Book Image

OpenStack Cloud Computing Cookbook - Second Edition

By : Kevin Jackson, Cody Bunch
Book Image

OpenStack Cloud Computing Cookbook - Second Edition

By: Kevin Jackson, Cody Bunch

Overview of this book

<p>OpenStack is an open source cloud operating stack that was born from Rackspace and NASA and became a global success, developed by scores of people around the globe and backed by some of the leading players in the cloud space today.<br /><br />OpenStack Cloud Computing Cookbook, Second Edition will show you exactly how to install the components that are required to make up a private cloud environment. You will learn how to set up an environment that you manage just as you would a public cloud provider like Rackspace with the help of experienced OpenStack administrators and architects.<br /><br />We begin by configuring the key components such as identity, image compute, and storage in a safe, virtual environment that we will then build on this throughout the book. The book will also teach you about provisioning and managing OpenStack in the datacenter using proven DevOps tools and techniques.<br /><br />From installing or creating a sandbox environment using Vagrant and VirtualBox to installing OpenStack in the datacenter, from understanding logging to automating OpenStack installations, whatever level of experience or interest you have with OpenStack there is a chapter for you. Installation steps cover compute, object storage, identity, block storage volumes, image, horizon, software defined networking and DevOps tools for automating your infrastructure OpenStack Cloud Computing Cookbook, Second edition gives you clear step-by-step instructions to installing and running your own private cloud.</p>

Related Content you might be interested in

Current Title:

