engineering Leaders
Cloud Roadmap2
Agenda
• Introduction – Tim Burke – VP Linux & Cloud Engineering
•Satellite – Bryan Kearney – Sr Mgr Satellite Eng
•Enterprise Virtualization – Andy Cathrow – Dir Cloud Prod Mgt
•OpenStack – Mark McLoughlin – Consulting Eng OpenStack
•Project Atomic, Docker Containers & OpenShift – Daniel Riek – Sr Dir Systems Eng
•CloudForms – Xavier Lecauchois – Principal PM CloudForms
• Identity Management – Dmitri Pal – Sr Mgr Identity Eng
•Closing – Tim Burke
Cloud Roadmap3#redhat #rhsummit
Red Hat Upstream FocusRed Hat's development philosophy is upstream focused, working with partners & customers – critical in delivering an enterprise product
Upstream investment is required to • Innovate - drive new features• Influence strategy & direction of project• Gain knowledge and experience to support product
For cloud, upstream is more than openstack.org projects• Contribute to and help incubate new OpenStack projects • oVirt – driving enterprise virtualization• KVM hypervisor, libvirt and supporting infrastructure• RHEL platform enablers – Kernel through userspace
• Driving upstream innovation & responsible backports to RHEL6 & upcoming RHEL7
• Network stack – OVS, drivers, kernel networking layer
Cloud Roadmap4#redhat #rhsummit
Red Hat Upstream OpenStack Focus
● Heavily engaged in community since 2011
• Established leadership position in community
• Both in terms of governance and technology
• Including PTLs on Nova, Keystone, Heat and Ceilometer
• Creating and leading stable tree● 3rd largest contributor to Essex● 2nd largest contributor to Folsom● Largest contributor to Grizzly● Largest contributor to Havana● Contributed even more in Icehouse! (stats pending)● Juno design summit participation in May
Note: these statistics do not include external dependencies (e.g. libvirt, KVM, Linux components)
Cloud Roadmap5#redhat #rhsummit
Enterprise Productization
Linux kernel
Process Management
System Call Interface
Network
Virtual File System
Device Drivers
Security
Hardware
User Space
OpenStack Core
Message Queuing
OpenStack APIs
Neutron
Cinder
Component Drivers
Ref. Architectures
Hardware
Tenant Services
Linux OpenStack
RHEL RHEL OSP
PARTICIPATE
INTEGRATE
STABILIZE
(upstream projects)
(community platforms)
DELIVER
Similar approach in other cloud projects
Cloud Roadmap6
Building communities ---> Productization
Cloud Roadmap7#redhat #rhsummit
Red Hat Enterprise Linux OpenStack Platform (RHEL-OSP)●Enterprise grade OpenStack deployment with ecosystem, lifecycle, support that customers expect from Red Hat• Based on RHEL and includes cloud enhancements • Enterprise hardened OpenStack code• Longer supported lifecycle
• includes bug fixes, security errata, selected backports• Certified ecosystem (Red Hat Certified OpenStack Partner program and Red Hat Enterprise Linux ecosystem)
• Full support and Certifications for RHEL and Windows guest-based workloads• Simplified installation / setup for large configurations
Cloud Roadmap8#redhat #rhsummit
Cloud Portfolio Integration – Platform Optimizations & Impact●Examples of RHEL optimized enablers integrated with Red Hat's OpenStack in RHEL-OSP:• Virtualization – guest performance, reliability and Windows• Security – SELinux enforcing guest isolation• Network – SDN/OVS performance optimized• Storage – vendor plugins, performance, thin provisioning• Ecosystem – certification of hardware, storage and networks
●The pairing of the RHEL operating system and OpenStack is so tight that Red Hat’s combination can most effectively support functionality, performance, security, and ecosystem support
●Similar integration focus with Satellite, Identity, OpenShift PAAS, CloudForms
Cloud Roadmap9#redhat #rhsummit
OEMs and IHVsExtend Red Hat Enterprise Linux certification into the OpenStack ecosystem, and take advantage of an expanding market segment.
