Citrix innovation continues to advance our cloud management technology at a rapid rate to keep pace with emerging enterprise customer needs. Learn about the core capabilities and newest innovations for Citrix CloudPlatform, which is powering the world's largest clouds today. CloudPlatform provides the latest and most advanced open source software platform to build highly scalable and reliable cloud computing environments. You’ll also see why Citrix cloud solutions differ from VMware and OpenStack offerings.
Deep dive: Citrix CloudPlatform for Infrastructure as a Service
1. SYN402
Deep dive: Citrix CloudPlatform for
Infrastructure as a Service
Kedar Poduri
Director of Product Management, Cloud Platforms Group
October ‘2012
4. What is CloudPlatform?
• Secure,
mul*-‐tenant
cloud
orchestra*on
pla4orm
– Turnkey
pla4orm
for
delivering
IaaS
clouds
– Hypervisor
agnos*c
Build
your
cloud
the
way
the
world’s
most
– Massively
scalable,
secure
and
open
successful
clouds
are
built
– Open
source,
open
standards
– Deploys
on
premise
or
as
a
hosted
solu*on
• Deliver
cloud
services
faster
and
at
a
frac*on
of
the
cost
5. Citrix CloudPlatform Supports Multiple Cloud Strategies
Private
Clouds
Public
Clouds
On-‐premise
Hosted
Mul*-‐tenant
Enterprise
Cloud
Enterprise
Cloud
Public
Cloud
• Dedicated
resources
• Dedicated
resources
• Mix
of
shared
and
• Security
&
total
control
• Security
dedicated
resources
• Internal
network
• SLA
bound
• Elas*c
scaling
• Managed
by
Enterprise
• 3rd
party
owned
and
• Pay
as
you
go
or
3rd
party
operated
• Public
internet,
VPN
access
7. On-demand Access to Infrastructure Through
Self-Service Portal
Org A
Org B
Users
Admin
Admin
End User
Users
Users
Compute
Network
Storage
Admin
Citrix
Confiden*al
-‐
Do
Not
Distribute
11. Create Custom Virtual Machines via Service
Offerings
Select
Opera*ng
System
• Windows,
Linux
Select
Compute
Offering
• CPU
&
RAM
Select
Data
Disk
Offering
• Volume
Size
Select
Network
Offering
• Network
&
Services
Create
VM
12. Dashboard Provides Overview of Consumed Resources
• Running,
Stopped
&
Total
VMs
• Public
IPs
• Private
networks
• Latest
Events
Citrix
Confiden*al
-‐
Do
Not
Distribute
13. Virtual Machine Management
Users
Change
VM Operations Console Access VM Status
Service Offering
Start
• CPU
U*lized
2
CPUs
4
CPUs
Stop
1
GB
RAM
4
GB
RAM
• Network
Read
20
GB
200
GB
Restart
• Network
Writes
20
Mbps
100
Mbps
Destroy
Citrix
Confiden*al
-‐
Do
Not
Distribute
14. Volume & Snapshot Management
Add / Delete VM
1
Volumes Volume
Create Templates
Volume
Template
from Volumes
Hourly
Weekly
Schedule Now
Snapshots Daily
Monthly
View Snapshot ….
History 12/2/2012
7.30
am
2/2/2012
7.30
am
Citrix
Confiden*al
-‐
Do
Not
Distribute
15. Network & Network Services
Create
Networks
and
aeach
VMs
Firewall
Acquire
public
IP
address
for
NAT
Load
Balancer
Control
traffic
to
VM
using
firewall
rules
Router
65.19.41.2
65.19.41.3
65.19.41.4
Load
balance
traffic
to
VMs
VM
VM
VM
Citrix
Confiden*al
-‐
Do
Not
Distribute
17. Workloads
can
be
categorized
into
two
sets
Cloud Workloads
Traditional Workloads Cloud-Era Workloads
Expect Reliability Expect Failure
• Redundant hardware. Backup • Apps are built to withstand failure
entire cloud, restore for users on
failure
Both types of workloads must run reliably in the cloud
18. Workload reliability drives unique requirements
Cloud Workloads
Traditional Workloads Cloud-Era Workloads
• Link Aggregation • VM Snapshots / Backup
• Storage Multi-pathing • Ephemeral Resources
• Live Migration, FT • Multi-site Redundancy
19. Designing a zone for an Cloud-Era workload
Cloud-‐Era
Availability
Zone
Sokware
Defined
Networks
Hypervisor
(e.g.,
Security
Groups,
EIP,
ELB,...)
