Shulou(Shulou.com)06/03 Report--

The knowledge points of this article include: an introduction to openstack, an introduction to the main functional components of openstack, and the use of openstack. Read the complete article and believe that everyone has a certain understanding of openstack.

Q: What is OpenStack?

OpenStack is an open source cloud management platform project, a combination of a series of software open source projects. An open source project developed and sponsored by NASA and Rackspace under the Apache License, a free software license issued by the Apache Software Foundation.

OpenStack provides scalable, resilient cloud computing services for both private and public clouds. The goal of the project is to provide a cloud computing management platform that is simple to implement, scalable, rich, and standardized.

2: Main functional components of openstack

1: Introduction

It is divided into 5 different levels and 16 different functional modules:

Presentation: api module, ui module

Logic (Control): Scheduling, Scheduling, Policy, Image Registry, Logging

Resource: Compute, Volume, Network

Integration Layer: Billing, Identity

Mablement: Admin, Monitoring

How the sub-projects are connected:

Horizon-UI service: corresponding to User Dashboard [off-cloud services for OPS users] and Customer Portal [on-cloud users]

Keystone-Identity: Corresponding Identity

Nova-Compute service module: Compute API, scheduling, policy, Compute and some Admin API

Glance-Mirrors: Image Registry, Image Registry

Cinder [block storage]/swift [network object storage]-storage service: volume [storage resource management module]

Neutron-Network Service: Network [Network Resource Management Module]

Heat-Organization services: Orchostration

Ceilometer-Monitoring metering services: Billing, Monitoring

2: Horizon-UI module

The main service provides UI services for openstack users, that is, it is responsible for converting all operations of users on the administrative console into background API calls.

Users: Cloud administrators [responsible for the operation of the entire cloud platform, resource management and allocation], ordinary cloud users [operating freely within the quota range, using resources]

Cloud Administrator Interface:

3: Keystone-Identity authentication module

Mainly responsible for identity authentication and permission control in openstack

User: user, which represents the person or program that can be accessed through keystone. User is authenticated by authentication information (such as password, api Key, etc.)

Tenant: A tenant, which is a collection of resources accessible from various services

Role: a role that represents a set of permissions that a user can access a resource

A family [tenant] rented a house of 100 square meters [role authority]. Then, the management authority of each [user] in the family was different. Parents had greater management authority than children.

Service: i.e. service, Nova, Glance, Swift. Services can only be assigned if they are registered on keystone

Endpoint: An access point exposed by a service. To access a service, you must know its endpoint.

Token: Token for accessing resources, equivalent to key

What exactly does keystone provide:

Identity service: Authentication credentials validated.

Token Service: will authenticate and manage tokens used to authenticate requests

Catalog: Each service needs to be registered on keystone, and they are registered on catalog.

Policy: Decide what access controls each user has.

4: Nova-Computing Services

OpenStack's core services.

1. Main functions include:

1: Instance lifecycle management: instance creation, deletion, start, stop

2: Management of computing resources

3: Provide Rest style API outward

II: Three different functional modules

nova-api: Located in the presentation layer, it mainly accepts external rest requests.

nova-scheduler: Located at the logical control level, it is mainly responsible for mediating and selecting which host creates vm.

nova-compute: responsible for virtual machine test creation and resource allocation, does not provide any virtualization function itself, but it supports different virtual machine forms

They didn't hear about direct delivery, but message delivery through messaging middleware.

5: Glance-mirror service

Function: Provides storage, query and retrieval services for virtual machine images

It mainly provides services for Nova components. When creating a virtual machine through nova, you must listen to glance to obtain the corresponding image, and then create a virtual machine based on the image.

Depends on storage services and database services: Storage services are used to store the mirror itself, database services are mainly used to store various metadata related to the mirror

Glance's architecture

6: Swift-Storage Services

Function: Provide high-availability distributed object storage services to the outside world

Features: infinitely scalable, no endpoint failure, use swift without worrying about the use of objects will be lost, because it itself provides high availability

It can be accessed via HTTP(S), object api and s3 interfaces.

Swift schematic diagram

All requests are processed by proxy, and the proxy is used to find an object in the corresponding Containe under the appropriate Account to store the service.

In the middle, it will copy for different objects, so as to ensure that if the information of one object is lost, it can be recovered from other places.

7: cinder-block storage service

Functions: manage all block storage devices, serve vm,

Object storage services are primarily used to store distributed objects, meaning you can request storage of your objects from anywhere.

The block storage service is local and can only be used hooked up to a vm

Cinder schematic diagram:

When a request is sent, it is first sent to the api of the cinder itself. The api module processes the sent request, and the processed result is transmitted through the message middleware. It is transmitted to the cinder-scheduler through the message middleware mq, and then through the scheduler.

Then decide where to apply for block storage service, and create a vm, the specific storage module management is through the cinder-volume to carry out life cycle management

8: Neutron-Network Services

Function: Provide virtual network functions under cloud computing environment, and establish independent network environment for each tenant

Three modes:

Flat mode: bridge mode, all need to be manually configured

Flat DHCP mode: bridge mode, a DHCP process is taken separately at the gateway, which can assist users in network configuration.

VLAN mode: different virtual subnets are set up for each different tenant, in which users can have their own ip

III: Inter-component relationships and access flows

1: Relationships between components

2: Access Control Process

After reading the above, do you have any further understanding of openstack? If you still want to learn more skills or want to know more related content, welcome to pay attention to the industry information channel, thank you for reading!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.