ISVsExtend Red Hat Enterprise Linux certification and create new application functionality that delivers platform capabilities in the context of the new cloud platform model.
SIsArchitect, implement, and integrate new cloud solutions based on a leading-edge platform.
MSPs and cloud service providers
Create an infrastructure platform as basis for other value-added services such as hosted applications, cloud services, and more.
Channel PartnersExtend Red Hat Enterprise Linux strength into a broader platform that can deliver other ISV and vertical industry solution offerings to end-user customers.
Rich Ecosystem Around Red Hat Enterprise Linux OpenStack Platform
Cloud Roadmap10
Red Hat Cloud Infrastructure (RHCI)
• Single subscription that provides an open cloud solution
• Bridges traditional and cloud/elastic workloads
• Provides both virtualization and cloud services
• Policy-based cloud management
• Available with or without RHEL guests
Cloud Roadmap11
Upcoming section template
•Recent releases
•Upcoming feature highlights
•Portfolio integration
•Details @ Summit
Red Hat SatelliteBryan Kearney
Cloud Roadmap13
Recent Red Hat Satellite Feature AdvancementsRed Hat Satellite 5.6
Features Benefits
Enhanced subscription and system reporting
Provides incremental, in-depth details and reports of subscription consumption and hardware facts across the totality of your Red Hat deployment.
Client side crash analysis Crashes can be centrally reported to the administrator for improved awareness, analysis, and timely triage.
Automated provisioning in PXE-less environments
Automated and efficient provisioning of Red Hat Enterprise Linux systems in environments previously hostile to Satellite provisioning.
New install option: Embedded database on separate system (admin-managed)
Provides significant scaling without requiring the expertise of a DBA
Expanded install option: Choice for external DBA-managed database
Using a DBA-managed database for your backend? Now you have a choice beyond “just Oracle”. We now support PostgreSQL as an option as well.
Inter-Satellite Sync (ISS) content management and trust refinement
Administrators of each Satellite in a synchronized exchange now have finer control over access permissions per Satellite, per Organization, and, by extension, per Channel.
Red Hat Satellite server hot-backups No longer do IT teams need to build in downtime when backing up the Satellite server. Zero downtime = more productivity and availability!
Cloud Roadmap14
Recent Red Hat Satellite Feature AdvancementsRed Hat Satellite 6
Most projects 3-4 years old (Puppet is 9+)
Notable Fortune 500 + Red Hat IT users
100s, even 1000s of deployments
Scalability – Notable 60k Foreman host installation
Cloud Roadmap15
Recent Red Hat Satellite Feature AdvancementsRed Hat Satellite 6
Provision 10s – 10,000+ systemsRecipe-Style Configuration ManagementAutomated Software DistributionRefined Lifecycle ManagementModern Administrator DashboardsSimplified Content ManagementDrift ManagementFederated Services & ManagementDeploy on VMware, RHEV, EC2, and OpenStack
Provision 10s – 1000s systemsConfiguration ManagementAutomated Software DistributionLifecycle ManagementAdministrator Dashboard
Cloud Roadmap16
Red Hat Satellite Futures
Cloud Roadmap17
Red Hat Satellite Portfolio Integration
IPA•Satellite 5.6 and 6 register managed hosts with IPA during provisioning
•Open Stack •Satellite 6 will provision systems into Open Stack and RHEV-M
•RHEV-M•RHEV-M can use Satellite 6 to provision back onto RHEV-M
•Coming Soon•Docker and Glance APIs from Satellite 6
Cloud Roadmap18
Satellite @ Summit
Sessions:Satellite 6.0 Roadmap and Demo – Tue 2:30pm
