microsoft azure and suse high availability
play

Microsoft Azure and SUSE High Availability TUT1134 When - PowerPoint PPT Presentation

Nov 11, 2023 •603 likes •1k views

Microsoft Azure and SUSE High Availability TUT1134 When Availability Matters Mark Gonnelly Stephen Mogg Senior Consultant Technical Strategist for SAP and Public Cloud About This Session What to Expect: - HA concepts - SUSE Cluster

  1. Microsoft Azure and SUSE High Availability TUT1134 – When Availability Matters Mark Gonnelly Stephen Mogg Senior Consultant Technical Strategist for SAP and Public Cloud

  2. About This Session What to Expect: - HA concepts - SUSE Cluster Solution - Implementing HA in Azure - Best Practices - Demo 2

  3. HA Concepts 3

  4. HA Terms MTTF MTTR RPO 4

  5. The Goal of HA. Reduce: MTTR

  6. HA on Azure

  7. Slide Source: Microsoft

  8. Azure services for every use case https://azureinteractives.azurewebsites.net

  9. Azure resiliency as a platform HA Sets To provide redundancy to an application, it is recommended to group two or more virtual machines in an availability set. This configuration ensures that during either a planned or unplanned maintenance event, at least one virtual machine will be available. 9

  10. Azure resiliency as a platform Availability Zones AZ are physically separate locations within an Azure region. Each Availability Zone is made up of one or more datacenters equipped with independent power, cooling, and networking. For each region enabled for AZ, there are three Availability Zones 10

  11. Availability Zones Physical DC / Availability Zones Subscription 1 Subscription 2 11

  12. SLAs Using Cloud Native HA Capability HA Set Availability Zone Single VM 99.95 99.99% 99.9 (2 VMs) (2 VMs) 99.9% Storage SLA (Single Storage account) If your business needs a higher SLA – you need something more ..

  13. SUSE High Availability Extension

  14. SUSE HAE Cluster Components vIPas vIPas SAP SAP SAP Fencing (stonith) Resource Agents (RAs) pacemaker (crm) corosync (cluster membership) Storage (SBD) Kernel Kernel

  15. Corosync Group communication system with additional features for implementing HA for applications • Messaging and membership layer • Communicates over multicast or unicast (Azure Unicast only) • Performs cluster heartbeat • SUSE Linux Enterprise Server 12/15 it is a separate systemd service Synchronization, heartbeating etc. • /etc/corosync/corosync.conf Shared key for authentication: • /etc/corosync/authkey

  16. Pacemaker Pacemaker sits on top of Corosync and manages / monitors / restarts / migrates cluster resources • CIB (Cluster Information Base) is an XML representing entire cluster state (cibadmin(8)) • Once Pacemaker takes over ownership, nothing else must touch the resource directly, without first putting node / resource in maintenance mode. • Monitoring with configurable retries and timeouts

  17. Resource Agents Provides ‘intelligence to Pacemaker’ A script used to start/stop/monitor a resource • Ideally should be Open Cluster Framework compliant • Well defined return values • Mandatory operations • Return value passed back to Pacemaker • Many providers of RAs • Ships with around 140 RA out of the box. • Resource Agents for SAP HANA included in SLES for SAP Applications

  18. Why Do We Need Fencing? To a cluster node, loss of a peer node is indistinguishable from loss of communication with that node In the former case, is it safe to failover resources? And in the latter case?

  19. Split Brain • When a cluster partitions due to network failure • Neither side knows if the other is still alive • Worst case scenario: each side attempts to failover the other's resources • Better scenario: neither side does anything • But then, why do we have a cluster? • Best scenario: one side is able to guarantee that the other is down • Fencing is about moving from an UNKNOWN state to a KNOWN state

  20. SUSE High Availability in Azure 20

  21. BYOS vs PAYG SUSE Linux Enterprise Server This is the base OS Available in Azure SUSE Linux Enterprise Server HA Add-on This extends the base OS *BYOS only SUSE Linux Enterprise Server for SAP Applications Is a BUNDLE of the above + special SAP additions + services Available in Azure

  22. Clustering in the Public Cloud. The same but different Need a shared block device between machines • • Needed by SBD Shared storage (NFS/SMB) • Needed by applications • Control over all network layers • • Needed by virtual ip failover Cluster settings are different from on premises implementations

