Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Mastering OpenStack
  • Table Of Contents Toc
  • Feedback & Rating feedback
Mastering OpenStack

Mastering OpenStack

By : Omar Khedher
3.9 (8)
Buy this Book
close
close
Mastering OpenStack

Mastering OpenStack

3.9 (8)
By: Omar Khedher
Buy this Book

Overview of this book

This book is intended for system administrators, cloud engineers, and system architects who want to deploy a cloud based on OpenStack in a mid- to large-sized IT infrastructure. If you have a fundamental understanding of cloud computing and OpenStack and want to expand your knowledge, then this book is an excellent checkpoint to move forward.
Table of Contents (13 chapters)
close
close
close
Preface
Preface
What this book covers
What you need for this book
Who this book is for
Conventions
Reader feedback
Customer support
Free Chapter
1
1. Designing OpenStack Cloud Architecture
1. Designing OpenStack Cloud Architecture
OpenStack – think again
Introducing the OpenStack logical architecture
Gathering the pieces and building a picture
A sample architecture setup
Summary
2
2. Deploying OpenStack – DevOps and OpenStack Dual Deal
2. Deploying OpenStack – DevOps and OpenStack Dual Deal
DevOps in a nutshell
Eat the elephant
Summary
3
3. Learning OpenStack Clustering – Cloud Controllers and Compute Nodes
3. Learning OpenStack Clustering – Cloud Controllers and Compute Nodes
Understanding the art of clustering
Divide and conquer
Summary
4
4. Learning OpenStack Storage – Deploying the Hybrid Storage Model
4. Learning OpenStack Storage – Deploying the Hybrid Storage Model
Understanding the storage types
Cooking Swift
Choosing the storage
Summary
5
5. Implementing OpenStack Networking and Security
chevron up
5. Implementing OpenStack Networking and Security
The story of an API
Security groups
Firewall as a Service
Summary
6
6. OpenStack HA and Failover
6. OpenStack HA and Failover
HA under the scope
Measuring HA
Summary
7
7. OpenStack Multinode Deployment – Bringing in Production
7. OpenStack Multinode Deployment – Bringing in Production
Confirming the multinode setup
The network topology
The OpenStack deployment
Summary
8
8. Extending OpenStack – Advanced Networking Features and Deploying Multi-tier Applications
8. Extending OpenStack – Advanced Networking Features and Deploying Multi-tier Applications
Navigating through Neutron
Summary
9
9. Monitoring OpenStack – Ceilometer and Zabbix
9. Monitoring OpenStack – Ceilometer and Zabbix
Telemetry in OpenStack – Ceilometer
Ceilometer and heat
Arming OpenStack monitoring
Summary
10
10. Keeping Track for Logs – Centralizing Logs with Logstash
10. Keeping Track for Logs – Centralizing Logs with Logstash
Tackling logging
Two eyes are better than one eye
Summary
11
11. Tuning OpenStack Performance – Advanced Configuration
11. Tuning OpenStack Performance – Advanced Configuration
Pushing the limits of the database
Stressing RabbitMQ
Benchmarking OpenStack at scale
Summary
12
Index
Index

Security groups

Imagine a scenario where you have to apply certain traffic management rules for a dozen compute node instances. Therefore, assigning a certain set of rules for a specific group of nodes will be much easier instead of going through each node at a time. Security groups enclose all the aspects of the rules that are applied to the ingoing and outgoing traffic to instances, which includes the following:

  • The source and receiver, which will allow or deny traffic to instances from either the internal OpenStack IP addresses or from the rest of the world
  • Protocols to which the rule will apply, such as TCP, UDP, and ICMP
  • Egress/ingress traffic management to a Neutron port

In this way, OpenStack offers an additional security layer to the firewall rules that are available on the compute instance. The purpose is to manage traffic to several compute instances from one security group. You should bear in mind that the networking security groups are more granular-traffic-filtering-aware than...

Unlock full access

Continue reading for free

A Packt free trial gives you instant online access to our library of over 7000 practical eBooks and videos, constantly updated with the latest in tech
Start a 7-day FREE trial
End of Section 3
Next Section
bookmark search playlist font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY