an early adopters story about suse cloud application
play

An Early Adopters Story About SUSE Cloud Application Platform - PowerPoint PPT Presentation

Nov 01, 2023 •345 likes •1.09k views

An Early Adopters Story About SUSE Cloud Application Platform Adfinis SyGroup - Switzerland Nicolas Christener CEO/CTO Adfinis SyGroup nicolas.christener@adfinis-sygroup.ch twitter.com/nikslor linkedin.com/in/christener 2 Lucas Bickel

  1. An Early Adopters Story About SUSE Cloud Application Platform Adfinis SyGroup - Switzerland

  2. Nicolas Christener CEO/CTO Adfinis SyGroup nicolas.christener@adfinis-sygroup.ch twitter.com/nikslor linkedin.com/in/christener 2

  3. Lucas Bickel Developer @ Adfinis SyGroup OSS dev by night lucas.bickel@adfinis-sygroup.ch twitter.com/hairmare 3

  4. About Adfinis SyGroup Since 2000 Berne, Basel, Zürich & Lausanne Over 55 employees Broad customer base 100% Open Source 4

  5. Our Services Managed Engineering DevOps Development Services 5

  6. Our Partners 6

  7. Switzerland 7

  8. Stereotypical Swiss Icons 8

  9. Also Swiss OS4: Early Free Flying Quadcopter at a Swiss Federal Institute of Technology ● Collision avoidance ● Autonomous flight ● Flight planning ● Helped kickstart the current drone craze 9

  10. Also Swiss VS-Code: Source-code Editor by MSFT ● Most popular developer environment ● Built in Zürich ● By Erich Gamma and team ● Open source made in Switzerland 10

  11. Not Swiss Dedicated Regions by Public Cloud Providers ● Some countries have tailor-made solutions for their government customers - none in Switzerland so far ● Governance, compliance, and data protection regulatories mandate a custom built solution for Swiss government customers ● We took the opportunity to build a solution in cooperation with SUSE 11

  12. Let's talk about CAP baby, let's talk about you and me, …, let's talk about CAP 12 12

  13. From Docker to Cloud Foundry ● Docker introduced the masses to containers ● Container workloads require a container orchestration solution ● Kubernetes (K8s) is the de facto container orchestrator ● Cloud Foundry (CF) development started even earlier ● SUSE is bringing Cloud Foundry to the K8s ecosystem 13

  14. Container 101 App 1 App 2 App 3 Bins/ Bins/ Bins/ Libs Libs Libs VM Guest Guest Guest App 1 App 2 App 3 OS OS OS Container Bins/ Bins/ Bins/ Libs Libs Libs Hypervisor Container Engine Host OS Host OS Bare Metal Bare Metal 14

  15. Kubernetes 101 Node Container Engine POD POD POD Container Container Container Node Container Engine Master POD POD POD Container Container Container Node Container Engine POD POD POD Container Container Container 15

  16. CloudFoundry 101 (Eirini Style) POD Container kubernetes code cf push running app 16

  17. Why is this so cool? 17 17

  18. SPOILER ALERT SUSE Cloud Application Platform (CAP) is the simplest Cloud Foundry distribution available 18

  19. A Lightweight Cloud Foundry Pivotal Cloud Foundry (PCF) 31 Nodes, 43 vCPUs, 122 GB RAM http://pcfsizer.pivotal.io/#!/sizing/azure/2.2/small Cloud Application Platform 11 Nodes, 22 vCPUs, 88 GB RAM Small setup on Azure using AKS 19

  20. A Portable PaaS Solution SUSE Cloud Application Platform This is not the cases for other officially supports different K8s PaaS solutions stacks ● SUSE CaaSP ● OpenShift is not supported on other K8s platforms ● Amazon EKS ● Pivotal does not support plain ● Microsoft AKS K8s at the moment ● Google GKE 20

  21. A Developer Centric Solution Cloud Foundry style Kubernetes style ● Developers can use "cf push" ● Developers need to mess with and focus on code "kubectl" and "s2i" and friends ● Sensible amount of settings ● Large amount of settings ● Open Service Broker API was ● Open Service Broker API still an born in CF area alien ● Perfect for Spring-Boot devs ● Generic Infrastructure Solution 21

