Professional Documents
Culture Documents
of Contents
DNS 3.2
SM TP 3.3
Backup 3.5
BGP 3.6
Tenant GW 3.7
Containers 3.8
CI-Developer Services 3.9
1
Web Application Firewalls 4.1
Billing 5.9
Tags 5.10
Autoscaling Groups 5.11
2
Introduction
Categories
Abbreviations
Status Codes
status code
available +
ongoing ~
planned /
not planned -
3
Compute: Processor
cis-comp-proc
IC- IC-
item metric description
Li Be
cis-comp-proc- a shared vCPU which is a core of an Intel Xeon Gold 6152 Processor
count - +
cpu-s1 (Beryllium design)
cis-comp-proc- a dedicated vCPU which is a core of an Intel Xeon Gold 6152 Processor
count - +
cpu-d1 (Beryllium design)
explanation
Terminology:
Lithium design
Beryllium design
CPU overcommitment
auto allocation
4
Compute: Processor
you can do it if you manually map vcpu:cpu with the cputune option
can be used for nvfi workload; not really cloudy
cis-comp-proc-cpu-s0 Shared vCPU in Lithium. billing: based on the number of shared vpcus allocated for the tenant.
cis-comp-proc-cpu-d0 Dedicated vCPU in Lithium. billing: based on the number of dedicated vpcus allocated for the tenant.
cis-comp-proc-cpu-s1 Shared vCPU in Beryllium. billing: based on the number of shared vpcus allocated for the tenant.
cis-comp-proc-cpu-d1 Dedicated vCPU in Beryllium. billing: based on the number of dedicated vpcus allocated for the tenant.
future plans
5
Compute: M emory
cis-comp-mem
explanation
cis-comp-mem-s0 Shared memory can be assigned to another tenant if not used. billing: based on the amount of shared memory
assigned to a tenant/project.
cis-comp-mem-d0 Dedicated memory cannot be assigned to another tenant. billing: based on the amount of dedicated memory assigned
to a tenant/project.
future plans
6
Compute: Instances
cis-comp-inst
IC- IC-
item metric description
Li Be
explanation
cis-comp-inst-std Standard instances: KVM /QEM U virtual machines with no acceleration. Different sizes. billing: instances are not
cis-comp-inst-acc Accelerated instances: KVM /QEM U virtual machines with acceleration technology. billing: instances are not
future plans
reference: https://aws.amazon.com/ec2/instance-types/
7
Compute: M etadata
cis-comp-meta
explanation
cis-comp-meta-items Number of metadata items allowed per instance. billing: free if below the default limit
cis-comp-meta-injfiles Number of injected files allowed per project. billing: free if below the default limit
cis-comp-meta-injfilesize Number of content bytes allowed per injected file. billing: free if below the default limit
future plans
8
Compute: Images
cis-comp-img
explanation
cis-comp-img-priv Tenants provide their custom images. billing: based on the size of the image
cis-comp-img-pub We don't provide custom images as of today. billing: public images are free
future plans
Standard offerings
Distribution images (ubuntu, centos, debian, etc)
Application/PaaS offerings
Application images (postgres, nginx, , etc)
Container optimized images
e.g. Ubuntu Server + SQL Server 2017
Windows AM Is
Up-2-date AM Is - autogenerated
AM I distribution across regions
e.g. https://aws.amazon.com/marketplace
9
Storage: Block
cis-stor-block
IC- IC-
item metric description
Li Be
cis-stor-block-
GiB size of the shared volume based on CEPH technology, full SSD + -
s0
cis-stor-block-
GiB size of the shared volume based on CEPH technology, SSD/HDD hybrid + -
s1
cis-stor-block-
GiB size of the shared volume based on CEPH technology, SSD/SATA hybrid + -
s2
cis-stor-block- size of the shared volume based on CEPH technology, NVM e SSD/SATA
GiB - ~
s3 hybrid
explanation
measurement method
BDC
item 4K rand IOPS /sec 4K rand Mbytes/sec 256K seq IOPS /sec 256K seq Mbytes/sec
cis-stor-block-s3 - - - -
cis-stor-block-d0 - - - -
FDC
item 4K rand IOPS /sec 4K rand Mbytes/sec 256K seq IOPS /sec 256K seq Mbytes/sec
cis-stor-block-s0 - - - -
cis-stor-block-s2 - - - -
cis-stor-block-s3 - - - -
cis-stor-block-d0 - - - -
future plans
10
Storage: Block
11
Storage: Object
cis-stor-object
IC- IC-
item metric description
Li Be
cis-stor- size of the shared object storage based on rados-gw and CEPH technology,
GiB + +
object-s0 S3/SWIFT compatible API
cis-stor- size of the shared object storage based on SWIFT technology, native
GiB ~ ~
object-s1 implementation, SWIFT API only
explanation
cis-stor-object-s0 billing: based on the size of the objects used This is the default implementation, based on rados-gw and CEPH
technology. It provides S3 and SWIFT APIs. Unfortunately, the SWIFT implementaion is not complete: e.g. Quota is not implemented.
cis-stor-object-s1 billing: based on the size of the objects used Native SWIFT implementation.
future plans
12
Network: Ports
cis-net-port
explanation
Ports are basic elements of Openstack: you can attach one or more ports to an instance.
cis-net-port-std Standard port: no acceleration. billing: based on the number of ports assigned to the tenant.
cis-net-port-acc Accelerated port: with acceleration technology. billing: based on the number of ports assigned to the tenant.