Simple
-‐
XenServer
Server
Server
Server
Server
Storage
Racks
Racks
Racks
Racks
Local
EBS
Object
store
Server
Server
Server
Server
Racks
Racks
Racks
Racks
Networking
L3
SDN
based
L2
Elas*c
IP
Server
Server
Server
Server
Racks
Racks
Racks
Racks
Network
Services
Security
Groups
ELB
GSLB
Elas*c
Block
Storage
Mul*-‐*er
Apps
L3
SDN
based
VPC
CloudForma*on
20. Designing a zone for an Cloud-Era workload
Cloud-Era Cloud
CloudStack
Mgmt.
Server
• Workloads are distributed across
availability zones
• No guarantee on zone reliability
• Applications designed to handle node
Availability
Availability
Availability
level failure
Zone
Zone
Zone
• DBs and Templates snapped to object
store.
• In event of failure, images are
Object
Storage
recreated on new availability zone.
• Dramatically less expensive
21. Designing a zone for a traditional workload
Hypervisor
Feature
Rich–
vSphere,
vCenter
vCenter
Storage
Enterprise
Networking
(e.g.,
VLAN)
SAN
ESXi
ESXi
ESXi
Networking
Cluster
Cluster
Cluster
L2
VLANs
Network
Services
Enterprise
Storage
(e.g.,
SAN)
Load
Balancing
PV-‐LANs
Mul*-‐*er
Apps
Mul*-‐*er
VLANs
OVF
22. Designing a zone for a traditional workload
• Can achieve significant reliability for applications
vCenter
running in one zone.
Enterprise
Networking
(e.g.,
VLAN)
• Reliability of individual nodes is very high.
• All zone storage is replicated to a second storage
ESXi
ESXi
ESXi
Cluster
Cluster
Cluster
platform (synchronous or asynchronous)
• In event of failure, images are recovered from
Enterprise
Storage
(e.g.,
SAN)
second storage array.
• Existing workloads will run reliably.
• Little cost benefit over existing approaches
23. Support for different workloads will be required
CloudPla$orm
Cloud-‐Era
Availability
Zone
Tradi*onal
Availability
Zone
Sokware
Defined
Networks
(e.g.,
Security
Groups,
EIP,
ELB,...)
vCenter
Server
Server
Server
Server
Enterprise
Networking
(e.g.,
VLAN)
Racks
Racks
Racks
Racks
ESXi
ESXi
ESXi
Server
Server
Server
Server
Cluster
Cluster
Cluster
Racks
Racks
Racks
Racks
Elas*c
Block
Storage
Enterprise
Storage
(e.g.,
SAN)
24. Support for different workloads will be required
CloudPla$orm
Cloud-‐Era
Cloud-‐Era
Cloud-‐Era
Tradi*onal
Tradi*onal
Availability
Availability
Availability
Availability
Availability
Zone
Zone
Zone
Zone
Zone
Object
Storage
25. Open Platform to Suit Customer Needs
Compute
Hypervisor
XenServer
VMware
Oracle
VM
KVM
Bare
metal
Storage
Block
&
Object
Local
Disk
iSCSI
Fiber
Channel
NFS
Swik
Network
Network
&
Network
Services
Network
Type
Isola*on
Firewall
Load
balancer
VPN
Citrix
Confiden*al
-‐
Do
Not
Distribute
26. Multi-tenancy & Account Management
Cloud
Resources
Domain
VMs,
IPs,
Snapshots…
• Domain
is
a
unit
of
isola*on
that
Org A
represents
a
customer
org,
business
Admin
unit
or
a
reseller
Domain
• Domain
can
have
arbitrary
levels
of
Reseller A
sub-‐domains
Admin
Resources
Sub-Domain
VMs,
IPs,
Snapshots…
• A
Domain
can
have
one
or
more
Org C
accounts
Admin
Account
• An
Account
represents
one
or
more
Group A
users
and
is
the
basic
unit
of
isola*on
Account
Group B
• Admin
can
limit
resources
at
the
Account
or
Domain
levels
User 1
User 2
27. Citrix CloudPlatform Cloud Architecture
Zone
1
Ø Host
is
the
basic
unit
of
scale.
