Upgrade to Pro — share decks privately, control downloads, hide ads and more …

A One stop solution for Puppet and Openstack - PuppetConf 13'

Fe4dc5ea02ac73b9981bcc549a7a288c?s=47 Daniel Lobato García
August 23, 2013
Programming
2
160

A One stop solution for Puppet and Openstack - PuppetConf 13'

Fe4dc5ea02ac73b9981bcc549a7a288c?s=128

Daniel Lobato García

August 23, 2013
Tweet

More Decks by Daniel Lobato García

See All by Daniel Lobato García
Fe4dc5ea02ac73b9981bcc549a7a288c?s=48 elobato
1
2.3k
Fe4dc5ea02ac73b9981bcc549a7a288c?s=48 elobato
0
82
Fe4dc5ea02ac73b9981bcc549a7a288c?s=48 elobato
0
77
Fe4dc5ea02ac73b9981bcc549a7a288c?s=48 elobato
3
250
Fe4dc5ea02ac73b9981bcc549a7a288c?s=48 elobato
0
44
Fe4dc5ea02ac73b9981bcc549a7a288c?s=48 elobato
0
110
Fe4dc5ea02ac73b9981bcc549a7a288c?s=48 elobato
0
260
Fe4dc5ea02ac73b9981bcc549a7a288c?s=48 elobato
0
52
Fe4dc5ea02ac73b9981bcc549a7a288c?s=48 elobato
3
3.7k

Other Decks in Programming

See All in Programming
4a290dbd4f1c19bf2f25c2a230faf1bf?s=48 shirotamaki
0
230
8ec2b967e38f000eb63ae345cd7c58e6?s=48 minodriven
40
31k
0d4ef9af8e4f0cf5c162b48ba24faea6?s=48 ept
0
100
B1bddcb899ec3060fe9913f3cb70dbb6?s=48 lmt_swallow
5
1.5k
F6ceb15fb20b52f49e375cec868a0107?s=48 tokitakumi
1
480
827c50b8ee8994d5feac521f09178d0e?s=48 karosuwindam
0
150
187099e8b7edf2164b254ccd0a079715?s=48 azukizuki
0
120
942bb606679caf4c57b38927f83178e1?s=48 qsona
27
6.6k
63c01564f6afe7af88d5d6981790457d?s=48 shomatan
0
260
D76231a2114896dfcc7b79ac69558b79?s=48 yosuke_furukawa
PRO
1
660
A760a90c9afd981004343b9861f1e8b4?s=48 daipresents
12
4.7k
3f97ef294ccbc5e3f16b7594e06fd1f3?s=48 sryoya
2
110

Featured

See All Featured
1177e050db6bafe62885362edf6e3537?s=48 lauravandoore
442
29k
766b9746b59e6f09e280cd33cf4ed419?s=48 skipperchong
8
830
3ab1249be442027903e1180025340b3f?s=48 reverentgeek
28
2.1k
1b8ad785acdd1ce1c99914b1c2a4e10e?s=48 sugarenia
233
900k
48c098b6579220a67a6ba949be6e4b5a?s=48 revolveconf
201
9.8k
D67fff74178013024d833b3eec6cf27f?s=48 lynnandtonic
274
17k
E76911cbe088e5b850d966de3fc7435b?s=48 robhawkes
53
2.9k
Dad095ea7038f89f760419ce475d5d14?s=48 michaelherold
226
8.7k
465724d73fe3a92c0879fdfb43a3a6f3?s=48 philhawksworth
193
8.9k
24fc194843a71f10949be18d5a692682?s=48 gr2m
85
11k
D09fad3e36ae6841f54820be0e907f7a?s=48 rocio
154
11k
Ecdea9b9714877b86cee08458f085481?s=48 trallard
17
900

Transcript

  1. A one stop solution for Puppet and Openstack Daniel Lobato

    Garcia daniel.lobato.garcia@cern,ch @eLobatoss
  2. None

  3. What is CERN Between Geneva and the Jura mountains, straddling

    the Swiss- French border Mission: learn what is the universe made of and how does it work? 3

  4. Fundamental questions in physics Why do particles have mass? What

    is 96% of the universe made of? Why isn’t there anti-matter in the universe? What was the state of matter after the Big Bang? 4

  5. 8/12/2013 Document reference 5

  6. 8/12/2013 Document reference 6

  7. 8/12/2013 Document reference 7

  8. 8/12/2013 Document reference 8

  9. Current status • 270 Openstack hypervisors • 2900 virtual machines

    • 300 users • 14 Puppet masters • 6 Foreman backend nodes • Some production services migrating to our cloud – early birds 9

  10. Goals • Ramp up to 15K hypervisors – 150-200K vms

    in 2015 • Multi-site (Hungary) 10

  11. 8/12/2013 Document reference 11

  12. 8/12/2013 Document reference 12

  13. Why? • Unnecessary homebrew stack of tools • Shift to

    cloud standards with minimal customizations • High turnover – can’t teach new tools 13

  14. Why? • Symbiotic relationship with the community 14

  15. Openstack? • Modular IaaS free open source project • APIs

    ~compatible with those of Amazon 15

  16. Openstack Nova (compute) Cloud fabric controller 16

  17. Openstack Keystone (Identity) RBAC Integrated with LDAP Multiple auth* methods

    17

  18. Openstack Glance (Images) Discovery, registration, delivery of images 18

  19. Openstack Horizon (Dashboard) 19

  20. Modules • Puppet definitions for every use case you can

    imagine. • Dynamic environments • Hadoop node • Openstack hypervisor • … you name it 20

  21. 21 Workflow..?

  22. Modules and Git • Manifests and hieradata are version controlled

    22

  23. 23 Git workflow Puppet masters

  24. 24 Easy cherry pick

  25. 25 Git workflow

  26. 26 Git workflow Jens ‘Puppetfiles’ Separate repositories Makes environments from

    YAML config files Puppet master rsync

  27. 27 upstream.yaml --- default: production notifications: ai@cern.ch overrides: modules: foreman:

    upstream puppet: upstream ‘Puppetfiles’

  28. Foreman • Lifecycle management tool for VMs and physical servers

    • External Node Classifier – tells the puppet master what a node should look like 28

  29. 29

  30. 30

  31. Power operations & Foreman 8/12/2013 Document reference 31 Foreman Proxy

    Physical box IPMI Physical box IPMI Physical box IPMI VM VM VM Openstack Nova API

  32. Openstack VM creation 8/12/2013 Document reference 32

  33. Openstack VM creation 8/12/2013 Document reference 33

  34. Openstack VM creation 8/12/2013 Document reference 34

  35. Scalability experiences • Split up services • Puppet – critical

    vs non critical 35 12 backend nodes Batch 4 backend nodes Interactive

  36. Scalability experiences • Foreman – split into different services 36

    ENC Reports processing UI/API Load balancer 9443 – UI/API 9444 – Reports 9445 – ENC …

  37. Scalability experiences • Autoscale via alarms (Heat) • Define situations

    (i.e: load threshold..) • Spin up VMs as needed 37

  38. Scalability guidelines 38

  39. github.com / cernops 39

  40. 40

  41. None