1 / 26

Curtis Salinas, UCB

Building a Private Virtualization Infrastructure: Lessons Learned and Future Directions at UC Berkeley. Curtis Salinas, UCB. Agenda. Why Build the Private (Infrastructure) Cloud? Challenges UCB Environment Automation Security and Configuration Management Use Cases What’s next?.

thanh
Télécharger la présentation

Curtis Salinas, UCB

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Building a Private Virtualization Infrastructure:Lessons Learned and Future Directions at UC Berkeley Curtis Salinas, UCB

  2. Agenda • Why Build the Private (Infrastructure) Cloud? • Challenges • UCB Environment • Automation • Security and Configuration Management • Use Cases • What’s next?

  3. Why Build the Private Cloud? • Policy • Trust • Visibility • Control • Cost

  4. Challenges • Virtual Machine (VM) Sprawl • Keeping up with high adoption rate • Securing the environment • Developing and maintaining standards

  5. Challenges • Virtual Machine (VM) Sprawl • Keeping up with high adoption rate • Securing the environment • Developing and maintaining standards

  6. UCB Environment • Virtualizing the hardware layer

  7. UCB Environment • Shared Storage

  8. UCB Environment • Clustered Hosts

  9. UCB Environment • Clustered Hosts SPRAWL!

  10. UCB Environment • Specialized Clusters SPRAWL!

  11. UCB Environment • Specialized Clusters • Isolated storage • Dedicated networks • Tuned for specific workloads • Granular access controls

  12. UCB Environment • Environment today • 3 Datacenters, 30+ hosts • 9 Clusters (3 multi-tenant, 6 dedicated) • 700 virtual machines • 80TB SAN storage

  13. UCB Environment • Virtual Private Server (VPS) Service • Multi-tenant Environment • Berkeley Datacenter • DR Sites (UCLA, SDSC)

  14. UCB Environment • ESX Service • Dedicated Clusters • Also available at multiple sites

  15. Challenges • Virtual Machine (VM) Sprawl • Keeping up with high adoption rate • Securing the environment • Developing and maintaining standards

  16. Automation • Scripted back-end processes • vSwitch management • Storage provisioning, pathing • Cluster analyzation • Host provisioning & configuration

  17. Automation • Estimator – http://estimator.berkeley.edu • Quick and consistent provisioning • Audited process • Limiting the potential for (human) error

  18. Challenges • Virtual Machine (VM) Sprawl • Keeping up with high adoption rate • Securing the environment • Developing and maintaining standards

  19. Security and Configuration Management • Locking it down • Physical hardware • Network switch layer • Storage layer • Hypervisor

  20. Security and Configuration Management • Principle of least privilege • Two-factor authentication • Log Retention • HyTrust Appliance • Auditing • Granular authorization • Compliance • Configuration Management

  21. Use Cases • Petris Center • A Short Story or: How SAS almost took down the SAN

  22. Use Cases • UC Merced • Offsite dedicated environment • Onsite consulting • Community Cloud?

  23. Where to next? • Hybrid Cloud • Data Protection • Whole VPS instance backup • Disaster Recovery • Platform as a Service (PaaS) • Virtual Desktop Infrastructure/Integration (VDI)

  24. Q/A

  25. VPS Service Costs • VPS Base (1 vCPU, 1GB RAM) - $22/month • Additional 1GB RAM or 1 vCPU - $6/month • High Tier Storage $0.98/GB • Standard Tier Storage $0.44/GB • Economy Tier Storage $0.18/GB • Low Tier Storage $0.08/GB • Guest systems support and backups separate • No bandwidth restrictions or metering

  26. ESX Service Costs • Dedicated ESX host (minimum of 2 per cluster) $629/month • 24 “physical” cores • 96GB RAM • High Tier Storage $0.80/GB • Standard Tier Storage $0.40/GB • Economy Tier Storage $0.15/GB • Low Tier Storage $0.08/GB • No bandwidth restrictions or metering

More Related