CON1933_Vegh_v7x - ACTIVEevents.com

knowledgeextrasmallΑποθήκευση

11 Δεκ 2013 (πριν από 3 χρόνια και 4 μήνες)

197 εμφανίσεις

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

1

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

2

More Oracle Solaris Events


General Sessions


Breakout Sessions


Hands
-
on Labs


Demos

bit.ly/oow13
-
solaris

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

3

The following is intended to outline our general product direction.
It
is intended

for
information purposes only, and may not be incorporated into any contract.

It
is not a commitment to deliver any material, code,
or
functionality, and should not be
relied upon in making purchasing decisions. The development, release, and timing of
any features or functionality described for Oracle

s products remains at the sole
discretion of Oracle.



Ten Key Solaris Zones
Differentiators Enhancing
Cloud Platforms

Karoly Vegh


Principal Systems Consultant, Oracle

Adrian Saul


Solaris Technical Specialist, AAPT

Duncan Hardie


Principal Product Manager, Oracle



Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

5

Session Agenda


Introduction


The 10 Oracle Solaris Zone Differentiators


Case study: how Zones enable AAPT
´
s SaaS cloud


Upcoming Zones features


Q&A

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

6

Karoly Vegh








Systems Consultant

UNIX Admin

@kvegh


Adrian Saul








Solaris Technical
Specialist



Duncan Hardie








Oracle Solaris PPM

Virtualization,
Networking and Cloud

Introduction

One session, three presenters

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

7

Session Agenda


Introduction


The 10 Oracle Solaris Zone Differentiators


Case study: how Zones enable AAPT
´
s SaaS cloud


Upcoming Zones features


Q&A

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

8

Short Poll for Statistics


Who is running Oracle Solaris Zones?


Who is running Oracle Solaris 11?


Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

9

#1: No Performance Overhead

No emulation overhead, native speed of the global zone

Hypervisor

OS

Fat hypervisor steals
memory resources
and introduces
latency

Waste
memory
and disk
space on
multiple
fat
OSes

CPU oversubscription
introduces scheduling
inefficiencies

OS

OS

Instantly share or
dedicate resources
as required

Minimized,
efficient,
single
instance
OS

No need for
expensive
hypervisor

Applications
get the
leftover
resources

Inflexible,
dedicated
resources

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

10

#1: No Performance Overhead


Zones are
userspace

containers


Scheduler runs at kernel level in the global zone


Resource management ensures the guaranteed minimum CPU usage


...with the possibility to practically overcommit that (FSS)


Integration with CPU pools






Cloud relevance:
consolidation density


呃T
!


No emulation overhead, native speed of the global zone

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

12

#2: Manageability


Zones are


...easily cloneable (ZFS integration)


…mobile


Zones allow...


...ZFS management delegation


...Observability with DTrace within a Zone too


...Bootenvironment management within a Zone




Cloud relevance:
efficient platform management and self
-
service
.

Build once, deploy thousands, delegate responsibilities

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

13

#3 Cross Platform


Run Logical Domains on T1
-
T5, M5, M6, M10.


Run Dynamic Domains on M3000
-
M9000, M5, M6


Run OVM for x86 on x86


...but...


RUN ZONES EVERYWHERE!

...because Zones run everywhere,
reducing virtualization diversity.


both x86 and SPARC

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

14

#4 Legacy Containers


How many different versions of Oracle Solaris Zones
can you run parallelly on a current SPARC server?

Quiz

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

15

#4 Legacy Containers


Run Solaris8 or Solaris9 Zones on Oracle Solaris 10


Run Solaris 10 branded Zones on Oracle Solaris 11


Move Oracle Solaris 10 NGZs to an Oracle Solaris 11 GZ with a V2V
conversion


Convert Oracle Solaris 10 Global Zones to Solaris 10 NGZs running on
Solaris 11


4 different Solaris Zone versions in a Server!


