Contrail at AllegroGroup

•Download as PPTX, PDF•

2 likes•1,029 views

Krzysztof Kowalik

How Contrail was implemented at AllegroGroup

Technology

Contrail at AllegroGroup
Plan / Prepare / Production (3P)

History
➢ What we had:
○ Two separate cloud environments (Essex And Havana)
○ Floating IP in Essex and Flat Network with VLANS in
Havana
○ Network complicity in Havana
○ Network performance problems in Havana

Goals (Plan)
➢ Ease to maintain and growth
➢ Network simplicity
➢ Network isolation for tenants
➢ Floating IP and flat network
➢ New region in new DC

Fabric (Prepare - 2 weeks)
➢ Easy and fast deployment (couple of corrections in fabric
scripts), we used 1.20 version at that time
➢ Environment ready for test (adding new HV from “any”
location of server room)
➢ Basic performance tests, LBaaS
Where to find quick implementation tools:
http://www.opencontrail.org/opencontrail-quick-start-guide/

Our way
➢ Own puppet manifests based on available ones
➢ Reasons:
○ Existing infrastructure
○ Customized deployment
○ More work at the beginning, less problems later
○ Easy procedure to add hosts (compute nodes,
controllers)
○ Building new region in near future

Implementation
➢ We had everything prepared for version 1.20, and then we
get 2.01 production version ( what to do ?! )
➢ Environment deploying (OpenStack with Contrail,
One Region- 2 CC; 3 CoC; 50 HV), during DC migration
amount of computes increasing - target 250
➢ Move tenants/users/quota from old environment to new
○ we used keystone server builded from scratch and did
upgrade then pump data to Icehouse/Contrail (issue
missing users), qouta were migrated as SQL tables,
exporter.py (script to marge users/tenants/qoutas)
between regions (target for future - one keystone)

Implementation
➢ DNS - we are using Designate with two handlers (one for
Floating IPs, second one for Fixed routable IPs)
➢ Required Image modifications (target ansible automation
build)
➢ Two days before production we did update to latest
available packages from release 2.01
➢ Breaking environment
➢ Clients at new environment

Results
➢ 500 VMs spawned simultaneous
➢ Network performance

Problems
➢ cassandra (we increased number of nodes 3 => 5),
configuration tuning (TTLs in contrail-collector.conf),
compaction throughput, migration of cassandra data
to raid0 SSD disks
➢ OpenFiles issue (user, supervisor, init)
➢ Collector was flood by data from computes
iptables -A OUTPUT -p tcp --dport 8086 -m string --algo bm --
string "flowuuid" -j DROP

Problems
➢ When 500K flow is not enough (vr_flow_entries, vr_oflow_entries)
➢ Flow on Hold issue
➢ Vrouter CPU consumption to high compare to VM
(TBB_THREAD_COUNT /etc/contrail/supervisord_vrouter.conf)

Problems
➢ Rebuild instance - interface was deleted after VM was
respawn
➢ Lack of support for ironic - we will build region for ironic
➢ Disabled Tenant - Not able to login to Contrail UI (keystone
2.0)
➢ Tuning configuration files required
➢ Metadata packages not sent in one session
➢ RBAC for contrail UI

Environment expansion and further plans
➢ 1350 VMs on 150 HV in one DC at this moment
➢ Second region on it’s way
➢ 250-300 HV per region
➢ Migration from Essex and Havana
➢ OpenStack and Contrail upgrades

Check us: allegrotech.io
Join us: kariera.allegro.pl
Twitter: allegrotechblog
e-commerce full of technology

What's hot

Continuent Tungsten 2.0 is a major step forward that includes key feature improvements to help you manage very large datasets on MySQL. It also sets the stage for operation in cloud environments like Amazon. We will cover the following details to help you plan for using the new release: - Major improvements in Continuent Tungsten 2.0, including replication and connectivity upgrades - Major improvements in cluster management for cross-site and cross-cloud operations, especially in Amazon AWS - How to upgrade from Continuent Tungsten 2.0 from older Continuent Tungsten releases - How to create multi-master, multi-site clusters - How to use parallel replication to eliminate slave lag - How to set connection pooling to boost connectivity throughput - Showcase Continuent Tungsten roadmap for new features including our new Tungsten Management API and the upcoming Continuent Tungsten GUI.

Tungsten University: Introduction to Continuent Tungsten 2.0

Continuent

OVN DBs HA with scale test

Aliasgar Ginwala

Efficient monitoring is crucial when managing your Cloud infrastructure. The metrics collected by OpenNebula can be used to trigger automatic scaling, or quickly detect failures to automatically restart virtual machines. During this talk, I will show how OpenNebula can be used to efficiently monitor thousands of virtual machines at sub-1 minute interval. I will show how OpenNebula can be enhanced and optimized, and how different metrics collection tools such as Ganglia and Host-sFlow can be used with OpenNebula to monitor large-scale Cloud infrastructures.

