OpenStack services in Beryllium

The Pan-Net Beryllium release is a platform based on the KVM hypervisor, Ubuntu operating system and OpenStack cloud management system. Pan-Net Beryllium is based on the OpenStack Ocata version with Juniper Contrail 4.1 as SDN controller.

Openstack services

OpenStack provides a cloud computing platform with a variety of services. Each service offers an application programming interface (API) that facilitates this integration. 

Table 1 lists OpenStack services and their availability in the Pan-Net Beryllium deployment.

Service

Name

Available

Description

Core Services

Identity Service

Keystone

Yes

Provides an authentication and authorization service for other OpenStack services.

Image Service

Glance

Yes

Stores and retrieves virtual machine disk images.

Compute

Nova

Yes

Manages the lifecycle of compute instances in an OpenStack environment. Responsibilities include spawning, scheduling and decommissioning of virtual machines on demand.

Networking

Neutron

Yes

Enables network connectivity as a service for other OpenStack services, such as OpenStack Compute.

FWaaS

Neutron/FWaaS

No

FWaaS (FireWall-as-a-Service) is Neutron extension that introduces firewall feature set.

LBaaS

Neutron/LBaaS

No

LBaaS (Load-Balancing-as-a-Service) is currently an advanced service of Neutron. It allows for proprietary and open-source load balancing technologies to drive the actual load balancing of requests.

Instead of Neutron-based load balancing, Pan-Net Beryllium offers load balancing based on ECMP as a feature of Contrail SDN. More details can be found in the chapter Load balancing.

 Storage

Object Storage

CEPH

Yes

Stores and retrieves arbitrary unstructured data objects via a RESTful, HTTP based API. Supported S3 and Swift interfaces.

Block Storage

CEPH / Cinder

Yes

Provides persistent block storage to running instances.

File System Service

Manila

No

Provides coordinated access to shared or distributed file systems.

Shared Services

Dashboard

Horizon

Yes

Provides a web-based self-service portal to interact with underlying OpenStack services, such as launching an instance, assigning IP addresses and configuring access controls.

Telemetry

Ceilometer

No

Monitors and meters the OpenStack cloud for billing, benchmarking, scalability, and statistical purposes.

Higher-level services

Orchestration

Heat

 

Yes

 

Orchestrates multiple composite cloud applications.

Database Service

Trove

No

Provides scalable and reliable Cloud Database-as-a-Service functionality for both relational and non-relational database engines.

Messaging Service

Zaqar

No

Multi-tenant cloud messaging service for web and mobile developers.

Key Management

Barbican

No

REST API designed for the secure storage, provisioning and management of secrets such as passwords, encryption keys and X.509 Certificates.

Governance

Congress

No

Provides policy as a service across any collection of cloud services in order to offer governance and compliance for dynamic infrastructures.

Elastic Map Reduce

Sahara

No

Provisions a data-intensive application cluster (Hadoop or Spark) on top of OpenStack.

Containers

Magnum

No

Making container orchestration engines such as Docker and Kubernetes available in OpenStack. 

Instead of Magnum, Pan-Net Cloud offers it’s own kubernetes-based managed platform. For more details about Pan-Net’s Container as a Service contact commercial.support@pan-net.cloud.

Bare-Metal Provisioning

Ironic

No

Provisions bare metal machines instead of virtual machines.

DNS Service

Designate

No

Provides DNSaaS services for OpenStack.

Application Catalog

Murano

No

Introduces an application catalog to OpenStack.

Table 1: OpenStack services available in Pan-Net Beryllium deployment

Additional functionality

Additional functionality to OpenStack services is listed in Table 2.

Name

Available

Description

Inter-tenant/project communication

Yes

Inter-tenant/project communication is implemented using semi-public addressing in Contrail.

Access to OpenStack API from within tenant/project

Yes

Access to OpenStack API from within tenant/project communication is implemented using https over the proxy.

Access to SOA BP

Yes

Access is enabled using IPsec tunnel via proxy.

SMTP (Simple Mail Transfer Protocol) Server

No

It must be installed by the project.

NTP Server

Yes

For applications in Tenant OAM VPN:

NTP1: 10.235.9.253

NTP2: 10.235.9.254

Table 2: Additional functionalities available in Pan-Net Beryllium deployment