400 likes | 569 Views
More Oracle Solaris Events. General Sessions Breakout Sessions Hands-on Labs Demos. bit.ly/oow13-solaris.
E N D
More Oracle Solaris Events • General Sessions • Breakout Sessions • Hands-on Labs • Demos bit.ly/oow13-solaris
The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle.
Ten Key Solaris Zones Differentiators Enhancing Cloud Platforms Karoly Vegh – Principal Systems Consultant, Oracle Adrian Saul – Solaris Technical Specialist, AAPT Duncan Hardie – Principal Product Manager, Oracle
Session Agenda • Introduction • The 10 Oracle Solaris Zone Differentiators • Case study: how Zones enable AAPT´s SaaS cloud • Upcoming Zones features • Q&A
Introduction One session, three presenters
Session Agenda • Introduction • The 10 Oracle Solaris Zone Differentiators • Case study: how Zones enable AAPT´s SaaS cloud • Upcoming Zones features • Q&A
Short Poll for Statistics • Who is running Oracle Solaris Zones? • Who is running Oracle Solaris 11?
#1: No Performance Overhead No emulation overhead, native speed of the global zone Waste memory and disk space on multiple fat OSes Instantly share or dedicate resources as required OS OS OS Applications get the leftover resources Inflexible, dedicated resources Hypervisor Minimized, efficient, single instance OS No need for expensive hypervisor Fat hypervisor steals memory resources and introduces latency CPU oversubscription introduces scheduling inefficiencies
#1: No Performance Overhead No emulation overhead, native speed of the global zone • Zones are userspace containers • Scheduler runs at kernel level in the global zone • Resource management ensures the guaranteed minimum CPU usage • ...with the possibility to practically overcommit that (FSS) • Integration with CPU pools Cloud relevance: consolidation density TCO!
#2: Manageability Build once, deploy thousands, delegate responsibilities • Zones are • ...easily cloneable (ZFS integration) • …mobile • Zones allow... • ...ZFS management delegation • ...Observability with DTrace within a Zone too • ...Bootenvironment management within a Zone Cloud relevance: efficient platform management and self-service.
#3 Cross Platform both x86 and SPARC • Run Logical Domains on T1-T5, M5, M6, M10. • Run Dynamic Domains on M3000-M9000, M5, M6 • Run OVM for x86 on x86 • ...but... RUN ZONES EVERYWHERE! ...because Zones run everywhere, reducing virtualization diversity.
#4 Legacy Containers Quiz • How many different versions of Oracle Solaris Zones can you run parallelly on a current SPARC server?
#4 Legacy Containers Uplifting legacy environments to new platforms • Run Solaris8 or Solaris9 Zones on Oracle Solaris 10 • Run Solaris 10 branded Zones on Oracle Solaris 11 • Move Oracle Solaris 10 NGZs to an Oracle Solaris 11 GZ with a V2V conversion • Convert Oracle Solaris 10 Global Zones to Solaris 10 NGZs running on Solaris 11 • 4 different Solaris Zone versions in a Server! Cloud relevance: moving legacy applications from physical to cloud
#5 Cluster Integration with Solaris Cluster HA for your cloud WebServer-Tier zones Cluster Oracle WebLogic Server Oracle WebLogic Server Application ServerFlying Zone PeopleSoft Application Server PeopleSoft Application Server DatabaseServer-Tier zones Cluster Oracle RAC Oracle RAC
#5 Cluster Integration with Solaris Cluster HA for your cloud • Flying/Moving Zones • halt – export – move – import – check – start • Zoneclusters • Definitions: • Multiple Non-Global-Zone-level clusters in a single Global Cluster • One multihost zone stretched across all clusternodes • With both S10 and S11 moving zones and S10/S11 ZoneClusters! Cloud relevance: Availability for cloud services.
