cernvm online and cloud gateway
play

CernVM Online and Cloud Gateway a uniform interface for CernVM - PowerPoint PPT Presentation

Dec 11, 2023 •29 likes •329 views

CernVM Online and Cloud Gateway a uniform interface for CernVM contextualization and deployment George Lestaris - Ioannis Charalampidis D. Berzano, J. Blomer, P . Buncic, G. Ganis and R. Meusel PH-SFT / CERN Background CernVM: a virtual

  1. CernVM Online and Cloud Gateway a uniform interface for CernVM contextualization and deployment George Lestaris - Ioannis Charalampidis D. Berzano, J. Blomer, P . Buncic, G. Ganis and R. Meusel PH-SFT / CERN

  2. Background CernVM: a virtual appliance that serves as a portable environment for developing and running LHC data analysis • easily deployed in cloud or local environment by supporting various image types and hypervisors • see Jakob’s talk about μ CernVM , the next- generation CernVM: http://chep2013.org/contrib/ 213 • visit: http://cernvm.cern.ch 2 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  3. Background Virtual machine contextualization: is the process of configuring a VM instance for the needs of various deployment use cases • we apply a context • INI file - based on the AMIConfig library • defines settings for the various contextualization plugins - INI file sections • using • user-data field in clouds that support it • HEPIX contextualization 3 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  4. Motivation This work has to main goals: 1. make contextualization of local VMs easier • no need to write contexts manually • reduce the use of the CernVM web appliance to configure local virtual machines by providing easier alternatives 2. deployment of CernVM • in local environments • virtual clusters in the cloud 4 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  5. CernVM Online / Cloud Gateway: interface for contextualization and deployment CernVM Online contextualization made easy cernvm-online.cern.ch Can connect with CERN authentication or create a local account 5 / 30

  6. CernVM Online Web application: used to define , store and share contexts • Contexts are immutable. They cannot change, they can only be cloned • Secure contexts are supported by encrypting context content with user defined passphrase • context may contain sensitive information like passwords, keys, etc.. 6 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  7. CernVM Online Marketplace: share contexts for common use cases Deployment: user can deploy VMs locally with the CernVM WebAPI • browser plugin able to spawn virtual machines automatically using VirtualBox hypervisor (is installed by the plugin if not available) • implemented by Ioannis Charalampidis for Theory division at CERN (http://crowdcrafting.org/app/cernvm/) Pairing: contextualization of already running CernVM instances with console access 7 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  8. Dashboard Deploy VM locally Publish to marketplace Paired VMs 8 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  9. Context creation • CernVM-FS configuration • Adding users / groups • Environment variables • Startup script • Services to start • SSH key • Condor configuration 9 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  10. Marketplace User can pair/clone contexts made by others Search for contexts 10 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  11. Virtual machine pairing 1) Obtain PIN from CernVM 2) Apply PIN online list of paired instances 11 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  12. Deployment with WebAPI beta 1) Select configuration 2) Confirm 3) Enjoy WebAPI plugin is available for Chrome, Firefox and IE. 12 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  13. Pairing vs WebAPI WebAPI spawns a VM using user’s local PC resources Pairing is contextualizing an existing VM • requires console access • VM can be local, or remote Both can be used to avoid having to contextualize manually user’s VM with the web appliance. 13 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  14. CernVM Online / Cloud Gateway: interface for contextualization and deployment CernVM Cloud beta deploy CernVM virtual clusters cern.ch/cernvm-cloud Contact us for a beta tester account 14 / 30