  23. Corosync Changes Increasing timeout (30 Seconds) [...] token: 30000 token_retransmits_before_loss_const: 10 join: 60 consensus: 36000 max_messages: 20 https://docs.microsoft.com/en-us/azure/virtual-machines/workloads/sap/high-availability-guide-suse- pacemaker#cluster-installation 23

  24. HA in Azure – Fencing ARM / Service Principal / Roles Fencing of the nodes The STONITH device uses a Service • Principal to authorize against Microsoft Azure. You need to give the Service Principal • permissions to start and stop (deallocate) all virtual machines of the cluster. The Azure infrastructure is not able to do a • kill or force shutdown of a node (only a graceful shutdown. Not recommended for anything time • critical. https://docs.microsoft.com/en-us/azure/virtual-machines/workloads/sap/high-availability-guide-suse-pacemaker

  25. HA in Azure – Fencing ARM / Service Principal / Roles The STONITH device uses a Service Principal to authorize against Microsoft Azure. You need to give the Service Principal permissions to start and stop (deallocate) all virtual machines of the cluster # replace the bold string with your subscription ID, resource group, tenant ID, service principal ID and password primitive rsc_st_azure stonith:fence_azure_arm \ params subscriptionId="subscription ID" \ resourceGroup="resource group" \ tenantId="tenant ID" \ login="login ID" \ passwd="password" You need to set a very long stonith-timeout in order to give the agent time to deallocate and restart the machines. crm configure property stonith-timeout=900

  26. HA in Azure – Fencing SBD Fencing of the nodes As the Azure infrastructure is not able to do • a kill or force shutdown of a node (only a graceful shutdown), we stick to the concept of the SBD device for fencing with help of an additional very small instance providing a raw shared disk over iscsi. From Cluster point of view not different to • bare metal https://docs.microsoft.com/en-us/azure/virtual-machines/workloads/sap/high-availability-guide-suse-pacemaker

  27. SBD STONITH Block Device (SBD) fencing is recommended by SUSE ‒ SBD fencing is highly reliable thanks to hardware watchdog integration • Independent of management board (firmware, settings, etc.) • Equal setup in physical and virtual environments, reducing variance in deployments Integration with Pacemaker & corosync status!

  28. HA in Azure – IP Address Virtual IP movement between the nodes IP movement between the nodes is • done by the Azure Loadbalancer with a health probe (*), together with the RA IPAddress2 It needs an additional rule to the rules in • our best practice documents for the probe request. https://docs.microsoft.com/en-us/azure/virtual-machines/workloads/sap/high-availability-guide-suse-pacemaker

  29. HA in Azure – IP Address sudo crm configure primitive rsc_ip_HN1_HDB03 ocf:heartbeat:IPaddr2 \ meta target-role="Started" is-managed="true" \ operations \$id="rsc_ip_HN1_HDB03-operations" \ op monitor interval="10s" timeout="20s" \ params ip="10.0.0.13" sudo crm configure primitive rsc_nc_HN1_HDB03 anything \ params binfile="/usr/bin/nc" cmdline_options="-l -k 62503" \ op monitor timeout=20s interval=10 depth=0 https://docs.microsoft.com/en-us/azure/virtual-machines/workloads/sap/high-availability-guide-suse-pacemaker

  30. HA in Azure – NFS (Shared Storage) Enterprise NFS is coming, until then we need to build an NFS Service HA NFS Storage with DRBD and Pacemaker Use same concepts for IP failover and • fencing as mentioned before Included in SLES HA • Documented in standard SUSE HAE • documentation https://docs.microsoft.com/en-us/azure/virtual-machines/workloads/sap/high-availability-guide-suse-nfs

  31. DRBD • Block device that is mirrored with a block device on another computer • Data is mirrored using the network as transport • Can be thought of a networked RAID 1 31

  32. DRBD Configuration /etc/drbd.conf main configuration file for DRBD typically contains only includes statements /etc/drbd.d/ configuration file include directory /etc/drbd.d/global_common.conf file containing the common global configuration directives for DRBD directives can be overridden by resource specific directives /etc/drbd.d/*.res resource (device) definition files 32