Come learn about the Beta!Moving from Red Hat Satellite 5 to 6 – Tue 3:40pm
•Thomas Cameron walks you through this transition
•Real-world perspectives: Managing infrastructures with Red Hat Satellite – Wed 10:40am
•Real customer experiences using Satellite 5
•Test-drive Red Hat Satellite 6 – Wed 1:20pm (2 hours)•Come kick the tires on the next version of Satellite
•Understanding your Subscription Inventory – Wed 4:50pm•See Enhanced Subscription Reporting with Satellite 5.6
Red Hat Enterprise VirtualizationAndrew Cathrow
Cloud Roadmap20
Red Hat Cloud Infrastructure
Cloud Roadmap21
Red Hat Enterprise Virtualization• Centralized Management
• High Availability
• Live Migration
• Storage Live migration
• Load Balancing
• Power Management
• Templates, thin provisioning, snapshots
• V2V & P2V Migration tools
• Self Service User Portal
• Reporting Engine
• OpenStack Services Integration
• 3rd Party Plugin Ecosystem
Cloud Roadmap22
External Providers
• Infrastructure for supporting external service providers
Currently Supports•Host Deployment via Foreman (Satellite 6)•Image Registry via OpenStack Image Service (Glance)•SDN Infrastructure via OpenStack Network Service (Neutron)
Cloud Roadmap23
Red Hat Enterprise Virtualization Roadmap
RHEV 3.4 – May 2014
- Mixed storage domains (iSCSI, NFS, Fiber, Gluster, Posix)Storage
- Single disk snapshots
- Read-only disks
- Online resize iSCSI Storage domain
- OpenStack Image Service (Glance) Enhancements
Cloud Roadmap24
Red Hat Enterprise Virtualization Roadmap
RHEV 3.4 – May 2014
- OpenStack Network Service (Neutron) Integration enhancementsNetwork
- Security Groups
- IP Address Management (IPAM)
- Allow deletion (as well as creation) of Neutron Networks
- Host Level Quality of Service (3.3 provided VM level only)
- Multihost network configuration
Cloud Roadmap25
Red Hat Enterprise Virtualization Roadmap
RHEV 3.4 – May 2014
- Scheduler EnhancementsCompute
- Affinity / Anti-affinity Groups
- Extended load balancing policies
- High Availability Reservations
- Power saver policy to power down and power up hypervisors
- Hot Plug CPU
- Template Versioning
- Extended console configuration for Spice and VNC
- Configure maximum downtime per VM for migration
- Persistent cloud-init metadata per VM (not just at first-boot)
Cloud Roadmap26
Red Hat Enterprise Virtualization Roadmap
RHEV 3.4 – May 2014
- SNMP Notification Service Infrastructure
- New fence agents: HP Blade and DRAC7
- Add JSON support to API (in addition to XML)
- Support for lower resolution displays (1024x768)
- Improved refresh logic
- Case insensitive search
UX
Cloud Roadmap27
Red Hat Enterprise Virtualization Roadmap
RHEV 3.5 (In Development) – Late 2014
- Support for RHEL 6 and RHEL 7 HypervisorsHighlights
- Live Clone VM
- Live Merge Snapshots
- OpenStack Services Virtual Appliance (incl pre-configured services)
- Extended SLA / QoS options – Block I/O throttling, CPU capping
- Advanced NUMA support
- External Advanced scheduler for load balancing & rebalancing
- Import existing storage domain
- Extended Foreman (Satellite 6) support for host provisioning
Cloud Roadmap28
RHEV @ Summit
Sessions:
Red Hat Enterprise Virtualization: Overview & roadmap – Wed 3:40pm
Red Hat Enterprise Virtualization disaster recovery – Tue 4:50pm
Configuring a disaster-resilient Red Hat Enterprise Virtualization environment – Wed – 2:30pm
Red Hat Enterprise Virtualization deep dive – Wed 4:50pm
Red Hat Enterprise Virtualization Hypervisor roadmap – Thu 9:45am
Manage your HP ProLiant & Bladesystem environment with Red Hat Enterprise Virtualization – Thu 9:45am
Red Hat Enterprise Linux OpenStack PlatformMark McLoughlin