Monitoring Large-scale Cloud Infrastructures with OpenNebula

NETWAYS

In this talk I will walk you through the performance tuning steps that I took to serve 1.2M JSON requests per second from a 4 vCPU c5 instance, using a simple API server written in C. At the start of the journey the server is capable of a very respectable 224k req/s with the default configuration. Along the way I made extensive use of tools like FlameGraph and bpftrace to measure, analyze, and optimize the entire stack, from the application framework, to the network driver, all the way down to the kernel. I began this wild adventure without any prior low-level performance optimization experience; but once I started going down the performance tuning rabbit-hole, there was no turning back. Fueled by my curiosity, willingness to learn, and relentless persistence, I was able to boost performance by over 400% and reduce p99 latency by almost 80%.

Extreme HTTP Performance Tuning: 1.2M API req/s on a 4 vCPU EC2 Instance

ScyllaDB

OVN - Basics and deep dive

Trinath Somanchi

OpenNebula Conf 2014 | Lightning talk: OpenNebula at Etnetera by Jan Horacek

NETWAYS

Presentation delivered at LinuxCon China 2017 Real-Time is used for deadline-oriented applications and time-sensitive workloads. Real-Time KVM is the extension of KVM(Linux Kernel-based Virtual Machine) to allow the virtual machines(VM) to be a truly Real-Time operating system.Users sometimes need to run low-latency applications(such as audio/video streaming, highly interactive systems, etc) to meet their requirements in clouds. NFV is a new network concept which uses virtualization and software instead of dedicated network appliances. For some use cases of telecommunications, network latency must be within a certain range of values. Real-Time KVM can help NFV meet this requirements. In this presentation, Pei Zhang will talk about: (1)Real-Time KVM introduction (2)Real-Time cloud building (3)Real-Time KVM in NFV: VM with openvswitch, dpdk and qemu’s vhostuser (4)Performance testing results show

See what happened with real time kvm when building real time cloud pezhang@re...

LinuxCon ContainerCon CloudOpen China

Tim Rozet, Red Hat, Feng Pan, Red Hat This session will explore the challenges and lessons learned with integrating accelerated dataplanes into OPNFV deployments. More specifically the talk will focus on FD.IO (VPP) and OVS DPDK integration into Apex, including different types of configuration options, platform requirements, performance tuning, and deployment challenges. This talk will also provide context to how OpenStack functions differently with these types of dataplanes, and how integration with the OpenDaylight controller works.

Accelerated dataplanes integration and deployment

OPNFV

The complexity of a typical OpenNebula installation brings a special set of challenges on the monitoring side. In this talk, I will show monitoring of a full stack of from the physical servers to storage layer and ONE daemon. Providing an aggregated view of this information allows you see the real impact of a certain failure. I would like to also present a use case for a “closed-loop” setup where new VMs are automatically added to the monitoring without human intervention, allowing for an efficient approach to monitoring the services a OpenNebula setup provides.

Monitoring of OpenNebula installations

NETWAYS

Windows has supported Receive Side Scaling (RSS) for a very long time and most NIC hardware is designed to meet its requirements. This allows Windows to use the hardware to load-balance TCP flows across all CPUs and avoid locking in the stack. My recent work has extended the Xen netif protocol so that backends can be coded to meet the requirements of Windows RSS. The first implementation that meets the requirements is Linux xen-netback and this has been verified to meet Microsoft Logo requirements in conjunction with the latest Xen Project PV frontend. This talk will detail the protocol extension, discuss the Linux backend implementation and show how aggregate network performance now scales effectively with the number of vCPUs in the Windows guest.

XPDS16: Windows PV Network Performance - Paul Durrant, Citrix Systems Inc

The Linux Foundation

Quickly Debug VM Failures in OpenStack

LinuxCon ContainerCon CloudOpen China

Automating linux network performance testing

Antonio Ojea Garcia

[2018.10.19] Andrew Kong - Tunnel without tunnel (Seminar at OpenStack Korea ...

OpenStack Korea Community

Geneve

Madhu c

OpenNebulaConf2015 1.09.02 Installgems Add-on - Alvaro Simon Garcia

OpenNebula Project

"Networking Quality of Service was introduced in Neutron in the Liberty cycle, the initial work included API additions and implementation of an extendable mechanism. The thought was to be able to accommodate all the crazy ideas network engineers have. We started with basic bandwidth limiting rule and then enhanced the mechanism to support upgrades, RBAC (Role Based Access Control), DSCP marking and more In this session we would cover the the work that was done for supporting Networking QoS in Neutron as well as the near future plans in this domain."