future plans
13
Network: Subnets
cis-net-subnet
explanation
Subnets are basic elements of Openstack. A subnet is a block of IP addresses and associated configuration state. Subnets are used to
allocate IP addresses when new ports are created on a network.
cis-net-subnet-std Standard subnet. billing: based on the number of subnets used by the tenant.
future plans
14
Network: Routers
cis-net-router
explanation
Routers are basic elements of Openstack; you can connect your networks with routers. You can also assign FIP (Floating IP) to your
router thus connect your networks to other tenants or provide external connectivity.
cis-net-router-std Standard router. Typically implemented as ip namespace and runs on the Compute or Network nodes. billing:
future plans
15
Network: Floating IPs
cis-net-fip
cis-net-fip-pnh count number of Pan-Net harmonized floating IPs used by the tenant + +
explanation
cis-net-fip-internet Floating IP which is routable on the internet. billing: free or based on the size of the allocated subnet
cis-net-fip-dth Floating IP which is routable inside DT. billing: free or based on the size of the allocated subnet
future plans
16
Network: Security Groups
cis-net-secgroup
explanation
Security Groups provide hypervisor level level protection for the tenants. The reference implementation uses iptables .
cis-net-secgroup-item The number of security groups used by the tenant. billing: free if below the default limit
cis-net-secgroup-rule The number of security group rules used by the tenant. billing: free if below the default limit
future plans
17
Network: Virtual Private Cloud
cis-net-vpc
explanation
18
Network: Backbone-VPN
cis-net-vpn
explanation
cis-net-vpn-std Standard VPN. billing: based on the number of configured private VPNs assigned to the tenant.
future plans
19
Partitioning: M ultisite
cis-part-multisite
explanation
future plans
20
Partitioning: Regions
cis-part-region
explanation
openstack definition:
A discrete OpenStack environment with dedicated API endpoints that typically shares only the Identity (keystone) with other
regions.
Our implementation of regions are more discrete: we have sepratate keystone per environment.
future plans
21
Partitioning: Availability Zones
cis-part-az
explanation
Lithium design
standard (non-dpdk)
dpdk
Security Placement Zone representation: availability zones
22
Partitioning: Availability Zones
standard (non-dpdk)
accelerated (implemented with smartnics, dpdk-compatible)
Security Placement Zone representation: host aggregates + flavors
future plans
23
NTP
cps-ntp
explanation
future plans
24
DNS
cps-dns
explanation
future plans
25
SM TP
cps-smtp
explanation
future plans
26
Load Balancing
cps-lb
cps-lb-l4-ecmp count number of ECM P based L4 load balancer instances used by the tenant + +
cps-lb-l4-lbaas4 count number of LBaaS4 based L4 load balancer instances used by the tenant + +
cps-lb-l7-lbaas7 count number of LBaaS7 based L7 load balancer instances used by the tenant ~ ~
cps-lb-l7-octavia count number of Octavia based L7 load balancer instances used by the tenant - -
explanation
future plans
27
Backup
cps-backup
explanation
future plans
28
BGP
cps-bgp
explanation
future plans
29
Tenant GW
cps-tgw
explanation
future plans
30
Containers
cps-caas
explanation
future plans
31
CI-Developer Services
cps-cicd
explanation
future plans
32
Workflow-Orchestration Services
cps-wflow
explanation
future plans
33
Web Application Firewalls
css-waf
explanation
future plans
34
Secure Connect
css-seccon
explanation
future plans
35
Integrated Identity and Access M anagement across IaaS services
css-iam
explanation
future plans
36
Key-Certificate M anagement Services
css-cert
explanation
future plans
37
Compliance Reporting
css-compliance
explanation
future plans
38
Directory Services
css-dir
explanation
future plans
39
Documentation
cfs-doc
explanation
future plans
40
M anagement API access
cfs-api
explanation
cfs-api-objstor-int
cfs-api-objstor-int
cfs-api-openstack-ext
cfs-api-contrail-ext
cfs-api-objstor-ext
future plans
41
M anagement Dashboard access
cfs-dashboard
explanation
cfs-dashboard-int The Openstack Dashboard (Horizon) is "just another client" that can access the APIs.
cfs-dashboard-ext Publishing the Dashboard on the internet will be implemented with WAF protection.
future plans
42
M anagement Console access
cfs-console
explanation
cfs-console-int Console access is a bit sensitive since it requires client-compute (hypervisor) communication. It will be implemented
cfs-console-ext Publishing the Console access on the internet will be implemented via WAF + API proxy.
future plans
43
Bootstrapping APIs-Portal
cfs-portal
explanation
cfs-portal-selfreg
cfs-portal-tenantadm
Tenant Creation
User/Project Creation
Quota Calculations/Allocations
Custom Flavour Definitions
M anual/Static IP Allocation to tenants
Contrail Configuration (Route Targets, etc)
Backup/Restore of data/configuration
Storage configuration
PaaS configuration requests
future plans
44
Delegated administration
cfs-delegation
explanation
cfs-delegation Delegated tenant administrator will be possible with keystone V3. Our current design is the following:
future plans
45
M etrics
cfs-metrics
explanation
future plans
46
M onitoring
cfs-monitoring
explanation
future plans
47
Billing
cfs-billing
explanation
future plans
48
Tags
cfs-tags
cfs-tags binary tags can be used to logically group objects for access - -
explanation
future plans
49
Autoscaling Groups
cfs-autoscale
explanation
cfs-autoscale Auto Scaling monitors your applications and automatically adjusts capacity to maintain steady, predictable
future plans
50
Onboarding Services
cfs-onboarding
explanation
future plans
51