  33. Azure Storage - SMB • Fully Managed File Shares in the Cloud Virtual machine Virtual machine • “Lift and shift” legacy apps • SMB and REST access • Locally or Geo-Redundant Azure Files Azure Files \\<account>.file.windows.net\<share> 33

  34. Microsoft Azure Events Resource Agent azure-events: Monitors Azure event metatdata, and places node into standby if affected by an upcoming maintenance event. (useful for NFS service?) Configure primitive resource AzEvents crm configure primitive rsc_AzEvents ocf:heartbeat:AzEvents op monitor interval=10s Configure clone resource AzEvents crm configure clone cln_AzEvents rsc_AzEvents 34

  35. Conclusion 35

  36. Use the Guides / Documentation

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Using PubSub For Scheduling in Azure SDN Qi Zhang (Microsoft - Azure Networking) Azure

Using PubSub For Scheduling in Azure SDN Qi Zhang (Microsoft - Azure Networking) Azure

Using PubSub For Scheduling in Azure SDN Qi Zhang (Microsoft - Azure Networking) Azure Networking Regional Cable Azure Region A Network Consumers CDN Regional Network Carrier Microsoft Edge Enterprise, SMB, WAN mobile Azure

604 views • 26 slides
Microsoft Azure Security Protecting mission-critical cloud Steve Faehl Microsoft US National

Microsoft Azure Security Protecting mission-critical cloud Steve Faehl Microsoft US National

Microsoft Azure Security Protecting mission-critical cloud Steve Faehl Microsoft US National Director Security Strategy Microsoft Azure, a strong foundation Azure Government The only Supports the broadest Physically Meets the most

422 views • 9 slides
Microsoft AZURE Giovanni Gatto Azure Partner Recruiter EMAIL: ggatto@Microsoft.com TWITTER:

Microsoft AZURE Giovanni Gatto Azure Partner Recruiter EMAIL: ggatto@Microsoft.com TWITTER:

Microsoft AZURE Giovanni Gatto Azure Partner Recruiter EMAIL: ggatto@Microsoft.com TWITTER: @giobannigatto Industry transformation Big data Devices Apps Cloud one quarter nearly half more than half 40ZB of external app of total IT

391 views • 18 slides
Microsoft Azure Workshop Getting Started with Microsoft Azure Hands on Tutorial Swag, including

Microsoft Azure Workshop Getting Started with Microsoft Azure Hands on Tutorial Swag, including

Microsoft Azure Workshop Getting Started with Microsoft Azure Hands on Tutorial Swag, including a raffle for a Razer bundle worth $120 and including a mechanical keyboard, gaming mouse, gaming mouse pad, and overear headphones 7pm TONIGHT!

313 views • 15 slides
MICROSOFT AZURE MACHINE LEARNING Oscar Naim Microsoft Microsoft Azure Machine Learning What is

MICROSOFT AZURE MACHINE LEARNING Oscar Naim Microsoft Microsoft Azure Machine Learning What is

MICROSOFT AZURE MACHINE LEARNING Oscar Naim Microsoft Microsoft Azure Machine Learning What is Machine Learning? Azure Machine Learning: How it works Azure Machine Learning in action Get started Contents What is Machine Learning?

456 views • 21 slides
High Performance Computing with do doAzur ureP ePar arallel allel Using Azure as your

High Performance Computing with do doAzur ureP ePar arallel allel Using Azure as your

High Performance Computing with do doAzur ureP ePar arallel allel Using Azure as your Parallel-Backend for Microsoft Embarassingly Parallel work JS Tan Azure Big Compute Azure Infrastructure Commodity, most Fast processors, Fast

454 views • 21 slides
How to Improve Your Service by Roasting It Jake Welch &lt;jawelch@microsoft.com&gt; Caskey L.

How to Improve Your Service by Roasting It Jake Welch &lt;jawelch@microsoft.com&gt; Caskey L.

How to Improve Your Service by Roasting It Jake Welch &lt;jawelch@microsoft.com&gt; Caskey L. Dickson &lt;caskey@microsoft,twitter,gmail,github,etc &gt; Microsoft Azure SRE Brief History of SRE @ Azure 2008 Azure Public Launch 2008

666 views • 17 slides
for High Availability Martin Thompson - @mjpt777 What Is High Availability ?

for High Availability Martin Thompson - @mjpt777 What Is High Availability ?