Uplifting legacy environments to new platforms

Cloud relevance:
moving legacy applications from physical to cloud


Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

16

#5 Cluster Integration with Solaris Cluster

HA for your cloud

Oracle
WebLogic

Server

Oracle
WebLogic

Server

Web

Server
-
Tier

zones

Cluster

Application
Server

Flying Zone

PeopleSoft
Application
Server

PeopleSoft
Application
Server

Oracle

RAC

Oracle

RAC

Database

Server
-
Tier

zones

Cluster

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

17

#5 Cluster Integration with Solaris Cluster


Flying/Moving Zones


halt


export


move


import


check


start


Zoneclusters



Definitions:

1.
Multiple Non
-
Global
-
Zone
-
level clusters in a single Global Cluster

2.
One
multihost

zone stretched across all
clusternodes



With both S10 and S11 moving zones and S10/S11 ZoneClusters!





Cloud relevance:
Availability for cloud services
.



HA for your cloud

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

18

#6 License hard
-
partitioning


Zones are an approved license
-
partitioning technology


In a certain configuration (dedicated CPUs or CPU pools)


NB:


Consult the hard partitioning guidelines document











Cloud relevance:
Costefficience



Limiting the number of licenses in use

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

19

#7 Total Application and Stack Support

Virtually any Solaris Supporting application will run in a zone


Run supported on all the Oracle Stack


Run Zones on top of Oracle Storage


Run Zone connectivity on Oracle network


Run zones on engineered systems


Run all applications inside zones



No need to reproduce issues on bare metal



FUSION APPLICATIONS

EXALOGIC

FUSION MIDDLEWARE

JROCKIT

SPARC SUPERCLUSTER

DATABASE

FUSION MIDDLEWARE

WEBLOGIC SERVER

Cloud relevance:
certified, verified, approved, supported, pretested

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

20

ORACLE
SUPERCLUSTER
RUNS

SOLARIS ZONES


Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

21

#8 Exclusive IP Stack



Zones have their own separate, exclusive IP stack, with:


VNICs providing QoS


dataflows defining additional guarantees


separating workloads/customers/environments on L3


while providing spoofing protection


network in a box


Running an NFS server or a firewall in a zone


Cloud relevance:
secure

multitenancy through network separation



Network separation via VNICs


Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

22


Read Only Virtualization


Network Protection


ZFS Encryption


Auto
-
offloading of CPU
-
intensive
security functions


Hardware acceleration for Oracle
DB Advanced Security
Transparent Data Encryption
(TDE)


Turbo charged JRE security


Defense in Depth

#9 Enterprise Class Security

Private

LAN

Public

Internet

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

23

#10 Plannable Platform Management

Key Reasons Why You Should Run All Apps in Zones by Default


Resource planning flexibility



vs. dedicated Servers


Keeps the Global Zone change clean of changes by applications


Mobility, migratability


For growth, upgrades, maintenances, resource redistribution



Cloud value:
Flexibility by default


Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

24

Key Takeaways


No performance overhead



Consolidation density


Efficient, delegateable management





Self service


Cross platform





Choice


4 versions of branded Zones in a box





Cloud enablement for Legacy Apps


Cluster intergration





HA for cloud services



License hard partitions





Cost efficiency


Application/Stack support






Verified, certified


Exclusive IP Stack





Absolute multitenancy


Enterprise Security




Data protection


Plannability, Flexibility





reduced platform mgmt effort


Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

25

Session Agenda


Introduction


The 10 Oracle Solaris Zone Differentiators


Case study: how Zones enable AAPT
´
s SaaS cloud


Upcoming Zones features


Q&A

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

26

AAPT Solaris
-
as
-
a
-
Service


A green field opportunity


Step 1: build our own internal cloud


Step 2: offer spare capacity to customers


Step 3: Profit???