#6 License hard-partitioning Limiting the number of licenses in use • Zones are an approved license-partitioning technology • In a certain configuration (dedicated CPUs or CPU pools) • NB: • Consult the hard partitioning guidelines document Cloud relevance: Costefficience
#7 Total Application and Stack Support Virtually any Solaris Supporting application will run in a zone • Run supported on all the Oracle Stack • Run Zones on top of Oracle Storage • Run Zone connectivity on Oracle network • Run zones on engineered systems • Run all applications inside zones • No need to reproduce issues on bare metal FUSION APPLICATIONS SPARC SUPERCLUSTER EXALOGIC DATABASE FUSION MIDDLEWARE FUSION MIDDLEWARE JROCKIT WEBLOGIC SERVER Cloud relevance: certified, verified, approved, supported, pretested
ORACLE supercluster runs Solaris zones
#8 Exclusive IP Stack Network separation via VNICs • Zones have their own separate, exclusive IP stack, with: • VNICs providing QoS • dataflows defining additional guarantees • separating workloads/customers/environments on L3 • while providing spoofing protection • network in a box • Running an NFS server or a firewall in a zone Cloud relevance: securemultitenancy through network separation
#9 Enterprise Class Security • Read Only Virtualization • Network Protection • ZFS Encryption • Auto-offloading of CPU-intensive security functions • Hardware acceleration for Oracle DB Advanced Security Transparent Data Encryption (TDE) • Turbo charged JRE security • Defense in Depth Public Internet Private LAN
#10 Plannable Platform Management Key Reasons Why You Should Run All Apps in Zones by Default • Resource planning flexibility • vs. dedicated Servers • Keeps the Global Zone change clean of changes by applications • Mobility, migratability • For growth, upgrades, maintenances, resource redistribution Cloud value: Flexibility by default
Key Takeaways • License hard partitions • Cost efficiency • Application/Stack support • Verified, certified • Exclusive IP Stack • Absolute multitenancy • Enterprise Security • Data protection • Plannability, Flexibility • reduced platform mgmt effort • No performance overhead Consolidation density • Efficient, delegateable management Self service • Cross platform Choice • 4 versions of branded Zones in a box Cloud enablement for Legacy Apps • Cluster intergration HA for cloud services
Session Agenda • Introduction • The 10 Oracle Solaris Zone Differentiators • Case study: how Zones enable AAPT´s SaaS cloud • Upcoming Zones features • Q&A
AAPT Solaris-as-a-Service In the beginning… • A green field opportunity • Step 1: build our own internal cloud • Step 2: offer spare capacity to customers • Step 3: Profit??? • Requirements • Quick and simple provisioning • Application and capacity needs practically unknown • Design with multi-tenancy in mind • Solution: Zones
AAPT Solaris-as-a-Service Why Zones? • Simple provisioning • no jumpstart, no combat with network team, all from the global zones • Dynamic resource configuration • FSS and resource caps less rigid then LDoms • Permits oversubscription of resources • Suitable for majority of applications • Multiplatform – can use same design on M5000, T5240 and x86 • Easy to move zones between physical hardware (with planning)
AAPT Solaris-as-a-Service Cloud Zones Model MPLS Network • VLAN separation of customers • MPLS networking to customer sites • VNICs make life easy – overlapping IP ranges • LUNs presented over iSCSI / FC • Use storage APIs for provisioning and control LUN mapping to hosts • Backups via global zone Compute • All hosts identically configured • Zone configuration saved centrally • Resources controlled via capping • Zpools allow zone migration between hosts • Environment agnostic – PRD / DEV / Customer • Standard provisioning – same build every time Customer Zone Internal Zone zpool zpool Storage LUN LUN LUN LUN
AAPT Solaris-as-a-Service Zone Features enabling the cloud • Zoneadm attach/detach • Zone mobility: detach zone, export zpool, import zpool, attach zone • Upgrade on attach allows N+1 patching architecture • Fair Share Scheduler + Resource Caps • Caps to limit resource hogs and runaways • FSS to allow balanced oversubscription of CPU • VNICs: flexible addressing and routing with all exclusive IP stacks • You get a NIC, and you get a NIC, and you get a NIC
AAPT Solaris-as-a-Service Solaris Features enabling the cloud • Per zone boot environments • Live upgrades now follow the zone • ZFS dataset delegation • With RBAC users can self manage snapshots and file systems • IPS Repositories • Simple software deployment: “pkg install forkbomb” • Simple patching and upgrades: “pkg upgrade”
AAPT Solaris-as-a-Service AAPT Virtual Data Centre • VDC Link • Private network or Internet • Infrastructure-as-a-Service • Solaris Zones • VMWareVcloud • Managed via customer portal • Order VDC Link service • Provision on demand
AAPT Solaris-as-a-Service Zones as a Cloud Service • Same provisioning as internal services • Order via web portal • End to end automated provisioning: Network, Storage, Compute • Billing by capacity • Consistency with other cloud services, simple costing • Usage based easily implemented using ‘caps’ kstats • Challenges • No access to customer network • Overlapping IP ranges easily a possibility: tricky with shared IP, easy with VNICs • Not a managed service – customer controls via web portal
AAPT Solaris-as-a-Service Zones Deliver • Consolidation • 436 environments on 20 physical machines • As many as 49 zones on a single host (and not yet full) • Multi-tenant resource sharing • Fast provisioning • 10 minutes from request to zone availability • Scalability • FSS allowing as high as 235% over subscription on CPU
Session Agenda • Introduction • The 10 Oracle Solaris Zone Differentiators • Case study: how Zones enable AAPT´s SaaS cloud • Upcoming Zones features • Q&A
Oracle Solaris Zones Futures • Areas of investigation • Independence • Mobility • Storage • Reconfiguration • Dependencies • Observables • Core alignment
Session Agenda • Introduction • The 10 Oracle Solaris Zone Differentiators • Case study: how Zones enable AAPT´s SaaS cloud • Upcoming Zones features • Q&A
Learn More • oracle.com/solaris • @ORCL_Solaris • facebook.com/oraclesolaris • Oracle Solaris Insider • blogs.oracle.com/solaris • More OpenWorld sessions: bit.ly/OOW13-Solaris