1
A presentation at Lockheed Martin Briefing Center in March 2011 in Gaithersburg, MD, USA by Shawn Wells
1
Red Hat Enterprise Linux MRG Red Hat Network Satellite Red Hat Enterprise Virtualization JBoss Cloud 2
Red Hat Enterprise Linux 3
Proven development model Red Hat collaborates with the open source community in the Fedora and JBoss.org projects to develop technology This provides the basis for enterprise-ready products which feed innovation back to the community projects 4
5
6
Red Hat Enterprise Linux 6 7
Facts and Figures Red Hat Enterprise Linux 6 Released November 10th, 2010 Represents more than 600 person years by Red Hat engineers 85% more packages than Red Hat Enterprise Linux 5 1,821 customer/partner requested features included 14,631 resolved issues from partner,customer & community reports 3.7 GB of content 2,957 binary RPMs 847 features & fixes verified by partner QA teams Red Hat engineers are based in 26 countries 3,900 additional kernel enhancements to 2.6.32 Kernel based on 2.6.32 with many features from .33 & .34 Red Hat is the lead developer of kernel features Red Hat Enterprise Linux design allows smooth integration of future features 8
Resource Management Ability to manage large system resources effectively Control groups (cgroups) for CPU/Memory/Network/Disk Benefit: guarantee Quality of Service & dynamic resource allocation Ideal for managing any multi-application environment 9 From back ups to the Cloud
Capabilities for new deployment models • Extensive SELinux Policy library making security accessible – 10 Sandboxing, sVirt & Kiosk mode with Live OS • Standardize system security information with OpenSCAP • Enhanced centralized identity control with SSSD/OpenLDAP • XACE: secure independent MLS windows environment • Security Standards – NSS: FIPS 140-2 certified cryptographic library – SHA256: release management tools meeting FISMA rqmnts – OpenSwan: RFC 5114 and Cisco VPN compliant
Red Hat Enterprise Linux Add-ons May be configured for most applications that use customizable agents, as well as for virtual guests. Provides redundancy for web serving, databases, networking, and storage. Enables a shared storage or clustered file system to access the same storage device over a network. Provides support for file systems that are more than 16 terabytes in size. Includes management, monitoring, and provisioning support modules for Red Hat Network and Red Hat Network Satellite. Delivers remote directory memory access over converged Ethernet (RoCE) for those times when low network latency and high capacity are important. Extends the support period of an update for 18 months and delivers overlapping release support to give enterprise customers more flexibility. 11
Red Hat Enterprise Linux MRG 12
13
14
15
16
Red Hat Network Satellite 17
Satellite deployment model RHN Hosted Software Distribution Subscription Management RHN Satellite • • • • • Software Distribution Account Management Channel Management Monitoring Provisioning WEB INTERFACE RHN Proxy API LAYER MANAGED SYSTEMS IT Applications 18 Custom Content
Red Hat Enterprise Virtualization 19
KERNEL-BASED VIRTUAL MACHINE (KVM) ● ● ● ● 20 Included in Linux kernel since 2006 Runs Linux, Windows and other operating system guests Advanced features ● Live migration ● Memory page sharing ● Thin provisioning ● PCI Pass-through KVM architecture provides high “feature-velocity” – leverages the power of Linux
SELinux: From Applications to Guests Applying security labels to individual guest virtual machines and their resources Guest Isolation achieved with SELinux Mandatory Access Controls (MAC) 21 Protect against untrusted Guest VM Protect against Host misconfiguration Prevents unauthorized access of guests/hypervisor Builds on existing, proven security mechanisms & controls
RED HAT ENTERPRISE VIRTUALIZATION RHEV 2.2 ARCHITECTURE 22
RED HAT ENTERPRISE VIRTUALIZATION MANAGEMENT FEATURES Feature Description High Availability Restart guest VMs from failed hosts automatically on other hosts Live Migration Move running VM between hosts with zero downtime System Scheduler Continuously load balance VMs based on resource usage/policies Power Saver Concentrate virtual machines on fewer servers during off-peak hours Maintenance Manager No downtime for virtual machines during planned maintenance windows Image Management Template based provisioning, thin provisioning and snapshots Monitoring and Reporting For all objects in system – VM guests, hosts, networking, storage etc. 23
RED HAT ENTERPRISE VIRTUALIZATION DESKTOP MANAGEMENT Feature Description Connection Broker Users log into connection broker and connect to their desktop SPICE - HD HD quality streaming video support 30+fps SPICE - audio/video Bi-directional audio/video for VoIP/video-conferencing SPICE – USB USB 2.0 devices + guest connectivity policy SPICE - multi-monitor Supports 4 monitors Desktop pools Automatic, manual and time-lease pools Security Leverages SE-Linux to isolate virtual deskops Guest support Windows XP, Windows 7, RHEL 5 Thin client support Any Windows XP/XPe, RHEL 5/6, HP, Devon, IGEL, 10zig, Wyse 24
