OpenStack services in Beryllium
The Pan-Net Beryllium release is a platform based on the KVM hypervisor, Ubuntu operating system and OpenStack cloud management system. Pan-Net Beryllium is based on the OpenStack Ocata version with Juniper Contrail 4.1 as SDN controller.
Openstack services
OpenStack provides a cloud computing platform with a variety of services. Each service offers an application programming interface (API) that facilitates this integration.
Table 1 lists OpenStack services and their availability in the Pan-Net Beryllium deployment.
Service | Name | Available | Description |
|---|---|---|---|
Core Services | |||
Keystone | Yes | Provides an authentication and authorization service for other OpenStack services. | |
Image Service | Glance | Yes | Stores and retrieves virtual machine disk images. |
Compute | Nova | Yes | Manages the lifecycle of compute instances in an OpenStack environment. Responsibilities include spawning, scheduling and decommissioning of virtual machines on demand. |
Networking | Neutron | Yes | Enables network connectivity as a service for other OpenStack services, such as OpenStack Compute. |
FWaaS | Neutron/FWaaS | No | FWaaS (FireWall-as-a-Service) is Neutron extension that introduces firewall feature set. |
LBaaS | Neutron/LBaaS | No | LBaaS (Load-Balancing-as-a-Service) is currently an advanced service of Neutron. It allows for proprietary and open-source load balancing technologies to drive the actual load balancing of requests. Instead of Neutron-based load balancing, Pan-Net Beryllium offers load balancing based on ECMP as a feature of Contrail SDN. More details can be found in the chapter Load balancing. |
Storage | |||
Object Storage | CEPH | Yes | Stores and retrieves arbitrary unstructured data objects via a RESTful, HTTP based API. Supported S3 and Swift interfaces. |
Block Storage | CEPH / Cinder | Yes | Provides persistent block storage to running instances. |
File System Service | Manila | No | Provides coordinated access to shared or distributed file systems. |
Shared Services | |||
Dashboard | Horizon | Yes | Provides a web-based self-service portal to interact with underlying OpenStack services, such as launching an instance, assigning IP addresses and configuring access controls. |
Telemetry | Ceilometer | No | Monitors and meters the OpenStack cloud for billing, benchmarking, scalability, and statistical purposes. |
Higher-level services | |||
Orchestration | Heat |
Yes
| Orchestrates multiple composite cloud applications. |
Database Service | Trove | No | Provides scalable and reliable Cloud Database-as-a-Service functionality for both relational and non-relational database engines. |
Messaging Service | Zaqar | No | Multi-tenant cloud messaging service for web and mobile developers. |
Key Management | Barbican | No | REST API designed for the secure storage, provisioning and management of secrets such as passwords, encryption keys and X.509 Certificates. |
Governance | Congress | No | Provides policy as a service across any collection of cloud services in order to offer governance and compliance for dynamic infrastructures. |
Elastic Map Reduce | Sahara | No | Provisions a data-intensive application cluster (Hadoop or Spark) on top of OpenStack. |
Containers | Magnum | No | Making container orchestration engines such as Docker and Kubernetes available in OpenStack. Instead of Magnum, Pan-Net Cloud offers it’s own kubernetes-based managed platform. For more details about Pan-Net’s Container as a Service contact commercial.support@pan-net.cloud. |
Bare-Metal Provisioning | Ironic | No | Provisions bare metal machines instead of virtual machines. |
DNS Service | Designate | No | Provides DNSaaS services for OpenStack. |
Application Catalog | Murano | No | Introduces an application catalog to OpenStack. |
Table 1: OpenStack services available in Pan-Net Beryllium deployment
Additional functionality
Additional functionality to OpenStack services is listed in Table 2.
Name | Available | Description |
|---|---|---|
Inter-tenant/project communication | Yes | Inter-tenant/project communication is implemented using semi-public addressing in Contrail. |
Access to OpenStack API from within tenant/project | Yes | Access to OpenStack API from within tenant/project communication is implemented using https over the proxy. |
Access to SOA BP | Yes | Access is enabled using IPsec tunnel via proxy. |
SMTP (Simple Mail Transfer Protocol) Server | No | It must be installed by the project. |
NTP Server | Yes | For applications in Tenant OAM VPN: NTP1: 10.235.9.253 NTP2: 10.235.9.254 |
Table 2: Additional functionalities available in Pan-Net Beryllium deployment