Event Sourced Architectures for High Availability Martin Thompson - @mjpt777 What Is High Availability ? Availability refers to ability of the user community to access a system not about Uptime! By High availability we

814 views • 19 slides
Configuring Data Security Policies in Microsoft Azure CONFIGURING DATA CLASSIFICATION IN

Configuring Data Security Policies in Microsoft Azure CONFIGURING DATA CLASSIFICATION IN

Configuring Data Security Policies in Microsoft Azure CONFIGURING DATA CLASSIFICATION IN MICROSOFT AZURE Reza Salehi CLOUD CONSULTANT @zaalion linkedin.com/in/rezasalehi2008 t h s Understanding data risks, governance and compliance

1.36k views • 40 slides
AZ-300-301 - Microsoft Certified: Azure Architect Technologies These 2 courses composed of

AZ-300-301 - Microsoft Certified: Azure Architect Technologies These 2 courses composed of

AZ-300-301 - Microsoft Certified: Azure Architect Technologies These 2 courses composed of modules are designed for IT Professionals who will learn about how to manage their Azure resources, including deployment and configuration of virtual

328 views • 4 slides
SUSE OpenStack Cloud 126 126 What is SUSE OpenStack Cloud You know of Cloud Compute right?

SUSE OpenStack Cloud 126 126 What is SUSE OpenStack Cloud You know of Cloud Compute right?

SUSE OpenStack Cloud 126 126 What is SUSE OpenStack Cloud You know of Cloud Compute right? Maybe you use AWS or Azure? Allowing pay-as-you-go model for IT infrastructure and toward dynamic software-defined service delivery.

168 views • 16 slides
Microsoft Azure DataSync ModernBiz Agenda ModernBiz: Your path to the Modern Business

Microsoft Azure DataSync ModernBiz Agenda ModernBiz: Your path to the Modern Business

Microsoft Azure DataSync ModernBiz Agenda ModernBiz: Your path to the Modern Business Microsoft Azure overview Key business solutions leveraging the cloud Back up your data Reduce unexpected downtime Host your apps Host your

770 views • 30 slides
Lead Azure Architect, MCT(Microsoft Certified Trainer) Azure Talk by Niraj kumar, Cloud Architect!

Lead Azure Architect, MCT(Microsoft Certified Trainer) Azure Talk by Niraj kumar, Cloud Architect!

http://blog.kloudezy.com Niraj Kumar Lead Azure Architect, MCT(Microsoft Certified Trainer) Azure Talk by Niraj kumar, Cloud Architect! Azure Talk Telegram Group http://blog.kloudezy.com Azure Container Services Containers vs VMs Azure

895 views • 7 slides
Introduction to Azure IoT Pierre Cauchois, Senior Software Engineer, Microsoft

Introduction to Azure IoT Pierre Cauchois, Senior Software Engineer, Microsoft

Introduction to Azure IoT Pierre Cauchois, Senior Software Engineer, Microsoft h&quot;p://sched.co/9n2a Agenda How is Microsoft making it easy for embedded systems engineers to connect their things to the cloud? What do

835 views • 40 slides
at Your Fingertips, in the Azure Cloud An Azure/UberCloud Sales Guide

at Your Fingertips, in the Azure Cloud An Azure/UberCloud Sales Guide

Engineering Simulations at Your Fingertips, in the Azure Cloud An Azure/UberCloud Sales Guide Wolfgang.Gentzsch@TheUberCloud.com For Use by Microsoft Sales Benefits of HPC* as a Service flexible - on-demand - user-friendly 1 2 3 4

1.02k views • 12 slides
Microsoft Bot Framework Best Practices Microsoft AI Portfolio People Agent Applications

Microsoft Bot Framework Best Practices Microsoft AI Portfolio People Agent Applications

Microsoft Bot Framework Best Practices Microsoft AI Portfolio People Agent Applications Services Infrastructure Cortana Office 365 Azure Machine Cortana Intelligence Learning Dynamics 365 Cognitive Services Azure N Series SwiftKey