  22. If one focuses on developer agility, Cloud Foundry (CF) is the answer! 22

  23. A Story About a Somewhat Bigger Project 23 23

  24. Let the Developers do Their Magic! ● Teams need a platform to deploy their tailor-made applications ● Time to market is a key factor in enabling customers success! ● DevOps mindset requires access to self-service capabilities 24

  25. More Details About the Project ● Swiss organizations tend to run their own infrastructure ● "No one has access to my data" was the #1 strategy for many Swiss services - e.g. banking, pharmaceutical and other industries ● Swiss Government wants to keep the data in Switzerland as well ● Broad acceptance of public cloud offerings will not happen soon 25

  26. Goals ● Provide a PaaS for Swiss federal offices ● Integrate provided services into existing service catalog ● Cloud-like billing, connected to existing SAP landscape ● We need to separate tenants physically in some cases ● Make developers and operators happy by building an awesome platform 26

  27. Lovely Details Worth Mentioning ● Direct contact with SUSE product management allows influencing the future of the platform ● The shift to “Open Source first, upstream first” by SUSE was done at the right time for us. It enables us to help fix documentation for our customer at the proper upstream venues! ● We have the opportunity to help lay the foundation for the future of government cloud computing in Switzerland 27

  28. Use Cases 28

  29. Use Cases - Goals ● End-user self-service portal for non-dev customers ● Allow automating all the things ● Offer various in-cluster services ● Allow users to consume standard services w/o deploying to the cluster ● Everything needs to be billable 29

  30. Use Cases - User Scopes End User “Internal” User Operator Platform Owner ● Can order services ● May also be end user ● Maintains the cluster ● Owns government and pay for them cloud strategy ● Develops & deploys ● Has full RBAC ● Does not have any apps using CF API access ● Responsible for escalated privileges platform & dev lifecycle mgmt ● Automates everything ● Uses a well from development to integrated self- deployment & day ● Manages commercial service portal two operations & financing aspects (HP-OO based) of the platform ● May also use space ● Time to market and on the development elasticity are crucial environment to learn about the platform 30

  31. Use Cases - Solutions ● Service offerings exposed via Open Service Broker API ● High-order PaaS features from CAP exposed to users through CF API ● HP Operations Orchestration (HP-OO) integration as self-service portal ● Billing integration done by customer ○ In the future we plan on standardizing on cf-abacus if it reaches general availability 31

  32. Lessons Learned 32 32

  33. Integrating into an Existing Environment 33

  34. Existing Architecture Compute Storage Network ● Hewlett Packard ● NetApp NFS storage ● Edge: F5 Big-IP ● On premise ● Cluster on NAS level ● LAN: Cisco 34

  35. Architecture Insights ● Deployment on bare-metal ● Reuse existing hardware ● Software defined ... where possible 35

  36. Compute 36

  37. Compute - Goals ● Compute is mostly a no-brainer however… ● Spectre/Meltdown/etc. led to the "separate physically" requirement ○ Customer with specific security demands get their own CaaSP / bare-metal setup ● We want to automate Velum (admin) node installs ○ CaaSP + CAP installation should be automated as much as possible ● Automation means faster time to market 37

  38. Compute - Reality ● Installation of a CaaSP cluster not fully automated out of the box ○ Velum node is usually installed manually ○ new Kubernetes nodes need to be assigned a system role ● Manual installation is not an option for a service provider ● With automation we can tick the "reproducible" checkbox 38

  39. Compute - Solutions ● Complete CaaSP automation is achievable ○ Had to create some AutoYAST + Cloud-init configuration ● Integrated pipeline to set up the rest done by customer ○ Does other things like set up billing, backup, etc. ● We strive to make documentation & code available so others can use it 39

  40. Networking 40

  41. Networking - Goals ● Exposing an internal service should automatically configure the LB ● The F5 LB in front of the cluster is integrated into the stack ● Restrict network connections of Pods ● Pods should not be able to sniff traffic of their neighbours 41

