Managing KVM virtual machines part III – using libvirt with Ansible

In my previous post, we have seen how the libvirt toolset can be used to directly create virtual volumes, virtual networks and KVM virtual machines. If this is not the first time you visit my post, you will know that I am a big fan of automation, so let us investigate today how we can … Continue reading Managing KVM virtual machines part III – using libvirt with Ansible

A cloud in the cloud – running OpenStack on a public cloud platform

When you are playing with virtualization and cloud technology, you will sooner or later realize that the resources of an average lab PC are limited. Especially memory can easily become a bottleneck if you need to spin up more than just a few virtual machines on an average desktop computer. Public cloud platforms, however, offer … Continue reading A cloud in the cloud – running OpenStack on a public cloud platform

OpenStack Octavia – creating and monitoring a load balancer

In the last post, we have seen how Octavia works at an architectural level and have gone through the process of installing and configuring Octavia. Today, we will see Octavia in action - we will create our first load balancer and inspect the resulting configuration to better understand what Octavia is doing. Creating a load … Continue reading OpenStack Octavia – creating and monitoring a load balancer

OpenStack Octavia – architecture and installation

Once you have a cloud platform with virtual machines, network and storage, you will sooner or later want to expose services running on your platform to the outside world. The natural way to do this is to use a load balancer, and in a cloud, you of course want to utilize a virtual load balancer. … Continue reading OpenStack Octavia – architecture and installation

OpenStack Cinder – architecture and installation

Having looked at the foundations of the storage technology that Cinder uses in the previous posts, we are now ready to explore the basic architecture of Cinder and install Cinder in our playground. Cinder architecture Essentially, Cinder consists of three main components which are running as independent processes and typically on different nodes. First, there … Continue reading OpenStack Cinder – architecture and installation

OpenStack Nova – installation and overview

In this post, we will look into Nova, the cloud fabric component of OpenStack. We will see how Nova is installed and go briefly through the individual components and Nova services. Overview Before getting into the installation process, let us briefly discuss the various components of Nova on the controller and compute nodes. First, there … Continue reading OpenStack Nova – installation and overview

OpenStack supporting services – Glance and Placement

Apart from Keystone, Glance and Placement are two additional infrastructure services that are part of every OpenStack installation. While Glance is responsible for storing and maintaining disk images, Placement (formerly part of Nova) is keeping track of resources and allocation in a cluster. Glance installation Before we get into the actual installation process, let us … Continue reading OpenStack supporting services – Glance and Placement

Openstack Keystone – installation and overview

Today we will dive into OpenStack Keystone, the part of OpenStack that provides services like management of users, roles and projects, authentication and a service catalog to the other OpenStack components. We will first install Keystone and then take a closer look at each of these areas. Installing Keystone As in the previous lab, I … Continue reading Openstack Keystone – installation and overview

Understanding TLS certificates with Ansible and NGINX – part II

In the first part of this short series, we have seen how Ansible can be used to easily generate self-signed certificates. Today, we will turn to more complicated set-ups and learn how to act as a CA, build chains of certificates and create client-certificates. Creating CA and intermediate CA certificates Having looked at the creation … Continue reading Understanding TLS certificates with Ansible and NGINX – part II

Understanding TLS certificates with NGINX and Ansible – part I

If you read technical posts like this one, chances are that you have already had some exposure to TLS certificates, for instance because you have deployed a service that uses TLS and needed to create and deploy certificates for the servers and potentially for clients. Dealing with certificates can be a challenge, and a sound … Continue reading Understanding TLS certificates with NGINX and Ansible – part I