Cloud Roadmap30
Red Hat Enterprise Linux OpenStack Platform
•OpenStack is a fast moving, chaotic and exciting project
•Red Hat makes sense of it all for our customers
•RHEL is the best platform for operating OpenStack
•RHEL-OSP provides a stable base for your workloads/clouds
•Red Hat has the upstream influence and insight
•Red Hat has the broad ecosystem of certification and partnerships
Cloud Roadmap31
RHEL-OSP Releases
•4.0 (based on Havana) – released Dec 2013
•Heat and Ceilometer now fully supported
•LBaaS fully supported, VPNaaS & FWaaS Technology Preview
•Foreman based deployment fully supported, Packstack for PoC/demos
•RHEL 6.5+ only, 18 month support lifecycle
•5.0 (based on Icehouse) – targeted for Jun/Jul 2014
•Trove integrated and provided as Technology Preview
•Sahara (was Savanna) incubated and provided as Technology Preview
•Provide both on RHEL 7.0+ and RHEL 6.5+, 3 year support lifecycle
Cloud Roadmap32
Recent RHEL-OSP Feature Advancements
• Comprehensive HA architecture for RHEL-OSP 4.0.z
• RHEL-OSP 3 to 4 upgrade process
• VMware vCenter compute driver now supported
• Improved Foreman deployment workflow in RHEL-OSP 4.0.z
Cloud Roadmap33
RHEL-OSP Futures
•Enhanced RHEL-OSP 4 to 5 upgrade process
•RHEL-OSP 5 will use RabbitMQ as the default messaging system
•Support for active/active database in RHEL-OSP 5
• Improved Neutron scaling and reliability
•Scale testing and research on best practices for scaling
•TripleO – Next generation deployment and management platform
•Growing focus on supporting NFV use cases
Cloud Roadmap34
RHEL-OSP Portfolio Integration
•OpenShift
•Easy deployment on RHEL-OSP 4 using Heat
• Iaas/PaaS convergence via Docker and Solum
•Red Hat CloudForms
• Introspects and interacts with RHEL-OSP 4
•Red Hat Storage
• Improved performance and features, particularly around Cinder
• Identity Management
• IPA as Keystone backend, also certificate management
Cloud Roadmap35
RHEL-OSP @ Summit
Sessions:
•Red Hat Storage Server: Roadmap & integration with OpenStack – Tue 2:30pm
•Best practices for PaaS, OpenStack, & cloud adoption – Tue 2:30pm
•Red Hat Cloud Infrastructure architecture design – Tue 4:50pm
•Building scalable cloud infrastructure using Red Hat Enterprise Linux OpenStack Platform – Wed 10:40am
•Deterministic capacity planning for OpenStack as elastic cloud infrastructure – Wed 1:20pm
Project Atomic, Docker Containers & OpenShiftDaniel Riek
Cloud Roadmap37
Evolution of Deployment Paradigms
HWHW
Host OS & Shared Services, Mgmt
App App App
Host OS Userspace Runtime Stack
Kernel & HW Drivers
HWHW
Virt Host OS, Host Mgmt
App App App
Runtime
Kernel & HW Drivers
Hypervisor
Guest Kernel
GuestServices
Runtime
Guest Kernel
GuestServices
GuestServices
Runtime
Guest Kernel
Container Host OS & Central Shared ServicesOrchestration Primitives
HWHW
MgmtContainers
ServiceContainers
AppRuntime
AppRuntime
Kernel & HW Drivers
AppRuntime
Traditional Enterprise Operating System
• Multiple applications per OS instance
• Single monolithic software stack, shared services
• Central host-level management
Virtualization & IaaS
• One VM per application• Per-VM stack, OS
defined by application• Delegation at VM level,
complex management
Application Centric IT & PaaS
• Applications packaged with their runtime
• Multi instance, version, tenant• Delegation at container level, central
management• Best of both
worlds
HWHW
Virt Host OS, Host Mgmt
Kernel & HW Drivers
Hypervisor
Container Host OS & Central Shared ServicesOrchestration Primitives
MgmtContainers
ServiceContainers
AppRuntime
AppRuntime
Kernel & HW Drivers
AppRuntime
Cloud Roadmap38
What is Docker?
