Value of Ubuntu on IBM Z and LinuxONE Regis Paquette, IHV Director, Canonical Ivan Doboš, Solutions Architect, Canonical
Agenda Business updates - 15’ company, market, Z partnership, customers Technical updates - 15’ roadmap, security, containers, MaaS, Openstack Q&A - 15’
mission statement #1 software from developers • • #1 cloud OS Delivering the • #1 linux desktop economics and agility of free software • • free tools hyperscale innovators to support is optional • enterprises globally • 100% open source • ‘upstream only’ hybrid by design • • latest and greatest linux kernel releases on time, every time • • feature parity across platforms
company update Cloud Edge Public cloud Private cloud | Containers | Serverless Edge of network / IoT 70% 55% 90% 60-80%
customer traction Cloud Edge Elastic hybrid cloud Transactional Edge ( IoT ) Public cloud Private cloud | Containers | Serverless Edge of network /IoT
infrastructure trends ● Hybrid cloud adoption Acceleration of use of public IaaS (AWS, Azure, Google) based on developer demand and CTO / CISO concerns being addressed Private + 2 x Public will be the norm ● End state will be hybrid cloud for all orgs (i.e. Private cloud and 2+ public IaaS suppliers) ● Private IaaS will being aggressively economically benchmarked vs public IaaS. Modernisation needed ● Evolving standards to avoid lock-in (i.e. policing of services & APIs being used) Containers ● Modern app development will be micro-services using containers NOT virtual machines ● Extensive organisational & developer demand for modern container infrastructure All pervasive change to infrastructure ● Battle of container schedulers playing out - Both Docker Enterprise Edition & Kubernetes with real traction ● Trade-offs between Monolithic PaaS (Pivotal Cloud Foundry & OpenShift) vs CaaS (using a container scheduler and best in breed workflow solutions). Most orgs will do both. New workloads ● New building blocks driving very significant waves of innovation / disruption Machine learning, Artificial intelligence & ● ML and AI will be both embedded in ISV provided applications and be used directly by industry Blockchain ● GPU acceleration will be common ● Innovation originates with Hyperscalers and is often open-source Big Software challenge ● The amount & complexity of software that organisations need is increasing exponentially ● There is a skills gap around development and particularly operations impacting business Sharing of Ops code to be norm ● Recruitment & retention harder than ever - Competition from Hyperscalers and start-ups ● Will require broad adoption of Netflix / Google style ‘Application / service modelling’
update on IBM Z partnership 2 nd major release 18.04 LTS: cloud native, bare metal provisioning, machine containers Support now available to IBM Business partners Adding entry level configs with per IFL pricing
case studies • LinuxONE and Ubuntu deliver pervasive encryption of data, workload isolation with security and massive scalability. • Ubuntu provides the platform openness for the community behind the project • Hyperledger Fabric provides the blockchain infrastructure, and Hyperledger Composer is an extensive, open development toolset IBM Beacon Innovation Awards 2017 and framework to make developing blockchain applications easier • T1 Retail Company LinuxOne and Ubuntu deliver best in class cloud native environment that is attractive to any public cloud developer. • T1RC started to have a too strong dependency of its applications to Public Cloud. • Ubuntu was the platform of choice of the developers who could leverage a familiar environment on-prem from OS to container Bring your developers from public to orchestration. private Z cloud with Ubuntu
