Presentation is loading. Please wait.

Presentation is loading. Please wait.

StratusLab Tutorial (Bordeaux, France)

Published byAlexina Hunter Modified over 6 years ago

Similar presentations

Presentation on theme: "StratusLab Tutorial (Bordeaux, France)"— Presentation transcript:

1 StratusLab Tutorial (Bordeaux, France)
Advanced Topics StratusLab Tutorial (Bordeaux, France) 25-26 October 2012

2 Virtualization Benefits
Control of Resource Consumption Share/limit CPU and network bandwidth Hard limit on memory (RAM) utilization Control IO bandwidth to local/remote disks Better monitoring/accounting of these resources Isolation of Virtual Machines Control address connectivity (what machines can see the VM?) Control what ports are accessible on a VM Dynamic control of both connectivity and ports

3 Contextualization Horrible word but… StratusLab Contextualization
Machines must be able to run in variable network/machine contexts Information on how to integrate with local context must be given to VM No universal standard for doing this (StratusLab, HEPiX, AWS, …) StratusLab Contextualization Information packaged into CD-ROM image and made available to VM VMs mount CD-ROM image and run a script using context information Networking information is passed exclusively via DHCP Additional information can be passed to VMs to configure services

4 Contextualization Discovery of VM Context Network connections (DHCP)
Authentication/Authorization (SSH Keys) Service Configuration (e.g. Grid Certificates)

5 Network Security Limit Access Best practices
Limit ssh access to known users with ssh keys Do not add accounts with password access Best practices Only run services on your VM that are necessary Setup and use a firewall within the VM

6 StratusLab Network Configuration
Static Configuration Three classes of IP addresses (public, local, and private) No dynamic VLAN or firewall configuration All machines receive network information via DHCP TO MACHINE External Public Local Private ? NAT FROM MACHINE

7 Questions and Discussion

8 Exercises: Contextualization
Discover Contextualization Procedure Log into a VM and find CD-ROM image. What files are present? What information is passed to machine? How is that information used within the machine? Modify the Context Look for command line option to send user-defined context Send some customized information via the context Verify that the information can be found on the running machine How could you use this to configure your services?

9

Download ppt "StratusLab Tutorial (Bordeaux, France)"

Similar presentations

Xrootd and clouds Doug Benjamin Duke University. Introduction Cloud computing is here to stay – likely more than just Hype (Gartner Research Hype Cycle.

Xrootd and clouds Doug Benjamin Duke University. Introduction Cloud computing is here to stay – likely more than just Hype (Gartner Research Hype Cycle.
Self-Validation Tech Guide

Self-Validation Tech Guide
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
SIS - Security Lab Introductory Session University of Pittsburgh 2006.

SIS - Security Lab Introductory Session University of Pittsburgh 2006.
Jonas Lippuner. Overview IPCop  Introduction  Network Structure  Services  Addons Installing IPCop on a SD card  Hardware  Installation.

Jonas Lippuner. Overview IPCop  Introduction  Network Structure  Services  Addons Installing IPCop on a SD card  Hardware  Installation.
Using the jFed tool to experiment from zero to hero Brecht Vermeulen FGRE, July 7 th, 2015.

Using the jFed tool to experiment from zero to hero Brecht Vermeulen FGRE, July 7 th, 2015.
Network+ Guide to Networks 6 th Edition Chapter 10 Virtual Networks and Remote Access.

Network+ Guide to Networks 6 th Edition Chapter 10 Virtual Networks and Remote Access.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 Configuring Network Devices Working at a Small-to-Medium Business or ISP – Chapter.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 Configuring Network Devices Working at a Small-to-Medium Business or ISP – Chapter.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 Configuring Network Devices Working at a Small-to-Medium Business or ISP – Chapter.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 Configuring Network Devices Working at a Small-to-Medium Business or ISP – Chapter.
Virtual IP Network Windows Server 2012 Windows 08 Dual Subnets.

Virtual IP Network Windows Server 2012 Windows 08 Dual Subnets.
Network Configuration Charles (Cal) Loomis & Mohammed Airaj LAL, Univ. Paris-Sud, CNRS/IN2P3 24-25 October 2013.

Network Configuration Charles (Cal) Loomis & Mohammed Airaj LAL, Univ. Paris-Sud, CNRS/IN2P October 2013.
Module 8: Configuring Virtual Private Network Access for Remote Clients and Networks.

Module 8: Configuring Virtual Private Network Access for Remote Clients and Networks.
Hands-On Virtual Computing

Hands-On Virtual Computing
Client Installation StratusLab Tutorial (Orsay, France) 28 November 2012.

Client Installation StratusLab Tutorial (Orsay, France) 28 November 2012.
Presented by: Sanketh Beerabbi University of Central Florida COP6087 - Cloud Computing.

Presented by: Sanketh Beerabbi University of Central Florida COP Cloud Computing.
The Open Source Virtual Lab: a Case Study Authors: E. Damiani, F. Frati, D. Rebeccani, M. Anisetti, V. Bellandi and U. Raimondi University of Milan Department.

The Open Source Virtual Lab: a Case Study Authors: E. Damiani, F. Frati, D. Rebeccani, M. Anisetti, V. Bellandi and U. Raimondi University of Milan Department.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Configuring Network Devices Working at a Small-to-Medium Business or.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Configuring Network Devices Working at a Small-to-Medium Business or.
Discovery 2 Internetworking Module 5 JEOPARDY John Celum.

Discovery 2 Internetworking Module 5 JEOPARDY John Celum.
StratusLab is co-funded by the European Community’s Seventh Framework Programme (Capacities) Grant Agreement INFSO-RI-261552 Virtual Machine Isolation.

StratusLab is co-funded by the European Community’s Seventh Framework Programme (Capacities) Grant Agreement INFSO-RI Virtual Machine Isolation.
Cisco ASA 5505 Joseph Cicero Northeast Wisconsin Technical College.

Cisco ASA 5505 Joseph Cicero Northeast Wisconsin Technical College.

Similar presentations

Ads by Google