  15. CernVM Cloud Gateway a distributed system that provides a single interface to use multiple and different clouds: • by cloud type: OpenStack, CloudStack, OpenNebula, ... • private or public: CERN OpenStack, AWS, ... • geographically distributed 15 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  16. CernVM Virtual clusters Uses cloud available cloud resources to deploy virtual clusters. Virtual cluster is a set of VMs able to communicate with each other: • consists of services • each service should be deployed in the cloud ‣ a service defines: 1.the context of the VMs that will implement it, 2.the VM configuration ( flavor, CernVM version ) - fixed services are deployed once and before any other service - scalable services rely on the fixed services and they can be scaled up and down 16 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  17. Virtual cluster example Master will start first Condor fixed service master Workers will start after master and their context will contain master’s IP address Condor Condor Condor Condor scalable service worker worker worker worker There are cases with more than one fixed services: proxy server, VO box, etc 17 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  18. Implementation tools iAgent Framework: implemented in Perl, it provides ways to develop agents that can expose their functionality through XMPP . XMPP: communication protocol. Has useful features as: • Presence: to know which agents are online • Queuing: messages will be delivered once agent is up • PubSub channels: many cloud agents listen for messages from the gateway agents 18 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  19. Architecture Gateway AWS server State DB Cloud agent CERN OpenStack Gateway Gateway Cloud Gateway XMPP server server agent agent CERN OpenStack Cloud agent 19 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  20. Gateway server / agent Gateway server: API endpoint and web interface • Handles client authentication • users and groups • Feeds the system with user requests • Web interface works with mobile devices ( responsive ) • REST API provides complete functionality for deploying clusters (http://cern.ch/cernvm-cloud/Wiki/Documentation.html) Gateway agent: processes the user requests and forwards them to cloud agents though XMPP . 20 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  21. Cloud Agent Associated with a single cloud access credentials • Listens to XMPP PubSub channel for user requests • simple ACL: administrator can define which users/ groups for cloud gateway can use his cloud instance • soft quota for managed cloud resources • mapping of general flavors / templates to cloud specific • Communicates with respective cloud via a cloud driver that “speaks” its API 21 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  22. Cloud credentials storage Current model: cloud credentials are stored in the cloud agents ✓ cloud agent can run in a machine managed by the owner of the credentials ✓ sensitive credentials are not communicated to the central server - a cloud agent has to be deployed for each cloud key-pair 22 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  23. CernVM Online / Cloud Gateway: interface for contextualization and deployment CernVM Cloud in action 23 / 30

  24. Defining a cluster Service definition Context selection Cluster services 24 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  25. Cluster deployment Select cluster to deploy from the stored cluster definitions in CernVM Online 25 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  26. Deployment management 26 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  27. Deployment management Scaling up services Per-instance information VM management 27 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  28. Clusters overflowing clouds Experimental VM VM VM VM VM VM VM VM VM VM VM 28 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

  29. Clusters overflowing clouds Experimental • CernVM Cloud can support multiple clouds • Once a cluster reaches cloud’s capacity and user requests to scale it up, it expands to another cloud • In this expansion the fixed services are being replicated to the new cloud ✓ Cluster VMs will be able to communicate with fixed services as they will always be in the local network of the same cloud 29 / 30 CernVM Online / Cloud Gateway: interface for contextualization and deployment

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CernVM Cloud Gateway George Lestaris Supervisor: Predrag Buncic Acknowledgements to: Ioannis

CernVM Cloud Gateway George Lestaris Supervisor: Predrag Buncic Acknowledgements to: Ioannis

CernVM Cloud Gateway George Lestaris Supervisor: Predrag Buncic Acknowledgements to: Ioannis Charalambidis September 24, 2012 Outline 1 Background 2 Motivation 3 CernVM Cloud Gateway 4 Deploying a cluster 5 Taverna integration CernVM CernVM

653 views • 28 slides
PROOF as a Service on the Cloud a Virtual Analysis Facility based on the CernVM ecosystem Dario

PROOF as a Service on the Cloud a Virtual Analysis Facility based on the CernVM ecosystem Dario

PROOF as a Service on the Cloud a Virtual Analysis Facility based on the CernVM ecosystem Dario Berzano R.Meusel, G.Lestaris, I.Charalampidis, G.Ganis, P .Buncic, J.Blomer CERN PH-SFT CHEP2013 - Amsterdam, 15.10.2013 A cloud-aware analysis

581 views • 20 slides
Things Gateway Ingest Transform Store Present and Act Upon Applications Stream Cloud

Things Gateway Ingest Transform Store Present and Act Upon Applications Stream Cloud

Things Gateway Ingest Transform Store Present and Act Upon Applications Stream Cloud Gateway Event Hubs Analytics Register Legacy IoT (custom protocols) Devices Storage Adapters Consume IP-capable devices Field Gateway

700 views • 37 slides
For personal use only Cloud security through cloud gateway intelligence FCT July Update Innovate

For personal use only Cloud security through cloud gateway intelligence FCT July Update Innovate

For personal use only Cloud security through cloud gateway intelligence FCT July Update Innovate Create Execute July 2017 1 For personal use only AGENDA Executive Summary Steve OBrien, MD Financial & Operational Update

549 views • 30 slides
CARER GATEWAY PRESENTATION 2020 carergateway.gov.au Carer Gateway is the national service

CARER GATEWAY PRESENTATION 2020 carergateway.gov.au Carer Gateway is the national service

CARER GATEWAY PRESENTATION 2020 carergateway.gov.au Carer Gateway is the national service Carers, funded by the Australian Government. It includes: Carer A website with information and advice Phone or online services Gateway