• Linux Containers are a combination of features like kernel namespaces, control groups, SELinux
• Docker is a tool that can package an application and its runtime dependencies for deployment into a Linux Container
• Docker builds on Linux Containers, adds an API, an image format and a registry/index plus a simple but effective layering model
• Unlike traditional a virtual machine, a Linux Container is not separated from the host by a strict host/guest boundary. It's rather the host partitioned into namespaces
• Docker images include the userspace runtime of an application, not the kernel, not typically shared services of the OS
• RHEL, SCLs, JBoss, certified ISV content available for content
3rd Party Layer
3rd Party Layer
RHEL User SpaceRHEL User Space
JBossJBoss
Customer / ISV / RHApplication
Customer / ISV / RHApplication
Certified 3rd Party SWCertified 3rd Party SW
CustomerLayer
SCLsSCLs
ISV LayerISV Layer
Container Host OS & Central Shared Services,Orchestration Primitives
HWHW
MgmtContainers
ServiceContainers
App
Runtime
App
Runtime
Kernel & HW Drivers
App
Runtime
PlatformLayer
PlatformLayer
OS Base Image
OS Base Image
PlatformLayer
PlatformLayer
OS Base Image
OS Base Image
Cloud Roadmap39
What is Atomic?
• Pattern for an optimized container host
• Minimal OS to run containers
• Minimal patching
• Atomic updates through OSTree
• Standardized core shared services
• Orchestration primitives
• Extendable by privileged containers (management, content lifecycle, security, identity, logging, etc.)
• Deployment into Cloud, Virtualization and bare metal
• Upstream: Project Atomic. Implemented in RHEL, Fedora, CentOS Atomic variants
Container Host OS & Central Shared ServicesOrchestration Primitives
HWHW
MgmtContainers
ServiceContainers
AppRuntime
AppRuntime
Kernel & HW Drivers
AppRuntime
HWHW
Virt Host OS, Host Mgmt
Kernel & HW Drivers
Hypervisor
Container Host OS & Central Shared ServicesOrchestration Primitives
MgmtContainers
ServiceContainers
AppRuntime
AppRuntime
Kernel & HW Drivers
AppRuntime
Cloud Roadmap40
OpenShift Geard APIOpenShift Geard API
OpenShift, GearD, Satellite, Docker & Atomic
Red HatSatellite
Red HatSatellite
Red Hat IndexRed Hat Index
Docker.IODocker.IO
• OpenShift 3.0 built on Docker
• Geard advanced orchestration layer
• Satellite enablement planned for on-premise repositories, content management, provisioning
• Access to Red Hat container images in Docker format, certified ISV content, Docker.IO community content
• Integration in Docker ecosystem
Orchestration Primitives
Docker
Systemd
OpenShift 3.0
OpenShift 3.0
SSHService
Container
SSHService
ContainerApp
Container
AppContainer ...
Atomic Container Host
Deployment Placement Monitoring
Docker CLIDocker CLI
3rd Party Mgmt
e.g. Shipyard
3rd Party Mgmt
e.g. ShipyardPull Images
RepositoriesProvisioning
Content Mgmt
Conf Mgmt
Manage
Cloud Roadmap41
Current Container & Docker Roadmap Status
• Docker tool chain included in RHEL as of the 7 Release Candidate
• RHEL and JBoss Docker-images currently in testing
• Delivery infrastructure for Red Hat container images in Docker format (index / registry) under development
• RHEL Atomic Container Host implementing the Atomic architecture as PoC at Summit
• Next generation OpenShift built around Docker-based containers previewed
• ISV partner program and certification announced and in pilot
• Red Hat Satellite support for advanced content management in development
• Docker enablement across Red Hat products and platforms in planning
Cloud Roadmap42
Docker & OpenShift @ Summit
Sessions:
•Application-centric packaging with Docker & Linux containers – Tue 4:50pm
•OpenShift roadmap & the evolution of PaaS – Tue 1:20pm
Booths:
• Infrastructure Booth
•Emerging technologies Booth
•Platform-as-a-Service Booth