  42. Networking - Reality ● Flannel doesn't offer enough network restriction ● Network automation has its own pitfalls ○ processes, governance, licensing, etc. ○ F5 automation needs "F5 SDN services" (additional $$$) ● Workloads with specific security demands need their own CaaSP / bare metal setup 42

  43. Networking - Solutions ● Outgoing proxy was a challenge both for the deploy and for ops ○ was fixed upstream by SUSE ○ check “ Using a Proxy Server with Authentication” in the deployment guide ● Waiting to switch CNI (from Flannel → Cilium) 43

  44. Storage 44

  45. Storage - Goals ● Customers want their own storage volume on the storage cluster ● Volume provisioning should be automated ● Existing NetApp infrastructure shall be integrated into the stack 45

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

SUSE OpenStack Cloud 126 126 What is SUSE OpenStack Cloud You know of Cloud Compute right?

SUSE OpenStack Cloud 126 126 What is SUSE OpenStack Cloud You know of Cloud Compute right?

SUSE OpenStack Cloud 126 126 What is SUSE OpenStack Cloud You know of Cloud Compute right? Maybe you use AWS or Azure? Allowing pay-as-you-go model for IT infrastructure and toward dynamic software-defined service delivery.

168 views • 16 slides
VMWare to SUSE Openstack Cloud Migration - Infosys Success story Manjunath S.R.

VMWare to SUSE Openstack Cloud Migration - Infosys Success story Manjunath S.R.

VMWare to SUSE Openstack Cloud Migration - Infosys Success story Manjunath S.R. manjunatha.ramanna@infosys.com CIS- Enterprise Infrastructure Transformation - Infosys Bina Naidu Bina.Naidu@suse.com SUSE Global System Integrators Alliance

355 views • 20 slides
SYSTEMS EARLY ADOPTERS SURVEY Everyone Graduates Center Johns Hopkins University

SYSTEMS EARLY ADOPTERS SURVEY Everyone Graduates Center Johns Hopkins University

EARLY WARNING SYSTEMS EARLY ADOPTERS SURVEY Everyone Graduates Center Johns Hopkins University Interpretive Summary Highlights of EWS Early Adopters Learning and Sharing Summit Survey, George W. Bush Institute, Dallas, Texas, November 5-6,

426 views • 11 slides
NEC4 Early Adopter programme Steve Rowsell NEC4 Contract Board Member NEC4 Early Adopters

NEC4 Early Adopter programme Steve Rowsell NEC4 Contract Board Member NEC4 Early Adopters

NEC4 Early Adopter programme Steve Rowsell NEC4 Contract Board Member NEC4 Early Adopters Announced in the Special Issue of the Newsletter and through the webinars on NEC4 Early Adopters programme was rolled out to encourage

260 views • 6 slides
Enabling Cloud-Native Applications with Application Credentials in Keystone Colleen Murphy Cloud

Enabling Cloud-Native Applications with Application Credentials in Keystone Colleen Murphy Cloud

Enabling Cloud-Native Applications with Application Credentials in Keystone Colleen Murphy Cloud Developer at SUSE cmurphy @_colleenm Overview Why we needed application credentials What are application credentials? (with demo!)

637 views • 25 slides
Rule breaker! Upgrading an OpenStack Cloud while skipping a release Rick Salevsky Nanuk Krinner

Rule breaker! Upgrading an OpenStack Cloud while skipping a release Rick Salevsky Nanuk Krinner

Rule breaker! Upgrading an OpenStack Cloud while skipping a release Rick Salevsky Nanuk Krinner SUSE Cloud Engineer SUSE Cloud Engineer rsalevsky@suse.com nkrinner@suse.com Introduction Speakers Rick Salevsky SUSE Cloud Engineer

661 views • 35 slides
How SUSE is helping you rock the cloud James Mason Technical Architect, Public Cloud openSUSE

How SUSE is helping you rock the cloud James Mason Technical Architect, Public Cloud openSUSE

How SUSE is helping you rock the cloud James Mason Technical Architect, Public Cloud openSUSE Member jmason@suse.com / bear454@opensuse.org I hope you know about Virtual Machines . Otherwise you should go get a beer now. Ill wait. Do you