488 views • 14 slides
The EGI CernVM-FS Infrastructure Evolution Towards a Global Facility and Latest Developments

The EGI CernVM-FS Infrastructure Evolution Towards a Global Facility and Latest Developments

The EGI CernVM-FS Infrastructure Evolution Towards a Global Facility and Latest Developments Catalin Condurache STFC RAL UK ISCG, Taipei, March 2017 Outline Introduction Brief history EGI CernVM-FS infrastructure About the users

655 views • 31 slides
Geo replication and disaster recovery for cloud object storage with Ceph rados gateway Orit

Geo replication and disaster recovery for cloud object storage with Ceph rados gateway Orit

Geo replication and disaster recovery for cloud object storage with Ceph rados gateway Orit Wasserman Senior Software engineer owasserm@redhat.com Linuxcon EU 2016 AGENDA What is Ceph? Rados Gateway (radosgw) architecture Geo

658 views • 47 slides
Geo replication and disaster recovery for cloud object storage with Ceph rados gateway Orit

Geo replication and disaster recovery for cloud object storage with Ceph rados gateway Orit

Geo replication and disaster recovery for cloud object storage with Ceph rados gateway Orit Wasserman Senior Software engineer owasserm@redhat.com Vault 2017 AGENDA What is Ceph? Rados Gateway (radosgw) architecture Geo

744 views • 45 slides
CernVM-FS Catalin Condurache STFC RAL UK Outline Introduction Brief history EGI

CernVM-FS Catalin Condurache STFC RAL UK Outline Introduction Brief history EGI

CernVM-FS Catalin Condurache STFC RAL UK Outline Introduction Brief history EGI CernVM-FS infrastructure The users Recent developments Plans 2 Outline Introduction Brief history EGI CernVM-FS infrastructure

717 views • 45 slides
CERNs Virtual File System for Global-Scale Software Delivery Jakob Blomer for the CernVM-FS

CERNs Virtual File System for Global-Scale Software Delivery Jakob Blomer for the CernVM-FS

CERNs Virtual File System for Global-Scale Software Delivery Jakob Blomer for the CernVM-FS team CERN, EP-SFT MSST 2019, Santa Clara University Agenda High Energy Physics Computing Model Software Distribution Challenge CernVM-FS: A

775 views • 50 slides
Enabling CernVM for the Interactive Use Case Vasilis Nicolaou SFT Group CERN

Enabling CernVM for the Interactive Use Case Vasilis Nicolaou SFT Group CERN

Enabling CernVM for the Interactive Use Case Vasilis Nicolaou SFT Group CERN vasilis.nicolaou@cern.ch Supervisor: Dr. Jakob Blomer Summer, 2013 Overview Web appliance agent for the CernVM 1 Merging user databases 2 Merging RPM

276 views • 25 slides
SECURE-ONLINE (ZEKER-ONLINE) Quality mark for online cloud services Tom Vreeburg Boardmember

SECURE-ONLINE (ZEKER-ONLINE) Quality mark for online cloud services Tom Vreeburg Boardmember

SECURE-ONLINE (ZEKER-ONLINE) Quality mark for online cloud services Tom Vreeburg Boardmember DRAFT DRAFT DRAFT Some facts Founded on 16 April, 2013 Founders: The Dutch Tax Authority Suppliers of online bookkeeping services

134 views • 9 slides
Gateway A SHORT INTRODUCTION A brief overview on the Dog gateway, starting from the design

Gateway A SHORT INTRODUCTION A brief overview on the Dog gateway, starting from the design

T he Dog Gateway A SHORT INTRODUCTION A brief overview on the Dog gateway, starting from the design principles and going deep into the gateway architecture and modules, with some application sample http://dog-gateway.github.io/ WIRELESS

576 views • 30 slides
The Southern Gateway The Southern Gateway Metropolitan Memphis A vital gateway for moving

The Southern Gateway The Southern Gateway Metropolitan Memphis A vital gateway for moving

The Southern Gateway The Southern Gateway Metropolitan Memphis A vital gateway for moving people and freight Home to critical transportation infrastructure Railroads, Airport, Inland Port, Interstates Four Mississippi River Bridge

405 views • 19 slides
JACKPOT: Online Experimentation of Cloud Microservices BY M. TOSLALI 1 , S. PARTHASARATHY 2 , F.

JACKPOT: Online Experimentation of Cloud Microservices BY M. TOSLALI 1 , S. PARTHASARATHY 2 , F.