Small book image
OpenStack Cloud Computing Cookbook - Second Edition
Kevin Jackson | Cody Bunch
Oct, 2013 | 396 pages
No titles found
Table of Contents (20 chapters)
OpenStack Cloud Computing Cookbook Second Edition
OpenStack Cloud Computing Cookbook Second Edition
Credits
Credits
About the Authors
About the Authors
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Keystone OpenStack Identity Service
Keystone OpenStack Identity Service
Introduction
Creating a sandbox environment using VirtualBox and Vagrant
Configuring Ubuntu Cloud archive
Installing OpenStack Identity service
Creating tenants
Configuring roles
Adding users
Defining service endpoints
Creating the service tenant and service users
2
Starting OpenStack Image Service
Starting OpenStack Image Service
Introduction
Installing OpenStack Image Service
Configuring OpenStack Image Service with MySQL
Configuring OpenStack Image Service with OpenStack Identity Service
Managing images with OpenStack Image Service
Registering a remotely stored image
Sharing images among tenants
Viewing shared images
3
Starting OpenStack Compute
Starting OpenStack Compute
Introduction
Installing OpenStack Compute Controller services
Creating a sandbox Compute server with VirtualBox and Vagrant
Installing OpenStack Compute packages
Configuring database services
Configuring OpenStack Compute
Configuring OpenStack Compute with OpenStack Identity Service
Stopping and starting Nova services
Installation of command-line tools on Ubuntu
Checking OpenStack Compute services
Using OpenStack Compute
Managing security groups
Creating and managing keypairs
Launching our first Cloud instance
Terminating your instance
4
Installing OpenStack Object Storage
Installing OpenStack Object Storage
Introduction
Creating an OpenStack Object Storage sandbox environment
Installing OpenStack Object Storage
Configuring storage
Configuring replication
Configuring OpenStack Object Storage Service
Configuring OpenStack Object Storage proxy server
Configuring Account Server
Configuring Container Server
Configuring Object Server
Making rings
Stopping and starting OpenStack Object Storage
Configuring OpenStack Object Storage with OpenStack Identity Service
Setting up SSL access
Testing OpenStack Object Storage
5
Using OpenStack Object Storage
Using OpenStack Object Storage
Introduction
Installing the swift client tool
Creating containers
Uploading objects
Uploading large objects
Listing containers and objects
Downloading objects
Deleting containers and objects
Using OpenStack Object Storage ACLs
6
Administering OpenStack Object Storage
Administering OpenStack Object Storage
Introduction
Preparing drives for OpenStack Object Storage
Managing OpenStack Object Storage cluster with swift-init
Checking cluster health
Benchmarking OpenStack Object Storage
Managing swift cluster capacity
Removing nodes from a cluster
Detecting and replacing failed hard drives
Collecting usage statistics
7
Starting OpenStack Block Storage
Starting OpenStack Block Storage
Introduction
Configuring Cinder volume services
Configuring OpenStack Compute for Cinder volume
Creating volumes
Attaching volumes to an instance
Detaching volumes from an instance
Deleting volumes
8
OpenStack Networking
OpenStack Networking
Introduction
Configuring Flat networking with DHCP
Configuring VLAN Manager networking
Configuring per tenant IP ranges for VLAN Manager
Automatically assigning fixed networks to tenants
Modifying a tenant's fixed network
Manually associating floating IPs to instances
Manually disassociating floating IPs from instances
Automatically assigning floating IPs
Creating a sandbox Network server for Neutron with VirtualBox and Vagrant
Installing and configuring OVS for Neutron
Installing and configuring the Neutron API server
Configuring Compute nodes for Neutron
Creating a Neutron network
Deleting a Neutron network
Creating an external Neutron network
9
Using OpenStack Dashboard
Using OpenStack Dashboard
Introduction
Installing OpenStack Dashboard
Using OpenStack Dashboard for key management
Using OpenStack Dashboard to manage Neutron networks
Using OpenStack Dashboard for security group management
Using OpenStack Dashboard to launch instances
Using OpenStack Dashboard to terminate instances
Using OpenStack Dashboard for connecting to instances using VNC
Using OpenStack Dashboard to add new tenants
Using OpenStack Dashboard for user management
10
Automating OpenStack Installations
Automating OpenStack Installations
Introduction
Installing Opscode Chef Server
Installing Chef Client
Downloading cookbooks to support DHCP, Razor, and OpenStack
Installing PuppetLabs Razor and DHCP from cookbooks
Setting up a Chef environment for OpenStack
Booting the first OpenStack node into Razor
Defining a Razor broker, model, and policy
Monitoring the node installation
Using Chef to install OpenStack
Expanding our OpenStack environment
11
Highly Available OpenStack
Highly Available OpenStack
Introduction
Using Galera for MySQL clustering
Configuring HA Proxy for MySQL Galera load balancing
Installing and setting up Pacemaker and Corosync
Configuring Keystone and Glance with Pacemaker and Corosync
Bonding network interfaces for redundancy
12
Troubleshooting
Troubleshooting
Introduction
Understanding logging
Checking OpenStack services
Troubleshooting OpenStack Compute services
Troubleshooting OpenStack Object Storage services
Troubleshooting OpenStack Dashboard
Troubleshooting OpenStack Authentication
Troubleshooting OpenStack Networking
Submitting Bug reports
Getting help from the community
13
Monitoring
Monitoring
Introduction
Monitoring OpenStack services with Nagios
Monitoring Compute services with Munin
Monitoring instances using Munin and Collectd
Monitoring the storage service using StatsD/Graphite
Monitoring MySQL with Hyperic
Index
Index

Setting up SSL access

Setting up SSL access provides secure access between the client and our OpenStack Object Storage environment in exactly the same way SSL provides secure access to any other web service. To do this, we configure our proxy server with SSL certificates.

Getting ready

To begin with, log in to our swift server.

How to do it...

Configuration of OpenStack Object Storage to secure communication between the client and the proxy server is done as follows:

  1. In order to provide SSL access to our proxy server, we first create the certificates, as follows:

    cd /etc/swift
sudo openssl req -new -x509 -nodes -out cert.crt -keyout cert.key

  2. We need to answer the following questions that the certificate process asks us:

  3. Once created, we configure our proxy server to use the certificate and key by editing the /etc/swift/proxy-server.conf file:

    bind_port = 443
cert_file = /etc/swift/cert.crt
key_file = /etc/swift/cert.key

  4. With this in place, we can restart the proxy server, using the swift-init command...

Previous Section
End of Section 15
Next Section