Agenda Business updates - 15’ company, market, Z partnership, customers Technical updates - 15’ roadmap, security, containers, MaaS, Openstack Q&A - 15’
IBM Z and LinuxONE - Tested platforms Please see more details and all footnotes at: http://www.ibm.com/systems/z/os/linux/resources/testedplatforms.html
Consistent Release Cycle 5 years long term support (LTS) every 2 years 14.04 14.10 15.04 15.10 16.04 16.10 17.04 17.10 18.04 18.10 19.04 https://wiki.ubuntu.com/Releases 18.10 https://wiki.ubuntu.com/LTS https://en.wikipedia.org/wiki/List_of_Ubuntu_releases Ubuntu 18.04 LTS 5 years 18 17.10 non-LTS months aka 17.04 development in development releases 16.10 end-of-life Ubuntu 16.04 LTS 5 years in service 15.10 15.04 14.10 Ubuntu 14.04 LTS 5 years Extended Support / ESM (Security only), like for Ubuntu LTS 12.04: https://www.ubuntu.com/support/esm https://insights.ubuntu.com/2017/03/14/introducing-ubuntu-12-04- esm-extended-security-maintenance/
IBM Z 14 - Toleration / Exploitation First Exploitation with 18.04 LTS and 16.04 .5 LTS+HWE (via upstream) Toleration with 16.04 LTS (via backports) and 17.04 and 16.04 .3 LTS+HWE (via upstream)
Ubuntu 18.04 LTS (Bionic Beaver) ● The codename for the next LTS release 18.04 release is 'Bionic Beaver' or in short 'Bionic': https://launchpad.net/ubuntu/bionic ● Bionic Release Schedule: https://wiki.ubuntu.com/BionicBeaver/ReleaseSchedule alpha 1: Jan, 4th, alpha 2: Feb, 1st; final beta: April, 5th; planned release: April, 26th ● Current and Planned components: ○ Kernel 4.15 (incl. Meltdown/Spectre patches) ○ Qemu-KVM 2.11 ○ Libvirt 4.0.0 ○ GCC 7.2 (7.3) ○ GDB 8.1 (9) ○ Python 3.6.4 (and still 2.7) ○ Perl 5.26 ○ Ocaml 4.05 ○ Netplan 1.10 ○ glibc 2.27 ○ docker.io 17.03.2 ○ CDO Queens (Canonical Distribution of OpenStack)
Security Efforts FIPS 140-2 Level 1 ● ● completed for 16.04 LTS for modules and hardware listed here Common Criteria EAL 2 ● In progress, also in coordination with IBM Z team ● ● Defense Information System Agency - DISA STIG Center for Internet Security (CIS) Benchmark ● ● Contacts: security@ubuntu.com https://wiki.ubuntu.com/SecurityTeam/Contacts Information about Spectre: ● Further information at: ● minimal Kernel levels required: ● https://wiki.ubuntu.com/Security/Features ○ >= 4.4.0-111 ● https://wiki.ubuntu.com/Security/Certification ○ >= 4.13.0-30 #ubuntu-hardened on IRC ● ● https://ubu.one/uMelt ● ubuntu-hardened mailing list ● Meltdown, Spectre and Ubuntu: What you need to know ● Mitigation Controls
Canonical OpenStack Management & Infrastructure Automation Services Nova Horizon Landscape & Ceilometer Keystone Neutron Autopilot /Telemetry Swift Cinder Glance Juju Ubuntu 16.04 LTS MAAS tbd for z 14
Canonical & Kubernetes • The Canonical Distribution Of Kubernetes: https://jujucharms.com/canonical-kubernetes/ Full support of s390x for 1.8 and newer • ICP runs (also) on Ubuntu • Kubernetes workers supported on s390x (starting October 2017) • Kubernetes Discoverer - consulting engagement • Kubernetes Bootstack - Managed service
MAAS - IBM Z and LinuxONE MAAS KVM pods support ● Ability to build a HW Create LPARs and install Ubuntu server 1 heterogeneous cloud including into LPARs as usual IBM Z managed by MAAS ● Full cloud experience with MAAS Configure KVM in Ubuntu host and + Juju 2 ● Cross LPARs / servers experience register KVM in MAAS as a pod (type ○ Cloud regions and HA zones virsh) ● Resources allocated only when needed KVM VMs created and OS deployed ● Benefits from IBM Z scale-up 3 into VMs using MAAS API features more efficient use of resources by ● Standard PXE boot now available dynamically allocating hardware with KVM for IBM Z
LXD Clustering Cross LPARs experience on IBM Z and LinuxONE LXD
Thank you. Any questions? 42014442USEN-00
Recommend
More recommend