Jackpot: Online Experimentation of Cloud Microservices 7/15/2020 1 JACKPOT: Online Experimentation of Cloud Microservices BY M. TOSLALI 1 , S. PARTHASARATHY 2 , F. OLIVEIRA 2 , AND A. K. COSKUN 1 1 BOSTON UNIVERSITY; 2 IBM T.J. WATSON Talk

494 views • 18 slides
Global Software Distribution with CernVM-FS Jakob Blomer CERN 2016 CCL Workshop on Scalable

Global Software Distribution with CernVM-FS Jakob Blomer CERN 2016 CCL Workshop on Scalable

Global Software Distribution with CernVM-FS Jakob Blomer CERN 2016 CCL Workshop on Scalable Computing October 19th, 2016 jblomer@cern.ch CernVM-FS 1 / 15 The Anatomy of a Scientific Software Stack (In High Energy Physics) jblomer@cern.ch

721 views • 34 slides
JavaScript Common Gateway Interface Batch oriented (fill in a form, get interactive

JavaScript Common Gateway Interface Batch oriented (fill in a form, get interactive

jonkv@ida Why JavaScript? 2 1994 1995: Wanted interactivity on the web Server side interactivity: CGI JavaScript Common Gateway Interface Batch oriented (fill in a form, get interactive results) "Heavy

904 views • 5 slides
Lec09: Miscellaneous Insu Yun 2 Scoreboard 3 NSA Codebreaker Challenges 4 Administrivia

Lec09: Miscellaneous Insu Yun 2 Scoreboard 3 NSA Codebreaker Challenges 4 Administrivia

1 Lec09: Miscellaneous Insu Yun 2 Scoreboard 3 NSA Codebreaker Challenges 4 Administrivia Due: Lab09 is out and its due on Nov 10 NSA Codebreaker Challenge Due: Dec 1 5 Discussion: Lab08 What's the most

413 views • 29 slides
CS3157: Advanced Programming Lecture # 5 Feb 5 Shlomo Hershkop shlomo@cs.columbia.edu 1

CS3157: Advanced Programming Lecture # 5 Feb 5 Shlomo Hershkop shlomo@cs.columbia.edu 1

CS3157: Advanced Programming Lecture # 5 Feb 5 Shlomo Hershkop shlomo@cs.columbia.edu 1 Today More Perl Perl technical stuff Web Programming Perl based Homework 1 ready Please think about acquiring the C book (Deitel

751 views • 51 slides
Web Server Design Lecture 9 Server-Side Execution Old Dominion University Department of

Web Server Design Lecture 9 Server-Side Execution Old Dominion University Department of

Web Server Design Lecture 9 Server-Side Execution Old Dominion University Department of Computer Science CS 431/531 Fall 2019 Sawood Alam <salam@cs.odu.edu> 2019-10-24 Original slides by Michael L. Nelson Common Gateway Interface

653 views • 16 slides
Introduction to Php Web-based applications: main elements HTTP PROTOCOL CLIENT SIDE SERVER SIDE

Introduction to Php Web-based applications: main elements HTTP PROTOCOL CLIENT SIDE SERVER SIDE

Introduction to Php Web-based applications: main elements HTTP PROTOCOL CLIENT SIDE SERVER SIDE HTTP request An HTTP request consists of: a request method (verb) , resource URL , header fields ( metadata ), body ( data ) HTTP 1.1

1.84k views • 146 slides
They ought to know better: Exploiting Security Gateways via their Web Interfaces Ben Williams

They ought to know better: Exploiting Security Gateways via their Web Interfaces Ben Williams

They ought to know better: Exploiting Security Gateways via their Web Interfaces Ben Williams NGS-Secure NCC Group Plc, Manchester Technology Centre, Oxford Road, Manchester M1 7EF www.nccgroup.com Introduction 35+ Exploits found and

580 views • 41 slides
Internet Technologies 5-Dynamic Web F. Ricci 2010/2011 Content The "meanings" of

Internet Technologies 5-Dynamic Web F. Ricci 2010/2011 Content The "meanings" of

Internet Technologies 5-Dynamic Web F. Ricci 2010/2011 Content The "meanings" of dynamic Building dynamic content with Java EE (server side) HTML forms: how to send to the server the input PHP: a simpler language for

1.22k views • 52 slides
1 The http protocol: more WWW: the http protocol http is stateless http: hypertext

1 The http protocol: more WWW: the http protocol http is stateless http: hypertext

Internet apps: their protocols and transport protocols Application Underlying layer protocol Application transport protocol e-mail smtp [RFC 821] World Wide Web TCP remote terminal access telnet [RFC 854] TCP Web http [RFC 2068] TCP

438 views • 5 slides

More recommend