621 views • 42 slides
Lessons learned from deploying SUSE OpenStack Cloud and Enterprise Storage in the Public Cloud

Lessons learned from deploying SUSE OpenStack Cloud and Enterprise Storage in the Public Cloud

Lessons learned from deploying SUSE OpenStack Cloud and Enterprise Storage in the Public Cloud TUT1224 Thursday, April 04, 03:15 PM - 04:15 PM | Belmont 1 Friday, April 05, 10:15 AM - 11:15 AM | Belmont 2 Mike Friesenegger Solution Architect

683 views • 35 slides
Cloud Ser Clo Service Prov Provider(CSP) for for the Government Priv Gov Private Cl Cloud

Cloud Ser Clo Service Prov Provider(CSP) for for the Government Priv Gov Private Cl Cloud

SITA SITA SUS SUSE CSP CSP for for GPC GPCE RFB 2088 RFB 2088/2019 for for the pro procurement of of SUS SUSE Cloud Ser Clo Service Prov Provider(CSP) for for the Government Priv Gov Private Cl Cloud Ecos Ecosyste tem (GP

312 views • 10 slides
A healthcare logistics approach to achieving consumer centred care: Survey of early adopters in

A healthcare logistics approach to achieving consumer centred care: Survey of early adopters in

A healthcare logistics approach to achieving consumer centred care: Survey of early adopters in European hospitals HIC 2015 INTEGRATING CARE Delia Dent, CSC CSC Proprietary and Confidential Waiting. Delays are often not the result of

431 views • 17 slides
SUSE OpenStack Cloud Accelerate delivery of modern applications Expert Days 2019 Private Cloud:

SUSE OpenStack Cloud Accelerate delivery of modern applications Expert Days 2019 Private Cloud:

SUSE OpenStack Cloud Accelerate delivery of modern applications Expert Days 2019 Private Cloud: Mixing Evolution with Revolution 221 221 Do I Even Need to Change? 222 222 223 If Youre Not Innovating, Youre Falling Behind Competitive

565 views • 39 slides
Strategies for Engaging Strategies for Engaging Recalcitrant IT Adopters Recalcitrant IT

Strategies for Engaging Strategies for Engaging Recalcitrant IT Adopters Recalcitrant IT

Recalcitrant IT Adopters 1 December 2000 Strategies for Engaging Strategies for Engaging Recalcitrant IT Adopters Recalcitrant IT Adopters Jon D Kendall (http://www.quino.net ) Director of Instructional Development Wayne State College

235 views • 20 slides
City of York Early Adopters Project Engagement with schools Caroline Wood, School Safeguarding

City of York Early Adopters Project Engagement with schools Caroline Wood, School Safeguarding

City of York Early Adopters Project Engagement with schools Caroline Wood, School Safeguarding Advisor Juliet Burton, Business Manager, CYSCP New City of York Partnership Arrangements Published February 2019 Last LSCB meeting January

188 views • 15 slides
Community resource referral platforms - Lessons from early health care adopters SIREN Webinar

Community resource referral platforms - Lessons from early health care adopters SIREN Webinar

Community resource referral platforms - Lessons from early health care adopters SIREN Webinar April 18, 2019 siren Social Interventions Research & Evaluation Network SIRENs mission is to catalyze and disseminate high quality research

1.34k views • 66 slides
Health Links Early Adopters Jan. 25, 2013 Mary Kardos Burton: Director, bestPATH (interim)

Health Links Early Adopters Jan. 25, 2013 Mary Kardos Burton: Director, bestPATH (interim)

Health Links Early Adopters Jan. 25, 2013 Mary Kardos Burton: Director, bestPATH (interim) www.HQOntario.ca Health Quality Ontario: What do we do? Evidence evaluation Advice on uptake and funding for health services and new health

298 views • 5 slides
From SysAdmin to DevAdmin A SUSE Manager story Roberto Isidoro Gustavo Varela Sales Engineer

From SysAdmin to DevAdmin A SUSE Manager story Roberto Isidoro Gustavo Varela Sales Engineer