Networking, QoS, Liberty, Mitaka and Newton - Livnat Peer - OpenStack Day Isr...

Cloud Native Day Tel Aviv

Meetup 23 - 02 - OVN - The future of networking in OpenStack

Vietnam Open Infrastructure User Group

Stuck threads are a major cause for stability issues of WebLogic Server environments. Often people in operations and development who are confronted with stuck threads, are at a loss what to do. In this presentation we will talk about what stuck threads actually are and how you can detect them. We will elaborate on how you can get to the root cause of a stuck thread and which tools can help you with that. In order to reduce the impact of having stuck threads in an application, we will talk about using workmanagers. In order to prevent stuck threads we will illustrate several patterns which can be implemented in infrastructure and applications. Next time you see a stuck thread, you will know what to do!

WebLogic Stability; Detect and Analyse Stuck Threads

Maarten Smeets

Kubernetes Intro

Antonio Ojea Garcia

Ovn vancouver

Mason Mei

What's hot (20)

Tungsten University: Introduction to Continuent Tungsten 2.0

OVN DBs HA with scale test

Monitoring Large-scale Cloud Infrastructures with OpenNebula

Extreme HTTP Performance Tuning: 1.2M API req/s on a 4 vCPU EC2 Instance

OVN - Basics and deep dive

OpenNebula Conf 2014 | Lightning talk: OpenNebula at Etnetera by Jan Horacek

See what happened with real time kvm when building real time cloud pezhang@re...

Accelerated dataplanes integration and deployment

Monitoring of OpenNebula installations

XPDS16: Windows PV Network Performance - Paul Durrant, Citrix Systems Inc

Quickly Debug VM Failures in OpenStack

Automating linux network performance testing

[2018.10.19] Andrew Kong - Tunnel without tunnel (Seminar at OpenStack Korea ...

Geneve

OpenNebulaConf2015 1.09.02 Installgems Add-on - Alvaro Simon Garcia

Networking, QoS, Liberty, Mitaka and Newton - Livnat Peer - OpenStack Day Isr...

Meetup 23 - 02 - OVN - The future of networking in OpenStack

WebLogic Stability; Detect and Analyse Stuck Threads

Kubernetes Intro

Ovn vancouver

Similar to Contrail at AllegroGroup

OpenStack cloud for ConoHa, Z.com and GMO AppsCloud in okinawa opendays 2015 ...

Naoto Gohko

QuestDB es una base de datos open source de alto rendimiento. Mucha gente nos comentaba que les gustaría usarla como servicio, sin tener que gestionar las máquinas. Así que nos pusimos manos a la obra para desarrollar una solución que nos permitiese lanzar instancias de QuestDB con provisionado, monitorización, seguridad o actualizaciones totalmente gestionadas. Unos cuantos clusters de Kubernetes más tarde, conseguimos lanzar nuestra oferta de QuestDB Cloud. Esta charla es la historia de cómo llegamos ahí. Hablaré de herramientas como Calico, Karpenter, CoreDNS, Telegraf, Prometheus, Loki o Grafana, pero también de retos como autenticación, facturación, multi-nube, o de a qué tienes que decir que no para poder sobrevivir en la nube.

Como creamos QuestDB Cloud, un SaaS basado en Kubernetes alrededor de QuestDB...

javier ramirez

OpenNebulaConf 2014 - ONE BIT to rule them all - Stefan Kooman

OpenNebula Project

OpenNebula Conf 2014 | ONE BIT to rule them all - Stefan Kooman

NETWAYS

Have you ever thought about migrating your Kubernetes clusters to Google Cloud to get your services closer to your customers? Yes? We too! Join us on an interactive journey to discover the main challenges of live migration at scale of etcd's, traffic routing and application workloads from your on-premise platform to GCP. The talk will discuss the current state of the technical concept, known problems and insides of the already proven migration steps for stateless workload. As part of the journey, we'll see the differences between migrating one or one hundred clusters with productive workloads; What parts can be automated? What steps may need to be manual? Let's see how an automated solution could look like in the future and what steps are missing.

Kubermatic How to Migrate 100 Clusters from On-Prem to Google Cloud Without D...

Tobias Schneck

Have you ever thought about migrating your Kubernetes clusters to Google Cloud to get your services closer to your customers? Yes? Us too! Join us on an interactive journey to discover the main challenges of live migration at scale of etcd’s, traffic routing and application workloads from your on-premise platform to GCP. The talk will discuss the current state of the technical concept, known problems and insides of the already proven migration steps for stateless workloads. As part of the journey, we'll see - The differences between migrating one or one hundred clusters with productive workloads - What parts can be automated? - What steps may need to be done manually?