Requirements


Quick and simple provisioning


Application and capacity needs practically unknown


Design with multi
-
tenancy in mind


Solution: Zones






In the beginning…

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

27

AAPT Solaris
-
as
-
a
-
Service


Simple provisioning


no jumpstart, no combat with network team, all from the global zones


Dynamic resource configuration


FSS and resource caps less rigid then
LDoms


Permits oversubscription of resources


Suitable for majority of applications


Multiplatform


can use same design on M5000, T5240 and x86


Easy to move zones between physical hardware (with planning)







Why Zones?

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

28

AAPT Solaris
-
as
-
a
-
Service

Cloud Zones Model

LUN

zpool

Internal
Zone

LUN

LUN

zpool

Customer
Zone

LUN

Compute

Network

Storage


LUNs presented over
iSCSI

/ FC


Use storage APIs for provisioning and
control LUN mapping to hosts


Backups via global zone






VLAN separation of customers


MPLS networking to customer sites


VNICs make life easy


overlapping IP ranges


All hosts identically configured


Zone configuration saved centrally


Resources controlled via capping


Zpools

allow
zone
migration between
hosts


Environment agnostic


PRD / DEV / Customer


Standard provisioning


same build every time





Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

29

AAPT Solaris
-
as
-
a
-
Service


Zoneadm

attach/detach


Zone mobility: detach zone, export
zpool
, import
zpool
, attach zone


Upgrade on attach allows N+1 patching architecture


Fair Share Scheduler + Resource Caps


Caps to limit resource hogs and runaways


FSS to allow balanced oversubscription of CPU


VNICs: flexible addressing and routing with all exclusive IP stacks


You get a NIC, and you get a NIC, and you get a NIC

Zone Features enabling the cloud

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

30

AAPT Solaris
-
as
-
a
-
Service


Per zone boot environments


Live upgrades now follow the zone


ZFS dataset delegation


With RBAC users can self manage snapshots and file systems


IPS Repositories


Simple software deployment: “
pkg

install
forkbomb



Simple patching and upgrades: “
pkg

upgrade”


Solaris Features
enabling the
cloud


Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

31

AAPT Solaris
-
as
-
a
-
Service


VDC Link


Private network or Internet


Infrastructure
-
as
-
a
-
Service


Solaris Zones


VMWare

Vcloud


Managed via customer portal


Order VDC Link service


Provision on demand

AAPT Virtual Data Centre

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

32

AAPT Solaris
-
as
-
a
-
Service


Same provisioning as internal services


Order via web portal


End to end automated provisioning: Network, Storage, Compute


Billing by capacity


Consistency with other cloud services, simple costing


Usage based easily implemented using ‘caps’
kstats


Challenges


No access to customer network


Overlapping IP ranges easily a possibility: tricky with shared IP, easy with VNICs


Not a managed service


customer controls via web portal




Zones as a Cloud Service

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

33

AAPT Solaris
-
as
-
a
-
Service


Consolidation


436 environments on 20 physical machines


As many as 49 zones on a single host (and not
yet full)


Multi
-
tenant resource sharing


Fast provisioning


10 minutes from request to zone availability


Scalability


FSS allowing as high as 235% over subscription on CPU








Zones Deliver

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

34

Session Agenda


Introduction


The 10 Oracle Solaris Zone Differentiators


Case study: how Zones enable AAPT
´
s SaaS cloud


Upcoming Zones features


Q&A

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

35


Independence


Mobility


Storage


Reconfiguration


Dependencies


Observables


Core alignment




Areas of investigation

Oracle Solaris Zones Futures

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

36

Session Agenda


Introduction


The 10 Oracle Solaris Zone Differentiators


Case study: how Zones enable AAPT
´
s SaaS cloud


Upcoming Zones features


Q&A

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

37

Learn More


oracle.com/solaris


@ORCL_Solaris


facebook.com/oraclesolaris


Oracle Solaris Insider


blogs.oracle.com/solaris



More
OpenWorld

sessions: bit.ly/OOW13
-
Solaris


37

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

38

Graphic
Section Divider

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

39

Copyright

©

2013, Oracle and/or its affiliates. All rights reserved.

Insert Information Protection Policy Classification from Slide 12 of the corporate presentation template

40