From SysAdmin to DevAdmin A SUSE Manager story Roberto Isidoro Gustavo Varela Sales Engineer Sales Engineer Roberto.Isidoro@suse.com gvarela@suse.com Agenda You are a SysAdmin You will be a DevAdmin Awesome! Q&A

174 views • 16 slides
Architectural Design Patterns for Cloud Computing Rajesh Venkatesan Senior Architect, HCL

Architectural Design Patterns for Cloud Computing Rajesh Venkatesan Senior Architect, HCL

Architectural Design Patterns for Cloud Computing Rajesh Venkatesan Senior Architect, HCL Technologies rajeshvn@hcl.com Cloud Computing NIST Definition Provision without human On-demand interaction self-service SaaS Accessible via

557 views • 17 slides
Distributed multi-tenant cloud/fog and heterogeneous SDN/NFV orchestration for 5G services Ricard

Distributed multi-tenant cloud/fog and heterogeneous SDN/NFV orchestration for 5G services Ricard

Distributed multi-tenant cloud/fog and heterogeneous SDN/NFV orchestration for 5G services Ricard Vilalta, A. Mayoral, Raul Muoz, Ramon Casellas, Ricardo Martnez The need for generic control functions and a Transport API The NBI of the

679 views • 15 slides
Implementing Web-Scale Discovery in an Academic Research Library Tammy Allgood, Web Services

Implementing Web-Scale Discovery in an Academic Research Library Tammy Allgood, Web Services

Implementing Web-Scale Discovery in an Academic Research Library Tammy Allgood, Web Services Librarian Arizona State University Outline Why Web-Scale Discovery Usability Testing @ ASU System Criteria Implementation Marketing

605 views • 33 slides
PROSPECTUS REACH SUBSEA ASA (A public limited liability company incorporated under the laws of

PROSPECTUS REACH SUBSEA ASA (A public limited liability company incorporated under the laws of

PROSPECTUS REACH SUBSEA ASA (A public limited liability company incorporated under the laws of Norway) Listing on the Oslo Stock Exchange of 3 1 ,7 3 7 ,5 0 0 New Shares issued in connection w ith the Private Placem ent com pleted on 1 0 June

1.33k views • 121 slides
Pitch Presentation This project hasreceived funding from the European Unions Horizon 2020

Pitch Presentation This project hasreceived funding from the European Unions Horizon 2020

European Cloud-In-MemoryDatabase Appliance with Predictable Performance for Critical Applications Pitch Presentation This project hasreceived funding from the European Unions Horizon 2020 research and innovation programme under grant agreement

325 views • 8 slides
Innovation Projects 2016 - 5G-Crosshaul Project ETSI MEC IEG #17 Madrid, 17th-18th of March,

Innovation Projects 2016 - 5G-Crosshaul Project ETSI MEC IEG #17 Madrid, 17th-18th of March,

Innovation Projects 2016 - 5G-Crosshaul Project ETSI MEC IEG #17 Madrid, 17th-18th of March, 2016 Razn social Telefnica I+D / GCTO Unit 00.00.2015 18.03.2016 5G-Crosshaul motivation and objectives Operators looking for mechanisms

525 views • 9 slides
The Event-Driven Enterprise: Rabobanks Data Streaming Journey Vincent Oostindi Jeroen van

The Event-Driven Enterprise: Rabobanks Data Streaming Journey Vincent Oostindi Jeroen van

in collaboration with The Event-Driven Enterprise: Rabobanks Data Streaming Journey Vincent Oostindi Jeroen van Disseldorp Who are we? Vincent Oostindi Jeroen van Disseldorp Business Architect Managing Director Rabobanks mission,

461 views • 24 slides
Cloud Computing (a.k.a. - Cumulus-Confuseus) Chuck Gowans Chief Architect USDA

Cloud Computing (a.k.a. - Cumulus-Confuseus) Chuck Gowans Chief Architect USDA

Cloud Computing (a.k.a. - Cumulus-Confuseus) Chuck Gowans Chief Architect USDA National Information Technology Center (NITC) Agenda g Cloud Computing An Overview (With Real World Interpretations and Examples) p p

799 views • 20 slides

More recommend