Redhat rhev 31-update by syedmshaaf

transcript

RED HAT ENTERPRISE VIRTUALIZATION Update | Syed M Shaaf1

Red Hat Enterprise Virtualization 3.1

Syed M ShaafSolutions ArchitectRed HatNovember 2012

RHEV Overview

● High Availability

● Live Migration

● Load Balancing (DRS)

● Power Saver (DPM)

● Templates, thin provisioning, snapshots

● Centralized storage and networking management

● V2V

● Power User Portal

● Reporting Engine

RED HAT ENTERPRISE VIRTUALIZATIONRHEV MANAGER FEATURES

● Host: 160 logical CPU (4,096 theoretical max), 2 TB RAM (64TB theoretical max)

● Guest: 64 vCPU, 512 GB RAM

● Supports latest silicon virtualization technology

● Based on the latest RHEL 6 kernel

● Microsoft SVVP certified

RHEV HYPERVISOR/KVM OVERVIEWSCALABILITY

SMALL FORM FACTOR, SCALABLE, HIGH PERFORMANCE

SPICE: EXCEPTIONAL USER EXPERIENCE

User experience comparable to a local desktop PC

Bi-directional audio & video

VoIP & video conferencing

HD quality video

Hi resolution 2560x1600 (each)

Up to 4 monitors

USB redirection for nearly any

device

Smart Card/CAC authentication

Copy & paste

SPICE: BUILT FOR VIRTUAL DESKTOPS

Adaptive Protocol Dynamically chooses optimal point to

process graphics Renders locally on client or falls back

to server or VM Improved network support for WAN

Enhanced bandwidth and latency tolerance

Optional SSL encryption Highest server density levels

RHEV 3.0 REPORTING

Historical usage, trending, quality of service

Integrated reporting engine based on Jasper reports

Over 25 prebuilt reports and dashboards included

Ability to create and customize reports and templates

● Integrated through the RHEV API

● Certified by Red Hat to work with RHEV

● Free trials available via the RHEV Marketplace

● Visit our ISV partners at the Partner Pavillion and RHEV Campgrounds

Capacity & Performance Management

OperationsMonitoring

Security

Backup & Disaster

Recovery

ApplicationDelivery

Capacity Planning &

P2V, V2V

RED HAT ENTERPRISE VIRTUALIZATIONISV PARTNERS

http://marketplace.redhat.com

INDUSTRY LEADING VIRTUALIZATION PERFORMANCE

● SPECvirt_sc2010: As of September 1, 2012, RHEV claims top 7 results and the only 8-socket server scores

Red Hat

VMware

RED HAT ENTERPRISE VIRTUALIZATIONHYPERVISOR

● Standalone hypervisor● Small footprint

● Customized 'spin' of RHEL + KVM● 'Just enough' RHEL to run virtual

machines● Security hardened image● Runs on all RHEL hardware ● with Intel VT/AMD-V CPUs

● Easy to install, configure and upgrade

● PXE boot, USB boot, CD or Hard drive

RHEV inherits the security features of Linux and RHEL

SELinux security policy infrastructure

Provides protection and isolation for virtual machines and host

Compromised virtual machine cannot access other VMs or host

sVirt Project

Sub-project of NSA's SELinux community. Provides “hardened” hypervisors

Multilevel security. Isolate guests

Contain any hypervisor breaches

RED HAT ENTERPRISE VIRTUALIZATIONSECURITY

Security - SELinux to the rescue

SELinux is all about labeling

● Processes get labels – virtual machines with KVM are processes

● Files and devices get labels – virtual images are stored on files and devices

● Rules control how process labels interact with file labels and other process labels

● The kernel enforces these rules

KVM guests are processes, so we can confine them like processes

Compromised virtual machine guest confined, despite its vulnerability

And of course, the guest operating system can also run SELinux

RHEV 3.0 ARCHITECTURE

RHEV-Manager is now a Java application running on JBoss EAP on RHEL

Backend database is now PostgreSQL 8.4

New user portal, REST API, Linux CLI

Support for multiple external authentication sources

Red Hat IPA Microsoft Active Directory

RHEV 3.0 - Integration

● Hook scripts are called at specific VM lifecycle events● VDSM (management agent) Start● Before VM start● After VM start● Before VM migration in/out● After VM migration in/out● Before and After VM Pause● Before and After VM Continue● Before and After VM Hibernate● Before and After VM resume from hibernate● On VM stop● On VDSM Stop

➔Hooks can modify a virtual machines XML definition before VM start➔Hooks can run system commands – e.g.. Apply firewall rule to VM

Integration & API

RED HAT ENTERPRISE VIRTUALIZATIONRHEV 3.1

Python SDK - Python SDK for developers

User Interface

- Full support for Web Admin- Remove .NET Windows Admin Portal

Web Admin

Platform Infrastructure

- Reduced in-memory footprint- Reduced startup time - Improved performance and scalability

JBoss EAP 6

- Run on 100% open source infrastructure- No requirement for proprietary Oracle JRE

OpenJDK

Jasper 4.7

Directory Servers

- Support for two new directory servers- Red Hat Directory Server- IBM Tivoli Directory Server

- Move to the latest JasperSoft reporting engine

Platform Infrastructure

Quotas

- 160 Virtual CPUs per VMGuest Scalability

- 2 TB Virtual RAM per VM

- New Intel Core i3, i5, i7 (code named “Sandy Bridge”)New CPU Support

- New AMD family 15h processors (code named “Bulldozer”)

- Quotas for storage, CPU and memory

- Quickly migrate Physical machine to VirtualP2V

User Interface

Reports Integration

- Integrate Reports / Dashboard into web admin portal- Single Signon between Admin portal and Jasper Reports

Networking

Hot plug/unplug - Hot plug/unplug virtual machine's network interface

Storage

- Hot plug/unplug virtual machine disk imageHotplug Disk

- New UI for managing internal and external (direct lun) disksDisk Management

Storage

Direct LUN - UI support for configuring direct LUN access for virtual machine

Storage

Storage Migration - Live migration of virtual machine disk between storage domains Tech Preview

PHYSICAL TO VIRTUAL TO CLOUD

Thank you

Redhat rhev 31-update by syedmshaaf

Technology