How to Migrate 100 Clusters from On-Prem to Google Cloud Without Downtime

loodse

Introduction of private cloud in LINE - OpenStack最新情報セミナー(2019年2月)

VirtualTech Japan Inc.

OpenStackのモデルの最適化とConoHa, Z.comとGMOアプリクラウドへの適用郷古直仁 (GMOインターネット株式会社) アジェンダ： - Using OpenStack at GMO Internet --- OpenStack Diablo cluster: Onamae.com VPS --- OpenStack Grizzly cluster: ConoHa --- OpenStack Havana cluster: GMO AppsCloud --- OpenStack Juno cluster: ConoHa (2), GMO AppsCloud (2) ------ OpenStack Authentication in Juno (V2 keystone domains) - How to using OpenStack at GMO Internet --- OpenStack Designate DNSaaS: ConoHa, Z.com(OEM) --- OpenStack Cinder Block storage: ConoHa: NexentaStor(SDS), AppsCloud: NetApp --- OpenStack Ironic: Only AppsCloud: Undercloud Ironic deploy, Multi-tenant Ironic deploy --- OpenStack Swift: shared cluster

GMOインターネット様発表「OpenStackのモデルの最適化とConoHa, Z.comとGMOアプリクラウドへの適用」 - OpenStack最新情...

VirtualTech Japan Inc.

Open stack networking_101_part-1

yfauser

Boyan Krosnov - Building a software-defined cloud - our experience

ShapeBlue

WebCamp 2016: DevOps. Николай Дойков: Опыт создания клауда для потокового вид...

WebCamp

VMworld 2013: VMware Mirage Storage and Network Deduplication, DEMYSTIFIED

VMworld

Smart Network Interface Cards (SmartNICs) are increasingly being deployed in cloud data centers to offload inline network processing tasks from server CPUs, thereby improving system throughput while freeing up server CPU cycles for application processing. The match/action and tunnel handling semantics of SmartNIC datapaths can be either expressed directly in the P4 language, be defined by virtual switching software like Open vSwitch (implementing the semantics of a specification like OpenFlow), or by using a combination of these. This presentation compares these approaches, considering aspects like the expressiveness and performance of the resulting datapath as well how these datapath variants can be integrated into existing cloud management systems (e.g. OpenStack). Johann Tönsing Chief Architect & SVP, Software, Netronome Johann is a recognized industry expert in SDN, Linux-based networking technologies, network virtualization, security, and NFV. Johann has been an active contributing member and has been nominated to leadership roles in multiple standards bodies related to SDN and NFV. As Netronome’s Chief Architect, Johann leads all aspects of Netronome’s product design and development, with heavy emphasis on advanced and open server-based networking technologies where he also holds multiple patents. He holds a Masters of Engineering in Electronics.

Stacks and Layers: Integrating P4, C, OVS and OpenStack

Open-NFP

OpenEBS hangout #4

OpenEBS

London Ceph Day: Ceph at CERN

Ceph Community

OpenContrail deployment experience

Jakub Pavlik

Using OpenStack In a Traditional Hosting Environment

OpenStack Foundation

Vizuri Exadata East Coast Users Conference

Isaac Christoffersen

High performace network of Cloud Native Taiwan User Group

HungWei Chiu

With more than 140 million users, KakaoTalk is the most popular mobile messaging platform in South Korea. The team at daumkakao has been using OpenStack with the intention for tranforming the current legacy infrastructure into scale out based cloud to build and offer new services for its users. In this session, we'd like to share our experiences with the OpenStack community, specifically in regards to meeting our needs for networking with Neutron.OpenStack Neutron offers a lot of methods to implement networking for VMs and containers. For production operations, VM migration can be a common activity to manage resources and improve uptime. It's not hard using shared storage like Ceph, but network settings, such as IP addresses need to be preserved. With a shared storage environment, an image can be attached anywhere inside of a data center, but a service IP for a virtual machine is different story. And when you don't use the floating IPs, keeping the same IP across a data center-wide set of VLANs is hard job.To maintain a virtual machine's IP settings and balance IPs between VLANS, we tried several options including overlay, SDN, and NFV technologies. In the end we came to use a route-only network for our virtual machine networks, leveraging technology like Quagga for RIP, OSPF BGP integrated with Neutron.

Openstack summit 2015

Andrew Yongjoon Kong

Similar to Contrail at AllegroGroup (20)