Red Hat CloudFormsXavier Lecauchois
Cloud Roadmap44
What Red Hat DeliversRed Hat Cloud Infrastructure
Cloud Roadmap45
Recent CloudForms Feature Advancements
CloudForms 3.0 Available on RHN since November 2013
• Initial Support for Red Hat OpenStack
• Inventory
•Eventing
•Capacity & Utilization
•Self-Service Provisioning
•Reporting
• Improved Support for Red Hat Virtualization Manager
•Support for Analyzing VMs with Snapshots
Cloud Roadmap46
CloudForms Futures
Open Sourcing This Year
• Improved Support for OpenStack
• Image Analysis
•Tenant Support
• Initial Support for Neutron (Inventory and Provisioning)
•Eventing on RabbitMQ
•Content Management
•Automate Domains
•Granular Import/Export for most CloudForms Content
Cloud Roadmap47
CloudForms Portfolio Integration
Red Hat Identity Management
•CloudForms leveraging Certificates and SSL• For PostgreSQL and inter-appliance communications
•Authentication via SSSD
•Enhancements to LDAP Integration
•Kerberos Integration
•Satellite
•Leverage Satellite's Provisioning Capabilities (Foreman) in CloudForms
•Support for Microsoft System Center Virtual Machine Manager
Cloud Roadmap48
CloudForms @ Summit
Sessions:
•Union Bank: Red Hat Cloud Infrastructure – Tue 10:40am
•Red Hat CloudForms: Automation – Tue 3:40pm
•Red Hat Cloud Infrastructure architecture – Tue 4:50pm
•Red Hat CloudForms for cloud management: Key features & roadmap – Wed 1:20pm
•Flex workloads across private, public, & hybrid clouds with Red Hat CloudForms – Wed 3:40pm
•Speeding up infrastructure provisioning with Red Hat CloudForms – Thu 11:00pm
Identity ManagementDmitri Pal
Cloud Roadmap50
Identity Management in RHEL 7
•Active Directory integration
•Direct integration – joining Linux systems into AD domains
• Indirect integration – using IdM to manage Linux environment while allowing uses from AD to access Linux based resources leveraging cross realm Kerberos trusts.
•A lot of improvements to:
• Identity Management in Red Hat Enterprise Linux (FreeIPA)
•System security services daemon (SSSD)
Cloud Roadmap51
Identity Management Futures
• Identity Management (IdM)
•Native two factor authentication support via Kerberos
•Certificate authority management tools
•New look and feel
•Better access control granularity
•More AD integration improvements
•DNSSEC
•Backup & Restore
Cloud Roadmap52
Identity Management Futures
•SSSD
•SSSD feature parity/advantage over Samba Winbind• CIFS client integration
• SSSD for Samba member server
•SSSD for Docker containers• Different identity and authentication sources for different containers
•Rich identity info over D-Bus• Leveraging platform components to provide identity information to applications
Cloud Roadmap53
Portfolio Integration
• Identity Management integration efforts:
•Unified authentication and SSO
•Key and certificate management for the infrastructure stack
•Linux system provisioning with the automatic domain enrollment
• Integration targets:
•CloudForms, OpenStack, Enterprise Virtualization, Satellite 5 & 6, JBoss
Cloud Roadmap54
Identity Management @ Summit
Session:
• Interoperability update: Red Hat Enterprise Linux 7 beta & Microsoft Windows – Tue 3:40pm
Booth:
• Identity Management booth in Partner Pavilion (any time)
Lab:
•Red Hat Enterprise Linux Identity Management – Thu 11:30am (2 hours)
Cloud Roadmap Wrapup
Cloud Roadmap56
Cloud Roadmap Themes
•Leading innovation & making it consumable
•Open source community development
•Enterprise productization, lifecycle & support
• Integration
•RHEL-OSP (Enterprise Linux + OpenStack) paired
•CloudForms managing RHEL-OSP, RHEV, VMW, MS
•Satellite & Identity
•PAAS enablement with OpenShift
•Ecosystem of certified partners
Cloud Roadmap57
Enjoy the Summit!
•Learn much more in detailed sessions
•Check out the demos & labs
•Talk with us, feedback welcome!