Shulou(Shulou.com)06/01 Report--

This article mainly introduces the relevant knowledge of OpenStack architecture and service mode, the content is detailed and easy to understand, the operation is simple and fast, and it has a certain reference value. I believe you will gain something after reading this OpenStack architecture and service mode article. Let's take a look at it.

OpenStack is the most influential cloud computing management tool today-managing resource pools (servers, storage, and networks) in the IaaS cloud through commands or Web-based visual dashboards. First developed by NASA and Rackspace in 2010, it now brings together more than 9500 individuals from more than 100 countries and more than 850 world-renowned companies, such as NASA, Google, Hewlett-Packard, Intel, IBM, Microsoft and so on.

Main functional components of openstack 1: introduction

It is mainly divided into 5 different levels and 16 different functional modules:

Presentation [presentation layer]: api module, ui module

Logic (Control) [logical Control layer]: Orchostration [orchestration Service], Scheduling [scheduling Service], Policy [Policy Service], Image Registry [Image Registration Service], Logging [Log Service]

Resource [resource management]: Compute [computing resource management module], Volume [storage resource management module], Network [network resource management module]

Integration [Integration layer]: Billing [Metrology Module], Identity [identity Authentication Module]

Mabagement [management]: Admin [management api], Monitoring [monitoring]

How subprojects are docked together:

Horizon-UI service: corresponding to User Dashboard [cloud service for operation and maintenance users] and Customer Portal [for cloud users]

Keystone- authentication: corresponding to Identity

Nova- computing service module: Compute API,scheduling [scheduling Service], policy [Policy Service] and Compute [Computing Management Module] and some Admin API

Glance- image service: Image Registry [image registration], Image Registry [image API]

Cinder [Block Storage] / swift [Network object Storage]-Storage Service: volume [Storage Resource Management Module]

Neutron- Network Service: Network [Network Resource Management Module]

Heat- orchestration organization service: Orchostration [orchestration service]

Ceilometer- Monitoring Metrology Service: Billing [Metrology Module], Monitoring [Monitoring]

2:Horizon-UI module

The main service provides UI services for openstack users, that is, it is responsible for translating all user operations on the management console into background API calls.

Users: cloud administrator [responsible for the operation, resource management and allocation of the entire cloud platform], ordinary cloud users [operate freely and use resources within the quota]

Cloud administrator interface:

3Gram Keystone-identity authentication module

Mainly responsible for identity authentication and authority control in openstack

User: the user, which represents the person or program that can be accessed through keystone. User is verified by authentication information (such as password, api Key, etc.)

Tenant: the tenant, which is a collection of accessible resources in each service.

Role: a role, which represents the permissions of a group of users to access a resource

A family [tenant] rents a house of 100 square meters [role permissions] then the management authority of each person [user] of the family is different, and the management authority of the parents is greater than that of the children. Service: as-a-service, such as Nova,Glance,Swift. Services can be assigned only if they are registered on keystone

Endpoint: the access point exposed by a service. If you want to access a service, you must know its endpoint.

Token: the token to access the resource, which is equivalent to the key

What exactly does keystone provide:

Identity service: authentication credentials are validated.

Token service: will authenticate and manage the token used to verify the identity of the request

Catalog: each service needs to be registered on keystone, and they are registered on catalog

Policy: determine what access control permissions each user has

4Rom Nova-Computing Services

The core service of openstack.

1. The main functions include:

1: instance lifecycle management: create, delete, start and stop instances

2: management of computing resources

3: provide Rest style API to the outside

Two: three different functional modules

Nova-api: located in the presentation layer, mainly accepts external rest requests

Nova-scheduler: located in the logic control layer, it is mainly responsible for mediating. Choose which host to create the vm.

Nova-compute: responsible for virtual machine test creation and resource allocation, does not provide any virtualization capabilities, but supports different forms of virtual machines

They have not heard of direct transmission, but through message middleware.

5: Glance- image service

Function: provide storage, query and retrieval services for virtual machine images

It mainly provides services for Nova components. When creating a virtual machine through nova, you must have heard of glance to obtain the corresponding image, and then create the virtual machine based on the image.

Dependent on storage service and database service: the storage service is used to store the mirror itself, and the database service is mainly used to store various metadata related to the mirror.

Architecture diagram of glance

6Swift-Storage Service

Function: provide highly available distributed object storage services

Features: unlimited scalability, no endpoint failures, using swift do not have to worry about the loss of objects, because it itself provides highly available features

Can be accessed through HTTP (S), object api and S3 interfaces

Swift schematic diagram

All requests are processed through proxy, and through proxy, find an object in the corresponding Containe under the appropriate Account for storage service.

During this process, different object will be replicated to ensure that when the information of one object is lost, it can be recovered from other places.

7RV cinder-block storage service

Function: manage all block storage devices and serve vm

The object storage service is mainly used to store distributed objects, which means that you can make requests to store your objects from anywhere.

The block storage service is local and can only be hung on vm for use

Cinder schematic:

When a request is sent, it is first sent to the api of the cinder itself. The api module processes the request, and the processed result is transmitted through the message middleware to the cinder-scheduler through the message middleware mq, and then through the scheduler.

Then decide where to apply for block storage service, and create a vm,cinder specific storage module is managed through cinder-volume for lifecycle management.

8PR Neutron-Network Service

Function: provide virtual network function in cloud computing environment, and establish an independent network environment for each tenant

Three modes:

Flat mode: bridge mode, all of which need to be configured manually

Flat DHCP mode: bridge mode. A separate DHCP process is taken at the gateway to assist users in network configuration.

VLAN mode: different virtual subnets are set for each different tenant, in which users can have their own ip

Relationship between components and access process 1: relationship between components 2: access control process this article on "what is the OpenStack architecture and service approach" is introduced here, thank you for reading! I believe you all have a certain understanding of "what is the structure and service mode of OpenStack". If you want to learn more, you are welcome to follow the industry information channel.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.