Runs
a
hypervisor
or
is
bare
metal
Load
Balancer
Firewall
Ø Cluster
consists
of
one
ore
more
hosts
of
same
hypervisor
L3 switch
Ø All
hosts
in
cluster
have
access
to
shared
(primary)
storage
Pod
1
L2 switch Pod
N
Secondary
Ø Pod
is
one
or
more
clusters,
usually
with
a
….
L2
switch.
Represents
a
rack
Storage
Cluster
N
Ø Availability
Zone
has
one
or
more
pods,
has
access
to
secondary
storage.
….
Ø Firewall
and
Load
balancers
separate
public
and
private
networks
Cluster
1
Host 1 Ø One
or
more
zones
represent
cloud
Primary
Storage
Host 2
Citrix
Confiden*al
-‐
Do
Not
Distribute
28. Guest Networks
CS
Virtual
Router
provides
Network
Services
External
Devices
provide
Network
Services
Guest
Virtual
Network
10.0.0.0/8
Guest
Virtual
Network
10.0.0.0/8
VLAN
100 VLAN
100
Public
Network/ Public
Network/
Internet Internet
Guest
VM
1
Public
IP
Private
IP
Guest
VM
1
10.1.1.1 10.1.1.111 10.1.1.1
65.37.141.111 Juniper
SRX
Public
IP
Gateway
address
Firewall
65.37.141.11 10.1.1.1
CS
Guest
VM
2
Guest
VM
2
Virtual
Router
10.1.1.3 10.1.1.3
Public
IP
Private
IP
DHCP,
DNS
65.37.141.112 10.1.1.112
NAT
NetScaler
Load
Balancing
Guest
VM
3
Load
Blancer
Guest
VM
3
10.1.1.4 10.1.1.4
VPN
Guest
VM
4
Guest
VM
4
10.1.1.5 10.1.1.5
CS
DHCP,
Virtual
Router
DNS
29. CloudStack Cloud Architecture
Cloud
Data
Center
1
Data
Center
3
Zone1
Zone
4
CloudStack
Cloud
can
have
one
or
more
Availability
Zones.
Zones
represent
a
Datacenter
Data
Center
2
Zone
2
Zone
3
Citrix
Confiden*al
-‐
Do
Not
Distribute
30. Determine Required Service-Levels
Servers
Windows
Applica*ons
vs.
Linux
Applica*ons
Storage
Real-‐*me
Applica*ons
vs.
Big
Data
Applica*ons
Network
Dev./Test
Environment
vs.
Produc*on
Environment
31. Provision Corresponding Infrastructure
Servers
Low
end
High
end
Windows
Storage
Low
latency
High
throughput
Cheap
Network
Services
CS
Physical
Virtual
Router
Appliances
Citrix
Confiden*al
-‐
Do
Not
Distribute
32. Service Offerings
Specify
Resource
Levels
Configure
Proper*es
Define
Scope
Compute
Disk
Network
Name
Name
Name
Custom
Disk
Size
Network
Rate
CPU
Cores
CPU
(MHz)
Disk
Size
(GB)
Redundant
VR
Memory
(MB)
Storage
Tag
Firewall
Host
Tag
Public
Load
balancer
Public
Public
Citrix
Confiden*al
-‐
Do
Not
Distribute
33. Orchestrate Service-Levels
VM Windows
App
L3
Core
Switch
VM Real-‐*me
App
L3
Switch
VM Produc*on
App
…
Low-‐end
Servers
…
…
…
High-‐end
Servers
Low
latency
Pod
1
Pod
2
Pod
N
35. Management Server Deployment Architecture
Single-‐node
Deployment
Mul*-‐node
Deployment
Management
User
API
Server
User
API
Management
MySQL
Load
Balancer
Server
DB
Admin
API
Admin
API
Management
Server
MySQL
DB
Back
Up
Replica*on
DB
Ø MS
is
stateless.
MS
can
be
deployed
as
physical
server
or
VM
Ø Single
MS
node
can
manage
up
to
5K
hosts.
Infrastructure
Infrastructure
Mul*ple
nodes
can
be
deployed
for
scale
or
Resources
Resources
redundancy
Ø Commercial:
RHEL
5.4+;
FOSS:
Ubuntu
10.0.4,
Fedora
16
Citrix
Confiden*al
-‐
Do
Not
Distribute
37. Leverage Partner Ecosystem for Best of Breed Solutions
Public
Clouds
Business
Portals
Migra*on
Applica*on
Mgmt.
y
Monitoring
&
Management
PaaS
Automa*on
Compute
Storage
Network