JBoss 25
JBoss Enterprise Middleware Portfolio Red Hat Services Cloud Strategy & Selection Cloud Implementation Cloud Governance JBoss Enterprise Portal Platform JBoss Developer Studio Seam Hibernate JBoss Enterprise Business Rules Management System Web Framework Kit JBoss Enterprise Data Services Platform JBoss Operations Network JBoss Enterprise SOA Platform JBoss Enterprise Application Platform JBoss Enterprise Web Platform JBoss Enterprise Web Server Red Hat Enterprise Messaging RHEL, Unix, Windows Amazon EC2 Public 26 Other Red Hat Enterprise Virtualization VMWare Private Microsoft Hyper-V
Red Hat Cloud 27
So what’s a cloud, now? NIST says a cloud must allow users to serve themselves. They should be able to do this from anywhere. Users don’t care where resources come from, and those resources can be allocated according to demand. All of this is measured and monitored. http://csrc.nist.gov/groups/SNS/cloud-computing/index.html 28
Yes, it’s hard to do this right Most shops are very, very far away. There is a lack of standards. Lock-in is everywhere. 29
So what’s the plan? Identify tools, not products. Interoperability Flexibility in Licensing 30
Example: Navy CANES Cloud: US Navy 31
Ship AP 1 AP 2 Apps Apps App Srvr App Srvr OSs OSs Hardware Hardware Network Network Power Supply Power Supply 32
Old Current Ship Ship AP 1 AP 2 AP 1 AP 2 Apps Apps Apps Apps App Srvr App Srvr App Srvr App Srvr OSs OSs OSs OSs Hardware Hardware Hardware Hardware Network Network Power Supply Power Supply Network Power Supply 33
Old Current IaaS Ship Ship Ship ACS AP 1 AP 2 AP 1 AP 2 AP 1 AP 2 Apps Apps Apps Apps Apps Apps App Srvr App Srvr App Srvr App Srvr App Srvr App Srvr OSs OSs OSs OSs OSs OSs Hardware Hardware Hardware Hardware VM VM Network Network Power Supply Power Supply 34 OS Virtualization Hardware Network Network Power Supply Power Supply
Old Current IaaS IaaS+ Ship Ship Ship Ship ACS ACS Enterprise Services AP 1 AP 2 AP 1 AP 2 AP 1 AP 2 AP 1 AP 2 Apps Apps Apps Apps Apps Apps Apps Apps App SRvr App Srvr App Srvr App SRvr App Srvr App Srvr OSe OSe OSe OSe OSs OSs Hardware Hardware Hardware Hardware VM VM Network Network Power Supply Power Supply 35 ACS ACS Platform Srvcs Platform Srvcs OS Virtualization OS Virtualization Hardware Hardware Network Network Network Power Supply Power Supply Power Supply
Old Current In Work IaaS+ PaaS Ship Ship Ship Ship Ship ACS ACS Enterprise Services ACS Enterprise Services AP 1 AP 2 AP 1 AP 2 AP 1 AP 2 AP 1 AP 2 AP 1 AP 2 Apps Apps Apps Apps Apps Apps Apps Apps Apps Apps App Srvr App Srvr App Srvr App Srvr App Srvr App Srvr OSs OSs OSe OSe OS OS Platform as a Service (True PaaS) Hardware Hardware Hardware Hardware VM VM AS DB ?? Network Network Power Supply Power Supply 36 ACS ACS Platform Srvcs Platform Srvcs OS Virtualization OS Virtualization OS Virtualization Hardware Hardware Hardware Network Network Network Network Power Supply Power Supply Power Supply Power Supply
Old Current IaaS IaaS+ PaaS Ship Ship Ship Ship Ship ACS ACS Enterprise Services ACS Enterprise Services AP 1 AP 2 AP 1 AP 2 AP 1 AP 2 AP 1 AP 2 AP 1 AP 2 Warfighter Apps Warfighter Apps Warfighter Apps Warfighter Apps Warfighter Apps Warfighter Apps Warfighter Apps Warfighter Apps Warfighter Apps Warfighter Apps App Servers App Servers App Servers App Servers App Servers OSs OSs OSe Hardware Hardware Hardware Network Network Power Supply Power Supply s a e r OSeDec OSs Hardware VM Network ACS ACS Platform Services Platform Services OSs VM o m , s Hardware duct pro r e Network Few OS Virtualization Power Supply 37 rt App o f f ed eServers Power Supply ties i l i t e uVirtualization rOS Hardware Network Power Supply Platform as a Service (True PaaS) AS DB ?? Hardware Network Power Supply
THANK YOU!
MRG Messaging ● ● Enterprise-leading messaging system that spans fast messaging, reliable messaging, large-file messaging in one implementation Uses Linux-specific optimization to achieve optimal performance on Red Hat Enterprise Linux and MRG Realtime ● Provides messaging that is up to 100-fold faster than before ● Takes advantage of RHEL clustering, IO, kernel, and more ● ● ● 39 Includes new high-performance AIO Journal for durable messaging Provides native infiniband support for transient messaging Implements AMQP, the industry’s first open messaging standard, for unprecedented interoperability that is crosslanguage, cross-platform, multi-vendor, spans hardware and software, and extends down to the wire level
MRG Realtime ● Enables applications and transactions to run predictably, with guaranteed response times ● ● ● ● ● 40 Provides microsecond accuracy Provides competitive advantage & meets SLA’s ● Travel web site: missed booking ● Program trading: missed trades ● Command & Control: life & death Provides replacement kernel for RHEL 5.1+; x86/x86_64 Preserves RHEL Application Compatibility Red Hat Leads Upstream Linux Realtime Development