573 views • 26 slides
BUDGET PRESENTATION 2017-2018 School Year Robert Pfau TECH SNAPSHOT IT accomplishments

BUDGET PRESENTATION 2017-2018 School Year Robert Pfau TECH SNAPSHOT IT accomplishments

INFORMATION TECH BUDGET PRESENTATION 2017-2018 School Year Robert Pfau TECH SNAPSHOT IT accomplishments Installed 75 wired network switches Wireless access in instructional areas is at 100% E-Rate funds have been returned to the

295 views • 7 slides
for Microsoft Office 365 Agenda Product introduction Features and benefits Target audiences

for Microsoft Office 365 Agenda Product introduction Features and benefits Target audiences

Kaspersky Security for Microsoft Office 365 Agenda Product introduction Features and benefits Target audiences Sales scenarios Licensing 2 Kaspersky Lab | Kaspersky Security for Microsoft Office 365 What is Kaspersky Security for Microsoft

337 views • 29 slides
MAPS ISDN SIGTRAN Scripted SIGTRAN ISDN over IP Emulation 818 West Diamond Avenue - Third

MAPS ISDN SIGTRAN Scripted SIGTRAN ISDN over IP Emulation 818 West Diamond Avenue - Third

MAPS ISDN SIGTRAN Scripted SIGTRAN ISDN over IP Emulation 818 West Diamond Avenue - Third Floor, Gaithersburg, MD 20878 Phone: (301) 670-4784 Fax: (301) 670-9187 Email: info@gl.com 1 1 Website: http://www.gl.com ISDN SIGTRAN 2 Features

499 views • 23 slides
CONNECTING SAS TO A TERADATA SERVER KEVIN MARK DATA SCIENTIST, GROUP COLLECTIONS WEDNESDAY 25

CONNECTING SAS TO A TERADATA SERVER KEVIN MARK DATA SCIENTIST, GROUP COLLECTIONS WEDNESDAY 25

CONNECTING SAS TO A TERADATA SERVER KEVIN MARK DATA SCIENTIST, GROUP COLLECTIONS WEDNESDAY 25 OCTOBER 2017 Westpac Banking Corporation ABN 33 007 457 141. Problem of data not in SAS format Enterprise Guide GOAL: Bring the data stored on the

218 views • 18 slides
Purdue University Tableau User Group Mike Hujet | Senior Enterprise Account Manager Dan Bradley |

Purdue University Tableau User Group Mike Hujet | Senior Enterprise Account Manager Dan Bradley |

Purdue University Tableau User Group Mike Hujet | Senior Enterprise Account Manager Dan Bradley | Associate Sales Consultant September 18, 2018 Table of Contents/Agenda TUG Questions Slide 2 Understanding Tableau Server Usage Slide 5 Demo

381 views • 13 slides
The Ventus Funds Manager Presentation 2017 AGM 19 July 2017 Authorised and Regulated by the

The Ventus Funds Manager Presentation 2017 AGM 19 July 2017 Authorised and Regulated by the

The Ventus Funds Manager Presentation 2017 AGM 19 July 2017 Authorised and Regulated by the Financial Conduct Authority Disclaimer The information in this presentation has been prepared by Temporis Capital Limited, in its capacity as the

556 views • 12 slides
Presidential Management Fellows (PMF) Program The Opportunity for Applicants (2020 Version)

Presidential Management Fellows (PMF) Program The Opportunity for Applicants (2020 Version)

Presidential Management Fellows (PMF) Program The Opportunity for Applicants (2020 Version) www.PMF.gov 1 Historical Background 1977: Executive Order (EO) 12008 created the Presidential Management Intern (PMI) Program 1982: EO 12364

551 views • 14 slides
FY 2017 Proposed Budget Overview FY 2017 County Board Guidance Maintain Our Commitments to

FY 2017 Proposed Budget Overview FY 2017 County Board Guidance Maintain Our Commitments to

County Managers FY 2017 Proposed Budget Overview FY 2017 County Board Guidance Maintain Our Commitments to Fund Services For: Health &amp; Safety of the Community - Affordable Housing Long Term Financial Sustainability -

472 views • 14 slides

More recommend